|
311
|
8.0 |
HIGH
Network
|
-
|
-
|
A flaw was found in Cockpit. This vulnerability allows a remote attacker to achieve arbitrary command execution on the host by exploiting unsanitized user-controlled parameters within crafted links i…
New
|
CWE-78
OS Command
|
CVE-2026-4802
|
2026-05-11 23:16 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
312
|
6.5 |
MEDIUM
Network
|
-
|
-
|
The OpenSearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the embed…
New
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2026-43826
|
2026-05-11 23:16 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313
|
6.5 |
MEDIUM
Network
|
-
|
-
|
The Elasticsearch logging provider, when configured with a `host` URL that embeds credentials (for example `https://user:password@server.example.com:9200`), wrote the full host URL — including the em…
New
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2026-41018
|
2026-05-11 23:16 |
2026-05-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
kcm: fix zero-frag skb in frag_list on partial sendmsg error
Syzkaller reported a warning in kcm_write_msgs() when processing a
m…
Update
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-43244
|
2026-05-11 23:12 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
315
|
6.5 |
MEDIUM
Network
|
open5gs
|
open5gs
|
A vulnerability was found in Open5GS up to 2.7.7. This affects the function ogs_sbi_discovery_option_add_service_names in the library /lib/sbi/message.c of the component NSSF. The manipulation result…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-8122
|
2026-05-11 23:00 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
316
|
7.2 |
HIGH
Network
|
hcltech
|
bigfix_service_management
|
HCL BigFix Service Management (SM) is susceptible to a Root File System Not Mounted as Read-Only. An improperly configured root file system may allow
unintended modifications to critical system comp…
Update
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2025-31974
|
2026-05-11 22:51 |
2026-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
317
|
6.5 |
MEDIUM
Network
|
open5gs
|
open5gs
|
A vulnerability was determined in Open5GS up to 2.7.7. This impacts the function ogs_sbi_discovery_option_add_snssais in the library /lib/sbi/message.c of the component NSSF. This manipulation causes…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-8123
|
2026-05-11 22:39 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
318
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ntfs: ->d_compare() must not block
... so don't use __getname() there. Switch it (and ntfs_d_hash(), while
we are at it) to kmal…
Update
|
NVD-CWE-noinfo
|
CVE-2026-43245
|
2026-05-11 22:34 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
319
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: i2c/tw9906: Fix potential memory leak in tw9906_probe()
In one of the error paths in tw9906_probe(), the memory allocated …
Update
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2026-43246
|
2026-05-11 22:32 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
320
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: chips-media: wave5: Fix SError of kernel panic when closed
SError of kernel panic rarely happened while testing fluster.
T…
Update
|
NVD-CWE-noinfo
|
CVE-2026-43247
|
2026-05-11 22:28 |
2026-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
