Lucene search
+L

20447 matches found

ICS
ICS
added 2026/07/07 6:0 a.m.6 views

Hydro-Québec Le Circuit Electrique charging station backend

ADVISORY SUMMARY Successful exploitation of these vulnerabilities could lead to privilege escalation, or result in a denial-of-service attack. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of these vulnerabilities. Minimize network...

9.8CVSS6.1AI score0.00519EPSS
Exploits0References11
ATTACKERKB
ATTACKERKB
added 2026/07/06 7:25 p.m.6 views

CVE-2026-58403

Hugo is a static site generator. From v0.123.0 through v0.163.0, Hugo's virtual filesystem is designed so that files under a mount cannot reach outside the mount tree, but a regression caused RootMappingFs.statRoot to call Stat, which follows symlinks, instead of Lstat, so a direct os.ReadFile...

5.9CVSS5.9AI score0.00318EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/07/06 7:25 p.m.38 views

CVE-2026-58403 Hugo symlink confinement bypass in os.ReadFile

Hugo is a static site generator. From v0.123.0 through v0.163.0, Hugo's virtual filesystem is designed so that files under a mount cannot reach outside the mount tree, but a regression caused RootMappingFs.statRoot to call Stat, which follows symlinks, instead of Lstat, so a direct os.ReadFile...

5.9CVSS0.00318EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/07/05 1:58 a.m.6 views

SUSE CVE-2026-53360

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...

6AI score0.00183EPSS
Exploits0References4
OSV
OSV
added 2026/07/04 12:17 p.m.8 views

UBUNTU-CVE-2026-53359

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected role Commit 0cb2af2ea66ad "KVM: x86: Fix shadow paging use-after-free due to unexpected GFN" fixed a shadow paging mismatch between stored and computed GFNs; the bug...

8.8CVSS6AI score0.0012EPSS
Exploits5References10
EUVD
EUVD
added 2026/07/04 11:53 a.m.11 views

EUVD-2026-41667

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...

6AI score0.00183EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/07/04 11:53 a.m.7 views

CVE-2026-53360

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...

6AI score0.00183EPSS
Exploits0
Cvelist
Cvelist
added 2026/07/04 11:53 a.m.46 views

CVE-2026-53360 KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use

In the Linux kernel, the following vulnerability has been resolved: KVM: SEV: Require in-GHCB scratch area if GHCB v2+ is in use As per the GHCB spec, when using GHCB v2+ require the software scratch area to reside in the GHCB's shared buffer. Note, things like Page State Change PSC requests rely...

8.8CVSS0.00183EPSS
Exploits0References4
CVE
CVE
added 2026/07/04 11:51 a.m.339 views

CVE-2026-53359

CVE-2026-53359 is a KVM/x86 shadow MMU use-after-free caused by a role mismatch when reusing shadow pages during a nested walk. The flaw arises when a PDE is modified and a 4KB leaf SPTE is installed on the new path, but the parent 2MB page’s direct flag and the shadow page’s role may not align, ...

8.8CVSS5.8AI score0.0012EPSS
Exploits5References7
Debian CVE
Debian CVE
added 2026/07/04 11:51 a.m.13 views

CVE-2026-53359

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected role Commit 0cb2af2ea66ad "KVM: x86: Fix shadow paging use-after-free due to unexpected GFN" fixed a shadow paging mismatch between stored and computed GFNs; the bug...

5.8AI score0.0012EPSS
Exploits5
Fedora
Fedora
added 2026/07/04 12:51 a.m.6 views

[SECURITY] Fedora 44 Update: openqa-5^20260604git6376095-3.fc44

openQA is a testing framework that allows you to test GUI applications on one hand and bootloader and kernel on the other. In both cases, it is difficult to script tests and verify the output. Output can be a popup window or it can be an error in early boot even before init is executed. openQA is...

9.8CVSS6.7AI score0.02474EPSS
Exploits0
Debian
Debian
added 2026/07/03 8:56 p.m.16 views

[SECURITY] [DSA 6376-1] openvpn security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6376-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff July 03, 2026 https://www.debian.org/security/faq -...

7.5CVSS6AI score0.00549EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/07/03 10:16 a.m.11 views

CVE-2026-12480

A flaw was found in Keras. An attacker can craft a malicious model archive or weights file containing a Virtual Dataset VDS that references external files on a victim's system. When a user loads this malicious model, the external file is transparently read. This vulnerability leads to information...

5.5CVSS5.9AI score0.00127EPSS
Exploits0References5
EUVD
EUVD
added 2026/07/03 12:31 a.m.9 views

EUVD-2026-41460

A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM on the machine where the client is installed. This issue affects the Mobile VPN with SSL client for Windows up to and...

7.3CVSS5.8AI score0.00114EPSS
Exploits0References2
PyPA
PyPA
added 2026/07/02 2:13 p.m.6 views

OpenStack Neutron Race Condition vulnerability

A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and 10.x before 10.0.2-1.1, where, following a minor overcloud update, neutron security groups were disabled. Specifically, the following were reset to 0:...

5.9CVSS6.2AI score0.01847EPSS
Exploits0References14Affected Software1
OSV
OSV
added 2026/07/02 2:13 p.m.5 views

PYSEC-2026-686 OpenStack Neutron Race Condition vulnerability

A race-condition flaw was discovered in openstack-neutron before 7.2.0-12.1, 8.x before 8.3.0-11.1, 9.x before 9.3.1-2.1, and 10.x before 10.0.2-1.1, where, following a minor overcloud update, neutron security groups were disabled. Specifically, the following were reset to 0:...

5.9CVSS5.9AI score0.01847EPSS
Exploits0References14
Microsoft CVE
Microsoft CVE
added 2026/07/02 8:4 a.m.3 views

ARM: 9475/1: entry: use byte load for KASAN VMAP stack shadow

...

7.1CVSS6.1AI score0.00161EPSS
Exploits0
OSV
OSV
added 2026/07/01 11:43 p.m.4 views

MINI-QVM8-9QC4-PHQ3

Bulletin has no description...

6.9CVSS6.5AI score0.00223EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/07/01 7:51 p.m.11 views

CVE-2026-53345

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. This vulnerability occurs when a virtual machine is shutting down, and KVM attempts to mark memory as dirty without an active virtual CPU. This can lead to a memory leak, impacting system stability and resource...

5.7AI score0.00156EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/07/01 6:34 p.m.6 views

CVE-2026-13769

Overly permissive file permissions in AWS CLI before 1.44.78 v1 and 2.34.29 v2 on Unix-like systems where the umask has not been configured to restrict file permissions the default on most systems may allow other local users on the same host to read credentials written by certain CLI subcommands...

6.8CVSS5.8AI score0.00118EPSS
Exploits0References5
Rows per page
Query Builder