Lucene search
K

9 matches found

NVD
NVD
added 2026/05/29 6:17 p.m.27 views

CVE-2026-45661

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS0.0066EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/29 4:7 p.m.13 views

CVE-2026-45661

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/29 4:7 p.m.14 views

CVE-2026-45661 Dokploy: Remote Code Execution through Path Traversal

Dokploy is a free, self-hostable Platform as a Service PaaS. In 0.26.5 and earlier, a critical path traversal vulnerability exists in Dokploy v0.26.5 that allows authenticated users to write arbitrary files to the filesystem during application deployment. When combined with Dokploy's remote serve...

9.9CVSS6.5AI score0.0066EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/22 12:0 a.m.9 views

Docker Desktop 安全漏洞

Docker Desktop is a desktop software by the American company Docker, based on container technology, designed for lightweight application deployment. This product provides a desktop environment that allows creating containers lightweight virtual machines on Linux/Windows/Mac OS systems, as well as...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.5 views

CVE-2026-35044

BentoML is a Python library for building online serving systems optimized for AI apps and model inference. Prior to 1.4.38, the Dockerfile generation function generatecontainerfile in src/bentoml/internal/container/generate.py uses an unsandboxed jinja2.Environment with the jinja2.ext.do extensio...

9.6CVSS6.1AI score0.00392EPSS
Exploits1References1
Qualys Blog
Qualys Blog
added 2026/03/12 9:32 p.m.10 views

CrackArmor: Critical AppArmor Flaws Enable Local Privilege Escalation to Root

Executive Summary Qualys TRU has discovered confused deputy vulnerabilities in AppArmor named "CrackArmor" that allow unprivileged users to bypass kernel protections, escalate to root, and break container isolation. The flaw has existed since 2017, and affected over 12.6 million systems globally...

6.4AI score
Exploits0
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in golang-github-containers-common, libpod

A flaw was discovered in Go. When FIPS mode is enabled on a system, container runtime may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS6.7AI score0.0099EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/10/14 2:5 a.m.4 views

Podman: Buildah: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS7.1AI score0.0099EPSS
Exploits0References6
OSV
OSV
added 2024/10/01 7:15 p.m.7 views

AZL-50070 CVE-2024-9341 affecting package podman for versions less than 5.6.1-2

A flaw was found in Go. When FIPS mode is enabled on a system, container runtimes may incorrectly handle certain file paths due to improper validation in the containers/common Go library. This flaw allows an attacker to exploit symbolic links and trick the system into mounting sensitive host...

8.2CVSS7.2AI score0.0099EPSS
Exploits0References1
Rows per page
Query Builder