CVE-2026-26317

creationtimestamp| type| source ---|---|--- 2026-02-20 02:54:13+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mfb46ngtp22s 2026-02-26 20:40:09+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mfs2k7ojpr2q...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-26317 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-26317 Source advisory: OSV:GHSA-3FQR-4CG8-H96Q...

CVE-2025-8473 Alpine iLX-507 UPDM_wstpCBCUpdStart Command Injection Vulnerability

Alpine iLX-507 UPDMwstpCBCUpdStart Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Alpine iLX-507 devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

CVE-2024-26317

In illumos illumos-gate 2024-02-15, an error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates, causing the algorithm to yield a result of POINTATINFINITY when it should not. A man-in-the-middle attacker could use this to interfere with a connection...

CVE-2024-26317

In illumos illumos-gate 2024-02-15, an error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates, causing the algorithm to yield a result of POINTATINFINITY when it should not. A man-in-the-middle attacker could use this to interfere with a connection...

CVE-2024-26317

creationtimestamp| type| source ---|---|--- 2025-01-27 17:29:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113901498964076374 2025-01-27 18:16:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqkcsxqzq2i 2025-01-27 18:55:21+00:00| seen|...

CVE-2024-26317

In illumos illumos-gate 2024-02-15, an error occurs in the elliptic curve point addition algorithm that uses mixed Jacobian-affine coordinates, causing the algorithm to yield a result of POINTATINFINITY when it should not. A man-in-the-middle attacker could use this to interfere with a connection...

CVE-2023-26317

creationtimestamp| type| source ---|---|--- 2023-08-02 20:48:08+00:00| seen| https://t.me/cibsecurity/67595...

CVE-2023-26317

The CVE-2023-26317 entry concerns Xiaomi routers with an external interface that can be abused to perform command injection. The root cause is lax filtering of responses from the external interface, enabling an attacker to hijack ISP routing or an upper-layer route to gain unauthorized access and...

CVE-2020-26317

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2020. Notes: none...

CVE-2021-26317

creationtimestamp| type| source ---|---|--- 2022-05-12 22:36:24+00:00| seen| https://t.me/cibsecurity/42536...

CVE-2021-26317

CVE-2021-26317: The AMD SMM protocol verification failure allows an attacker to take control of the SMM protocol and modify SPI flash, potentially enabling arbitrary code execution. Public documentation ties this to AMD’s SMM/ASP/SEV family and lists it among AMD client vulnerabilities with a hig...

AMD Client Vulnerabilities – May 2022

Bulletin ID: AMD-SB-1027 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary During security reviews in collaboration with Google, Microsoft, and Oracle, potential vulnerabilities in the AMD Secure Processor ASP, AMD System Management Un...

CVE-2022-26317

The CVE-2022-26317 issue affects Mendix Applications running on Mendix 7, specifically all versions prior to 7.23.29. The root cause is that when returning the result of a completed Microflow execution call, the framework does not properly verify whether the request was initially made by the user...

CVE-2020-26317

CVE-2020-26317 is rejected/not used and does not represent an active vulnerability entry.