Lucene search
K

4 matches found

Snyk
Snyk
added 2026/05/15 5:29 p.m.9 views

Improper Verification of Cryptographic Signature

Overview Affected versions of this package are vulnerable to Improper Verification of Cryptographic Signature in the verify process. An attacker can cause trust confusion by submitting a commit object with duplicate tree headers, resulting in different interpretations between git-core and go-git,...

6CVSS5.8AI score0.00119EPSS
Exploits0References2
Snyk
Snyk
added 2025/04/02 11:44 a.m.2 views

Incorrect Default Permissions

Overview Affected versions of this package are vulnerable to Incorrect Default Permissions when using the Jaeger UI Monitor tab on OpenShift. A user with create permissions on TempoStack and get permissions on a namespaced Secret can read the token of the Tempo service account and subsequently...

5.3CVSS6.8AI score0.00355EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/02/04 11:15 p.m.2 views

CVE-2021-36151

In Apache Gobblin, the Hadoop token is written to a temp file that is visible to all local users on Unix-like systems. This affects versions = 0.15.0. Users should update to version 0.16.0 which addresses this issue...

5.5CVSS5.9AI score0.00437EPSS
Exploits0References2
Snyk
Snyk
added 2021/09/10 12:0 a.m.3 views

Use of Uninitialized Resource

Overview fuser is a Filesystem in Userspace FUSE for Rust Affected versions of this package are vulnerable to Use of Uninitialized Resource in the fusesessionnew process when the operation list argument is incorrectly passed as NULL. An attacker can cause uninitialized memory to be read and leake...

6.9CVSS6.8AI score
Exploits0References3
Rows per page
Query Builder