Lucene search
K

3901 matches found

OSV
OSV
added 2026/05/12 10:5 a.m.8 views

ROOT-OS-DEBIAN-13-CVE-2026-4105 CVE-2026-4105 in rootio-systemd - Patched by Root

Root has patched CVE-2026-4105 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...

6.7CVSS5.9AI score0.00142EPSS
Exploits0
OSV
OSV
added 2026/05/12 10:5 a.m.7 views

ROOT-OS-DEBIAN-13-CVE-2026-40225 CVE-2026-40225 in rootio-systemd - Patched by Root

Root has patched CVE-2026-40225 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...

6.4CVSS5.8AI score0.00144EPSS
Exploits0
OSV
OSV
added 2026/05/12 10:5 a.m.4 views

ROOT-OS-DEBIAN-13-CVE-2026-29111 CVE-2026-29111 in rootio-systemd - Patched by Root

Root has patched CVE-2026-29111 in the rootio-systemd package for Root:Debian:13. Multiple fixed versions available...

7.8CVSS5.8AI score0.00121EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/12 12:0 a.m.8 views

MiracleLinux 9 : systemd-252-55.el9_7.9.ML.1 (AXSA:2026-609:06)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-609:06 advisory. systemd: systemd: Arbitrary code execution or Denial of Service via spurious IPC API call data CVE-2026-29111 Tenable has extracted the preceding description...

5.5CVSS6.3AI score0.00121EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/11 8:21 p.m.11 views

EUVD-2026-29295

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/11 8:21 p.m.11 views

CVE-2026-41489 Pi-hole: Local privilege escalation via config-controlled path in root-executed service hooks

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
CVE
CVE
added 2026/05/11 8:21 p.m.13 views

CVE-2026-41489

Pi-hole (6.0 through before Core 6.4.2 and FTL 6.6.1) is vulnerable because two systemd-executed root scripts (pihole-FTL-prestart.sh and pihole-FTL-poststop.sh) read the files.pid path from a config without validation and perform privileged file operations using that path. An attacker with pihol...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/11 12:0 a.m.16 views

PT-2026-39836

Pi-hole is a DNS sinkhole that protects devices from unwanted content without installing any client-side software. From 6.0 to before Core 6.4.2 and FTL 6.6.1, two shell scripts executed as root by systemd pihole-FTL-prestart.sh and pihole-FTL-poststop.sh read the files.pid path from this config...

8.8CVSS5.9AI score0.00132EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/10 12:0 a.m.15 views

openSUSE 16 Security Update : openCryptoki (openSUSE-SU-2026:20699-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20699-1 advisory. This update for openCryptoki fixes the following issues Security issue: - CVE-2026-40253: Updated fix for malformed BER-encoded cryptographic objects...

6.8CVSS5.9AI score0.0016EPSS
Exploits1References4
OSV
OSV
added 2026/05/09 12:33 p.m.8 views

OESA-2026-2280 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 12:33 p.m.6 views

OESA-2026-2279 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 12:33 p.m.7 views

OESA-2026-2278 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
OSV
OSV
added 2026/05/09 12:33 p.m.9 views

OESA-2026-2277 systemd security update

systemd is a system and service manager that runs as PID 1 and starts the rest of the system. Security Fixes: In nspawn in systemd 233 through 259 before 260, an escape-to-host action can occur via a crafted optional config file.CVE-2026-40226...

6.4CVSS5.8AI score0.00072EPSS
Exploits0References2
Fedora
Fedora
added 2026/05/08 7:58 p.m.22 views

[SECURITY] Fedora 43 Update: proftpd-1.3.9a-1.fc43

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

8.1CVSS6AI score0.05004EPSS
Exploits6
Fedora
Fedora
added 2026/05/08 7:40 p.m.10 views

[SECURITY] Fedora 42 Update: proftpd-1.3.9a-1.fc42

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

8.1CVSS6AI score0.05004EPSS
Exploits6
Fedora
Fedora
added 2026/05/08 7:29 p.m.12 views

[SECURITY] Fedora 44 Update: proftpd-1.3.9a-1.fc44

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

8.1CVSS6AI score0.05004EPSS
Exploits6
The Hacker News
The Hacker News
added 2026/05/08 11:0 a.m.16 views

Quasar Linux RAT Steals Developer Credentials for Software Supply Chain Compromise

A previously undocumented Linux implant codenamed Quasar Linux RAT QLNX is targeting developers' systems to establish a silent foothold as well as facilitate a broad range of post-compromise functionality, such as credential harvesting, keylogging, file manipulation, clipboard monitoring, and...

6.1AI score
Exploits0
OPENSUSE Linux
OPENSUSE Linux
added 2026/05/08 12:0 a.m.8 views

Security update for openCryptoki (moderate)

openSUSE security update: security update for opencryptoki ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20699-1 Rating: moderate References: bsc1262283 bsc1263819 Cross-References: CVE-2026-40253 Affected Products: openSUSE Leap 16.0...

6.8CVSS5.9AI score0.0016EPSS
Exploits1References2
OSV
OSV
added 2026/05/07 9:56 a.m.6 views

OPENSUSE-SU-2026:20699-1 Security update for openCryptoki

This update for openCryptoki fixes the following issues Security issue: - CVE-2026-40253: Updated fix for malformed BER-encoded cryptographic objects bsc1262283. Non security issue: - Refactored .spec file to fully support transactional and immutable operating systems jscPED-14609: Migrated user...

6.8CVSS5.9AI score0.0016EPSS
Exploits1References3
OSV
OSV
added 2026/05/07 9:54 a.m.4 views

SUSE-SU-2026:21593-1 Security update for openCryptoki

This update for openCryptoki fixes the following issues Security issue: - CVE-2026-40253: Updated fix for malformed BER-encoded cryptographic objects bsc1262283. Non security issue: - Refactored .spec file to fully support transactional and immutable operating systems jscPED-14609: Migrated user...

6.8CVSS5.9AI score0.0016EPSS
Exploits1References4
Rows per page
Query Builder