Lucene search
K

10518 matches found

Cvelist
Cvelist
added 2022/09/19 7:53 p.m.39 views

CVE-2022-2995

Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute...

7.5AI score0.0037EPSS
Exploits1References2
CVE
CVE
added 2022/09/19 7:53 p.m.173 views

CVE-2022-2995

CVE-2022-2995 affects the CRI-O container engine (CRI-O) where incorrect handling of supplementary groups can lead to sensitive information disclosure or data modification if an attacker can access the affected container and execute code there. The issue is referenced across multiple advisories (...

7.1CVSS7.1AI score0.0037EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/19 7:53 p.m.8 views

CVE-2022-2995

Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute...

6.9AI score0.0037EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/09/19 12:0 a.m.3 views

PT-2022-7292 · Cri-O +2 · Cri-O +2

Name of the Vulnerable Software and Affected Versions: CRI-O affected versions not specified Description: The issue is related to the incorrect handling of supplementary groups in the CRI-O container engine, which may lead to sensitive information disclosure or possible data modification. This ca...

9.8CVSS7.5AI score0.03796EPSS
Exploits2References31
Microsoft CVE
Microsoft CVE
added 2022/09/17 12:0 a.m.3 views

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container.

...

7.1CVSS6.3AI score0.00307EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.3 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jul 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.01271EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.3 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2023)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS6.8AI score0.00942EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.8 views

mysql: InnoDB unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.26 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of...

5.9CVSS7.3AI score0.01296EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.3 views

mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.01054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.6 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.01478EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.4 views

mysql: Server: Optimizer unspecified vulnerability (CPU Apr 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.01221EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.5 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

7.1CVSS7.3AI score0.01197EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.5 views

mysql: InnoDB unspecified vulnerability (CPU Oct 2021)

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.35 and prior and 8.0.26 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

5.5CVSS7.3AI score0.02497EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.4 views

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS7.3AI score0.01223EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.4 views

mysql: Server: Components Services unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Components Services. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

6.5CVSS7.3AI score0.01148EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2022/09/14 1:47 p.m.6 views

mysql: Server: Security: Privileges unspecified vulnerability (CPU Jan 2022)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 5.7.36 and prior and 8.0.27 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromi...

4.3CVSS7.3AI score0.01399EPSS
Exploits0References4
OSV
OSV
added 2022/09/14 12:0 a.m.25 views

GHSA-4WJJ-JWC9-2X96 Podman's incorrect handling of the supplementary groups may lead to data disclosure, modification

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to...

7.1CVSS6.5AI score0.00542EPSS
Exploits2References11
Github Security Blog
Github Security Blog
added 2022/09/14 12:0 a.m.32 views

Buildah's incorrect handling of the supplementary groups may lead to data disclosure, modification

An incorrect handling of the supplementary groups in the Buildah container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able t...

7.1CVSS6.9AI score0.00331EPSS
Exploits1References8Affected Software1
OSV
OSV
added 2022/09/13 2:15 p.m.1 views

DEBIAN-CVE-2022-2989

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to...

7.1CVSS6.3AI score0.00307EPSS
Exploits1References1
OSV
OSV
added 2022/09/13 2:15 p.m.6 views

AZL-36976 CVE-2022-2989 affecting package podman for versions less than 4.1.1-21

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to...

7.1CVSS6.7AI score0.00307EPSS
Exploits1References1
Rows per page
Query Builder