Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/03/26 5:10 p.m.•10 views

SUSE CVE-2026-1519

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS5.8AI score0.01545EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/03/26 2:43 p.m.•10 views

SUSE CVE-2026-23396

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL deref in meshmatcheslocal meshmatcheslocal unconditionally dereferences ie-meshconfig to compare mesh configuration parameters. When called from meshrxcsaframe, the parsed action-frame elements may not...

6.5CVSS5.8AI score0.00114EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/03/25 4:56 p.m.•10 views

SUSE CVE-2026-23300

In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix panic when IPv4 route references loopback IPv6 nexthop When a standalone IPv6 nexthop object is created with a loopback device e.g., "ip -6 nexthop add id 100 dev lo", fib6nhinit misclassifies it as a reject route...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/03/25 4:56 p.m.•10 views

SUSE CVE-2026-23301

In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation failure check for Entity name Currently findsdcaentityiot can allocate a string for the Entity name but it doesn't check if that allocation succeeded. Add the missing NULL check after the allocation...

5.7AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 4:56 p.m.•10 views

SUSE CVE-2026-23311

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix invalid wait context in ctxschedin Lockdep found a bug in the event scheduling when a pinned event was failed and wakes up the threads in the ring buffer like below. It seems it should not grab a wait-queue lock...

5.8AI score0.00093EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 4:56 p.m.•10 views

SUSE CVE-2026-23324

In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be leaked if usbkillanchoredurbs is...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/03/25 4:55 p.m.•10 views

SUSE CVE-2026-23367

In the Linux kernel, the following vulnerability has been resolved: wifi: radiotap: reject radiotap with unknown bits The radiotap parser is currently only used with the radiotap namespace not with vendor namespaces, but if the undefined field 18 is used, the alignment/size is unknown as well. In...

6.3CVSS5.7AI score0.00123EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/03/25 4:55 p.m.•10 views

SUSE CVE-2026-23368

In the Linux kernel, the following vulnerability has been resolved: net: phy: register phy ledtriggers during probe to avoid AB-BA deadlock There is an AB-BA deadlock when both LEDSTRIGGERNETDEV and LEDTRIGGERPHY are enabled: 1362.049207 ledtriggerregister+0x5c/0x1fc...

5.5CVSS5.7AI score0.00095EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2026/03/25 4:55 p.m.•10 views

SUSE CVE-2026-23382

In the Linux kernel, the following vulnerability has been resolved: HID: Add HIDCLAIMEDINPUT guards in rawevent callbacks missing them In commit 2ff5baa9b527 "HID: appleir: Fix potential NULL dereference at raw event handle", we handle the fact that raw event callbacks can happen even for a HID...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2026/03/25 11:52 a.m.•10 views

SUSE CVE-2026-4713

Incorrect boundary conditions in the Graphics component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...

6.3CVSS7.2AI score0.00433EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/03/25 12:28 a.m.•10 views

SUSE CVE-2026-25075

strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS AVP parser that allows unauthenticated remote attackers to cause a denial of service by sending crafted AVP data with invalid length fields during IKEv2 authentication. Attackers can exploit the...

7.5CVSS6AI score0.01013EPSS
Exploits2References9
SUSE CVE
SUSE CVE
•added 2026/03/25 12:28 a.m.•10 views

SUSE CVE-2026-25921

Gogs is an open source self-hosted Git service. Prior to version 0.14.2, overwritable LFS object across different repos leads to supply-chain attack, all LFS objects are vulnerable to be maliciously overwritten by malicious attackers. This issue has been patched in version 0.14.2...

9.3CVSS6.6AI score0.00327EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/25 12:27 a.m.•10 views

SUSE CVE-2026-25963

Fleet is open source device management software. In versions prior to 4.80.1, a broken authorization check in Fleet's certificate template deletion API could allow a team administrator to delete certificate templates belonging to other teams within the same Fleet instance. Fleet supports...

6.5CVSS5.7AI score0.00191EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 12:25 a.m.•10 views

SUSE CVE-2026-30233

OliveTin gives access to predefined shell commands from a web interface. Prior to version 3000.11.1, an authorization flaw in OliveTin allows authenticated users with view: false permission to enumerate action bindings and metadata via dashboard and API endpoints. Although execution exec may be...

6.5CVSS5.9AI score0.00417EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/25 12:25 a.m.•10 views

SUSE CVE-2026-30859

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.12, a broken access control vulnerability in the database query tool allows any authenticated tenant to read sensitive data belonging to other tenants, including API keys, mod...

6.5CVSS5.8AI score0.00213EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/25 12:25 a.m.•10 views

SUSE CVE-2026-30861

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. From version 0.2.5 to before version 0.2.10, an unauthenticated remote code execution RCE vulnerability exists in the MCP stdio configuration validation. The application allows unrestricted user...

