actbench (=0.0.1a5), agent-framework-mem0 (>=1.0.0b260319 <=1.0.0b260507) +47 more potentially affected by CVE-2026-7597 via mem0ai (>=0.0.20 <=1.0.11)

mem0ai PYPI version =0.0.20, =1.0.0b260319, =0.0.1, =1.1.0, =1.1.0, =0.1.41, =1.0.4, =0.61.0, =0.13.0, =0.1.108, =0.1.117, =0.1.120a1, =0.1.120, =0.1.0, =0.1.1 - faq-rai-sdk =0.1.4 and more Source cves: CVE-2026-7597 Source advisory: OSV:GHSA-XQXW-R767-67M7...

CVE-2026-7597

A vulnerability was found in mem0ai mem0 up to 1.0.11. This affects the function pickle.load/pickle.dump of the file mem0/vectorstores/faiss.py. Performing a manipulation results in deserialization. It is possible to initiate the attack remotely. The exploit has been made public and could be used...

CVE-2026-7597 mem0ai mem0 faiss.py pickle.dump deserialization

A vulnerability was found in mem0ai mem0 up to 1.0.11. This affects the function pickle.load/pickle.dump of the file mem0/vectorstores/faiss.py. Performing a manipulation results in deserialization. It is possible to initiate the attack remotely. The exploit has been made public and could be used...

CVE-2025-7597

creationtimestamp| type| source ---|---|--- 2025-09-09 20:51:37+00:00| seen| MISP/e0a0042d-e47b-4875-b781-99d4428af3c2...

MAL-2025-7597 Malicious code in @crabas0npm/velit-aliquid-enim (npm)

The package @crabas0npm/velit-aliquid-enim was found to contain malicious code...

CVE-2025-7597

A vulnerability classified as critical has been found in Tenda AX1803 1.0.0.1. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2025-7597 Tenda AX1803 setMacFilterCfg formSetMacFilterCfg stack-based overflow

A vulnerability classified as critical has been found in Tenda AX1803 1.0.0.1. Affected is the function formSetMacFilterCfg of the file /goform/setMacFilterCfg. The manipulation of the argument deviceList leads to stack-based buffer overflow. It is possible to launch the attack remotely. The...

CVE-2020-7597

codecov-node npm module before 3.6.5 allows remote attackers to execute arbitrary commands.The value provided as part of the gcov-root argument is executed by the exec function within lib/codecov.js. This vulnerability exists due to an incomplete fix of CVE-2020-7596...

SUSE: Security Advisory (SUSE-SU-2018:1472-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:2569-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OS Command Injection

codecov is vulnerable to OS command injection. The vulnerability exists as it was possibly to use backticks "" to bypass the sanitizer. This issue is related to CVE-2020-7597...

Command injection in codecov (npm package)

Impact The upload method has a command injection vulnerability. Clients of the codecov-node library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. A similar CVE was issued: CVE-2020-7597, but the fix was incomplete. It only blocked &, and...

CVE-2020-15123 Command injection in codecov (npm package)

In codecov npm package before version 3.7.1 the upload method has a command injection vulnerability. Clients of the codecov-node library are unlikely to be aware of this, so they might unwittingly write code that contains a vulnerability. A similar CVE CVE-2020-7597 for GHSA-5q88-cjfq-g2mh was...

@aliyun-sls/sql (>=0.2.9 <=0.3.10-dev-18), @authereum/resolution (>=1.10.4 <=1.10.4-beta.4) +161 more potentially affected by CVE-2020-15123 +1 more via codecov (>=1.0.1 <=3.6.1)

codecov NPM version =1.0.1, =0.2.9, =1.10.4, =1.0.8, =2.0.5, =1.0.0, =1.0.1, =0.0.1, =0.0.1, =0.1.2-dev-1, =1.0.0, =0.0.29, =1.0.0, =1.2.1 and more Source cves: CVE-2020-15123, CVE-2020-7597 Source advisory: OSV:GHSA-5Q88-CJFQ-G2MH...

CVE-2020-7597

codecov-node npm module before 3.6.5 allows remote attackers to execute arbitrary commands.The value provided as part of the gcov-root argument is executed by the exec function within lib/codecov.js. This vulnerability exists due to an incomplete fix of CVE-2020-7596...

CVE-2020-7597

CVE-2020-7597 (codecov-node) affects the npm package codecov-node before 3.6.5. The issue allows remote attackers to execute arbitrary commands because the value passed as part of the gcov-root argument is executed by the exec function in lib/codecov.js. Root cause is an incomplete fix of CVE-202...

@aliyun-sls/sql (>=0.2.9 <=0.3.10-dev-18), @dpjayasekara/tscore (>=0.0.1 <=0.1.1) +29 more potentially affected by CVE-2020-7596 +1 more via codecov (>=3.0.0 <=3.6.1)

codecov NPM version =3.0.0, =0.2.9, =0.0.1, =0.0.29, =1.0.10, =1.0.18, =1.0.0, =1.7.0, =1.0.1, =1.0.8, =0.1.1, =0.1.6, =0.1.1, =0.0.1, =1.17.0, =1.22.16 and more Source cves: CVE-2020-7596, CVE-2020-7597 Source advisory: SNYK:JS-CODECOV-548879...

SUSE SLES11 Security Update : tiff (SUSE-SU-2018:1472-1)

This update for tiff fixes the following issues: Security issues fixed : - CVE-2016-5315: The setByteArray function in tifdir.c allowed remote attackers to cause a denial of service out-of-bounds read via a crafted tiff image. bsc984809 - CVE-2016-10267: LibTIFF allowed remote attackers to cause ...

CVE-2015-7597

SafeNet Authentication Service IIS Agent uses a weak ACL for unspecified installation directories and executable modules, which allows local users to gain privileges by modifying an executable module...

CVE-2015-7597

Technical details for CVE-2015-7597 are not publicly available in the provided documents. Monitor for updates.