Search CVE reports


Toggle filters

161 – 170 of 42760 results

Status is adjusted based on your filters.


CVE-2026-15392

Medium priority
Needs evaluation

DBD::File versions before 1.651 for Perl do not ensure the table file is not a symlink to an untrusted location. The complete_table_name method builds the absolute table file path without checking whether the file is a symbolic...

1 affected package

libdbi-perl

Package 20.04 LTS
libdbi-perl Needs evaluation
Show less packages

CVE-2026-15719

Medium priority
Ignored

We are aware that exploit code for this is public however we are not aware of any attacks in the wild abusing this flaw. This vulnerability was fixed in Firefox 152.0.6.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 20.04 LTS
firefox
thunderbird
mozjs38
mozjs52 Ignored
mozjs68 Ignored
mozjs78
mozjs91
mozjs102
mozjs115
Show all 9 packages Show less packages

CVE-2026-15718

Medium priority
Ignored

We are aware that exploit code for this is public however we are not aware of any attacks in the wild abusing this flaw. This vulnerability was fixed in Firefox 152.0.6.

9 affected packages

firefox, thunderbird, mozjs38, mozjs52, mozjs68...

Package 20.04 LTS
firefox
thunderbird
mozjs38
mozjs52 Ignored
mozjs68 Ignored
mozjs78
mozjs91
mozjs102
mozjs115
Show all 9 packages Show less packages

CVE-2026-15043

Medium priority
Needs evaluation

DBI::SQL::Nano versions from 1.42 before 1.651 for Perl have inverted <= and >= SQL operators on text. DBI::SQL::Nano, DBI's built-in mini-SQL engine, evaluated WHERE predicates incorrectly in some cases. In the non-numeric string...

1 affected package

libdbi-perl

Package 20.04 LTS
libdbi-perl Needs evaluation
Show less packages

CVE-2026-8384

Medium priority
Needs evaluation

In Eclipse Jetty, an HTTP URI of this form: /public;/../admin/secret.txt results in an unresolved path of: /public/../admin/secret.txt instead of the expected: /admin/secret.txt Jetty itself is not affected, as it will not serve...

2 affected packages

jetty12, jetty9

Package 20.04 LTS
jetty12
jetty9 Needs evaluation
Show less packages

CVE-2026-6790

Medium priority
Needs evaluation

In Eclipse Jetty, for HTTP/1, HTTP/2 and HTTP/3 requests, there is no strict check that the request authority (host and port) matches what provided in the Host header (if present). This was not enforced in earlier HTTP RFC (for...

2 affected packages

jetty12, jetty9

Package 20.04 LTS
jetty12
jetty9 Needs evaluation
Show less packages

CVE-2026-59084

Medium priority
Needs evaluation

Insufficient Technical Documentation vulnerability in Apache Tomcat since the requirements to securely configure the EncryptInterceptor were not clearly documented. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.23,...

6 affected packages

tomcat6, tomcat7, tomcat8, tomcat9, tomcat10, tomcat11

Package 20.04 LTS
tomcat6
tomcat7
tomcat8
tomcat9 Needs evaluation
tomcat10
tomcat11
Show less packages

CVE-2026-59083

Medium priority
Needs evaluation

Improper Handling of URL Encoding (Hex Encoding) vulnerability in Apache Tomcat's rewrite valve allowed security constraint bypass for some configurations. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.23,...

6 affected packages

tomcat6, tomcat7, tomcat8, tomcat9, tomcat10, tomcat11

Package 20.04 LTS
tomcat6
tomcat7
tomcat8
tomcat9 Needs evaluation
tomcat10
tomcat11
Show less packages

CVE-2026-10051

Medium priority
Needs evaluation

In Eclipse Jetty, a first HTTP/1.1 request with trailers causes the server to retain the trailers in subsequent requests performed over the same connection. Subsequent request that do not have trailers report the trailers of...

2 affected packages

jetty12, jetty9

Package 20.04 LTS
jetty12
jetty9 Needs evaluation
Show less packages

CVE-2024-7708

Medium priority
Needs evaluation

For requests that have a body, but reading the body may end up in reading 0 bytes, there is a buffer leak. This is particularly the case for 100-Continue, but any request where the network is slow can leak.

2 affected packages

jetty12, jetty9

Package 20.04 LTS
jetty12
jetty9 Needs evaluation
Show less packages