CVE-2026-28392

OpenClaw versions prior to 2026.2.14 contain a privilege escalation vulnerability in the Slack slash-command handler that incorrectly authorizes any direct message sender when dmPolicy is set to open must be configured. Attackers can execute privileged slash commands via direct message to bypass...

EUVD-2026-9892

OpenClaw versions prior to 2026.2.14 contain a privilege escalation vulnerability in the Slack slash-command handler that incorrectly authorizes any direct message sender when dmPolicy is set to open must be configured. Attackers can execute privileged slash commands via direct message to bypass...

China-Linked UAT-7290 Targets Telecoms with Linux Malware and ORB Nodes

A China-nexus threat actor known as UAT-7290 has been attributed to espionage-focused intrusions against entities in South Asia and Southeastern Europe. The activity cluster, which has been active since at least 2022, primarily focuses on extensive technical reconnaissance of target organizations...

CVE-2025-34323

Nagios Log Server versions prior to 2026R1.0.1 are vulnerable to local privilege escalation due to a combination of sudo misconfiguration and group-writable application directories. The 'www-data' user is a member of the 'nagios' group, which has write access to...

EUVD-2021-14399

Malware in sbrugna...

EUVD-2020-3994

Malware in sbrugna...

EUVD-2021-0625

Malware in sbrugna...

EUVD-2014-3322

Malware in sbrugna...

EUVD-2021-33122

Malicious code in bioql PyPI...

EUVD-2023-26526

Malicious code in bioql PyPI...

GitLab 13.3 < 17.11.6 / 18.0 < 18.0.4 / 18.1 < 18.1.2 (CVE-2025-3396)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab EE affecting all versions from 13.3 before 17.11.6, 18.0 before 18.0.4, and 18.1 before 18.1.2 that could have allowed authenticated project owners to bypass...

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

CVE-2023-22363

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

Stack overflow

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

CVE-2023-22363 Access Zone stack overflow

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

CVE-2023-22363

CVE-2023-22363 describes a stack-based buffer overflow in Gallagher’s Command Centre Server . Affected versions are vEL8.80 prior to vEL8.80.1192 (MR2) . The vulnerability allows a denial of service by an attacker who assigns cardholders to an Access Group, due to a likely overflow in the server ...

CVE-2023-22363 Access Zone stack overflow

A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group. This issue affects Command Centre: vEL8.80 prior to vEL8.80.1192 MR2...

PT-2023-18458 · Unknown · Command Centre

Name of the Vulnerable Software and Affected Versions: Command Centre versions vEL8.80 prior to vEL8.80.1192 MR2 Description: A stack-based buffer overflow in the Command Centre Server allows an attacker to cause a denial of service attack via assigning cardholders to an Access Group...

The vulnerability of the inode_init_owner() function in the fs/inode.c file of the XFS file system’s kernel of the Linux operating system allows a malicious actor to escalate their privileges and gain access to protected information. It can also cause service interruptions.

The vulnerability of the inodeinitowner function in the fs/inode.c file of the XFS file system in the Linux operating system is related to the incorrect setting of access group attributes during file creation. Exploiting this vulnerability can allow an attacker to enhance their privileges and gai...