Lucene search
K

129 matches found

hackread
hackread
added 2025/04/14 8:54 p.m.14 views

Incomplete Patch Leaves NVIDIA and Docker Users at Risk

NVIDIA's incomplete security patch, combined with a Docker vulnerability, creates a serious threat for organizations using containerized environments. This article explains the risks and mitigation strategies...

7.5AI score
Exploits0
redhatcve
redhatcve
added 2025/03/22 1:20 p.m.8 views

CVE-2024-7771

A vulnerability in the Dockerized version of mintplex-labs/anything-llm latest, digest 1d9452da2b92 allows for a denial of service. Uploading an audio file with a very low sample rate causes the functionality responsible for transcribing it to crash the entire site instance. The issue arises from...

6.5CVSS7AI score0.00702EPSS
Exploits1References1
nessus
nessus
added 2025/03/13 12:0 a.m.10 views

Docker 4.39.0 (CVE-2025-1696)

The version of Docker installed on the remote host is prior to 4.39.0. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1696 advisory. - A vulnerability exists in Docker Desktop prior to version 4.39.0 that could lead to the unintentional disclosure of sensitive...

5.2CVSS5.9AI score0.00162EPSS
Exploits0References2
osv
osv
added 2025/03/07 3:36 p.m.10 views

CVE-2025-27519 Cognita Arbitrary File Write

Cognita is a RAG Retrieval Augmented Generation Framework for building modular, open source applications for production by TrueFoundry. A path traversal issue exists at /v1/internal/upload-to-local-directory which is enabled when the Local env variable is set to true, such as when Cognita is setu...

9.3CVSS7.8AI score0.01271EPSS
Exploits1References5
cvelist
cvelist
added 2025/03/07 3:36 p.m.17 views

CVE-2025-27519 Cognita Arbitrary File Write

Cognita is a RAG Retrieval Augmented Generation Framework for building modular, open source applications for production by TrueFoundry. A path traversal issue exists at /v1/internal/upload-to-local-directory which is enabled when the Local env variable is set to true, such as when Cognita is setu...

9.3CVSS0.01271EPSS
Exploits1References3
nessus
nessus
added 2025/03/06 12:0 a.m.10 views

Amazon Linux 2 : docker (ALASECS-2025-048)

The version of docker installed on the remote host is prior to 25.0.8-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2ECS-2025-048 advisory. golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to...

3.1CVSS7AI score0.00521EPSS
Exploits0References4
nessus
nessus
added 2025/02/26 12:0 a.m.11 views

Amazon Linux 2 : docker (ALASDOCKER-2025-051)

The version of docker installed on the remote host is prior to 25.0.8-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2DOCKER-2025-051 advisory. golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead ...

3.1CVSS7AI score0.00521EPSS
Exploits0References4
nessus
nessus
added 2025/02/26 12:0 a.m.12 views

Amazon Linux 2 : docker (ALASNITRO-ENCLAVES-2025-050)

The version of docker installed on the remote host is prior to 25.0.8-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2NITRO-ENCLAVES-2025-050 advisory. golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims c...

3.1CVSS7AI score0.00521EPSS
Exploits0References4
nessus
nessus
added 2025/02/16 12:0 a.m.11 views

Azure Linux 3.0 Security Update: docker-buildx / docker-compose / moby-compose / moby-engine (CVE-2024-23650)

The version of docker-buildx / docker-compose / moby-compose / moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-23650 advisory. - BuildKit is a toolkit for converting source code to bui...

5.3CVSS6.9AI score0.00957EPSS
Exploits0References2
nvd
nvd
added 2024/12/19 2:15 a.m.24 views

CVE-2024-35141

IBM Security Verify Access Docker 10.0.0 through 10.0.6 could allow a local user to escalate their privileges due to execution of unnecessary privileges...

7.8CVSS0.00228EPSS
Exploits1References2
nessus
nessus
added 2024/12/15 12:0 a.m.10 views

CBL Mariner 2.0 Security Update: docker-cli / moby-cli / moby-compose / moby-engine (CVE-2024-36623)

The version of docker-cli / moby-cli / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36623 advisory. - moby through v25.0.3 has a Race Condition vulnerability in the...

