VIR Vulnerability Intelligence Relay

Search

Found 28,572 results in 3476ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2026-35544 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Insufficient Cascading Style Sheets (CSS) sanitization in HTML e-mail messages may lead to a fixed-position mitigation bypass vi…
CVE-2026-35543 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. The remote image blocking feature can be bypassed via SVG content (with animate attributes) in an e-mail message. This may lead …
CVE-2026-35542 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. The remote image blocking feature can be bypassed via a crafted background attribute of a BODY element in an e-mail message. Thi…
CVE-2026-35541 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Incorrect password comparison in the password plugin could lead to type confusion that allows a password change without knowing …
CVE-2026-35540 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail 1.6.0 before 1.6.14. Insufficient Cascading Style Sheets (CSS) sanitization in HTML e-mail messages may lead to SSRF or Information Disclosure, e.g., if s…
CVE-2026-35539 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. XSS exists because of insufficient HTML attachment sanitization in preview mode. A victim must preview a text/html attachment.
CVE-2026-35538 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsanitized IMAP SEARCH command arguments could lead to IMAP injection or CSRF bypass during mail search.
CVE-2026-35537 unknown FIX debian debian 2mo ago An issue was discovered in Roundcube Webmail before 1.5.14 and 1.6.14. Unsafe deserialization in the redis/memcache session handler may lead to arbitrary file write operations by unauthenticated atta…
CVE-2026-35549 medium 6.5 6.5 FIX slesdebian debian mariadb 2mo ago An issue was discovered in MariaDB Server before 11.4.10, 11.5.x through 11.8.x before 11.8.6, and 12.x before 12.2.2. If the caching_sha2_password authentication plugin is installed, and some user a…
CVE-2026-5342 medium 5.3 5.3 FIX debian debian sles libraw 2mo ago A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikon_load_padded_packed_raw of the file src/decoders/decoders_libraw.cpp of the component TIFF/NEF. Executing a manipu…
CVE-2026-5318 medium 4.3 4.3 FIX debian debian sles libraw 2mo ago A weakness has been identified in LibRaw up to 0.22.0. This impacts the function HuffTable::initval of the file src/decompressors/losslessjpeg.cpp of the component JPEG DHT Parser. This manipulation …
CVE-2026-5316 medium 6.5 6.5 debian debian nothings 2mo ago A vulnerability was identified in Nothings stb up to 1.22. The impacted element is the function setup_free of the file stb_vorbis.c. The manipulation leads to allocation of resources. The attack is p…
CVE-2026-34835 medium 5.5 FIX slesdebian debian 2mo ago Rack::Request accepts invalid Host characters, enabling host allowlist bypass
CVE-2026-34831 medium 5.5 FIX slesdebian debian 2mo ago Rack has Content-Length mismatch in Rack::Files error responses
CVE-2026-34830 medium 5.5 FIX slesdebian debian 2mo ago Rack::Sendfile header-based X-Accel-Mapping regex injection enables unauthorized X-Accel-Redirect
CVE-2026-34826 medium 5.5 FIX slesdebian debian 2mo ago Rack's multipart byte range processing allows denial of service via excessive overlapping ranges
CVE-2026-34786 medium 5.5 FIX slesdebian debian 2mo ago Rack:: Static header_rules bypass via URL-encoded paths
CVE-2026-34763 medium 5.5 FIX slesdebian debian 2mo ago Rack has a root directory disclosure via unescaped regex interpolation in Rack::Directory
CVE-2026-32762 medium 5.5 FIX slesdebian debian 2mo ago Rack: Forwarded Header semicolon injection enables Host and Scheme spoofing
CVE-2026-26962 medium 5.5 FIX slesdebian debian 2mo ago Rack's improper unfolding of folded multipart headers preserves CRLF in parsed parameter values
CVE-2026-26961 medium 5.5 FIX slesdebian debian 2mo ago Rack's greedy multipart boundary parsing can cause parser differentials and WAF bypass.
CVE-2026-5313 medium 4.3 4.3 debian debian 2mo ago A vulnerability has been found in Nothings stb up to 2.30. This issue affects the function stbi__gif_load_next in the library stb_image.h of the component GIF Decoder. Such manipulation leads to deni…
CVE-2026-34525 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, multiple Host headers were allowed in aiohttp. This issue has been patched in version 3.13.4.
CVE-2026-34520 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, the C parser (the default for most installs) accepted null bytes and control characters in res…
CVE-2026-34519 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the reason parameter when creating a Response may be able to inject e…
CVE-2026-34518 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, when following redirects to a different origin, aiohttp drops the Authorization header, but re…
CVE-2026-34517 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, for some multipart form fields, aiohttp read the entire field into memory before checking clie…
CVE-2026-34516 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, a response with an excessive number of multipart headers may be allowed to use more memory tha…
CVE-2026-34515 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, on Windows the static resource handler may expose information about a NTLMv2 remote path. This…
CVE-2026-34514 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an attacker who controls the content_type parameter in aiohttp could use this to inject extra …
CVE-2026-34513 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, an unbounded DNS cache could result in excessive memory usage possibly resulting in a DoS situ…
CVE-2026-22815 unknown FIX slesdebian debian 2mo ago AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to version 3.13.4, insufficient restrictions in header/trailer handling could cause uncapped memory usage. This i…
CVE-2026-34871 medium 6.7 6.7 FIX slesdebian debian armtrustedfirmware 2mo ago An issue was discovered in Mbed TLS before 3.6.6 and 4.x before 4.1.0 and TF-PSA-Crypto before 1.1.0. There is a Predictable Seed in a Pseudo-Random Number Generator (PRNG).
CVE-2026-25834 medium 6.5 6.5 FIX slesdebian debian trustedfirmware 2mo ago Mbed TLS v3.3.0 up to 3.6.5 and 4.0.0 allows Algorithm Downgrade.
CVE-2026-5273 medium 6.3 6.3 FIX debian debianmacos macos linux-kernel google 2mo ago Use after free in CSS in Google Chrome prior to 146.0.7680.178 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. (Chromium security severity: High)
CVE-2026-5281 unknown 1.5 KEVFIX debian debian 2mo ago Use after free in Dawn in Google Chrome prior to 146.0.7680.178 allowed a remote attacker who had compromised the renderer process to execute arbitrary code via a crafted HTML page. (Chromium securit…
CVE-2025-64505 unknown FIX debian debian sles apple 2mo ago visionOS 26.4
CVE-2025-14524 unknown FIX debian debian sles tvos 2mo ago When an OAuth2 bearer token is used for an HTTP(S) transfer, and that transfer performs a cross-protocol redirect to a second URL that uses an IMAP, LDAP, POP3 or SMTP scheme, curl might wrongly pass…
CVE-2025-10158 medium 5.5 FIX rocky rhel sles 2mo ago rsync vulnerabilities
CVE-2026-34531 medium 6.5 6.5 FIX debian debian miguelgrinberg 2mo ago Flask-HTTPAuth invokes token verification callback when missing or empty token was given by client
CVE-2026-5186 medium 5.3 5.3 debian debian 2mo ago A weakness has been identified in Nothings stb up to 2.30. This impacts the function stbi__load_gif_main of the file stb_image.h of the component Multi-frame GIF File Handler. This manipulation cause…
CVE-2026-5185 medium 5.3 5.3 debian debian 2mo ago A security flaw has been discovered in Nothings stb_image up to 2.30. This affects the function stbi__gif_load_next of the file stb_image.h of the component Multi-frame GIF File Handler. The manipula…
CVE-2023-40403 medium 5.5 FIX rhel rocky sles 2mo ago RHSA-2025:8676: libxslt security update (Moderate)
CVE-2026-34165 unknown FIX debian debian 2mo ago go-git is an extensible git implementation library written in pure Go. From version 5.0.0 to before version 5.17.1, a vulnerability has been identified in which a maliciously crafted .idx file can ca…
CVE-2026-33762 unknown FIX debian debian 2mo ago go-git is an extensible git implementation library written in pure Go. Prior to version 5.17.1, go-git’s index decoder for format version 4 fails to validate the path name prefix length before applyi…
CVE-2026-5107 medium 4.2 4.2 FIX debian debian sles frrouting 2mo ago A vulnerability has been found in FRRouting FRR up to 10.5.1. This affects the function process_type2_route of the file bgpd/bgp_evpn.c of the component EVPN Type-2 Route Handler. The manipulation le…
CVE-2026-23209 medium 5.5 FIX rocky rhel sles 2mo ago Linux kernel (Low Latency NVIDIA) vulnerabilities
CVE-2026-23193 medium 5.5 FIX rhel sles rocky 2mo ago Linux kernel vulnerabilities
CVE-2026-23191 medium 5.5 FIX rhel sles rocky 2mo ago Linux kernel vulnerabilities
CVE-2026-23144 medium 5.5 FIX rhel sles rocky 2mo ago Linux kernel vulnerabilities
CVE-2025-40096 medium 5.5 FIX rocky rhel sles 2mo ago Linux kernel (Xilinx) vulnerabilities
