CVE search results

151 – 160 of 1235 results

Detailed view

Sort by:

CVE-2025-7659

High priority

Ignored

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.2 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that could have allowed an unauthenticated user to steal tokens and access...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	—	Not in release	Not in release	—	—
gitlab-agent	—	Not affected	Not in release	—	—

CVE-2025-14594

Medium priority

Needs evaluation

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.11 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to view...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—	—
gitlab-agent	Needs evaluation	Needs evaluation	Not in release	—	—

CVE-2025-14592

Medium priority

Needs evaluation

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.6 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—	—
gitlab-agent	Needs evaluation	Needs evaluation	Not in release	—	—

CVE-2025-14560

Medium priority

Needs evaluation

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.1 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user to...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—	—
gitlab-agent	Needs evaluation	Needs evaluation	Not in release	—	—

CVE-2025-12575

Medium priority

Needs evaluation

GitLab has remediated an issue in GitLab EE affecting all versions from 18.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions could have allowed an authenticated user with...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—	—
gitlab-agent	Needs evaluation	Needs evaluation	Not in release	—	—

CVE-2025-12073

Medium priority

Needs evaluation

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 18.0 before 18.6.6, 18.7 before 18.7.4, and 18.8 before 18.8.4 that, under certain conditions, could have allowed an authenticated user to...

2 affected packages

gitlab, gitlab-agent

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
gitlab	Not in release	Not in release	Not in release	—	—
gitlab-agent	Needs evaluation	Needs evaluation	Not in release	—	—

CVE-2025-58190

Medium priority

Some fixes available 8 of 10

The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

7 affected packages

golang-golang-x-net, google-guest-agent, containerd, golang-golang-x-net-dev, adsys...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
golang-golang-x-net	Vulnerable	Fixed	Fixed	—	—
google-guest-agent	Not affected	Not affected	Not affected	Not affected	Not affected
containerd	Not affected	Not affected	Not affected	Not affected	Not affected
golang-golang-x-net-dev	Not in release	Not in release	Not in release	Fixed	Fixed
adsys	Not affected	Not affected	Not affected	Not affected	—
juju-core	Not in release	Not in release	Not in release	—	—
lxd	Not in release	Not in release	Not in release	Not affected	Fixed

CVE-2025-47911

Medium priority

Some fixes available 8 of 10

The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.

7 affected packages

golang-golang-x-net, google-guest-agent, containerd, golang-golang-x-net-dev, adsys...

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
golang-golang-x-net	Vulnerable	Fixed	Fixed	—	—
google-guest-agent	Not affected	Not affected	Not affected	Not affected	Not affected
containerd	Not affected	Not affected	Not affected	Not affected	Not affected
golang-golang-x-net-dev	Not in release	Not in release	Not in release	Fixed	Fixed
adsys	Not affected	Not affected	Not affected	Not affected	—
juju-core	Not in release	Not in release	Not in release	—	—
lxd	Not in release	Not in release	Not in release	Not affected	Fixed

CVE-2025-9615

Medium priority

Some fixes available 1 of 8

A flaw was found in NetworkManager. The NetworkManager package allows access to files that may belong to other users. NetworkManager allows non-root users to configure the system's network. The daemon runs with root privileges and...

1 affected package

network-manager

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
network-manager	Fixed	Vulnerable	Vulnerable	Vulnerable	Vulnerable

CVE-2026-23952

Medium priority

Some fixes available 6 of 7

ImageMagick is free and open-source software used for editing and manipulating digital images. Versions 14.10.1 and below have a NULL pointer dereference vulnerability in the MSL (Magick Scripting Language) parser when processing...

1 affected package

imagemagick

Package	26.04 LTS	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS
imagemagick	Not affected	Fixed	Fixed	Fixed	Fixed

Export to JSON

Results by page:

Search CVE reports