Search CVE reports

151 – 160 of 40097 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2026-43916

Medium priority

Not affected

pam_authnft is a PAM session module binding nftables firewall rules to authenticated sessions via cgroupv2 inodes. Prior to 0.2.0-alpha, a heap buffer over-read in peer_lookup_tcp (src/peer_lookup.c:134, prior to the fix) allowed...

1 affected package

pam

Package	20.04 LTS
pam	Not affected

CVE-2026-43515

Medium priority

Needs evaluation

(Improper Authorization vulnerability when multiple method constraints ...)

6 affected packages

tomcat6, tomcat7, tomcat8, tomcat9, tomcat10, tomcat11

Package	20.04 LTS
tomcat6	—
tomcat7	—
tomcat8	—
tomcat9	Needs evaluation
tomcat10	—
tomcat11	—

CVE-2026-8449

Medium priority

Ignored

Rejected reason: This CVE ID has been rejected or withdrawn.

157 affected packages

linux, linux-hwe, linux-hwe-5.4, linux-hwe-5.8, linux-hwe-5.11...

Package	20.04 LTS
linux	Not affected
linux-hwe	Not in release
linux-hwe-5.4	Not in release
linux-hwe-5.8	Ignored
linux-hwe-5.11	Ignored
linux-hwe-5.13	Ignored
linux-hwe-5.15	Not affected
linux-hwe-5.19	Not in release
linux-hwe-6.2	Not in release
linux-hwe-6.5	Not in release
linux-hwe-6.8	Not in release
linux-hwe-6.11	Not in release
linux-hwe-6.14	Not in release
linux-hwe-6.17	Not in release
linux-hwe-edge	Not in release
linux-lts-xenial	Not in release
linux-kvm	Not affected
linux-allwinner-5.19	Not in release
linux-aws	Not affected
linux-aws-5.0	Not in release
linux-aws-5.3	Not in release
linux-aws-5.4	Not in release
linux-aws-5.8	Ignored
linux-aws-5.11	Ignored
linux-aws-5.13	Ignored
linux-aws-5.15	Not affected
linux-aws-5.19	Not in release
linux-aws-6.2	Not in release
linux-aws-6.5	Not in release
linux-aws-6.8	Not in release
linux-aws-6.14	Not in release
linux-aws-6.17	Not in release
linux-aws-hwe	Not in release
linux-azure	Not affected
linux-azure-4.15	Not in release
linux-azure-5.3	Not in release
linux-azure-5.4	Not in release
linux-azure-5.8	Ignored
linux-azure-5.11	Ignored
linux-azure-5.13	Ignored
linux-azure-5.15	Not affected
linux-azure-5.19	Not in release
linux-azure-6.2	Not in release
linux-azure-6.5	Not in release
linux-azure-6.8	Not in release
linux-azure-6.11	Not in release
linux-azure-6.14	Not in release
linux-azure-6.17	Not in release
linux-azure-fde	Ignored
linux-azure-fde-5.15	Not affected
linux-azure-fde-5.19	Not in release
linux-azure-fde-6.2	Not in release
linux-azure-fde-6.8	Not in release
linux-azure-fde-6.14	Not in release
linux-azure-fde-6.17	Not in release
linux-azure-nvidia	Not in release
linux-azure-nvidia-6.14	Not in release
linux-bluefield	Not affected
linux-azure-edge	Not in release
linux-fips	Not affected
linux-aws-fips	Not affected
linux-azure-fips	Not affected
linux-gcp-fips	Not affected
linux-gcp	Not affected
linux-gcp-4.15	Not in release
linux-gcp-5.3	Not in release
linux-gcp-5.4	Not in release
linux-gcp-5.8	Ignored
linux-gcp-5.11	Ignored
linux-gcp-5.13	Ignored
linux-gcp-5.15	Not affected
linux-gcp-5.19	Not in release
linux-gcp-6.2	Not in release
linux-gcp-6.5	Not in release
linux-gcp-6.8	Not in release
linux-gcp-6.11	Not in release
linux-gcp-6.14	Not in release
linux-gcp-6.17	Not in release
linux-gke	Ignored
linux-gke-4.15	Not in release
linux-gke-5.4	Not in release
linux-gke-5.15	Ignored
linux-gkeop	Ignored
linux-gkeop-5.4	Not in release
linux-gkeop-5.15	Ignored
linux-ibm	Not affected
linux-ibm-5.4	Not in release
linux-ibm-5.15	Not affected
linux-ibm-6.8	Not in release
linux-intel-5.13	Ignored
linux-intel-iotg	Not in release
linux-intel-iotg-5.15	Not affected
linux-iot	Not affected
linux-intel-iot-realtime	Not in release
linux-lowlatency	Not in release
linux-lowlatency-hwe-5.15	Not affected
linux-lowlatency-hwe-5.19	Not in release
linux-lowlatency-hwe-6.2	Not in release
linux-lowlatency-hwe-6.5	Not in release
linux-lowlatency-hwe-6.8	Not in release
linux-lowlatency-hwe-6.11	Not in release
linux-nvidia	Not in release
linux-nvidia-6.2	Not in release
linux-nvidia-6.5	Not in release
linux-nvidia-6.8	Not in release
linux-nvidia-6.11	Not in release
linux-nvidia-lowlatency	Not in release
linux-nvidia-tegra	Not in release
linux-nvidia-tegra-5.15	Not affected
linux-nvidia-tegra-igx	Not in release
linux-oracle	Not affected
linux-oracle-5.0	Not in release
linux-oracle-5.3	Not in release
linux-oracle-5.4	Not in release
linux-oracle-5.8	Ignored
linux-oracle-5.11	Ignored
linux-oracle-5.13	Ignored
linux-oracle-5.15	Not affected
linux-oracle-6.5	Not in release
linux-oracle-6.8	Not in release
linux-oracle-6.14	Not in release
linux-oracle-6.17	Not in release
linux-oem	Not in release
linux-oem-5.6	Ignored
linux-oem-5.10	Ignored
linux-oem-5.13	Ignored
linux-oem-5.14	Ignored
linux-oem-5.17	Not in release
linux-oem-6.0	Not in release
linux-oem-6.1	Not in release
linux-oem-6.5	Not in release
linux-oem-6.8	Not in release
linux-oem-6.11	Not in release
linux-oem-6.14	Not in release
linux-oem-6.17	Not in release
linux-raspi	Not affected
linux-raspi2	Ignored
linux-raspi-5.4	Not in release
linux-raspi-realtime	Not in release
linux-realtime	Not in release
linux-realtime-6.8	Not in release
linux-realtime-6.14	Not in release
linux-riscv	Ignored
linux-riscv-5.8	Ignored
linux-riscv-5.11	Ignored
linux-riscv-5.15	Not affected
linux-riscv-5.19	Not in release
linux-riscv-6.5	Not in release
linux-riscv-6.8	Not in release
linux-riscv-6.14	Not in release
linux-riscv-6.17	Not in release
linux-starfive-5.19	Not in release
linux-starfive-6.2	Not in release
linux-starfive-6.5	Not in release
linux-xilinx	Not in release
linux-xilinx-zynqmp	Not affected
linux-realtime-6.17	Not in release

