Lucene search
K

17345 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.3 views

Google Chrome < 88.0.4324.104 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 88.0.4324.104. It is, therefore, affected by multiple vulnerabilities as referenced in the 202101stable-channel-update-for-desktop19 advisory. - Inappropriate implementation in DevTools in Google Chrome prior to...

9.6CVSS7.9AI score0.23406EPSS
Exploits4References53
RedhatCVE
RedhatCVE
added 2025/11/19 8:53 a.m.3 views

CVE-2024-7017

Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.8CVSS7AI score0.00176EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/11/19 8:18 a.m.3 views

CVE-2025-13097

Inappropriate implementation in DevTools in Google Chrome prior to 136.0.7103.59 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS7AI score0.00144EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/11/19 12:0 a.m.5 views

AlmaLinux 9 : runc (ALSA-2025:20957)

The remote AlmaLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ALSA-2025:20957 advisory. runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-31133 runc: container escape with malicious config due to /dev/conso...

8.4CVSS7AI score0.00673EPSS
Exploits4References5
Tenable Nessus
Tenable Nessus
added 2025/11/19 12:0 a.m.3 views

AlmaLinux 9 : podman (ALSA-2025:21702)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:21702 advisory. runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects CVE-2025-52881 Tenable has extracted the preceding...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/19 12:0 a.m.3 views

RHEL 9 : kernel (RHSA-2025:21760)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21760 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ALSA: usb-audio: Validate UAC...

7.8CVSS7AI score0.00331EPSS
Exploits0References21
NVD
NVD
added 2025/11/18 7:15 p.m.2 views

CVE-2025-63693

The comment editing template dzz/comment/template/editform.htm in DzzOffice 2.3.x lacks adequate security escaping for user-controllable data in multiple contexts, including HTML and JavaScript strings. This allows low-privilege attackers to construct comment content or request parameters and...

5.4CVSS0.00151EPSS
Exploits1References2
OSV
OSV
added 2025/11/18 7:15 p.m.5 views

CVE-2025-63693

The comment editing template dzz/comment/template/editform.htm in DzzOffice 2.3.x lacks adequate security escaping for user-controllable data in multiple contexts, including HTML and JavaScript strings. This allows low-privilege attackers to construct comment content or request parameters and...

5.4CVSS7.3AI score
Exploits0References2
OSV
OSV
added 2025/11/18 3:44 p.m.4 views

GO-2025-4097 Container escape with malicious config due to /dev/console mount and related races in github.com/opencontainers/runc

Container escape with malicious config due to /dev/console mount and related races in github.com/opencontainers/runc...

8.4CVSS6.8AI score0.00526EPSS
Exploits1References9
OSV
OSV
added 2025/11/18 3:44 p.m.3 views

GO-2025-4096 Container escape via "masked path" abuse due to mount race conditions in github.com/opencontainers/runc

Container escape via "masked path" abuse due to mount race conditions in github.com/opencontainers/runc...

7.8CVSS6.8AI score0.00673EPSS
Exploits2References5
OSV
OSV
added 2025/11/18 3:44 p.m.5 views

GO-2025-4098 Container escape and DDoS due to arbitrary write gadgets and procfs write redirects in github.com/opencontainers/runc

Container escape and DDoS due to arbitrary write gadgets and procfs write redirects in github.com/opencontainers/runc...

7.5CVSS7AI score0.00526EPSS
Exploits1References28
RedHat Linux
RedHat Linux
added 2025/11/18 3:34 p.m.13 views

Important: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/11/18 3:34 p.m.4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/18 12:31 a.m.4 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/18 12:31 a.m.5 views

Important: Red Hat Security Advisory: buildah security update

An update for buildah is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/11/18 12:16 a.m.2 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/18 12:16 a.m.3 views

Important: Red Hat Security Advisory: buildah security update

An update for buildah is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References2
CNVD
CNVD
added 2025/11/18 12:0 a.m.4 views

Google Chrome DevTools Improperly Implemented Vulnerability

Google Chrome is a free web browser developed by Google Inc. Google Chrome suffers from a DevTools mal-implementation vulnerability that can be exploited by an attacker to cause a sandbox escape...

7.5CVSS6.9AI score0.00176EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/18 12:0 a.m.4 views

Google Chrome Code Problem Vulnerability (CNVD-2025-29240)

Google Chrome is a web browser developed by Google. A security vulnerability exists in Google Chrome versions prior to 136.0.7103.59, which stems from a flaw in the security handling of the sandboxing mechanism. The vulnerability can be exploited by an attacker to achieve a sandbox escape via a...

5.4CVSS6.8AI score0.00144EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.2 views

RHEL 9 : buildah (RHSA-2025:21634)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:21634 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References4
Rows per page
Query Builder