CVE-2025-28197

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

ayy (>=0.1.6 <=0.1.8), camel-database-agent (>=0.1.0 <=0.2.0) +5 more potentially affected by CVE-2025-28197 via crawl4ai (>=0.3.5 <=0.4.24)

crawl4ai PYPI version =0.3.5, =0.1.6, =0.1.0, =0.1.0, =0.1.0, =0.1.7.4 - taskcraft =0.3.0 Source cves: CVE-2025-28197 Source advisory: OSV:GHSA-445M-27CF-GR3X...

adorable-cli (>=0.1.10 <=0.2.9), agent-memory-labs (>=0.1.0 <=0.1.14) +139 more potentially affected by CVE-2025-28197 via crawl4ai (>=0.3.5 <=0.8.6)

crawl4ai PYPI version =0.3.5, =0.1.10, =0.1.0, =0.2.1, =0.1.6, =0.1.0, =0.1.2, =0.1.0, =0.1.10, =0.10.0, =0.1.0, =2.0.1, =0.1.1, =0.1.2 and more Source cves: CVE-2025-28197 Source advisory: SNYK:PYTHON-CRAWL4AI-10116190...

CVE-2025-28197

creationtimestamp| type| source ---|---|--- 2025-04-18 20:33:45+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ln4hrgv6aw2l 2025-04-18 23:16:08+00:00| seen| https://t.me/cvedetector/23345 2025-04-22 15:49:16+00:00| seen|...

CVE-2025-28197

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

CVE-2025-28197

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

CVE-2025-28197

CVE-2025-28197 relates to Crawl4AI

CVE-2024-28197

Zitadel is an open source identity management system. Zitadel uses a cookie to identify the user agent browser and its user sessions. Although the cookie was handled according to best practices, it was accessible on subdomains of the ZITADEL instance. An attacker could take advantage of this and...

CVE-2024-28197

creationtimestamp| type| source ---|---|--- 2024-03-11 21:26:49+00:00| seen| https://t.me/ctinow/205064 2024-03-11 21:26:53+00:00| seen| https://t.me/ctinow/205068...

CVE-2024-28197

Zitadel is an open source identity management system. Zitadel uses a cookie to identify the user agent browser and its user sessions. Although the cookie was handled according to best practices, it was accessible on subdomains of the ZITADEL instance. An attacker could take advantage of this and...

CVE-2024-28197

ZITADel vulnerability CVE-2024-28197 affects Zitadel, an open-source identity management system. The issue stems from a session cookie used to identify the user agent and sessions that was accessible on subdomains of a Zitadel instance. Exploitation requires the victim to log in via a malicious l...

CVE-2024-28197 Account Takeover via Session Fixation in Zitadel [Bypassing MFA]

Zitadel is an open source identity management system. Zitadel uses a cookie to identify the user agent browser and its user sessions. Although the cookie was handled according to best practices, it was accessible on subdomains of the ZITADEL instance. An attacker could take advantage of this and...

CVE-2023-28197

creationtimestamp| type| source ---|---|--- 2024-01-30 10:11:47+00:00| seen| https://t.me/ctinow/175801 2025-06-17 17:42:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18639...

CVE-2023-28197

An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Ventura 13.3, macOS Big Sur 11.7.5, macOS Monterey 12.6.4. An app may be able to access user-sensitive data...

CVE-2022-28197

creationtimestamp| type| source ---|---|--- 2022-04-27 22:13:22+00:00| seen| https://t.me/cibsecurity/41529...

CVE-2022-28197

The CVE-2022-28197 entry concerns NVIDIA Jetson Linux Driver Package and the Cboot ext4_mount function, where insufficient validation of untrusted data can allow a highly privileged local attacker to trigger an integer overflow, potentially enabling code execution, privilege escalation, and limit...

CVE-2021-28197 ASUS BMC's firmware: buffer overflow - Active Directory configuration function

The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service...

CVE-2021-28197

CVE-2021-28197 concerns ASUS BMC firmware: the Active Directory configuration function on the Web management page does not verify the string length, causing a buffer overflow in the web interface. The vulnerability arises from improper input length validation in the AD configuration, enabling rem...