Lucene search
K

13255 matches found

RedHat Linux
RedHat Linux
added 2026/05/11 11:40 p.m.15 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References6
NVD
NVD
added 2026/05/11 10:22 p.m.17 views

CVE-2026-42600

MinIO is a high-performance object storage system. From RELEASE.2022-07-24T01-54-52Z to before RELEASE.2026-04-14T21-32-45Z, A path traversal vulnerability in MinIO's ReadMultiple internode storage-REST endpoint allows a caller holding the cluster root JWT to read files from outside the configure...

6.9CVSS0.08457EPSS
Exploits0References1
NVD
NVD
added 2026/05/11 9:19 p.m.45 views

CVE-2026-41489

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS0.00132EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/11 8:21 p.m.10 views

CVE-2026-41489 Pi-hole: Local privilege escalation via config-controlled path in root-executed service hooks

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
CVE
CVE
added 2026/05/11 8:21 p.m.13 views

CVE-2026-41489

Pi-hole (6.0 through before Core 6.4.2 and FTL 6.6.1) is vulnerable because two systemd-executed root scripts (pihole-FTL-prestart.sh and pihole-FTL-poststop.sh) read the files.pid path from a config without validation and perform privileged file operations using that path. An attacker with pihol...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/11 8:7 p.m.33 views

CVE-2026-28915

A parsing issue in the handling of directory paths was addressed with improved path validation. This issue is fixed in macOS Sequoia 15.7.7, macOS Sonoma 14.8.7, macOS Tahoe 26.5. An app may be able to gain root privileges...

0.00178EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/05/11 8:2 p.m.10 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.1AI score0.93235EPSS
Exploits31References6
EUVD
EUVD
added 2026/05/11 6:31 p.m.22 views

EUVD-2026-29154

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

8.4CVSS6.2AI score0.00812EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:47 p.m.7 views

CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

8.4CVSS6.2AI score0.00812EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2026/05/11 4:47 p.m.7 views

CVE-2026-4892 CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

6.2AI score0.00812EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 2026/05/11 4:47 p.m.10 views

CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

8.8CVSS6.2AI score0.00812EPSS
Exploits1
EUVD
EUVD
added 2026/05/11 2:42 p.m.9 views

EUVD-2026-27657

Keylime has a hardcoded attestation challenge nonce that allows replay attacks...

6.3CVSS5.8AI score0.00121EPSS
Exploits0References4
OSV
OSV
added 2026/05/11 2:42 p.m.3 views

GHSA-Q8W6-W55C-CCV5 Keylime has a hardcoded attestation challenge nonce that allows replay attacks

CVE-2026-6420: Hardcoded attestation challenge nonce allows replay attacks Impact The CertificationParameters.generatechallenge method in the push attestation protocol uses a hardcoded challenge nonce instead of generating a cryptographically random value. This removes the nonce-based replay...

6.3CVSS5.8AI score0.00121EPSS
Exploits0References5
HackRead
HackRead
added 2026/05/11 12:35 p.m.6 views

9-Year-Old Dirty Frag Vulnerability Enables Root Access on Linux Systems

The Dirty Frag vulnerability affects Linux systems and allows root access escalation, while public PoC exploit code increases attack risks...

5.9AI score
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/11 12:0 p.m.11 views

CVE-2026-4892

A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via a crafted DHCPv6 packet...

8.4CVSS6.2AI score0.00812EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/05/11 3:25 a.m.16 views

CVE-2026-43500

A flaw was found in the Linux kernel's RxRPC networking subsystem. When a socket buffer carrying a page-cache reference reaches the RxRPC authentication verification path, the kernel performs an in-place decryption directly on the referenced page without first isolating the buffer. A low-privileg...

7.8CVSS6.1AI score0.92766EPSS
Exploits20References4
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.9 views

Unity Linux 20.1060e / 20.1070e Security Update: php (UTSA-2026-017556)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017556 advisory. In PHP versions 7.3.x up to and including 7.3.31, 7.4.x below 7.4.25 and 8.0.x below 8.0.12, when running PHP FPM SAPI with main FPM daemon process running as root a...

7.8CVSS6.9AI score0.01337EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.8 views

Apple macOS 安全漏洞

Apple macOS is a proprietary operating system developed by the American company Apple for Mac computers. There is a security vulnerability in Apple macOS, which stems from parsing issues with directory path handling, potentially allowing applications to obtain root privileges. The following...

7.8CVSS5.8AI score0.00178EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.10 views

Apple多款产品 安全漏洞

Apple iOS, among others, are products of the American company Apple. Apple iOS is an operating system developed for mobile devices. Apple macOS is a specialized operating system designed for Mac computers. Apple iPadOS is an operating system for iPad tablets. Several of Apple’s products have...

7.8CVSS5.8AI score0.00132EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/11 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2026-4892

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code with root privileges via...

8.8CVSS6.1AI score0.00812EPSS
Exploits1References2
Rows per page
Query Builder