214 matches found
CVE-2026-41898 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
CVE-2026-41898 vulnerabilities
Vulnerabilities for packages: vector, deno, sdp-k8s-injector, sccache, sqlx, rustup, rpm-sequoia...
CVE-2026-41678 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
GHSA-PQF5-4PQQ-29F5 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
GHSA-XMGF-HQ76-4VX2 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
CVE-2026-41681 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
GHSA-HPPC-G8H3-XHP3 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
GHSA-8C75-8MHR-P7R9 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
CVE-2026-41677 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
CVE-2026-41676 vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
GHSA-GHM9-CR32-G9QJ vulnerabilities
Vulnerabilities for packages: valkey-ldap, komodo, typst, rustls-openssl-client, vector, guestproxyagent, sentry-cli, bootc, deno, rpm-sequoia, sqlx, ztunnel-fips, rustup, sccache, sdp-k8s-injector...
OpenTelemetry eBPF Instrumentation: Privileged Java agent injection allows arbitrary host file overwrite via untrusted TMPDIR
Summary A flaw in the Java agent injection path allows a local attacker controlling a Java workload to overwrite arbitrary host files when Java injection is enabled and OBI is running with elevated privileges. The injector trusted TMPDIR from the target process and used unsafe file creation...
Metasploit Wrap-Up 03/27/2026
Better NTLM Relaying Functionality This week’s release brings an improvement to the SMB NTLM relay server. In the past, it’s support has been expanded with modules for relaying to HTTP ESC8, MSSQL and LDAP while still receiving connections over the humble SMB service. Prior to this release, clien...
CVE-2026-2809
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...
CVE-2026-2809 Endpoint DLP Driver DLL
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...
CVE-2026-2809 Endpoint DLP Driver DLL
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...
CVE-2026-2809
CVE-2026-2809 is reported as a memory-safety bug in the JavaScript: WebAssembly component, per the FreeBSD VUXML entry for Mozilla—Multiple vulnerabilities. The connected document confirms the issue title but provides no product/version specifics or patch details. No exploitation details are prov...
Netskope Endpoint DLP Module 安全漏洞
The Netskope Endpoint DLP Module is a data loss protection module developed by the American company Netskope for endpoint devices. The Netskope Endpoint DLP Module has a security vulnerability, which stems from integer overflow in the DLL injector. This vulnerability could allow privileged users ...
PT-2026-25943
Netskope was notified about a potential gap in its Endpoint DLP Module for Netskope Client on Windows systems. The successful exploitation of the gap can potentially allow a privileged user to trigger an integer overflow within the DLL Injector, leading to a Blue-Screen-of-Death BSOD. Successful...
CVE-2026-25541 vulnerabilities
Vulnerabilities for packages: samply, linkerd-extension-init, tealdeer, linkerd-await, yazi, deno, wasmtime, sccache, qdrant, parseable, pixi, zizmor, wasmcloud, zellij, linkerd2-proxy, oranda, mdbook, wizer, linkerd2, geckodriver, efs-utils, mountpoint-s3, pgcat, ztunnel, berg, sdp-k8s-injector,...