Lucene search
+L

3922 matches found

hackread
hackread
added 2026/03/10 2:10 p.m.8 views

Study Finds ROME AI Agent Attempted Cryptomining Without Instructions

A recent research paper describing the training of an experimental AI agent has started a discussion after the…...

5.8AI score
Exploits0
github
github
added 2026/03/10 1:19 a.m.11 views

RSSN has Arbitrary Code Execution via Unvalidated JIT Instruction Generation in C-FFI Interface

Impact Vulnerability Type: Improper Control of Generation of Code 'Code Injection' CWE-94 / Improper Check for Unusual or Exceptional Conditions CWE-754 / Improper Input Validation CWE-20 / Use of Low-Level Functionality CWE-695 / Improper Privilege Management CWE-269 / External Control of System...

9.4CVSS5.9AI score0.0021EPSS
Exploits0References5Affected Software1
redhatcve
redhatcve
added 2026/03/06 2:37 p.m.8 views

CVE-2026-0995

An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a TLBI+DSB might fail to ensure the completion of memory accesses related to SME...

3.6CVSS5.7AI score0.00088EPSS
Exploits0References1
suse
suse
added 2026/03/05 3:17 p.m.8 views

Security update for python-Authlib

This update for python-Authlib fixes the following issues: CVE-2025-68158: Fixed 1-click account takeover in applications that use the Authlib library bsc1256414 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

6.9CVSS5.9AI score0.00237EPSS
Exploits1References4
suse
suse
added 2026/03/03 1:42 p.m.4 views

Security update for postgresql16

This update for postgresql16 fixes the following issue: Update to version 16.13 bsc1258754. Regression fixes: the substring function raises an error "invalid byte sequence for encoding" on non-ASCII text values if the source of that value is a database column caused by CVE-2026-2006 fix. a standb...

8.8CVSS5.9AI score0.01079EPSS
Exploits0References6
suse
suse
added 2026/03/03 1:13 p.m.23 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Update to version 15.17 bsc1258754. Security issues fixed: CVE-2026-2003: improper validation of type "oidvector" may allow disclose a few bytes of server memory bsc1258008. CVE-2026-2004: intarray missing validation of type of input to...

8.8CVSS6.5AI score0.01208EPSS
Exploits3References18
suse
suse
added 2026/03/03 1:2 p.m.4 views

Security update for gnome-remote-desktop

This update for gnome-remote-desktop fixes the following issue: CVE-2025-5024: an unauthenticated attacker can exhaust system resources bsc1244053. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...

6.9CVSS5.9AI score0.00822EPSS
Exploits0References4
opensuse
opensuse
added 2026/02/21 12:0 a.m.4 views

Security update for chromium (important)

openSUSE security update: security update for chromium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20258-1 Rating: important References: bsc1258438 Cross-References: CVE-2026-2648 CVE-2026-2649 CVE-2026-2650 Affected Products: openSUSE Leap 16.0...

8.8CVSS5.5AI score0.00642EPSS
Exploits0References1
amazon
amazon
added 2026/02/19 12:0 a.m.10 views

Medium: oci-add-hooks

Issue Overview: net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when parsing arbitrary ZIP archives CVE-2025-61728 crypto/tls: handshake messages may be processed at the incorrect encryption level CVE-2025-61730 crypto/tls: Config.Clone copies...

10CVSS5.7AI score0.00765EPSS
Exploits2
amazon
amazon
added 2026/02/18 12:0 a.m.8 views

Important: nvidia-imex

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.00186EPSS
Exploits0
amazon
amazon
added 2026/02/18 12:0 a.m.5 views

Important: nvidia-settings

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.00186EPSS
Exploits0
amazon
amazon
added 2026/02/18 12:0 a.m.10 views

Important: kmod-nvidia-open-dkms

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

7.8CVSS5.7AI score0.00186EPSS
Exploits0
packetstorm
packetstorm
added 2026/02/18 12:0 a.m.155 views

📄 RustFly 2.0.0 Event Manipulation

The remote UI control mechanism of RustFly accepts raw hex-encoded instructions over UDP. Some sequences trigger execution of remote system-level operations. Improper sanitization allows command-level injection. Version 2.0.0 is affected...

9.8CVSS5.8AI score0.02628EPSS
Exploits1
suse
suse
added 2026/02/17 6:47 p.m.9 views

Security update for kubernetes-old

This update for kubernetes-old rebuilds it against the current GO security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap...

5.4AI score
Exploits0
suse
suse
added 2026/02/17 6:46 p.m.5 views

Security update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, cont

This update for cdi-apiserver-container, cdi-cloner-container, cdi-controller-container, cdi-importer-container, cdi-operator-container, cdi-uploadproxy-container, cdi-uploadserver-container, containerized-data-importer fixes the following issues: Update to version 1.64.0 Release notes...

5.4AI score
Exploits0
suse
suse
added 2026/02/15 7:33 p.m.6 views

Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP6)

This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.42 fixes various security issues The following security issues were fixed: CVE-2025-38111: net/mdiobus: Fix potential out-of-bounds read/write access bsc1249455. CVE-2025-38352: posix-cpu-timers: fix race between handleposixcputimer...

8.7CVSS6.8AI score0.01345EPSS
Exploits8References20
ossf
ossf
added 2026/02/14 11:56 a.m.10 views

Malicious code in dzuseragents (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f0be670ad8e17f42129943a744559ebb8818c581bc637c1469cf8553b7b8f8c9 The package downloads an executable and adds it to autostart. The downloaded application then periodically creates a screenshot and sends it to a Discord...

5.6AI score
Exploits0References5
osv
osv
added 2026/02/14 11:56 a.m.7 views

MAL-2026-899 Malicious code in dzuseragents (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f0be670ad8e17f42129943a744559ebb8818c581bc637c1469cf8553b7b8f8c9 The package downloads an executable and adds it to autostart. The downloaded application then periodically creates a screenshot and sends it to a Discord...

5.6AI score
Exploits0References5
suse
suse
added 2026/02/12 3:35 p.m.7 views

Security update for helm

This update for helm rebuilds it against the current GO security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux Enterprise...

5.5AI score
Exploits0
suse
suse
added 2026/02/12 11:21 a.m.5 views

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-4476: null pointer dereference may lead to denial of service bsc1243422. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run t...

4.3CVSS5.5AI score0.00324EPSS
Exploits1References4
Rows per page
Query Builder