Lucene search
+L
AlpinelinuxRecent

13058 matches found

AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•4 views

CVE-2025-14331

Same-origin policy bypass in the Request Handling component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

6.5CVSS6.6AI score0.00162EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•1 views

CVE-2025-14330

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

9.8CVSS7.2AI score0.00439EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•2 views

CVE-2025-14329

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8.8CVSS7.2AI score0.0034EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•1 views

CVE-2025-14328

Privilege escalation in the Netmonitor component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8.8CVSS7.2AI score0.0034EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•2 views

CVE-2025-14327

Spoofing issue in the Downloads Panel component. This vulnerability was fixed in Firefox 146, Thunderbird 146, Firefox ESR 140.7, and Thunderbird 140.7...

7.5CVSS7.1AI score0.00352EPSS
Exploits0References5
AlpineLinux
AlpineLinux
•added 2025/12/09 1:38 p.m.•3 views

CVE-2025-14326

Use-after-free in the Audio/Video: GMP component. This vulnerability was fixed in Firefox 146 and Thunderbird 146...

9.8CVSS7.3AI score0.00401EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2025/12/09 1:37 p.m.•1 views

CVE-2025-14325

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

7.3CVSS7.1AI score0.00297EPSS
Exploits1References5
AlpineLinux
AlpineLinux
•added 2025/12/09 1:37 p.m.•1 views

CVE-2025-14324

JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

9.8CVSS7.2AI score0.0049EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2025/12/09 1:37 p.m.•1 views

CVE-2025-14323

Privilege escalation in the DOM: Notifications component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8.8CVSS7.2AI score0.00351EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2025/12/09 1:37 p.m.•1 views

CVE-2025-14322

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8CVSS7.2AI score0.00287EPSS
Exploits0References6
AlpineLinux
AlpineLinux
•added 2025/12/09 1:37 p.m.•3 views

CVE-2025-14321

Use-after-free in the WebRTC: Signaling component. This vulnerability was fixed in Firefox 146, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

9.8CVSS7.2AI score0.00517EPSS
Exploits1References5
AlpineLinux
AlpineLinux
•added 2025/12/09 9:16 a.m.•5 views

CVE-2025-59029

An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to be inserted into the records cache, then send a query with qtype set to ANY...

5.3CVSS6.6AI score0.00336EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/09 9:15 a.m.•8 views

CVE-2025-59030

An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP...

7.5CVSS6.7AI score0.00504EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/09 12:38 a.m.•3 views

CVE-2025-66491

Traefik is an HTTP reverse proxy and load balancer. Versions 3.5.0 through 3.6.2 have inverted TLS verification logic in the nginx.ingress.kubernetes.io/proxy-ssl-verify annotation. Setting the annotation to "on" intending to enable backend TLS certificate verification actually disables...

5.9CVSS6.8AI score0.00213EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2025/12/09 12:35 a.m.•3 views

CVE-2025-66490

Traefik is an HTTP reverse proxy and load balancer. For versions prior to 2.11.32 and 2.11.31 through 3.6.2, requests using PathPrefix, Path or PathRegex matchers can bypass path normalization. When Traefik uses path-based routing, requests containing URL-encoded restricted characters /, , Null,...

6.9CVSS5.8AI score0.00344EPSS
Exploits1References3
AlpineLinux
AlpineLinux
•added 2025/12/08 10:4 p.m.•3 views

CVE-2025-62408

c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...

5.9CVSS6.9AI score0.00396EPSS
Exploits0References2
AlpineLinux
AlpineLinux
•added 2025/12/05 4:6 p.m.•6 views

CVE-2025-66471

urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.0 and prior to 2.6.0, the Streaming API improperly handles highly compressed data. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than...

8.9CVSS7.4AI score0.00633EPSS
Exploits0References2
AlpineLinux
AlpineLinux
•added 2025/12/05 4:2 p.m.•2 views

CVE-2025-66418

urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was unbounded allowing a malicious server to insert a virtually unlimited number of compression steps leading to high CPU usage and massive memory...

8.9CVSS7.2AI score0.00633EPSS
Exploits0References2
AlpineLinux
AlpineLinux
•added 2025/12/05 1:40 p.m.•10 views

CVE-2025-58098

Apache HTTP Server 2.4.65 and earlier with Server Side Includes SSI enabled and modcgid but not modcgi passes the shell-escaped query string to exec cmd="..." directives. This issue affects Apache HTTP Server before 2.4.66. Users are recommended to upgrade to version 2.4.66, which fixes the issue...

8.3CVSS7AI score0.01527EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 11:2 a.m.•7 views

CVE-2025-66200

moduserdir+suexec bypass via AllowOverride FileInfo vulnerability in Apache HTTP Server. Users with access to use the RequestHeader directive in htaccess can cause some CGI scripts to run under an unexpected userid. This issue affects Apache HTTP Server: from 2.4.7 through 2.4.65. Users are...

