linuxfoundation

523 tracked vulnerabilities.

CVE-2023-20732 MEDIUM
Yocto - Out-of-bounds Write in WLAN Component
Jun 06, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-20731 MEDIUM
Yocto - Out-of-bounds Read in WLAN Component
Jun 06, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-20730 MEDIUM
Yocto - Out-of-bounds Read in WLAN Component
Jun 06, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-20729 MEDIUM
Yocto - Out-of-bounds Read in WLAN Component
Jun 06, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-20728 MEDIUM
Yocto - Out-of-bounds Read in WLAN Component
Jun 06, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-20716 MEDIUM
iot-yocto - Out-of-bounds Write in wlan
Jun 06, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-20715 MEDIUM
iot-yocto - Out-of-bounds Write in wlan Component
Jun 06, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-20712 MEDIUM
IoT-Yocto - Out-of-bounds Write in WLAN Component
Jun 06, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-20727 MEDIUM
Yocto - Out-of-Bounds Read in WLAN Component
Jun 06, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-32684 LOW
Lima < 0.16.0 - Unauthenticated Arbitrary File Read via Malicious Disk Image
May 30, 2023
CVSS 2.7
EPSS 0.00
CVE-2023-33199 MEDIUM
Rekor < 1.2.0 - Denial of Service via Malformed Intoto Proposed Entry
May 26, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-24805 HIGH
cups-filters beh Backend - Remote Command Execution via Network Printer Command Injection
May 17, 2023
CVSS 8.8
EPSS 0.08
CVE-2023-20726 LOW
Yocto - Unauthenticated GPS Location Disclosure via Missing Authorization
May 15, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-29195 MEDIUM
Vitess < 16.0.2 - Denial of Service via Shard Creation with Slash Characters
May 11, 2023
CVSS 4.1
EPSS 0.01
CVE-2023-30840 MEDIUM
Fluid 0.7.0-0.8.5 - Incorrect Authorization via CSI Node Plugin
May 08, 2023
CVSS 5.8
EPSS 0.00
CVE-2023-30551 HIGH
Rekor < 1.1.1 - Denial of Service via Large Archive Metadata Files
May 08, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-30841 MEDIUM
Baremetal Operator < 0.3.0 - Cleartext Transmission of Sensitive Information via ConfigMap Storage
Apr 26, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-2250 MEDIUM
Open Cluster Management - Privilege Escalation via Service Account Binding
Apr 24, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-22645 HIGH
kubewarden-controller < 1.6.0 - Improper Privilege Management
Apr 19, 2023
CVSS 8.0
EPSS 0.00
CVE-2023-29194 MEDIUM
Vitess < 16.0.1 - Denial of Service via Keyspace Name with Forward Slash
Apr 14, 2023
CVSS 4.1
EPSS 0.00
CVE-2023-29018 HIGH
OpenFeature Operator <0.2.32 - Privilege Escalation
Apr 14, 2023
CVSS 8.0
EPSS 0.01
CVE-2023-30512 MEDIUM
CubeFS <= 3.2.1 - Kubernetes Cluster Privilege Escalation via DaemonSet Role Assignment
Apr 12, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-28642 MEDIUM
runc < 1.1.5 - AppArmor Bypass via Symlinked /proc
Mar 29, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-25809 MEDIUM
runc < 1.1.5 - Unauthenticated Permission Overwrite in /sys/fs/cgroup
Mar 29, 2023
CVSS 5.0
EPSS 0.00
CVE-2023-27561 HIGH
runc < 1.1.5 - Privilege Escalation via Custom Volume-Mount Configurations
Mar 03, 2023
CVSS 7.0
EPSS 0.00
Products
yocto 114 pytorch 31 everest 29 nats-server 24 harbor 23 magma 22 containerd 16 runc 16 iot-yocto 15 cups-filters 14 backstage 13 dragonfly 13 open_network_operating_system 11 onnx 10 ceph 8 kubeedge 8 spinnaker 8 tekton_pipelines 8 automotive_grade_linux 6 cubefs 6 edge_virtualization_engine 5 foomatic-filters 5 osquery 5 dex 4 grpc_swift 4 indy-node 4 materialx 4 opendaylight 4 rekor 4 the_update_framework 4
Quick Filters
Critical CVEs With Exploits In CISA KEV