1158 matches found
CVE-2026-53189 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53185 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53181 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53186 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53184 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
GHSA-4PQW-3H25-QRQ3 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
GHSA-5Q2P-7748-G6QP vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
GHSA-5R3H-V82J-R7RR vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53212 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53216 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-53182 vulnerabilities
Vulnerabilities for packages: linux-azure, linux-vmware, linux-qemu, linux-qemu-melange, linux-aws, linux-gcp...
CVE-2026-49297
Apache Airflow's Google provider operators GCSToSFTPOperator and GCSTimeSpanFileTransformOperator joined GCS object names returned by the bucket listing API directly to a destination filesystem path without normalisation or containment check. A user with write access to the source GCS bucket...
CVE-2026-49297
Apache Airflow's Google provider operators GCSToSFTPOperator and GCSTimeSpanFileTransformOperator joined GCS object names returned by the bucket listing API directly to a destination filesystem path without normalisation or containment check. A user with write access to the source GCS bucket...
[SECURITY] Fedora 43 Update: rclone-1.74.3-1.fc43
"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Driv e, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files...
[SECURITY] Fedora 44 Update: rclone-1.74.3-1.fc44
"rsync for cloud storage" - Google Drive, S3, Dropbox, Backblaze B2, One Driv e, Swift, Hubic, Wasabi, Google Cloud Storage, Azure Blob, Azure Files, Yandex Files...
BIT-GHOST-2026-53948 Ghost: File Upload Content-Type Spoofing
Ghost is a Node.js content management system. From 6.19.4 until 6.21.1, insufficient validation of the client-supplied Content-Type on Ghost's Admin API file upload endpoint allowed uploaded files to be served from the site with an attacker-chosen content type on S3/GCS storage backends. On...
CVE-2026-13316
A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...
EUVD-2026-40281
A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component...
CVE-2026-13316
Foreman (HTTP proxies: http_proxies_controller, http_proxy) is affected by a flaw that allows SSRF, enabling access to cloud metadata services in AWS/GCP/Azure environments via modified HTTP parameters. Root cause involves unvalidated/test_url parameters in Foreman’s configuration paths. Impact i...
CVE-2026-13316
A flaw has been found in foreman when HTTP parameters are modified in httpproxiescontroller and httpproxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component. Mitigation Mitigation for this issue is either not availab...