CVE-2026-3099
- EPSS 0.36%
- Veröffentlicht 12.03.2026 13:53:48
- Zuletzt bearbeitet 23.03.2026 14:02:25
A flaw was found in Libsoup. The server-side digest authentication implementation in the SoupAuthDomainDigest class does not properly track issued nonces or enforce the required incrementing nonce-count (nc) attribute. This vulnerability allows a rem...
CVE-2025-12801
- EPSS 0.46%
- Veröffentlicht 04.03.2026 15:25:53
- Zuletzt bearbeitet 30.06.2026 00:16:51
A vulnerability was recently discovered in the rpc.mountd daemon in the nfs-utils package for Linux, that allows a NFSv3 client to escalate the privileges assigned to it in the /etc/exports file at mount time. In particular, it allows the client to a...
CVE-2025-9572
- EPSS 0.35%
- Veröffentlicht 27.02.2026 07:28:44
- Zuletzt bearbeitet 24.03.2026 12:16:12
n authorization flaw in Foreman's GraphQL API allows low-privileged users to access metadata beyond their assigned permissions. Unlike the REST API, which correctly enforces access controls, the GraphQL endpoint does not apply proper filtering, leadi...
CVE-2026-26104
- EPSS 0.08%
- Veröffentlicht 25.02.2026 10:51:15
- Zuletzt bearbeitet 25.03.2026 19:16:48
A flaw was found in the udisks storage management daemon that allows unprivileged users to back up LUKS encryption headers without authorization. The issue occurs because a privileged D-Bus method responsible for exporting encryption metadata does no...
CVE-2026-26103
- EPSS 0.08%
- Veröffentlicht 25.02.2026 10:31:50
- Zuletzt bearbeitet 30.06.2026 03:17:47
A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for restoring LUKS encryption headers without proper authorization checks. The issue allows a local unprivileged user to instruct the root-owned udisks daemo...
CVE-2026-2443
- EPSS 0.43%
- Veröffentlicht 13.02.2026 11:58:20
- Zuletzt bearbeitet 23.03.2026 20:16:25
A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processing specially crafted HTTP Range headers, the library may improperly validate requested byte ranges. In certain build configurations, this could allow a ...
CVE-2026-1709
- EPSS 5.43%
- Veröffentlicht 06.02.2026 19:13:27
- Zuletzt bearbeitet 27.06.2026 05:16:42
A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security (TLS) authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perfo...
CVE-2026-1801
- EPSS 0.38%
- Veröffentlicht 03.02.2026 20:12:21
- Zuletzt bearbeitet 26.03.2026 18:02:05
A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-compliant parsing in the soup_filter_input_stream_read_line() logic, where libsoup accepts malformed chunk headers, such as lone...
CVE-2026-1539
- EPSS 0.24%
- Veröffentlicht 28.01.2026 15:15:48
- Zuletzt bearbeitet 25.03.2026 14:08:59
A flaw was found in the libsoup HTTP library that can cause proxy authentication credentials to be sent to unintended destinations. When handling HTTP redirects, libsoup removes the Authorization header but does not remove the Proxy-Authorization hea...
CVE-2026-1536
- EPSS 0.3%
- Veröffentlicht 28.01.2026 15:15:46
- Zuletzt bearbeitet 25.03.2026 14:14:38
A flaw was found in libsoup. An attacker who can control the input for the Content-Disposition header can inject CRLF (Carriage Return Line Feed) sequences into the header value. These sequences are then interpreted verbatim when the HTTP request or ...