Lucene search
K

40608 matches found

Chainguard
Chainguard
added yesterday3 views

GHSA-8CG3-6H68-W2CJ vulnerabilities

Vulnerabilities for packages: linux-aws, linux-qemu, linux-vmware...

5.9AI score
Exploits0
Nuclei
Nuclei
added 2 days ago41 views

QNAP HBS 3 - Broken Access Control

An improper authorization vulnerability has been reported to affect QNAP NAS running HBS 3 Hybrid Backup Sync. If exploited, the vulnerability allows remote attackers to log in to a device. This issue affects: QNAP Systems Inc. HBS 3 versions prior to v16.0.0415 on QTS 4.5.2; versions prior to...

10CVSS7.4AI score0.78395EPSS
Exploits0References4
OSV
OSV
added 2 days ago3 views

PYSEC-2026-1477 Jupyter Core on Windows Has Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

Impact On Windows, the shared %PROGRAMDATA% directory is searched for configuration files SYSTEMCONFIGPATH and SYSTEMJUPYTERPATH, which may allow users to create configuration files affecting other users. Only shared Windows systems with multiple users and unprotected %PROGRAMDATA% are affected...

7.3CVSS7.1AI score0.00154EPSS
Exploits0References6
OSSF Malicious Packages
OSSF Malicious Packages
added 2 days ago3 views

Malicious code in nuxt-fonts-devtools (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d6ede5024b6ee71356eedb3dfb3bb648682901bf6b966bbe353daff6082ecc85 Package ships only a package.json and a readme; there is no main entry, no bin, no scripts, no dependencies, and no executable code. The readme...

6.1AI score
Exploits0References2
Wolfi
Wolfi
added 2 days ago8 views

CVE-2026-55204 vulnerabilities

Vulnerabilities for packages: haproxy...

8.7CVSS5.9AI score0.00431EPSS
Exploits0
Debian CVE
Debian CVE
added 3 days ago5 views

CVE-2026-13698

A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7alpha1 through 2.7.4 allows remote attackers with a valid tls-crypt-v2 client key to potentially cause a denial of service...

6CVSS6AI score0.00521EPSS
Exploits0
OSV
OSV
added 3 days ago5 views

USN-8492-3 linux-raspi-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; -...

9.8CVSS6.1AI score0.00686EPSS
Exploits4References300
OSV
OSV
added 3 days ago5 views

USN-8508-1 linux-nvidia-6.17 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - S390 architecture; - Block layer subsystem; - Cryptographic API; - DMA engine subsystem; - GP...

9.8CVSS6.2AI score0.00817EPSS
Exploits9References85
Tenable Nessus
Tenable Nessus
added 3 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2018-25282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the application by processing malicious XML files with exponential...

6.9CVSS6AI score0.00121EPSS
Exploits0References2
Debian CVE
Debian CVE
added 5 days ago7 views

CVE-2026-14647

A weakness has been identified in onnx up to 1.21.x. This vulnerability affects the function convPoolShapeInferenceopset19 of the file onnx/defs/nn/old.cc of the component onnxruntime. This manipulation causes out-of-bounds read. It is possible to initiate the attack remotely. The exploit has bee...

5.3CVSS5.5AI score0.00253EPSS
Exploits0
Debian CVE
Debian CVE
added 5 days ago4 views

CVE-2026-53362

In the Linux kernel, the following vulnerability has been resolved: ipv6: account for fraggap on the paged allocation path In ip6appenddata, when the paged-allocation branch is taken MSGMORE / NETIFFSG / large fraglen, alloclen and pagedlen are computed as alloclen = fragheaderlen + transhdrlen;...

5.8AI score0.00176EPSS
Exploits0
Wolfi
Wolfi
added 5 days ago14 views

CVE-2026-49852 vulnerabilities

Vulnerabilities for packages: airflow...

5.9AI score
Exploits0
Chainguard
Chainguard
added 6 days ago18 views

GHSA-574F-3G2M-X479 vulnerabilities

Vulnerabilities for packages: sonarqube, opensearch...

5.9AI score
Exploits0
Chainguard
Chainguard
added 6 days ago9 views

GHSA-52V5-JR5W-GJXR vulnerabilities

Vulnerabilities for packages: pulumi...

5.9AI score
Exploits0
Chainguard
Chainguard
added 6 days ago11 views

GHSA-RF99-F9J2-GV3F vulnerabilities

Vulnerabilities for packages: wildfly...

5.9AI score
Exploits0
Wolfi
Wolfi
added 6 days ago14 views

CVE-2026-40914 vulnerabilities

Vulnerabilities for packages: wildfly...

4.3CVSS5.9AI score0.00372EPSS
Exploits0
Debian CVE
Debian CVE
added 6 days ago6 views

CVE-2026-8927

When reusing a libcurl handle for sequential transfers driven by environment-variable proxy configuration, libcurl fails to clear the proxy authentication state between requests. Specifically, if the initial transfer authenticates against proxyA using Digest auth, a subsequent transfer routed...

9.1CVSS5.9AI score0.00589EPSS
Exploits1
Debian CVE
Debian CVE
added 6 days ago7 views

CVE-2026-11856

Successfully using libcurl to do a transfer to a specific HTTP origin hostA with Digest authentication and then changing the origin to a different one hostB for a second transfer, reusing the same handle, makes libcurl wrongly pass on the Authorization: header field meant for hostA, to hostB...

9.8CVSS6AI score0.00771EPSS
Exploits1
Debian CVE
Debian CVE
added 6 days ago6 views

CVE-2026-10536

A use-after-free vulnerability exists in libcurl when an application configures an HTTP/2 stream-dependency tree via CURLOPTSTREAMDEPENDS or CURLOPTSTREAMDEPENDSE, subsequently invokes curleasyreset, and finally terminates the handle with curleasycleanup. During this final cleanup phase, libcurl...

9.8CVSS6AI score0.00646EPSS
Exploits1
Chainguard
Chainguard
added last week7 views

CVE-2025-66001 vulnerabilities

Vulnerabilities for packages: neuvector-scanner-fips...

8.8CVSS7.2AI score0.00321EPSS
Exploits0
Rows per page
Query Builder