3 matches found
PT-2026-52979
Name of the Vulnerable Software and Affected Versions Kestra versions prior to 1.0.45 Kestra versions prior to 1.3.21 Description An authentication bypass exists in the AuthenticationFilter of Kestra OSS. The system uses a suffix match via request.getPath.endsWith"/configs" to whitelist the publi...
EulerOS Virtualization 2.13.1 : libarchive (EulerOS-SA-2025-2548)
According to the versions of the libarchive package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A vulnerability has been identified in the libarchive library. This flaw can be triggered when file streams are piped into bsdta...
AZL-63818 CVE-2025-5917 affecting package cmake for versions less than 3.21.4-20
A vulnerability has been identified in the libarchive library. This flaw involves an 'off-by-one' miscalculation when handling prefixes and suffixes for file names. This can lead to a 1-byte write overflow. While seemingly small, such an overflow can corrupt adjacent memory, leading to...