9.9CVSS6.6AI score0.02054EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/25 12:25 a.m.•10 views

SUSE CVE-2026-30943

Gokapi is a self-hosted file sharing server with automatic expiration and encryption support. Prior to 2.2.4, An insufficient authorization check in the file replace API allows a user with only list visibility permission UserPermListOtherUploads to delete another user's file by abusing the...

4.1CVSS5.9AI score0.00179EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/03/24 12:24 a.m.•10 views

SUSE CVE-2026-32733

Halloy is an IRC application written in Rust. Prior to commit 0f77b2cfc5f822517a256ea5a4b94bad8bfe38b6, the DCC receive flow did not sanitize filenames from incoming DCC SEND requests. A remote IRC user could send a filename with path traversal sequences like ../../.ssh/authorizedkeys and the fil...

8.7CVSS5.9AI score0.00399EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/24 12:24 a.m.•10 views

SUSE CVE-2026-33236

NLTK Natural Language Toolkit is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, the NLTK downloader does not validate the subdir and id attributes when processing remote XML index...

8.1CVSS6AI score0.00487EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/03/14 12:25 a.m.•10 views

SUSE CVE-2026-3497

Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by various Linux distributions and does not affect the OpenSSH upstream project itself. The usage of sshpktdisconnect on an error, which does not terminate the...

6.5CVSS6AI score0.0218EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/03/03 12:26 a.m.•10 views

SUSE CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this...

7.1CVSS6AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/25 12:24 a.m.•10 views

SUSE CVE-2026-25797

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the ps coders, responsible for writing PostScript files, fails to sanitize the input before writing it into the PostScript header. An attacker can provide a...

5.7CVSS6AI score0.00161EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/02/20 12:25 a.m.•10 views

SUSE CVE-2026-22860

Rack is a modular Ruby web server interface. Prior to versions 2.2.22, 3.1.20, and 3.2.5, Rack::Directory's path check used a string prefix match on the expanded path. A request like /../rootexample/ can escape the configured root if the target path starts with the root string, allowing directory...

7.5CVSS6.4AI score0.00665EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/16 12:25 a.m.•10 views

SUSE CVE-2026-23197

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: preserve error state in block data length handler When a block read returns an invalid length, zero or I2CSMBUSBLOCKMAX, the length handler sets the state to IMXI2CSTATEFAILED. However, i2cimxmasterisr unconditionally...

5.5CVSS5.2AI score0.001EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/12 12:25 a.m.•10 views

SUSE CVE-2026-26079

Roundcube Webmail before 1.5.13 and 1.6 before 1.6.13 allows Cascading Style Sheets CSS injection, e.g., because comments are mishandled...

4.7CVSS5.4AI score0.00292EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/07 12:24 a.m.•10 views

SUSE CVE-2026-25060

OpenList Frontend is a UI component for OpenList. Prior to 4.1.10, certificate verification is disabled by default for all storage driver communications. The TlsInsecureSkipVerify setting is default to true in the DefaultConfig function in internal/conf/config.go. This vulnerability enables...

8.1CVSS5.3AI score0.00239EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/02/07 12:23 a.m.•10 views

SUSE CVE-2026-25499

Terraform / OpenTofu Provider adds support for Proxmox Virtual Environment. Prior to version 0.93.1, in the SSH configuration documentation, the sudoer line suggested is insecure and can result in escaping the folder using ../, allowing any files on the system to be edited. This issue has been...

8.7CVSS5.3AI score0.00431EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/02/05 12:27 a.m.•10 views

SUSE CVE-2026-1207

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on RasterField only implemented on PostGIS allows remote attackers to inject SQL via the band index parameter. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluate...

8.1CVSS5.6AI score0.09436EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/02/05 12:24 a.m.•10 views

SUSE CVE-2026-23089

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in sndusbmixerfree When sndusbcreatemixer fails, sndusbmixerfree frees mixer-idelems but the controls already added to the card still reference the freed memory. Later when sndcardregister runs...

5.9CVSS5.2AI score0.00135EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2026/02/01 12:24 a.m.•10 views

SUSE CVE-2025-71181

In the Linux kernel, the following vulnerability has been resolved: rustbinder: remove spinlock in rustshrinkfreepage When forward-porting Rust Binder to 6.18, I neglected to take commit fb56fdf8b9a2 "mm/listlru: split the lock to per-cgroup scope" into account, and apparently I did not end up...

5.5CVSS5.7AI score0.00102EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/30 12:43 a.m.•10 views

SUSE CVE-2025-14911

User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed GridFS metadata to overflow the bounding container...

7.1CVSS5.9AI score0.00275EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/30 12:27 a.m.•10 views

SUSE CVE-2025-69421

Issue summary: Processing a malformed PKCS12 file can trigger a NULL pointer dereference in the PKCS12itemdecryptd2iex function. Impact summary: A NULL pointer dereference can trigger a crash which leads to Denial of Service for an application processing PKCS12 files. The PKCS12itemdecryptd2iex...

