Lucene search
K

736 matches found

OSV
OSV
added 2026/05/20 9:33 a.m.4 views

SUSE-SU-2026:2030-1 Security update for buildah

This update for buildah rebuilds it against the current go security release...

5.8AI score
Exploits0References1
SUSE Linux
SUSE Linux
added 2026/05/18 7:30 a.m.9 views

Security update for podman

This update for podman rebuilds it against the current go security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15.3...

5.8AI score
Exploits0
OSV
OSV
added 2026/05/18 7:30 a.m.3 views

SUSE-SU-2026:1931-1 Security update for podman

This update for podman rebuilds it against the current go security release...

5.8AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.15 views

PT-2026-40568

Incorrect default permissions in FactoryCamera prior to SMR May-2026 Release 1 allows local attacker to access unique identifier...

6.8CVSS5.8AI score0.00092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.25 views

PT-2026-40101

JunoClaw is an agentic AI platform built on Juno Network. Prior to 0.x.y-security-1, the upload wasm MCP tool accepted a filesystem path from the agent and uploaded whatever bytes the path resolved to, with no validation of location, symlink target, file size, or file format. This vulnerability i...

8.5CVSS5.8AI score0.00147EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/05/10 12:0 a.m.11 views

Fedora 42 : prosody (2026-1efa008794)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-1efa008794 advisory. Prosody 13.0.5 Upstream is pleased to announce a new minor release from their stable branch. This is a security release for the Prosody 13.0.x stabl...

7.5CVSS5.8AI score0.00348EPSS
Exploits0References5
OSV
OSV
added 2026/04/28 6:52 p.m.6 views

SUSE-SU-2026:1649-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issue: Update to Firefox Extended Support Release 140.10.0 ESR bsc1262230, MFSA 2026-32: - CVE-2026-6746: Use-after-free in the DOM: Core & HTML component. - CVE-2026-6747: Use-after-free in the WebRTC component. - CVE-2026-6748: Uninitialized...

9.8CVSS5.3AI score0.04938EPSS
Exploits1References27
OSV
OSV
added 2026/04/22 7:22 a.m.5 views

SUSE-SU-2026:1540-1 Security update for podman

This update for podman rebuilds it against the current go 1.25 security release...

5.7AI score
Exploits0References1
SUSE Linux
SUSE Linux
added 2026/04/20 4:0 p.m.10 views

Security update for containerd

This update for containerd rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/20 3:59 p.m.14 views

SUSE-SU-2026:1495-1 Security update for containerd

This update for containerd rebuilds it against the current go 1.25 security release...

5.7AI score
Exploits0References1
SUSE Linux
SUSE Linux
added 2026/04/20 3:58 p.m.5 views

Security update for rootlesskit

This update for rootlesskit rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: SUSE Linux...

5.7AI score
Exploits0
SUSE Linux
SUSE Linux
added 2026/04/20 3:54 p.m.4 views

Security update for kubernetes-old

This update for kubernetes-old rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/20 3:54 p.m.4 views

SUSE-SU-2026:1489-1 Security update for kubernetes-old

This update for kubernetes-old rebuilds it against the current go 1.25 security release...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/04/07 4:14 p.m.2 views

User Impersonation

Overview Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Affected versions of this package are vulnerable to User Impersonation via the ASGIRequest objects. An attacker can impersonate users or manipulate request headers by exploiting the...

7.5CVSS5.9AI score0.00436EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/07 4:14 p.m.3 views

Missing Authorization

Overview Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design. Affected versions of this package are vulnerable to Missing Authorization in the InlineModelAdmin.getformset function. An attacker can gain unauthorized access to add inline model...

9.8CVSS5.9AI score0.00458EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2026/03/26 9:24 p.m.3 views

Security update for cosign

This update for cosign rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap 15....

5.9AI score
Exploits0
Slackware Linux
Slackware Linux
added 2026/03/26 12:0 a.m.9 views

[slackware-security] tigervnc

New tigervnc packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: extra/tigervnc/tigervnc-1.16.1-i586-1slack15.0.txz: Upgraded. The bug fix release TigerVNC 1.16.1 is now available. This release is primarily a...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/23 8:54 p.m.4 views

GHSA-QCFX-2MFW-W4CG Rails Active Storage has possible content type bypass via metadata in direct uploads

Impact Active Storage's DirectUploadsController accepts arbitrary metadata from the client and persists it on the blob. Because internal flags like identified and analyzed are stored in the same metadata hash, a malicious direct-upload client could set these flags. Releases The fixed releases are...

5.3CVSS5.9AI score0.0039EPSS
Exploits0References10
SUSE Linux
SUSE Linux
added 2026/03/18 7:47 a.m.6 views

Security update for kubernetes

This update for kubernetes rebuilds it against the current go 1.25 security release. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command listed for your product: openSUSE Leap...

5.7AI score
Exploits0
OSV
OSV
added 2026/03/18 7:47 a.m.5 views

SUSE-SU-2026:0917-1 Security update for kubernetes

This update for kubernetes rebuilds it against the current go 1.25 security release...

5.8AI score
Exploits0References1
Rows per page
Query Builder