Lucene search
K

2700 matches found

CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

open-notebook 安全漏洞

Open-Notebook is a privacy-oriented multi-model AI note-taking tool developed by Luis Novo. Version 1.8.3 of Open-Notebook contains a security vulnerability. This vulnerability stems from a lack of user input validation in the file upload function, which may allow users to access the content of...

8.2CVSS5.8AI score0.0018EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.12 views

Incus 代码问题漏洞

Incus is a system container and virtual machine manager developed by LXC. Versions of Incus prior to 7.0.0 contained code vulnerabilities. These vulnerabilities stemmed from the backup.GetInfo function’s trust inlining backup configurations, which allowed valid, inline configurations along with...

6.5CVSS5.8AI score0.00408EPSS
Exploits1References1
OSV
OSV
added 2026/05/05 6:49 a.m.5 views

OPENSUSE-SU-2026:20676-1 Security update for build, product-composer

This update for build, product-composer fixes the following issues: Changes in build: - Support a new "IgnoreRebuild" config. - build-recipe-kiwi: Add support for oci containers Avoid needlessly compressing container images Detect container images based on build result file name - Fix queryrecipe...

7.3CVSS5.8AI score0.00209EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.8 views

CVE-2026-41326

A flaw was found in Kata Containers. An oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations inside the guest workload image. This can be used to overwrite binaries inside the guest and exfiltrate data from containers; even those...

8.8CVSS5.8AI score0.00269EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.16 views

RHCOS 4 / 9 : OpenShift Container Platform 4.16.0 (RHSA-2024:0045)

The remote Red Hat Enterprise Linux CoreOS 4 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0045 advisory. - dnspython: denial of service in stub resolver CVE-2023-29483 - golang: net/http/cookiejar: incorrect forwarding of sensitive...

8.3CVSS5.8AI score0.02085EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2026/05/04 12:0 a.m.6 views

RHCOS 4 : OpenShift Container Platform 4.17.3 (RHSA-2024:8437)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:8437 advisory. - Podman: Buildah: CRI-O: symlink traversal vulnerability in the containers/storage library can cause Denial of Service DoS CVE-2024-9676 Not...

6.5CVSS6.9AI score0.01345EPSS
Exploits0References5
Fedora
Fedora
added 2026/04/30 1:30 a.m.6 views

[SECURITY] Fedora 42 Update: buildah-1.43.1-1.fc42

The buildah package provides a command line tool which can be used to create a working container from scratch or create a working container from an image as a starting point mount/umount a working container's root file system for manipulation save container's root file system layer to create a ne...

7.5CVSS6AI score0.00651EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/30 12:0 a.m.11 views

container 安全漏洞

Container is an open-source tool developed by Apple for creating and running Linux containers on Mac devices. Versions of Container prior to 0.12.3 have a security vulnerability. This vulnerability arises when connecting to hosts with domain names that bypass pattern matching, causing registry...

6.5CVSS5.8AI score0.00199EPSS
Exploits0References1
CVE
CVE
added 2026/04/28 12:33 p.m.21 views

CVE-2026-7309

OpenShift Container Platform build system vulnerability CVE-2026-7309 allows a user with the edit clusterrole to inject arbitrary environment variables (e.g., LD_PRELOAD, http_proxy) into docker-build containers via buildconfigs/instantiate, exposing confidentiality of build traffic. The issue is...

4.3CVSS5.5AI score0.00179EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/27 11:41 a.m.12 views

USN-8196-2 strongswan vulnerabilities

USN-8196-1 fixed vulnerabilities in strongSwan. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: Haruto Kimura discovered that strongSwan incorrectly handled the supportedversions extension in TLS. A remote attacker could possibly use this issue to cau...

6AI score
Exploits6References8
Fedora
Fedora
added 2026/04/25 1:55 a.m.6 views

[SECURITY] Fedora 44 Update: moby-engine-29.4.0-1.fc44

Docker is an open source project to build, ship and run any application as a lightweight container. Docker containers are both hardware-agnostic and platform-agnostic. This means they can run anywhere, from your laptop to the largest EC2 compute instance a nd everything in between =E2=80=94 and...

9.8CVSS7AI score0.08123EPSS
Exploits1
Fedora
Fedora
added 2026/04/25 1:54 a.m.8 views

[SECURITY] Fedora 44 Update: trivy-0.69.3-1.fc44

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more...

5CVSS7.9AI score0.00153EPSS
Exploits0
NVD
NVD
added 2026/04/24 7:17 p.m.13 views

CVE-2026-41326

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

8.8CVSS0.00269EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/24 6:46 p.m.4 views

CVE-2026-41326 Kata Containers: CopyFile Policy Subversion via Symlinks

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

8.2CVSS5.5AI score0.00269EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/24 6:46 p.m.7 views

CVE-2026-41326

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

8.2CVSS5.5AI score0.00269EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/04/24 6:46 p.m.7 views

EUVD-2026-25611

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

8.2CVSS5.5AI score0.00269EPSS
Exploits0References1
CVE
CVE
added 2026/04/24 6:46 p.m.27 views

CVE-2026-41326

Kata Containers CVE-2026-41326 affects versions v3.4.0–v3.28.0 due to an oversight in the CopyFile policy/handler that allows untrusted hosts to write to arbitrary locations inside the guest workload image. This can overwrite binaries inside the guest and exfiltrate data from containers, includin...

8.8CVSS5.5AI score0.00269EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2026/04/24 6:46 p.m.38 views

CVE-2026-41326 Kata Containers: CopyFile Policy Subversion via Symlinks

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. From v3.4.0 to v3.28.0, an oversight in the CopyFile policy and perhaps the CopyFile handler allows untrusted hosts to write to arbitrary locations...

8.2CVSS0.00269EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Kata Containers 安全漏洞

Kata Containers is an open-source, lightweight virtual infrastructure building tool developed by the Kata Containers community. Versions 3.4.0 to 3.28.0 of Kata Containers contain security vulnerabilities. These vulnerabilities stem from improper handling of the CopyFile strategy, which may allow...

8.2CVSS5.9AI score0.00269EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.20 views

PT-2026-35062

Name of the Vulnerable Software and Affected Versions Kata Containers versions 3.4.0 through 3.28.0 Description An oversight in the CopyFile policy and potentially the CopyFile handler allows untrusted hosts to write to arbitrary locations within the guest workload image. This flaw can be exploit...

8.2CVSS5.9AI score0.00269EPSS
Exploits0References11
Rows per page
Query Builder