Vulnerability-Lookup

WID-SEC-W-2026-1328

Vulnerability from csaf_certbund - Published: 2026-05-03 22:00 - Updated: 2026-06-08 22:00

Summary

Red Hat Hardened Images RPMs: Mehrere Schwachstellen

Severity

Mittel

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.

Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat Hardened Images RPMs ausnutzen, um einen Denial of Service Angriff durchzuführen oder Daten zu manipulieren.

Betroffene Betriebssysteme: - Linux - Sonstiges

CVE-2026-2625

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux Multicluster Global Hub <1.5.4 Red Hat / Enterprise Linux		Multicluster Global Hub <1.5.4
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Enterprise Linux Hardened Images RPMs Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:hardened_images_rpms`	Hardened Images RPMs
IBM MQ IBM	`cpe:/a:ibm:mq:-`	—
HCL BigFix WebUI HCL / BigFix	`cpe:/a:hcltech:bigfix:webui`	WebUI
IBM Storage Scale <6.0.1.0 IBM / Storage Scale		<6.0.1.0
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
IBM Storage Scale <5.2.3.8 IBM / Storage Scale		<5.2.3.8

CVE-2026-2950

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux Multicluster Global Hub <1.5.4 Red Hat / Enterprise Linux		Multicluster Global Hub <1.5.4
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Enterprise Linux Hardened Images RPMs Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:hardened_images_rpms`	Hardened Images RPMs
IBM MQ IBM	`cpe:/a:ibm:mq:-`	—
HCL BigFix WebUI HCL / BigFix	`cpe:/a:hcltech:bigfix:webui`	WebUI
IBM Storage Scale <6.0.1.0 IBM / Storage Scale		<6.0.1.0
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
IBM Storage Scale <5.2.3.8 IBM / Storage Scale		<5.2.3.8

CVE-2026-33813

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux Multicluster Global Hub <1.5.4 Red Hat / Enterprise Linux		Multicluster Global Hub <1.5.4
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Enterprise Linux Hardened Images RPMs Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:hardened_images_rpms`	Hardened Images RPMs
IBM MQ IBM	`cpe:/a:ibm:mq:-`	—
HCL BigFix WebUI HCL / BigFix	`cpe:/a:hcltech:bigfix:webui`	WebUI
IBM Storage Scale <6.0.1.0 IBM / Storage Scale		<6.0.1.0
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
IBM Storage Scale <5.2.3.8 IBM / Storage Scale		<5.2.3.8

CVE-2026-42371

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat Enterprise Linux Multicluster Global Hub <1.5.4 Red Hat / Enterprise Linux		Multicluster Global Hub <1.5.4
Red Hat Enterprise Linux Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:-`	—
IBM QRadar SIEM IBM	`cpe:/a:ibm:qradar_siem:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Red Hat Enterprise Linux Hardened Images RPMs Red Hat / Enterprise Linux	`cpe:/o:redhat:enterprise_linux:hardened_images_rpms`	Hardened Images RPMs
IBM MQ IBM	`cpe:/a:ibm:mq:-`	—
HCL BigFix WebUI HCL / BigFix	`cpe:/a:hcltech:bigfix:webui`	WebUI
IBM Storage Scale <6.0.1.0 IBM / Storage Scale		<6.0.1.0
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
IBM Storage Scale <5.2.3.8 IBM / Storage Scale		<5.2.3.8