8.1CVSS7.7AI score0.00641EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/10/01 12:0 a.m.12 views

PT-2024-7952

Name of the Vulnerable Software and Affected Versions Docker affected versions not specified Podman affected versions not specified Buildah affected versions not specified Description A vulnerability exists in the bind-propagation option of the Dockerfile RUN --mount instruction, where the system...

9.9CVSS8.5AI score0.97781EPSS
Exploits27References206
amazon
amazon
added 2024/09/05 12:0 a.m.9 views

Important: amazon-cloudwatch-agent

Issue Overview: Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability CVE-2024-35255 The OpenTelemetry Collector offers a vendor-agnostic implementation on how to receive, process and export telemetry data. An unsafe decompression vulnerability allows...

9.9CVSS6.9AI score0.16496EPSS
Exploits1
amazon
amazon
added 2024/09/04 12:0 a.m.8 views

Important: amazon-cloudwatch-agent

Issue Overview: Azure Identity Libraries and Microsoft Authentication Library Elevation of Privilege Vulnerability CVE-2024-35255 The OpenTelemetry Collector offers a vendor-agnostic implementation on how to receive, process and export telemetry data. An unsafe decompression vulnerability allows...

9.9CVSS7.4AI score0.16496EPSS
Exploits1
circl
circl
added 2024/07/24 12:40 p.m.4 views

CVE-2024-41110

creationtimestamp| type| source ---|---|--- 2024-07-24 12:40:48+00:00| published-proof-of-concept| https://t.me/HackingInsights/7215 2024-07-24 19:59:43+00:00| seen| https://t.me/cvedetector/1578 2024-07-25 07:55:26+00:00| seen| https://t.me/thehackernews/5313 2024-07-25 08:02:41+00:00| seen|...

9.9CVSS6.8AI score0.16496EPSS
Exploits0References20
vulnrichment
vulnrichment
added 2024/07/09 2:10 p.m.16 views

CVE-2024-38363 Remote Code Execution (RCE) via Server Side Template Injection (SSTI) in Airbyte

Airbyte is a data integration platform for ELT pipelines. Airbyte connection builder docker image is vulnerable to RCE via SSTI which allows an authenticated remote attacker to execute arbitrary code on the server as the web server user. The connection builder is used to create and test new...

8.5CVSS7.6AI score0.00669EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/05/31 12:0 a.m.3 views

IBM Security Verify Access Security Vulnerability

IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. The service enables secure and simple access to platforms such as web, mobile, IoT and cloud technologies by using risk-based access, single sign-on, integrated access...

8.4CVSS6.3AI score0.00229EPSS
Exploits1References3
amazon
amazon
added 2023/10/17 12:0 a.m.6 views

Medium: docker

Issue Overview: A flaw was found in Moby. This flaw allows an attacker to bypass primary group restrictions due to a flaw in the supplementary group access setup. CVE-2022-36109 Docker version 20.10.15, build fd82621 is vulnerable to Insecure Permissions. Unauthorized users outside the Docker...

6.3CVSS6.8AI score0.00837EPSS
Exploits1
vulnrichment
vulnrichment
added 2023/04/17 12:0 a.m.11 views

CVE-2023-28960 Junos OS Evolved: Docker repository is world-writeable, allowing low-privileged local user to inject files into Docker containers

An Incorrect Permission Assignment for Critical Resource vulnerability in Juniper Networks Junos OS Evolved allows a local, authenticated low-privileged attacker to copy potentially malicious files into an existing Docker container on the local system. A follow-on administrator could then...

8.2CVSS8AI score0.00167EPSS
Exploits0References1
susecve
susecve
added 2023/02/15 5:21 a.m.3 views

SUSE CVE-2015-1843

The Red Hat docker package before 1.5.0-28, when using the --add-registry option, falls back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and obtain authentication and image data by leveraging a network position...

4.3CVSS7AI score0.01618EPSS
Exploits0References3
Rows per page
Query Builder