Lucene search
+L

121 matches found

redhatcve
redhatcve
added 2026/07/01 2:52 p.m.21 views

CVE-2026-53488

A flaw was found in containerd, an open-source container runtime. The Container Runtime Interface CRI plugin, which manages container operations, fails to validate labels propagated from an image configuration to a container. This oversight could enable an attacker to execute arbitrary commands o...

9.4CVSS6.1AI score0.00203EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-15412

Malware in sbrugna...

9.8CVSS9.2AI score0.00455EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10368

Malware in sbrugna...

7.2CVSS6.6AI score0.00265EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-15418

Malware in sbrugna...

7.5CVSS7.5AI score0.00313EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.11 views

EUVD-2019-10367

Malware in sbrugna...

6.7CVSS6.5AI score0.00263EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-10370

Malware in sbrugna...

7.2CVSS6.6AI score0.00334EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-10172

Malware in sbrugna...

6.7CVSS6.6AI score0.00244EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-10366

Malware in sbrugna...

6.7CVSS6.5AI score0.00181EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-27575

Malicious code in bioql PyPI...

6CVSS6.3AI score0.00096EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-18112

Malicious code in bioql PyPI...

5.2CVSS6.6AI score0.00304EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/09/12 4:32 p.m.5 views

CVE-2025-20248

A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR Software image signature verification and load unsigned software on an affected device. To exploit this vulnerability, the attacker must have root-system...

6CVSS6.4AI score0.00096EPSS
Exploits0References1
osv
osv
added 2025/09/12 11:42 a.m.3 views

BIT-KYVERNO-2022-47633

An image signature validation bypass vulnerability in Kyverno 1.8.3 and 1.8.4 allows a malicious image registry or a man-in-the-middle attacker to inject unsigned arbitrary container images into a protected Kubernetes cluster. This is fixed in 1.8.5. This has been fixed in 1.8.5 and mitigations a...

8.1CVSS6.9AI score0.00956EPSS
Exploits0References6
nessus
nessus
added 2025/09/12 12:0 a.m.4 views

Cisco IOS XR Software Image Verification Bypass (cisco-sa-xrsig-UY4zRUCG)

According to its self-reported version, Cisco IOS XR is affected by a vulnerability. - A vulnerability in the installation process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR Software image signature verification and load unsigned software on an...

6CVSS5.8AI score0.00096EPSS
Exploits0References4
cve
cve
added 2025/09/10 4:6 p.m.26 views

CVE-2025-20248

CVE-2025-20248 affects Cisco IOS XR Software, where an authenticated local attacker with root privileges can bypass image signature verification during installation and load unsigned software via manipulation of contents in an .iso. The root cause is incomplete validation of files during .iso ins...

6CVSS5.9AI score0.00096EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/10 12:0 a.m.5 views

PT-2025-37064

Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software affected versions not specified Description: A flaw in the installation process of Cisco IOS XR Software may allow an authenticated, local attacker to bypass the image signature verification and load unsigned software on...

6CVSS5.8AI score0.00096EPSS
Exploits0References4
nessus
nessus
added 2025/08/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2015-8234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The image signature algorithm in OpenStack Glance 11.0.0 allows remote attackers to bypass the signature verification process via a crafted image, which trigger...

5.5CVSS5.5AI score0.01176EPSS
Exploits0References2
trendmicroblog
trendmicroblog
added 2025/06/11 12:0 a.m.4 views

Ensuring Secure Container Deployments with Image Signature Verification

Ensure your container deployments are secure with a verified image signature...

7.3AI score
Exploits0
redhatcve
redhatcve
added 2025/05/22 9:51 p.m.7 views

CVE-2022-47633

An image signature validation bypass vulnerability in Kyverno 1.8.3 and 1.8.4 allows a malicious image registry or a man-in-the-middle attacker to inject unsigned arbitrary container images into a protected Kubernetes cluster. This is fixed in 1.8.5. This has been fixed in 1.8.5 and mitigations a...

8.1CVSS6.8AI score0.00956EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 6:9 p.m.17 views

CVE-2021-1461

A vulnerability in the Image Signature Verification feature of Cisco SD-WAN Software could allow an authenticated, remote attacker with Administrator-level credentials to install a malicious software patch on an affected device. The vulnerability is due to improper verification of digital...

4.9CVSS6.9AI score0.00398EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 8:37 a.m.11 views

CVE-2019-2278

User keystore signature is ignored in boot and can lead to bypass boot image signature verification in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in MDM9607, MDM9640, SD 425, SD 427, SD 430, SD 435, SD 450, SD 625, SD 636, SD 712 / SD 710 / SD 670, SD 845 / SD 850, SDM660...

7.8CVSS7.5AI score0.00193EPSS
Exploits0References1
Rows per page
Query Builder