Lucene search
K

872 matches found

Tenable Nessus
Tenable Nessus
added 6 days ago4 views

RHCOS 4 : OpenShift Container Platform 4.17.55 (RHSA-2026:34097)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34097 advisory. - net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 - crypto/x509: crypto/tls: golang: Go: Denial of Servi...

9.1CVSS6.8AI score0.01557EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2026/07/02 12:3 a.m.5 views

netty-codec-http: Netty is vulnerable to request smuggling due to incorrect parsing of chunk extensions

A flaw in Netty’s HTTP/1.1 chunked encoding parser allows newline LF characters in chunk extensions to be incorrectly treated as the end of the chunk-size line instead of requiring the proper CRLF sequence. This discrepancy can be exploited in rare cases where a reverse proxy interprets the same...

7.5CVSS6.6AI score0.00631EPSS
Exploits1References11
OSV
OSV
added 2026/06/26 12:5 p.m.9 views

RLSA-2026:29195 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/06/26 12:0 a.m.14 views

AlmaLinux 10 : buildah (ALSA-2026:29195)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:29195 advisory. net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.15 views

RHEL 9 : runc (RHSA-2026:29702)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:29702 advisory. The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes:...

7.5CVSS7.3AI score0.00728EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.11 views

RHCOS 4 : OpenShift Container Platform 4.12.92 (RHSA-2026:26527)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:26527 advisory. - golang: archive/tar: Unbounded allocation when parsing GNU sparse map CVE-2025-58183 - golang: net/url: Memory exhaustion in quer...

10CVSS7AI score0.01945EPSS
Exploits3References12
Ubuntu
Ubuntu
added 2026/06/24 9:30 a.m.8 views

USN-8466-1: Perl DBI module vulnerabilities

It was discovered that the Perl DBI module incorrectly handled certain error messages. An attacker could use this issue to cause applications using the Perl DBI module to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2026-9698 It was discovered that the Perl DBI...

9.8CVSS6.2AI score0.00413EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/24 12:0 a.m.13 views

RHEL 10 : buildah (RHSA-2026:29195)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:29195 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a...

7.5CVSS6AI score0.00728EPSS
Exploits0References10
OSV
OSV
added 2026/06/22 9:4 a.m.9 views

SUSE-SU-2026:22249-1 Security update for google-osconfig-agent

This update for google-osconfig-agent fixes the following issues - CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers. - CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents bsc1251453. -...

10CVSS7AI score0.91969EPSS
Exploits3References32
Tenable Nessus
Tenable Nessus
added 2026/06/17 12:0 a.m.8 views

RHCOS 4 : OpenShift Container Platform 4.18.44 (RHSA-2026:25180)

The remote Red Hat Enterprise Linux CoreOS 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25180 advisory. - net/url: Incorrect parsing of IPv6 host literals in net/url CVE-2026-25679 - crypto/x509: crypto/tls: golang: Go: Denial of Servi...

7.5CVSS7.8AI score0.00728EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/06/16 4:28 a.m.6 views

GIMP: GIMP: Arbitrary code execution via specially crafted PSD file

A flaw was found in GIMP. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted PSD Photoshop Document file. This flaw is due to an integer overflow during the parsing of PSD files, which can lead to arbitrary code execution, allowing the attacker to run...

7.8CVSS7.6AI score0.00755EPSS
Exploits0References6
OSV
OSV
added 2026/06/15 3:34 p.m.5 views

SUSE-SU-2026:2400-1 Security update for kubevirt

This update for kubevirt fixes the following issues: Update to version 1.7.4, fixes various go embedded security issues: - CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents bsc1251420. - CVE-2025-47913: golang.org/x/crypto/ssh/agent:...

9.9CVSS7.8AI score0.01557EPSS
Exploits3References15
Ubuntu
Ubuntu
added 2026/06/15 12:12 p.m.13 views

USN-8405-2: CUPS regression

USN-8405-1 fixed vulnerabilities in CUPS. The update introduced a regression that cause CUPS to crash when parsing certain large printer PPD files. This update fixes the problem. Original advisory details: Ariel Silver discovered that CUPS incorrectly handled username comparisons during...

6.2AI score
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/12 7:30 a.m.7 views

Security Bulletin: IBM Event Processing is affected by Multiple vulnerabilities

Summary IBM Event Processing is affected by Multiple vulnerabilities and were addressed in IBM Event Processing version 1.5.3 Vulnerability Details CVEID:CVE-2026-27148 DESCRIPTION: Storybook is a frontend workshop for building user interface components and pages in isolation. Prior to versions...

9.6CVSS6.1AI score0.00683EPSS
Exploits2Affected Software1
CVE
CVE
added 2026/06/11 6:47 p.m.21 views

CVE-2025-24268

The CVE-2025-24268 issue is tied to macOS Sequoia: a parsing problem in the handling of directory paths allowed an application to access sensitive user data. Root cause: inadequate path validation. Affected versions are prior to macOS Sequoia 15.4; the fix is implemented in Sequoia 15.4. Practica...

5.5CVSS5.5AI score0.0014EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/06/11 6:47 p.m.10 views

EUVD-2025-210120

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

5.5CVSS5.4AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/11 6:47 p.m.29 views

CVE-2025-24268

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.4. An app may be able to access sensitive user data...

0.0014EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.19 views

RHEL 9 : skopeo (RHSA-2026:25250)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25250 advisory. The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and...

10CVSS5.6AI score0.01945EPSS
Exploits3References12
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.12 views

RHEL 9 : runc (RHSA-2026:25253)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:25253 advisory. The runC tool is a lightweight, portable implementation of the Open Container Format OCF that provides container runtime. Security Fixes:...

10CVSS5.7AI score0.01945EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.17 views

RHEL 9 : buildah (RHSA-2026:25252)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:25252 advisory. The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a...

10CVSS5.6AI score0.01945EPSS
Exploits3References12
Rows per page
Query Builder