5.4CVSS7AI score0.00591EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 10:46 a.m.•5 views

CVE-2025-65082

Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache configuration unexpectedly superseding variables calculated by the server for CGI programs. This issue affects Apache HTTP Server from 2.4.0 through...

6.5CVSS7AI score0.00771EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 10:17 a.m.•6 views

CVE-2025-59775

Server-Side Request Forgery SSRF vulnerability in Apache HTTP Server on Windows with AllowEncodedSlashes On and MergeSlashes Off allows to potentially leak NTLM hashes to a malicious server via SSRF and malicious requests or content Users are recommended to upgrade to version 2.4.66, which fixes...

7.5CVSS7AI score0.00784EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 10:12 a.m.•4 views

CVE-2025-55753

An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeeds. This issue affects Apache HTTP Server: fro...

7.5CVSS7.3AI score0.00417EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 12:0 a.m.•3 views

CVE-2025-32899

In KDE Connect before 1.33.0 on Android, a packet can be crafted that causes two paired devices to unpair. Specifically, it is an invalid discovery packet sent over broadcast UDP...

4.3CVSS6.9AI score0.00166EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/05 12:0 a.m.•3 views

CVE-2025-32901

In KDE Connect before 1.33.0 on Android, malicious device IDs sent via broadcast UDP could cause an application crash...

4.3CVSS7AI score0.00166EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/03 8:33 p.m.•11 views

CVE-2025-66293

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing...

7.1CVSS6.8AI score0.00299EPSS
Exploits2References7
AlpineLinux
AlpineLinux
•added 2025/12/03 7:54 p.m.•6 views

CVE-2025-13086

Improper validation of source IP addresses in OpenVPN version 2.6.0 through 2.6.15 and 2.7alpha1 through 2.7rc1 allows an attacker to open a session from a different IP address which did not initiate the connection resulting in a denial of service for the originating client...

8.2CVSS7.7AI score0.00621EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/03 7:37 p.m.•5 views

CVE-2025-61727

An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not prevent a leaf certificate from claiming the SAN .example.com...

6.5CVSS6.9AI score0.00274EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/03 7:13 p.m.•3 views

CVE-2025-66406

Step CA is an online certificate authority for secure, automated certificate management for DevOps. Prior to 0.29.0, there is an improper authorization check for SSH certificate revocation. This affects deployments configured with the SSHPOP provisioner. This vulnerability is fixed in 0.29.0...

5CVSS6.8AI score0.00138EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/03 7:0 p.m.•5 views

CVE-2025-12819

Untrusted search path in authquery connection handler in PgBouncer before 1.25.1 allows an unauthenticated attacker to execute arbitrary SQL during authentication via a malicious searchpath parameter in the StartupMessage...

8.1CVSS8.3AI score0.00327EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/03 5:2 p.m.•4 views

CVE-2025-54065

GZDoom is a feature centric port for all Doom engine games. GZDoom is an open source Doom engine. In versions 4.14.2 and earlier, ZScript actor state handling allows scripts to read arbitrary addresses, write constants into the JIT-compiled code section, and redirect control flow through crafted...

7.9CVSS7.8AI score0.00117EPSS
Exploits0References1
AlpineLinux
AlpineLinux
•added 2025/12/03 4:22 p.m.•4 views

CVE-2025-13751

Interactive service agent in OpenVPN version 2.5.0 through 2.6.16 and 2.7alpha1 through 2.7rc2 on Windows allows a local authenticated user to connect to the service and trigger an error causing a local denial of service...

5.6CVSS7.5AI score0.00157EPSS
Exploits0References4
AlpineLinux
AlpineLinux
•added 2025/12/03 8:4 a.m.•2 views

CVE-2025-13946

MEGACO dissector infinite loop in Wireshark 4.6.0 to 4.6.1 and 4.4.0 to 4.4.11 allows denial of service...

5.5CVSS6.8AI score0.00126EPSS
Exploits1References2
AlpineLinux
AlpineLinux
•added 2025/12/02 11:2 p.m.•3 views

CVE-2025-65955

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-9 and 6.9.13-34, there is a vulnerability in ImageMagick’s Magick++ layer that manifests when Options::fontFamily is invoked with an empty string. Clearing a font family calls...

6.1CVSS6.4AI score0.00142EPSS
Exploits0References3
AlpineLinux
AlpineLinux
•added 2025/12/02 9:49 p.m.•4 views

CVE-2025-66476

Vim is an open source, command line text editor. Prior to version 9.1.1947, an uncontrolled search path vulnerability on Windows allows Vim to execute malicious executables placed in the current working directory for the current edited file. On Windows, when using cmd.exe as a shell, Vim resolves...

