Search CVE reports

781 – 790 of 67995 results

Detailed view

Sort by:

CVE-2026-44916

Medium priority

Needs evaluation

In OpenStack Ironic before 35.0.2 (in a certain non-default configuration), instance_info['ks_template'] is rendered without sandboxing.

1 affected package

ironic

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
ironic	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

Axios is a promise based HTTP client for the browser and Node.js. From version 1.0.0 to before version 1.15.2, fFive config properties (auth, baseURL, socketPath, beforeRedirect, and insecureHTTPParser) in the HTTP adapter are...

1 affected package

node-axios

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
node-axios	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	—

CVE-2026-42150

Medium priority

Needs evaluation

wlc is a Weblate command-line client using Weblate's REST API. Prior to version 2.0.0, the HTML output format in wlc embeds API response data into HTML without escaping, allowing cross-site scripting when the output is rendered in...

1 affected package

wlc

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
wlc	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-8124

Medium priority

Needs evaluation

A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidx_box_read of the file src/isomedia/box_code_base.c. The manipulation leads to allocation of resources. The attack must be carried out...

1 affected package

gpac

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gpac	Not in release	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-43284

High priority

Vulnerable

In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFL_SHARED_FRAG...

158 affected packages

linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11, linux-hwe-5.13...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
linux-hwe	Not in release	Not in release	Not in release	Not in release	Ignored
linux-hwe-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-hwe-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-hwe-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-hwe-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-hwe-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-hwe-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-hwe-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-hwe-edge	Not in release	Not in release	Not in release	Not in release	Ignored
linux-lts-xenial	Not in release	Not in release	Not in release	Not in release	Not in release
linux-kvm	Not in release	Not in release	Vulnerable	Vulnerable	Vulnerable
linux-allwinner-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-5.0	Not in release	Not in release	Not in release	Not in release	Ignored
linux-aws-5.3	Not in release	Not in release	Not in release	Not in release	Ignored
linux-aws-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-aws-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-aws-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-aws-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-aws-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-aws-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-aws-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-aws-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-aws-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-aws-hwe	Not in release	Not in release	Not in release	Not in release	Not in release
linux-azure-4.15	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-azure-5.3	Not in release	Not in release	Not in release	Not in release	Ignored
linux-azure-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-azure-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-azure-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-azure-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-azure-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-azure-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-azure-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-azure-6.14	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure-fde-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-azure-fde-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-azure-fde-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-azure-fde-6.14	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure-fde-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure-nvidia	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure-nvidia-6.14	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-bluefield	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-azure-edge	Not in release	Not in release	Not in release	Not in release	Ignored
linux-fips	Not in release	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-aws-fips	Not in release	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-azure-fips	Not in release	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-gcp-fips	Not in release	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-gcp-4.15	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-gcp-5.3	Not in release	Not in release	Not in release	Not in release	Ignored
linux-gcp-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-gcp-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gcp-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-gcp-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-gcp-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-gcp-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-gcp-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-gke	Not in release	Vulnerable	Vulnerable	Ignored	Not in release
linux-gke-4.15	Not in release	Not in release	Not in release	Not in release	Ignored
linux-gke-5.4	Not in release	Not in release	Not in release	Not in release	Ignored
linux-gke-5.15	Not in release	Not in release	Not in release	Ignored	Not in release
linux-gkeop	Not in release	Vulnerable	Vulnerable	Ignored	Not in release
linux-gkeop-5.4	Not in release	Not in release	Not in release	Not in release	Ignored
linux-gkeop-5.15	Not in release	Not in release	Not in release	Ignored	Not in release
linux-ibm	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Not in release
linux-ibm-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-ibm-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-ibm-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-intel-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-intel-iotg	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-intel-iotg-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-iot	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-intel-iot-realtime	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-lowlatency	Not in release	Vulnerable	Vulnerable	Not in release	Not in release
linux-lowlatency-hwe-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-lowlatency-hwe-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-lowlatency-hwe-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-lowlatency-hwe-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-nvidia	Vulnerable	Vulnerable	Vulnerable	Not in release	Not in release
linux-nvidia-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-nvidia-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-nvidia-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-nvidia-lowlatency	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-nvidia-tegra	Not in release	Vulnerable	Vulnerable	Not in release	Not in release
linux-nvidia-tegra-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-nvidia-tegra-igx	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-oracle-5.0	Not in release	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.3	Not in release	Not in release	Not in release	Not in release	Ignored
linux-oracle-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-oracle-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oracle-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-oracle-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oracle-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-oracle-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oracle-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-oem	Not in release	Not in release	Not in release	Not in release	Ignored
linux-oem-5.6	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oem-5.10	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oem-5.13	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oem-5.14	Not in release	Not in release	Not in release	Ignored	Not in release
linux-oem-5.17	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-6.0	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-6.1	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-oem-6.8	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.11	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-oem-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-raspi2	Not in release	Not in release	Not in release	Ignored	Ignored
linux-raspi-5.4	Not in release	Not in release	Not in release	Not in release	Vulnerable
linux-raspi-realtime	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-realtime-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-realtime-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-riscv	Vulnerable	Ignored	Ignored	Ignored	Not in release
linux-riscv-5.8	Not in release	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.11	Not in release	Not in release	Not in release	Ignored	Not in release
linux-riscv-5.15	Not in release	Not in release	Not in release	Vulnerable	Not in release
linux-riscv-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-riscv-6.8	Not in release	Not in release	Vulnerable	Not in release	Not in release
linux-riscv-6.14	Not in release	Ignored	Not in release	Not in release	Not in release
linux-riscv-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-starfive-5.19	Not in release	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.2	Not in release	Not in release	Ignored	Not in release	Not in release
linux-starfive-6.5	Not in release	Not in release	Ignored	Not in release	Not in release
linux-xilinx	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-xilinx-zynqmp	Not in release	Not in release	Vulnerable	Vulnerable	Not in release
linux-realtime-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release
linux-azure	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Ignored
linux-azure-fde	Vulnerable	Vulnerable	Vulnerable	Ignored	Not in release
linux-gcp	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Ignored
linux-oracle	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-raspi	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Not in release
linux-realtime	Vulnerable	Vulnerable	Vulnerable	Not in release	Not in release
linux	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-aws	Vulnerable	Vulnerable	Vulnerable	Vulnerable	Vulnerable
linux-nvidia-6.17	Not in release	Vulnerable	Not in release	Not in release	Not in release

