Lucene search
K

625 matches found

EUVD
EUVD
added 2026/05/18 7:57 p.m.10 views

EUVD-2025-209889

SimpleSAMLphp-casserver is a CAS 1.0 and 2.0 compliant CAS server in the form of a SimpleSAMLphp module. In versions below 6.3.1 and 7.0.0, the logout endpoint accepts a url query parameter to redirect to. casserver treats that url as trusted, and either depending on configuration redirects the...

4.7CVSS5.8AI score0.00269EPSS
Exploits1References3
Veracode
Veracode
added 2026/05/16 5:36 a.m.11 views

Improper Certificate Validation

rancher is vulnerable to Improper Certificate Validation. The vulnerability is due to the Rancher CLI automatically retrieving and trusting CA certificates from Rancher’s cacerts setting when the -skip-verify flag is used without the --cacert flag, potentially allowing attackers to influence...

8.3CVSS5.8AI score0.00153EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/05/15 4:21 p.m.6 views

GHSA-CVRM-5HP6-H523 SimpleSAMLphp casserver: Open Redirect in logout

Summary The logout endpoint accepts a url query parameter to redirect to. casserver treats that url as trusted, and either depending on configuration redirects the browser there, or shows a "you've been logged out" page with a link to continue to that url. There are a number of other things broke...

4.7CVSS5.8AI score0.00269EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/05/15 4:21 p.m.11 views

SimpleSAMLphp casserver: Open Redirect in logout

Summary The logout endpoint accepts a url query parameter to redirect to. casserver treats that url as trusted, and either depending on configuration redirects the browser there, or shows a "you've been logged out" page with a link to continue to that url. There are a number of other things broke...

6.1CVSS5.8AI score0.00269EPSS
Exploits1References6Affected Software1
Snyk
Snyk
added 2026/05/15 4:21 p.m.14 views

Open Redirect

Overview Affected versions of this package are vulnerable to Open Redirect via the logout process. An attacker can redirect users to arbitrary external websites by supplying a crafted url parameter. This is only exploitable if the configuration option enablelogout is set to true, and is most...

6.1CVSS6AI score0.00269EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.12 views

PT-2026-41299

Name of the Vulnerable Software and Affected Versions Imager versions prior to 1.031 Description Imager for Perl allows a heap out of bounds OOB write—a memory corruption where data is written outside the boundaries of an allocated heap buffer—when processing crafted multi-frame GIF files. The i...

6.5CVSS5.9AI score0.00321EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/08 2:22 p.m.65 views

CVE-2026-43439 cgroup: fix race between task migration and iteration

In the Linux kernel, the following vulnerability has been resolved: cgroup: fix race between task migration and iteration When a task is migrated out of a cssset, cgroupmigrateaddtask first moves it from cset-tasks to cset-mgtasks via: listmovetail&task-cglist, &cset-mgtasks; If a csstaskiter...

0.00089EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:22 p.m.11 views

CVE-2026-43439

In the Linux kernel, the following vulnerability has been resolved: cgroup: fix race between task migration and iteration When a task is migrated out of a cssset, cgroupmigrateaddtask first moves it from cset-tasks to cset-mgtasks via: listmovetail&task-;cglist, &cset-;mgtasks; If a csstaskiter...

4.7CVSS5.6AI score0.00089EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.12 views

PT-2026-38940

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the drm/amdgpu component where Virtual Functions VF do not enable the VCN poison interrupt request irq in VCNv2.5. Attempting to release this irq during deinitializati...

5.9AI score0.00121EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.24 views

PT-2026-39100

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between task migration and iteration within the cgroup component. When a task is migrated out of a css set, the cgroup migrate add task function moves the task fr...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References20
OSV
OSV
added 2026/05/07 9:18 p.m.6 views

GHSA-3V85-FQVH-7RXF Ech0's RSS feed renders unescaped tag names and raw-HTML markdown, stored XSS against subscribers

Summary The public RSS/Atom feed at /rss renders two attacker-controlled surfaces without HTML escaping. Tag names flow through fmt.AppendfrenderedContent, "%s", tag.Name at internal/service/common/common.go:120, and the Markdown renderer at internal/util/md/md.go does not set the html.SkipHTML...

4.8CVSS5.9AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:49 p.m.7 views

CVE-2026-44117

OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in QQBot direct media upload that skips URL validation. Attackers can bypass SSRF protections by sending crafted image URLs to uploadC2CMedia and uploadGroupMedia endpoints to relay unintended requests...

6.3CVSS5.8AI score0.00236EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.28 views

CVE-2026-43254

CVE-2026-43254: Linux kernel openvpn TCP stream handling corrected. Ovpn_tcp_recv now allocates a separate skb per packet and uses skb_copy_bits to copy only the packet payload, skipping the 2-byte length prefix; length checks guard allocation to prevent invalid skbs. This resolves header offset ...

7.5CVSS5.7AI score0.00451EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/05/06 11:27 a.m.15 views

CVE-2026-43130

The CVE-2026-43130 issue affects the Linux kernel iommu/vt-d path, where flushing the dev-IOTLB can occur during resource release in scalable PCIe mode. The root cause is a path that attempted ATS invalidation without adequately verifying whether the PCIe device is still accessible after a link-d...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/05/06 1:42 a.m.13 views

SUSE CVE-2026-31775

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi driver changed the assignment of atc-daios at atcgetresources; now it loops over all enum DAIOTYP entries while it looped formerly only a pa...

5.8AI score0.00107EPSS
Exploits0References3
NVD
NVD
added 2026/05/01 3:16 p.m.5 views

CVE-2026-31775

In the Linux kernel, the following vulnerability has been resolved: ALSA: ctxfi: Don't enumerate SPDIF1 at DAIO initialization The recent refactoring of xfi driver changed the assignment of atc-daios at atcgetresources; now it loops over all enum DAIOTYP entries while it looped formerly only a pa...

5.5CVSS0.00107EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/04/30 8:11 a.m.9 views

Apache Thrift: Node.js skip() recursion

...

8.7CVSS5.8AI score0.00469EPSS
Exploits0
OSV
OSV
added 2026/04/29 8:50 a.m.4 views

BIT-THRIFT-2026-41604 Apache Thrift: Swift Range crash in skip()

Out-of-bounds Read vulnerability in Apache Thrift. This issue affects Apache Thrift: before 0.23.0. Users are recommended to upgrade to version 0.23.0, which fixes the issue...

8.2CVSS5.3AI score0.00954EPSS
Exploits0References12
Snyk
Snyk
added 2026/04/28 11:19 a.m.7 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion due to uncontrolled recursion in the skip function. An attacker can cause a stack overflow and potentially crash the application by sending specially crafted input that triggers deep recursion. Remediation Upgrade...

8.7CVSS5.9AI score0.00469EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/28 11:19 a.m.9 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the skip function. An attacker can cause a crash or read unintended memory by providing specially crafted input that triggers an out-of-bounds access. Remediation Upgrade thrift to version 0.23.0 or higher...

8.8CVSS5.8AI score0.00954EPSS
Exploits0References2
Rows per page
Query Builder