linuxfoundation

523 tracked vulnerabilities.

CVE-2024-20084 MEDIUM
Yocto - Out-of-bounds Read in Power Component
Sep 02, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-22278 MEDIUM
Harbor <v2.9.5-<v2.10.3 - Privilege Escalation
Aug 02, 2024
CVSS 6.4
EPSS 0.00
CVE-2024-20081 MEDIUM
Gnss Service - Privilege Escalation
Jul 01, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-20080 CRITICAL
Gnss Service - Privilege Escalation
Jul 01, 2024
CVSS 9.8
EPSS 0.02
CVE-2024-22261 LOW
Harbor 2.8.1-2.8.5 - SQL Injection via Task ID Leakage
Jun 11, 2024
CVSS 2.7
EPSS 0.01
CVE-2024-22244 MEDIUM
Harbor <=2.8.4-2.10.0 - Open Redirect
Jun 10, 2024
CVSS 4.3
EPSS 0.01
CVE-2024-5187 HIGH
ONNX 1.16.0 - Path Traversal and Arbitrary File Overwrite via Tar Extraction
Jun 06, 2024
CVSS 8.8
EPSS 0.03
CVE-2024-34043 MEDIUM
O-RAN RICAPP kpimon-go - Memory Corruption
Apr 30, 2024
CVSS 5.3
EPSS 0.00
CVE-2024-31584 MEDIUM
PyTorch < 2.2.0 - Out-of-bounds Read in Flatbuffer Loader
Apr 19, 2024
CVSS 5.5
EPSS 0.00
CVE-2024-31583 HIGH
PyTorch < 2.2.0 - Use-After-Free in Mobile Interpreter
Apr 17, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-31580 MEDIUM
PyTorch < 2.2.0 - Heap-based Buffer Overflow in Vararg Functions
Apr 17, 2024
CVSS 4.0
EPSS 0.00
CVE-2024-20055 MEDIUM
Yocto - Out-of-bounds Read in imgsys
Apr 01, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-20054 MEDIUM
Yocto - Out-of-bounds Write in GNSS Component
Apr 01, 2024
CVSS 6.6
EPSS 0.00
CVE-2024-20053 HIGH
Yocto - Out-of-bounds Write in flashc
Apr 01, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-20052 MEDIUM
Yocto - Local Information Disclosure via Uncaught Exception in flashc
Apr 01, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-20051 LOW
Yocto - Denial of Service via Uncaught Exception in flashc
Apr 01, 2024
CVSS 2.3
EPSS 0.00
CVE-2024-20050 MEDIUM
Yocto - Insecure Storage of Sensitive Information
Apr 01, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-20049 MEDIUM
Yocto - Local Information Disclosure via Uncaught Exception in flashc
Apr 01, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-20040 HIGH
Wlan Firmware - Privilege Escalation
Apr 01, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-21418 HIGH
Software for Open Networking in the Cloud 202012-20201231.96 - Elevation of Privilege
Mar 12, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-20023 MEDIUM
Yocto - Out-of-bounds Write in flashc
Mar 04, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-20022 MEDIUM
Yocto - Out-of-bounds Read in lk
Mar 04, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-27319 MEDIUM
ONNX < 1.16.0 - Out-of-bounds Read via ONNX_ASSERT Function
Feb 23, 2024
CVSS 4.4
EPSS 0.00
CVE-2024-27318 HIGH
ONNX < 1.16.0 - Path Traversal via External Data Field
Feb 23, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-26150 HIGH
Backstage backend-common < 0.19.10, 0.20.0-0.20.1 - Path Traversal via resolveSafeChildPath
Feb 23, 2024
CVSS 8.7
EPSS 0.01
Products
yocto 114 pytorch 31 everest 29 nats-server 24 harbor 23 magma 22 containerd 16 runc 16 iot-yocto 15 cups-filters 14 backstage 13 dragonfly 13 open_network_operating_system 11 onnx 10 ceph 8 kubeedge 8 spinnaker 8 tekton_pipelines 8 automotive_grade_linux 6 cubefs 6 edge_virtualization_engine 5 foomatic-filters 5 osquery 5 dex 4 grpc_swift 4 indy-node 4 materialx 4 opendaylight 4 rekor 4 the_update_framework 4
Quick Filters
Critical CVEs With Exploits In CISA KEV