Lucene search
+L

29 matches found

Cvelist
Cvelist
added 2 days ago27 views

CVE-2026-62947 OpenWrt: ACL bypass and arbitrary root file read via cgi-io cgi-download

OpenWrt is a Linux operating system targeting embedded devices. Prior to 25.12.5, the cgi-download handler in cgi-io authorizes the requested path against the caller's ubus session file ACL before canonicalization, and rpcd session.c uses fnmatch without FNMPATHNAME, allowing traversal such as an...

4.9CVSS0.00358EPSS
Exploits0References4
CVE
CVE
added 2 days ago9 views

CVE-2026-62947

CVE-2026-62947 affects OpenWrt prior to 25.12.5 through the cgi-download handler in cgi-io, where the requested path is validated against the caller’s ubus session file ACL before canonicalization. The rpcd session.c uses fnmatch() without FNM_PATHNAME, enabling traversal such as an allowed wildc...

4.9CVSS6.1AI score0.00358EPSS
Exploits0References4
OSV
OSV
added 2 days ago3 views

CVE-2026-62947 OpenWrt: ACL bypass and arbitrary root file read via cgi-io cgi-download

OpenWrt is a Linux operating system targeting embedded devices. Prior to 25.12.5, the cgi-download handler in cgi-io authorizes the requested path against the caller's ubus session file ACL before canonicalization, and rpcd session.c uses fnmatch without FNMPATHNAME, allowing traversal such as an...

4.9CVSS6.1AI score0.00358EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/25 12:0 a.m.55 views

RockyLinux 8 : kernel (RLSA-2026:19666)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19666 advisory. kernel: Fragnesia is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation LPE vulnerability in the Linux kernel...

7.8CVSS5.5AI score0.03663EPSS
Exploits17References5
OSV
OSV
added 2026/05/23 6:0 a.m.20 views

RLSA-2026:19664 Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation LPE vulnerability in th...

7.8CVSS6.1AI score0.03663EPSS
Exploits17References3
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.15 views

RHEL 9 : kernel (RHSA-2026:20129)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20129 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Fragnesia is a variant of Dir...

7.8CVSS5.5AI score0.03663EPSS
Exploits17References6
Tenable Nessus
Tenable Nessus
added 2026/05/22 12:0 a.m.20 views

RHEL 10 : kernel (RHSA-2026:20299)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20299 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Fragnesia is a variant of...

7.8CVSS5.5AI score0.03663EPSS
Exploits17References6
RedHat Linux
RedHat Linux
added 2026/05/21 2:50 p.m.18 views

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.1AI score0.03663EPSS
Exploits24References3
Tenable Nessus
Tenable Nessus
added 2026/05/21 12:0 a.m.26 views

AlmaLinux 8 : kernel-rt (ALSA-2026:19664)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:19664 advisory. kernel: Fragnesia is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation LPE vulnerability in the Linux kernel...

7.8CVSS5.5AI score0.03663EPSS
Exploits17References4
Tenable Nessus
Tenable Nessus
added 2026/05/21 12:0 a.m.18 views

RHEL 8 : kernel (RHSA-2026:20051)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20051 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Fragnesia is a variant of Dir...

7.8CVSS5.5AI score0.03663EPSS
Exploits17References6
RedHat Linux
RedHat Linux
added 2026/05/20 1:8 p.m.31 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

8.8CVSS6.1AI score0.03663EPSS
Exploits24References3
AlmaLinux
AlmaLinux
added 2026/05/20 12:0 a.m.13 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation LPE vulnerability in the Linux kernel CVE-2026-46300 kernel: Read root-owned fil...

7.8CVSS6.1AI score0.03663EPSS
Exploits17References6
AlmaLinux
AlmaLinux
added 2026/05/20 12:0 a.m.20 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: "Fragnesia" is a variant of Dirty Frag vulnerability in the ESP/XFRM leading to Local Privilege Escalation LPE vulnerability in th...

7.8CVSS6.1AI score0.03663EPSS
Exploits17References6
OSV
OSV
added 2026/05/05 6:55 p.m.2 views

CVE-2026-31893 Tunnelblick arbitrary file read via symlink following in tunnelblickd

Tunnelblick is an open source graphic user interface for OpenVPN on macOS. In versions 3.3beta26 through 9.0beta01, any local user can read arbitrary root-owned files by exploiting a symlink following vulnerability in tunnelblick-helper, reachable through the world-accessible tunnelblickd Unix...

6.8CVSS6AI score0.00242EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/03/05 12:53 a.m.4 views

CVE-2026-29122

International Data Casting IDC SFX2100 satellite receiver comes with the /bin/date utility installed with the setuid bit set. This configuration grants elevated privileges to any local user who can execute the binary. A local actor is able to use the GTFObins resource to preform privileged file...

9.2CVSS6AI score0.00139EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/03/05 12:48 a.m.6 views

CVE-2026-29121 `/sbin/ip` Binary given SETUID Permissions on IDC SFX2100 Leading to Potential LPE

International Data Casting IDC SFX2100 satellite receiver comes with the /sbin/ip utility installed with the setuid bit set. This configuration grants elevated privileges to any local user who can execute the binary. A local actor is able to use the GTFObins resource to preform privileged file...

9.2CVSS5.8AI score0.00148EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-24683

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HashiCorp Nomad and Nomad Enterprise 0.9.2 through 1.0.17, 1.1.11, and 1.2.5 allow operators with read-fs and alloc-exec or job-submit capabilities to read...

7.8CVSS7.5AI score0.01539EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/11/18 9:4 a.m.21 views

CVE-2024-41972 WAGO: Arbitrary File Overwrite Leading to Privileged File Read in Multiple Devices

A low privileged remote attacker can overwrite an arbitrary file on the filesystem which may lead to an arbitrary file read with root privileges...

6.5CVSS0.00585EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/02/27 12:0 a.m.9 views

PT-2024-4520 · Apache · Apache Ambari

Name of the Vulnerable Software and Affected Versions: Apache Ambari versions = 2.7.7 Description: The issue is related to an XML External Entity XXE injection attack in the Oozie Workflow Scheduler component of Apache Ambari. This vulnerability is caused by a lack of proper user input validation...

6.5CVSS6.8AI score0.00865EPSS
Exploits0References12
VulnCheck KEV
VulnCheck KEV
added 2023/11/13 12:0 a.m.3 views

VulnCheck KEV: CVE-2017-9833

/cgi-bin/wapopen in Boa 0.94.14rc21 allows the injection of "../.." using the FILECAMERA variable sent by GET to read files with root privileges. NOTE: multiple third parties report that this is a system-integrator issue e.g., a vulnerability on one type of camera because Boa does not include...

7.8CVSS7.3AI score0.68243EPSS
Exploits6References1
Rows per page
Query Builder