Lucene search
K

24 matches found

Debian CVE
Debian CVE
added 6 days ago6 views

CVE-2026-53257

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: enforce HE/EHT cap/oper consistency Xiang Mei reports that mac80211 could crash if ehtcap is set but ehtoper isn't. Rather than fixing that for the individual users, enforce that both HE/EHT have consistent elemen...

5.7AI score0.00151EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/05 7:17 p.m.9 views

CVE-2026-9918 vulnerabilities

Vulnerabilities for packages: chromium...

9.6CVSS5.4AI score0.00243EPSS
Exploits0
Chainguard
Chainguard
added 2026/05/20 7:17 a.m.8 views

GHSA-GQC5-P594-9CHJ vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/04/17 8:0 p.m.12 views

GHSA-VHP9-V4R9-MXWJ vulnerabilities

Vulnerabilities for packages: chromium...

5.7AI score
Exploits0
Chainguard
Chainguard
added 2026/04/17 1:17 p.m.6 views

CVE-2026-5903 vulnerabilities

Vulnerabilities for packages: chromium...

6.5CVSS5.7AI score0.00261EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/03/19 12:0 a.m.9 views

yggdrasil security update

0.4.8-3 - Bump release for rebuild...

10CVSS6.7AI score0.01945EPSS
Exploits3
UbuntuCve
UbuntuCve
added 2026/03/12 6:16 p.m.3 views

CVE-2026-32116

Magic Wormhole makes it possible to get arbitrary-sized files and directories from one computer to another. From 0.21.0 to before 0.23.0, receiving a file wormhole receive from a malicious party could result in overwriting critical local files, including /.ssh/authorizedkeys and .bashrc. This cou...

8.2CVSS5.8AI score0.0035EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/02/27 1:48 p.m.4 views

CVE-2026-3061 vulnerabilities

Vulnerabilities for packages: chromium...

9.1CVSS5.9AI score0.00305EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/02/09 11:37 p.m.6 views

CVE-2026-21941 affecting package mysql for versions less than 8.0.45-1

CVE-2026-21941 affecting package mysql for versions less than 8.0.45-1. An upgraded version of the package is available that resolves this issue...

4.9CVSS7.3AI score0.00337EPSS
Exploits0
CVE
CVE
added 2026/01/22 4:59 a.m.105 views

CVE-2025-71176

CVE-2025-71176 affects pytest up to 9.0.2 on UNIX: it relies on predictable temporary directories named /tmp/pytest-of-{user}, which can enable a local attacker to cause a denial of service and potentially gain privileges via insecure temporary directory handling. The provided sources describe th...

6.8CVSS5.6AI score0.0014EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.3 views

IBM DB2 Privilege Escalation (7250486) (Unix)

According to its self-reported version number, IBM Db2 on Unix may be affected by a vulnerability: - IBM Db2 12.1.0 through 12.1.3 for Linux, UNIX and Windows includes Db2 Connect Server under specific configurations could allow a local user to execute malicious code that escalate their privilege...

7.8CVSS6.8AI score0.0011EPSS
Exploits0References2
Chainguard
Chainguard
added 2025/08/30 2:3 p.m.3 views

GHSA-9Q78-27F3-2JMH vulnerabilities

Vulnerabilities for packages: zola...

7.1AI score
Exploits0
Chainguard
Chainguard
added 2025/08/23 2:16 p.m.3 views

GHSA-9WPW-6VG5-7W9G vulnerabilities

Vulnerabilities for packages: openjdk-25-openj9, openjdk-21-openj9, openjdk-17-openj9, openjdk-11-openj9, openjdk-26-openj9, openjdk-8-openj9...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2025/08/14 7:47 a.m.4 views

GHSA-5GMG-GQ5Q-XV3F vulnerabilities

Vulnerabilities for packages: openjdk...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/08/05 4:48 a.m.6 views

assimp: Open Asset Import Library Assimp ASE File ASEParser.cpp ParseLV4MeshBonesVertices heap-based overflow

A flaw has been found in the Open Asset Import Library assimp. In affected versions, a malformed ASE file may trigger a heap-based buffer overflow, which may lead to an application crash or other undefined behavior...

7.8CVSS5.8AI score0.0028EPSS
Exploits1References11
RedHat Linux
RedHat Linux
added 2025/07/01 7:47 p.m.5 views

firefox: thunderbird: Use-after-free in FontFaceSet

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A use-after-free in FontFaceSet resulted in a potentially exploitable crash...

9.8CVSS5.7AI score0.03057EPSS
Exploits0References5
Mageia
Mageia
added 2025/06/09 6:14 p.m.21 views

Updated golang packages fix security vulnerabilities

Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information. CVE-2025-4673. os: inconsistent handling of OCREATE|OEXCL on Unix and Windows os.OpenFilepath, os.OCREATE|OEXCL behaved differently on Unix and Windows systems when th...

7.5CVSS6.7AI score0.0056EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2024/03/19 5:46 p.m.3 views

libreoffice: Improper Input Validation leading to arbitrary gstreamer plugin execution

An improper input validation vulnerability was found in LibreOffice. In versions where filenames are not sufficiently escaped, an attacker can execute arbitrary GStreamer plugins...

8.8CVSS6AI score0.01017EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/01/02 8:14 a.m.4 views

Mozilla: Symlinks may resolve to smaller than expected buffers

The Mozilla Foundation Security Advisory describes this flaw as: When resolving a symlink, a race may occur where the buffer passed to readlink may actually be smaller than necessary. This bug only affects Firefox on Unix-based operating systems Android, Linux, MacOS. Windows is unaffected...

5.3CVSS7.4AI score0.00665EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/09/07 2:34 a.m.3 views

SUSE CVE-2023-39321

Processing an incomplete post-handshake message for a QUIC connection can cause a panic...

7.5CVSS6.8AI score0.01146EPSS
Exploits0References9
Rows per page
Query Builder