linuxfoundation
550 tracked vulnerabilities.
CVE-2025-68133
HIGH
EVerest < 2025.10.0 - Denial of Service via Unlimited TCP Connection Exhaustion
Jan 21, 2026
CVSS 7.4
EPSS 0.00
CVE-2025-61916
HIGH
Spinnaker < 2025.1.6, 2025.2.3, 2025.3.0 - Server-Side Request Forgery via Artifact Provider URL Input
Jan 05, 2026
CVSS 7.9
EPSS 0.00
CVE-2025-69261
HIGH
WasmEdge <0.16.0-alpha.3 - Memory Corruption
Dec 30, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-65566
HIGH
omec-project UPF 2.1.3-dev - Denial of Service via Missing Cause IE in PFCP Session Report Response
Dec 18, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-67508
HIGH
gardenctl < 2.12.0 - Command Injection via Malicious Credential Values in Non-POSIX Shells
Dec 12, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-67499
MEDIUM
Containernetworking Plugins < 1.9.0 - Information Disclosure
Dec 10, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-66623
HIGH
Strimzi 0.47.0-0.49.0 - Incorrect Authorization via Kubernetes Role
Dec 05, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-66564
HIGH
Sigstore Timestamp Authority <2.0.3 - Info Disclosure
Dec 04, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-66506
HIGH
Fulcio < 1.8.3 - Denial of Service via OIDC Identity Token Period Character Amplification
Dec 04, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-20765
MEDIUM
Yocto - Local Denial of Service via Race Condition in aee Daemon
Dec 02, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-63396
LOW
PyTorch 2.5 and 2.7.1 - Denial of Service via Profiler Finalization
Nov 12, 2025
CVSS 3.3
EPSS 0.00
CVE-2025-64329
MEDIUM
containerd <1.7.29, 2.0.0-2.0.6, 2.1.0-2.1.4, 2.2.0-beta.0-2.2.0-rc.1 - Memory Exhaustion via CRI Attach Goroutine Leak
Nov 07, 2025
CVSS 5.5
EPSS 0.00
CVE-2025-52881
HIGH
runc <1.4.0-rc.2 - Privilege Escalation
Nov 06, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-52565
HIGH
runc 1.0.0-rc3-1.2.7 1.3.0-rc.1-1.3.2 1.4.0-rc.1-1.4.0-rc.2 - Symbolic Link Following via Bind-Mount
Nov 06, 2025
CVSS 7.5
EPSS 0.01
CVE-2025-31133
HIGH
runc < 1.2.8, 1.3.0-rc.1-1.3.1, 1.4.0-rc.1-1.4.0-rc.2 - Arbitrary Mount Gadget via Insufficient Bind-Mount Verification
Nov 06, 2025
CVSS 7.8
EPSS 0.01
CVE-2025-20747
MEDIUM
Yocto - Stack-based Buffer Overflow in GNSS Service
Nov 04, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-20746
MEDIUM
Yocto - Stack-based Buffer Overflow in GNSS Service
Nov 04, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-20730
MEDIUM
Yocto - Local Privilege Escalation via Insecure Default Preloader Value
Nov 04, 2025
CVSS 6.7
EPSS 0.00
CVE-2025-55560
HIGH
PyTorch < 2.7.0 - Denial of Service via Inductor Compilation of Sparse/Dense Tensor Operations
Sep 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55558
HIGH
PyTorch < 2.7.0 - Denial of Service via Buffer Overflow in Inductor-Compiled Models
Sep 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55557
HIGH
PyTorch < 2.7.0 - Denial of Service via Inductor Compilation of torch.cummin
Sep 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55554
MEDIUM
PyTorch < 2.8.0 - Integer Overflow in torch.nan_to_num-.long()
Sep 25, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-55553
HIGH
PyTorch < 2.7.0 - Denial of Service via proxy_tensor.py Syntax Error
Sep 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55552
HIGH
PyTorch < 2.8.0 - Integer Overflow via torch.rot90 and torch.randn_like
Sep 25, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55551
HIGH
PyTorch < 2.8.0 - Denial of Service via torch.linalg.lu Slice Operation
Sep 25, 2025
CVSS 7.5
EPSS 0.00
Products
yocto 114
nats-server 36
pytorch 31
everest 29
harbor 23
containerd 22
magma 22
runc 17
iot-yocto 15
cups-filters 14
backstage 13
dragonfly 13
onnx 11
open_network_operating_system 11
ceph 8
kubeedge 8
spinnaker 8
tekton_pipelines 8
automotive_grade_linux 6
cubefs 6
edge_virtualization_engine 5
foomatic-filters 5
osquery 5
dex 4
grpc_swift 4
indy-node 4
materialx 4
opendaylight 4
opentelemetry_instrumentation_for_java 4
rekor 4
Quick Filters