CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

131 matches found

OSV•added 2026/05/18 5:52 p.m.•3 views

GHSA-VP62-88P7-QQF5 Docker: Race condition in docker cp allows creation of arbitrary empty files on the host via symlink swap

Summary A race condition during docker cp mount setup allows a malicious container to create empty files or directories at arbitrary absolute paths on the host filesystem. This advisory covers the race during mountpoint creation. The related race during the subsequent mount syscall is tracked in...

6.1CVSS5.9AI score

Exploits0References2

Wolfi•added 2026/04/11 2:51 a.m.•6 views

GHSA-FV83-X2XW-2J55 vulnerabilities

Vulnerabilities for packages: victoriametrics, dkron, flux-helm-controller, pluto, gh, fluxcd-kustomize-mutating-webhook, hubble, ingress-nginx-controller, nodetaint, metacontroller, tailscale, clickhouse-operator, nfs-subdir-external-provisioner, actions-runner-controller, nova,...

5.8AI score

Exploits0

Chainguard•added 2026/04/11 2:18 a.m.•5 views

CVE-2026-33810 vulnerabilities

Vulnerabilities for packages: dataplaneapi-fips, pgwatch, k8s-metacollector-fips, pluto-fips, flux-image-reflector-controller, dapr-fips, kyverno-policy-reporter-plugins-kyverno-fips, omni-fips, karma-fips, flux-image-automation-controller, smarter-device-manager, nova, flux-source-controller-fip...

8.2CVSS7.1AI score0.00013EPSS

Exploits0

Chainguard•added 2026/04/11 2:18 a.m.•3 views

GHSA-FV83-X2XW-2J55 vulnerabilities

5.8AI score

Exploits0

OSV•added 2026/04/01 9:45 a.m.•0 views

CLEANSTART-2026-PK48502 Security fixes for CVE-2025-47911, CVE-2025-58190, CVE-2025-68121 applied in versions: 2.3.0-r0

Multiple security vulnerabilities affect the mountpoint-s3-csi-driver package. These issues are resolved in later releases. See references for individual vulnerability details...

10CVSS6.8AI score0.00018EPSS

Exploits2References7

Wolfi•added 2026/03/10 1:48 p.m.•9 views

CVE-2026-25679 vulnerabilities

Vulnerabilities for packages: azure-ipam, grafana-pyroscope, migrate, snyk-cli, kaf, secrets-store-csi-driver-provider-azure, prometheus-blackbox-exporter, terraform-provider-google, q, whereabouts, nri-cassandra, kube-rbac-proxy, azurefile-csi, smokescreen, nri-jmx, spark-operator, tempo,...

7.5CVSS7.3AI score0.00044EPSS

Exploits0

Wolfi•added 2026/03/10 1:48 p.m.•4 views

GHSA-J3GX-2473-5FP8 vulnerabilities

5.8AI score

Exploits0

Chainguard•added 2026/03/10 1:17 p.m.•4 views

CVE-2026-25679 vulnerabilities

Vulnerabilities for packages: cluster-api-ipam-provider-in-cluster, minc-fips, pgwatch, jobset-fips, kube-logging-operator, kubernetes-ingress-defaultbackend-fips, apache-exporter, nri-mongodb, cluster-api-provider-vsphere, yunikorn-k8shim, json-exporter-fips, prometheus-stackdriver-exporter,...

7.5CVSS7.3AI score0.00044EPSS

Exploits0

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004304)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004304 advisory. A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x...

4.7CVSS6.4AI score0.00045EPSS

Exploits0References19

Tenable Nessus•added 2026/01/16 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003900)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003900 advisory. A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x...

4.7CVSS6.4AI score0.00045EPSS

Exploits0References19

Tenable Nessus•added 2026/01/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000409)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000409 advisory. A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x...

4.7CVSS6.4AI score0.00045EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-19453

Malware in sbrugna...

7.8CVSS7.7AI score0.00052EPSS

Exploits0References10

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2008-2924

Malware in sbrugna...

7.8CVSS7.5AI score0.00027EPSS

Exploits0References25

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2011-1830

Malware in sbrugna...

2.1CVSS9.2AI score0.00042EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2010-0327

Malware in sbrugna...

7.2CVSS4.6AI score0.00117EPSS

Exploits1References29

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2011-1829

Malware in sbrugna...

4.6CVSS9.2AI score0.00043EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-4430

Malware in sbrugna...

4.7CVSS6.6AI score0.00045EPSS

Exploits0References24

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-1242

Malicious code in bioql PyPI...

7.3CVSS7.3AI score0.00043EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-31589

Malicious code in bioql PyPI...

2CVSS4.5AI score0.00065EPSS

Exploits1References1

Tenable Nessus•added 2025/08/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2018-7738

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In util-linux before 2.32-rc1, bash-completion/umount allows local users to gain privileges by embedding shell commands in a mountpoint name, which is mishandle...

7.8CVSS7.5AI score0.00052EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by