EUVD-2025-208453

A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown function of the file backend/startwindows.bat of the component JWT Key Handler. Such manipulation of the argument WEBUISECRETKEY leads to insufficiently random values. It is possible to launch the attack...

Open WebUI 安全特征问题漏洞

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted WebUI with open-source code. Versions of Open WebUI prior to 0.6.16 have a security vulnerability related to the parameter WEBUISECRETKEY, where insufficient randomness was present in the handling of this parameter...

PT-2026-24109

A security vulnerability has been detected in open-webui up to 0.6.16. Affected is an unknown function of the file backend/start windows.bat of the component JWT Key Handler. Such manipulation of the argument WEBUI SECRET KEY leads to insufficiently random values. It is possible to launch the...

CVE-2022-0339

Server-Side Request Forgery SSRF in Pypi calibreweb prior to 0.6.16...

CVE-2022-0273

Improper Access Control in Pypi calibreweb prior to 0.6.16...

EUVD-2022-0034

Malicious code in bioql PyPI...

EUVD-2022-15550

Malicious code in bioql PyPI...

EUVD-2022-0033

Malicious code in bioql PyPI...

EUVD-2022-0035

Malicious code in bioql PyPI...

CVE-2023-25306

MultiMC Launcher = 0.6.16 is vulnerable to Directory Traversal...

CVE-2023-25306

MultiMC Launcher = 0.6.16 is vulnerable to Directory Traversal...

CVE-2023-25306

MultiMC Launcher

MultiMC Launcher 路径遍历漏洞

MultiMC Launcher is an alternative launcher for MultiMC open source. A security vulnerability exists in MultiMC Launcher 0.6.16 and earlier versions that stems from vulnerability to directory traversal attacks...

CVE-2023-25306

MultiMC Launcher = 0.6.16 is vulnerable to Directory Traversal...

SUSE CVE-2022-43507

Improper buffer restrictions in the IntelR QAT Engine for OpenSSL before version 0.6.16 may allow a privileged user to potentially enable escalation of privilege via network access...

Intel(R) QAT Engine 安全漏洞

Intel QAT Drivers is a driver from Intel Corporation USA. A security vulnerability exists in IntelR QAT Engine for OpenSSL prior to version 0.6.16. An attacker can exploit the vulnerability to escalate privileges...

PT-2023-14227 · Intel +1 · Intel Qat Engine For Openssl +1

Name of the Vulnerable Software and Affected Versions: IntelR QAT Engine for OpenSSL versions prior to 0.6.16 Description: The issue is related to improper buffer restrictions, which may allow a privileged user to potentially enable escalation of privilege via network access. Recommendations: For...

SUSE CVE-2006-4168

Integer overflow in the exifdataloaddataentry function in libexif/exif-data.c in Libexif before 0.6.16 allows remote attackers to cause a denial of service application crash or execute arbitrary code via an image with many EXIF components, which triggers a heap-based buffer overflow...

CVE-2022-0406

Improper Authorization in GitHub repository janeczku/calibre-web prior to 0.6.16...

CVE-2022-0405 Improper Access Control in janeczku/calibre-web

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16...