Vulnerabilities > Linuxfoundation > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-04 | CVE-2023-20693 | Integer Overflow or Wraparound vulnerability in multiple products In wlan firmware, there is possible system crash due to an uncaught exception. | 7.5 |
| 2023-05-17 | CVE-2023-24805 | OS Command Injection vulnerability in multiple products cups-filters contains backends, filters, and other software required to get the cups printing service working on operating systems other than macos. | 8.8 |
| 2023-05-08 | CVE-2023-30840 | Unspecified vulnerability in Linuxfoundation Fluid Fluid is an open source Kubernetes-native distributed dataset orchestrator and accelerator for data-intensive applications. | 7.8 |
| 2023-05-08 | CVE-2023-30551 | Unspecified vulnerability in Linuxfoundation Rekor Rekor is an open source software supply chain transparency log. | 7.5 |
| 2023-04-19 | CVE-2023-22645 | Unspecified vulnerability in Linuxfoundation Kubewarden-Controller An Improper Privilege Management vulnerability in SUSE kubewarden allows attackers to read arbitrary secrets if they get access to the ServiceAccount kubewarden-controller This issue affects: SUSE kubewarden kubewarden-controller versions prior to 1.6.0. | 8.8 |
| 2023-04-14 | CVE-2023-29018 | Unspecified vulnerability in Linuxfoundation Openfeature The OpenFeature Operator allows users to expose feature flags to applications. | 8.8 |
| 2023-03-29 | CVE-2023-28642 | Link Following vulnerability in Linuxfoundation Runc runc is a CLI tool for spawning and running containers according to the OCI specification. | 7.8 |
| 2023-03-03 | CVE-2023-27561 | Use of Incorrectly-Resolved Name or Reference vulnerability in multiple products runc through 1.1.4 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. | 7.0 |
| 2023-03-01 | CVE-2021-4326 | Unspecified vulnerability in Linuxfoundation Zowe A vulnerability in Imperative framework which allows already-privileged local actors to execute arbitrary shell commands via plugin install/update commands, or maliciously formed environment variables. | 7.8 |
| 2023-02-26 | CVE-2022-48363 | Reachable Assertion vulnerability in Linuxfoundation Automotive Grade Linux In MPD before 0.23.8, as used on Automotive Grade Linux and other platforms, the PipeWire output plugin mishandles a Drain call in certain situations involving truncated files. | 7.5 |