Lucene search
K

6 matches found

NVD
NVD
added 2026/06/29 10:16 a.m.9 views

CVE-2026-13601

A flaw was found in Yelp due to an overly permissive Content Security Policy CSP implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an untrusted CSS stylesheet within a structured SVG document,...

7.1CVSS0.0012EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/06/29 9:20 a.m.7 views

CVE-2026-13601

A flaw was found in Yelp due to an overly permissive Content Security Policy CSP implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an untrusted CSS stylesheet within a structured SVG document,...

7.1CVSS5.9AI score0.0012EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/06/29 12:0 a.m.14 views

PT-2026-53247

Name of the Vulnerable Software and Affected Versions Yelp affected versions not specified Description A flaw exists due to an overly permissive Content Security Policy CSP implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI porta...

7.1CVSS6.2AI score0.0012EPSS
Exploits0References18
OSV
OSV
added 2022/09/15 2:23 p.m.8 views

SUSE-SU-2022:3284-1 Security update for flatpak

This update for flatpak fixes the following issues: - CVE-2021-41133: Fixed sandbox bypass via recent syscalls bsc1191507. - CVE-2021-43860: Fixed metadata validation bsc1194610...

8.8CVSS8.8AI score0.01346EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2021/11/01 1:42 p.m.5 views

flatpak: Sandbox bypass via recent VFS-manipulating syscalls

A flaw was found in the flatpak package. It is susceptible to a software flaw that can deceive portals and other host-OS services into treating the flatpak app as an ordinary, non-sandboxed host-OS process. This flaw allows the escalation of privileges that the corresponding services presume the...

8.8CVSS5.8AI score0.00406EPSS
Exploits0References4
OSV
OSV
added 2021/10/20 6:40 a.m.7 views

OPENSUSE-SU-2021:3472-1 Security update for flatpak

This update for flatpak fixes the following issues: - Update to version 1.10.5: - CVE-2021-41133: Fixed a bug that could lead to sandbox bypass via recent VFS-manipulating syscalls. bsc1191507...

8.8CVSS8.9AI score0.00406EPSS
Exploits0References3
Rows per page
Query Builder