Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / linuxfoundation

linuxfoundation

523 tracked vulnerabilities.

CVE-2023-25173 MEDIUM

containerd < 1.5.18 - Incorrect Authorization via Supplementary Group Handling

CVE-2023-25153 MEDIUM

containerd < 1.5.18 - Denial of Service via OCI Image Import

CVE-2023-25571 MEDIUM

Linuxfoundation Backstage Catalog-model < 1.2.0 - XSS

CVE-2023-25151 HIGH

opentelemetry-go-contrib 0.38.0-0.38.9 - Denial of Service via Query String Cardinality Exhaustion

CVE-2022-31671 HIGH

Harbor 2.0.0-2.4.2 and 1.0.0-1.10.12 - Authenticated Improper Authorization via P2P Preheat Execution Logs

CVE-2022-31670 HIGH

Harbor 1.0.0-1.10.12 - Authenticated Tag Retention Policy Modification via Permission Bypass

CVE-2022-31669 MEDIUM

Harbor 2.0.0-2.4.2 and 1.0.0-1.10.12 - Authenticated Improper Authorization in Tag Immutability Policy Update

CVE-2022-31668 HIGH

Harbor 2.0.0-2.4.2 - Authenticated Improper Authorization in P2P Preheat Policy Update

CVE-2022-31667 MEDIUM

Harbor 1.0.0-1.10.12 and 2.0.0-2.4.2 - Authenticated Improper Authorization via Robot Account Update

CVE-2022-31666 HIGH

Harbor 2.0.0-2.4.2 and 1.0.0-1.10.12 - Missing Authorization for Webhook Policy Management

CVE-2022-28357 CRITICAL

NATS nats-server <2.7.4 - Path Traversal

CVE-2022-32666 HIGH

Linuxfoundation Yocto - Denial of Service

CVE-2022-41354 MEDIUM

Argo CD < 2.4.28 and 2.5.0-2.5.16 - Unauthenticated Application Enumeration

CVE-2022-48363 HIGH

Automotive Grade Linux < 0.23.8 - Reachable Assertion via PipeWire Output Plugin

CVE-2022-25882 HIGH

ONNX < 1.13.0 - Path Traversal via Tensor Proto External Data Field

CVE-2022-46463 HIGH

Harbor 1.1.0-2.5.3 - Unauthenticated Access to Image Repositories

CVE-2022-4875 LOW

Fossology < 2023-01-02 - Cross-Site Scripting via sql/VarValue Argument

CVE-2022-23506 MEDIUM

Spinnaker Rosco < 1.27.3 - Sensitive Information Exposure in Packer Log Files

CVE-2022-23536 MEDIUM

Cortex <1.14.0 - Local File Inclusion

CVE-2022-23471 MEDIUM

containerd < 1.5.16 - Memory Leak via CRI Stream Server Goroutine

CVE-2022-46770 HIGH

Mirage Firewall 0.8.0-0.8.3 - Denial of Service via Crafted Multicast UDP Packet

CVE-2022-45932 HIGH

OpenDaylight < 0.16.5 - SQL Injection via Role Deletion API

CVE-2022-45931 HIGH

OpenDaylight < 0.16.5 - SQL Injection via User Deletion API

CVE-2022-45930 HIGH

OpenDaylight < 0.16.5 - SQL Injection via Domain Deletion API

CVE-2022-45907 CRITICAL

PyTorch < 1.13.1 - Remote Code Execution via Unsafe eval in torch.jit.annotations.parse_type_line

Previous Page 15 of 21 Next

Products

yocto 114 pytorch 31 everest 29 nats-server 24 harbor 23 magma 22 containerd 16 runc 16 iot-yocto 15 cups-filters 14 backstage 13 dragonfly 13 open_network_operating_system 11 onnx 10 ceph 8 kubeedge 8 spinnaker 8 tekton_pipelines 8 automotive_grade_linux 6 cubefs 6 edge_virtualization_engine 5 foomatic-filters 5 osquery 5 dex 4 grpc_swift 4 indy-node 4 materialx 4 opendaylight 4 rekor 4 the_update_framework 4

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy