linuxfoundation

523 tracked vulnerabilities.

CVE-2022-41939 MEDIUM
knative.dev/func < 1.8.1 - Exposure of Sensitive Information via Malicious Buildpack Lifecycle Container
Nov 19, 2022
CVSS 6.1
EPSS 0.00
CVE-2022-39383 MEDIUM
KubeVela < 1.5.9 and 1.6.0-alpha.1-1.6.2 - Server-Side Request Forgery via Helm Chart Warehouse Request
Nov 16, 2022
CVSS 4.9
EPSS 0.00
CVE-2022-0324 HIGH
SONiC DHCPv6 Relay - Remote Denial of Service via Malformed DHCPv6 Packet
Nov 14, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-32592 MEDIUM
Yocto - Out-of-bounds Write in CPU DVFS
Oct 07, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-32590 MEDIUM
Yocto - Use-After-Free in WLAN Status Check
Oct 07, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-32589 HIGH
Yocto - Remote Denial of Service via Wi-Fi Driver Resource Release
Oct 07, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-26475 MEDIUM
Yocto - Out-of-bounds Write in WLAN Component
Oct 07, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-39222 CRITICAL
Dex < 2.35.0 - Unauthenticated OAuth Authorization Code Theft via Malicious OIDC Flow
Oct 06, 2022
CVSS 9.3
EPSS 0.01
CVE-2022-38817 HIGH NUCLEI
Dapr Dashboard <0.11.0 - Info Disclosure
Oct 03, 2022
CVSS 7.5
EPSS 0.77
CVE-2022-36025 CRITICAL
Besu <22.7.1 - Incorrect Conversion
Sep 24, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-31006 HIGH
Hyperledger Indy Node - Denial of Service via Connection Pool Exhaustion
Sep 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-31020 HIGH
Indy Node <1.12.4 - Authenticated RCE
Sep 06, 2022
CVSS 8.8
EPSS 0.02
CVE-2022-35942 CRITICAL
loopback-connector-postgresql < 5.5.1 - SQL Injection via 'contains' LoopBack Filter
Aug 12, 2022
CVSS 9.3
EPSS 0.00
CVE-2022-0670 CRITICAL
Openstack manilla - Info Disclosure
Jul 25, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-34632 CRITICAL
Rocket-Chip Generator - Use of a Broken or Risky Cryptographic Algorithm in RocketCore.scala
Jul 18, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-31105 HIGH
Argo CD <2.2.11-2.4.5 - Improper Certificate Validation
Jul 12, 2022
CVSS 8.3
EPSS 0.00
CVE-2022-31080 MEDIUM
KubeEdge <1.11.1, <1.10.2, <1.9.4 - DoS
Jul 11, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-31079 MEDIUM
KubeEdge <1.11.1, 1.10.2, 1.9.4 - DoS
Jul 11, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-31078 MEDIUM
KubeEdge < 1.9.4, 1.10.0-1.10.1 - Authenticated Denial of Service via CloudCore Router REST Handler
Jul 11, 2022
CVSS 4.4
EPSS 0.00
CVE-2022-31075 MEDIUM
KubeEdge < 1.9.4, 1.10.0-1.10.1, >=1.11.0 <1.11.1 - Authenticated Denial of Service via Large HTTP Request Body
Jul 11, 2022
CVSS 4.9
EPSS 0.01
CVE-2022-31074 MEDIUM
KubeEdge < 1.9.4, 1.10.0-1.10.1, 1.11.0 - Denial of Service via Large HTTP Request Body
Jul 11, 2022
CVSS 4.5
EPSS 0.00
CVE-2022-31073 MEDIUM
KubeEdge < 1.9.4, 1.10.0-1.10.1 - Denial of Service via Large HTTP Request Body
Jul 11, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-31077 MEDIUM
KubeEdge <1.11.0-1.10.1-1.9.3 - DoS
Jun 27, 2022
CVSS 4.0
EPSS 0.00
CVE-2022-31076 MEDIUM
KubeEdge < 1.9.3, 1.10.0-1.10.1 - Denial of Service via UDS Server Nil-Pointer Dereference
Jun 27, 2022
CVSS 4.2
EPSS 0.00
CVE-2022-31030 MEDIUM
containerd < 1.5.13 - Uncontrolled Resource Consumption via ExecSync API
Jun 09, 2022
CVSS 5.5
EPSS 0.00
Products
yocto 114 pytorch 31 everest 29 nats-server 24 harbor 23 magma 22 containerd 16 runc 16 iot-yocto 15 cups-filters 14 backstage 13 dragonfly 13 open_network_operating_system 11 onnx 10 ceph 8 kubeedge 8 spinnaker 8 tekton_pipelines 8 automotive_grade_linux 6 cubefs 6 edge_virtualization_engine 5 foomatic-filters 5 osquery 5 dex 4 grpc_swift 4 indy-node 4 materialx 4 opendaylight 4 rekor 4 the_update_framework 4
Quick Filters
Critical CVEs With Exploits In CISA KEV