CVE-2025-38180 medium 5.5 FIX rocky rhel sles 2mo ago Moderate: kernel security update
CVE-2026-5037 low 3.3 3.3 FIX slesdebian debian 2mo ago A vulnerability was determined in mxml up to 4.0.4. This issue affects the function index_sort of the file mxml-index.c of the component mxmlIndexNew. Executing a manipulation of the argument tempr c…
CVE-2026-23399 medium 5.5 5.5 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: nf_tables: nft_dynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the el…
CVE-2026-34073 unknown FIX slesdebian debian 2mo ago cryptography has incomplete DNS name constraint enforcement on peer names
CVE-2026-28369 unknown debian debian 2mo ago Undertow is Vulnerable to HTTP Request/Response Smuggling
CVE-2026-28368 unknown debian debian 2mo ago Undertow is Vulnerable to HTTP Request/Response Smuggling
CVE-2026-28367 unknown debian debian 2mo ago Undertow is Vulnerable to HTTP Request/Response Smuggling
CVE-2026-33997 unknown FIX debian debian sles google 2mo ago Moby is an open source container framework. Prior to version 29.3.1, a security vulnerability has been detected that allows plugins privilege validation to be bypassed during docker plugin install. D…
CVE-2026-33945 unknown FIX debian debian sles 2mo ago Incus is a system container and virtual machine manager. Incus instances have an option to provide credentials to systemd in the guest. For containers, this is handled through a shared directory. Pri…
CVE-2026-33898 unknown FIX debian debian 2mo ago Incus is a system container and virtual machine manager. Prior to version 6.23.0, the web server spawned by `incus webui` incorrectly validates the authentication token such that an invalid value wil…
CVE-2026-33897 unknown FIX debian debian sles 2mo ago Incus is a system container and virtual machine manager. Prior to version 6.23.0, instance template files can be used to cause arbitrary read or writes as root on the host server. Incus allows for po…
CVE-2026-33743 unknown FIX debian debian 2mo ago Incus is a system container and virtual machine manager. Prior to version 6.23.0, a specially crafted storage bucket backup can be used by an user with access to Incus' storage bucket feature to cras…
CVE-2026-33711 unknown FIX debian debian 2mo ago Incus is a system container and virtual machine manager. Incus provides an API to retrieve VM screenshots. That API relies on the use of a temporary file for QEMU to write the screenshot to which is …
CVE-2026-33542 unknown FIX debian debian sles 2mo ago Incus is a system container and virtual machine manager. Prior to version 6.23.0, a lack of validation of the image fingerprint when downloading from simplestreams image servers opens the door to ima…
CVE-2026-4980 medium 6.3 6.3 FIX debian debian sles inkscape 2mo ago A local file disclosure vulnerability in the XInclude processing component of Inkscape 1.1 before 1.3 allows a remote attacker to read local files via a crafted SVG file containing malicious xi:inclu…
CVE-2026-27860 medium 5.3 5.3 FIX debian debian sles dovecotopen-xchange 2mo ago If auth_username_chars is empty, it is possible to inject arbitrary LDAP filter to Dovecot's LDAP authentication. This leads to potentially bypassing restrictions and allows probing of LDAP structure…
CVE-2026-27859 medium 5.3 5.3 FIX debian debian sles dovecotopen-xchange 2mo ago A mail message containing excessive amount of RFC 2231 MIME parameters causes LMTP to use too much CPU. A suitably formatted mail message causes mail delivery process to consume large amounts of CPU …
CVE-2026-27856 medium 5.9 5.9 FIX debian debian sles dovecotopen-xchange 2mo ago Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. An attacker can use this to determine the configured credentials. Figuring out the credential wi…
CVE-2026-27855 medium 5.9 5.9 FIX debian debian sles dovecotopen-xchange 2mo ago Dovecot OTP authentication is vulnerable to replay attack under specific conditions. If auth cache is enabled, and username is altered in passdb, then OTP credentials can be cached so that same OTP r…
CVE-2026-0394 medium 5.3 5.3 FIX debian debian slesubuntu ubuntu dovecotopen-xchange 2mo ago Dovecot regression
CVE-2025-59031 medium 4.3 4.3 FIX debian debian sles dovecotopen-xchange 2mo ago Dovecot has provided a script to use for attachment to text conversion. This script unsafely handles zip-style attachments. Attacker can use specially crafted OOXML documents to cause unintended file…
CVE-2026-4948 medium 5.5 5.5 FIX debian debian sles rhel firewalld 2mo ago A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D-Bus (Desktop Bus) setters, setZoneSettings2 and setPolicySettings. This mis-au…
CVE-2026-2100 medium 5.3 5.3 FIX rhel slesdebian debian p11-kit_projectredhat 2mo ago A flaw was found in p11-kit. A remote attacker could exploit this vulnerability by calling the C_DeriveKey function on a remote token with specific IBM kyber or IBM btc derive mechanism parameters se…
