Lucene search
K

2658 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/20 11:24 p.m.4 views

CVE-2026-35570

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in bashToolHasPermission inside src/tools/BashTool/bashPermissions.ts. When the sandbox auto-allow feature is active and no explicit deny rule is...

8.4CVSS5.8AI score0.00232EPSS
Exploits2References3Affected Software1
Cvelist
Cvelist
added 2026/04/20 11:24 p.m.31 views

CVE-2026-35570 OpenClaude has Sandbox Bypass via Early-Exit Logic Flaw that Allows Path Traversal

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in bashToolHasPermission inside src/tools/BashTool/bashPermissions.ts. When the sandbox auto-allow feature is active and no explicit deny rule is...

8.4CVSS0.00232EPSS
Exploits2References2
CVE
CVE
added 2026/04/20 11:24 p.m.58 views

CVE-2026-35570

CVE-2026-35570 affects the OpenClaude project. A logic flaw in the function bashToolHasPermission() (in src/tools/BashTool/bashPermissions.ts) causes an early exit with an allow decision when sandbox auto-allow is enabled and no explicit deny rule exists, bypassing the path constraint check (chec...

8.4CVSS5.8AI score0.00232EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2026/04/18 7:16 a.m.7 views

CVE-2026-30898

An example of BashOperator in Airflow documentation suggested a way of passing dagrun.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advi...

8.8CVSS0.00771EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/18 6:20 a.m.40 views

CVE-2026-30898 Apache Airflow: Bad example of BashOperator shell injection via dag_run.conf

An example of BashOperator in Airflow documentation suggested a way of passing dagrun.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advi...

0.00771EPSS
Exploits0References2
CVE
CVE
added 2026/04/18 6:20 a.m.124 views

CVE-2026-30898

CVE-2026-30898 concerns Apache Airflow where BashOperator usage documented in DAGs could pass dag_run.conf unsafely, enabling UI user privileges to execute code on workers. The issue arises from an example that could escalate privileges via shell injection-like behavior. The connected OSV entry c...

8.8CVSS5.9AI score0.00771EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/04/18 6:20 a.m.6 views

EUVD-2026-23660

An example of BashOperator in Airflow documentation suggested a way of passing dagrun.conf in the way that could cause unsanitized user input to be used to escalate privileges of UI user to allow execute code on worker. Users should review if any of their own DAGs have adopted this incorrect advi...

5.9AI score0.00771EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/04/18 12:0 a.m.20 views

PT-2026-33592

Name of the Vulnerable Software and Affected Versions Apache Airflow affected versions not specified Description An example of BashOperator in the documentation suggested a method of passing dag run.conf that allows unsanitized user input to be used. This can lead to a privilege escalation where ...

8.8CVSS5.9AI score0.00771EPSS
Exploits0References7
EUVD
EUVD
added 2026/04/16 9:31 p.m.3 views

EUVD-2026-23292

Improper validation of bash commands in Snowflake Cortex Code CLI versions prior to 1.0.25 allowed subsequent commands to execute outside the sandbox. An attacker could exploit this by embedding specially crafted commands in untrusted content, such as a malicious repository, causing the CLI agent...

8.3CVSS6.2AI score0.00358EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/16 12:44 a.m.7 views

Malicious code in terminal-formatter (npm)

terminal-formatter is a malicious npm package that when installed postinstall-hook or imported sends local env variables, files and bash history to https://ghostraper.top and registers a new ssh key in .ssh/authorizedkeys. --- -= Per source details. Do not edit below this line.=- Source:...

5.7AI score
Exploits0
OSV
OSV
added 2026/04/16 12:44 a.m.10 views

MAL-2026-2911 Malicious code in terminal-formatter (npm)

terminal-formatter is a malicious npm package that when installed postinstall-hook or imported sends local env variables, files and bash history to https://ghostraper.top and registers a new ssh key in .ssh/authorizedkeys. --- -= Per source details. Do not edit below this line.=- Source:...

5.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/16 12:0 a.m.7 views

PT-2026-33357

Name of the Vulnerable Software and Affected Versions Snowflake Cortex Code CLI versions prior to 1.0.25 Description Improper validation of bash commands allows subsequent commands to execute outside the sandbox. An attacker can embed specially crafted commands in untrusted content, such as a...

8.3CVSS6.5AI score0.00358EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.9 views

Snowflake Cortex Code CLI 安全漏洞

Snowflake Cortex Code CLI is an open-source command-line development tool provided by Snowflake. Versions of Snowflake Cortex Code CLI prior to 1.0.25 contained security vulnerabilities. These vulnerabilities were due to improper validation of bash commands, which could allow attackers to execute...

8.3CVSS6.2AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2026/04/15 8:39 a.m.6 views

ROOT-OS-UBUNTU-2510-CVE-0000-0000 CVE-0000-0000 in rootio-bash - Patched by Root

Root has patched CVE-0000-0000 in the rootio-bash package for Root:Ubuntu:25.10. Multiple fixed versions available...

5.8AI score
Exploits0
GithubExploit
GithubExploit
added 2026/04/11 3:1 p.m.106 views

Exploit for CVE-2026-39866

CVE-2026-39866 — Command Injection via unquoted workflow dispa...

6.1AI score0.02349EPSS
Exploits2
OSV
OSV
added 2026/04/09 9:31 p.m.7 views

GHSA-FCC8-4Q7H-WVWC FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.3CVSS6.9AI score0.02241EPSS
Exploits1References7
Snyk
Snyk
added 2026/04/09 9:31 p.m.6 views

Arbitrary Command Injection

Overview metagpt is a The Multi-Agent Framework Affected versions of this package are vulnerable to Arbitrary Command Injection via the Bash.run method in metagpt/tools/libs/terminal.py. An attacker can execute arbitrary operating system commands by supplying crafted input remotely. Remediation A...

9.8CVSS7.7AI score0.02241EPSS
Exploits1References2
EUVD
EUVD
added 2026/04/09 9:31 p.m.8 views

EUVD-2026-21072

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

7.5CVSS6.8AI score0.02241EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2026/04/09 9:31 p.m.6 views

FoundationAgents MetaGPT vulnerable to OS Command Injection in metagpt/tools/libs/terminal.py

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS6.9AI score0.02241EPSS
Exploits1References8Affected Software1
NVD
NVD
added 2026/04/09 8:16 p.m.11 views

CVE-2026-5974

A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the...

9.8CVSS0.02241EPSS
Exploits1References6
Rows per page
Query Builder