25 matches found
CVE-2026-28479
creationtimestamp| type| source ---|---|--- 2026-03-06 10:16:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3fyf62k2f 2026-03-06 10:16:49+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mgf3gvsp7j26 2026-03-06 10:17:02+00:00| seen|...
CVE-2026-28479
OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox identifier cache keys for Docker and browser sandbox configurations, which is deprecated and vulnerable to collision attacks. An attacker can exploit SHA-1 collisions to cause cache poisoning, allowing one sandbox configuration to be...
CVE-2026-28479
OpenClaw versions prior to 2026.2.15 use SHA-1 to hash sandbox identifier cache keys for Docker and browser sandbox configurations, which is deprecated and vulnerable to collision attacks. An attacker can exploit SHA-1 collisions to cause cache poisoning, allowing one sandbox configuration to be...
CVE-2022-28479
SeedDMS versions 6.0.18 and 5.1.25 and below are vulnerable to stored XSS. An attacker with admin privileges can inject the payload inside the "Role management" menu and then trigger the payload by loading the "Users management" menu...
CVE-2023-28479
creationtimestamp| type| source ---|---|--- 2023-08-15 18:30:33+00:00| seen| https://t.me/cibsecurity/68537...
CVE-2023-28479
An issue was discovered in Tigergraph Enterprise 3.7.0. The TigerGraph platform installs a full development toolchain within every TigerGraph deployment. An attacker is able to compile new executables on each Tigergraph system and modify system and Tigergraph binaries...
CVE-2023-28479
An issue was discovered in Tigergraph Enterprise 3.7.0. The TigerGraph platform installs a full development toolchain within every TigerGraph deployment. An attacker is able to compile new executables on each Tigergraph system and modify system and Tigergraph binaries...
CVE-2023-28479
An issue was discovered in Tigergraph Enterprise 3.7.0. The TigerGraph platform installs a full development toolchain within every TigerGraph deployment. An attacker is able to compile new executables on each Tigergraph system and modify system and Tigergraph binaries...
CVE-2023-28479
TigerGraph Enterprise 3.7.0 is affected: the platform installs a full development toolchain in deployments, enabling an attacker to compile new executables on the system and modify system and TigerGraph binaries. This yields a high-severity impact (CVSSv3.1: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, b...
CVE-2022-28479
creationtimestamp| type| source ---|---|--- 2022-06-07 02:30:19+00:00| seen| https://t.me/cibsecurity/43898...
CVE-2022-28479
SeedDMS versions 6.0.18 and 5.1.25 and below are vulnerable to stored XSS. An attacker with admin privileges can inject the payload inside the "Role management" menu and then trigger the payload by loading the "Users management" menu...
CVE-2022-28479
SeedDMS versions 6.0.18 and 5.1.25 and below are affected by a stored XSS vulnerability. An attacker with admin privileges can inject a payload via the Role management UI and trigger it by loading the Users management menu, as described in multiple sources for CVE-2022-28479. The affected compone...
Microsoft Windows Multiple Vulnerabilities (KB5003209)
This host is missing a critical security update according to Microsoft KB5003209 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-28479
CVE-2021-28479 maps to a Windows CSC Service Information Disclosure vulnerability. Affected software is Windows operating systems with the CSC service; the root cause relates to information disclosure in the CSC service. The NVD metrics show CVSS base scores of 2.1 (2.0/6.0) depending on version,...
KB5003173: Windows 10 version 2004 / Windows 10 version 20H2 Security Update (May 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
KB5003169: Windows 10 version 1909 Security Update (May 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
KB5003197: Windows 10 1607 / Windows Server 2016 Security Update (May 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
KB5003172: Windows 10 version 1507 LTS Security Update (May 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
KB5003174: Windows 10 version 1803 Security Update (May 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
@convergence/jointjs-utils (>=0.1.0 <=0.4.0), @davidyaha/graphql-birdseye (>=1.0.7 <=1.0.8) +33 more potentially affected by CVE-2020-28479 via jointjs (>=0.9.10 <=3.2.0)
jointjs NPM version =0.9.10, =0.1.0, =1.0.7, =0.1.0, =0.1.3, =0.8.2, =1.5.30, =1.0.1, =1.0.0-alpha.1, =1.0.0, =0.0.3, =0.1.0, =1.0.6, =1.3.0 and more Source cves: CVE-2020-28479 Source advisory: OSV:GHSA-CQ8R-FC3Q-6HG2...