Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/04/09 11:29 p.m.•6 views

SUSE CVE-2026-5919

Insufficient validation of untrusted input in WebSockets in Google Chrome prior to 147.0.7727.55 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML page. Chromium security severity: Low...

6.5CVSS7.3AI score0.0019EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:26 p.m.•9 views

SUSE CVE-2026-33540

Distribution is a toolkit to pack, ship, store, and deliver container content. Prior to 3.1.0, in pull-through cache mode, distribution discovers token auth endpoints by parsing WWW-Authenticate challenges returned by the configured upstream registry. The realm URL from a bearer challenge is used...

3.1CVSS5.8AI score0.00274EPSS
Exploits1References5
SUSE CVE
SUSE CVE
•added 2026/04/09 11:26 p.m.•4 views

SUSE CVE-2026-33753

rfc3161-client is a Python library implementing the Time-Stamp Protocol TSP described in RFC 3161. Prior to 1.0.6, an Authorization Bypass vulnerability in rfc3161-client's signature verification allows any attacker to impersonate a trusted TimeStamping Authority TSA. By exploiting a logic flaw i...

7.5CVSS5.8AI score0.00188EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:26 p.m.•4 views

SUSE CVE-2026-33815

Memory-safety vulnerability in github.com/jackc/pgx/v5...

9.8CVSS5.8AI score0.00605EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•6 views

SUSE CVE-2026-33816

Memory-safety vulnerability in github.com/jackc/pgx/v5...

8.3CVSS5.8AI score0.00561EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•6 views

SUSE CVE-2026-34078

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the Flatpak portal accepts paths in the sandbox-expose options which can be app-controlled symlinks pointing at arbitrary paths. Flatpak run mounts the resolved host path in the sandbox. This gives apps access ...

8.2CVSS6.3AI score0.0168EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•5 views

SUSE CVE-2026-34079

Flatpak is a Linux application sandboxing and distribution framework. Prior to 1.16.4, the caching for ld.so removes outdated cache files without properly checking that the app controlled path to the outdated cache is in the cache directory. This allows Flatpak apps to delete arbitrary files on t...

6.7CVSS5.9AI score0.00323EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•5 views

SUSE CVE-2026-34165

go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before version 5.17.1, a vulnerability has been identified in which a maliciously crafted .idx file can cause asymmetric memory consumption, potentially exhausting available memory and resulting in a...

5CVSS5.7AI score0.00147EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•4 views

SUSE CVE-2026-35201

Discount is an implementation of John Gruber's Markdown markup language in C. From 1.3.1.1 to before 2.2.7.4, a signed length truncation bug causes an out-of-bounds read in the default Markdown parse path. Inputs larger than INTMAX are truncated to a signed int before entering the native parser,...

5.9CVSS5.9AI score0.00275EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•3 views

SUSE CVE-2026-35480

go-ipld-prime is an implementation of the InterPlanetary Linked Data IPLD spec interfaces, a batteries-included codec implementations of IPLD for CBOR and JSON, and tooling for basic operations on IPLD objects. Prior to 0.22.0, the DAG-CBOR decoder uses collection sizes declared in CBOR headers a...

6.2CVSS5.8AI score0.00156EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•7 views

SUSE CVE-2026-35611

Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library. From 2.3.0 to before 2.9.0, within the URI template implementation in Addressable, two classes of URI template generate regular expressions vulnerable to catastrophic backtracking...

7.5CVSS5.7AI score0.0036EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•40 views

SUSE CVE-2026-39324

Rack::Session is a session management implementation for Rack. From 2.0.0 to before 2.1.2, Rack::Session::Cookie incorrectly handles decryption failures when configured with secrets:. If cookie decryption fails, the implementation falls back to a default decoder instead of rejecting the cookie...

9.3CVSS5.8AI score0.0027EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•4 views

SUSE CVE-2026-39373

JWCrypto implements JWK, JWS, and JWE specifications using python-cryptography. Prior to 1.5.7, an unauthenticated attacker can exhaust server memory by sending crafted JWE tokens with ZIP compression. The existing patch for CVE-2024-28102 limits input token size to 250KB but does not validate th...

7.5CVSS5.8AI score0.00294EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•8 views

SUSE CVE-2026-39881

Vim is an open source, command line text editor. Prior to 9.2.0316, a command injection vulnerability in Vim's netbeans interface allows a malicious netbeans server to execute arbitrary Ex commands when Vim connects to it, via unsanitized strings in the defineAnnoType and specialKeys protocol...

