Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
linuxfoundation vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-22736
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. Versions starting with 2.5.0-rc1 and above, before 2.5.8, and version 2.6.0-rc4, are vulnerable to an authorization bypass bug which allows a malicious Argo CD user to deploy Applications outside the config...
Linuxfoundation Argo-cd 2.6.0
Linuxfoundation Argo-cd
445
VMScore
CVE-2021-36153
Mismanaged state in GRPCWebToHTTP2ServerCodec.swift in gRPC Swift 1.1.0 and 1.1.1 allows remote malicious users to deny service by sending malformed requests.
Linuxfoundation Grpc Swift 1.1.0
Linuxfoundation Grpc Swift 1.1.1
NA
CVE-2023-20838
In imgsys, there is a possible out of bounds read due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07326455; Issue ID: ALPS07326418.
Linuxfoundation Yocto 3.1
Linuxfoundation Yocto 3.3
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
Linux Linux Kernel 4.19
NA
CVE-2023-32810
In bluetooth driver, there is a possible out of bounds read due to improper input validation. This could lead to local information leak with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07867212; Issue ID: ALPS07867212.
Linuxfoundation Yocto 3.1
Linuxfoundation Yocto 3.3
Linuxfoundation Yocto 4.0
Google Android 12.0
Google Android 13.0
Linux Linux Kernel 4.19
NA
CVE-2023-32829
In apusys, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07713478; Issue ID: ALPS07713478.
Linuxfoundation Yocto 3.1
Linuxfoundation Yocto 3.3
Linuxfoundation Yocto 4.0
Mediatek Iot Yocto 23.0
Google Android 12.0
Google Android 13.0
NA
CVE-2023-20740
In vcu, there is a possible memory corruption due to a logic error. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07559819; Issue ID: ALPS07559840.
Linuxfoundation Iot-yocto 22.2
Linuxfoundation Yocto 4.0
Google Android 12.0
536
VMScore
CVE-2021-30465
runc prior to 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multiple containers with a fairly specific mount configuration. The problem occurs via a symlink-exchange attack that relies o...
Linuxfoundation Runc 1.0.0
Linuxfoundation Runc
Fedoraproject Fedora 33
Fedoraproject Fedora 34
7 Github repositories
534
VMScore
CVE-2021-43816
containerd is an open source container runtime. On installations using SELinux, such as EL8 (CentOS, RHEL), Fedora, or SUSE MicroOS, with containerd since v1.5.0-beta.0 as the backing container runtime interface (CRI), an unprivileged pod scheduled to the node may bind mount, via...
Linuxfoundation Containerd 1.5.0
Linuxfoundation Containerd
Fedoraproject Fedora 34
Fedoraproject Fedora 35
NA
CVE-2022-26475
In wlan, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310743; Issue ID: ALPS07310743.
Linuxfoundation Yocto 3.1
Linuxfoundation Yocto 3.3
Google Android 11.0
Google Android 12.0
NA
CVE-2022-32589
In Wi-Fi driver, there is a possible way to disconnect Wi-Fi due to an improper resource release. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07030600; Issue ID: ALPS070...
Google Android 11.0
Google Android 12.0
Linuxfoundation Yocto 3.1
Linuxfoundation Yocto 3.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »