Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

EUVD
EUVDadded 2026/06/10 10:20 p.m.10 views

EUVD-2026-36166

Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directo...

10CVSS5.6AI score0.00289EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/06/10 10:20 p.m.9 views

CVE-2026-46695 BoxLite: Permission Bypass in boxlite Allows Modification of Read-Only Files

Boxlite is a sandbox service that allows users to create lightweight virtual machines Boxes and launch OCI containers within them to run untrusted code. Prior to version 0.9.0, Boxlite does not restrict the kernel capabilities available inside the container, malicious code can remount the directo...

10CVSS5.6AI score0.00289EPSS
Exploits0References3
CNNVD
CNNVDadded 2026/06/10 12:0 a.m.17 views

Boxlite 访问控制错误漏洞

BoxLite is an open-source embedded microvirtual machine runtime developed by BoxLite. It provides hardware-isolated secure sandboxes for AI agents and code execution scenarios. Versions of BoxLite prior to 0.9.0 contained an access control vulnerability. This vulnerability stemmed from the lack o...

10CVSS6AI score0.00289EPSS
Exploits0References1
RedHat Linux
RedHat Linuxadded 2023/11/14 3:46 p.m.1 views

kernel: capabilities: fix potential memleak on error path from vfs_getxattr_alloc()

A flaw was found in the capabilities subsystem in the Linux kernel. When memory is allocated for a temporary buffer and a subsequent function call fails, the allocated memory is not released, resulting in a memory leak. This issue could impact system performance and result in a denial of service...

5.5CVSS6.8AI score0.00178EPSS
Exploits0References5
SUSE CVE
SUSE CVEadded 2023/02/15 5:28 a.m.3 views

SUSE CVE-2014-4014

The capabilities implementation in the Linux kernel before 3.14.8 does not properly consider that namespaces are inapplicable to inodes, which allows local users to bypass intended chmod restrictions by first creating a user namespace, as demonstrated by setting the setgid bit on a file with grou...

6.2CVSS5.2AI score0.03303EPSS
Exploits4References5
Gitee
Giteeadded 2021/11/21 2:1 p.m.11 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

This is a PoC exploit for CVE-2021-3493, a local privilege escalation vulnerability in Ubuntu OverlayFS. The exploit targets Ubuntu versions 20.10, 20.04 LTS, 19.04, 18.04 LTS, 16.04 LTS, and 14.04 ESM. The vulnerability arises from a Linux kernel issue where it did not properly validate the...

8.8CVSS6.9AI score0.43988EPSS
Exploits27
Tenable Nessus
Tenable Nessusadded 2006/01/15 12:0 a.m.41 views

Ubuntu 4.10 : linux-source-2.6.8.1 vulnerabilities (USN-57-1)

Paul Starzetz discovered a race condition in the ELF library and a.out binary format loaders, which can be locally exploited in several different ways to gain root privileges. CAN-2004-1235 Liang Bin found a design flaw in the capability module. After this module was loaded on demand in a running...

7.2CVSS5.7AI score0.02893EPSS
Exploits2References2
Rows per page
Query Builder