CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Beszel is a server monitoring platform. Prior to version 0.18.2, the hub's authenticated API endpoints GET /api/beszel/containers/logs and GET /api/beszel/containers/info pass the user-supplied "container" query parameter to the agent without validation. The agent constructs Docker Engine API URL...

6.5CVSS6AI score0.00484EPSS

Exploits1References3

SUSE CVE•added 2026/03/25 12:26 a.m.•1 views

SUSE CVE-2026-28406

kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. Starting in version 1.25.4 and prior to version 1.25.10, kaniko unpacks build context archives using filepath.Joindest, cleanedName without enforcing that the final path stays within dest. A ta...

8.2CVSS6.3AI score0.00559EPSS

Exploits0References3

SUSE CVE•added 2026/03/25 12:25 a.m.•3 views

SUSE CVE-2026-30247

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.12, the application's "Import document via URL" feature is vulnerable to Server-Side Request Forgery SSRF through HTTP redirects. While the backend implements comprehensive UR...

7.5CVSS5.8AI score0.00388EPSS

Exploits1References3

Positive Technologies•added 2026/03/25 12:0 a.m.•26 views

PT-2026-28590

Name of the Vulnerable Software and Affected Versions Docker affected versions not specified Description A flaw exists in the Docker daemon’s privilege validation process during docker plugin install. The daemon does not fully enforce plugin privilege checks, potentially allowing unintended...

9.4CVSS5.9AI score0.00315EPSS

Exploits0References115

OpenVAS•added 2026/03/25 12:0 a.m.•7 views

SUSE: Security Advisory (SUSE-SU-2026:0950-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8AI score

Exploits0References3

OpenVAS•added 2026/03/25 12:0 a.m.•4 views

openSUSE Security Advisory (SUSE-SU-2026:0950-1)

5.8AI score

Exploits0References3

Positive Technologies•added 2026/03/25 12:0 a.m.•4 views

PT-2026-28593

Name of the Vulnerable Software and Affected Versions Moby/Docker Engine versions prior to 29.3.1 Description A security flaw in the Moby/Docker Engine allows attackers with local access to the Docker API or container to bypass authorization plugins AuthZ. By using specially crafted, oversized HT...

8.8CVSS7.3AI score0.08123EPSS

Exploits1References298

OpenVAS•added 2026/03/25 12:0 a.m.•1 views

openSUSE Security Advisory (SUSE-SU-2026:0972-1)

9.9CVSS6.4AI score0.16496EPSS

Exploits0References4

EUVD•added 2026/03/24 9:31 p.m.•2 views

EUVD-2026-14958

Zabbix Agent 2 Docker plugin does not properly sanitize the 'docker.containerinfo' parameters when forwarding them to the Docker daemon. An attacker capable of invoking Agent 2 can read arbitrary files from running Docker containers by injecting them via the Docker archive API...

6.1CVSS5.9AI score0.00251EPSS

Exploits0References2

RedhatCVE•added 2026/03/24 8:26 p.m.•1 views

CVE-2026-23924

A flaw was found in the Zabbix Agent 2 Docker plugin. An attacker with the ability to invoke Agent 2 can exploit improper sanitization of 'docker.containerinfo' parameters. This allows the attacker to inject malicious input via the Docker archive API, leading to the disclosure of arbitrary files...

6.1CVSS5.7AI score0.00251EPSS

Exploits0References2