Lucene search
K

1925 matches found

OSV
OSV
added 2026/07/07 12:5 p.m.4 views

RLSA-2026:35826 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via...

8.2CVSS6.6AI score0.00478EPSS
Exploits0References2
OSV
OSV
added 2026/07/07 12:3 p.m.4 views

RLSA-2026:35829 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via...

8.2CVSS6.6AI score0.00478EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/07/07 12:3 p.m.6 views

grafana-pcp security update

An update is available for grafana-pcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

9.6CVSS6.7AI score0.00478EPSS
Exploits0
CVE
CVE
added 2026/07/07 9:18 a.m.16 views

CVE-2026-49296

CVE-2026-49296 (Apache Airflow) : Affected versions before 3.3.0 expose the full source of co-located DAGs when reading a single DAG via GET /api/v2/dagSources/{dag_id} or the UI view, bypassing per-DAG read controls. This can disclose multiple DAG sources from the same file to authorized readers...

6.5CVSS5.9AI score0.00601EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/07/07 9:18 a.m.7 views

EUVD-2026-42027

Before apache-airflow 3.3.0, a user authorized to read one Dag could disclose the source of other Dags co-located in the same source file. GET /api/v2/dagSources/dagid — and the equivalent Dag-source view in the UI — returned the entire source file without redacting Dags the caller was not...

6.5CVSS5.9AI score0.00601EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/07/07 9:18 a.m.34 views

CVE-2026-49296 Apache Airflow: Per-DAG read bypass discloses co-located DAGs' source via GET /api/v2/dagSources/{dag_id}

Before apache-airflow 3.3.0, a user authorized to read one Dag could disclose the source of other Dags co-located in the same source file. GET /api/v2/dagSources/dagid — and the equivalent Dag-source view in the UI — returned the entire source file without redacting Dags the caller was not...

0.00601EPSS
Exploits0References2
OSV
OSV
added 2026/07/07 9:18 a.m.2 views

CVE-2026-49296 Apache Airflow: Per-DAG read bypass discloses co-located DAGs' source via GET /api/v2/dagSources/{dag_id}

Before apache-airflow 3.3.0, a user authorized to read one Dag could disclose the source of other Dags co-located in the same source file. GET /api/v2/dagSources/dagid — and the equivalent Dag-source view in the UI — returned the entire source file without redacting Dags the caller was not...

6.5CVSS5.9AI score0.00601EPSS
Exploits0References6
Rockylinux
Rockylinux
added 2026/07/07 6:0 a.m.5 views

grafana-pcp security update

An update is available for grafana-pcp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

9.6CVSS6AI score0.00478EPSS
Exploits0
OSV
OSV
added 2026/07/07 6:0 a.m.6 views

RLSA-2026:35831 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang.org/x/net/idna: golang: golang.org/x/net/idna: Privilege escalation via...

8.2CVSS6AI score0.00478EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.7 views

PT-2026-56179

Name of the Vulnerable Software and Affected Versions apache-airflow versions prior to 3.3.0 Description An authorization bypass occurs when a user with permission to read a specific Dag can disclose the source code of other Dags located within the same source file. This issue affects deployments...

6.5CVSS5.9AI score0.00601EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2026/07/06 3:49 a.m.9 views

Important: Red Hat Security Advisory: grafana-pcp security update

An update for grafana-pcp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

9.6CVSS6AI score0.00478EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2026/05/28 3:43 p.m.20 views

grafana-pcp security update

An update is available for grafana-pcp. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Grafana plugin for Performance Co-Pilot includes datasources for...

7.5CVSS7.3AI score0.00621EPSS
Exploits0
OSV
OSV
added 2026/05/28 3:43 p.m.20 views

RLSA-2026:19351 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root...

7.8CVSS7.3AI score0.00621EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:6 a.m.8 views

bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec()

...

7.8CVSS5.4AI score0.0012EPSS
Exploits0
OSV
OSV
added 2026/05/27 2:17 p.m.36 views

UBUNTU-CVE-2026-45959

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix a crash due to incorrect cleanup usage of kfree Annotating a local pointer variable, which will be assigned with the kmalloc-family functions, with the cleanupkfree attribute will make the address of the local...

7.8CVSS5.8AI score0.00127EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/27 9:24 a.m.40 views

CVE-2026-45839 bpf: reject negative CO-RE accessor indices in bpf_core_parse_spec()

In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field, e.g. "0:1:2" walks through nested struct members...

0.0012EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/05/27 9:24 a.m.11 views

CVE-2026-45839

In the Linux kernel, the following vulnerability has been resolved: bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon-separated indices that describe a path from a root BTF type to a target field, e.g. "0:1:2" walks through nested struct members...

5.7AI score0.0012EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/05/21 4:27 p.m.7 views

RLSA-2023:2177 Moderate: grafana-pcp security and enhancement update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 For...

6.5CVSS7.3AI score0.02607EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/05/21 12:4 a.m.27 views

Important: Red Hat Security Advisory: grafana-pcp security update

An update for grafana-pcp is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

7.5CVSS7.3AI score0.00621EPSS
Exploits0References4
OSV
OSV
added 2026/05/20 12:3 a.m.20 views

RLSA-2026:19184 Important: grafana-pcp security update

The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace scripts from pmdabpftrace, as well as several dashboards. Security Fixes: net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 For...

7.5CVSS5.8AI score0.00728EPSS
Exploits0References2
Rows per page
Query Builder