Lucene search
K

6891 matches found

vulnersOsv
vulnersOsv
added 2026/05/08 7:44 p.m.6 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44552 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44552 Source advisory: SNYK:PYTHON-OPENWEBUI-16599148...

8.7CVSS5.7AI score0.00305EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:44 p.m.5 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44552 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44552 Source advisory: OSV:GHSA-3X8W-4F7P-XXC2...

8.7CVSS5.7AI score0.00305EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:43 p.m.5 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44553 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44553 Source advisory: OSV:GHSA-45M8-CPM2-3V65...

8.1CVSS5.7AI score0.00284EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:38 p.m.6 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44550 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44550 Source advisory: OSV:GHSA-HR43-RJMR-7WMM...

5CVSS5.7AI score0.00287EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:38 p.m.5 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44551 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44551 Source advisory: SNYK:PYTHON-OPENWEBUI-16599159...

9.1CVSS7.2AI score0.01461EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:38 p.m.5 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44551 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44551 Source advisory: OSV:GHSA-2R4P-JPMG-48F4...

9.1CVSS7.2AI score0.01461EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:0 p.m.4 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44721 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44721 Source advisory: OSV:GHSA-GF5M-WCRH-7928...

7.3CVSS7.2AI score0.00308EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2026/05/08 7:0 p.m.12 views

hubzoid (>=0.2.2 <=0.6.0), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-44721 via open-webui (>=0.6.0 <=0.8.8)

open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-44721 Source advisory: SNYK:PYTHON-OPENWEBUI-16599146...

7.3CVSS7.2AI score0.00308EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/05/08 5:3 p.m.11 views

CVE-2026-43450

A flaw was found in the Linux kernel's nfnetlinkcthelper component. This vulnerability, an out-of-bounds read, occurs in the nfnlcthelperdumptable function when a network connection tracking helper is removed during a dump operation, leading to a bypassed bounds check. A local attacker could...

7.1CVSS5.8AI score0.00132EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.10 views

EUVD-2026-28770

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: RX, Fix XDP multi-buf frag counting for legacy RQ XDP multi-buf programs can modify the layout of the XDP buffer when the program calls bpfxdppulldata or bpfxdpadjusttail. The referenced commit in the fixes tag correct...

5.9AI score0.00402EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/08 3:31 p.m.12 views

EUVD-2026-28607

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix zerovruntime tracking fix John reported that stress-ng-yield could make his machine unhappy and managed to bisect it to commit b3d99f43c72b "sched/fair: Fix zerovruntime tracking". The combination of yield and tha...

5.8AI score0.00122EPSS
Exploits0References5
OSV
OSV
added 2026/05/08 3:16 p.m.6 views

UBUNTU-CVE-2026-43450

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkcthelper: fix OOB read in nfnlcthelperdumptable nfnlcthelperdumptable has a 'goto restart' that jumps to a label inside the for loop body. When the "last" helper saved in cb-args1 is deleted between dump round...

7.1CVSS5.7AI score0.00132EPSS
Exploits0References11
OSV
OSV
added 2026/05/08 2:16 p.m.7 views

UBUNTU-CVE-2026-43292

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: prevent RCU stalls in kasanreleasevmallocnode When CONFIGPAGEOWNER is enabled, freeing KASAN shadow pages during vmalloc cleanup triggers expensive stack unwinding that acquires RCU read locks. Processing a large...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References7
CVE
CVE
added 2026/05/08 1:11 p.m.23 views

CVE-2026-43292

The CVE-2026-43292 issue affects the Linux kernel mm/vmalloc path when CONFIG_PAGE_OWNER is enabled. During vmalloc cleanup, freeing KASAN shadow pages can trigger stack unwinding under an RCU read lock, and processing a large purge_list (kasan_release_vmalloc_node) may cause long RCU stalls (10+...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
Rapid7 Blog
Rapid7 Blog
added 2026/05/08 12:37 p.m.15 views

Zero Chaos: Scaling Detection Engineering at the Speed of Software, with Detection As Code

Every engineering team in your organization ships code through a pipeline. They branch, test, review, and deploy. If something breaks, they roll back. If someone asks "what changed?", the answer is in the commit history. This isn't heroic discipline to process; it's just how software gets built...

5.8AI score
Exploits0
OSV
OSV
added 2026/05/08 5:47 a.m.9 views

BIT-JRE-2026-20676

This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A website may be able to track users through Safari web extensions...

5.3CVSS7.2AI score0.00222EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/05/08 2:19 a.m.9 views

SUSE CVE-2026-43267

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential zero beacon interval in beacon tracking During fuzz testing, it was discovered that bssconf-beaconint might be zero, which could result in a division by zero error in subsequent calculations. Set a...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.9 views

kimai 安全漏洞

Kimai is a web-based, multi-user time tracking application developed by Kimai’s individual developers. Versions of Kimai from 2.27.0 to 2.54.0 contained security vulnerabilities. These vulnerabilities stemmed from the possibility for any ROLEUSER to create tags with formula strings as names using...

6.8CVSS5.8AI score0.0022EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38934

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description When CONFIG PAGE OWNER is enabled, freeing KASAN shadow pages during vmalloc cleanup triggers expensive stack unwinding that acquires RCU read locks. Processing a large purge list withou...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References18
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38876

This issue was addressed through improved state management. This issue is fixed in Safari 26.3, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, visionOS 26.3. A website may be able to track users through Safari web extensions...

5.3CVSS5.8AI score0.00222EPSS
Exploits0References6
Rows per page
Query Builder