Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2026/03/05 7:30 p.m.4 views

CVE-2026-3125

A Server-Side Request Forgery SSRF vulnerability was identified in the @opennextjs/cloudflare package, resulting from a path normalization bypass in the /cdn-cgi/image/ handler.The @opennextjs/cloudflare worker template includes a /cdn-cgi/image/ handler intended for development use only. In...

7.7CVSS6.1AI score0.00363EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/09/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-43415

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission...

8.8CVSS7AI score0.01182EPSS
Exploits0References2
OSV
OSV
added 2021/12/03 10:15 p.m.6 views

UBUNTU-CVE-2021-43415

HashiCorp Nomad and Nomad Enterprise up to 1.0.13, 1.1.7, and 1.2.0, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed image paths. Fixed in 1.0.14, 1.1.8, and 1.2.1...

8.8CVSS5.7AI score0.01182EPSS
Exploits0References4
HashiCorp Security Advisories
HashiCorp Security Advisories
added 2021/11/23 1:47 a.m.7 views

Nomad QEMU Task Driver Allowed Paths Bypass with Job Args

Summary Nomad and Nomad Enterprise “Nomad”, with the QEMU task driver enabled, allowed authenticated users with job submission capabilities to bypass the configured allowed paths for images. This vulnerability, CVE-2021-43415, was fixed in Nomad 1.0.14, 1.1.8, and 1.2.1. Background Nomad provides...

8.8CVSS7AI score0.01182EPSS
Exploits0Affected Software1
Rows per page
Query Builder