Lucene search
K

7 matches found

EUVD
EUVD
added 2026/07/06 8:20 p.m.13 views

EUVD-2026-25008

rm: 'rm -rf ./' and ./// variants silently deletes current directory contents, bypassing dot protection...

5.6CVSS5.9AI score0.00166EPSS
Exploits1References3
OSV
OSV
added 2026/04/22 6:31 p.m.4 views

GHSA-VCHC-9GGH-3236 Duplicate Advisory: uutils coreutils has a Path Traversal issue

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-89p7-7cq3-hhr2. This link is maintained to preserve external references. Original Description A vulnerability in the rm utility of uutils coreutils allows the bypass of safeguard mechanisms intended to protect t...

5.6CVSS6.1AI score0.00166EPSS
Exploits1References3
CVE
CVE
added 2026/04/22 4:8 p.m.29 views

CVE-2026-35363

The CVE-2026-35363 entry concerns the rm utility in uutils coreutils. The issue: path normalization bug allows bypass of safeguards for the current directory. It correctly refuses . and .. but fails to recognize equivalent paths with trailing slashes (e.g., ./ or .///). An accidental/malicious ex...

5.6CVSS6AI score0.00166EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.7 views

PT-2026-34499

Name of the Vulnerable Software and Affected Versions uutils coreutils affected versions not specified Description A flaw in the rm utility allows the bypass of safeguard mechanisms designed to protect the current directory. Although the utility prevents the deletion of . or .., it does not...

5.6CVSS6AI score0.00166EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.9 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989527)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989527 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/hfi1: Prevent panic when SDMA is disabled If the hfi1 module is loaded with HFI1CAPSDMA off,...

5.5CVSS6AI score0.00253EPSS
Exploits0References4
NVD
NVD
added 2025/10/28 12:15 p.m.9 views

CVE-2025-40049

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

0.00207EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/05/16 2:23 a.m.4 views

SUSE CVE-2024-24576

Rust is a programming language. The Rust Security Response WG was notified that the Rust standard library prior to version 1.77.2 did not properly escape arguments when invoking batch files with the bat and cmd extensions on Windows using the Command. An attacker able to control the arguments...

10CVSS7.4AI score0.20342EPSS
Exploits10References2
Rows per page
Query Builder