Lucene search
K

19 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/01 9:22 a.m.16 views

Security Bulletin: IBM App Connect Enterprise Certified Container operator and operands are vulnerable to loss of confidentiality and denial of service due to multiple CVEs

Summary IBM App Connect Enterprise Certified Container operator and operands are vulnerable to loss of confidentiality and denial of service due to multiple CVEs. This bulletin provides patch information to address the vulnerabilities Vulnerability Details CVEID:CVE-2026-6322 DESCRIPTION: fast-ur...

7.5CVSS6.4AI score0.00521EPSS
Exploits1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/08 1:55 p.m.4 views

CVE-2025-57854 Osus-operator: privilege escalation via excessive /etc/passwd permissions

A container privilege escalation flaw was found in certain OpenShift Update Service OSUS images. This issue stems from the /etc/passwd file being created with group-writable permissions during build time. In certain conditions, an attacker who can execute commands within an affected container, ev...

6.4CVSS6AI score0.00145EPSS
Exploits0References2
NVD
NVD
added 2026/04/03 4:16 p.m.6 views

CVE-2026-35216

Budibase is an open-source low-code platform. Prior to version 3.33.4, an unauthenticated attacker can achieve Remote Code Execution RCE on the Budibase server by triggering an automation that contains a Bash step via the public webhook endpoint. No authentication is required to trigger the...

9CVSS0.11982EPSS
Exploits1References4
Snyk
Snyk
added 2026/03/03 10:25 p.m.3 views

Execution with Unnecessary Privileges

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Execution with Unnecessary Privileges due to the absence of a USER directive in the Dockerfiles, causing all processes to run as root. An attacker can gain root privileges within the...

8.8CVSS5.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000836)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000836 advisory. The IPTSOSETREPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service out-of-bounds...

7.1CVSS7AI score0.01885EPSS
Exploits1References30
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002583)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002583 advisory. The compat IPTSOSETREPLACE and IP6TSOSETREPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain...

7.8CVSS6.5AI score0.05676EPSS
Exploits10References46
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003016)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003016 advisory. The IPTSOSETREPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service out-of-bounds...

7.1CVSS7.1AI score0.01885EPSS
Exploits1References30
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-5963

Malware in sbrugna...

7.1CVSS7.2AI score0.01885EPSS
Exploits1References38
AlpineLinux
AlpineLinux
added 2025/10/02 9:20 a.m.6 views

CVE-2025-54288

Information Spoofing in devLXD Server in Canonical LXD versions 4.0 and above on Linux container platforms allows attackers with root privileges within any container to impersonate other containers and obtain their metadata, configuration, and device information via spoofed process names in the...

6.8CVSS6.5AI score0.00326EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2023/06/26 1:19 a.m.2 views

podman: possible information disclosure and modification

An incorrect handling of the supplementary groups in the Podman container engine might lead to the sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to...

7.1CVSS7.5AI score0.00307EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:2 a.m.3 views

SUSE CVE-2016-4997

The compat IPTSOSETREPLACE and IP6TSOSETREPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service memory corruption by leveraging in-container root access to provide a crafted offset value that...

7.8CVSS6.8AI score0.05676EPSS
Exploits10References33
OpenVAS
OpenVAS
added 2020/09/29 12:0 a.m.22 views

openSUSE: Security Advisory for conmon, (openSUSE-SU-2020:1559-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS6.2AI score0.01849EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/06/27 6:17 p.m.5 views

kubernetes: Incomplete fix for CVE-2019-1002101 allows for arbitrary file write via `kubectl cp`

The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user’s machine. If the tar binary in the container is...

6.5CVSS7AI score0.13164EPSS
Exploits2References5
OSV
OSV
added 2018/07/02 5:29 p.m.6 views

CVE-2018-10843

source-to-image component of Openshift Container Platform before versions atomic-openshift 3.7.53, atomic-openshift 3.9.31 is vulnerable to a privilege escalation which allows the assemble script to run as the root user in a non-privileged container. An attacker can use this flaw to open network...

8.8CVSS5.8AI score0.01362EPSS
Exploits0References2
OSV
OSV
added 2016/07/03 9:59 p.m.3 views

DEBIAN-CVE-2016-4997

The compat IPTSOSETREPLACE and IP6TSOSETREPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service memory corruption by leveraging in-container root access to provide a crafted offset value that...

7.8CVSS7.5AI score0.05676EPSS
Exploits10References1
Debian CVE
Debian CVE
added 2016/07/03 9:0 p.m.33 views

CVE-2016-4997

The compat IPTSOSETREPLACE and IP6TSOSETREPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service memory corruption by leveraging in-container root access to provide a crafted offset value that...

7.8CVSS6.8AI score0.05676EPSS
Exploits10
Cvelist
Cvelist
added 2016/07/03 9:0 p.m.34 views

CVE-2016-4998

The IPTSOSETREPLACE setsockopt implementation in the netfilter subsystem in the Linux kernel before 4.6 allows local users to cause a denial of service out-of-bounds read or possibly obtain sensitive information from kernel heap memory by leveraging in-container root access to provide a crafted...

7.2AI score0.01885EPSS
Exploits1References27
UbuntuCve
UbuntuCve
added 2016/06/24 12:0 a.m.53 views

CVE-2016-4997

The compat IPTSOSETREPLACE and IP6TSOSETREPLACE setsockopt implementations in the netfilter subsystem in the Linux kernel before 4.6.3 allow local users to gain privileges or cause a denial of service memory corruption by leveraging in-container root access to provide a crafted offset value that...

7.8CVSS6.8AI score0.05676EPSS
Exploits10References14
RedHat Linux
RedHat Linux
added 2016/05/12 3:15 p.m.6 views

docker: privilege escalation via confusion of usernames and UIDs

It was found that Docker would launch containers under the specified UID instead of a username. An attacker able to launch a container could use this flaw to escalate their privileges to root within the launched container...

7.8CVSS7.1AI score0.00388EPSS
Exploits0References4
Rows per page
Query Builder