References

18 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2026:12430	external
https://access.redhat.com/errata/RHSA-2026:12682	external
https://access.redhat.com/errata/RHSA-2026:7655	external
https://access.redhat.com/errata/RHSA-2026:8291	external
https://nvd.nist.gov/vuln/detail/CVE-2026-33813	external
https://access.redhat.com/errata/RHSA-2026:7378	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://lists.opensuse.org/archives/list/security…	external
https://support.hcl-software.com/csm?id=kb_articl…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://www.ibm.com/support/pages/node/7273145	external
https://access.redhat.com/errata/RHSA-2026:21769	external
https://www.ibm.com/support/pages/node/7274746	external
https://access.redhat.com/errata/RHSA-2026:22347	external
https://www.ibm.com/support/pages/node/7275270	external
https://access.redhat.com/errata/RHSA-2026:24503	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat Hardened Images RPMs ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren oder Daten zu manipulieren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1328 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1328.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1328 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1328"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:12430 vom 2026-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2026:12430"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:12682 vom 2026-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2026:12682"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:7655 vom 2026-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2026:7655"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:8291 vom 2026-05-03",
        "url": "https://access.redhat.com/errata/RHSA-2026:8291"
      },
      {
        "category": "external",
        "summary": "NIST CVE-2026-33813 vom 2026-05-03",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33813"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:7378 vom 2026-05-04",
        "url": "https://access.redhat.com/errata/RHSA-2026:7378"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-C66EAAE759 vom 2026-05-06",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-c66eaae759"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10682-1 vom 2026-05-06",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/XLRSQ4ZEPLCSV4ZOWTAQ6SMT4FCRCX66/"
      },
      {
        "category": "external",
        "summary": "HCL Security Bulletin",
        "url": "https://support.hcl-software.com/csm?id=kb_article\u0026sysparm_article=KB0130587"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-8DF732BE8A vom 2026-05-11",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-8df732be8a"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7273145 vom 2026-05-15",
        "url": "https://www.ibm.com/support/pages/node/7273145"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:21769 vom 2026-05-28",
        "url": "https://access.redhat.com/errata/RHSA-2026:21769"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7274746 vom 2026-06-01",
        "url": "https://www.ibm.com/support/pages/node/7274746"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:22347 vom 2026-06-02",
        "url": "https://access.redhat.com/errata/RHSA-2026:22347"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7275270 vom 2026-06-05",
        "url": "https://www.ibm.com/support/pages/node/7275270"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2026:24503 vom 2026-06-08",
        "url": "https://access.redhat.com/errata/RHSA-2026:24503"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat Hardened Images RPMs: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-06-08T22:00:00.000+00:00",
      "generator": {
        "date": "2026-06-09T09:02:19.018+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1328",
      "initial_release_date": "2026-05-03T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-05-03T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-05-05T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2026-05-06T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von openSUSE aufgenommen"
        },
        {
          "date": "2026-05-10T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von HCL aufgenommen"
        },
        {
          "date": "2026-05-11T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2026-05-17T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2026-05-28T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2026-06-01T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von IBM und Red Hat aufgenommen"
        },
        {
          "date": "2026-06-07T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von IBM aufgenommen"
        },
        {
          "date": "2026-06-08T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "10"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "WebUI",
                "product": {
                  "name": "HCL BigFix WebUI",
                  "product_id": "T036098",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:hcltech:bigfix:webui"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "BigFix"
          }
        ],
        "category": "vendor",
        "name": "HCL"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "IBM MQ",
            "product": {
              "name": "IBM MQ",
              "product_id": "T021398",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:mq:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "IBM QRadar SIEM",
            "product": {
              "name": "IBM QRadar SIEM",
              "product_id": "T021415",
              "product_identification_helper": {
                "cpe": "cpe:/a:ibm:qradar_siem:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003c5.2.3.8",
                "product": {
                  "name": "IBM Storage Scale \u003c5.2.3.8",
                  "product_id": "T055027"
                }
              },
              {
                "category": "product_version",
                "name": "5.2.3.8",
                "product": {
                  "name": "IBM Storage Scale 5.2.3.8",
                  "product_id": "T055027-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_scale:5.2.3.8"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c6.0.1.0",
                "product": {
                  "name": "IBM Storage Scale \u003c6.0.1.0",
                  "product_id": "T055028"
                }
              },
              {
                "category": "product_version",
                "name": "6.0.1.0",
                "product": {
                  "name": "IBM Storage Scale 6.0.1.0",
                  "product_id": "T055028-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_scale:6.0.1.0"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Storage Scale"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux",
                "product": {
                  "name": "Red Hat Enterprise Linux",
                  "product_id": "67646",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Hardened Images RPMs",
                "product": {
                  "name": "Red Hat Enterprise Linux Hardened Images RPMs",
                  "product_id": "T053469",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:hardened_images_rpms"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Multicluster Global Hub \u003c1.5.4",
                "product": {
                  "name": "Red Hat Enterprise Linux Multicluster Global Hub \u003c1.5.4",
                  "product_id": "T054839"
                }
              },
              {
                "category": "product_version",
                "name": "Multicluster Global Hub 1.5.4",
                "product": {
                  "name": "Red Hat Enterprise Linux Multicluster Global Hub 1.5.4",
                  "product_id": "T054839-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:multicluster_global_hub__1.5.4"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2026-2625",
      "product_status": {
        "known_affected": [
          "T054839",
          "67646",
          "T021415",
          "T027843",
          "T053469",
          "T021398",
          "T036098",
          "T055028",
          "74185",
          "T055027"
        ]
      },
      "release_date": "2026-05-03T22:00:00.000+00:00",
      "title": "CVE-2026-2625"
    },
    {
      "cve": "CVE-2026-2950",
      "product_status": {
        "known_affected": [
          "T054839",
          "67646",
          "T021415",
          "T027843",
          "T053469",
          "T021398",
          "T036098",
          "T055028",
          "74185",
          "T055027"
        ]
      },
      "release_date": "2026-05-03T22:00:00.000+00:00",
      "title": "CVE-2026-2950"
    },
    {
      "cve": "CVE-2026-33813",
      "product_status": {
        "known_affected": [
          "T054839",
          "67646",
          "T021415",
          "T027843",
          "T053469",
          "T021398",
          "T036098",
          "T055028",
          "74185",
          "T055027"
        ]
      },
      "release_date": "2026-05-03T22:00:00.000+00:00",
      "title": "CVE-2026-33813"
    },
    {
      "cve": "CVE-2026-42371",
      "product_status": {
        "known_affected": [
          "T054839",
          "67646",
          "T021415",
          "T027843",
          "T053469",
          "T021398",
          "T036098",
          "T055028",
          "74185",
          "T055027"
        ]
      },
      "release_date": "2026-05-03T22:00:00.000+00:00",
      "title": "CVE-2026-42371"
    }
  ]
}

CVE-2026-2625 (GCVE-0-2026-2625)

Vulnerability from cvelistv5 – Published: 2026-04-03 18:38 – Updated: 2026-05-01 21:13

Title

Rust-rpm-sequoia: rust-rpm-sequoia: denial of service via crafted rpm file during signature verification

Summary

A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability by providing a specially crafted Red Hat Package Manager (RPM) file. During the RPM signature verification process, this crafted file can trigger an error in the OpenPGP signature parsing code, leading to an unconditional termination of the rpm process. This issue results in an application level denial of service, making the system unable to process RPM files for signature verification.

Severity

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-347 - Improper Verification of Cryptographic Signature

Assigner

redhat

References

3 references

URL	Tags
https://access.redhat.com/errata/RHSA-2026:12682	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2026-2625	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2440357	issue-trackingx_refsource_REDHAT

Impacted products

3 products

Vendor	Product	Version
Red Hat	Red Hat Hardened Images	Unaffected: 1.10.1.1-1.2.hum1 , < * (rpm) cpe:/a:redhat:hummingbird:1
Red Hat	Red Hat Enterprise Linux 10	cpe:/o:redhat:enterprise_linux:10
Red Hat	Red Hat Enterprise Linux 9	cpe:/o:redhat:enterprise_linux:9

