Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
added 2026/03/25 12:23 a.m.9 views

SUSE CVE-2026-33186

gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 :path pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the :path omitted the mandatory...

8.1CVSS6AI score0.01557EPSS
Exploits1References72
SUSE CVE
SUSE CVE
added 2026/03/24 12:24 a.m.9 views

SUSE CVE-2026-33231

NLTK Natural Language Toolkit is a suite of open source Python modules, data sets, and tutorials supporting research and development in Natural Language Processing. In versions 3.9.3 and prior, nltk.app.wordnetapp allows unauthenticated remote shutdown of the local WordNet Browser HTTP server whe...

7.5CVSS5.9AI score0.00855EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/22 12:24 a.m.9 views

SUSE CVE-2026-23274

In the Linux kernel, the following vulnerability has been resolved: netfilter: xtIDLETIMER: reject rev0 reuse of ALARM timer labels IDLETIMER revision 0 rules reuse existing timers by label and always call modtimer on timer-timer. If the label was created first by revision 1 with XTIDLETIMERALARM...

7CVSS5.7AI score0.00123EPSS
Exploits0References95
SUSE CVE
SUSE CVE
added 2026/03/22 12:23 a.m.9 views

SUSE CVE-2026-33022

Tekton Pipelines project provides k8s-style resources for declaring CI/CD-style pipelines. Versions 0.60.0 through 1.0.0, 1.1.0 through 1.3.2, 1.4.0 through 1.6.0, 1.7.0 through 1.9.0, 1.10.0, and 1.10.1 have a denial-of-service vulnerability in that allows any user who can create a TaskRun or...

6.5CVSS5.8AI score0.00368EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/19 12:27 a.m.9 views

SUSE CVE-2026-23243

In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative datalen in ibumadwrite ibumadwrite computes datalen from user-controlled count and the MAD header sizes. With a mismatched user MAD header size and RMPP header length, datalen can become negative and...

7.8CVSS5.6AI score0.00125EPSS
Exploits0References103
SUSE CVE
SUSE CVE
added 2026/03/18 10:59 a.m.9 views

SUSE CVE-2025-68971

In Forgejo through 13.0.3, the attachment component allows a denial of service by uploading a multi-gigabyte file attachment e.g., to be associated with an issue or a release...

6.5CVSS5.8AI score0.00471EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/16 12:43 a.m.9 views

SUSE CVE-2013-1085

Stack-based buffer overflow in the nim: protocol handler in Novell GroupWise Messenger 2.04 and earlier, and Novell Messenger 2.1.x and 2.2.x before 2.2.2, allows remote attackers to execute arbitrary code via an import command containing a long string in the filename parameter...

9.3CVSS6.5AI score0.05591EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/05 6:52 a.m.9 views

SUSE CVE-2026-3494

In MariaDB server version through 11.8.5, when server audit plugin is enabled with serverauditevents variable configured with QUERYDCL, QUERYDDL, or QUERYDML filtering, if an authenticated database user invokes a SQL statement prefixed with double-hyphen - or hash style comments, the statement is...

4.3CVSS5.8AI score0.00274EPSS
Exploits1References7
SUSE CVE
SUSE CVE
added 2026/03/05 6:51 a.m.9 views

SUSE CVE-2026-23238

In the Linux kernel, the following vulnerability has been resolved: romfs: check sbsetblocksize return value romfsfillsuper ignores the return value of sbsetblocksize, which can fail if the requested block size is incompatible with the block device's configuration. This can be triggered by settin...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/03/03 12:26 a.m.9 views

SUSE CVE-2026-3441

A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of-bounds read in the bfd linker, allows an attacker to gain access to sensitive information. By convincing a user to process a specially crafted XCOFF object file, an attacker can trigger this...

7.1CVSS6AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/27 12:25 a.m.9 views

SUSE CVE-2026-25942

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverexecuteresult indexes the global errorcodenames array 7 elements, indices 0-6 with an unchecked execResult-execResult value received from the server, allowing an out-of-bounds read when the serve...

5.3CVSS5.8AI score0.00454EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2026/02/27 12:25 a.m.9 views

SUSE CVE-2026-25954

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverlocalmovesize dereferences a freed xfAppWindow pointer because xfrailgetwindow returns an unprotected pointer from the railWindows hash table, and the main thread can concurrently delete the wind...

