Lucene search
+L

1315 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.16 views

RHEL 9 : perl-IO-Compress (RHSA-2026:29182)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:29182 advisory. This distribution provides a Perl interface to allow reading and writing of compressed data created with the zlib and bzip2 libraries. IO-Compress...

7.8CVSS6.5AI score0.00292EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.7 views

Amazon Linux 2 : perl-IO-Compress, --advisory ALAS2-2026-3355 (ALAS-2026-3355)

The version of perl-IO-Compress installed on the remote host is prior to 2.061-2. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3355 advisory. IO::Uncompress::Unzip versions before 2.220 for Perl allow CPU exhaustion via per-byte read loop in fastForward...

7.8CVSS6.3AI score0.00373EPSS
Exploits3References6
OSV
OSV
added 2026/06/19 10:13 a.m.4 views

OPENSUSE-SU-2026:21142-1 Security update for perl-Compress-Raw-Zlib

This update for perl-Compress-Raw-Zlib fixes the following issues: Changes in perl-Compress-Raw-Zlib: - updated to 2.222 see /usr/share/doc/packages/perl-Compress-Raw-Zlib/Changes 2.222 27 February 2026 Add SECURITY.md. Fixes 40 Fix spelling typos 2.221 27 February 2026 Merge remote-tracking bran...

9.8CVSS7.2AI score0.00548EPSS
Exploits1References1
OSV
OSV
added 2026/06/17 1:25 p.m.8 views

ROOT-APP-MAVEN-CVE-2024-26308 CVE-2024-26308 in io.root.org.apache.commons:commons-compress - Patched by Root

Root has patched CVE-2024-26308 in the io.root.org.apache.commons:commons-compress package for Root:Maven. Multiple fixed versions available...

5.5CVSS6.6AI score0.00898EPSS
Exploits0
GithubExploit
GithubExploit
added 2026/06/10 7:46 a.m.71 views

Exploit for CVE-2026-48962

Summary An eval injection vulnerability in File::GlobMappe...

7.3CVSS6.4AI score0.00292EPSS
Exploits3
Packet Storm
Packet Storm
added 2026/06/10 12:0 a.m.68 views

📄 IO-Compress 2.219 Eval Injection

An eval injection vulnerability in File::GlobMapper::getFiles allows any attacker who can control the output fileglob argument passed to IO::Compress::Gzip::gzip, IO::Compress::Zip::zip, or any sibling function to execute arbitrary Perl code in the context of the running process. Summary An eval...

7.3CVSS5.9AI score0.00292EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/06/08 12:0 a.m.21 views

TencentOS Server 4: perl-IO-Compress (TSSA-2026:0426)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0426 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.8CVSS6.1AI score0.00292EPSS
Exploits3References2
OSV
OSV
added 2026/06/08 12:0 a.m.9 views

OPENSUSE-SU-2026:10969-1 perl-IO-Compress-2.220.0-2.1 on GA media

These are all security issues fixed in the perl-IO-Compress-2.220.0-2.1 package on the GA media of openSUSE Tumbleweed...

7.3CVSS5.5AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/06 6:42 a.m.16 views

CVE-2026-48961

A flaw was found in the zipdetails command-line interface CLI tool, bundled with IO::Compress for Perl. When processing a specially crafted Info-ZIP Unix Extra Field with an 8-byte User ID UID or Group ID GID, the zipdetails tool attempts to call an undefined subroutine. This can lead to the tool...

7.3CVSS5.7AI score0.00262EPSS
Exploits0References5
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/06 12:0 a.m.13 views

perl-IO-Compress-2.220.0-1.1 on GA media (moderate)

perl-IO-Compress-2.220.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10939-1 Rating: moderate Cross-References: CVE-2026-48962 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

7.8CVSS5.5AI score0.00292EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2026/06/03 10:1 p.m.16 views

CVE-2026-10221

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compresscontext of the file runagent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be use...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/02 12:0 a.m.19 views

PT-2026-45971

These are all security issues fixed in the perl-IO-Compress-2.220.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.3CVSS5.8AI score0.00292EPSS
Exploits3References2
OSV
OSV
added 2026/06/02 12:0 a.m.9 views

OPENSUSE-SU-2026:10939-1 perl-IO-Compress-2.220.0-1.1 on GA media

These are all security issues fixed in the perl-IO-Compress-2.220.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.8CVSS5.8AI score0.00292EPSS
Exploits3References1
CVE
CVE
added 2026/06/01 3:45 a.m.57 views

CVE-2026-10221

CVE-2026-10221 affects NousResearch Hermes-agent up to version 0.12.0. The vulnerability is in the _compress_context function of run_agent.py, where input manipulation leads to injection. It can be triggered remotely over the network, and a public exploit is available. The vendor was contacted bu...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/06/01 3:45 a.m.8 views

CVE-2026-10221 NousResearch hermes-agent run_agent.py _compress_context injection

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compresscontext of the file runagent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be use...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/01 3:45 a.m.12 views

CVE-2026-10221

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compresscontext of the file runagent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be use...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/06/01 3:45 a.m.68 views

CVE-2026-10221 NousResearch hermes-agent run_agent.py _compress_context injection

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compresscontext of the file runagent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be use...

7.5CVSS0.00304EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/01 3:45 a.m.17 views

EUVD-2026-33554

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compresscontext of the file runagent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be use...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/06/01 12:0 a.m.15 views

Hermes Agent 安全漏洞

Hermes Agent is an AI agent tool developed by Nous Research, featuring a self-learning mechanism. Versions of Hermes Agent prior to 0.12.0 contain security vulnerabilities. These vulnerabilities stem from issues with the compresscontext function in the runagent.py file, which may lead to injectio...

7.5CVSS7.3AI score0.00304EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/01 12:0 a.m.21 views

PT-2026-45253

A vulnerability was identified in NousResearch hermes-agent up to 0.12.0. Affected by this vulnerability is the function compress context of the file run agent.py. The manipulation leads to injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be...

7.5CVSS6.8AI score0.00304EPSS
Exploits0References6
Rows per page
Query Builder