Lucene search
K

1674 matches found

OSV
OSV
•added 2026/05/26 7:55 p.m.•12 views

USN-8280-3 linux-iot vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References7
Ubuntu
Ubuntu
•added 2026/05/26 7:55 p.m.•15 views

USN-8280-3: Linux kernel (IoT) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.1AI score0.96267EPSS
Exploits228
OSV
OSV
•added 2026/05/26 7:8 p.m.•7 views

USN-8305-2 linux-lowlatency-hwe-5.15 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References8
Ubuntu
Ubuntu
•added 2026/05/26 7:8 p.m.•25 views

USN-8305-2: Linux kernel (Low Latency) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.1AI score0.96267EPSS
Exploits228
OSV
OSV
•added 2026/05/26 7:0 p.m.•15 views

USN-8278-2 linux-azure vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References197
Ubuntu
Ubuntu
•added 2026/05/26 7:0 p.m.•17 views

USN-8278-2: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.8AI score0.96267EPSS
Exploits228
OSV
OSV
•added 2026/05/26 6:56 p.m.•7 views

USN-8310-1 linux-azure, linux-azure-6.17 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References23
Ubuntu
Ubuntu
•added 2026/05/26 6:56 p.m.•23 views

USN-8310-1: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.1AI score0.96267EPSS
Exploits228
RedHat Linux
RedHat Linux
•added 2026/05/26 12:59 p.m.•13 views

Apache Tomcat: Apache Tomcat: Authentication bypass due to CLIENT_CERT soft fail misconfiguration

A flaw was found in Apache Tomcat and Apache Tomcat Native. When CLIENTCERT authentication is configured with "soft fail" disabled, the authentication process may not correctly fail in certain scenarios. This vulnerability could allow an attacker to bypass expected client certificate...

9.1CVSS5.8AI score0.00715EPSS
Exploits1References5
RedHat Linux
RedHat Linux
•added 2026/05/26 12:59 p.m.•14 views

Apache Tomcat: Apache Tomcat: Authentication bypass via client certificate misconfiguration

A flaw was found in Apache Tomcat where OCSP-based certificate validation may incorrectly soft-fail during CLIENTCERT authentication, even when soft-fail is disabled, under certain FFM-related execution paths. This can result in client certificates being accepted despite failed or unverifiable...

6.5CVSS5.9AI score0.00469EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/26 12:55 p.m.•11 views

Apache Tomcat: Apache Tomcat: Authentication bypass via client certificate misconfiguration

A flaw was found in Apache Tomcat where OCSP-based certificate validation may incorrectly soft-fail during CLIENTCERT authentication, even when soft-fail is disabled, under certain FFM-related execution paths. This can result in client certificates being accepted despite failed or unverifiable...

6.5CVSS5.9AI score0.00469EPSS
Exploits0References5
RedHat Linux
RedHat Linux
•added 2026/05/26 12:55 p.m.•19 views

Apache Tomcat: Apache Tomcat: Authentication bypass due to CLIENT_CERT soft fail misconfiguration

A flaw was found in Apache Tomcat and Apache Tomcat Native. When CLIENTCERT authentication is configured with "soft fail" disabled, the authentication process may not correctly fail in certain scenarios. This vulnerability could allow an attacker to bypass expected client certificate...

9.1CVSS5.8AI score0.00715EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
•added 2026/05/26 12:0 a.m.•7 views

Ubuntu Pro Realtime 22.04 LTS : Linux kernel (Intel IoTG Real-time) vulnerabilities (USN-8305-1)

The remote Ubuntu Pro Realtime 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8305-1 advisory. It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Co...

9.8CVSS7.3AI score0.96267EPSS
Exploits228References8
OSV
OSV
•added 2026/05/25 11:21 p.m.•7 views

USN-8305-1 linux-intel-iot-realtime vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References8
Ubuntu
Ubuntu
•added 2026/05/25 11:21 p.m.•28 views

USN-8305-1: Linux kernel (Intel IoTG Real-time) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS7.3AI score0.96267EPSS
Exploits228
OSV
OSV
•added 2026/05/25 10:51 p.m.•10 views

USN-8279-3 linux-nvidia-tegra-igx vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References12
OSV
OSV
•added 2026/05/25 5:48 p.m.•15 views

USN-8289-2 linux-nvidia-6.8 vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS5.9AI score0.96267EPSS
Exploits228References196
Ubuntu
Ubuntu
•added 2026/05/25 5:48 p.m.•17 views

USN-8289-2: Linux kernel (NVIDIA) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS6.8AI score0.96267EPSS
Exploits228
Information Security Automation
Information Security Automation
•added 2026/05/25 5:0 p.m.•15 views

May "In the Trend of VM" (#27): high-profile vulnerabilities in Linux, ActiveMQ, SharePoint, and Adobe Acrobat Reader

May "In the Trend of VM" 27: high-profile vulnerabilities in Linux, ActiveMQ, SharePoint, and Adobe Acrobat Reader. Presenting the traditional monthly roundup of trending vulnerabilities according to Positive Technologies. While the previous April edition featured only one vulnerability, this one...

8.8CVSS7AI score0.96666EPSS
Exploits245
OSV
OSV
•added 2026/05/25 9:5 a.m.•10 views

MAL-2026-4317 Malicious code in jules-standard (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 68192c93adffde34c344bbc8448fe604a749ba448c9fd982f6ba9f8564ff4705 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

5.8AI score
Exploits0References1
Rows per page
Query Builder