Lucene search
+L

859 matches found

OSV
OSV
added 2026/05/14 4:33 p.m.26 views

GHSA-5FXQ-QCF3-244W Portainer has an endpoint security bypass via Swarm service create/update

Summary Portainer enforces seven EndpointSecuritySettings restrictions that administrators configure to restrict the container configurations non-admin users can launch: privileged mode, host PID namespace, device mapping, capabilities, sysctls, security-opt Seccomp / AppArmor, and bind mounts. T...

9.4CVSS5.8AI score0.00347EPSS
Exploits1References6
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/07 12:46 p.m.14 views

Security Bulletin: Multiple security vulnerabilities may affect IBM WebSphere Liberty that is shipped with TXSeries for Multiplatforms (CVE-2025-14915, CVE-2025-14917, CVE-2025-14923, CVE-2026-1561, CVE-2026-29063).

Summary Multiple security vulnerabilities may affect IBM WebSphere Liberty that is shipped with TXSeries for Multiplatforms CVE-2025-14915, CVE-2025-14917, CVE-2025-14923, CVE-2026-1561, CVE-2026-29063. IBM WebSphere Liberty has been updated within TXSeries for Multiplatforms to address these...

9.8CVSS6AI score0.00978EPSS
Exploits1Affected Software1
Snyk
Snyk
added 2026/05/04 8:11 p.m.5 views

Incorrect Authorization

Overview Affected versions of this package are vulnerable to Incorrect Authorization in the JoinWorkflowSpec process. An attacker can gain unauthorized access to host networking, override service account assignments, modify pod security contexts, add tolerations, or enable service account token...

8.6CVSS5.8AI score0.00424EPSS
Exploits1References2
OSV
OSV
added 2026/05/04 1:12 p.m.9 views

JLSEC-2026-427 When doing multi-threaded LDAPS transfers (LDAP over TLS) with libcurl, changing TLS options in...

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.7AI score0.00106EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.12 views

Grafana 安全漏洞

Grafana is a set of open-source monitoring tools developed by Grafana Open Source, which provide a visual monitoring interface. This tool is primarily used for monitoring and analyzing systems such as Graphite, InfluxDB, and Prometheus. Grafana has a security vulnerability that stems from users...

6.5CVSS5.8AI score0.00255EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/03 8:59 p.m.2 views

Security Bulletin: IBM WebSphere Application Server Liberty could provide weaker than expected security (CVE-2025-14917)

Summary IBM WebSphere Application Server Liberty could provide weaker than expected security administering security settings when the appSecurity-1.0, appSecurity-2.0, appSecurity-3.0, appSecurity-4.0 or appSecurity-5.0 feature is enabled. Vulnerability Details CVEID:CVE-2025-14917 DESCRIPTION: I...

9.8CVSS5.9AI score0.00355EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 11:4 p.m.3 views

CVE-2025-14917

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...

6.7CVSS5.8AI score0.00355EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 9:16 p.m.5 views

CVE-2025-14917

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...

9.8CVSS0.00355EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 8:13 p.m.3 views

CVE-2025-14917 IBM WebSphere Application Server Liberty could provide weaker than expected security

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...

6.7CVSS5.8AI score0.00355EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/25 8:13 p.m.4 views

CVE-2025-14917

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...

6.7CVSS5.8AI score0.00355EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/25 8:13 p.m.25 views

CVE-2025-14917 IBM WebSphere Application Server Liberty could provide weaker than expected security

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when administering security settings...

6.7CVSS0.00355EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 8:13 p.m.21 views

CVE-2025-14917

CVE-2025-14917 affects IBM WebSphere Liberty (Liberty 17.0.0.3 through 26.0.0.3). Root issue: weaker security when administering security settings (CWE-1393). CVSS base 6.7 (IBM) with MEDIUM severity; exploitation could enable unauthorized security configuration changes. Remediation (from IBM bul...

9.8CVSS5.8AI score0.00355EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

IBM WebSphere Application Server Liberty 安全漏洞

IBM WebSphere Application Server Liberty is a Java application server developed by IBM, based on the Open Liberty project. Versions of IBM WebSphere Application Server Liberty 26.0.0.3 and earlier contain security vulnerabilities, which stem from insufficient security provided during the manageme...

9.8CVSS5.8AI score0.00355EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.3 views

IBM WebSphere Application Server Liberty 17.0.0.3 < 26.0.0.4 (7267362)

The version of IBM WebSphere Application Server Liberty running on the remote host is affected by a vulnerability as referenced in the 7267362 advisory. - IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expect...

9.8CVSS5.8AI score0.00355EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2026/03/18 6:31 a.m.23 views

Apple Fixes WebKit Vulnerability Enabling Same-Origin Policy Bypass on iOS and macOS

Apple on Tuesday released its first round of Background Security Improvements to address a security flaw in WebKit that affects iOS, iPadOS, and macOS. The vulnerability, tracked as CVE-2026-20643 CVSS score: N/A, has been described as a cross-origin issue in WebKit's Navigation API that could be...

8.8CVSS6AI score0.10593EPSS
Exploits16
RedhatCVE
RedhatCVE
added 2026/03/05 1:57 a.m.5 views

CVE-2025-14923

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

9.8CVSS5.9AI score0.00173EPSS
Exploits0References1
OSV
OSV
added 2026/03/03 8:16 p.m.6 views

CVE-2025-14923

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

9.8CVSS5.8AI score0.00173EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/03 7:47 p.m.24 views

CVE-2025-14923 IBM WebSphere Application Server Liberty could provide weaker than expected security

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

4.7CVSS0.00173EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/03 7:47 p.m.2 views

CVE-2025-14923 IBM WebSphere Application Server Liberty could provide weaker than expected security

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

4.7CVSS5.9AI score0.00173EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/03 7:47 p.m.4 views

EUVD-2025-208253

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

4.7CVSS5.9AI score0.00173EPSS
Exploits0References1
Rows per page
Query Builder