Lucene search
K

2260 matches found

CNVD
CNVD
added 2026/03/26 12:0 a.m.3 views

OpenClaw Access Control Error Vulnerability (CNVD-2026-16052)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that can be exploited by an attacker to cause a local process to capture a gateway authentication token...

6.8CVSS5.9AI score0.00126EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/26 12:0 a.m.7 views

HCL Aftermarket DPC 安全漏洞

HCL Aftermarket DPC is a digital spare parts and aftermarket management platform for HCL India. HCL Aftermarket DPC suffers from an Access Control Error vulnerability that can be exploited by an attacker to elevate their privileges and compromise the application...

9.8CVSS5.8AI score0.00319EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 6:31 p.m.5 views

EUVD-2026-15559

Missing Authorization vulnerability in loopus WP Cost Estimation & Payment Forms Builder WPEstimationForm allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Cost Estimation & Payment Forms Builder: from n/a through 10.3.0...

5.8AI score0.00377EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.10 views

IBM Concert 安全漏洞

IBM Concert is a new tool from International Business Machines IBM Inc. that uses generative AI to help manage complex cloud-native applications. An Access Control Error vulnerability exists in IBM Concert 2.2.0 and prior versions. The vulnerability stems from a lack of functional-level access...

5.5CVSS5.8AI score0.00147EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/24 12:0 a.m.2 views

OpenClaw Access Control Error Vulnerability (CNVD-2026-14842)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that is caused by a failure to properly handle authentication boot errors during startup. An attacker can exploit the vulnerability to cause a local process or...

7.8CVSS5.9AI score0.0011EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.8 views

OpenClaw 访问控制错误漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that stems from the BlueBubbles webhook handler containing a passwordless fallback authentication path, which can be exploited by an attacker to cause an...

6.5CVSS5.8AI score0.00249EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.9 views

OpenClaw 访问控制错误漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that is caused by a failure to properly handle authentication boot errors during startup. An attacker can exploit the vulnerability to cause a local process or...

7.8CVSS5.8AI score0.0011EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.9 views

OpenClaw 访问控制错误漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that can be exploited by an attacker to cause a local process to capture a gateway authentication token...

6.8CVSS5.8AI score0.00126EPSS
Exploits0References3
CNVD
CNVD
added 2026/03/17 12:0 a.m.5 views

Dell Alienware Command Center Access Control Error Vulnerability

Dell Alienware Command Center is a package manager from Dell USA. An access control error vulnerability exists in Dell Alienware Command Center versions prior to 6.12.24.0. The vulnerability stems from improper access control and can be exploited by an attacker to cause a denial of service...

5.5CVSS5.4AI score0.00075EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.11 views

OpenClaw 访问控制错误漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that stems from a browser-initiated WebSocket connection that can bypass origin authentication under certain configurations, which can be exploited by an attacker ...

8.1CVSS5.8AI score0.00153EPSS
Exploits0References3
CNVD
CNVD
added 2026/03/12 12:0 a.m.5 views

OpenClaw Access Control Error Vulnerability (CNVD-2026-13595)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that stems from the gateway WebSocket connection handshake allowing device identity checks to be skipped when auth.token is present but not verified, which can be...

9.8CVSS5.7AI score0.00357EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/10 12:0 a.m.5 views

NocoDB Access Control Error Vulnerability

NocoDB is nocodb open source an Airtable alternative . Convert any MySql, PostgreSql, Sql Server, Sqlite and MariaDb to a smart spreadsheet . An access control error vulnerability exists in versions prior to NocoDB 0.301.3. The vulnerability stems from the password reset process not undoing an...

7.1CVSS5.8AI score0.00181EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/09 12:0 a.m.3 views

Microsoft Payment Orchestrator Service Access Control Error Vulnerability

Microsoft Payment Orchestrator Service is a Microsoft feature that provides cloud-native payment process automation and orchestration for the financial services industry. An Access Control Error vulnerability exists in Microsoft Payment Orchestrator Service, which stems from improper authenticati...

9.8CVSS5.9AI score0.01171EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/09 12:0 a.m.5 views

Discourse Access Control Error Vulnerability (CNVD-2026-17485)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from an Access Control Error vulnerability that stems from an open Access Control Failure in the Data Explorer plugin,...

5.4CVSS5.9AI score0.00151EPSS
Exploits0
CNVD
CNVD
added 2026/03/09 12:0 a.m.8 views

Discourse Access Control Error Vulnerability (CNVD-2026-17484)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from an Access Control Error vulnerability that stems from a Chat::AddUsersToChannel add member that bypasses private...

5.3CVSS5.7AI score0.00158EPSS
Exploits0
CNVD
CNVD
added 2026/03/06 12:0 a.m.6 views

Microsoft Azure Arc Access Control Error Vulnerability

Microsoft Azure Arc is a storage system from Microsoft USA. that extends the Azure platform into your environment. Microsoft Azure Arc has an Access Control Error vulnerability that can be exploited by an attacker to elevate privileges...

9.8CVSS5.8AI score0.01526EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/06 12:0 a.m.4 views

IBM Cloud Pak System Access Control Error Vulnerability

IBM Cloud Pak System is a full-stack, converged infrastructure with configurable, pre-integrated software from International Business Machines IBM. The product supports deploying, managing and moving application environments across hybrid clouds. An access control error vulnerability exists in IB...

4.3CVSS5.8AI score0.00207EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/06 12:0 a.m.2 views

Microsoft Azure Front Door Access Control Error Vulnerability

Microsoft Azure Front Door is a cloud-based content delivery network from Microsoft Corporation in the United States. An access control error vulnerability exists in Microsoft Azure Front Door, which can be exploited by an attacker to elevate privileges...

9.8CVSS5.8AI score0.01251EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.7 views

Microsoft Payment Orchestrator Service 访问控制错误漏洞

Microsoft Payment Orchestrator Service is a Microsoft feature that provides cloud-native payment process automation and orchestration for the financial services industry. An Access Control Error vulnerability exists in Microsoft Payment Orchestrator Service, which stems from improper authenticati...

9.8CVSS5.9AI score0.01171EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/05 12:0 a.m.10 views

OpenClaw 访问控制错误漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that stems from the gateway WebSocket connection handshake allowing device identity checks to be skipped when auth.token is present but not verified, which can be...

9.8CVSS5.8AI score0.00357EPSS
Exploits0References3
Rows per page
Query Builder