7.8CVSS7.4AI score0.00439EPSS
Exploits0References4
AlpineLinux
AlpineLinux
•added 2025/12/02 7:0 p.m.•4 views

CVE-2025-13721

Race in v8 in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

7.5CVSS7.1AI score0.00187EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 7:0 p.m.•5 views

CVE-2025-13720

Bad cast in Loader in Google Chrome prior to 143.0.7499.41 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS7.1AI score0.0024EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 7:0 p.m.•3 views

CVE-2025-13638

Use after free in Media Stream in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

8.8CVSS7.4AI score0.0023EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 7:0 p.m.•4 views

CVE-2025-13639

Inappropriate implementation in WebRTC in Google Chrome prior to 143.0.7499.41 allowed a remote attacker to perform arbitrary read/write via a crafted HTML page. Chromium security severity: Low...

8.1CVSS6.7AI score0.00225EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 7:0 p.m.•6 views

CVE-2025-13634

Inappropriate implementation in Downloads in Google Chrome on Windows prior to 143.0.7499.41 allowed a local attacker to bypass mark of the web via a crafted HTML page. Chromium security severity: Medium...

4.4CVSS6.2AI score0.00141EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 6:54 p.m.•4 views

CVE-2025-61729

Within HostnameError.Error, when constructing an error string, there is no limit to the number of hosts that will be printed out. Furthermore, the error string is constructed by repeated string concatenation, leading to quadratic runtime. Therefore, a certificate provided by a malicious actor can...

7.5CVSS6.9AI score0.00459EPSS
Exploits2
AlpineLinux
AlpineLinux
•added 2025/12/02 5:49 p.m.•4 views

CVE-2025-65105

Apptainer is an open source container platform. In Apptainer versions less than 1.4.5, a container can disable two of the forms of the little used --security option, in particular the forms --security=apparmor: and --security=selinux: which otherwise put restrictions on operations that containers...

5.3CVSS6.9AI score0.00198EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 5:25 p.m.•4 views

CVE-2025-64750

SingularityCE and SingularityPRO are open source container platforms. Prior to SingularityCE 4.3.5 and SingularityPRO 4.1.11 and 4.3.5, if a user relies on LSM restrictions to prevent malicious operations then, under certain circumstances, an attacker can redirect the LSM label write operation so...

4.5CVSS6.7AI score0.00137EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 3:15 p.m.•4 views

CVE-2025-64460

An issue was discovered in 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27. Algorithmic complexity in django.core.serializers.xmlserializer.getInnerText allows a remote attacker to cause a potential denial-of-service attack triggering CPU and memory exhaustion via specially crafted XML...

7.5CVSS6.8AI score0.02143EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/02 3:13 p.m.•5 views

CVE-2025-13372

An issue was discovered in 5.2 before 5.2.9, 5.1 before 5.1.15, and 4.2 before 4.2.27. FilteredRelation is subject to SQL injection in column aliases, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed to QuerySet.annotate or QuerySet.alias on PostgreSQL. Earlier...

4.3CVSS8AI score0.00904EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/01 1:5 p.m.•7 views

CVE-2025-49643

An authenticated Zabbix user including Guest is able to cause disproportionate CPU load on the webserver by sending specially crafted parameters to /imgstore.php, leading to potential denial of service...

6.5CVSS6.7AI score0.00319EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/01 1:3 p.m.•7 views

CVE-2025-49642

Library loading on AIX Zabbix Agent builds can be hijacked by local users with write access to the /home/cecuser directory...

5.8CVSS6.7AI score0.00103EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/12/01 12:55 p.m.•6 views

CVE-2025-27232

An authenticated Zabbix Super Admin can exploit the oauth.authorize action to read arbitrary files from the webserver leading to potential confidentiality loss...

6.8CVSS6.8AI score0.00311EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/11/29 2:28 a.m.•4 views

CVE-2025-66221

Werkzeug is a comprehensive WSGI web application library. Prior to version 3.1.4, Werkzeug's safejoin function allows path segments with Windows device names. On Windows, there are special device names such as CON, AUX, etc that are implicitly present and readable in every directory...

6.3CVSS5.8AI score0.00474EPSS
Exploits0
AlpineLinux
AlpineLinux
•added 2025/11/29 2:15 a.m.•4 views

CVE-2025-58436

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. Prior to version 2.4.15, a client that connects to cupsd but sends slow messages, e.g. only one byte per second, delays cupsd as a whole, such that it becomes unusable by other clients. This issue...

5.5CVSS6.9AI score0.00195EPSS
Exploits1References4
Total number of security vulnerabilities13058