Date Public

2026-02-17 12:34

Credits

Red Hat would like to thank Yashashree Gund for reporting this issue.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-2625",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-08T18:51:58.247478Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-08T18:52:06.906Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://catalog.redhat.com/software/containers/",
          "cpes": [
            "cpe:/a:redhat:hummingbird:1"
          ],
          "defaultStatus": "affected",
          "packageName": "rust-rpm-sequoia-main",
          "product": "Red Hat Hardened Images",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "1.10.1.1-1.2.hum1",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:10"
          ],
          "defaultStatus": "affected",
          "packageName": "rust-rpm-sequoia",
          "product": "Red Hat Enterprise Linux 10",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:9"
          ],
          "defaultStatus": "affected",
          "packageName": "rust-rpm-sequoia",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat"
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Red Hat would like to thank Yashashree Gund for reporting this issue."
        }
      ],
      "datePublic": "2026-02-17T12:34:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in rust-rpm-sequoia. An attacker can exploit this vulnerability by providing a specially crafted Red Hat Package Manager (RPM) file. During the RPM signature verification process, this crafted file can trigger an error in the OpenPGP signature parsing code, leading to an unconditional termination of the rpm process. This issue results in an application level denial of service, making the system unable to process RPM files for signature verification."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "LOW",
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-347",
              "description": "Improper Verification of Cryptographic Signature",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-01T21:13:18.195Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2026:12682",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2026:12682"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2026-2625"
        },
        {
          "name": "RHBZ#2440357",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2440357"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2026-02-17T13:07:17.107Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2026-02-17T12:34:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Rust-rpm-sequoia: rust-rpm-sequoia: denial of service via crafted rpm file during signature verification",
      "workarounds": [
        {
          "lang": "en",
          "value": "Avoid processing untrusted or attacker-controlled RPM files with rpm -Kv or rpm --checksig. Use isolated environments or additional validation layers when handling untrusted RPM artifacts."
        }
      ],
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-347: Improper Verification of Cryptographic Signature"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2026-2625",
    "datePublished": "2026-04-03T18:38:09.601Z",
    "dateReserved": "2026-02-17T13:16:29.204Z",
    "dateUpdated": "2026-05-01T21:13:18.195Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-2950 (GCVE-0-2026-2950)

Vulnerability from cvelistv5 – Published: 2026-03-31 19:18 – Updated: 2026-04-01 13:43

Title

lodash vulnerable to Prototype Pollution via array path bypass in `_.unset` and `_.omit`

Summary

Impact: Lodash versions 4.17.23 and earlier are vulnerable to prototype pollution in the _.unset and _.omit functions. The fix for (CVE-2025-13465: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg) only guards against string key members, so an attacker can bypass the check by passing array-wrapped path segments. This allows deletion of properties from built-in prototypes such as Object.prototype, Number.prototype, and String.prototype. The issue permits deletion of prototype properties but does not allow overwriting their original behavior. Patches: This issue is patched in 4.18.0. Workarounds: None. Upgrade to the patched version.

Severity

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-1321 - Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')

Assigner

openjs

References

1 reference

URL	Tags
https://github.com/lodash/lodash/security/advisor…

Impacted products

4 products

Vendor	Product	Version
lodash	lodash	Affected: 4.17.23 , < 4.18.0 (semver) Unaffected: 4.18.0 (semver)
lodash	lodash-es	Affected: 4.17.23 , < 4.18.0 (semver) Unaffected: 4.18.0 (semver)
lodash	lodash-amd	Affected: 4.17.23 , < 4.18.0 (semver) Unaffected: 4.18.0 (semver)
lodash	lodash.unset	Affected: 4.0.0 , < 4.18.0 (semver) Unaffected: 4.18.0 (semver)

Credits

Haruna38 shpik-kr maru1009 ott3r07 zolbooo backuardo falsyvalues jonchurch jdalton UlisesGascon

