GHSA-MPWR-8VM7-H73F vulnerabilities

Vulnerabilities for packages: crossplane-provider-azure-relay, crossplane-provider-azure-powerbidedicated, x509-certificate-exporter, nfpm, telegraf, crossplane-provider-azure-synapse, crossplane-provider-azure-signalrservice, crossplane-provider-azure-netapp,...

GHSA-45GG-VH54-H5M9 vulnerabilities

Vulnerabilities for packages: drone-fips, kyverno, cilium, flux-source-controller-fips, gitea, knative-kafka-broker-fips, nemo, docker-machine-driver-harvester, drone, opentofu, fscrypt, prometheus, prometheus-mongodb-exporter, argocd-image-updater-fips, opentofu-fips, frankenphp-8.5,...

GHSA-MPWR-8VM7-H73F vulnerabilities

Vulnerabilities for packages: x509-certificate-exporter, nuclei, cert-manager, nfpm, splunk-otel-collector, goreleaser...

GHSA-X527-X647-Q7GG vulnerabilities

Vulnerabilities for packages: trivy, aactl, argo-cd, cert-manager, prometheus, fscrypt, cloud-provider-aws, prometheus-operator, k3s, opentelemetry-collector, zot, kubernetes-dashboard, zarf, nerdctl, gitea, kaf, minio, snyk-cli, rancher-agent, k9s, external-dns, kine, cilium, kubernetes, loki,...

GHSA-W879-237Q-WC7R vulnerabilities

Vulnerabilities for packages: rancher-machine, glab, flux-operator, crossplane-provider-azure-authorization, docker, wal-g, terraform-provider-tls, prometheus-operator, pulumi-language-yaml, zot, act, pulumi, kargo, minio, atlantis, cilium, crossplane-provider-family-azure, gh, trivy-operator,...

GHSA-JPPX-RXG9-JMRX vulnerabilities

Vulnerabilities for packages: aactl, argo-cd, cert-manager, podman, prometheus, fscrypt, cloud-provider-aws, prometheus-operator, k3s, opentelemetry-collector, zot, kubernetes-dashboard, nerdctl, kaf, minio, snyk-cli, rancher-agent, external-dns, kine, cilium, kubernetes, loki, istio,...

Citrix SD-WAN Center - Local File Inclusion

Citrix SD-WAN Center is susceptible to local file inclusion via the applianceSettingsFileTransfer function in ApplianceSettingsController. The function does not sufficiently validate or sanitize HTTP request parameter values used to construct a file system path. An attacker can trigger this...

Citrix SD-WAN Center - Remote Command Injection

Citrix SD-WAN Center is susceptible to remote command injection via the apply action in StorageMgmtController. The callStoragePerl function does not sufficiently validate or sanitize HTTP request parameter values that are used to construct a shell command. An attacker can trigger this vulnerabili...

Citrix SD-WAN Center - Remote Command Injection

Citrix SD-WAN Center is susceptible to remote command injection via the ping function in DiagnosticsController, which does not sufficiently validate or sanitize HTTP request parameter values used to construct a shell command. An attacker can trigger this vulnerability by routing traffic through t...

EUVD-2026-38873

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop all SCM attributes for SOCKMAP. SOCKMAP can hide inflight fd from AFUNIX GC. When a socket in SOCKMAP receives skb with inflight fd, skpsockverdictdataready looks up the mapped socket and enqueue skb to its...

Astra Linux – Vulnerability in Firefox and Thunderbird

Incorrect boundary conditions in the JavaScript: GC component. This vulnerability was fixed in Firefox 143, Firefox ESR 140.3, Thunderbird 143, and Thunderbird 140.3...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: clone set element expression template The memcpy function breaks when using connlimit in set elements. Use nftexprclone to initialize the connlimit expression list; otherwise, the connlimit garbage collect...

Astra Linux – Vulnerability in Firefox

If array shift operations are not used, the Garbage Collector may become confused regarding valid objects. This vulnerability affects Firefox versions less than 101...

Astra Linux – Vulnerability in Firefox and Thunderbird

Certain types of allocations lacked annotations that, if the Garbage Collector was in a specific state, could have led to memory corruption and potentially exploitable crashes. This vulnerability affects Firefox 106, Firefox ESR 102.4, and Thunderbird 102.4...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: ipset: Fixed issues related to region locking in hash types. Region locking introduced in v5.6-rc4 included three macros for handling region locks: - ahashbucketstart: Takes back the start and end hash bucket values...

CVE-2026-32652

Dell AIOps Collector versions prior to 1.18.3 contain a "Use of Default Credentials" vulnerability. A low privileged attacker with console access could potentially exploit this vulnerability to gain Filesystem access. This vulnerability only affects fresh installations of Collector versions earli...

CVE-2026-32652

Dell AIOps Collector versions prior to 1.18.3 contain a "Use of Default Credentials" vulnerability. A low privileged attacker with console access could potentially exploit this vulnerability to gain Filesystem access. This vulnerability only affects fresh installations of Collector versions earli...

CVE-2026-32652

Dell AIOps Collector pre-1.18.3 is vulnerable to a Use of Default Credentials flaw. A low-privilege attacker with console access could gain filesystem access on fresh installations not upgraded to 1.18.3+. Upgraded installations (1.18.3+) are not affected. Remediate by upgrading to 1.18.3 or later.

CVE-2026-22312 Use of Hard-coded Credentials Vulnerability in Radiflow iSAP Smart Collector

The device has a webserver that exposes a REST API authenticated with a constant token. The unauthenticated API can be used by an attacker to get access to system settings, modify the configuration and execute some commands e.g. system reboot...

CVE-2026-22312

CVE-2026-22312 affects Radiflow iSAP Smart Collector. The device exposes a webserver REST API authenticated with a constant token, enabling an unauthenticated client to access system settings, modify configuration, and execute commands (e.g., system reboot). CVSS 3.1 indicates NETWORK attack vect...