Lucene search
K

92 matches found

EUVD
EUVD
added 2 days ago3 views

EUVD-2026-42275

App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes. When ack prints a filename whose basename contains terminal control bytes such as ANSI escape sequences, those bytes reach the terminal unchanged. Version 3.10.0 added a...

7.5CVSS5.9AI score0.00329EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago34 views

CVE-2026-49147 App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes

App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes. When ack prints a filename whose basename contains terminal control bytes such as ANSI escape sequences, those bytes reach the terminal unchanged. Version 3.10.0 added a...

0.00329EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2 days ago9 views

CVE-2026-49147

App::Ack versions through 3.10.0 for Perl print unsanitised terminal escape sequences from filenames in several output modes. When ack prints a filename whose basename contains terminal control bytes such as ANSI escape sequences, those bytes reach the terminal unchanged. Version 3.10.0 added a...

7.5CVSS5.9AI score0.00329EPSS
Exploits0
EUVD
EUVD
added 2026/05/19 7:37 p.m.19 views

EUVD-2026-30549

GitHub CLI: GitHub Actions log output in gh run view allows terminal escape sequence injection...

3.5CVSS5.8AI score0.00206EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/16 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-45803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gh is GitHub's official command line tool. From 1.6.0 to before 2.92.0, a security vulnerability has been identified in GitHub CLI that could allow terminal...

3.5CVSS6.1AI score0.00206EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/05/15 3:26 p.m.23 views

CVE-2026-45803

gh is GitHub’s official command line tool. From 1.6.0 to before 2.92.0, a security vulnerability has been identified in GitHub CLI that could allow terminal escape sequence injection when users view GitHub Actions workflow logs using gh run view --log or gh run view --log-failed. The vulnerabilit...

3.5CVSS6AI score0.00206EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 3:26 p.m.8 views

CVE-2026-45803 gh: GitHub Actions log output in `gh run view` allows terminal escape sequence injection

gh is GitHub’s official command line tool. From 1.6.0 to before 2.92.0, a security vulnerability has been identified in GitHub CLI that could allow terminal escape sequence injection when users view GitHub Actions workflow logs using gh run view --log or gh run view --log-failed. The vulnerabilit...

3.5CVSS6AI score0.00206EPSS
Exploits1References1
CVE
CVE
added 2026/05/15 3:26 p.m.36 views

CVE-2026-45803

GitHub CLI (gh) vulnerability: from v1.6.0 to before v2.92.0, terminal escape sequences could be injected via workflow logs when using gh run view --log or --log-failed, due to unsanitized raw log output. An attacker controlling Actions logs (e.g., PR-triggered workflows) could cause terminal man...

3.5CVSS6AI score0.00206EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2026/05/15 3:26 p.m.10 views

CVE-2026-45803

gh is GitHub’s official command line tool. From 1.6.0 to before 2.92.0, a security vulnerability has been identified in GitHub CLI that could allow terminal escape sequence injection when users view GitHub Actions workflow logs using gh run view --log or gh run view --log-failed. The vulnerabilit...

3.5CVSS6AI score0.00206EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.13 views

PT-2026-41313

Name of the Vulnerable Software and Affected Versions gh versions 1.6.0 through 2.91.x Description GitHub CLI allows terminal escape sequence injection when users view GitHub Actions workflow logs. The issue occurs because the 'gh run view --log' and 'gh run view --log-failed' commands stream...

3.5CVSS6.1AI score0.00206EPSS
Exploits1References13
OSV
OSV
added 2026/05/07 7:30 a.m.7 views

SUSE-SU-2026:21572-1 Security update for iproute2

This update for iproute2 fixes the following issues: Security issues fixed: - CVE-2024-58251: terminal lock up via ANSI terminal escape sequence set in argv0 bsc1254324. Other updates and bugfixes: - Fix package for immutable mode jscPED-14787. - Add netshaper support bsc1253044. - Add follow-up...

2.5CVSS5.8AI score0.00238EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/18 12:0 a.m.9 views

SUSE SLED15: iproute2 / iproute2-arpd / iproute2-bash-completion / etc (SUSE-SU-2026:1418-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:1418-1 advisory. This update for iproute2 fixes the following issue: - CVE-2024-58251: denial of service via terminal escape sequences...

2.5CVSS5.8AI score0.00238EPSS
Exploits0References4
OSV
OSV
added 2026/04/16 4:43 p.m.4 views

SUSE-SU-2026:1418-1 Security update for iproute2

This update for iproute2 fixes the following issue: - CVE-2024-58251: denial of service via terminal escape sequences bsc1254324...

2.5CVSS5.8AI score0.00238EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2026/04/16 4:43 p.m.6 views

Security update for iproute2

This update for iproute2 fixes the following issue: CVE-2024-58251: denial of service via terminal escape sequences bsc1254324. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

2.8CVSS5.7AI score0.00238EPSS
Exploits0References4
Broadcom
Broadcom
added 2026/03/03 12:0 a.m.19 views

AIDE Vulnerable to Improper Output Neutralization via Terminal Escape Sequences in Log and Report Output

AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and/or tamp...

6.2CVSS5.9AI score0.0021EPSS
Exploits1
NVD
NVD
added 2026/02/12 9:16 p.m.7 views

CVE-2026-25996

Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using eBPF. String fields from eBPF events in columns output mode are rendered to the terminal without any sanitization of control characters or ANSI escape sequences...

9.8CVSS0.0056EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: util-linux (CVE-2024-28085)

The version of util-linux installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28085 advisory. - wall in util-linux through 2.40, often installed with setgid tty permissions, allows escape sequences to...

3.3CVSS5.5AI score0.02242EPSS
Exploits3References2
Github Security Blog
Github Security Blog
added 2025/12/30 5:44 p.m.8 views

Composer is vulnerable to ANSI sequence injection

Impact Attackers controlling remote sources that Composer downloads from might in some way inject ANSI control characters in the terminal output of various Composer commands, causing mangled output and potentially leading to confusion or DoS of the terminal application. There is no proven exploit...

5.3CVSS6.8AI score0.00405EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2003-0079

Malicious code in bioql PyPI...

5CVSS6.2AI score0.17413EPSS
Exploits8References26
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2003-0020

Malicious code in bioql PyPI...

5CVSS6.2AI score0.10872EPSS
Exploits7References45
Rows per page
Query Builder