Nixpkgs security tracker

Login with GitHub

Published issues

All published security issues are tracked and resolved on GitHub.

NIXPKGS-2026-1990
published 33 minutes ago
dnsdist: security issues < 2.0.7
Permalink CVE-2026-40210
4.8 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): Low (L)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): Low (L)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 34 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

Out-of-bounds read in SetMacAddrAction

dnsdist
  • <1.9.15
  • <2.0.7
Permalink CVE-2026-40209
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 34 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

Denial of service via IXFR queries

dnsdist
  • <1.9.15
  • <2.0.7
Permalink CVE-2026-40208
3.7 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 34 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

Denial of service via DoH3 queries

dnsdist
  • <1.9.15
  • <2.0.7
Permalink CVE-2026-42004
3.7 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): Low (L)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): Low (L)
  • Modified Availability (MA): None (N)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 34 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

EDNS options smuggling

dnsdist
  • <1.9.15
  • <2.0.7
Permalink CVE-2026-40211
5.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 34 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

Denial of service via crafted DoH3 queries

dnsdist
  • <1.9.15
  • <2.0.7
Permalink CVE-2026-40011
3.7 LOW
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): Low (L)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): Low (L)
  • Modified Availability (MA): None (N)
updated 33 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse accepted 36 minutes ago
  • @LeSuisse published on GitHub 33 minutes ago

Prometheus denial of service via crafted DNS queries

dnsdist
  • <1.9.15
  • <2.0.7
NIXPKGS-2026-1989
published 34 minutes ago
nsd: security issues < 4.14.3
Permalink CVE-2026-12246
7.2 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 34 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    20 packages
    • pdnsd
    • dnsdbq
    • nsdiff
    • dnsdiag
    • dnsdist
    • zeronsd
    • adidnsdump
    • perlPackages.nsdiff
    • perl5Packages.nsdiff
    • perl538Packages.nsdiff
    • perl540Packages.nsdiff
    • idrisPackages.transducers
    • python312Packages.webexpythonsdk
    • python313Packages.webexpythonsdk
    • python314Packages.webexpythonsdk
    • python312Packages.awsiotpythonsdk
    • python313Packages.awsiotpythonsdk
    • python314Packages.awsiotpythonsdk
    • vscode-extensions.nsd.vscode-epics
    • chickenPackages_5.chickenEggs.transducers
    35 minutes ago
  • @LeSuisse accepted 35 minutes ago
  • @LeSuisse published on GitHub 34 minutes ago

Out of bounds stack write with crafted APL RR

NSD
  • <4.14.3
Permalink CVE-2026-12244
8.7 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 34 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    20 packages
    • pdnsd
    • dnsdbq
    • nsdiff
    • dnsdiag
    • dnsdist
    • zeronsd
    • adidnsdump
    • perlPackages.nsdiff
    • perl5Packages.nsdiff
    • perl538Packages.nsdiff
    • perl540Packages.nsdiff
    • idrisPackages.transducers
    • python312Packages.webexpythonsdk
    • python313Packages.webexpythonsdk
    • python314Packages.webexpythonsdk
    • python312Packages.awsiotpythonsdk
    • python313Packages.awsiotpythonsdk
    • python314Packages.awsiotpythonsdk
    • chickenPackages_5.chickenEggs.transducers
    • vscode-extensions.nsd.vscode-epics
    35 minutes ago
  • @LeSuisse accepted 35 minutes ago
  • @LeSuisse published on GitHub 34 minutes ago

Heap overflow and crash with crafted SVCB RR

NSD
  • <4.14.3
Permalink CVE-2026-12490
8.2 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): None (N)
  • Vulnerable System Impact Availability (VA): None (N)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): None (N)
  • Modified Vulnerable System Impact Availability (MVA): None (N)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 34 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    20 packages
    • pdnsd
    • dnsdbq
    • nsdiff
    • dnsdiag
    • dnsdist
    • zeronsd
    • adidnsdump
    • perlPackages.nsdiff
    • perl5Packages.nsdiff
    • perl538Packages.nsdiff
    • perl540Packages.nsdiff
    • idrisPackages.transducers
    • python312Packages.webexpythonsdk
    • python313Packages.webexpythonsdk
    • python314Packages.webexpythonsdk
    • python312Packages.awsiotpythonsdk
    • python313Packages.awsiotpythonsdk
    • python314Packages.awsiotpythonsdk
    • vscode-extensions.nsd.vscode-epics
    • chickenPackages_5.chickenEggs.transducers
    35 minutes ago
  • @LeSuisse accepted 35 minutes ago
  • @LeSuisse published on GitHub 34 minutes ago

