Lucene search
+L

5 matches found

nessus
nessus
added 2026/06/20 12:0 a.m.7 views

Photon OS 5.0: Jq PHSA-2026-5.0-0885

An update of the jq package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0885. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid321792...

7.3CVSS6AI score0.00161EPSS
Exploits7References8
redhatcve
redhatcve
added 2026/05/14 6:31 p.m.9 views

CVE-2026-43895

A flaw was found in jq, a command line JSON processor. Embedded NUL bytes in import paths are truncated during module and data-file lookup, creating a mismatch between the intended import string and the actual file path opened. This issue allows an attacker who can supply a crafted script to acce...

4.4CVSS5.7AI score0.00157EPSS
Exploits1References4
osv
osv
added 2026/05/11 6:16 p.m.4 views

DEBIAN-CVE-2026-43895

jq is a command-line JSON processor. In 1.8.1 and earlier, jq accepts embedded NUL bytes in import paths at the jq-language level, but later resolves those paths through C string operations during module and data-file lookup. This creates a mismatch between the logical import string that policy o...

4.4CVSS5.9AI score0.00157EPSS
Exploits1References1
osv
osv
added 2026/05/11 6:16 p.m.6 views

UBUNTU-CVE-2026-43895

jq is a command-line JSON processor. In 1.8.1 and earlier, jq accepts embedded NUL bytes in import paths at the jq-language level, but later resolves those paths through C string operations during module and data-file lookup. This creates a mismatch between the logical import string that policy o...

4.4CVSS5.9AI score0.00157EPSS
Exploits1References4
cve
cve
added 2026/05/11 5:24 p.m.29 views

CVE-2026-43895

jq versions 1.8.1 and earlier are affected: embedded NUL bytes in import paths at the jq-language level can be resolved differently during module/data-file lookup, creating a mismatch between the logical import string and the on-disk path opened. This mismatch can enable a local redaction-policy ...

4.4CVSS5.9AI score0.00157EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder