Lucene search
+L

68 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-2127

Malware in sbrugna...

5CVSS6.1AI score0.04309EPSS
Exploits1References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-5690

Malware in sbrugna...

7.8CVSS7.5AI score0.0044EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-5689

Malware in sbrugna...

7.8CVSS7.5AI score0.00356EPSS
Exploits0References4
OSV
OSV
added 2025/10/02 9:20 p.m.2 views

GHSA-7232-97C6-J525 Canonical LXD Source Container Identification Vulnerability via cmdline Spoofing in devLXD Server

Impact In LXD's devLXD server, the source container identification process uses process cmdline command line information, allowing attackers to impersonate other containers by spoofing process names. The core issue lies in the findContainerForPID function in lxd/apidevlxd.go. This function...

5.1CVSS7AI score0.00326EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/08/02 12:0 a.m.7 views

PT-2025-46735

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the pid subsystem, specifically in the task pid nr ns function. A missing null check for the namespace pointer can lead to a kernel panic when a...

4.6CVSS7.5AI score0.00207EPSS
Exploits0
OSV
OSV
added 2023/12/01 10:46 p.m.8 views

GHSA-WJ7F-468M-6MV8 Environment variables still accessible through /proc

Impact Environment variables can be read from procfs unless a new process is started. PoC use birdcage::Birdcage, Sandbox; use std::env, fs; fn main Birdcage::new.lock.unwrap; asserteq!env::varos"SECRET", None; let environ = fs::readtostring"/proc/self/environ".unwrap;...

4CVSS6.9AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2023/12/01 10:46 p.m.20 views

Environment variables still accessible through /proc

Impact Environment variables can be read from procfs unless a new process is started. PoC use birdcage::Birdcage, Sandbox; use std::env, fs; fn main Birdcage::new.lock.unwrap; asserteq!env::varos"SECRET", None; let environ = fs::readtostring"/proc/self/environ".unwrap;...

6.9AI score
Exploits0References2Affected Software1
GithubExploit
GithubExploit
added 2023/04/01 7:28 a.m.1095 views

Exploit for Improper Privilege Management in Podman_Project Podman

CVE-2022-1227Exploit A script for exploiting CVE-2022-1227...

8.8CVSS8.8AI score0.04205EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2023/02/15 5:47 a.m.6 views

SUSE CVE-2012-2127

fs/proc/root.c in the procfs implementation in the Linux kernel before 3.2 does not properly interact with CLONENEWPID clone system calls, which allows remote attackers to cause a denial of service reference leak and memory consumption by making many connections to a daemon that uses PID namespac...

5CVSS6.5AI score0.04309EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:39 a.m.5 views

SUSE CVE-2013-1958

The scmcheckcreds function in net/core/scm.c in the Linux kernel before 3.8.6 does not properly enforce capability requirements for controlling the PID value associated with a UNIX domain socket, which allows local users to bypass intended access restrictions by leveraging the time interval durin...

1.9CVSS5.9AI score0.0034EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:39 a.m.6 views

SUSE CVE-2017-14179

Apport before 2.13 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion, possibly gain root privileges, or escape from containers...

7.8CVSS7.6AI score0.00356EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 4:39 a.m.5 views

SUSE CVE-2017-14180

Apport 2.13 through 2.20.7 does not properly handle crashes originating from a PID namespace allowing local users to create certain files as root which an attacker could leverage to perform a denial of service via resource exhaustion or possibly gain root privileges, a different vulnerability tha...

7.8CVSS7AI score0.0044EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.9 views

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace and mount a FUSE filesystem. Upon interaction with this FUSE filesystem if the userspace component is terminated via a kill of the PID namespace's pid 1 it will result in a hung task and resources being permanently locked up until system reboot. This can result in resource exhaustion.

...

4.7CVSS7AI score0.00512EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2020/06/19 1:25 p.m.21 views

CVE-2019-20794

A flaw was found in the Linux kernel. A user with PID namespace mounting a FUSE filesystem could cause a denial of service if the userspace component is terminated pid 1. The highest threat from this vulnerability is to system availability...

4.7CVSS3AI score0.00512EPSS
Exploits1References3
NVD
NVD
added 2020/05/09 6:15 p.m.30 views

CVE-2019-20794

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID...

4.7CVSS4.7AI score0.00512EPSS
Exploits1References4
OSV
OSV
added 2020/05/09 6:15 p.m.5 views

DEBIAN-CVE-2019-20794

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID...

4.7CVSS6.4AI score0.00512EPSS
Exploits1References1
OSV
OSV
added 2020/05/09 6:15 p.m.3 views

UBUNTU-CVE-2019-20794

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID...

4.7CVSS6.7AI score0.00512EPSS
Exploits1References5
Debian CVE
Debian CVE
added 2020/05/09 5:35 p.m.66 views

CVE-2019-20794

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID...

4.7CVSS6.5AI score0.00512EPSS
Exploits1
Veracode
Veracode
added 2020/04/10 12:38 a.m.33 views

Privilege Escalation

kernel-rt is vulnerable to privilege escalation. The vulnerability exists as a deficiency was found in the Linux kernel signals implementation. The killsomethinginfo function did not check if a process was outside the caller's namespace before sending the kill signal, making it possible to kill...

4.6CVSS3.4AI score0.00392EPSS
Exploits0References22Affected Software1
OSV
OSV
added 2019/10/07 3:31 p.m.5 views

OPENSUSE-SU-2019:2288-1 Security update for singularity

This update for singularity fixes the following issues: singularity was updated to version 3.4.1: This point release addresses the following issues: - Fixes an issue where a PID namespace was always being used - Fixes compilation on non 64-bit architectures - Allows fakeroot builds for zypper,...

9CVSS9.1AI score0.02127EPSS
Exploits1References4
Rows per page
Query Builder