6.2CVSS6.2AI score0.00844EPSS
Exploits1References23
SUSE CVE
SUSE CVE
•added 2026/01/30 12:25 a.m.•10 views

SUSE CVE-2026-22796

Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data. Impact summary: An application...

5.3CVSS5.9AI score0.00502EPSS
Exploits1References23
SUSE CVE
SUSE CVE
•added 2026/01/30 12:24 a.m.•10 views

SUSE CVE-2026-24688

pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions prior to 6.6.2 can craft a PDF which leads to an infinite loop. This requires accessing the outlines/bookmarks. This has been fixed in pypdf 6.6.2. If projects...

4.3CVSS5.8AI score0.00388EPSS
Exploits2References3
SUSE CVE
SUSE CVE
•added 2026/01/28 12:27 a.m.•10 views

SUSE CVE-2025-58151

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/23 12:28 a.m.•10 views

SUSE CVE-2025-66959

An issue in ollama v.0.12.10 allows a remote attacker to cause a denial of service via the GGUF decoder...

7.5CVSS5.6AI score0.04549EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/01/20 12:31 a.m.•10 views

SUSE CVE-2025-15538

A security vulnerability has been detected in Open Asset Import Library Assimp up to 6.0.2. Affected by this vulnerability is the function Assimp::LWOImporter::FindUVChannels of the file /src/assimp/code/AssetLib/LWO/LWOMaterial.cpp. Such manipulation leads to use after free. The attack needs to ...

7.8CVSS5AI score0.00165EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/01/19 12:23 a.m.•10 views

SUSE CVE-2025-71106

In the Linux kernel, the following vulnerability has been resolved: fs: PM: Fix reverse check in filesystemsfreezecallback The freezeallptr check in filesystemsfreezecallback introduced by commit a3f8f8662771 "power: always freeze efivarfs" is reverse which quite confusingly causes all file syste...

5.5CVSS6.5AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:51 a.m.•10 views

SUSE CVE-2017-18895

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows attackers to obtain sensitive information user statuses via a REST API version 4 endpoint...

5.3CVSS6.6AI score0.0092EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:28 a.m.•10 views

SUSE CVE-2025-60538

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack...

6.5CVSS7.1AI score0.00367EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/08 12:33 a.m.•10 views

SUSE CVE-2025-8556

A flaw was found in CIRCL's implementation of the FourQ elliptic curve. This vulnerability allows an attacker to compromise session security via low-order point injection and incorrect point validation during Diffie-Hellman key exchange...

3.7CVSS8AI score0.00485EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/06 12:37 a.m.•10 views

SUSE CVE-2017-18874

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2 when local storage for files is used. A System Admin can achieve directory traversal...

6.5CVSS6.3AI score0.01233EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:37 a.m.•10 views

SUSE CVE-2017-18886

An issue was discovered in Mattermost Server before 4.3.0, 4.2.1, and 4.1.2. It allows a bypass of restrictions on use of slash commands...

8.8CVSS8.4AI score0.00947EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:28 a.m.•10 views

SUSE CVE-2025-12689

Mattermost versions 11.0.x = 11.0.4, 10.12.x = 10.12.2, 10.11.x = 10.11.6 fail to check WebSocket request field for proper UTF-8 format, which allows attacker to crash Calls plug-in via sending malformed request...

6.5CVSS7AI score0.0024EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:28 a.m.•10 views

SUSE CVE-2025-13888

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

9.1CVSS6.7AI score0.0063EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:27 a.m.•10 views

SUSE CVE-2025-34430

1Panel versions 1.10.33 through 2.0.15 contain a cross-site request forgery CSRF vulnerability in the panel name management functionality. The affected endpoint does not implement CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that...

5.1CVSS7.1AI score0.00179EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:25 a.m.•10 views

SUSE CVE-2025-65637

A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving...

7.5CVSS6.7AI score0.00585EPSS
Exploits1References4
SUSE CVE
SUSE CVE
•added 2026/01/06 12:25 a.m.•10 views

SUSE CVE-2025-65795

Incorrect access control in the /api/v1/user endpoint of usememos memos v0.25.2 allows unauthorized attackers to create arbitrary accounts via a crafted request...

7.5CVSS6.9AI score0.00223EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:24 a.m.•10 views

SUSE CVE-2025-66565

Fiber Utils is a collection of common functions created for Fiber. In versions 2.0.0-rc.3 and below, when the system's cryptographic random number generator crypto/rand fails, both functions silently fall back to returning predictable UUID values, including the zero UUID...

9.8CVSS6.9AI score0.00409EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/06 12:23 a.m.•10 views

SUSE CVE-2025-68938

Gitea before 1.25.2 mishandles authorization for deletion of releases...

5.3CVSS7AI score0.00349EPSS
Exploits0References2
Total number of security vulnerabilities5000