Lucene search
+L

95 matches found

osv
osv
added 6 days ago4 views

DEBIAN-CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS6.1AI score0.00426EPSS
Exploits0References1
nvd
nvd
added 6 days ago7 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS0.00426EPSS
Exploits0References5
cvelist
cvelist
added 6 days ago31 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS0.00426EPSS
Exploits0References4
cve
cve
added 6 days ago9 views

CVE-2026-44918

OpenStack Ironic (up to 37.0.1) allows an authenticated project manager to create/modify nodes across projects without authorization, potentially misconfiguring which project owns a node and exposing secrets stored in volume connectors/targets. Red Hat notes a specific flaw where a manager can re...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References5
euvd
euvd
added 6 days ago7 views

EUVD-2026-42777

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References4
attackerkb
attackerkb
added 6 days ago7 views

CVE-2026-44918

OpenStack Ironic through before 37.0.1 allows creation or modification of nodes cross-project without authorization...

5.5CVSS5.9AI score0.00426EPSS
Exploits0References5Affected Software1
debiancve
debiancve
added 2026/05/27 12:18 p.m.10 views

CVE-2026-45960

In the Linux kernel, the following vulnerability has been resolved: hfsplus: return error when node already exists in hfsbnodecreate When hfsbnodecreate finds that a node is already hashed which should not happen in normal operation, it currently returns the existing node without incrementing its...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
cnnvd
cnnvd
added 2026/05/27 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the hfsbnodecreate function in the hfsplus file system. This function returns a node when it...

5.8AI score0.00123EPSS
Exploits0References8
cve
cve
added 2026/05/12 11:0 p.m.36 views

CVE-2026-42156

Summary : CVE-2026-42156 affects Flowsint, an open-source OSINT graph exploration tool. Before version 1.2.3, a remote attacker can create a node with a malicious type that can escape an existing Cypher query, enabling execution of arbitrary Cypher queries. The issue is fixed in 1.2.3. Impact and...

7.1CVSS6AI score0.00285EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/05/12 11:0 p.m.10 views

CVE-2026-42156 Flowsint: Cypher query injection in node type on node creation

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a node with a malicious type that can escape an existing Cypher query and an adversary can execute an arbitrary Cypher...

7.1CVSS6AI score0.00285EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/12 11:0 p.m.67 views

CVE-2026-42156 Flowsint: Cypher query injection in node type on node creation

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a node with a malicious type that can escape an existing Cypher query and an adversary can execute an arbitrary Cypher...

7.1CVSS0.00285EPSS
Exploits0References1
osv
osv
added 2026/05/12 11:0 p.m.1 views

CVE-2026-42156 Flowsint: Cypher query injection in node type on node creation

Flowsint is an open-source OSINT graph exploration tool designed for cybersecurity investigation, transparency, and verification. Prior to 1.2.3, a remote attacker can create a node with a malicious type that can escape an existing Cypher query and an adversary can execute an arbitrary Cypher...

7.1CVSS6.2AI score0.00285EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/04/22 5:28 p.m.7 views

CVE-2026-31448

A flaw was found in the Linux kernel's ext4 filesystem. When creating a directory or node, if an extent insertion fails, the system may not properly clear residual data. This can lead to a situation where both directory and extended attribute xattr blocks simultaneously use the same memory buffer...

9.4CVSS5.3AI score0.00443EPSS
Exploits0References4
osv
osv
added 2026/04/22 1:53 p.m.2 views

CVE-2026-31448 ext4: avoid infinite loops caused by residual data

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod path, when mapping logical blocks to physical blocks, if inserting a new extent into the extent tree fails in this example, because the file system disabled th...

9.4CVSS6.3AI score0.00443EPSS
Exploits0References11
redhatcve
redhatcve
added 2026/01/09 10:51 a.m.8 views

CVE-2022-42325

Xenstore: Guests can create arbitrary number of nodes via transactions This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. In case a node has been created in a transaction and it is later deleted in the same transaction, t...

5.5CVSS6.7AI score0.00277EPSS
Exploits0References1
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2012-5410

Malware in sbrugna...

7.5CVSS7.5AI score0.00728EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.8 views

EUVD-2008-0288

Malware in sbrugna...

8.5CVSS6.4AI score0.02096EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-19204

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00183EPSS
Exploits0References2
nessus
nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-42314

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xenstore: guests can let run xenstored out of memory This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities...

6.5CVSS6.6AI score0.00245EPSS
Exploits0References2
nessus
nessus
added 2025/08/27 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-29486

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.14.x. Nodes in xenstore have an ownership. In oxenstored, a owner could give a node away. However, node ownership has...

6CVSS6AI score0.00406EPSS
Exploits0References2
Rows per page
Query Builder