CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

91 matches found

UBUNTU-CVE-2026-42306

Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version 2.0.0-beta.14, a race condition during docker cp mount setup allows a malicious container to redirect a bind mount target to an arbitrary...

7.2CVSS5.3AI score0.00105EPSS

Exploits0References3

Tenable Nessus•added 4 days ago•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-42306

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moby is an open source container framework. In Docker Engine prior to version 29.5.1, Docker Daemon versions 28.5.2 and prior, and Moby Daemon prior to version...

7.2CVSS5.4AI score0.00105EPSS

Exploits0References2

OSV•added 5 days ago•4 views

DEBIAN-CVE-2026-42306

7.2CVSS5.3AI score0.00105EPSS

Exploits0References1

NVD•added 5 days ago•7 views

CVE-2026-42306

7.2CVSS0.00105EPSS

Exploits0References1

OSV•added 5 days ago•4 views

DEBIAN-CVE-2026-41568

6.1CVSS5.3AI score0.001EPSS

Exploits0References1

Cvelist•added 5 days ago•19 views

CVE-2026-42306 Moby: Race condition in docker cp allows bind mount redirection to host path

7.2CVSS0.00105EPSS

Exploits0References1

Vulnrichment•added 5 days ago•7 views

CVE-2026-42306 Moby: Race condition in docker cp allows bind mount redirection to host path

7.2CVSS5.2AI score0.00105EPSS

Exploits0References1

EUVD•added 5 days ago•8 views

EUVD-2026-36528

7.2CVSS5.2AI score0.00105EPSS

Exploits0References1

CVE•added 5 days ago•17 views

CVE-2026-42306

CVE-2026-42306 affects Moby/Docker: a race condition during docker cp mount setup could redirect a bind mount target to an arbitrary host path, potentially overwriting host files or causing denial of service. Affected are Docker Engine prior to 29.5.1, Docker Daemon 28.5.2 and earlier, and Moby D...

7.2CVSS5.2AI score0.00105EPSS

Exploits0References1

Amazon•added 2026/06/08 12:0 a.m.•11 views

Important: docker

Issue Overview: The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated client...

10CVSS5.6AI score0.00319EPSS

Exploits0

RedhatCVE•added 2026/06/05 7:25 p.m.•7 views

CVE-2026-44002

A flaw was found in vm2 before 3.11.0. The CallSite wrapper blocks getThis and getFunction but returns unsanitized host absolute paths from getFileName, allowing sandboxed code to learn host directory layout, library paths, and framework versions. Fixed in 3.11.0. Mitigation Upgrade to vm2 3.11.0...

5.8CVSS5.2AI score0.00241EPSS

Exploits1References4

RedhatCVE•added 2026/06/05 7:12 p.m.•5 views

CVE-2026-44850

Portainer Community Edition is a lightweight service delivery platform for containerized applications that can be used to manage Docker, Swarm, Kubernetes and ACI environments. From 2.33.0 to before 2.33.8, 2.39.2, and 2.41.0, Portainer offers an environment-level Disable bind mounts for...

8.5CVSS5.5AI score0.0018EPSS

Exploits1References1

F5 Networks•added 2026/06/01 3:16 p.m.•12 views

K000161495: Rancher Local Path Provisioner vulnerability CVE-2025-62878

Security Advisory Description A malicious user can manipulate the parameters.pathPattern to create PersistentVolumes in arbitrary locations on the host node, potentially overwriting sensitive files or gaining access to unintended directories. CVE-2025-62878 Impact There is no impact; F5 products...

9.9CVSS5.9AI score0.00581EPSS

Exploits1

RedhatCVE•added 2026/05/30 2:12 a.m.•7 views

CVE-2026-44543

Local Path Provisioner provides a way for the Kubernetes users to utilize the local storage in each node. Prior to 0.0.36, a malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used by...

8.7CVSS5.8AI score0.00361EPSS

Exploits0References1

ATTACKERKB•added 2026/05/28 9:3 p.m.•9 views

CVE-2026-44850

5.8AI score0.0018EPSS

Exploits1References2Affected Software1

NVD•added 2026/05/28 5:16 p.m.•9 views

CVE-2026-44543

8.7CVSS0.00361EPSS

Exploits0References1

Cvelist•added 2026/05/28 4:41 p.m.•29 views

CVE-2026-44543 Local Path Provisioner: HelperPod Template Injection

8.7CVSS0.00361EPSS

Exploits0References1

ATTACKERKB•added 2026/05/28 4:41 p.m.•4 views

CVE-2026-44543

8.7CVSS5.8AI score0.00361EPSS

Exploits0References2Affected Software1

OSV•added 2026/05/28 12:0 a.m.•6 views

ALSA-2026:21755 Important: flatpak security update

Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. Security Fixes: flatpak: Flatpak: Arbitrary code execution via crafted symlinks in sandbox-expose options CVE-2026-34078 flatpak: Flatpak: Arbitrary file deletion on host via improper cache file...

10CVSS6.4AI score0.01636EPSS

Exploits0References6

Github Security Blog•added 2026/05/27 10:50 p.m.•11 views

Kata guest escape: runtime-rs guest-root to host-root escape via virtiofs

Summary In the runtime-rs standalone virtio-fs path, verified here with QEMU and verified with Cloud Hypervisor too, Kata Containers runs host virtiofsd as root with: --sandbox none --seccomp none If an attacker has root-equivalent execution inside the Kata guest VM, they can send raw FUSE reques...

6AI score0.00067EPSS

Exploits0References4Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by