Lucene search
+L

82 matches found

fedora
fedora
added 2026/06/20 1:7 a.m.5 views

[SECURITY] Fedora 43 Update: ansible-core-2.18.18~rc1-1.fc43

Ansible is a radically simple model-driven configuration management, multi-node deployment, and remote task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred t...

7.8CVSS6AI score0.00156EPSS
Exploits0
fedora
fedora
added 2026/06/20 12:51 a.m.6 views

[SECURITY] Fedora 44 Update: ansible-core-2.20.7~rc1-1.fc44

Ansible is a radically simple model-driven configuration management, multi-node deployment, and remote task execution system. Ansible works over SSH and does not require any software or daemons to be installed on remote nodes. Extension modules can be written in any language and are transferred t...

7.8CVSS6AI score0.00156EPSS
Exploits0
nvd
nvd
added 2026/06/17 5:16 p.m.17 views

CVE-2026-20181

A vulnerability in Cisco ISE and ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to...

9.1CVSS0.00748EPSS
Exploits0References1
cve
cve
added 2026/06/17 4:16 p.m.123 views

CVE-2026-20181

Cisco ISE/ISE-PIC in Cisco IOS XE is affected by CVE-2026-20181. The CVE entry describes authenticated remote command execution via crafted HTTP input with privilege escalation to root and potential DoS in single-node deployments. Connected PT-security material (PT-2026-34270) references a separa...

9.1CVSS5.9AI score0.00748EPSS
Exploits0References1Affected Software1
redhatcve
redhatcve
added 2026/06/05 7:15 p.m.10 views

CVE-2026-20186

A vulnerability in Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerabilit...

9.9CVSS6.5AI score0.06315EPSS
Exploits0References1
nvd
nvd
added 2026/04/24 6:16 p.m.5 views

CVE-2026-41322

@astrojs/node allows Astro to deploy your SSR site to Node targets. Prior to 10.0.5, requesting a static js/css resources from astro path with an incorrect/malformed if-match header returns a 500 error with a one year cache lifetime instead of 412 in some cases. This has the effect that all...

5.3CVSS0.00238EPSS
Exploits0References1
euvd
euvd
added 2026/04/15 6:31 p.m.9 views

EUVD-2026-22970

A vulnerability in Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerabilit...

9.9CVSS6.2AI score0.06381EPSS
Exploits1References2
euvd
euvd
added 2026/04/15 6:31 p.m.8 views

EUVD-2026-22962

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to...

9.9CVSS6.2AI score0.11679EPSS
Exploits0References2
euvd
euvd
added 2026/04/15 6:31 p.m.5 views

EUVD-2026-22973

A vulnerability in Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have at least Read Only Admin credentials. This vulnerabilit...

9.9CVSS6.2AI score0.06315EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/15 4:3 p.m.3 views

CVE-2026-20147

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to...

9.9CVSS6.2AI score0.11679EPSS
Exploits0References2Affected Software2
cve
cve
added 2026/04/15 4:3 p.m.126 views

CVE-2026-20147

Cisco CVE-2026-20147 affects Cisco Identity Services Engine (ISE) and ISE-PIC. An authenticated, remote attacker with valid administrative credentials can exploit insufficient input validation via a crafted HTTP request to execute arbitrary commands on the device’s underlying OS, potentially gain...

9.9CVSS6.2AI score0.11679EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/04/15 4:3 p.m.120 views

CVE-2026-20147 Cisco Identity Services Engine Remote Code Execution Vulnerability

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to...

9.9CVSS0.11679EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-12672

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.00505EPSS
Exploits1References5
redhatcve
redhatcve
added 2025/08/17 3:24 p.m.58 views

CVE-2025-55207

Astro is a web framework for content-driven websites. Following CVE-2025-54793 there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios prior to version 9.4.1. Astro 5.12.8 addressed CVE-2025-54793 where https://example.com//astro.build/press would redirect to the...

6.9CVSS7AI score0.00614EPSS
Exploits0References1
snyk
snyk
added 2025/08/15 3:46 p.m.5 views

Open Redirect

Overview @astrojs/node is a Deploy your site to a Node.js server Affected versions of this package are vulnerable to Open Redirect via the trailingSlash configuration in standalone mode with the Node deployment adapter. An attacker can redirect users to external sites by crafting URLs with double...

7.2CVSS6.8AI score0.00534EPSS
Exploits0References2
cvelist
cvelist
added 2025/08/15 3:13 p.m.15 views

CVE-2025-55207 @astrojs/node's trailing slash handling causes open redirect issue

Astro is a web framework for content-driven websites. Following CVE-2025-54793 there's still an Open Redirect vulnerability in a subset of Astro deployment scenarios prior to version 9.4.1. Astro 5.12.8 addressed CVE-2025-54793 where https://example.com//astro.build/press would redirect to the...

6.9CVSS0.00534EPSS
Exploits0References2
cve
cve
added 2025/08/15 3:13 p.m.18 views

CVE-2025-55207

Astro CVE-2025-55207 describes an Open Redirect vulnerability in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone mode with trailingSlash set to "always", URLs like https://example.com//astro.build/press can redirect to //astro.build/press, en...

6.9CVSS6AI score0.00534EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/08/15 12:0 a.m.5 views

PT-2025-33494 · Astro · Astro

Name of the Vulnerable Software and Affected Versions: Astro versions prior to 9.4.1 Description: Astro is a web framework for content-driven websites. An open redirect vulnerability exists in certain Astro deployment scenarios. Specifically, when using the Node deployment adapter in standalone...

6.9CVSS7.1AI score0.00534EPSS
Exploits0References8
osv
osv
added 2025/06/25 4:15 p.m.7 views

CVE-2025-20264

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to bypass the authorization mechanisms for specific administrative functions. This vulnerability is due to insufficient authorization enforcement mechanisms fo...

6.4CVSS5.8AI score0.00283EPSS
Exploits0References1
github
github
added 2025/05/06 4:38 p.m.12 views

Remote Code Execution Vulnerability in vLLM Multi-Node Cluster Configuration

Affected Environments Note that this issue only affects the V0 engine, which has been off by default since v0.8.0. Further, the issue only applies to a deployment using tensor parallelism across multiple hosts, which we do not expect to be a common deployment pattern. Since V0 is has been off by...

8CVSS7.8AI score0.00502EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder