CVE-2026-43584

creationtimestamp| type| source ---|---|--- 2026-05-06 20:39:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3ml7kp3bhet2n 2026-05-06 21:42:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ml7o6oprf62i 2026-05-07 22:37:08+00:00| seen|...

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (>=0.8.3 <=0.9.0-beta.7) +12 more potentially affected by CVE-2026-43584 via openclaw (>=2026.3.22 <=2026.4.1)

openclaw NPM version =2026.3.22, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =0.15.0 - tokaroo-openclaw-provider =0.1.1 Source cves: CVE-2026-43584 Source advisory: SNYK:JS-OPENCLAW-16109732...

@agentholdings/agent-passport (>=0.1.0 <=0.1.5), @chrysb/alphaclaw (>=0.8.3 <=0.9.0-beta.7) +13 more potentially affected by CVE-2026-43584 via openclaw (>=0.0.1 <=2026.4.1)

openclaw NPM version =0.0.1, =0.1.0, =0.8.3, =0.1.0, =2026.3.25, =2026.3.24-3, =0.14.39, =0.1.1, =2.0.1, =0.0.7, =0.14.6, =3.3.2, =3.3.7 Source cves: CVE-2026-43584 Source advisory: OSV:GHSA-VFP4-8X56-J7C5...

CVE-2025-43584

creationtimestamp| type| source ---|---|--- 2025-07-08 21:18:27+00:00| seen| Telegram/di5Mcx0SrjnjaRcM9VtiwOjycMlkGwwqKZI0IwFTjwbWtTY...

CVE-2025-43584

Substance3D - Viewer versions 0.22 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-43584

Affected software: Substance3D Viewer. Issue: an out-of-bounds read in Substance3D Viewer versions 0.22 and earlier, leading to disclosure of sensitive memory. Attack requires user interaction: the victim must open a malicious file. Impact is memory disclosure; CVSS metrics in sources indicate Lo...

CVE-2024-43584

creationtimestamp| type| source ---|---|--- 2024-10-08 17:54:47+00:00| seen| https://www.thezdi.com/blog/2024/10/8/the-october-2024-security-update-review...

CVE-2024-43584 Windows Scripting Engine Security Feature Bypass Vulnerability

...

CVE-2024-43584

CVE-2024-43584 affects Windows Scripting Engine and is described as a Security Feature Bypass. Public sources in connected docs identify Microsoft as the vendor and Windows Scripting as the affected component, with root cause framed as a bypass of a security feature and impact described as circum...

CVE-2021-43584

creationtimestamp| type| source ---|---|--- 2024-01-24 21:26:35+00:00| seen| https://t.me/ctinow/173095 2024-01-31 23:16:54+00:00| seen| https://t.me/ctinow/177167 2024-02-18 11:06:13+00:00| seen| https://t.me/ctinow/187212...

CVE-2021-43584

DOM-based Cross Site Scripting XSS vulnerability in 'Tail Event Logs' functionality in Nagios Nagios Cross-Platform Agent NCPA before 2.4.0 allows attackers to run arbitrary code via the name element when filtering for a log...

CVE-2021-43584

DOM-based Cross Site Scripting XSS vulnerability in 'Tail Event Logs' functionality in Nagios Nagios Cross-Platform Agent NCPA before 2.4.0 allows attackers to run arbitrary code via the name element when filtering for a log...

CVE-2021-43584

Nagios Nagios Cross-Platform Agent (NCPA) prior to version 2.4.0 is affected by a DOM-based XSS in the Tail Event Logs functionality, exploitable via the name element when filtering logs. The root cause involves unsanitized input in the log-filtering path, leading to arbitrary code execution unde...

CVE-2021-43584

DOM-based Cross Site Scripting XSS vulnerability in 'Tail Event Logs' functionality in Nagios Nagios Cross-Platform Agent NCPA before 2.4.0 allows attackers to run arbitrary code via the name element when filtering for a log...

CVE-2021-43584

DOM-based Cross Site Scripting XSS vulnerability in 'Tail Event Logs' functionality in Nagios Nagios Cross-Platform Agent NCPA before 2.4.0 allows attackers to run arbitrary code via the name element when filtering for a log...

CVE-2022-43584

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

CVE-2022-43584

CVE-2022-43584 is rejected/not used per the initial description.