Lucene search
K

12 matches found

CVE
CVE
added 2026/06/16 6:4 p.m.37 views

CVE-2026-53845

OpenClaw prior to version 2026.5.6 has a hook bypass in the skill-command dispatch path, where commands routed through the affected path skip the before-tool-call hook coverage, potentially bypassing auditing and policy enforcement. This is described in the CVE entry as a dispatch hook bypass vul...

4.3CVSS5.4AI score0.00185EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.33 views

PT-2026-49762

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.5.6 Description A hook bypass issue exists where skill commands routed through a specific dispatch path skip the runBeforeToolCallHook coverage. This allows attackers to send skill commands through the affected...

4.3CVSS5.3AI score0.00185EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/05/19 1:35 p.m.15 views

cpython: CPython: Logging Bypass in Legacy .pyc File Handling

A flaw was found in CPython. This vulnerability allows a local user with low privileges to bypass security auditing mechanisms. The issue occurs because the SourcelessFileLoader component, responsible for handling older Python compiled files .pyc, does not properly trigger system audit events. Th...

5.7CVSS7.2AI score0.00202EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/05/19 1:33 p.m.10 views

cpython: CPython: Logging Bypass in Legacy .pyc File Handling

A flaw was found in CPython. This vulnerability allows a local user with low privileges to bypass security auditing mechanisms. The issue occurs because the SourcelessFileLoader component, responsible for handling older Python compiled files .pyc, does not properly trigger system audit events. Th...

5.7CVSS7.2AI score0.00202EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2026/04/27 3:6 p.m.7 views

cpython: CPython: Logging Bypass in Legacy .pyc File Handling

A flaw was found in CPython. This vulnerability allows a local user with low privileges to bypass security auditing mechanisms. The issue occurs because the SourcelessFileLoader component, responsible for handling older Python compiled files .pyc, does not properly trigger system audit events. Th...

5.7CVSS5.4AI score0.00202EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2026/04/22 4:8 p.m.8 views

CVE-2026-35366 uutils coreutils printenv Security Inspection Bypass via UTF-8 Enforcement

The printenv utility in uutils coreutils fails to display environment variables containing invalid UTF-8 byte sequences. While POSIX permits arbitrary bytes in environment strings, the uutils implementation silently skips these entries rather than printing the raw bytes. This vulnerability allows...

4.4CVSS5.9AI score0.0017EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001096)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001096 advisory. Race condition in the auditlogsingleexecvearg function in kernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set...

4.7CVSS6.8AI score0.00267EPSS
Exploits0References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2007-4286

Malware in sbrugna...

6.2CVSS6.4AI score0.00284EPSS
Exploits0References4
CNVD
CNVD
added 2020/12/29 12:0 a.m.3 views

Zammad Access Control Error Vulnerability

Zammad is a Web-based open source helpdesk/customer support system. An access control error vulnerability exists in Zammad versions prior to 3.5.1. An attacker can exploit this vulnerability to bypass auditing and change Ticket Article data via REST API calls...

7.5CVSS6.8AI score0.00899EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/28 12:0 a.m.8 views

Zammad 安全漏洞

Zammad is a Web-based open source helpdesk/customer support system. An access control error vulnerability exists in Zammad versions prior to 3.5.1. An attacker can exploit this vulnerability to bypass auditing and change Ticket Article data via REST API calls...

7.5CVSS5.8AI score0.00899EPSS
Exploits0References3
CNVD
CNVD
added 2019/11/12 12:0 a.m.4 views

Apache Impala Access Control Error Vulnerability

Apache Impala is the United States Apache Apache Software Foundation of a large-scale, distributed parallel processing database query system. The system is able to query the Hadoop big data analytics software stored in HDFS distributed file system and HBase database in the petabyte of big data. A...

7.5CVSS6.7AI score0.00994EPSS
Exploits0References1
CVE
CVE
added 2007/08/13 9:0 p.m.45 views

CVE-2007-4302

CVE-2007-4302 concerns the Generic Software Wrappers Toolkit (GSWTK), where multiple race conditions in certain system call wrappers allow a local attacker to defeat system call interposition and potentially gain privileges or bypass auditing. The affected component is the GSWTK system call wrapp...

6.2CVSS6.7AI score0.00716EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder