CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2 days ago•6 views

CVE-2026-40564

Files or Directories Accessible to External Parties, Server-Side Request Forgery SSRF vulnerability in Apache Flink Kubernetes Operator. The FlinkSessionJob jarURI is currently not validated so that it points to user-owned files or addresses. This lets a user with CR create permissions read files...

6.5CVSS5.8AI score0.00053EPSS

Exploits1References1

ATTACKERKB•added 2 days ago•2 views

CVE-2026-1784

The Route OpenShift resource allows to define routes to make pods reachable at a subdomain through HAProxy. It was found that the checks performed on the spec.path YAML stanza in a Route document was insufficient and could allow a controlled injection of the HAProxy configuration...

8.8CVSS5.8AI score0.00013EPSS

NVD•added 3 days ago•8 views

CVE-2026-10533

A flaw was found in OpenShift Container Platform. Completed pods with restartPolicy: Never do not count toward ResourceQuota pod limits, and Kubernetes events are not quota-scoped. A non-privileged user who can create pods in a namespace can exploit this to generate a large volume of events that...

5CVSS0.00039EPSS

EUVD•added 3 days ago•4 views

EUVD-2026-33641

5CVSS5.8AI score0.00039EPSS

NVD•added 3 days ago•7 views

CVE-2026-49298

A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed to the worker container as command-line arguments visible in the pod spec. An authenticated UI/API user with Kubernetes read-only access to the cluster e.g...

8.8CVSS0.0005EPSS

Vulnrichment•added 3 days ago•5 views

CVE-2026-49298 Apache Airflow: JWT Token Exposure in KubernetesExecutor Command-Line Arguments

5.8AI score0.0005EPSS

Cvelist•added 3 days ago•27 views

CVE-2026-49298 Apache Airflow: JWT Token Exposure in KubernetesExecutor Command-Line Arguments

0.0005EPSS

RedhatCVE•added 5 days ago•6 views

CVE-2026-44543

Local Path Provisioner provides a way for the Kubernetes users to utilize the local storage in each node. Prior to 0.0.36, a malicious user with permission to edit the local-path-config ConfigMap in the local-path-storage namespace can manipulate the helperPod.yaml template used by...

8.7CVSS5.8AI score0.00034EPSS

ATTACKERKB•added 6 days ago•4 views

CVE-2026-10052

A flaw was found in the Quay config-tool's LDAP and SMTP validation functions. An attacker with config editor access can exploit these functions, which make outbound connections to user-supplied endpoints without proper IP or host filtering. This allows the attacker to perform internal network...

4.1CVSS5.8AI score0.00023EPSS

SUSE CVE•added 6 days ago•6 views

SUSE CVE-2026-9804

A flaw was found in KubeVirt's virt-exportserver component. An attacker with specific namespace-level access can exploit a path traversal vulnerability in the VMExport directory endpoint. By placing a symbolic link symlink within an exported filesystem Persistent Volume Claim PVC that points...

7.7CVSS5.8AI score0.00029EPSS

Positive Technologies•added 6 days ago•5 views

PT-2026-44761

4.1CVSS5.8AI score0.00023EPSS

NVD•added last week•7 views

CVE-2026-44543

8.7CVSS0.00034EPSS

ATTACKERKB•added last week•2 views

CVE-2026-44543

8.7CVSS5.8AI score0.00034EPSS

Exploits0References2Affected Software1

Vulnrichment•added last week•3 views

CVE-2026-44543 Local Path Provisioner: HelperPod Template Injection

8.7CVSS5.8AI score0.00034EPSS

Cvelist•added last week•25 views

CVE-2026-44543 Local Path Provisioner: HelperPod Template Injection

8.7CVSS0.00034EPSS