Lucene search
K

15 matches found

OSV
OSV
added 2026/02/26 8:31 p.m.5 views

AZL-78659 CVE-2026-27141 affecting package cri-o 1.30.1-1

Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic...

7.5CVSS7.2AI score0.00501EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 8:14 a.m.6 views

AZL-57289 CVE-2025-22869 affecting package cri-o 1.30.1-1

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

7.5CVSS6.6AI score0.00868EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 5:15 p.m.5 views

AZL-55067 CVE-2025-21613 affecting package cri-o 1.30.1-1

go-git is a highly extensible git implementation library written in pure Go. An argument injection vulnerability was discovered in go-git versions prior to v5.13. Successful exploitation of this vulnerability could allow an attacker to set arbitrary values to git-upload-pack flags. This only...

9.8CVSS6.8AI score0.0124EPSS
Exploits0References1
OSV
OSV
added 2024/09/03 7:15 p.m.11 views

AZL-48525 CVE-2024-45310 affecting package cri-o 1.30.1-1

runc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked into creating empty files or directories in arbitrary locations in the host filesystem by sharing a volume between two containers an...

3.6CVSS7AI score0.00317EPSS
Exploits0References1
CBLMariner
CBLMariner
added 2024/07/22 3:42 p.m.16 views

CVE-2023-45288 affecting package cri-tools for versions less than 1.30.1-1

CVE-2023-45288 affecting package cri-tools for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.8AI score0.91969EPSS
Exploits1
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.22 views

CVE-2024-28180 affecting package cri-o for versions less than 1.30.1-1

CVE-2024-28180 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

4.3CVSS7.1AI score0.01956EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.22 views

CVE-2023-49568 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-49568 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.00704EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.26 views

CVE-2024-24786 affecting package cri-o for versions less than 1.30.1-1

CVE-2024-24786 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

6.7AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.13 views

CVE-2022-2879 affecting package cri-o for versions less than 1.30.1-1

CVE-2022-2879 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS7.8AI score0.01544EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.18 views

CVE-2023-47108 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-47108 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.01592EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.13 views

CVE-2024-24786 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-24786 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.7AI score0.01262EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.27 views

CVE-2023-49569 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-49569 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

9.8CVSS6.9AI score0.01523EPSS
Exploits0
CBLMariner
CBLMariner
added 2024/06/21 9:32 a.m.12 views

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this issue...

7.5CVSS6.9AI score0.91969EPSS
Exploits1
OSV
OSV
added 2024/01/31 10:15 p.m.4 views

AZL-34896 CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1

runc is a CLI tool for spawning and running containers on Linux according to the OCI specification. In runc 1.1.11 and earlier, due to an internal file descriptor leak, an attacker could cause a newly-spawned container process from runc exec to have a working directory in the host filesystem...

8.6CVSS6.7AI score0.18087EPSS
Exploits18References1
OSV
OSV
added 2022/10/14 3:15 p.m.5 views

AZL-44052 CVE-2022-2879 affecting package cri-o 1.30.1-1

Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panics. After fix, Reader.Read limits the maximum size of header blocks to 1 MiB...

7.5CVSS6.7AI score0.01544EPSS
Exploits0References1
Rows per page
Query Builder