8008 matches found
[SECURITY] Fedora 43 Update: skopeo-1.20.0-5.fc43
Command line utility to inspect images and repositories directly on Docker registries without the need to pull them...
CVE-2025-64348
ELOG allows an authenticated user to modify or overwrite the configuration file, resulting in denial of service. If the execute facility is specifically enabled with the "-x" command line flag, attackers could execute OS commands on the host machine. By default, ELOG is not configured to allow...
[SECURITY] Fedora 42 Update: fluidsynth-2.4.8-2.fc42
FluidSynth is a real-time software synthesizer based on the SoundFont 2 specifications. It is a "software synthesizer". FluidSynth can read MIDI even ts from the MIDI input device and render them to the audio device. It features real-time effect modulation using SoundFont 2.01 modulators, and a...
[SECURITY] Fedora 43 Update: fluidsynth-2.4.8-2.fc43
FluidSynth is a real-time software synthesizer based on the SoundFont 2 specifications. It is a "software synthesizer". FluidSynth can read MIDI even ts from the MIDI input device and render them to the audio device. It features real-time effect modulation using SoundFont 2.01 modulators, and a...
[SECURITY] Fedora 41 Update: fluidsynth-2.4.8-2.fc41
FluidSynth is a real-time software synthesizer based on the SoundFont 2 specifications. It is a "software synthesizer". FluidSynth can read MIDI even ts from the MIDI input device and render them to the audio device. It features real-time effect modulation using SoundFont 2.01 modulators, and a...
EUVD-2025-36728
On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges...
CVE-2025-54545
On affected platforms, a restricted user could break out of the CLI sandbox to the system shell and elevate their privileges...
CVE-2025-64140
Jenkins Azure CLI Plugin 0.9 and earlier does not restrict which commands it executes on the Jenkins controller, allowing attackers with Item/Configure permission to execute arbitrary shell commands...
Jenkins Azure CLI Plugin 安全漏洞
Jenkins Azure CLI Plugin is an open source command line plugin for Jenkins. A security vulnerability exists in Jenkins Azure CLI Plugin version 0.9 and earlier, which stems from an unrestricted number of commands that can be executed on the Jenkins controller, which could lead to the execution of...
Arista DANZ Monitoring Fabric 安全漏洞
Arista DANZ Monitoring Fabric is a traffic monitoring, security, and performance analytics platform from Arista USA. A security vulnerability exists in Arista DANZ Monitoring Fabric that originates from a restricted user being able to break out of the CLI sandbox restrictions to access the system...
PT-2025-44351
Name of the Vulnerable Software and Affected Versions versions prior to 2025-54545 Description A restricted user could escape the CLI sandbox and gain access to the system shell, leading to privilege escalation. Recommendations At the moment, there is no information about a newer version that...
CVE-2025-59462
An attacker who tampers with the C++ CLI client may crash the UpdateService during file transfers, disrupting updates and availability...
[SECURITY] Fedora 43 Update: xen-4.20.1-8.fc43
This package contains the XenD daemon and xm command line tools, needed to manage virtual machines running under the Xen hypervisor...
CVE-2025-4106
An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0...
[SECURITY] Fedora 42 Update: python-sqlparse-0.4.2-14.fc42
sqlparse is a tool for parsing SQL strings. It can generate pretty-printed renderings of SQL in various formats. It is a python module, together with a command-line tool...
PT-2025-43926
Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description An attacker manipulating the C++ CLI client can cause the UpdateService to crash during file transfers, leading to disruptions in updates and availability. Recommendations At the moment, there is no informati...
Siemens SIMATIC Devices Classic Buffer Overflow (CVE-2024-26988)
In the Linux kernel, the following vulnerability has been resolved: init/main.c: Fix potential staticcommandline memory overflow This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
[SECURITY] Fedora 43 Update: docker-buildx-0.29.1-1.fc43
Docker CLI plugin for extended build capabilities with BuildKit...
EUVD-2025-35898
An authenticated admin user with access to both the management WebUI and command line interface on a Firebox can enable a diagnostic debug shell by uploading a platform and version-specific diagnostic package and executing a leftover diagnostic command. This issue affects Fireware OS: from 12.0...
Fedora 43 : complyctl (2025-b527f8a1ee)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b527f8a1ee advisory. First minor release of complyctl - a new command line Interface for Fedora compliance assessment. It features a decoupled plug-in architecture for flexibilit...