General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-24304 | Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network. | Critical (9.9) | 2026-01-23 | General-Purpose |
| CVE-2026-24138 | FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Versions 1.5.10.1754 and below cont… | High (7.5) | 2026-01-23 | General-Purpose |
| CVE-2026-24137 | sigstore framework is a common go library shared across sigstore services and clients. In versions 1.10.3 and below, th… | Medium (5.8) | 2026-01-23 | General-Purpose |
| CVE-2026-24132 | Orval generates type-safe JS clients (TypeScript) from any valid OpenAPI v3 or Swagger v2 specification. Versions 7.19… | Unknown | 2026-01-23 | General-Purpose |
| CVE-2026-20613 | The ArchiveReader.extractContents() function used by cctl image load and container image load performs no pathname vali… | High (7.8) | 2026-01-23 | General-Purpose |