Bypass of client certificate verification with transfer over TLS

NSD
  • <4.14.3
Permalink CVE-2026-12245
8.7 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): None (N)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): None (N)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 34 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    20 packages
    • pdnsd
    • dnsdbq
    • nsdiff
    • dnsdiag
    • dnsdist
    • zeronsd
    • adidnsdump
    • perlPackages.nsdiff
    • perl5Packages.nsdiff
    • perl538Packages.nsdiff
    • perl540Packages.nsdiff
    • idrisPackages.transducers
    • python312Packages.webexpythonsdk
    • python313Packages.webexpythonsdk
    • python314Packages.webexpythonsdk
    • python312Packages.awsiotpythonsdk
    • python313Packages.awsiotpythonsdk
    • python314Packages.awsiotpythonsdk
    • vscode-extensions.nsd.vscode-epics
    • chickenPackages_5.chickenEggs.transducers
    37 minutes ago
  • @LeSuisse accepted 37 minutes ago
  • @LeSuisse published on GitHub 34 minutes ago

Denial of DNS over TLS service by any DoT client

NSD
  • <4.14.3
NIXPKGS-2026-1988
published 37 minutes ago
File Browser: Out-of-scope file deletion by a Create-only scoped user via symlink-following RemoveAll in upload failure-cleanup
Permalink CVE-2026-55667
8.2 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Changed (C)
  • Confidentiality (C): None (N)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 37 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    42 minutes ago
  • @LeSuisse accepted 42 minutes ago
  • @LeSuisse published on GitHub 37 minutes ago

File Browser: Out-of-scope file deletion by a Create-only scoped user via symlink-following RemoveAll in upload failure-cleanup

filebrowser
  • ==< 2.63.16
NIXPKGS-2026-1987
published 39 minutes ago
filebrowser: security issues < 2.63.14
Permalink CVE-2026-54092
6.5 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): High (H)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    40 minutes ago
  • @LeSuisse accepted 40 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: DoS Vulnerability on Public Login API

filebrowser
  • ==< 2.63.6 
Needs a backport
Permalink CVE-2026-54096
8.4 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    40 minutes ago
  • @LeSuisse accepted 40 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Improper Access Control Occurs via Pre-Created Public Share for a Non-existent Path

filebrowser
  • ==< 2.63.7 
Needs a backport
Permalink CVE-2026-54097
7.2 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    41 minutes ago
  • @LeSuisse accepted 41 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Cross-user unauthorized share-link deletion via unbounded prefix match in DeleteWithPathPrefix

filebrowser
  • ==< 2.63.6 
Needs a backport
Permalink CVE-2026-54093
6.8 MEDIUM
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Passive (P)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): None (N)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Passive (P)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): None (N)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    42 minutes ago
  • @LeSuisse accepted 42 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Path traversal in download-as-zip/tar via Windows-style backslash separators in stored filenames

filebrowser
  • ==< 2.63.6 
Needs a backport
Permalink CVE-2026-54091
7.5 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): None (N)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): None (N)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    42 minutes ago
  • @LeSuisse accepted 42 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Incorrect access control in public directory shares via rule path rebasing

filebrowser
  • ==< 2.63.6 
Needs a backport
Permalink CVE-2026-54094
7.5 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): None (N)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): None (N)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    42 minutes ago
  • @LeSuisse accepted 42 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Symlink following lets scoped users read, overwrite, and share files outside their filebrowser scope

filebrowser
  • ==< 2.63.14 
Needs a backport
Permalink CVE-2026-54088
9.3 CRITICAL
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 39 minutes ago by @LeSuisse Activity log
  • Created suggestion 7 hours ago
  • @LeSuisse ignored
    4 packages
    • filebrowser-quantum
    • python312Packages.filebrowser-safe
    • python313Packages.filebrowser-safe
    • python314Packages.filebrowser-safe
    43 minutes ago
  • @LeSuisse accepted 43 minutes ago
  • @LeSuisse published on GitHub 39 minutes ago

File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)

filebrowser
  • ==< 2.63.6 
Needs a backport
NIXPKGS-2026-1986
published 1 day ago
OpenColorIO vulnerable to stack buffer overflow via unbounded `sscanf %s` in Spi3D (.spi3d) LUT parser
Permalink CVE-2026-42450
8.4 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Active (A)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Active (A)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored package opencolorio_1 1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