5.3CVSS5.8AI score0.00486EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2026/02/25 12:24 a.m.9 views

SUSE CVE-2026-25969

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in coders/ashlar.c. The WriteASHLARImage allocates a structure. However, when an exception is thrown, the allocated memory is not properly released,...

4CVSS5.8AI score0.0036EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2026/02/19 12:26 a.m.9 views

SUSE CVE-2026-23227

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: vidi: use ctx-lock to protect struct vidicontext member variables related to memory alloc/free Exynos Virtual Display driver performs memory alloc/free operations without lock protection, which easily causes concurren...

7CVSS5.7AI score0.00152EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/19 12:25 a.m.9 views

SUSE CVE-2026-25087

Use After Free vulnerability in Apache Arrow C++. This issue affects Apache Arrow C++ from 15.0.0 through 23.0.0. It can be triggered when reading an Arrow IPC file but not an IPC stream with pre-buffering enabled, if the IPC file contains data with variadic buffers such as Binary View and String...

7CVSS5.8AI score0.00807EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/17 12:26 a.m.9 views

SUSE CVE-2025-71201

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix early read unlock of page with EOF in middle The read result collection for buffered reads seems to run ahead of the completion of subrequests under some circumstances, as can be seen in the following log snippet:...

5.5CVSS5.3AI score0.00117EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/02/17 12:24 a.m.9 views

SUSE CVE-2026-23135

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix dmafreecoherent pointer dmaalloccoherent allocates a DMA mapped buffer and stores the addresses in XXXunaligned fields. Those should be reused when freeing the buffer rather than the aligned addresses...

4.7CVSS5.3AI score0.00122EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2026/02/16 12:27 a.m.9 views

SUSE CVE-2025-71203

In the Linux kernel, the following vulnerability has been resolved: riscv: Sanitize syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check to prevent speculative...

7CVSS5.2AI score0.00126EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.9 views

SUSE CVE-2026-23168

In the Linux kernel, the following vulnerability has been resolved: flexproportions: make fpropnewperiod hardirq safe Bernd has reported a lockdep splat from flexible proportions code that is essentially complaining about the following race: runtimersoftirq - we are in softirq context calltimerfn...

5.5CVSS5.4AI score0.00114EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.9 views

SUSE CVE-2026-23170

In the Linux kernel, the following vulnerability has been resolved: drm/imx/tve: fix probe device leak Make sure to drop the reference taken to the DDC device during probe on probe failure e.g. probe deferral and on driver unbind...

4.4CVSS5.2AI score0.00115EPSS
Exploits0References19
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.9 views

SUSE CVE-2026-23189

In the Linux kernel, the following vulnerability has been resolved: ceph: fix NULL pointer dereference in cephmdsauthmatch The CephFS kernel client has regression starting from 6.18-rc1. We have issue in cephmdsauthmatch if fsname == NULL: const char fsname = mdsc-fsc-mountoptions-mdsnamespace;...

5.5CVSS5.3AI score0.00112EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/02/16 12:25 a.m.9 views

SUSE CVE-2026-23193

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsitdecsessionusagecount In iscsitdecsessionusagecount, the function calls complete while holding the sess-sessionusagelock. Similar to the connection usage count logic, the waiter...

5.8CVSS5.2AI score0.0024EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2026/02/07 12:23 a.m.9 views

SUSE CVE-2026-25499

Terraform / OpenTofu Provider adds support for Proxmox Virtual Environment. Prior to version 0.93.1, in the SSH configuration documentation, the sudoer line suggested is insecure and can result in escaping the folder using ../, allowing any files on the system to be edited. This issue has been...

8.7CVSS5.3AI score0.00431EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/02/05 12:27 a.m.9 views

SUSE CVE-2025-71193

In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qusb2: Fix NULL pointer dereference on early suspend Enabling runtime PM before attaching the QPHY instance as driver data can lead to a NULL pointer dereference in runtime PM callbacks that expect valid driver data...

