Filter
AND
AND
Redhat Openshift Container PlatformCri-o: malicious container can create symlink on host
8.1
EPSS
0.04%
First published (updated )
go/github.com/cri-o/cri-oCri-o: pods are able to break out of resource confinement on cgroupv2
7.5
EPSS
0.06%
First published (updated )
Redhat Enterprise LinuxAn incorrect handling of the supplementary groups in the Podman container engine might lead to the s…
7.1
First published (updated )
redhat/cri-oA vulnerability was found in CRI-O that causes memory or disk space exhaustion on the node for anyon…
7.8
First published (updated )
Redhat Enterprise LinuxPodman versions prior to 1.7.0 ignore file permissions for non-root users running in a privileged co…
7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
ubuntu/pygmentsAn infinite loop in SMLLexer in Pygments versions 1.5 to 2.7.3 may lead to denial of service when pe…
7.5
First published (updated )
ubuntu/haproxyIn hpack_dht_insert in hpack-tbl.c in the HPACK decoder in HAProxy 1.8 through 2.x before 2.1.4, a r…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Redhat Openshift Container PlatformIt has been found that in openshift-enterprise version 3.11 and openshift-enterprise versions 4.1 up…
7
First published (updated )
Redhat Openshift Container PlatformAn insecure modification vulnerability in the /etc/passwd file was found in the container openshift/…
7
First published (updated )
Redhat Openshift Container PlatformA flaw was found during the upgrade of an existing OpenShift Container Platform 3.x cluster. Using C…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Kubernetes KubernetesKubernetes API Server JSON/YAML parsing vulnerable to resource exhaustion attack
7.5
First published (updated )
Fedoraproject FedoraA flaw was found in, ghostscript versions prior to 9.50, in the .pdfexectoken and other procedures w…
7.8
First published (updated )
Fedoraproject FedoraA flaw was found in, ghostscript versions prior to 9.50, in the .pdf_hook_DSC_Creator procedure wher…
7.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
F5 Big-ip Local Traffic ManagerSome HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service
7.8
First published (updated )
Redhat Openshift Container PlatformIncorrect Type Cast
8.8
First published (updated )
Redhat Openshift Container PlatformA sandbox bypass vulnerability in Jenkins Script Security Plugin 1.61 and earlier related to the han…
8.8
First published (updated )
Kubernetes KubernetesKubernetes kube-apiserver allows access to custom resources via wrong scope
8.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Jenkins JenkinsUsers who cached their CLI authentication before Jenkins was updated to 2.150.2 and newer, or 2.160 …
8.1
First published (updated )
Canonical Ubuntu LinuxApache HTTP Server Privilege Escalation Vulnerability
First published (updated )
redhat/jenkins-plugin-script-securityA sandbox bypass vulnerability exists in Jenkins Script Security Plugin 1.52 and earlier in RejectAS…
8.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.