Lucene search
K

306 matches found

Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.10 views

PT-2026-5772

A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different directories...

4.6CVSS5.4AI score0.00179EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.11 views

Astra Linux – Vulnerability in libfile-find-rule-perl

File::Find::Rule in Perl version 0.34 is vulnerable to arbitrary code execution when grep encounters a crafted filename. A file handle is opened using the 2-argument form of open, allowing an attacker-controlled filename to specify the MODE parameter, thereby turning the filename into an executab...

8.8CVSS6.2AI score0.00736EPSS
Exploits0References3
Broadcom
Broadcom
added 2026/01/27 12:0 a.m.14 views

Directory transversal vulnerability in Brocade Fabric OS before 9.2.1 using grep command (CVE-2025-58380)

A vulnerability in Brocade Fabric OS before 9.2.1 could allow an authenticated attacker with admin privileges using the shell command “grep” to modify the path variables and move upwards in the directory structure or to traverse to different directories...

4.6CVSS5.9AI score0.00179EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/16 5:26 p.m.14 views

CVE-2026-22265

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnerability exists in the log viewing functionality that allows authenticated users to execute arbitrary system commands. The vulnerability is in app/modules/roxywi/logs.py...

7.5CVSS7.9AI score0.02117EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 4 : grep-2.20-3.AXS4 (AXSA:2015-422:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2015-422:01 advisory. The GNU versions of commonly used grep utilities. Grep searches through textual input for lines which contain a match to a specified pattern and then...

4.4CVSS8.2AI score0.01022EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : grep-2.20-2.el7 (AXSA:2015-669:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2015-669:01 advisory. The GNU versions of commonly used grep utilities. Grep searches through textual input for lines which contain a match to a specified pattern and then prints t...

2.1CVSS7.9AI score0.00486EPSS
Exploits1References2
NVD
NVD
added 2026/01/15 5:16 p.m.10 views

CVE-2026-22265

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnerability exists in the log viewing functionality that allows authenticated users to execute arbitrary system commands. The vulnerability is in app/modules/roxywi/logs.py...

7.5CVSS0.02117EPSS
Exploits1References3
OSV
OSV
added 2026/01/15 4:27 p.m.8 views

CVE-2026-22265 Roxy-WI has a Command Injection via grep parameter in logs.py allows authenticated RCE

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnerability exists in the log viewing functionality that allows authenticated users to execute arbitrary system commands. The vulnerability is in app/modules/roxywi/logs.py...

7.5CVSS7.8AI score0.02117EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2026/01/15 4:27 p.m.6 views

CVE-2026-22265 Roxy-WI has a Command Injection via grep parameter in logs.py allows authenticated RCE

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnerability exists in the log viewing functionality that allows authenticated users to execute arbitrary system commands. The vulnerability is in app/modules/roxywi/logs.py...

7.5CVSS7.5AI score0.02117EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/01/15 4:27 p.m.25 views

CVE-2026-22265 Roxy-WI has a Command Injection via grep parameter in logs.py allows authenticated RCE

Roxy-WI is a web interface for managing Haproxy, Nginx, Apache and Keepalived servers. Prior to 8.2.8.2, command injection vulnerability exists in the log viewing functionality that allows authenticated users to execute arbitrary system commands. The vulnerability is in app/modules/roxywi/logs.py...

7.5CVSS0.02117EPSS
Exploits1References3
Packet Storm News
Packet Storm News
added 2025/12/19 12:0 a.m.7 views

GRAudit Grep Auditing Tool 4.0

Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility, grep. It's comparable to other static analysis applications like RATS, SWAAT, and flaw-finder while keeping the technical requirements to a minimum and being very...

7.1AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.3 views

EUVD-2025-178026

Malicious code in long-class-report-grep-catch npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.5 views

EUVD-2025-175665

Malicious code in warn-bash-grep-array-test npm...

6.6AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/13 3:23 a.m.6 views

Malicious code in catch-stack-load-public-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 15c509a0b517637027dd9226985a76750f86dedd7bb0dcfaf6449347750210a7 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.2 views

EUVD-2025-176588

Malicious code in route-permission-grep-quick-debug npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.1 views

EUVD-2025-179743

Malicious code in chi-route-good-integer-grep npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.2 views

EUVD-2025-176696

Malicious code in report-easy-fast-star-grep npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.4 views

EUVD-2025-179138

Malicious code in encrypt-link-alert-grep-moon npm...

6.6AI score
Exploits0
EUVD
EUVD
added 2025/11/13 3:23 a.m.3 views

EUVD-2025-177882

Malicious code in meta-load-thread-grep-decompress npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/13 3:23 a.m.4 views

MAL-2025-186139 Malicious code in chi-route-good-integer-grep (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fdf3808047bfb574e402fb26150085e65281d4b7fcfa053f879b3931c17b6b39 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Rows per page
Query Builder