Lucene search
+L

299 matches found

OSV
OSV
added yesterday4 views

UBUNTU-CVE-2026-26032

The PackagerResolver of Apache Ivy is able to download online artifact...

5.4CVSS6.1AI score0.00583EPSS
Exploits0References2
NVD
NVD
added 2 days ago7 views

CVE-2026-26032

The PackagerResolver of Apache Ivy is able to download online artifacts and to repackage them in a format defined by a packager.xml file. This repackaging is done by an Ant script, which is stored in a subdirectory of the configured "buildRoot" directory. This subdirectory is calculated based on...

5.4CVSS0.00583EPSS
Exploits0References2
EUVD
EUVD
added 2 days ago6 views

EUVD-2026-44763

The PackagerResolver of Apache Ivy is able to download online artifacts and to repackage them in a format defined by a packager.xml file. This repackaging is done by an Ant script, which is stored in a subdirectory of the configured "buildRoot" directory. This subdirectory is calculated based on...

5.4CVSS6.1AI score0.00583EPSS
Exploits0References1
CVE
CVE
added 2 days ago12 views

CVE-2026-26032

Summary of CVE-2026-26032 (Apache Ivy): The PackagerResolver can repack downloaded artifacts via an Ant script in a subdirectory of buildRoot. If any Ivy coordinates contain "../" sequences, an attacker who can access a packager repository can escape the buildRoot and overwrite other files. The i...

5.4CVSS6.1AI score0.00583EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2 days ago12 views

PT-2026-60263

The PackagerResolver of Apache Ivy is able to download online artifacts and to repackage them in a format defined by a packager.xml file. This repackaging is done by an Ant script, which is stored in a subdirectory of the configured "buildRoot" directory. This subdirectory is calculated based on...

5.4CVSS6.1AI score0.00583EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: xhci: Device endpoints are removed from the bandwidth list when the device is freed. Endpoints are normally deleted from the bandwidth list when they are dropped, before the virt device is freed. If the xHCI host is dying or bein...

7.8CVSS6.3AI score0.00158EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.8 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021543 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally...

7.8CVSS5.8AI score0.00158EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006954)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006954 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally...

7.8CVSS5.7AI score0.00158EPSS
Exploits0References4
vulnersOsv
vulnersOsv
added 2026/04/17 6:31 p.m.8 views

io.github.compyoot:utilities-and-generic-tools (=0.3.11), org.scala-sbt.ivy:ivy (>=2.3.0-sbt-1b57d3bbc08ecf671169fd548918da18c91f77be <=2.3.0-sbt-fbc4f586aeeb1591710b14eb4f41b94880dcd745) potentially affected by CVE-2026-3505 via org.bouncycastle:bcpg-jdk14 (=1.45)

org.bouncycastle:bcpg-jdk14 MAVEN version =1.45 is affected by a known vulnerability. The following packages have a transitive dependency on org.bouncycastle:bcpg-jdk14 and may be impacted: - io.github.compyoot:utilities-and-generic-tools =0.3.11 - org.scala-sbt.ivy:ivy...

8.7CVSS5.8AI score0.00758EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/04/15 10:13 a.m.7 views

io.github.compyoot:utilities-and-generic-tools (=0.3.11), org.scala-sbt.ivy:ivy (>=2.3.0-sbt-1b57d3bbc08ecf671169fd548918da18c91f77be <=2.3.0-sbt-fbc4f586aeeb1591710b14eb4f41b94880dcd745) potentially affected by CVE-2026-3505 via org.bouncycastle:bcpg-jdk14 (=1.45)

org.bouncycastle:bcpg-jdk14 MAVEN version =1.45 is affected by a known vulnerability. The following packages have a transitive dependency on org.bouncycastle:bcpg-jdk14 and may be impacted: - io.github.compyoot:utilities-and-generic-tools =0.3.11 - org.scala-sbt.ivy:ivy...

8.7CVSS5.8AI score0.00758EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.6 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-006699)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006699 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally...

7.8CVSS5.8AI score0.00158EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005607)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005607 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally...

7.8CVSS6.9AI score0.00158EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-50470

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally deleted from the bandwidth list when they are dropped, before t...

7.8CVSS6.7AI score0.00158EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2013-7072

Malware in sbrugna...

4CVSS8.9AI score0.01751EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/10/05 2:58 a.m.6 views

SUSE CVE-2022-50470

In the Linux kernel, the following vulnerability has been resolved: xhci: Remove device endpoints from bandwidth list when freeing the device Endpoints are normally deleted from the bandwidth list when they are dropped, before the virt device is freed. If xHC host is dying or being removed then t...

5.3CVSS6.5AI score0.00158EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-7457

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.01596EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-7292

Malicious code in bioql PyPI...

9.1CVSS8.7AI score0.01819EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-11834

Malicious code in bioql PyPI...

8.1CVSS8.6AI score0.00605EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2023-2185

Malicious code in bioql PyPI...

8.2CVSS7.9AI score0.01855EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2440

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00309EPSS
Exploits0References3
Rows per page
Query Builder