Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.13 views

RHEL 9 : flatpak (RHSA-2026:23418)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:23418 advisory. Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fixes: flatpak: Flatpak:...

10CVSS8.3AI score0.0168EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/04 12:0 a.m.12 views

RockyLinux 9 : flatpak (RLSA-2026:21755)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:21755 advisory. flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options CVE-2026-34078 flatpak: Flatpak: Arbitrary file deletion on ho...

10CVSS8.2AI score0.0168EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.4 views

Amazon Linux 2023 : flatpak, flatpak-devel, flatpak-libs (ALAS2023-2026-1601)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1601 advisory. A complete sandbox escape vulnerability exists in Flatpak before 1.16.4. The Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitra...

10CVSS6AI score0.0168EPSS
Exploits0References6
Debian
Debian
added 2026/04/22 8:43 a.m.6 views

[SECURITY] [DSA 6223-1] flatpak security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6223-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 22, 2026 https://www.debian.org/security/faq -...

10CVSS7.8AI score0.0168EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.8 views

Debian dsa-6207 : flatpak - security update

The remote Debian 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6207 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6207-1 [email protected] https://www.debian.org/securit...

10CVSS8.5AI score0.0168EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.1 views

EUVD-2019-17706

Malware in sbrugna...

8.2CVSS8.1AI score0.00466EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/07/25 12:0 a.m.5 views

NewStart CGSL MAIN 7.02 : flatpak Multiple Vulnerabilities (NS-SA-2025-0146)

The remote NewStart CGSL host, running version MAIN 7.02, has flatpak packages installed that are affected by multiple vulnerabilities: - Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4 conta...

10CVSS7.9AI score0.00871EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.6 views

TencentOS Server 3: flatpak (TSSA-2022:0244)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2022:0244 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS6.8AI score0.01546EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/15 3:49 a.m.8 views

Security Bulletin: Vulnerabilities in Flatpak affects IBM watsonx Assistant for IBM Cloud Pak for Data

Summary Potential vulnerabilities in Flatpak has been identified that affects IBM watsonx Assistant for IBM Cloud Pak for Data. The vulnerabilities have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-32462 DESCRIPTION: Flatpak could allow a local...

10CVSS9.8AI score0.01283EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/12/11 12:0 a.m.8 views

Amazon Linux 2022 : flatpak, flatpak-devel, flatpak-libs (ALAS2022-2022-021)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-021 advisory. An incorrect authorization vulnerability was found in Flatpak. Flatpak does not properly validate that the permissions displayed to the user for an app at install time match the actual...

8.6CVSS7.2AI score0.01666EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/04/02 12:0 a.m.34 views

SUSE SLES15: flatpak / flatpak-devel / flatpak-zsh-completion / libflatpak0 / etc (SUSE-SU-2023:1713-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:1713-1 advisory. - CVE-2023-28101: Fixed misleading terminal output with metadata with ANSI control codes bsc1209410. - CVE-2023-28100: Fixed...

10CVSS6.7AI score0.00887EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/03/16 3:55 p.m.10 views

CVE-2023-28101 Flatpak metadata with ANSI control codes can cause misleading terminal output

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. In versions prior to 1.10.8, 1.12.8, 1.14.4, and 1.15.4, if an attacker publishes a Flatpak app with elevated permissions, they can hide those permissions from users of the flatpak1 command-line...

5CVSS5AI score0.00887EPSS
Exploits0References5
OSV
OSV
added 2022/09/01 1:47 p.m.5 views

SUSE-SU-2022:2990-1 Security update for flatpak

This update for flatpak fixes the following issues: - CVE-2021-21381: Fixed an issue where a sandboxed application could read and write arbitrary host files via special tokens in the .desktop file bsc1183459. - CVE-2021-21261: Fixed a sandbox escape issue via the flatpak-portal service bsc1180996...

8.8CVSS8.4AI score0.01546EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2022/03/05 12:0 a.m.27 views

SUSE SLED15: flatpak / flatpak-devel / flatpak-zsh-completion / libflatpak0 / etc (SUSE-SU-2022:0712-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0712-1 advisory. Update to flatpak 1.10.7: - CVE-2022-21682: Introduce new option --nofilesystem=host:reset to support...

8.6CVSS7AI score0.01666EPSS
Exploits0References7
Rows per page
Query Builder