CVE-2026-33536 unknown FIX debian debian sles 2mo ago ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, due to an incorrect return value on certain platforms a pointer is incr…
CVE-2026-33871 unknown slesdebian debian google 2mo ago Netty HTTP/2 CONTINUATION Frame Flood DoS via Zero-Byte Frame Bypass
CVE-2026-33870 unknown slesdebian debian google 2mo ago Netty: HTTP Request Smuggling via Chunked Extension Quoted-String Parsing
CVE-2026-33748 unknown debian debian slesubuntu ubuntu 2mo ago Docker vulnerabilities
CVE-2026-33747 unknown debian debian slesubuntu ubuntu 2mo ago Docker vulnerabilities
CVE-2026-33535 unknown FIX debian debian sles 2mo ago ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to 7.1.2-18 and 6.9.13-43, an out-of-bounds write of a zero byte exists in the X11 `display` inter…
CVE-2026-4833 low 3.3 3.3 debian debian 2mo ago A weakness has been identified in Orc discount up to 3.0.1.2. This issue affects the function compile of the file markdown.c of the component Markdown Handler. This manipulation causes uncontrolled r…
CVE-2025-70952 unknown debian debian 2mo ago pf4j is vulnerable to Path Traversal or Zip Slip attack through improper handling of zip entry names
CVE-2026-27889 unknown FIX slesdebian debian 2mo ago NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSock…
CVE-2026-3591 medium 5.4 5.4 FIX debian debian sles isc 2mo ago A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a specially-crafted DNS request, an attacker may be able to cause an ACL to improperl…
CVE-2026-3119 medium 6.5 6.5 FIX debian debian sles isc 2mo ago Under certain conditions, `named` may crash when processing a correctly signed query containing a TKEY record. The affected code can only be reached if an incoming request has a valid transaction sig…
CVE-2026-23394 medium 4.7 4.7 FIX slesdebian debian linux-kernel 2mo ago Linux kernel vulnerabilities
CVE-2026-23389 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory leak in ice_set_ringparam() In ice_set_ringparam, tx_rings and xdp_rings are allocated before rx_rings. If the al…
CVE-2026-23377 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ice: change XDP RxQ frag_size from DMA write length to xdp.frame_sz The only user of frag_size field in XDP RxQ info is bpf_xdp_f…
CVE-2026-23371 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix missing ENQUEUE_REPLENISH during PI de-boosting Running stress-ng --schedpolicy 0 on an RT kernel on a big ma…
CVE-2026-23313 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: i40e: Fix preempt count leak in napi poll tracepoint Using get_cpu() in the tracepoint assignment causes an obvious preempt count…
CVE-2026-23312 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: net: usb: kaweth: validate USB endpoints The kaweth driver should validate that the device it is probing has the proper number an…
CVE-2026-23311 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix invalid wait context in ctx_sched_in() Lockdep found a bug in the event scheduling when a pinned event was failed …
CVE-2026-23310 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: bpf/bonding: reject vlan+srcmac xmit_hash_policy change when XDP is loaded bond_option_mode_set() already rejects mode changes th…
CVE-2026-23309 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: tracing: Add NULL pointer check to trigger_data_free() If trigger_data_alloc() fails and returns NULL, event_hist_trigger_parse()…
CVE-2026-23308 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: pinctrl: equilibrium: fix warning trace on load The callback functions 'eqbr_irq_mask()' and 'eqbr_irq_ack()' are also called in …
CVE-2026-23307 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: can: ems_usb: ems_usb_read_bulk_callback(): check the proper length of a message When looking at the data in a USB urb, the actua…
CVE-2026-23304 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6_rt_get_dev_rcu() l3mdev_master_dev_rcu() can return NULL when the slave device is being un-sl…
CVE-2026-23303 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: smb: client: Don't log plaintext credentials in cifs_set_cifscreds When debug logging is enabled, cifs_set_cifscreds() logs the k…
CVE-2026-23302 medium 4.7 4.7 FIX slesdebian debian linux-kernel google 2mo ago In the Linux kernel, the following vulnerability has been resolved: net: annotate data-races around sk->sk_{data_ready,write_space} skmsg (and probably other layers) are changing these pointers whi…
CVE-2026-23301 medium 5.5 5.5 FIX slesdebian debian linux-kernel 2mo ago In the Linux kernel, the following vulnerability has been resolved: ASoC: SDCA: Add allocation failure check for Entity name Currently find_sdca_entity_iot() can allocate a string for the Entity na…