Lucene search
K

75 matches found

Tenable Nessus
Tenable Nessus
added 6 days ago7 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS : containerd vulnerabilities (USN-8472-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 25.10 / 26.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8472-1 advisory. It was discovered that containerd incorrectly handled HTTP/2 SETTINGS frames. A remote attacker could possibl...

9.4CVSS6.3AI score0.00781EPSS
Exploits0References7
OSV
OSV
added 2026/06/25 1:18 p.m.4 views

USN-8472-1 containerd-app vulnerabilities

It was discovered that containerd incorrectly handled HTTP/2 SETTINGS frames. A remote attacker could possibly use this issue to cause containerd to enter an infinite loop, resulting in a denial of service. CVE-2026-33814 Jakub Ciolek and Kyle Elliott discovered that containerd incorrectly handle...

9.4CVSS6.4AI score0.00781EPSS
Exploits0References7
CVE
CVE
added 2026/05/20 12:48 p.m.31 views

CVE-2026-29518

Rsync

7.8CVSS5.9AI score0.00152EPSS
Exploits0References11Affected Software1
NVD
NVD
added 2026/05/06 5:16 p.m.18 views

CVE-2026-7875

NanoClaw version 1.2.0 and prior contains a host/container filesystem boundary vulnerability in outbound attachment handling and outbox cleanup that allows a compromised or prompt-injected container to read files outside the intended outbox directory by supplying crafted messagesout.id and...

9.3CVSS0.00148EPSS
Exploits0References3
OSV
OSV
added 2026/05/05 7:26 p.m.4 views

GHSA-PG4W-G64P-QWHJ gix and gitoxide's symlinked .gitmodules are followed and parsed from outside of the repository

Summary attachments: pocs.zip When Repository::submodules loads submodule metadata, it prefers the worktree .gitmodules file if that path exists. In the current implementation, the path is read with std::fs::read, which follows symlinks. As a result, a repository can present a symlinked .gitmodul...

8.7CVSS6.1AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-6941

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured...

7.8CVSS5.7AI score0.00198EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/24 7:44 p.m.30 views

CVE-2026-6968 Multiple Path Traversal Variants in awslabs/tough

Incomplete path traversal fixes in awslabs/tough before tough-v0.22.0 allow remote authenticated users with delegated signing authority to write files outside intended output directories via absolute target names in copytarget/linktarget, symlinked parent directories in savetarget, or symlinked...

7.1CVSS0.0052EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/04/23 8:39 p.m.3 views

CVE-2026-6941

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

7.8CVSS5.5AI score0.00198EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.10 views

PT-2026-34752

radare2 prior to 6.1.4 contains a path traversal vulnerability in its project notes handling that allows attackers to read or write files outside the configured project directory by importing a malicious .zrp archive containing a symlinked notes.txt file. Attackers can craft a .zrp archive with a...

6.9CVSS5.9AI score0.00198EPSS
Exploits1References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.11 views

uutils coreutils 后置链接漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils Open Source. uutils coreutils has a post-installation link vulnerability. This vulnerability arises because the tail utility may disclose sensitive file contents when using the --follow=name option. Unlike GNU tail...

5.3CVSS5.7AI score0.00096EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/08 7:30 p.m.16 views

CVE-2026-35525 LiquidJS has a root restriction bypass for partial and layout loading through symlinked templates

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3, for % include %, % render %, and % layout %, LiquidJS checks whether the candidate path is inside the configured partials or layouts roots before reading it. That check is path-based, not...

8.2CVSS0.00396EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/08 7:30 p.m.3 views

CVE-2026-35525 LiquidJS has a root restriction bypass for partial and layout loading through symlinked templates

LiquidJS is a Shopify / GitHub Pages compatible template engine in pure JavaScript. Prior to 10.25.3, for % include %, % render %, and % layout %, LiquidJS checks whether the candidate path is inside the configured partials or layouts roots before reading it. That check is path-based, not...

8.2CVSS5.9AI score0.00396EPSS
Exploits1References3
EUVD
EUVD
added 2026/04/08 3:3 p.m.2 views

EUVD-2026-20594

LiquidJS: Root restriction bypass for partial and layout loading through symlinked templates...

8.2CVSS5.9AI score0.00396EPSS
Exploits1References3
NVD
NVD
added 2026/03/21 1:17 a.m.3 views

CVE-2026-32043

OpenClaw versions prior to 2026.2.25 contain a time-of-check-time-of-use vulnerability in approval-bound system.run execution where the cwd parameter is validated at approval time but resolved at execution time. Attackers can retarget a symlinked cwd between approval and execution to bypass comma...

7CVSS0.00099EPSS
Exploits0References3
NVD
NVD
added 2026/03/18 2:16 a.m.3 views

CVE-2026-27523

OpenClaw versions prior to 2026.2.24 contain a sandbox bind validation vulnerability allowing attackers to bypass allowed-root and blocked-path checks via symlinked parent directories with non-existent leaf paths. Attackers can craft bind source paths that appear within allowed roots but resolve...

7.5CVSS0.00254EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/18 1:34 a.m.7 views

EUVD-2026-12734

OpenClaw versions prior to 2026.2.24 contain a sandbox bind validation vulnerability allowing attackers to bypass allowed-root and blocked-path checks via symlinked parent directories with non-existent leaf paths. Attackers can craft bind source paths that appear within allowed roots but resolve...

7.5CVSS5.8AI score0.00254EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/18 1:34 a.m.4 views

CVE-2026-27523

OpenClaw versions prior to 2026.2.24 contain a sandbox bind validation vulnerability allowing attackers to bypass allowed-root and blocked-path checks via symlinked parent directories with non-existent leaf paths. Attackers can craft bind source paths that appear within allowed roots but resolve...

6.9CVSS5.8AI score0.00254EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/03/18 1:34 a.m.3 views

CVE-2026-27523 OpenClaw < 2026.2.24 - Sandbox Bind Validation Bypass via Symlink-Parent Missing-Leaf Paths

OpenClaw versions prior to 2026.2.24 contain a sandbox bind validation vulnerability allowing attackers to bypass allowed-root and blocked-path checks via symlinked parent directories with non-existent leaf paths. Attackers can craft bind source paths that appear within allowed roots but resolve...

6.9CVSS5.8AI score0.00254EPSS
Exploits0References3
CVE
CVE
added 2026/03/18 1:34 a.m.40 views

CVE-2026-27523

OpenClaw OpenClaw prior to version 2026.2.24 contains a sandbox bind-validation bypass vulnerability. The issue lets a bind source path that uses a symlinked parent with a non-existent leaf circumvent allowed-root and blocked-path checks, causing the path to resolve outside the sandbox and weaken...

7.5CVSS5.8AI score0.00254EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2010-3758

Malware in sbrugna...

3.5CVSS6.1AI score0.01096EPSS
Exploits0References8
Rows per page
Query Builder