CVE-2026-44307

Medium priority

Needs evaluation

Mako is a template library written in Python. Prior to 1.3.12, on Windows, a URI using backslash traversal (e.g. \..\..\ secret.txt) bypasses the directory traversal check in Template.__init__ and the posixpath-based normalization...

1 affected package

mako

Package	20.04 LTS
mako	Needs evaluation

CVE-2026-44301

Medium priority

Needs evaluation

Hugo is a static site generator. From 0.43 to before 0.161.0, when building a Hugo site that uses Node-based asset pipelines (PostCSS, Babel, TailwindCSS), Hugo invoked the configured Node tools without restrictions on file system...

1 affected package

hugo

Package	20.04 LTS
hugo	Needs evaluation

CVE-2026-42268

Medium priority

Needs evaluation

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. From 3.0.0 to before 3.0.15, there is an unhandled exception (std::out_of_range) caused by unsigned integer underflow...

1 affected package

modsecurity

Package	20.04 LTS
modsecurity	Needs evaluation

CVE-2026-7474

Medium priority

Needs evaluation

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to code execution on the client host through a path traversal attack. This vulnerability (CVE-2026-7474) is fixed in Nomad 2.0.1, 1.11.5 and 1.10.11.

1 affected package

nomad

Package	20.04 LTS
nomad	Needs evaluation

CVE-2026-6959

Medium priority

Needs evaluation

HashiCorp Nomad and Nomad Enterprise prior to 2.0.1 are vulnerable to arbitrary file read and write on the client host as the Nomad process user through a symlink attack. This vulnerability (CVE-2026-6959) is fixed in Nomad 2.0.1,...

1 affected package

nomad

Package	20.04 LTS
nomad	Needs evaluation

CVE-2026-42338

Medium priority

Needs evaluation

ip-address is a library for parsing and manipulating IPv4 and IPv6 addresses in JavaScript. Prior to 10.1.1, Address6.group() and Address6.link() do not HTML-escape attacker-controlled content before embedding it in the HTML...

1 affected package

node-ip-address

Package	20.04 LTS
node-ip-address	Needs evaluation

CVE-2026-8429

Medium priority

Needs evaluation

SPIP versions prior to 4.4.14 contain a remote code execution vulnerability in the private space that allows attackers to execute arbitrary code in the context of the web server. Attackers can exploit this vulnerability to achieve...

1 affected package

spip

Package	20.04 LTS
spip	Needs evaluation

Export to JSON

Results by page: