Lucene search
+L

604 matches found

suse
suse
added 2026/02/25 9:46 a.m.9 views

Security update 5.1.2 for Multi-Linux Manager Client Tools

This update fixes the following issues: dracut-saltboot: Update to version 1.1.0 Retry DHCP requests up to 3 times bsc1253004 golang-github-QubitProducts-exporterexporter: Non-customer-facing optimization around source building golang-github-boynux-squidexporter: Update to version 1.13.0...

8.7CVSS5.7AI score0.00705EPSS
Exploits1References56
ptsecurity
ptsecurity
added 2026/02/02 12:0 a.m.5 views

PT-2026-6429

Note: It is uncertain whether this constitutes a vulnerability or should be filed as an issue instead. Summary In the SSH configuration documentation, the sudoer line that was suggested can be escalated to edit any files in the system. Details The following line were suggested for addition in the...

8.7CVSS5.6AI score0.00431EPSS
Exploits1References5
nvd
nvd
added 2026/01/29 6:16 p.m.11 views

CVE-2026-24413

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS0.00068EPSS
Exploits0References3
osv
osv
added 2026/01/29 6:16 p.m.5 views

UBUNTU-CVE-2026-24413

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS5.8AI score0.00068EPSS
Exploits0References5
euvd
euvd
added 2026/01/29 5:21 p.m.8 views

EUVD-2026-4959

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS5.9AI score0.00068EPSS
Exploits0References3
cvelist
cvelist
added 2026/01/29 5:21 p.m.39 views

CVE-2026-24413 Icinga has insecure permission of %ProgramData%\icinga2\var on Windows

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS0.00068EPSS
Exploits0References3
attackerkb
attackerkb
added 2026/01/29 5:21 p.m.9 views

CVE-2026-24413

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS5.9AI score0.00068EPSS
Exploits0References4Affected Software1
osv
osv
added 2026/01/29 5:21 p.m.7 views

CVE-2026-24413 Icinga has insecure permission of %ProgramData%\icinga2\var on Windows

Icinga 2 is an open source monitoring system. Starting in version 2.3.0 and prior to versions 2.13.14, 2.14.8, and 2.15.2, the Icinga 2 MSI did not set appropriate permissions for the %ProgramData%\icinga2\var folder on Windows. This resulted in the its contents - including the private key of the...

6.8CVSS5.9AI score0.00068EPSS
Exploits0References5
astralinux
astralinux
added 2026/01/27 5:1 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: fbdev: The issue was fixed by correcting fbsetvar to prevent a null-ptr dereference in fbvideomodetovar. If fbaddvideomode in fbsetvar fails to allocate memory for fbvideomode, it may lead to a null-ptr dereference in...

5.5CVSS6.3AI score0.00153EPSS
Exploits0References3
hackerone
hackerone
added 2026/01/25 12:2 a.m.17 views

curl: Integer Underflow in src/var.c

Summary: A potential Integer Underflow vulnerability was identified in the setvariable function within src/var.c. the flaw occurs during the calculation of the variable content length clen when a byte range is specified. specifically, the code fails to validate if startoffset is greater than...

5.9AI score
Exploits0
nessus
nessus
added 2026/01/22 12:0 a.m.8 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38215)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38215 advisory. - In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix doregisterframebuffer to...

5.5CVSS5.4AI score0.00137EPSS
Exploits0References2
nessus
nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-42093)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42093 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/dpaa2: Avoid explicit cpumask var...

7.3CVSS6.4AI score0.00223EPSS
Exploits0References2
euvd
euvd
added 2026/01/21 5:27 p.m.6 views

EUVD-2026-3642

Mini Mouse 9.3.0 contains a path traversal vulnerability that allows attackers to access sensitive system directories through the device information endpoint. Attackers can retrieve file lists from system directories like /usr, /etc, and /var by manipulating file path parameters in API requests...

8.7CVSS5.5AI score0.0066EPSS
Exploits1References4
nessus
nessus
added 2026/01/15 12:0 a.m.6 views

openSUSE 16 Security Update : matio (openSUSE-SU-2026:20022-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20022-1 advisory. - update to version 1.5.29: Fix printing rank-1-variable in MatVarPrint Fix array index out of bounds in MatVarPrint when printing UTF-8 charact...

8.1CVSS6.8AI score0.00534EPSS
Exploits2References6
nessus
nessus
added 2026/01/14 12:0 a.m.7 views

MiracleLinux 3 : sudo-1.7.2p1-14.AXS3.3 (AXSA:2012-777:03)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-777:03 advisory. Sudo superuser do allows a system administrator to give certain users or groups of users the ability to run some or all commands as root while logging all...

5.6CVSS5.7AI score0.00435EPSS
Exploits1References2
vulnrichment
vulnrichment
added 2026/01/07 10:30 p.m.2 views

CVE-2025-69262 pnpm vulnerable to Command Injection via environment variable substitution

pnpm is a package manager. Versions 6.25.0 through 10.26.2 have a Command Injection vulnerability when using environment variable substitution in .npmrc configuration files with tokenHelper settings. An attacker who can control environment variables during pnpm operations could achieve Remote Cod...

7.5CVSS7.1AI score0.00949EPSS
Exploits1References2
osv
osv
added 2026/01/02 5:15 p.m.6 views

CVE-2025-34171 CasaOS <= 0.4.15 Unauthenticated File and Debug Data Exposure

CasaOS versions up to and including 0.4.15 expose multiple unauthenticated endpoints that allow remote attackers to retrieve sensitive configuration files and system debug information. The /v1/users/image endpoint can be abused with a user-controlled path parameter to access files under...

6.9CVSS6.1AI score0.00548EPSS
Exploits0References5
nessus
nessus
added 2025/12/31 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992896)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992896 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev: fbpm2fb: Avoid potential divide by zero error In dofbioctl of fbmem.c, if cmd is...

5.5CVSS6AI score0.00208EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2025/12/30 8:16 p.m.4 views

CVE-2025-50343

An issue was discovered in matio 1.5.28. A heap-based memory corruption can occur in MatVarCreateStruct when the nfields value does not match the actual number of strings in the fields array. This leads to out-of-bounds reads and invalid memory frees during cleanup, potentially causing a...

9.8CVSS6.5AI score0.00343EPSS
Exploits1References3
nessus
nessus
added 2025/12/11 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991174)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991174 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Fix potential double free in createvarref In createvarref, initvarref is called to...

7.8CVSS5.7AI score0.00289EPSS
Exploits0References4
Rows per page
Query Builder