Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/04/07 11:1 p.m.4 views

CVE-2026-35020

Anthropic Claude Code CLI and Claude Agent SDK contain an OS command injection vulnerability in the command lookup helper and deep-link terminal launcher that allows local attackers to execute arbitrary commands by manipulating the TERMINAL environment variable. Attackers can inject shell...

8.6CVSS6.2AI score0.00114EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/02/27 3:2 a.m.4 views

SUSE CVE-2022-49697

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix requestsock leak in sk lookup helpers A customer reported a requestsocket leak in a Calico cloud environment. We found that a BPF program was doing a socket lookup with takes a refcnt on the socket and that it was findin...

5.5CVSS6.9AI score0.00265EPSS
Exploits0References5
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49697

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix requestsock leak in sk lookup helpers A customer reported a requestsocket leak in a Calico cloud environment. We found that a BPF program was doing a socket lookup with takes a refcnt on the socket and that it was findin...

5.5CVSS5.4AI score0.00265EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a requestsock leak in the sk lookup helper...

5.5CVSS5.5AI score0.00265EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/03/20 9:15 a.m.5 views

nodejs-handlebars: lookup helper fails to properly validate templates allowing for arbitrary JavaScript execution

A flaw was found in nodejs-handlebars, where affected versions of handlebars are vulnerable to arbitrary code execution. The package lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript into the system. This issue is used to...

8.1CVSS7.7AI score0.03193EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2020/11/24 1:10 p.m.2 views

nodejs-handlebars: lookup helper fails to properly validate templates allowing for arbitrary JavaScript execution

A flaw was found in nodejs-handlebars, where affected versions of handlebars are vulnerable to arbitrary code execution. The package lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript into the system. This issue is used to...

8.1CVSS7.7AI score0.03193EPSS
Exploits1References6
Cvelist
Cvelist
added 2020/09/30 12:30 p.m.36 views

CVE-2019-20920

Handlebars before 3.0.8 and 4.x before 4.5.3 is vulnerable to Arbitrary Code Execution. The lookup helper fails to properly validate templates, allowing attackers to submit templates that execute arbitrary JavaScript. This can be used to run arbitrary code on a server processing Handlebars...

9.1AI score0.03193EPSS
Exploits1References3
Rows per page
Query Builder