Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Github Security Blog
Github Security Blogadded 2025/10/02 9:19 p.m.9 views

Canonical LXD Vulnerable to Privilege Escalation via WebSocket Connection Hijacking in Operations API

Impact LXD's operations API includes secret values necessary for WebSocket connections when retrieving information about running operations. These secret values are used for authentication of WebSocket connections for terminal and console sessions. Therefore, attackers with only read permissions...

8.1CVSS7.7AI score0.00192EPSS
Exploits1References4Affected Software1
OSV
OSVadded 2025/10/02 10:15 a.m.2 views

DEBIAN-CVE-2025-54289

Privilege Escalation in operations API in Canonical LXD 6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format...

8.1CVSS5.7AI score0.00192EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2025/10/02 9:23 a.m.2 views

CVE-2025-54289 Privilege Escalation via WebSocket Connection Hijacking in LXD Operations API

Privilege Escalation in operations API in Canonical LXD 6.5 on multiple platforms allows attacker with read permissions to hijack terminal or console sessions and execute arbitrary commands via WebSocket connection hijacking format...

7.4CVSS6.9AI score0.00192EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/09/15 12:0 a.m.5 views

PT-2023-5573 · Unknown · Jumpserver

Name of the Vulnerable Software and Affected Versions: JumpServer versions 3.0.0 through 3.5.4 JumpServer versions 3.6.0 through 3.6.3 Description: The issue is related to a weakness in the authentication procedure of JumpServer, an open-source bastion host and professional operation and...

8.5CVSS5.4AI score0.55861EPSS
Exploits5References24
The Hacker News
The Hacker Newsadded 2021/02/03 10:43 a.m.36 views

A New Linux Malware Targeting High-Performance Computing Clusters

High-performance computing clusters belonging to university networks as well as servers associated with government agencies, endpoint security vendors, and internet service providers have been targeted by a newly discovered backdoor that gives attackers the ability to execute arbitrary commands o...

0.7AI score
Exploits0
securityvulns
securityvulnsadded 2008/05/08 12:0 a.m.34 views

Multiple terminal clients X sessions hijack

Terminal always opens :0 display if DISPLAY is not set...

6.9CVSS1.2AI score0.00363EPSS
Exploits1References1Affected Software6
Tenable Nessus
Tenable Nessusadded 2007/01/17 12:0 a.m.18 views

Fedora Core 5 : kdebase-3.5.3-0.3.fc5 (2006-726)

Thu Jun 15 2006 Than Ngo 6:3.5.3-0.3.fc5 - fix BR - Wed Jun 14 2006 Than Ngo 6:3.5.3-0.2.fc5 - apply patch to to fix 194659, CVE-2006-2449 KDM symlink attack vulnerability thanks to KDE security team - Thu Jun 8 2006 Than Ngo 6:3.5.3-0.1.fc5 - update to 3.5.3 - Fri May 12 2006 Than Ngo...

4CVSS5.3AI score0.00376EPSS
Exploits0References1
securityvulns
securityvulnsadded 2005/04/05 12:0 a.m.36 views

Windows 2003 Server DoS vulnerabilities

DoS on network operation during high CPU load, on printing in terminal sessions...

1.6AI score
Exploits0References1
Rows per page
Query Builder