Critical
CVSS: 9.1
A process isolation vulnerability in Thunderbird stemmed from improper handling of javascript: URIs, which could allow content to execute in the top-level document's process instead of the intended frame, potentially enabling a sandbox esca…
Medium
CVSS: 6.3
Improper isolation of users in M-Files Server version before 25.3.14549 allows anonymous user to affect other anonymous users views and possibly cause a denial of service
Critical
CVSS: 9.8
A security issue was discovered in Kubernetes where under certain conditions, an unauthenticated attacker with access to the pod network can achieve arbitrary code execution in the context of the ingress-nginx controller. This can lead to d…
Medium
CVSS: 5.4
SolarWinds Service Desk is affected by a broken access control vulnerability. The issue allows authenticated users to escalate privileges, leading to unauthorized data manipulation.
Medium
KEV CVSS: 6.7
An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device.
A local attacker with access to the shell is abl…
Medium
CVSS: 6.5
Improper isolation or compartmentalization in Azure PromptFlow allows an unauthorized attacker to execute code over a network.
Medium
CVSS: 6.5
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell
Medium
CVSS: 5.5
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code running in the host’s network namespace. This vulnerability is present only when the NVIDIA Contain…
High
CVSS: 7.6
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code obtaining read and write access to host devices. This vulnerability is present only when the NVIDIA…
High
CVSS: 7.6
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to modification of a host binary. A successful exploit of this vulnerability may lead to code execution, denial of se…
Medium
CVSS: 6.5
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over.
Medium
CVSS: 6.5
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_path_add_path.
Medium
CVSS: 6.5
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend.
High
CVSS: 7.6
A user with advanced report application access rights can perform actions for which they are not authorized