6CVSS6.1AI score0.0062EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•5 views

SUSE CVE-2026-40024

The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tskrecover that allows an attacker to write files to arbitrary locations outside the intended recovery directory via crafted filenames or directory paths with path traversal sequences in a filesystem image. An attacker can...

8.4CVSS6.3AI score0.00167EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•7 views

SUSE CVE-2026-40025

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the APFS filesystem keybag parser where the wrappedkeyparser class follows attacker-controlled length fields without bounds checking, causing heap reads past the allocated buffer. An attacker can craft a malicious APFS...

4.8CVSS5.8AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/09 11:25 p.m.•7 views

SUSE CVE-2026-40026

The Sleuth Kit through 4.14.0 contains an out-of-bounds read vulnerability in the ISO9660 filesystem parser where the parsesusp function trusts lenid, lendes, and lensrc fields from the disk image to memcpy data into a stack buffer without verifying that the source data falls within the parsed SU...

4.8CVSS6AI score0.00126EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:30 p.m.•5 views

SUSE CVE-2026-4277

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. Add permissions on inline model instances were not validated on submission of forged POST data in GenericInlineModelAdmin. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated a...

5.4CVSS5.8AI score0.00458EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2026/04/08 11:30 p.m.•3 views

SUSE CVE-2026-4292

An issue was discovered in 6.0 before 6.0.4, 5.2 before 5.2.13, and 4.2 before 4.2.30. Admin changelist forms using ModelAdmin.listeditable incorrectly allowed new instances to be created via forged POST data. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluated a...

2.7CVSS5.8AI score0.00294EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•9 views

SUSE CVE-2026-5208

Command injection in alerts in CoolerControl/coolercontrold 4.0.0 allows authenticated attackers to execute arbitrary code as root via injected bash commands in alert names...

8.2CVSS6.2AI score0.00972EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•3 views

SUSE CVE-2026-5300

Unauthenticated functionality in CoolerControl/coolercontrold 4.0.0 allows unauthenticated attackers to view and modify potentially sensitive data via HTTP requests...

9.1CVSS5.8AI score0.00218EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•4 views

SUSE CVE-2026-5301

Stored XSS in log viewer in CoolerControl/coolercontrol-ui 4.0.0 allows unauthenticated attackers to take over the service via malicious JavaScript in poisoned log entries...

7.6CVSS5.8AI score0.00276EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•5 views

SUSE CVE-2026-5302

CORS misconfiguration in CoolerControl/coolercontrold 4.0.0 allows unauthenticated remote attackers to read data and send commands to the service via malicious websites...

8.1CVSS5.9AI score0.00261EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•7 views

SUSE CVE-2026-5659

A vulnerability was found in pytries datrie up to 0.8.3. The affected element is the function Trie.load/Trie.read/Trie.setstate of the file src/datrie.pyx of the component trie File Handler. The manipulation results in deserialization. The attack can be launched remotely. The exploit has been mad...

7.5CVSS5.3AI score0.00264EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•3 views

SUSE CVE-2026-5731

Memory safety bugs present in Firefox ESR 115.34.0, Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code...

7.5CVSS5.9AI score0.0034EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•4 views

SUSE CVE-2026-5732

Incorrect boundary conditions, integer overflow in the Graphics: Text component. This vulnerability was fixed in Firefox 149.0.2, Firefox ESR 140.9.1, Thunderbird 149.0.2, and Thunderbird 140.9.1...

8.8CVSS5.8AI score0.0035EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•5 views

SUSE CVE-2026-5733

Incorrect boundary conditions in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 149.0.2 and Thunderbird 149.0.2...

8.8CVSS5.8AI score0.00304EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•5 views

SUSE CVE-2026-5734

Memory safety bugs present in Firefox ESR 140.9.0, Thunderbird ESR 140.9.0, Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was...

7.5CVSS5.9AI score0.00329EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•6 views

SUSE CVE-2026-5735

Memory safety bugs present in Firefox 149.0.1 and Thunderbird 149.0.1. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 149.0.2 and Thunderbird...

