Lucene search
K

19633 matches found

Wolfi
Wolfi
added last week4 views

GHSA-8HVH-CJ39-G625 vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week4 views

GHSA-H7J5-3779-2JPX vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week3 views

CVE-2026-11003 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS7.3AI score0.00456EPSS
Exploits0
Wolfi
Wolfi
added last week5 views

CVE-2026-12444 vulnerabilities

Vulnerabilities for packages: chromium...

5.5CVSS5.8AI score0.00143EPSS
Exploits0
Wolfi
Wolfi
added last week4 views

GHSA-XF76-839H-PFPM vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week3 views

GHSA-VQR5-H29Q-9XVM vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week4 views

GHSA-WGM3-F6X3-RJ6J vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week2 views

GHSA-F2JV-HXPH-R5WM vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added last week6 views

GHSA-FQ52-757J-7H2P vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Debian CVE
Debian CVE
added last week4 views

CVE-2026-53345

In the Linux kernel, the following vulnerability has been resolved: KVM: Don't WARN if memory is dirtied without a vCPU when the VM is dying When marking a page dirty, complain about not having a running/loaded vCPU if and only if the VM is still alive, i.e. its refcount is non-zero. This will...

5.8AI score0.00156EPSS
Exploits0
EUVD
EUVD
added 2026/07/01 12:34 a.m.9 views

EUVD-2026-40453

n8n before 2.25.7 and 2.26.x before 2.26.2 contains an abstract syntax tree AST security validator bypass in the Python Code node. An authenticated user with permission to create or modify workflows containing a Python Code node can bypass the validator and access the task executor module...

5.3CVSS5.8AI score0.00245EPSS
Exploits0References3
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-56777

n8n before 2.25.7 and 2.26.x before 2.26.2 contains an abstract syntax tree AST security validator bypass in the Python Code node. An authenticated user with permission to create or modify workflows containing a Python Code node can bypass the validator and access the task executor module...

5.3CVSS0.00245EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:17 p.m.6 views

CVE-2026-56278

Flowise before 3.1.0 affected versions 3.0.13 and earlier uses a weak hardcoded default secret 'flowise' for the express-session middleware when the EXPRESSSESSIONSECRET environment variable is not set packages/server/src/enterprise/middleware/passport/index.ts. Because this default secret is...

9.3CVSS0.0036EPSS
Exploits0References2
NVD
NVD
added 2026/06/30 11:17 p.m.6 views

CVE-2026-14091

Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.0028EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/30 10:8 p.m.29 views

CVE-2026-56777 n8n - AST Validator Bypass in Python Code Node

n8n before 2.25.7 and 2.26.x before 2.26.2 contains an abstract syntax tree AST security validator bypass in the Python Code node. An authenticated user with permission to create or modify workflows containing a Python Code node can bypass the validator and access the task executor module...

5.3CVSS0.00245EPSS
Exploits0References2
CVE
CVE
added 2026/06/30 10:8 p.m.16 views

CVE-2026-56777

The CVE affects n8n self‑hosted instances running Python Task Runner with the Python Code node. Versions affected: before 2.25.7 and before 2.26.2. Issue: AST security validator bypass in Python Code node allows an authenticated user with workflow modification rights to bypass the validator and a...

5.3CVSS5.8AI score0.00245EPSS
Exploits0References2Affected Software1
Wolfi
Wolfi
added 2026/06/30 8:21 p.m.5 views

GHSA-Q9J8-24P8-JQ8J vulnerabilities

Vulnerabilities for packages: gitlab-runner...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/30 7:21 p.m.7 views

CVE-2026-57231

A flaw was found in Podman, a tool for managing OCI containers and pods. A malicious container image can be crafted with an environment variable that has a key but no value, or an asterisk , to trick Podman. This vulnerability causes Podman to pass host environment variables into the container...

7.5CVSS5.6AI score0.0026EPSS
Exploits0References5
OSV
OSV
added 2026/06/30 6:20 p.m.3 views

GHSA-M63V-2G9W-2W6V Fission: Environment Runtime.Container and Builder.Container SecurityContext bypass allows privileged pod creation

Summary A follow-up bypass of the round-4 PodSpec hardening GHSA-gx55-f84r-v3r7, GHSA-wmgg-3p4h-48x7, GHSA-v455-mv2v-5g92. Those advisories validate and sanitize the PodSpec spec.runtime.podSpec / spec.builder.podSpec / function.spec.podSpec, but the Environment CRD also exposes...

9.9CVSS5.8AI score0.0029EPSS
Exploits0References6
EUVD
EUVD
added 2026/06/30 6:19 p.m.11 views

EUVD-2026-36100

Fission Environment CRD podspec passthrough enables hostPID/hostNetwork/privileged pods, node escape...

9.9CVSS5.8AI score0.00274EPSS
Exploits0References5
Rows per page
Query Builder