Lucene search
+L

7 matches found

redhat
redhat
added 2026/06/29 10:56 p.m.6 views

kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions

A privilege escalation vulnerability was found in the Linux kernel's CIFS client implementation. This could allow a local attacker to impersonate other users, bypass authentication in SMB mount operations, and potentially gain unauthorized access to network file shares or escalate privileges...

7.8CVSS5.8AI score0.00353EPSS
Exploits4References7
redhat
redhat
added 2026/06/17 12:5 p.m.12 views

kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions

A privilege escalation vulnerability was found in the Linux kernel's CIFS client implementation. This could allow a local attacker to impersonate other users, bypass authentication in SMB mount operations, and potentially gain unauthorized access to network file shares or escalate privileges...

7.8CVSS5.4AI score0.00353EPSS
Exploits4References7
cve
cve
added 2026/06/01 5:36 p.m.32 views

CVE-2026-41013

CVE-2026-41013 describes an input validation bypass in the SMB volume mount handling of CloudFoundry Foundation’s diego-release. The vulnerability allows a low-privileged CF space developer to inject arbitrary kernel CIFS mount options by bypassing the mount-option allowlist, enabling privilege e...

8.1CVSS5.9AI score0.00239EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/22 6:32 p.m.8 views

CVE-2026-6406

The Docker CLI --use-api-socket flag bypasses Enhanced Container Isolation ECI restrictions in Docker Desktop. When ECI is enabled, Docker socket mounts from containers are denied unless explicitly allowed via the admin-settings configuration. However, the --use-api-socket flag adds the Docker...

8.8CVSS7.3AI score0.00211EPSS
Exploits0References3Affected Software1
nessus
nessus
added 2026/01/16 12:0 a.m.11 views

MiracleLinux 4 : kernel-2.6.32-573.12.1.el6 (AXSA:2016-018:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-018:01 advisory. Security issues fixed with this release: CVE-2015-2925 The prependpath function in fs/dcache.c in the Linux kernel before 4.2.4 does not properly...

10CVSS6.5AI score0.02501EPSS
Exploits1References6
osv
osv
added 2016/05/02 10:59 a.m.3 views

DEBIAN-CVE-2014-9717

fs/namespace.c in the Linux kernel before 4.0.2 processes MNTDETACH umount2 system calls without verifying that the MNTLOCKED flag is unset, which allows local users to bypass intended access restrictions and navigate to filesystem locations beneath a mount by calling umount2 within a user...

6.1CVSS7.5AI score0.00331EPSS
Exploits0References1
nessus
nessus
added 2014/08/17 12:0 a.m.45 views

Fedora 20 : kernel-3.15.10-200.fc20 (2014-9466)

The 3.15.10 stable update contains a number of important fixes across the tree. Fix CVE-2014-5206, CVE-2014-5207: ro bind mount bypass with namespaces Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted...

7.2CVSS6.8AI score0.00888EPSS
Exploits6References4
Rows per page
Query Builder