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-2950",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-01T13:43:14.280375Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-01T13:43:21.491Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "packageURL": "pkg:npm/lodash",
          "product": "lodash",
          "vendor": "lodash",
          "versions": [
            {
              "lessThan": "4.18.0",
              "status": "affected",
              "version": "4.17.23",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "4.18.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "packageURL": "pkg:npm/lodash-es",
          "product": "lodash-es",
          "vendor": "lodash",
          "versions": [
            {
              "lessThan": "4.18.0",
              "status": "affected",
              "version": "4.17.23",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "4.18.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "packageURL": "pkg:npm/lodash-amd",
          "product": "lodash-amd",
          "vendor": "lodash",
          "versions": [
            {
              "lessThan": "4.18.0",
              "status": "affected",
              "version": "4.17.23",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "4.18.0",
              "versionType": "semver"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "packageURL": "pkg:npm/lodash.unset",
          "product": "lodash.unset",
          "vendor": "lodash",
          "versions": [
            {
              "lessThan": "4.18.0",
              "status": "affected",
              "version": "4.0.0",
              "versionType": "semver"
            },
            {
              "status": "unaffected",
              "version": "4.18.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "Haruna38"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "shpik-kr"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "maru1009"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "ott3r07"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "zolbooo"
        },
        {
          "lang": "en",
          "type": "finder",
          "value": "backuardo"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "value": "falsyvalues"
        },
        {
          "lang": "en",
          "type": "remediation developer",
          "value": "jonchurch"
        },
        {
          "lang": "en",
          "type": "analyst",
          "value": "jdalton"
        },
        {
          "lang": "en",
          "type": "remediation reviewer",
          "value": "UlisesGascon"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Impact:\n\nLodash versions 4.17.23 and earlier are vulnerable to prototype pollution in the _.unset and _.omit functions. The fix for (CVE-2025-13465: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg) only guards against string key members, so an attacker can bypass the check by passing array-wrapped path segments. This allows deletion of properties from built-in prototypes such as Object.prototype, Number.prototype, and String.prototype.\n\nThe issue permits deletion of prototype properties but does not allow overwriting their original behavior.\n\nPatches:\n\nThis issue is patched in 4.18.0.\n\nWorkarounds:\n\nNone. Upgrade to the patched version."
            }
          ],
          "value": "Impact:\n\nLodash versions 4.17.23 and earlier are vulnerable to prototype pollution in the _.unset and _.omit functions. The fix for (CVE-2025-13465: https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg) only guards against string key members, so an attacker can bypass the check by passing array-wrapped path segments. This allows deletion of properties from built-in prototypes such as Object.prototype, Number.prototype, and String.prototype.\n\nThe issue permits deletion of prototype properties but does not allow overwriting their original behavior.\n\nPatches:\n\nThis issue is patched in 4.18.0.\n\nWorkarounds:\n\nNone. Upgrade to the patched version."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-1321",
              "description": "CWE-1321: Improperly Controlled Modification of Object Prototype Attributes (\u0027Prototype Pollution\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-03-31T19:18:35.796Z",
        "orgId": "ce714d77-add3-4f53-aff5-83d477b104bb",
        "shortName": "openjs"
      },
      "references": [
        {
          "url": "https://github.com/lodash/lodash/security/advisories/GHSA-xxjr-mmjv-4gpg"
        }
      ],
      "title": "lodash vulnerable to Prototype Pollution via array path bypass in `_.unset` and `_.omit`",
      "x_generator": {
        "engine": "cve-kit 1.0.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "ce714d77-add3-4f53-aff5-83d477b104bb",
    "assignerShortName": "openjs",
    "cveId": "CVE-2026-2950",
    "datePublished": "2026-03-31T19:18:35.796Z",
    "dateReserved": "2026-02-21T20:04:35.087Z",
    "dateUpdated": "2026-04-01T13:43:21.491Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-33813 (GCVE-0-2026-33813)

Vulnerability from cvelistv5 – Published: 2026-04-21 19:21 – Updated: 2026-04-22 15:34

Title

Panic when decoding large WEBP image on 32-bit platforms in golang.org/x/image

Summary

Parsing a WEBP image with an invalid, large size panics on 32-bit platforms.

