16 matches found
CVE-2026-56325
Capgo CVE-2026-56325 affects Capgo versions prior to 12.128.2. The preview subdomain resolver uses ILIKE (case-insensitive) matching for app_id lookups instead of exact matching, allowing underscore characters to act as wildcards. This can cause unintended pattern matches, potentially breaking pr...
crun: crun: Privilege escalation due to incorrect parsing of the `--user` option
A flaw was found in crun, an open-source OCI Container Runtime. A local user can exploit this vulnerability due to incorrect parsing of the --user option when using crun exec. The value 1 is misinterpreted as root privileges User ID 0 and Group ID 0 instead of the intended User ID 1 and Group ID ...
Security update for coredns (moderate)
openSUSE Security Update: Security update for coredns Announcement ID: openSUSE-SU-2025:0400-1 Rating: moderate References: 1249389 Cross-References: CVE-2025-58063 CVSS scores: CVE-2025-58063 SUSE: 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: openSUSE Backports SLE-15-SP6 ...
Security update for coredns (moderate)
openSUSE Security Update: Security update for coredns Announcement ID: openSUSE-SU-2025:0401-1 Rating: moderate References: 1249389 Cross-References: CVE-2025-58063 CVSS scores: CVE-2025-58063 SUSE: 5.4 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L Affected Products: openSUSE Backports SLE-15-SP7 ...
EUVD-2023-28614
Malicious code in bioql PyPI...
CVE-2023-24599
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
CVE-2023-24599
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
CVE-2023-24599
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
Type confusion
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
CVE-2023-24599
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
PT-2023-19701 · Open Xchange · Ox App Suite
Name of the Vulnerable Software and Affected Versions: OX App Suite versions prior to 7.10.6-rev37 Description: The issue allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, also referred to as "ID confusion." Recommendations: For versions prior to...
CVE-2023-24599
OX App Suite before backend 7.10.6-rev37 allows authenticated users to change the appointments of arbitrary users via conflicting ID numbers, aka "ID confusion."...
CVE-2023-24599
CVE-2023-24599 affects Open-Xchange OX App Suite prior to backend 7.10.6-rev37, where an authenticated user can change the appointments of arbitrary users due to conflicting ID numbers (ID confusion). The issue is tied to the appointment modification flow and allows privilege abuse within the pro...
PT-2019-16427 · Rust +1 · Failure +1
Name of the Vulnerable Software and Affected Versions: failure crate versions through 0.1.5 failure crate versions through 2019-11-13 Description: The issue is related to type confusion that can occur when private get type id is overridden, leading to undefined behavior when downcasting. This can...
[SECURITY] [DSA 801-1] New ntp packages fix group id confusion
-------------------------------------------------------------------------- Debian Security Advisory DSA 801-1 [email protected] http://www.debian.org/security/ Martin Schulze September 5th, 2005 http://www.debian.org/security/faq -...
[SECURITY] [DSA 801-1] New ntp packages fix group id confusion
-------------------------------------------------------------------------- Debian Security Advisory DSA 801-1 [email protected] http://www.debian.org/security/ Martin Schulze September 5th, 2005 http://www.debian.org/security/faq -...