Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2 days ago4 views

pnpm 11.3.x < 11.5.3 Stage Download Path Traversal (CVE-2026-55700)

The version of pnpm installed on the remote host is 11.3.x prior to 11.5.3. It is, therefore, affected by a path traversal vulnerability: - From 11.3.0 until 11.5.3, pnpm stage download derived a local filename from registry-controlled package name and version fields. A crafted manifest could...

7.1CVSS6AI score0.00267EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002509)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002509 advisory. The ip6skdstcheck function in net/ipv6/ip6output.c in the Linux kernel before 3.10 allows local users to cause a denial of service system crash by using an AFINET6...

4.9CVSS5.3AI score0.00556EPSS
Exploits1References23
NVD
NVD
added 2024/10/21 12:15 p.m.18 views

CVE-2024-47678

In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applied in this order: 1 host wide ratelimit icmpglobalallow 2 Per destination ratelimit inetpeer based In...

5.5CVSS0.00239EPSS
Exploits0References6
OSV
OSV
added 2024/10/21 12:15 p.m.13 views

AZL-50979 CVE-2024-47678 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applied in this order: 1 host wide ratelimit icmpglobalallow 2 Per destination ratelimit inetpeer based In...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:38 a.m.7 views

SUSE CVE-2013-2232

The ip6skdstcheck function in net/ipv6/ip6output.c in the Linux kernel before 3.10 allows local users to cause a denial of service system crash by using an AFINET6 socket for a connection to an IPv4 interface...

4.9CVSS6.2AI score0.00556EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2020/04/22 2:11 p.m.6 views

ansible: Extract-Zip function in win_unzip module does not check extracted path

A flaw was found in the Ansible Engine when using the Extract-Zip function from the winunzip module as the extracted files are not checked if they belong to the destination folder. An attacker could take advantage of this flaw by crafting an archive anywhere in the file system, using a path...

7.8CVSS7.1AI score0.00362EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/09/16 5:1 p.m.3 views

Kernel: ipv6: using ipv4 vs ipv6 structure during routing lookup in sendmsg

The ip6skdstcheck function in net/ipv6/ip6output.c in the Linux kernel before 3.10 allows local users to cause a denial of service system crash by using an AFINET6 socket for a connection to an IPv4 interface...

4.9CVSS5.8AI score0.00556EPSS
Exploits1References4
Rows per page
Query Builder