Where
AND
-Infinity
0

Trending

Last week
Last month
Last year

Vendor Risk Score

See how canonical compares to other vendors in security performance

View Risk Score →

SUSE Linux Enterprise ServerLinux Kernel Incorrect Resource Transfer Between Spheres Vulnerability

Risk 91
Severity
7.8
Exploited
Trending
Year
First published (updated )
CVE-2026-31431

Canonical JujuJuju: Resource poisoning

Risk 40
Severity
7.1
First published (updated )
CVE-2025-68153

jujuUnauthorized access to Kubernetes secrets in Juju

Risk 56
Severity
8.8
EPSS
0.05%
First published (updated )
CVE-2026-32693

jujuUnauthorized update of out-of-scope Vault secrets

Risk 42
Severity
7.6
EPSS
0.03%
First published (updated )
CVE-2026-32692

Nvidia TAONVIDIA TAO contains a vulnerability where an attacker may cause a resource to be loaded via an uncon…

Risk 77
Severity
8.8
First published (updated )
CVE-2025-33208
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Canonical MaasPrivilege Escalation in MAAS via Websocket Request Manipulation

Risk 44
Severity
7.7
First published (updated )
CVE-2025-7044

Canonical LXDPath Traversal in LXD Instance Log File Retrieval

Risk 40
Severity
7.1
First published (updated )
CVE-2025-54293

Canonical LXDPrivilege Escalation via WebSocket Connection Hijacking in LXD Operations API

Risk 60
Severity
8.1
First published (updated )
CVE-2025-54289

Canonical LXDArbitrary File Read via Template Injection in Snapshot Patterns

Risk 40
Severity
7.1
First published (updated )
CVE-2025-54287

Canonical LXDCSRF Vulnerability When Using Client Certificate Authentication with the LXD-UI

Risk 77
Severity
8.8
First published (updated )
CVE-2025-54286
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Canonical MultipassLPE on Multipass for macOS

Risk 69
Severity
7.8
First published (updated )
CVE-2025-5199

Canonical JujuArbitrary executable upload via authenticated endpoint

Risk 79
Severity
8.8
First published (updated )
CVE-2025-0928

Canonical JujuZip slip vulnerability in Juju

Risk 79
Severity
8.8
First published (updated )
CVE-2025-53513

Canonical cloud-initWhen a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local I…

Risk 79
Severity
8.8
First published (updated )
CVE-2024-6174

go/github.com/ubuntu/authdImproper Permission Management in SSH Session Handling

Risk 40
Severity
8.5
EPSS
0.01%
First published (updated )
CVE-2025-5689
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Canonical get-workflow-version-actioncanonical/get-workflow-version-action can leak a partial GITHUB_TOKEN in exception output

Risk 44
Severity
8.2
EPSS
0.04%
First published (updated )
CVE-2025-31479

Ubuntu linux-bluefieldDDoS in Ubuntu package linux-bluefield

Risk 43
Severity
7.5
First published (updated )
CVE-2023-0881

OpenBSD OpenSSHPre-authentication Denial of Service attack in OpenSSH - CVE-2025-26466

Risk 65
Severity
7.5
Exploited
EPSS
23.44%
First published (updated )
CVE-2025-26466

Canonical apportUsers can consume unlimited disk space in /var/crash

Risk 43
Severity
7.5
First published (updated )
CVE-2022-28653

go/github.com/ubuntu/authdAuthd, through version 0.3.6, did not sufficiently randomize user IDs to prevent collisions. A local…

Risk 48
Severity
7.6
EPSS
0.04%
First published (updated )
CVE-2024-9312
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

go/github.com/ubuntu/authdAuthd PAM module before version 0.3.5 can allow broker-managed users to impersonate any other user m…

Risk 58
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2024-9313

Canonical JujuVulnerable juju introspection abstract UNIX domain socket. An abstract UNIX domain socket responsibl…

Risk 44
Severity
7.9
EPSS
0.04%
First published (updated )
CVE-2024-8038

Canonical JujuJUJU_CONTEXT_ID is a predictable authentication secret. On a Juju machine (non-Kubernetes) or Juju c…

Risk 71
Severity
8.7
First published (updated )
CVE-2024-7558

Canonical Anbox CloudAnbox Management Service, in versions 1.17.0 through 1.23.0, does not validate the TLS certificate p…

Risk 51
Severity
7.5
EPSS
0.05%
First published (updated )
CVE-2024-8287

debian/wpaLast updated 11 September 2024

Risk 72
Severity
8.8
First published (updated )
CVE-2024-5290
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Canonical JujuAn issue was discovered in Juju that resulted in the leak of the sensitive context ID, which allows …

Risk 53
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2024-6984

provd provdLast updated 24 July 2024

Risk 53
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2024-6714

go/github.com/snapcore/snapdsnapd allows $HOME/bin symlink

Risk 70
Severity
8.2
First published (updated )
CVE-2024-1724

FreeBSD FreeBSDOpenSSH regreSSHion Attack (CVE-2024-6387)

Risk 92
Severity
8.1
Exploited
EPSS
71.47%
First published (updated )
CVE-2024-6387

Google ChromeType Confusion in V8

Risk 57
Severity
8.8
EPSS
0.04%
First published (updated )
CVE-2024-6773
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203