Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3208 matches found

RedhatCVE
RedhatCVEadded 2025/12/02 12:19 a.m.4 views

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

8.1CVSS7.1AI score0.00042EPSS
Exploits1References1
EUVD
EUVDadded 2025/12/01 6:30 p.m.2 views

EUVD-2025-200027

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

8.1CVSS6.6AI score0.00042EPSS
Exploits1References4
NVD
NVDadded 2025/12/01 4:15 p.m.1 views

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

8.1CVSS0.00042EPSS
Exploits1References3
OSV
OSVadded 2025/12/01 4:15 p.m.0 views

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

8.1CVSS5.8AI score0.00042EPSS
Exploits1References3
Positive Technologies
Positive Technologiesadded 2025/12/01 12:0 a.m.2 views

PT-2025-48483

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

7.1AI score0.00042EPSS
Exploits1References4
CVE
CVEadded 2025/12/01 12:0 a.m.27 views

CVE-2025-57489

Technical details for CVE-2025-57489 are not publicly available in the provided connected documents. Monitor for updates.

8.1CVSS6.7AI score0.00042EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichmentadded 2025/12/01 12:0 a.m.1 views

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

6.7AI score0.00042EPSS
Exploits1References3
Cvelist
Cvelistadded 2025/12/01 12:0 a.m.4 views

CVE-2025-57489

Incorrect access control in the SDAgent component of Shirt Pocket SuperDuper! v3.10 allows attackers to escalate privileges to root due to the improper use of a setuid binary...

0.00042EPSS
Exploits1References3
OSV
OSVadded 2025/11/28 12:51 p.m.2 views

OESA-2025-2755 containerd security update

containerd is an industry-standard container runtime with an emphasis on simplicity, robustness and portability. It is available as a daemon for Linux and Windows, which can manage the complete container lifecycle of its host system: image transfer and storage, container execution and supervision...

7.8CVSS6.4AI score0.00007EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2025/11/20 12:0 a.m.3 views

TencentOS Server 4: screen (TSSA-2025:0404)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0404 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6CVSS6.1AI score0.00074EPSS
Exploits0References4
OSV
OSVadded 2025/11/13 11:1 p.m.1 views

GHSA-3G2J-VM47-X4MJ LXD vulnerable to a local privilege escalation through custom storage volumes

Impact This affects any LXD user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true as well as access to the host as an unprivileged user. The most common case for this would be...

8.6CVSS6.9AI score
Exploits0References8
EUVD
EUVDadded 2025/11/13 4:4 p.m.1 views

EUVD-2025-50816

Incus vulnerable to local privilege escalation through custom storage volumes...

8.6CVSS6AI score0.00027EPSS
Exploits1References4
Github Security Blog
Github Security Blogadded 2025/11/13 4:4 p.m.4 views

Incus vulnerable to local privilege escalation through custom storage volumes

Impact This affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true as well as access to the host as an unprivileged user. The most common case for this would ...

8.6CVSS5.8AI score0.00027EPSS
Exploits1References5Affected Software1
SUSE CVE
SUSE CVEadded 2025/11/12 12:19 a.m.2 views

SUSE CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

8.6CVSS7.1AI score0.00027EPSS
Exploits1References3
RedhatCVE
RedhatCVEadded 2025/11/11 6:18 a.m.2 views

CVE-2025-64507

An issue in Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true as well as access to the host as an unprivileged user. The most common case for this would be systems...

8.6CVSS6.7AI score0.00027EPSS
Exploits1References6
Snyk
Snykadded 2025/11/10 10:43 p.m.2 views

Improper Privilege Management

Overview Affected versions of this package are vulnerable to Improper Privilege Management due to the process handling custom storage volumes with the security.shifted property set to true. An attacker can gain elevated privileges on the host system by creating a custom storage volume, writing a...

8.6CVSS6.6AI score0.00027EPSS
Exploits1References3
NVD
NVDadded 2025/11/10 10:15 p.m.1 views

CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

8.6CVSS0.00027EPSS
Exploits1References3
OSV
OSVadded 2025/11/10 10:15 p.m.0 views

UBUNTU-CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

8.6CVSS5.8AI score0.00027EPSS
Exploits1References5
CVE
CVEadded 2025/11/10 9:56 p.m.13 views

CVE-2025-64507

CVE-2025-64507 affects Incus/LXD: in versions prior to 6.0.6 and 6.19.0 an unprivileged user who can access a container and a host with a custom storage volume that has security.shifted=true may create a setuid binary inside the container and execute it on the host to gain root. The issue require...

8.6CVSS6.6AI score0.00027EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinuxadded 2025/11/10 9:56 p.m.2 views

CVE-2025-64507

Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.19.0 affects any Incus user in an environment where an unprivileged user may have root access to a container with an attached custom storage volume that has the security.shifted property set to true...

8.6CVSS6.8AI score0.00027EPSS
Exploits1
Rows per page
Query Builder