Lucene search
K

17368 matches found

CNNVD
CNNVD
added 2025/11/14 12:0 a.m.4 views

Google Chrome 安全漏洞

Google Chrome is a web browser developed by Google. A security vulnerability exists in Google Chrome versions prior to 136.0.7103.59, which stems from a flaw in the security handling of the sandboxing mechanism. The vulnerability can be exploited by an attacker to achieve a sandbox escape via a...

5.4CVSS6.3AI score0.00144EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/14 12:0 a.m.4 views

Google Chrome 安全漏洞

Google Chrome is a free web browser developed by Google Inc. Google Chrome suffers from a DevTools mal-implementation vulnerability that can be exploited by an attacker to cause a sandbox escape...

7.5CVSS6.5AI score0.00176EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/14 12:0 a.m.3 views

PT-2025-46935

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 136.0.7103.59 Description An improper implementation in the DevTools component of Google Chrome could allow a remote attacker to potentially escape the sandbox through a crafted HTML page. Recommendations Update...

5.4CVSS6.8AI score0.00144EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.2 views

Mozilla Thunderbird < 145.0

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 145.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-90 advisory. - Memory safety bugs present in Firefox 144 and Thunderbird 144. Some of these bugs showed evidence of...

9.8CVSS7.7AI score0.0041EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/11/14 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-7017

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in DevTools in Google Chrome prior to 126.0.6478.182 allowed a remote attacker to potentially perform a sandbox escape via a crafte...

7.5CVSS5.5AI score0.00176EPSS
Exploits1References2
Mageia
Mageia
added 2025/11/13 11:37 p.m.15 views

Updated ruby packages fix security vulnerabilities

Net::IMAP vulnerable to possible DoS by memory exhaustion. CVE-2025-25186 In the CGI gem before 0.4.2 for Ruby, the CGI::Cookie.parse method in the CGI library contains a potential Denial of Service DoS vulnerability. The method does not impose any limit on the length of the raw cookie value it...

7.5CVSS7.2AI score0.00784EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/13 7:8 p.m.18 views

CVE-2024-45301

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS7.2AI score0.00253EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/11/13 10:51 a.m.8 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/13 10:51 a.m.4 views

runc: container escape with malicious config due to /dev/console mount and related races

A flaw was found in runc. CVE-2025-52565 is very similar in concept and application toCVE-2025-31133, except that it exploits a flaw in /dev/console bind-mounts. When creating the /dev/console bind-mount to /dev/pts/$n, if an attacker replaces /dev/pts/$n with a symlink then runc will bind-mount...

8.4CVSS5.7AI score0.00526EPSS
Exploits1References5
RedHat Linux
RedHat Linux
added 2025/11/13 10:51 a.m.3 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.00673EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2025/11/13 9:10 a.m.3 views

runc: opencontainers/selinux: container escape and denial of service due to arbitrary write gadgets and procfs write redirects

A flaw was found in runc. This attack is a more sophisticated variant of CVE-2019-16884, which was a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process...

7.5CVSS6.6AI score0.00526EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/11/13 9:10 a.m.6 views

Important: Red Hat Security Advisory: podman security update

An update for podman is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS7.1AI score0.00526EPSS
Exploits1References2
Veracode
Veracode
added 2025/11/13 6:52 a.m.8 views

Improper Input Validation

github.com/opencontainers/runc is vulnerable to improper input validation. The vulnerability is due to insufficient verification of the bind-mount source /dev/null, which allows an attacker to exploit it via arbitrary mount manipulation, leading to host information disclosure, denial of service,...

7.8CVSS8AI score0.00673EPSS
Exploits2References7Affected Software2
SUSE CVE
SUSE CVE
added 2025/11/13 12:43 a.m.2 views

SUSE CVE-2025-13023

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.5CVSS7.3AI score0.00317EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/11/13 12:43 a.m.2 views

SUSE CVE-2025-13026

Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

7.5CVSS7.3AI score0.00317EPSS
Exploits0References3
OSV
OSV
added 2025/11/13 12:0 a.m.5 views

ALSA-2025:21232 Important: container-tools:rhel8 security update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: runc: container escape via 'masked path' abuse due to mount race conditions CVE-2025-31133 runc: container escape with malicious config due to /dev/console mount and...

8.4CVSS6.8AI score0.00673EPSS
Exploits4References8
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2025:4081-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4081-1 advisory. - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 -...

8.4CVSS6.9AI score0.00673EPSS
Exploits4References9
OpenVAS
OpenVAS
added 2025/11/13 12:0 a.m.1 views

SUSE: Security Advisory (SUSE-SU-2025:4079-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7AI score0.00673EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2025/11/13 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2025:4081-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.4CVSS7AI score0.00673EPSS
Exploits4References5
OSV
OSV
added 2025/11/13 12:0 a.m.6 views

ALSA-2025:21220 Important: podman security update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: runc: container escape and denial of service due to arbitrary write gadgets and procfs...

7.5CVSS6.9AI score0.00526EPSS
Exploits1References4
Rows per page
Query Builder