Lucene search
K

5 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/27 8:56 p.m.11 views

CVE-2026-44247

Volcano is a Kubernetes-native batch scheduling system. Prior to v1.14.2, v1.13.3, and v1.12.4, the Volcano webhook server does not enforce a size limit on incoming HTTP request bodies. Any in-cluster pod that can reach the webhook endpoint may send an arbitrarily large request body, potentially...

6.8CVSS5.8AI score0.00173EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/01/29 5:35 p.m.11 views

CVE-2026-24414 Icinga for Windows certificate can have too-open permissions

The Icinga PowerShell Framework provides configuration and check possibilities to ensure integration and monitoring of Windows environments. In versions prior to 1.13.4, 1.12.4, and 1.11.2, permissions of the Icinga for Windows certificate directory grant every user read access, which results in...

6.8CVSS5.9AI score0.00097EPSS
Exploits2References5
OSV
OSV
added 2025/03/12 9:15 p.m.6 views

UBUNTU-CVE-2025-25291

ruby-saml provides security assertion markup language SAML single sign-on SSO for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML differently; the parsers can generate entirely...

9.8CVSS7.3AI score0.19506EPSS
Exploits1References11
vulnersOsv
vulnersOsv
added 2022/01/06 10:23 p.m.4 views

com.lightbend.akka:akka-stream-alpakka-geode_2.11 (>=2.0.0 <=2.0.1), com.lightbend.akka:akka-stream-alpakka-geode_2.12 (>=2.0.0 <=2.0.1) +51 more potentially affected by CVE-2021-34797 via org.apache.geode:geode-core (>=1.0.0-incubating <=1.12.4)

org.apache.geode:geode-core MAVEN version =1.0.0-incubating, =2.0.0, =2.0.0, =2.0.0, =0.3.12, =0.3.5, =2.4.0, =1.22.0, =1.10.0, =1.10.0, =1.10.0, =1.12.0, =1.11.0, =1.0.0-incubating, =1.12.4 and more Source cves: CVE-2021-34797 Source advisory: OSV:GHSA-MW25-F5R2-HPC6...

7.5CVSS7.1AI score0.02894EPSS
Exploits0
CNVD
CNVD
added 2020/07/02 12:0 a.m.3 views

Envoy Buffer Overflow Vulnerability (CNVD-2020-51394)

Envoy is an open source distributed proxy server . A buffer overflow vulnerability exists in Envoy versions 1.14.2, 1.13.2, and 1.12.4 and earlier. A remote attacker could exploit this vulnerability to cause an application crash large memory consumption...

7.5CVSS7.4AI score0.01703EPSS
Exploits0References1
Rows per page
Query Builder