Lucene search
K

98 matches found

RedhatCVE
RedhatCVE
added 5 days ago5 views

CVE-2026-59996

A flaw was found in OpenSSH, a widely used tool for secure remote access. When a user attempts to copy files between two different remote systems using the scp command, the file might be incorrectly placed in a directory above the intended destination. This unintended file placement could lead to...

5.4CVSS6AI score0.00241EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:47 p.m.14 views

CVE-2026-45180

Catalyst::Plugin::Statsd versions through 0.10.0 for Perl may leak session ids. If the communication channel to the statsd daemon is not secured for example, by sending UDP packets to a host on another network, then users' session ids may be leaked. This may allow an attacker to use session ids a...

7.5CVSS5.5AI score0.00244EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2026/04/16 12:0 a.m.18 views

Fedora: Security Advisory (FEDORA-2026-02c1f66b6a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.8AI score0.01688EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2026/04/13 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2026-95ee0edcd5)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.2CVSS5.8AI score0.00994EPSS
Exploits2References5
OpenVAS
OpenVAS
added 2026/04/10 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2026:1213-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.01059EPSS
Exploits0References8
OSV
OSV
added 2026/04/03 6:31 a.m.5 views

GHSA-QPC3-8VQG-8G6W pymetasploit3 vulnerable to command injection in console.run_module_with_output()

Command injection vulnerability in console.runmodulewithoutput in pymetasploit3 through version 1.0.6 allows attackers to inject newline characters into module options such as RHOSTS. This breaks the intended command structure and causes the Metasploit console to execute additional unintended...

9.3CVSS6.2AI score0.01923EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/03 6:31 a.m.6 views

pymetasploit3 vulnerable to command injection in console.run_module_with_output()

Command injection vulnerability in console.runmodulewithoutput in pymetasploit3 through version 1.0.6 allows attackers to inject newline characters into module options such as RHOSTS. This breaks the intended command structure and causes the Metasploit console to execute additional unintended...

9.8CVSS6.2AI score0.01923EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/03 4:32 a.m.20 views

CVE-2026-5463

Command injection vulnerability in console.runmodulewithoutput in pymetasploit3 through version 1.0.6 allows attackers to inject newline characters into module options such as RHOSTS. This breaks the intended command structure and causes the Metasploit console to execute additional unintended...

9.3CVSS0.01923EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.12 views

PT-2026-29988

Name of the Vulnerable Software and Affected Versions pymetasploit3 versions through 1.0.6 Description A command injection issue exists in the console.run module with output function of pymetasploit3. Attackers can inject newline characters into module options, such as the RHOSTS parameter,...

9.8CVSS5.9AI score0.01923EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2026/04/01 12:0 a.m.9 views

Ubuntu: Security Advisory (USN-8135-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.8AI score0.02876EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/17 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for util-linux (EulerOS-SA-2026-1596)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS5.8AI score0.00179EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.1 views

Mageia: Security Advisory (MGASA-2026-0056)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.8AI score0.00498EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/03/13 12:0 a.m.6 views

Fedora: Security Advisory (FEDORA-2026-ac5dd35f2d)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS6.4AI score0.0055EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2026/03/05 12:0 a.m.5 views

openSUSE Security Advisory (SUSE-SU-2026:0789-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS6AI score0.00765EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2026/03/05 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2026:0771-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6AI score0.01208EPSS
Exploits3References8
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.4 views

Fedora: Security Advisory (FEDORA-2026-00b5bf3150)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS6.1AI score0.09436EPSS
Exploits2References8
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.1 views

openSUSE Security Advisory (SUSE-SU-2026:0685-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.5CVSS5.8AI score0.00586EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/26 12:36 a.m.7 views

CVE-2026-27829

Astro is a web framework. In versions 9.0.0 through 9.5.3, a bug in Astro's image pipeline allows bypassing image.domains / image.remotePatterns restrictions, enabling the server to fetch content from unauthorized remote hosts. Astro provides an inferSize option that fetches remote images at rend...

7.2CVSS5.7AI score0.00281EPSS
Exploits1References3Affected Software1
OpenVAS
OpenVAS
added 2026/02/20 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2026:0574-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS5.5AI score0.00947EPSS
Exploits1References6
OpenVAS
OpenVAS
added 2026/02/17 12:0 a.m.6 views

Ubuntu: Security Advisory (USN-8042-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS5.5AI score0.00628EPSS
Exploits0References2
Rows per page
Query Builder