CVE-2026-40518

creationtimestamp| type| source ---|---|--- 2026-04-17 18:45:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjplgz22wp2q 2026-04-17 21:22:32+00:00| seen| Telegram/1afGr9vW06Zk0J3YeUW4MdlUf8TA53EPyuLeVgpLZqfvxp8...

CVE-2026-40518 ByteDance DeerFlow Path Traversal and Arbitrary File Write via Bootstrap Mode

ByteDance DeerFlow before commit 2176b2b contains a path traversal and arbitrary file write vulnerability in bootstrap-mode custom-agent creation where the agent name validation is bypassed. Attackers can supply traversal-style values or absolute paths as the agent name to influence directory...

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

EUVD-2025-40518

Malicious code in bayu-ketan54-ruro npm...

CVE-2022-40518

Information disclosure due to buffer overread in Core...

CVE-2024-40518

creationtimestamp| type| source ---|---|--- 2024-07-12 19:27:14+00:00| seen| https://t.me/cvedetector/783...

CVE-2023-40518

LiteSpeed OpenLiteSpeed before 1.7.18 does not strictly validate HTTP request headers...

CVE-2023-40518

LiteSpeed OpenLiteSpeed

CVE-2022-40518

Information disclosure due to buffer overread in Core...

CVE-2022-40518 Buffer overread in Core

Information disclosure due to buffer overread in Core...

CVE-2022-40518

CVE-2022-40518 is a buffer over-read in Core leading to information disclosure. Multiple connected sources tie this to Qualcomm chipsets and relate Lenovo ThinkPad X13 BIOS fixes (e.g., BIOS 1.47) and Qualcomm January 2023 patches addressing this family (CVE-2022-40516–40520). The Pixel security ...

CVE-2022-40518 Buffer overread in Core

Information disclosure due to buffer overread in Core...

Qualcomm Chipsets and Lenovo BIOS Get Security Updates to Fix Multiple Flaws

Qualcomm on Tuesday released patches to address multiple security flaws in its chipsets, some of which could be exploited to cause information disclosure and memory corruption. The five vulnerabilities -- tracked from CVE-2022-40516 through CVE-2022-40520 -- also impact Lenovo ThinkPad X13s...

CVE-2021-40518

Airangel HSMX Gateway devices through 5.2.04 allow CSRF...

CVE-2021-40518

CVE-2021-40518 affects Airangel HSMX Gateway devices up to version 5.2.04, with a cross-site request forgery (CSRF) flaw. The underlying issue is a web application that does not adequately verify the request origin, allowing an attacker to coax a user into performing sensitive actions. The CNVD e...

MS10-038: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2027452) (Mac OS X)

The remote Mac OS X host is running a version of Microsoft Excel that is affected by several vulnerabilities. If an attacker can trick a user on the affected host into opening a specially crafted Excel file, these issues could be leveraged to execute arbitrary code subject to the user's privilege...