4.7CVSS5.2AI score0.00168EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/02/05 12:26 a.m.9 views

SUSE CVE-2026-1642

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side-along with conditions beyond the attacker's control-may be able to inject plain text data in...

5.9CVSS5.5AI score0.00339EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2026/02/05 12:25 a.m.9 views

SUSE CVE-2026-23046

In the Linux kernel, the following vulnerability has been resolved: virtionet: fix device mismatch in devmkzalloc/devmkfree Initial rsshdr allocation uses virtiodevice-device, but virtnetsetqueues frees using netdevice-device. This device mismatch causing below devres warning 3788.514041...

5.1AI score0.00176EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/02/01 12:23 a.m.9 views

SUSE CVE-2026-23024

In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leak of flow steer list on rmmod The flow steering list maintains entries that are added and removed as ethtool creates and deletes flow steering rules. Module removal with active entries causes memory leak as th...

3.3CVSS5.8AI score0.00132EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/02/01 12:23 a.m.9 views

SUSE CVE-2026-23030

In the Linux kernel, the following vulnerability has been resolved: phy: rockchip: inno-usb2: Fix a double free bug in rockchipusb2phyprobe The foreachavailablechildofnode calls ofnodeput to release childnp in each success loop. After breaking from the loop with the childnp has been released, the...

4.7CVSS5.8AI score0.00217EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2026/01/31 12:24 a.m.9 views

SUSE CVE-2026-25210

In libexpat before 2.7.4, the doContent function does not properly determine the buffer size bufSize because there is no integer overflow check for tag buffer reallocation...

6.5CVSS6AI score0.00193EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2026/01/30 12:42 a.m.9 views

SUSE CVE-2025-33219

NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or informatio...

7.8CVSS6AI score0.00186EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/30 12:27 a.m.9 views

SUSE CVE-2025-69421

Issue summary: Processing a malformed PKCS12 file can trigger a NULL pointer dereference in the PKCS12itemdecryptd2iex function. Impact summary: A NULL pointer dereference can trigger a crash which leads to Denial of Service for an application processing PKCS12 files. The PKCS12itemdecryptd2iex...

6.2CVSS6.2AI score0.00844EPSS
Exploits1References23
SUSE CVE
SUSE CVE
added 2026/01/28 12:27 a.m.9 views

SUSE CVE-2025-58151

unknown...

5.8AI score
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/28 12:24 a.m.9 views

SUSE CVE-2026-24056

pnpm is a package manager. Prior to version 10.28.2, when pnpm installs a file: directory or git: dependency, it follows symlinks and reads their target contents without constraining them to the package root. A malicious package containing a symlink to an absolute path e.g., /etc/passwd,...

6.7CVSS5.9AI score0.00469EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/01/27 12:27 a.m.9 views

SUSE CVE-2026-1386

A UNIX symbolic link following issue in the jailer component in Firecracker version v1.13.1 and earlier and 1.14.0 on Linux may allow a local host user with write access to the pre-created jailer directories to overwrite arbitrary host files via a symlink attack during the initialization copy at...

6CVSS5.9AI score0.00195EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.9 views

SUSE CVE-2026-22999

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: do not free existing class in qfqchangeclass Fixes qfqchangeclass error case. cl-qdisc and cl should only be freed if a new class and qdisc were allocated, or we risk various UAF...

7CVSS5.2AI score0.00204EPSS
Exploits0References125
SUSE CVE
SUSE CVE
added 2026/01/26 12:24 a.m.9 views

SUSE CVE-2026-23011

In the Linux kernel, the following vulnerability has been resolved: ipv4: ipgre: make ipgreheader robust Analog to commit db5b4e39c4e6 "ip6gre: make ip6greheader robust" Over the years, syzbot found many ways to crash the kernel in ipgreheader 1. This involves team or bonding drivers ability to...

5.5CVSS5.2AI score0.00187EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2026/01/24 12:25 a.m.9 views

SUSE CVE-2025-71147

In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix a memory leak in tpm2loadcmd 'tpm2loadcmd' allocates a tempoary blob indirectly via 'tpm2keydecode' but it is not freed in the failure paths. Address this by wrapping the blob into with a cleanup helper...

