Lucene search
K

112 matches found

EUVD
EUVD
added 2 days ago5 views

EUVD-2026-40962

In the Linux kernel, the following vulnerability has been resolved: schedext: Don't warn on NULL cgrpmovingfrom in scxcgroupmovetask A WARN fires when systemd's user manager writes "+cpu +memory +pids" to its own subtreecontrol while a schedext scheduler is loaded: WARNING: at...

5.8AI score0.00168EPSS
Exploits0References4
NVD
NVD
added 2026/06/11 4:16 p.m.49 views

CVE-2026-9648

The crypton-x509-validation Haskell library fails to enforce X.509 NameConstraints, allowing TLS clients to accept certificates whose Subject Alternative Names fall outside the issuing CA’s permitted subtrees. This oversight enables an attacker who compromises a name-constrained sub-CA to...

9.1CVSS0.00223EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/11 2:30 p.m.10 views

EUVD-2026-36248

The crypton-x509-validation Haskell library fails to enforce X.509 NameConstraints, allowing TLS clients to accept certificates whose Subject Alternative Names fall outside the issuing CA’s permitted subtrees. This oversight enables an attacker who compromises a name-constrained sub-CA to...

9.1CVSS5.4AI score0.00223EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/11 12:0 a.m.14 views

certificate handling for haskell 安全漏洞

Certificate Handling for Haskell is a X509 certificate processing and verification tool developed by Kazu Yamamoto. There are security vulnerabilities in Certificate Handling for Haskell. These vulnerabilities stem from the lack of enforcement of X.509 name constraints. This may allow TLS clients...

9.1CVSS5.3AI score0.00223EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.9 views

CVE-2026-40885

goshs is a SimpleHTTPServer written in Go. From 2.0.0-beta.4 to 2.0.0-beta.5, goshs leaks file-based ACL credentials through its public collaborator feed when the server is deployed without global basic auth. Requests to .goshs-protected folders are logged before authorization is enforced, and th...

8.8CVSS5.5AI score0.00311EPSS
Exploits1References1
CVE
CVE
added 2026/04/22 2:0 p.m.19 views

CVE-2026-33609

CVE-2026-33609 describes incomplete escaping of LDAP queries when 8bit-dns is enabled, enabling LDAP DN injection that could allow queries into internal domain subtrees. The vulnerability is associated with network-level access (no user interaction required) and a base CVSS v3.1 score of 5.3 (MED...

6.5CVSS5.8AI score0.00242EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/22 2:0 p.m.4 views

CVE-2026-33609 LDAP DN injection

Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees...

5.3CVSS5.8AI score0.00242EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/22 2:0 p.m.3 views

CVE-2026-33609

Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees...

5.3CVSS5.8AI score0.00242EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.4 views

PT-2026-34446

Incomplete escaping of LDAP queries when running with 8bit-dns enabled allows users to perform queries of internal domain subtrees...

5.3CVSS5.8AI score0.00242EPSS
Exploits0References2
NVD
NVD
added 2026/03/31 3:15 a.m.8 views

CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

6.3CVSS0.00154EPSS
Exploits0References1
OSV
OSV
added 2026/03/31 3:15 a.m.4 views

ALPINE-CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

5.3CVSS5.7AI score0.00154EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/31 2:4 a.m.2 views

CVE-2026-34073

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

6.3CVSS5.8AI score0.00154EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/03/31 2:4 a.m.8 views

CVE-2026-34073 cryptography has incomplete DNS name constraint enforcement on peer names

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to version 46.0.6, DNS name constraints were only validated against SANs within child certificates, and not the "peer name" presented during each validation. Consequently, cryptography...

6.3CVSS5.8AI score0.00154EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/03/06 8:9 a.m.3 views

nfs-utils: rpc.mountd in the nfs-utils privilege escalation

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

6.5CVSS5.8AI score0.00462EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/03/04 3:25 p.m.2 views

CVE-2025-12801

A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to access any subdirectory or subtree of an exporte...

6.5CVSS5.3AI score0.00462EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/11/17 8:34 a.m.4 views

kernel: eventpoll: Fix semi-unbounded recursion

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.7AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 12:40 a.m.5 views

kernel: eventpoll: Fix semi-unbounded recursion

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.7AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/03 4:0 p.m.3 views

kernel: eventpoll: Fix semi-unbounded recursion

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.7AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/10/29 3:15 p.m.2 views

kernel: eventpoll: Fix semi-unbounded recursion

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.7AI score0.00153EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/10/27 4:41 p.m.13 views

kernel: eventpoll: Fix semi-unbounded recursion

In the Linux kernel, the following vulnerability has been resolved: eventpoll: Fix semi-unbounded recursion Ensure that epoll instances can never form a graph deeper than EPMAXNESTS+1 links. Currently, eploopcheckproc ensures that the graph is loop-free and does some recursion depth checks, but...

5.5CVSS5.7AI score0.00153EPSS
Exploits0References5
Rows per page
Query Builder