CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

19 matches found

SUSE CVE•added 2025/12/16 12:23 a.m.•1 views

SUSE CVE-2025-64750

SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...

4.5CVSS6.7AI score0.00012EPSS

Exploits0References2

Positive Technologies•added 2025/12/02 12:0 a.m.•2 views

PT-2025-48736

4.5CVSS6.6AI score0.00012EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-0392

Malicious code in bioql PyPI...

7.6CVSS5.9AI score0.00365EPSS

Exploits0References8

Tenable Nessus•added 2023/02/22 12:0 a.m.•19 views

Fedora 36 : apptainer (2023-677d58bb20)

The remote Fedora 36 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-677d58bb20 advisory. Update to upstream 1.1.6 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested fo...

7.6CVSS5.6AI score0.00365EPSS

Exploits0References2

OpenVAS•added 2023/01/27 12:0 a.m.•23 views

Ubuntu: Security Advisory (USN-4840-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00427EPSS

Exploits0References2

NVD•added 2023/01/17 9:15 p.m.•11 views

CVE-2022-23538

github.com/sylabs/scs-library-client is the Go client for the Singularity Container Services SCS Container Library Service. When the scs-library-client is used to pull a container image, with authentication, the HTTP Authorization header sent by the client to the library service may be incorrectl...

7.6CVSS6.2AI score0.00365EPSS

Exploits0References4

UbuntuCve•added 2023/01/17 9:15 p.m.•20 views

CVE-2022-23538

7.6CVSS6.6AI score0.00365EPSS

Exploits0References5

Prion•added 2023/01/17 9:15 p.m.•10 views

Authorization

4.9CVSS7.3AI score0.00365EPSS

Exploits0References4Affected Software1

OSV•added 2023/01/17 8:6 p.m.•19 views

CVE-2022-23538 User credentials leaked to third-party service via HTTP redirect in scs-library-client

5.2CVSS6.1AI score0.00365EPSS

Exploits0References6

AlpineLinux•added 2023/01/17 8:6 p.m.•12 views

CVE-2022-23538

7.6CVSS6.4AI score0.00365EPSS

Exploits0

Veracode•added 2022/02/26 7:8 a.m.•17 views

Privilege Escalation

singularity-container is vulnerable to privilege escalation. The vulnerability exists due to the singularity's sign and verify commands do not sign metadata found in the global header or data object descriptors of a SIF file, allowing a malicious user to manipulate data without having a proper...

7.5CVSS4AI score0.00189EPSS

Exploits0References6Affected Software2

Veracode•added 2022/02/24 5:43 p.m.•11 views

Privilege Escalation

singularity-container is vulnerable to privilege escalation. The library contains an incorrect check of a function's return value, allowing attackers to gain elevated privileges...

9.8CVSS6.4AI score0.00547EPSS

Exploits0References3Affected Software1

NVD•added 2021/05/07 9:15 p.m.•10 views

CVE-2021-29499

SIF is an open source implementation of the Singularity Container Image Format. The siftool new command and func siftool.New produce predictable UUID identifiers due to insecure randomness in the version of the github.com/satori/go.uuid module used as a dependency. A patch is available in version...

7.5CVSS0.00317EPSS

Exploits1References1

OSV•added 2021/05/07 9:15 p.m.•8 views

CVE-2021-29499

7.5CVSS6.8AI score

Exploits0References1

UbuntuCve•added 2021/05/07 9:15 p.m.•12 views

CVE-2021-29499

7.5CVSS7AI score0.00317EPSS

Exploits1References3

OSV•added 2021/05/07 9:15 p.m.•0 views

UBUNTU-CVE-2021-29499