linuxfoundation

523 tracked vulnerabilities.

CVE-2023-51699 MEDIUM
Fluid < 0.9.3 - Authenticated OS Command Injection via JuicefsRuntime CRD
Mar 15, 2024
CVSS 4.0
EPSS 0.00
CVE-2023-6944 MEDIUM
Red Hat Developer Hub < 1.21.0 - GitLab Access Token Exposure via Catalog-Import Error Message
Jan 04, 2024
CVSS 5.7
EPSS 0.00
CVE-2023-46742 MEDIUM
CubeFS < 3.3.1 - Sensitive Information Disclosure in Log Files
Jan 03, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-46741 MEDIUM
CubeFS < 3.3.1 - Sensitive Configuration Key Exposure in Logs
Jan 03, 2024
CVSS 4.8
EPSS 0.00
CVE-2023-46740 MEDIUM
CubeFS <3.3.1 - Privilege Escalation
Jan 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-46739 MEDIUM
CubeFS < 3.3.1 - Timing Attack via UserService Password Comparison
Jan 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-46738 MEDIUM
CubeFS < 3.3.1 - Authenticated Denial of Service via Malicious HTTP Request
Jan 03, 2024
CVSS 6.5
EPSS 0.00
CVE-2023-32855 MEDIUM
Yocto - Missing Authorization Leading to Privilege Escalation
Dec 04, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-20902 MEDIUM
Harbor <= 1.10.17, 2.6.x-2.7.2, 2.8.x-2.8.2 - Race Condition in Job Task Management
Nov 09, 2023
CVSS 5.9
EPSS 0.00
CVE-2023-46129 HIGH
NATS Server 2.10.0-2.10.3 - Use of Hard-coded Cryptographic Key in nkeys Encryption
Oct 31, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-47090 MEDIUM
NATS nats-server 2.2.0-2.9.22 and 2.10.0-2.10.1 - Unauthenticated Authentication Bypass via Implicit $G User
Oct 30, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-32829 MEDIUM
Yocto - Integer Overflow to Out-of-Bounds Write
Oct 02, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-32820 HIGH
Yocto - Remote Denial of Service via Improper Input Handling
Oct 02, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-43632 CRITICAL
LF Edge EVE < 0.0.0-20230519072751-977f42b07fa9 - Stack Overflow via VTPM Protobuf Header
Sep 21, 2023
CVSS 9.0
EPSS 0.00
CVE-2023-43631 HIGH
LF Edge EVE < 8.6.0 - Unauthenticated Credential Injection via Unprotected Config Partition
Sep 21, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-43636 HIGH
EVE OS - Info Disclosure
Sep 20, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-43635 HIGH
EVE OS - PCR Locking
Sep 20, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-43630 HIGH
Linux Foundation Edge Virtualization Engine 9.0.0-9.4.9 - Credentials Exposure via PCR14 Bypass
Sep 20, 2023
CVSS 8.8
EPSS 0.00
CVE-2023-32815 MEDIUM
Yocto - Out-of-bounds Read in GNSS Service
Sep 04, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-32813 MEDIUM
Yocto - Out-of-bounds Write in GNSS Service
Sep 04, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-32812 MEDIUM
Yocto - Out-of-bounds Write in GNSS Service
Sep 04, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-32811 MEDIUM
Yocto - Local Privilege Escalation via Improper Input Validation in Connectivity System Driver
Sep 04, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-32810 MEDIUM
Yocto - Out-of-bounds Read in Bluetooth Driver
Sep 04, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-32807 MEDIUM
Yocto - Out-of-bounds Read in WLAN Service
Sep 04, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-32806 MEDIUM
Yocto - Out-of-bounds Write in WLAN Driver
Sep 04, 2023
CVSS 6.7
EPSS 0.00
Products
yocto 114 pytorch 31 everest 29 nats-server 24 harbor 23 magma 22 containerd 16 runc 16 iot-yocto 15 cups-filters 14 backstage 13 dragonfly 13 open_network_operating_system 11 onnx 10 ceph 8 kubeedge 8 spinnaker 8 tekton_pipelines 8 automotive_grade_linux 6 cubefs 6 edge_virtualization_engine 5 foomatic-filters 5 osquery 5 dex 4 grpc_swift 4 indy-node 4 materialx 4 opendaylight 4 rekor 4 the_update_framework 4
Quick Filters
Critical CVEs With Exploits In CISA KEV