CVE-2026-40214

Medium priority

Needs evaluation

In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The project_id column in the database is never populated (NULL for every ARQ), database queries have no project...

1 affected package

cyborg

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cyborg	Needs evaluation	Not in release	Not in release	—	—

CVE-2026-40213

Medium priority

Needs evaluation

OpenStack Cyborg before 16.0.1 uses rule:allow (check_str='@') as the default policy for multiple API endpoints. This unconditionally authorizes any request carrying a valid Keystone token regardless of roles, project membership,...

1 affected package

cyborg

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
cyborg	Needs evaluation	Not in release	Not in release	—	—

CVE-2026-8088

Medium priority

Needs evaluation

A weakness has been identified in OSGeo gdal up to 3.13.0dev-4. The affected element is the function GDfieldinfo of the file frmts/hdf4/hdf-eos/GDapi.c. Executing a manipulation can lead to out-of-bounds read. The attack needs to...

1 affected package

gdal

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gdal	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-8087

Medium priority

Needs evaluation

A security flaw has been discovered in OSGeo gdal up to 3.13.0dev-4. Impacted is the function GDnentries of the file frmts/hdf4/hdf-eos/GDapi.c. Performing a manipulation of the argument DataFieldName results in heap-based buffer...

1 affected package

gdal

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gdal	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2026-42501

Medium priority

Needs evaluation

A malicious module proxy can exploit a flaw in the go command's validation of module checksums to bypass checksum database validation. This vulnerability affects any user using an untrusted module proxy (GOMODPROXY) or checksum...

16 affected packages

golang, golang-1.6, golang-1.8, golang-1.9, golang-1.10...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
golang	Not in release	Not in release	Not in release	—	—
golang-1.6	Not in release	Not in release	Not in release	—	—
golang-1.8	Not in release	Not in release	Not in release	—	Needs evaluation
golang-1.9	Not in release	Not in release	Not in release	—	Needs evaluation
golang-1.10	Not in release	Not in release	Not in release	—	Needs evaluation
golang-1.13	Not in release	Not in release	Needs evaluation	Needs evaluation	Needs evaluation
golang-1.14	Not in release	Not in release	Not in release	Needs evaluation	—
golang-1.16	Not in release	Not in release	Not in release	Needs evaluation	Needs evaluation
golang-1.17	Not in release	Not in release	Needs evaluation	—	—
golang-1.18	Not in release	Not in release	Needs evaluation	Needs evaluation	Needs evaluation
golang-1.20	Not in release	Not in release	Needs evaluation	Needs evaluation	—
golang-1.21	Not in release	Needs evaluation	Needs evaluation	Needs evaluation	—
golang-1.22	Not in release	Needs evaluation	Needs evaluation	Needs evaluation	—
golang-1.23	Needs evaluation	Needs evaluation	Needs evaluation	—	—
golang-1.24	Needs evaluation	Needs evaluation	Needs evaluation	—	—
golang-1.25	Needs evaluation	Not in release	Not in release	—	—

Export to JSON

Results by page: