1388904 matches found
CVE-2026-10054
In affected versions of Eclipse Theia 1.8.1 and later, the browser backend exposes privileged terminal RPC over WebSocket /services/shell-terminal, /services/terminals/:id without service-level authentication. WebSocket origin validation in @theia/core is fail-open: connections are accepted when...
EUVD-2026-41518
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Apache Lucene.Net Lucene.Net.Replicator library. This issue affects Apache Lucene.Net.Replicator: from 4.8.0-beta00005 before 4.8.0-beta00018. Users are recommended to upgrade to version 4.8.0-beta00018,...
CVE-2026-9547
When a libcurl-based application performs transfers via SCP:// or S...
CVE-2026-9545
In this scenario, libcurl first uses a proper HTTP/3 server for the in...
CVE-2026-8932
libcurl (client library) is affected by CVE-2026-8932 due to incomplete mTLS config matching in the connection reuse logic. The vulnerability arises because TLS settings related to client certificates, notably the private key, were omitted from the configuration match checks, allowing a previousl...
EUVD-2026-41509
libcurl would reuse a previously created connection even when some mTLS config related option had been changed that should have prohibited reuse. libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse if one of them matches the setup. However, some TLS...
EUVD-2026-41506
The curl logic that works with SASL authentication could end up cleaning up the GSASL context twice without clearing the pointer in between, making it free the same pointer twice...
CVE-2026-8924
A flaw in curl\u2019s cookie parsing logic allows a malicious HTTP ser...
EUVD-2026-41503
A vulnerability exists where a new transfer that uses STARTTLS to upgrade the connection might reuse an existing live connection even though the TLS configuration mismatches so it should not...
CVE-2026-12064
When a user invokes curl using a schemeless URL combined with --proto...
CVE-2026-11856
Successfully using libcurl to do a transfer to a specific HTTP origin...
CVE-2026-10536
A use-after-free vulnerability exists in libcurl when an application c...
CVE-2026-58652
creationtimestamp| type| source ---|---|--- 2026-07-03 04:04:20+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mppo4hmy6r2j 2026-07-03 10:25:57+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqdguittd2n...
ROOT-OS-DEBIAN-13-CVE-2026-23287 CVE-2026-23287 in rootio-linux - Patched by Root
Root has patched CVE-2026-23287 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2025-38597 CVE-2025-38597 in rootio-linux - Patched by Root
Root has patched CVE-2025-38597 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-31527 CVE-2026-31527 in rootio-linux - Patched by Root
Root has patched CVE-2026-31527 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23373 CVE-2026-23373 in rootio-linux - Patched by Root
Root has patched CVE-2026-23373 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-53009 CVE-2026-53009 in rootio-linux - Patched by Root
Root has patched CVE-2026-53009 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-23080 CVE-2026-23080 in rootio-linux - Patched by Root
Root has patched CVE-2026-23080 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-13-CVE-2026-31536 CVE-2026-31536 in rootio-linux - Patched by Root
Root has patched CVE-2026-31536 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...