CVE-2026-54448 Trivy: Helm chart tar bomb causes OOM via unbounded io.ReadAll in parser

Trivy is a security scanner. Prior to 0.71.0, when Trivy scans a Helm chart archive .tgz, its custom tar unpacker reads each entry with io.ReadAlltr and no size limit. An attacker who can place a malicious .tgz file in the scanned path can craft a small compressed archive that decompresses to...

CVE-2026-57587

A SQL injection vulnerability in Nessus allows a remote, unauthenticated attacker who controls reverse DNS records for a scanned host to inject malicious SQL into the scan results database, potentially enabling exfiltration of scan-result data...

Lantronix PremierWave 2050 8.9.0.0R4 - Remote Command Injection

Lantronix PremierWave 2050 8.9.0.0R4 contains an OS command injection vulnerability. A specially-crafted HTTP request can lead to command in the Web Manager Wireless Network Scanner. An attacker can make an authenticated HTTP request to trigger this vulnerability. id: CVE-2021-21881 info: name:...

DataEase - Remote Code Execution

DataEase is an open-source business intelligence and data visualization platform. Public advisories state that CVE-2025-49002 is related to a bypass in the previous fix for CVE-2025-32966 involving case-insensitive handling of restricted H2 JDBC keywords. This template is a non-invasive detection...

GHSA-CVXM-645Q-P574 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

CVE-2026-53489 vulnerabilities

Vulnerabilities for packages: wolfictl, docker-cli-buildx-fips, trivy, kaniko, packer-fips, kubescape-server-fips, trivy-fips, zarf, zot, docker-compose, packer, docker-compose-fips, buildkitd-fips, neuvector-scanner-fips, docker-fips, cloudbeat-fips, zarf-fips, manifest-tool, kaniko-fips,...

GHSA-JPCC-P29G-P8MQ vulnerabilities

Vulnerabilities for packages: docker-cli-buildx-fips, chaos-mesh, packer-fips, rancher-agent, rancher, docker-compose-fips, buildkitd-fips, helm-fips, cloudbeat-fips, steampipe, k9s-fips, trivy-operator, kube-mgmt, newrelic-infrastructure-agent-fips, tigera-operator, neuvector-scanner, buildkitd,...

GHSA-XHF5-7WJV-PQXP vulnerabilities

Vulnerabilities for packages: docker-cli-buildx-fips, chaos-mesh, packer-fips, rancher-agent, rancher, docker-compose-fips, buildkitd-fips, helm-fips, cloudbeat-fips, steampipe, k9s-fips, trivy-operator, kube-mgmt, newrelic-infrastructure-agent-fips, tigera-operator, neuvector-scanner, buildkitd,...

Linux Distros Unpatched Vulnerability : CVE-2026-46417

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-next.12,...

CVE-2025-71344

picklescan before 0.0.30 affected versions 0.0.26 and earlier fails to detect the ensurepip.runpip built-in function when scanning pickle files, allowing attackers to execute arbitrary code. Malicious pickle files embedding ensurepip.runpip calls in reduce methods bypass picklescan detection and...

CVE-2026-53655 node-tar applies PAX size override to intermediary GNU long-name/long-link headers, causing tar parser interpretation differential (file smuggling)

node-tar is a full-featured Tar for Node.js. Prior to 7.5.16, tar node-tar applies a PAX extended header's size= record and other PAX overrides to the next header entry of any type, including intermediary metadata headers such as a GNU long-name L or long-link K entry. Per POSIX pax, a PAX extend...

Astra Linux – Vulnerability in yaml-cpp

The function “Token& Scanner::peek” in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service assertion failure and application exit via a ‘!2’ string...

GHSA-8PXW-9C75-6W56 vulnerabilities

Vulnerabilities for packages: neuvector-scanner, neuvector-scanner-fips...

CVE-2025-8077 vulnerabilities

Vulnerabilities for packages: neuvector-scanner, neuvector-scanner-fips...

CVE-2025-8077 vulnerabilities

Vulnerabilities for packages: neuvector-scanner...

GHSA-8PXW-9C75-6W56 vulnerabilities

Vulnerabilities for packages: neuvector-scanner...

CVE-2026-53872

picklescan before 0.0.35 contains an unsafe pickle deserialization vulnerability allowing unauthenticated attackers to read arbitrary server files by chaining io.FileIO and urllib.request.urlopen. Attackers can bypass RCE-focused blocklists to exfiltrate sensitive data like /etc/passwd to externa...

EUVD-2026-37741

picklescan before 1.0.3 contains a scanning bypass vulnerability in the scanpytorch function that allows attackers to embed malicious magic numbers via dynamic eval using the reduce trick. Attackers can craft malicious PyTorch payloads that evade picklescan detection while remaining executable,...

EUVD-2025-210270

picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code execution by invoking direct syscalls and accessing raw memory. Attackers can craft malicious pickle files using ctypes.WinDLL to load kernel32.dll and execute arbitrary commands, bypassing sandbo...

TechMyst-Toolkit

TechMyst-Toolkit "An automated Bug...