Lucene search
K

897 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003938)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003938 advisory. A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user with root or CAPNETADMIN when inserting iptables rules...

4.4CVSS6.4AI score0.00277EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004449 advisory. A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user with root or CAPNETADMIN when inserting iptables rules...

4.4CVSS6.4AI score0.00277EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001658)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001658 advisory. The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of...

10CVSS6.8AI score0.52841EPSS
Exploits0References36
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001480)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001480 advisory. A flaw was found in the Linux kernel's implementation of string matching within a packet. A privileged user with root or CAPNETADMIN when inserting iptables rules...

4.4CVSS6.4AI score0.00277EPSS
Exploits0References4
OSV
OSV
added 2026/01/15 8:16 p.m.4 views

CVE-2026-23766

Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the traffic.sidecar.istio.io/excludeInterfaces annotation. NOTE: the reporter's position is "this doesn't represent a security vulnerability pod creators can already exclude sidecar injection entirely."...

4.1CVSS7.2AI score
Exploits0References2
NVD
NVD
added 2026/01/15 8:16 p.m.7 views

CVE-2026-23766

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

0.00036EPSS
Exploits0
Cvelist
Cvelist
added 2026/01/15 7:18 p.m.20 views

CVE-2026-23766

...

0.00036EPSS
Exploits0
EUVD
EUVD
added 2026/01/15 7:18 p.m.6 views

EUVD-2026-2704

Istio through 1.28.2 allows iptables rule injection for changing firewall behavior via the traffic.sidecar.istio.io/excludeInterfaces annotation. NOTE: the reporter's position is "this doesn't represent a security vulnerability pod creators can already exclude sidecar injection entirely."...

4.1CVSS6.7AI score0.00036EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/15 7:18 p.m.3 views

CVE-2026-23766

...

5.4AI score0.00036EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/01/15 7:18 p.m.4 views

CVE-2026-23766

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.4AI score0.00036EPSS
Exploits0References3
CVE
CVE
added 2026/01/15 7:18 p.m.11 views

CVE-2026-23766

Istio (through 1.28.2) is affected. A local, low-privilege user can inject iptables firewall rules via the traffic.sidecar.istio.io/excludeInterfaces annotation to alter firewall behavior, potentially impacting system integrity. Public descriptions acknowledge this may not represent a traditional...

6.9AI score0.00036EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/15 12:0 a.m.12 views

PT-2026-3101

Name of the Vulnerable Software and Affected Versions Istio versions through 1.28.2 Description Istio versions through 1.28.2 permit the injection of iptables rules, potentially altering firewall behavior. This is achieved through the traffic.sidecar.istio.io/excludeInterfaces annotation. The...

4.1CVSS6.9AI score0.00036EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.9 views

Istio parameter injection vulnerability

Istio is an open-source platform that connects, manages, and protects microservices. Versions of Istio prior to 1.28.2 have a parameter injection vulnerability. This vulnerability stems from the ability to inject iptables rules through annotations, thereby changing the firewall’s behavior...

5.8AI score0.00036EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003015)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003015 advisory. The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of...

10CVSS6.8AI score0.52841EPSS
Exploits0References36
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003148)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003148 advisory. The tcpmssmanglepacket function in net/netfilter/xtTCPMSS.c in the Linux kernel before 4.11, and 4.9.x before 4.9.36, allows remote attackers to cause a denial of...

10CVSS6.8AI score0.52841EPSS
Exploits0References36
RedhatCVE
RedhatCVE
added 2025/12/17 10:2 a.m.5 views

CVE-2025-67499

A flaw was found in the CNI Container Network Interface portmap plugin. This vulnerability allows containers to intercept all traffic destined for a host port via inadvertent forwarding of traffic with the same destination port when the plugin is configured with the nftables backend, ignoring the...

6.6CVSS6.4AI score0.00121EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2025/12/09 11:13 p.m.4 views

CVE-2025-67499

The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus...

6.6CVSS6.8AI score0.00121EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/12/09 11:13 p.m.2 views

CVE-2025-67499 CNI Plugins Portmap nftables backend intercepts non-local traffic

The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus...

6.6CVSS6.3AI score0.00121EPSS
Exploits0References3
OSV
OSV
added 2025/12/09 11:13 p.m.4 views

CVE-2025-67499 CNI Plugins Portmap nftables backend intercepts non-local traffic

The CNI portmap plugin allows containers to emulate opening a host port, forwarding that traffic to the container. Versions 1.6.0 through 1.8.0 inadvertently forward all traffic with the same destination port as the host port when the portmap plugin is configured with the nftables backend, thus...

6.6CVSS6.7AI score0.00121EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/20 12:0 a.m.5 views

TencentOS Server 3: kernel (TSSA-2024:1025)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1025 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

6.7CVSS6.6AI score0.00444EPSS
Exploits1References2
Rows per page
Query Builder