Severity

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: yes Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-190 - Integer Overflow or Wraparound

Assigner

References

3 references

URL	Tags
https://go.dev/cl/759860
https://go.dev/issue/78407
https://pkg.go.dev/vuln/GO-2026-4961

Impacted products

1 product

Vendor	Product	Version
golang.org/x/image	golang.org/x/image/webp	Affected: 0 , < 0.39.0 (semver)

Credits

Tristan Madani

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "cvssV3_1": {
              "attackComplexity": "LOW",
              "attackVector": "NETWORK",
              "availabilityImpact": "HIGH",
              "baseScore": 7.5,
              "baseSeverity": "HIGH",
              "confidentialityImpact": "NONE",
              "integrityImpact": "NONE",
              "privilegesRequired": "NONE",
              "scope": "UNCHANGED",
              "userInteraction": "NONE",
              "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
              "version": "3.1"
            }
          },
          {
            "other": {
              "content": {
                "id": "CVE-2026-33813",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-22T15:23:43.643284Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-22T15:34:46.427Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://pkg.go.dev",
          "defaultStatus": "unaffected",
          "packageName": "golang.org/x/image/webp",
          "product": "golang.org/x/image/webp",
          "programRoutines": [
            {
              "name": "decode"
            },
            {
              "name": "Decode"
            },
            {
              "name": "DecodeConfig"
            }
          ],
          "vendor": "golang.org/x/image",
          "versions": [
            {
              "lessThan": "0.39.0",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "value": "Tristan Madani"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Parsing a WEBP image with an invalid, large size panics on 32-bit platforms."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CWE-190: Integer Overflow or Wraparound",
              "lang": "en"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-21T19:21:27.644Z",
        "orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
        "shortName": "Go"
      },
      "references": [
        {
          "url": "https://go.dev/cl/759860"
        },
        {
          "url": "https://go.dev/issue/78407"
        },
        {
          "url": "https://pkg.go.dev/vuln/GO-2026-4961"
        }
      ],
      "title": "Panic when decoding large WEBP image on 32-bit platforms in golang.org/x/image"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
    "assignerShortName": "Go",
    "cveId": "CVE-2026-33813",
    "datePublished": "2026-04-21T19:21:27.644Z",
    "dateReserved": "2026-03-23T20:35:32.814Z",
    "dateUpdated": "2026-04-22T15:34:46.427Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

CVE-2026-42371 (GCVE-0-2026-42371)

Vulnerability from cvelistv5 – Published: 2026-04-27 05:50 – Updated: 2026-04-27 14:41

Summary

uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes.

Severity

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-197 - Numeric Truncation Error

Assigner

mitre

References

3 references

URL	Tags
https://github.com/uriparser/uriparser/pull/298
https://uriparser.github.io
http://www.openwall.com/lists/oss-security/2026/04/27/2

Impacted products

1 product

Vendor	Product	Version
uriparser	uriparser	Affected: 0 , < 1.0.1 (semver)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2026-42371",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-04-27T11:07:03.859190Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-04-27T11:09:51.263Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2026-04-27T14:41:22.410Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://www.openwall.com/lists/oss-security/2026/04/27/2"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "uriparser",
          "vendor": "uriparser",
          "versions": [
            {
              "lessThan": "1.0.1",
              "status": "affected",
              "version": "0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-197",
              "description": "CWE-197 Numeric Truncation Error",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-04-27T06:07:08.588Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/uriparser/uriparser/pull/298"
        },
        {
          "url": "https://uriparser.github.io"
        }
      ],
      "x_generator": {
        "engine": "CVE-Request-form 0.0.1"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2026-42371",
    "datePublished": "2026-04-27T05:50:36.185Z",
    "dateReserved": "2026-04-27T05:50:35.801Z",
    "dateUpdated": "2026-04-27T14:41:22.410Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

WID-SEC-W-2026-1328

CVE-2026-2625 (GCVE-0-2026-2625)

CVE-2026-2950 (GCVE-0-2026-2950)

CVE-2026-33813 (GCVE-0-2026-33813)

CVE-2026-42371 (GCVE-0-2026-42371)

Tags

Sightings

Nomenclature