Lucene search
K

17368 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.1 views

SUSE SLES15 Security Update : podman (SUSE-SU-2025:4080-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4080-1 advisory. - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 - CVE-2025-52565: Fixed...

8.4CVSS6.9AI score0.00673EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2025:4081-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4081-1 advisory. - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 -...

8.4CVSS6.9AI score0.00673EPSS
Exploits4References9
NVD
NVD
added 2025/11/12 7:15 p.m.7 views

CVE-2024-45301

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS0.00253EPSS
Exploits0References1
OSV
OSV
added 2025/11/12 6:26 p.m.7 views

CVE-2024-45301 ZDI-CAN-24744: Mintty Path Conversion Improper Input Validation Information Disclosure Vulnerability

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS7.1AI score0.00253EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/12 6:26 p.m.3 views

CVE-2024-45301 ZDI-CAN-24744: Mintty Path Conversion Improper Input Validation Information Disclosure Vulnerability

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS6.8AI score0.00253EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 6:26 p.m.6 views

CVE-2024-45301 ZDI-CAN-24744: Mintty Path Conversion Improper Input Validation Information Disclosure Vulnerability

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS0.00253EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/12 6:26 p.m.8 views

EUVD-2024-55068

Mintty is a terminal emulator for Cygwin, MSYS, and WSL. In versions 2.3.6 through 3.7.4, several escape sequences can cause the mintty process to access a file in a specific path. It is triggered by simply printing them out on bash. An attacker can specify an arbitrary network path, negotiate an...

5.3CVSS6.7AI score0.00253EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/11/12 3:2 p.m.12 views

Security update for tomcat11

This update for tomcat11 fixes the following issues: Update to Tomcat 11.0.13 CVE-2025-55752: Fixed directory traversal via rewrite with possible RCE if PUT is enabled bsc1252753 CVE-2025-55754: Fixed improper neutralization of escape, meta, or control sequences vulnerability bsc1252905...

7.7CVSS9.2AI score0.66535EPSS
Exploits4References12
OSV
OSV
added 2025/11/12 3:2 p.m.9 views

SUSE-SU-2025:4086-1 Security update for tomcat11

This update for tomcat11 fixes the following issues: Update to Tomcat 11.0.13 - CVE-2025-55752: Fixed directory traversal via rewrite with possible RCE if PUT is enabled bsc1252753 - CVE-2025-55754: Fixed improper neutralization of escape, meta, or control sequences vulnerability bsc1252905 -...

9.6CVSS9.5AI score0.66535EPSS
Exploits4References7
SUSE Linux
SUSE Linux
added 2025/11/12 12:49 p.m.21 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 CVE-2025-52881: Fixed...

7.8CVSS6.8AI score0.00673EPSS
Exploits4References10
OSV
OSV
added 2025/11/12 12:49 p.m.3 views

SUSE-SU-2025:4081-1 Security update for podman

This update for podman fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 - CVE-2025-52881: Fixed...

8.4CVSS6.8AI score0.00673EPSS
Exploits4References6
SUSE Linux
SUSE Linux
added 2025/11/12 12:49 p.m.3 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 CVE-2025-52881: Fixed...

7.8CVSS6.9AI score0.00673EPSS
Exploits4References12
OSV
OSV
added 2025/11/12 12:49 p.m.3 views

SUSE-SU-2025:4080-1 Security update for podman

This update for podman fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 - CVE-2025-52881: Fixed...

8.4CVSS6.8AI score0.00673EPSS
Exploits4References7
SUSE Linux
SUSE Linux
added 2025/11/12 12:48 p.m.14 views

Security update for podman

This update for podman fixes the following issues: CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 CVE-2025-52881: Fixed...

7.8CVSS6.9AI score0.00673EPSS
Exploits4References10
OSV
OSV
added 2025/11/12 12:48 p.m.5 views

SUSE-SU-2025:4079-1 Security update for podman

This update for podman fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 - CVE-2025-52881: Fixed...

8.4CVSS6.8AI score0.00673EPSS
Exploits4References6
SUSE Linux
SUSE Linux
added 2025/11/12 10:36 a.m.4 views

Security update for buildah

This update for buildah fixes the following issues: CVE-2025-52881: Fixed container breakouts by bypassing runc's restrictions for writing to arbitrary /proc files bsc1253096 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

7.8CVSS6.9AI score0.00526EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/11/12 12:0 a.m.4 views

mintty 输入验证错误漏洞

mintty is the Cygwin terminal emulator for the mintty open source application, also available for MSYS and Msys2. An input validation error vulnerability exists in mintty versions 2.3.6 through 3.7.4, which stems from mishandling of escape sequences and can lead to NTLM hash disclosure...

5.3CVSS6.5AI score0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-13023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-13026

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Sandbox escape due to incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 145 and Thunderbird 145...

9.8CVSS7.3AI score0.00317EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/11/11 11:42 p.m.12 views

CVE-2025-11578

A privilege escalation vulnerability was identified in GitHub Enterprise Server that allowed an authenticated Enterprise admin to gain root SSH access to the appliance by exploiting a symlink escape in pre-receive hook environments. By crafting a malicious repository and environment, an attacker...

7.5CVSS7.3AI score0.00584EPSS
Exploits0References1
Rows per page
Query Builder