Linuxfoundation Security Vulnerabilities (CVEs)

Track 146 security vulnerabilities affecting Linuxfoundation products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.

24 Critical

70 High

52 Medium

Sort by:

🔔 Get Alerts for Linuxfoundation

CVE-2024-20085 4.4

CVE-2024-20085 is an out-of-bounds read vulnerability in MediaTek power management components that could allow local information disclosure. Attackers...

Sep 2, 2024

CVE-2024-22278 6.4

This vulnerability in Harbor container registry allows authenticated users to modify system configurations due to incorrect permission validation. It ...

Aug 2, 2024

CVE-2024-20080 9.8

This vulnerability in MediaTek's GNSS service allows remote attackers to escalate privileges without user interaction due to improper certificate vali...

Jul 1, 2024

CVE-2024-22244 4.3

This CVE describes an open redirect vulnerability in Harbor container registry software. Attackers can craft malicious URLs that redirect Harbor users...

Jun 10, 2024

CVE-2024-5187 8.8

A path traversal vulnerability in ONNX framework's download_model_with_test_data function allows attackers to overwrite arbitrary system files via mal...

Jun 6, 2024

CVE-2023-32871 5.3

This vulnerability in MediaTek's DA (Download Agent) allows local attackers to bypass permission checks due to an incorrect status verification. It en...

May 6, 2024

CVE-2023-52724 8.1

CVE-2023-52724 is an out-of-bounds array access vulnerability in Open Networking Foundation SD-RAN's onos-kpimon component. This allows attackers to p...

Apr 30, 2024

CVE-2023-52727 8.1

CVE-2023-52727 is an out-of-bounds read vulnerability in the parseAlignBits function of ONOS onos-lib-go library. This allows attackers to read sensit...

Apr 30, 2024

CVE-2024-31583 7.8

PyTorch versions before v2.2.0 contain a use-after-free vulnerability in the mobile interpreter component. This allows attackers to potentially execut...

Apr 17, 2024

CVE-2024-20050 4.4

This vulnerability in the flashc component allows local information disclosure when exploited by a process with System execution privileges. It affect...

Apr 1, 2024

CVE-2024-20052 4.4

This vulnerability in MediaTek's flashc component allows local information disclosure when exploited by a process with System execution privileges. It...

Apr 1, 2024

CVE-2024-20053 8.4

This vulnerability in MediaTek's flashc component allows an attacker with system privileges to perform an out-of-bounds write due to an uncaught excep...

Apr 1, 2024

CVE-2024-20055 6.3

This vulnerability in MediaTek's imgsys component allows local information disclosure due to missing bounds checking. Attackers with system privileges...

Apr 1, 2024

CVE-2024-21626 8.6

CVE-2024-21626 is a file descriptor leak vulnerability in runc that allows container escape to the host filesystem. Attackers can gain access to host ...

Jan 31, 2024

CVE-2024-22424 8.3

This CSRF vulnerability in Argo CD allows attackers to execute API requests on behalf of authenticated users when they can inject HTML on the same par...

Jan 19, 2024

CVE-2023-32820 7.5

This vulnerability in MediaTek wlan firmware allows remote attackers to trigger a firmware assertion through improper input handling, causing denial o...

Oct 2, 2023

CVE-2023-43632 9.0

CVE-2023-43632 is a stack-based buffer overflow vulnerability in EVE's VTPM server that allows remote attackers to execute arbitrary code with high pr...

Sep 21, 2023

CVE-2023-43631 8.8

CVE-2023-43631 allows attackers to gain root access to EVE OS devices by adding their SSH public key to an unprotected config file. This bypasses meas...

Sep 21, 2023

CVE-2023-43635 8.8

This vulnerability in EVE OS's measured boot mechanism allows attackers to bypass TPM-based encryption of the sensitive 'vault' directory. The system ...

Sep 20, 2023

CVE-2022-28357 9.8

CVE-2022-28357 is a directory traversal vulnerability in NATS nats-server that allows management accounts to access arbitrary files outside the intend...

Sep 19, 2023

CVE-2023-20689 7.5

This CVE describes an integer overflow vulnerability in MediaTek wlan firmware that can cause system crashes. Attackers can remotely trigger denial of...

Jul 4, 2023

CVE-2023-20691 7.5

This CVE describes an integer overflow vulnerability in MediaTek wlan firmware that can cause system crashes. Attackers can remotely trigger denial of...

Jul 4, 2023

CVE-2023-20693 7.5

This vulnerability in MediaTek wlan firmware allows remote attackers to cause a system crash (denial of service) without authentication or user intera...

Jul 4, 2023

CVE-2023-24805 8.8

CVE-2023-24805 is a command injection vulnerability in cups-filters' Backend Error Handler (beh) that allows remote code execution. Attackers with net...

May 17, 2023

CVE-2023-22645 8.0

This vulnerability allows attackers with access to the kubewarden-controller ServiceAccount to read arbitrary Kubernetes secrets. It affects SUSE kube...

Apr 19, 2023

CVE-2021-32163 9.8

CVE-2021-32163 is an authentication vulnerability in MOSN v0.23.0 that allows attackers to bypass JWT authorization checks through case-sensitive stri...

Feb 17, 2023

CVE-2023-25151 7.5

This vulnerability in OpenTelemetry Go instrumentation allows attackers to cause denial-of-service through memory exhaustion. By sending HTTP requests...

Feb 8, 2023

CVE-2022-0670 9.1

This vulnerability in OpenStack Manila's Ceph filesystem integration allows a share owner to read or write any Manila share or the entire filesystem, ...

Jul 25, 2022

CVE-2022-34632 9.1

CVE-2022-34632 is an insufficient cryptography vulnerability in Rocket-Chip's RocketCore.scala component that allows attackers to bypass cryptographic...

Jul 18, 2022

CVE-2022-31105 8.3

Argo CD versions 0.4.0 through 2.4.4 (excluding patched versions) have improper certificate validation for OpenID Connect providers, allowing attacker...

Jul 12, 2022

CVE-2022-23648 7.5

This vulnerability in containerd allows containers with specially-crafted image configurations to access read-only copies of arbitrary host files and ...

Mar 3, 2022

CVE-2021-43832 10.0

CVE-2021-43832 is a critical authentication bypass vulnerability in Spinnaker, an open-source continuous delivery platform. It allows any user with ac...

Jan 4, 2022

CVE-2021-45701 9.8

This vulnerability in the tremor-script Rust crate allows use-after-free memory corruption when performing patch operations. Attackers could exploit t...

Dec 27, 2021

CVE-2021-36779 9.6

This vulnerability allows any workload in a Kubernetes cluster running vulnerable SUSE Longhorn versions to execute arbitrary binaries from container ...

Dec 17, 2021

CVE-2021-43776 7.4

This Cross-Site Scripting (XSS) vulnerability in Backstage's auth-backend plugin allows attackers to craft malicious URLs that, when visited by users,...

Nov 26, 2021

CVE-2021-43667 7.5

A denial-of-service vulnerability in Hyperledger Fabric allows attackers to crash leader nodes by sending specially crafted nil payload messages via t...

Nov 18, 2021

CVE-2021-43669 7.5

This vulnerability in HyperLedger Fabric allows attackers to crash orderer nodes by sending specially crafted messages with invalid headers. It affect...

Nov 18, 2021

CVE-2021-41131 7.5

This path traversal vulnerability in python-tuf allows attackers to overwrite .json files anywhere on the client system by using path traversal charac...

Oct 19, 2021

CVE-2021-36153 7.5

This vulnerability in gRPC Swift allows remote attackers to cause denial of service by sending malformed requests that trigger mismanaged state in the...

Jul 9, 2021

CVE-2021-36155 7.5

CVE-2021-36155 is a denial-of-service vulnerability in gRPC Swift's LengthPrefixedMessageReader that allows remote attackers to cause uncontrolled res...

Jul 9, 2021

CVE-2020-27847 9.8

CVE-2020-27847 is a critical SAML signature validation bypass vulnerability in the dexidp/dex library. Attackers can forge SAML assertions to bypass a...

May 28, 2021

CVE-2021-30465 8.5

CVE-2021-30465 is a container escape vulnerability in runc that allows attackers to break out of container filesystem isolation through directory trav...

May 27, 2021

CVE-2021-20288 7.2

This CVE-2021-20288 vulnerability in Ceph allows attackers to reuse authentication keys by exploiting improper sanitization of other_keys during CEPHX...

Apr 15, 2021

CVE-2021-20206 7.2

This vulnerability in containernetworking/cni allows attackers to execute arbitrary system binaries by using path traversal sequences (like '../') in ...

Mar 26, 2021

CVE-2020-26290 9.3

This vulnerability in Dex's SAML connector allows attackers to bypass XML signature validation through XML encoding issues in the underlying Go librar...

Dec 28, 2020

CVE-2020-26892 9.8

This vulnerability in NATS nats-server allows attackers to bypass authentication by using expired JWT credentials, potentially gaining unauthorized ac...

Nov 6, 2020

← Previous Page 3 of 3

Why Monitor Linuxfoundation Security Vulnerabilities?

Real-time CVE tracking: Our automated system monitors 146+ known vulnerabilities affecting Linuxfoundation products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.

Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Linuxfoundation packages in under 60 seconds. No agents required - completely agentless scanning that works across Linuxfoundation deployments.

Free vulnerability database: Access detailed information about every Linuxfoundation CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.

🚀 Get Started in 60 Seconds

Register free account & add your servers
Run one-time scan or schedule automatic monitoring (every 1-24 hours)
Receive instant alerts when new Linuxfoundation CVEs affect your systems
Access dashboard with severity breakdown & fix instructions

Start Monitoring Linuxfoundation CVEs Free