4.7CVSS5.2AI score0.00114EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2026/01/20 12:32 a.m.9 views

SUSE CVE-2025-15533

A vulnerability was determined in raysan5 raylib up to 909f040. Affected by this vulnerability is the function GenImageFontAtlas of the file src/rtext.c. Executing a manipulation can lead to heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly disclos...

7.8CVSS5.6AI score0.00306EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/01/20 12:27 a.m.9 views

SUSE CVE-2025-68616

WeasyPrint helps web developers to create PDF documents. Prior to version 68.0, a server-side request forgery SSRF protection bypass exists in WeasyPrint's defaulturlfetcher. The vulnerability allows attackers to access internal network resources such as localhost services or cloud metadata...

7.5CVSS5.6AI score0.00501EPSS
Exploits2References3
SUSE CVE
SUSE CVE
added 2026/01/17 12:51 a.m.9 views

SUSE CVE-2017-18895

An issue was discovered in Mattermost Server before 4.2.0, 4.1.1, and 4.0.5. It allows attackers to obtain sensitive information user statuses via a REST API version 4 endpoint...

5.3CVSS6.6AI score0.0092EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/17 12:32 a.m.9 views

SUSE CVE-2025-14987

When system.enableCrossNamespaceCommands is enabled on by default, the Temporal server permits certain workflow task commands e.g. StartChildWorkflowExecution, SignalExternalWorkflowExecution, RequestCancelExternalWorkflowExecution to target a different namespace than the namespace authorized at...

5.3CVSS7.3AI score0.00358EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/17 12:28 a.m.9 views

SUSE CVE-2025-60538

A lack of rate limiting in the login page of shiori v1.7.4 and below allows attackers to bypass authentication via a brute force attack...

6.5CVSS7.1AI score0.00367EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/17 12:26 a.m.9 views

SUSE CVE-2025-71110

In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in deferfree before accessing freed memory When CONFIGSLUBTINY is enabled, kfreenolock calls kasanslabfree before deferfree. On ARM64 with MTE Memory Tagging Extension, kasanslabfree poisons the memory an...

7.8CVSS6.6AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/16 12:27 a.m.9 views

SUSE CVE-2025-68803

In the Linux kernel, the following vulnerability has been resolved: NFSD: NFSv4 file creation neglects setting ACL An NFSv4 client that sets an ACL with a named principal during file creation retrieves the ACL afterwards, and finds that it is only a default ACL based on the mode bits and not the...

4.6CVSS6.4AI score0.00173EPSS
Exploits0References20
SUSE CVE
SUSE CVE
added 2026/01/09 12:35 a.m.9 views

SUSE CVE-2024-53866

The package manager pnpm prior to version 9.15.0 seems to mishandle overrides and global cache: Overrides from one workspace leak into npm metadata saved in global cache; npm metadata from global cache affects other workspaces; and installs by default don't revalidate the data including on first...

9.8CVSS7.9AI score0.00942EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/01/06 12:28 a.m.9 views

SUSE CVE-2025-13888

A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources CRs that trick the system into granting them elevated permissions in other namespaces, including privileged namespaces. An authenticated attacker can then use these elevated permissions to create privileged...

9.1CVSS6.7AI score0.0063EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:27 a.m.9 views

SUSE CVE-2025-34410

1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery CSRF vulnerability in the Change Username functionality available from the settings panel /settings/panel. The endpoint does not implement CSRF protections such as anti-CSRF tokens or Origin/Referer validation. An attacker can...

7.1CVSS6.8AI score0.00128EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:27 a.m.9 views

SUSE CVE-2025-34429

1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery CSRF vulnerability in the web port configuration functionality. The port-change endpoint lacks CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a...

7.1CVSS7.1AI score0.00144EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:25 a.m.9 views

SUSE CVE-2025-65798

Incorrect access control in usememos memos v0.25.2 allows attackers with low-level privileges to arbitrarily modify or delete attachments made by other users...

5.4CVSS6.9AI score0.00156EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2026/01/06 12:23 a.m.9 views

SUSE CVE-2025-68938

Gitea before 1.25.2 mishandles authorization for deletion of releases...

5.3CVSS7AI score0.00349EPSS
Exploits0References2
Total number of security vulnerabilities5000