Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2026/05/15 12:39 p.m.13 views

CVE-2026-40243

A flaw was found in Incus, a system container and virtual machine manager. The Open Virtual Network OVN database connection logic contains broken Transport Layer Security TLS validation. A remote attacker, by impersonating or intercepting the OVN endpoint on the management network, can present a...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/05/08 2:22 a.m.8 views

SUSE CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References3
NVD
NVD
added 2026/05/06 9:16 p.m.23 views

CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

4.8CVSS0.00173EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/05/06 8:38 p.m.10 views

CVE-2026-40243

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References6Affected Software1
CVE
CVE
added 2026/05/06 8:38 p.m.20 views

CVE-2026-40243

CVE-2026-40243 describes a TLS verification flaw in Incus (OVN integration) where the OVN database client disables standard TLS verification and uses a custom VerifyPeerCertificate callback that builds trust roots from peer-supplied certificates, ignoring the configured CA pool. This allows an at...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/06 8:38 p.m.13 views

CVE-2026-40243 Incus OVN TLS verification accepts peer-supplied roots and permits endpoint impersonation

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS5.8AI score0.00173EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/06 8:38 p.m.73 views

CVE-2026-40243 Incus OVN TLS verification accepts peer-supplied roots and permits endpoint impersonation

Incus is a system container and virtual machine manager. In versions before 7.0.0, broken TLS validation logic in the OVN database connection logic can allow connections to an attacker's OVN database. The OVN client implementations disable Go standard TLS server verification and replace it with...

2.3CVSS0.00173EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Incus 信任管理问题漏洞

Incus is a system container and virtual machine manager developed by LXC. Versions of Incus prior to 7.0.0 contained a vulnerability related to trust management. This vulnerability stemmed from a corrupted TLS verification logic in the OVN database connection logic. It could allow attackers to...

4.8CVSS5.8AI score0.00173EPSS
Exploits1References1
Snyk
Snyk
added 2025/05/01 1:43 p.m.2 views

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Overview github.com/elastic/elastic-agent/internal/pkg/agent/application is a single, unified way to add monitoring for logs, metrics, and other types of data to a host Affected versions of this package are vulnerable to Exposure of Sensitive System Information to an Unauthorized Control Sphere d...

7.1CVSS6.3AI score0.00153EPSS
Exploits0References2
Rows per page
Query Builder