7.5CVSS5.9AI score0.00257EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•5 views

SUSE CVE-2026-20884

An integer overflow vulnerability exists in the deflatedngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

8.1CVSS6.2AI score0.00454EPSS
Exploits1References6
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•6 views

SUSE CVE-2026-20889

A heap-based buffer overflow vulnerability exists in the x3fthumbloader functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00645EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2026/04/08 11:29 p.m.•4 views

SUSE CVE-2026-20911

A heap-based buffer overflow vulnerability exists in the HuffTable::initval functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00504EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2026/04/08 11:28 p.m.•5 views

SUSE CVE-2026-21413

A heap-based buffer overflow vulnerability exists in the losslessjpegloadraw functionality of LibRaw Commit 0b56545 and Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00746EPSS
Exploits1References10
SUSE CVE
SUSE CVE
•added 2026/04/08 11:27 p.m.•5 views

SUSE CVE-2026-24450

An integer overflow vulnerability exists in the uncompressedfpdngloadraw functionality of LibRaw Commit 8dc68e2. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00454EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2026/04/08 11:27 p.m.•6 views

SUSE CVE-2026-24660

A heap-based buffer overflow vulnerability exists in the x3floadhuffman functionality of LibRaw Commit d20315b. A specially crafted malicious file can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

7.5CVSS6.2AI score0.00564EPSS
Exploits1References8
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•5 views

SUSE CVE-2026-27140

SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary code execution at build time due to trust layer bypass...

7CVSS6.3AI score0.00658EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•7 views

SUSE CVE-2026-27143

Arithmetic over induction variables in loops were not correctly checked for underflow or overflow. As a result, the compiler would allow for invalid indexing to occur at runtime, potentially leading to memory corruption...

7.4CVSS5.9AI score0.00536EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•4 views

SUSE CVE-2026-27144

The compiler is meant to unwrap pointers which are the operands of a memory move; a no-op interface conversion prevented the compiler from making the correct determination about non-overlapping moves, potentially leading to memory corruption at runtime...

5.5CVSS5.8AI score0.00261EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•6 views

SUSE CVE-2026-28390

Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientInfo a NULL pointer dereference can happen. Impact summary: Applications that process attacker-controlled CMS data may crash before authentication or cryptographic operations occur resulting in Denia...

5.9CVSS5.8AI score0.00805EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•10 views

SUSE CVE-2026-28808

Incorrect Authorization vulnerability in Erlang OTP inets modules allows unauthenticated access to CGI scripts protected by directory rules when served via scriptalias. When scriptalias maps a URL prefix to a directory outside DocumentRoot, modauth evaluates directory-based access controls agains...

7.4CVSS5.8AI score0.0053EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•4 views

SUSE CVE-2026-28810

Generation of Predictable Numbers or Identifiers vulnerability in Erlang/OTP kernel inetres, inetdb modules allows DNS Cache Poisoning. The built-in DNS resolver inetres uses a sequential, process-global 16-bit transaction ID for UDP queries and does not implement source port randomization...

5.9CVSS5.8AI score0.00269EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•8 views

SUSE CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•11 views

SUSE CVE-2026-31789

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

7.3CVSS6.5AI score0.00225EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/04/08 11:26 p.m.•5 views

SUSE CVE-2026-31842

Tinyproxy through 1.11.3 is vulnerable to HTTP request parsing desynchronization due to a case-sensitive comparison of the Transfer-Encoding header in src/reqs.c. The ischunkedtransfer function uses strcmp to compare the header value against "chunked", even though RFC 7230 specifies that...

8.7CVSS5.8AI score0.00899EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•9 views

SUSE CVE-2026-32144

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows OCSP designated-responder authorization bypass via missing signature verification. The OCSP response validation in publickey:pkixocspvalidate/5 does not verify that a CA-designated responder certificate...

8.1CVSS5.8AI score0.002EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•7 views

SUSE CVE-2026-32280

During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions.Intermediates, which can lead to a denial of service. This affects both direct users of crypto/x509 and users of crypto/tls...

7.5CVSS5.8AI score0.00615EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•5 views

SUSE CVE-2026-32281

Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the...

5.9CVSS5.8AI score0.00349EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•9 views

SUSE CVE-2026-32282

On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the ATSYMLINKNOFOLLOW flag, which Root.Chmod uses to...

6.3CVSS5.8AI score0.00292EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•10 views

SUSE CVE-2026-32283

If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the connection can deadlock, causing uncontrolled consumption of resources. This can lead to a denial of service. This only affects TLS 1.3...

5.9CVSS5.8AI score0.00621EPSS
Exploits0References44
SUSE CVE
SUSE CVE
•added 2026/04/08 11:25 p.m.•9 views

SUSE CVE-2026-32288

tar.Reader can allocate an unbounded amount of memory when reading a maliciously-crafted archive containing a large number of sparse regions encoded in the "old GNU sparse map" format...

4.3CVSS5.8AI score0.0029EPSS
Exploits0References10
Total number of security vulnerabilities59854