OpenColorIO vulnerable to stack buffer overflow via unbounded `sscanf %s` in Spi3D (.spi3d) LUT parser

OpenColorIO
  • ==< 2.5.2
NIXPKGS-2026-1985
published 1 day ago
motionEye: World-Readable Configuration File Exposes Admin Password Hash
Permalink CVE-2026-32315
5.5 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): None (N)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): None (N)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    4 packages
    • python312Packages.motioneye-client
    • python313Packages.motioneye-client
    • home-assistant-component-tests.motioneye
    • python314Packages.motioneye-client
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

motionEye: World-Readable Configuration File Exposes Admin Password Hash

motioneye
  • ==< 0.44.0
NIXPKGS-2026-1984
published 1 day ago
py7zr: Arbitrary File Write Vulnerability
Permalink CVE-2026-23879
8.0 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

py7zr: Arbitrary File Write Vulnerability

py7zr
  • ==< 1.1.3
NIXPKGS-2026-1983
published 1 day ago
ProFTPD ACL Bypass via /proc/self/root Path Prefix in RNFR
Permalink CVE-2026-35025
8.6 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): High (H)
  • Vulnerable System Impact Integrity (VI): High (H)
  • Vulnerable System Impact Availability (VA): None (N)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): High (H)
  • Modified Vulnerable System Impact Integrity (MVI): High (H)
  • Modified Vulnerable System Impact Availability (MVA): None (N)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse ignored reference http://ww… 1 day ago
  • @LeSuisse published on GitHub 1 day ago

ProFTPD ACL Bypass via /proc/self/root Path Prefix in RNFR

ProFTPD
  • =<1.3.9b
  • =<1.3.10rc2
NIXPKGS-2026-1982
published 1 day ago
rubyPackages.concurrent-ruby: security issues < 1.3.7
Permalink CVE-2026-54904
8.2 HIGH
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): Present (P)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): None (N)
  • Vulnerable System Impact Availability (VA): High (H)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): Present (P)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): None (N)
  • Modified Vulnerable System Impact Availability (MVA): High (H)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

concurrent-ruby: `AtomicReference#update` livelocks when the stored value is `Float::NAN`

concurrent-ruby
  • ==< 1.3.7
Permalink CVE-2026-54906
2.1 LOW
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): High (H)
  • Attack Requirement (AT): None (N)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): None (N)
  • Vulnerable System Impact Integrity (VI): Low (L)
  • Vulnerable System Impact Availability (VA): Low (L)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Attack Requirement (MAT): None (N)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): None (N)
  • Modified Vulnerable System Impact Integrity (MVI): Low (L)
  • Modified Vulnerable System Impact Availability (MVA): Low (L)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

concurrent-ruby: ReadWriteLock allows wrong-thread write release and stray read-release counter corruption

concurrent-ruby
  • ==< 1.3.7
Permalink CVE-2026-54905
2.0 LOW
  • CVSS version (CVSS): 4.0
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Attack Requirement (AT): Present (P)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): None (N)
  • Vulnerable System Impact Confidentiality (VC): Low (L)
  • Vulnerable System Impact Integrity (VI): Low (L)
  • Vulnerable System Impact Availability (VA): Low (L)
  • Subsequent System Impact Confidentiality (SC): None (N)
  • Subsequent System Impact Integrity (SI): None (N)
  • Subsequent System Impact Availability (SA): None (N)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Attack Requirement (MAT): Present (P)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): None (N)
  • Modified Vulnerable System Impact Confidentiality (MVC): Low (L)
  • Modified Vulnerable System Impact Integrity (MVI): Low (L)
  • Modified Vulnerable System Impact Availability (MVA): Low (L)
  • Modified Subsequent System Impact Confidentiality (MSC): Negligible (N)
  • Modified Subsequent System Impact Integrity (MSI): Negligible (N)
  • Modified Subsequent System Impact Availability (MSA): Negligible (N)
  • Safety (S): Not Defined (X)
  • Automatable (AU): Not Defined (X)
  • Recovery (R): Not Defined (X)
  • Value Density (V): Not Defined (X)
  • Vulnerability Response Effort (RE): Not Defined (X)
  • Provider Urgency (U): Not Defined (X)
  • Confidentiality Req. (CR): Not Defined (X)
  • Integrity Req. (IR): Not Defined (X)
  • Availability Req. (AR): Not Defined (X)
  • Exploit Maturity (E): Not Defined (X)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

concurrent-ruby: `ReentrantReadWriteLock` read-count overflow grants a write lock without exclusivity

concurrent-ruby
  • ==< 1.3.7
NIXPKGS-2026-1981
published 1 day ago
warp-terminal: security issues < 0.2026.05.13.09.15.stable_01
Permalink CVE-2026-48719
8.0 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): Low (L)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): Low (L)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

