Lucene search
K

32 matches found

Github Security Blog
Github Security Blog
added 2026/06/22 11:33 p.m.12 views

Budibase has arbitrary file read by workspace-builder via PWA-zip symlink upload

Summary POST /api/pwa/process-zip at packages/server/src/api/routes/static.ts:24 accepts a builder-uploaded .zip, extracts it with [email protected] into a temp directory, then for each entry listed in icons.json validates the icon path, opens it, and streams the bytes into MinIO. The resulting...

9.6CVSS5.9AI score0.00494EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: containerd (UTSA-2026-017436)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017436 advisory. containerd is an open source container runtime with an emphasis on simplicity, robustness and portability. A bug was found in containerd where container root...

7.8CVSS6.5AI score0.00482EPSS
Exploits0References4
NVD
NVD
added 2026/05/07 11:16 a.m.18 views

CVE-2026-33588

Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to create or modify files on the docker container via path traversal...

8.1CVSS0.00182EPSS
Exploits0References1
NVD
NVD
added 2026/05/07 11:16 a.m.14 views

CVE-2026-33589

Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to access local files content from the docker container via path traversal...

8.2CVSS0.0018EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/07 10:31 a.m.8 views

CVE-2026-33589

Lack of user input validation in the file upload functionality of Open Notebook v1.8.3 allows the application user to access local files content from the docker container via path traversal...

8.2CVSS5.8AI score0.0018EPSS
Exploits0References2
OSV
OSV
added 2026/05/07 12:59 a.m.7 views

GHSA-3CV5-Q585-H563 Gotenberg has arbitrary PDF read via stampExpression and watermarkExpression in merge, split, and convert routes

Summary Six conversion routes pdfengines/merge, pdfengines/split, libreoffice/convert, chromium/convert/url, chromium/convert/html, chromium/convert/markdown accept stampSource=pdf + stampExpression=/path and watermarkSource=pdf + watermarkExpression=/path from anonymous callers. The dedicated...

5.3CVSS5.9AI score0.00311EPSS
Exploits1References3
Veracode
Veracode
added 2026/04/04 5:35 a.m.7 views

Insecure File Permissions

Claude SDK for Python is vulnerable to insecure file permissions. The vulnerability is due to the memory tool creating files with mode 0o666, where the files are world‑readable on systems with a standard umask and world‑writable in environments with a permissive umask, and a local attacker on a...

4.8CVSS5.9AI score0.00122EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23924

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.containerinfo' parameters when forwarding them to the Docker daemon. An attacker capable of...

6.1CVSS6.8AI score0.00251EPSS
Exploits0References3
OSV
OSV
added 2026/03/24 7:16 p.m.3 views

DEBIAN-CVE-2026-23924

Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.containerinfo' parameters when forwarding them to the Docker daemon. An attacker capable of invoking Agent 2 can read arbitrary files from running Docker containers by injecting them via the Docker archive API...

6.1CVSS5.5AI score0.00251EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/24 12:0 a.m.4 views

PT-2026-27477

Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.container info' parameters when forwarding them to the Docker daemon. An attacker capable of invoking Agent 2 can read arbitrary files from running Docker containers by injecting them via the Docker archive API...

6.1CVSS5.9AI score0.00251EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/10/16 11:3 a.m.8 views

podman: Build Context Bind Mount

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS5.8AI score0.00596EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-5702

Malware in sbrugna...

7.5CVSS7.5AI score0.04936EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-0780

Malware in sbrugna...

10CVSS9.2AI score0.01605EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/29 12:0 a.m.6 views

PT-2025-39897

Name of the Vulnerable Software and Affected Versions Vasion Print versions prior to 25.1.102 Vasion Print Application versions prior to 25.1.1413 Description Vasion Print formerly PrinterLogic Virtual Appliance Host and Application deployments contain hardcoded private keys stored in clear text...

9.2CVSS6.5AI score0.00382EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2025/09/17 11:25 p.m.6 views

SUSE CVE-2025-4953

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS6.5AI score0.00596EPSS
Exploits0References3
OSV
OSV
added 2025/09/16 3:15 p.m.6 views

AZL-68054 CVE-2025-4953 affecting package podman for versions less than 5.6.1-2

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS5.8AI score0.00596EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/16 2:54 p.m.3 views

CVE-2025-4953 Podman: build context bind mount

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS6.1AI score0.00596EPSS
Exploits0References16
CVE
CVE
added 2025/09/16 2:54 p.m.53 views

CVE-2025-4953

CVE-2025-4953 affects Podman builds using RUN --mount=type=bind; data written during build may persist and appear in the host build context, exposing created files. The issue is specific to Podman/bind-mmount behavior. Remediation: upgrade Podman to a version where the fix is applied (e.g., Podma...

7.4CVSS6.1AI score0.00596EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2025/09/16 5:56 a.m.14 views

podman: Build Context Bind Mount

A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files...

7.4CVSS5.8AI score0.00596EPSS
Exploits0References5
CNNVD
CNNVD
added 2024/02/01 12:0 a.m.6 views

Crafatar Path Traversal Vulnerability

Crafatar is an application from Crafatar, Inc. that provides skin-based Minecraft avatars for use by external applications. A path traversal vulnerability exists in Crafatar versions prior to 2.1.5, which stems from the fact that by default, all files within a container can be found in the...

7.5CVSS6.7AI score0.00873EPSS
Exploits1References2
Rows per page
Query Builder