Warp branch selector command injection via Git branch names

warp
  • ==>= 0.2025.08.06.08.12.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48732
8.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

Warp: Remote SSH cwd can lead to unauthorized remote command execution

warp
  • ==>= 0.2023.03.21.08.02.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48731
7.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

Warp: Linux external editor command injection

warp
  • ==>= 0.2024.02.20.08.01.stable_01, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-54686
4.3 MEDIUM
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): None (N)
  • Integrity (I): None (N)
  • Availability (A): Low (L)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): None (N)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): None (N)
  • Modified Availability (MA): Low (L)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

Warp: DCS lifecycle hook spoofing can alter terminal session metadata

warp
  • ==>= 0.2021.04.25.23.05.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-54699
7.7 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): High (H)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): High (H)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day ago
  • @LeSuisse accepted 1 day ago
  • @LeSuisse published on GitHub 1 day ago

Warp: OS command injection when opening terminal links from WSL

warp
  • ==>= 0.2024.03.12.08.02.stable_01, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48725
8.1 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): None (N)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): None (N)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

Warp may allow terminal output to access the local clipboard through OSC 52

warp
  • ==>= 0.2021.04.25.23.05.stable_00, < v0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48704
8.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

Warp Markdown notebook links may open executable local files

warp
  • ==>= 0.2023.10.24.08.03.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48703
7.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

Warp: Command Injection via Warp code search tool arguments

warp
  • ==>= 0.2025.04.09.08.11.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48721
8.6 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Local (L)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Changed (C)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Local (L)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Changed (C)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • warp
    • warpd
    • ts-warp
    • warpgate
    • warp-plus
    • minio-warp
    • warpinator
    • git-warp-time
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

Warp: Env-var prefixes can lead to denylisted command autoexecution

warp
  • ==>= 0.2025.10.08.08.12.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05
Permalink CVE-2026-48720
8.8 HIGH
  • CVSS version (CVSS): 3.1
  • Attack Vector (AV): Network (N)
  • Attack Complexity (AC): Low (L)
  • Privileges Required (PR): None (N)
  • User Interaction (UI): Required (R)
  • Scope (S): Unchanged (U)
  • Confidentiality (C): High (H)
  • Integrity (I): High (H)
  • Availability (A): High (H)
  • Modified Attack Vector (MAV): Network (N)
  • Modified Attack Complexity (MAC): Low (L)
  • Modified Privileges Required (MPR): None (N)
  • Modified User Interaction (MUI): Required (R)
  • Modified Confidentiality (MC): High (H)
  • Modified Scope (MS): Unchanged (U)
  • Modified Integrity (MI): High (H)
  • Modified Availability (MA): High (H)
updated 1 day ago by @LeSuisse Activity log
  • Created suggestion 1 day, 7 hours ago
  • @LeSuisse ignored
    23 packages
    • git-warp-time
    • warpinator
    • minio-warp
    • warp-plus
    • ts-warp
    • warpd
    • warp
    • warpgate
    • cloudflare-warp
    • haskellPackages.warp
    • haskellPackages.warp-tls
    • gnomeExtensions.warpgnome
    • gnomeExtensions.mouse-warp
    • gnomeExtensions.warp-toggle
    • python312Packages.warp-lang
    • python313Packages.warp-lang
    • python314Packages.warp-lang
    • haskellPackages.jsaddle-warp
    • haskellPackages.warp-systemd
    • haskellPackages.core-webserver-warp
    • gnomeExtensions.cloudflare-warp-toggle
    • gnomeExtensions.cloudflare-warp-indicator
    • haskellPackages.essence-of-live-coding-warp
    1 day, 1 hour ago
  • @LeSuisse accepted 1 day, 1 hour ago
  • @LeSuisse published on GitHub 1 day ago

Warp: SSH remote output can lead to local file overwrite and persistence

warp
  • ==>= 0.2025.03.05.08.02.stable_00, < 0.2026.05.13.09.15.stable_01 
Needs a backport to 26.05