Lucene search
+L

158 matches found

Github Security Blog
Github Security Blog
added 2026/04/08 7:17 p.m.26 views

PraisonAI has sandbox escape via exception frame traversal in `execute_code` (subprocess mode)

Summary executecode in praisonaiagents.tools.pythontools defaults to sandboxmode="sandbox", which runs user code in a subprocess wrapped with a restricted builtins dict and an AST-based blocklist. The AST blocklist embedded inside the subprocess wrapper blockedattrs, line 143 of pythontools.py...

9.9CVSS6.6AI score0.00541EPSS
Exploits0References3Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/08 10:47 a.m.5 views

Security Bulletin: Expr Built-in Functions Recursion DoS Vulnerability (Fixed in v1.17.7) affects watsonx.data

Summary Expr prior to v1.17.7 is vulnerable to a Denial-of-Service DoS due to unbounded recursion in certain built-in functions, which can cause stack overflow and application crashes when processing deeply nested or cyclic data. Fixed in v1.17.7. This can affect watsonx.data. Vulnerability Detai...

7.5CVSS7AI score0.00392EPSS
Exploits0Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/07 3:48 p.m.9 views

Lupa has a Sandbox escape and RCE due to incomplete attribute_filter enforcement in getattr / setattr

Summary The attributefilter in the Lupa library is intended to restrict access to sensitive Python attributes when exposing objects to Lua. However, the filter is not consistently applied when attributes are accessed through built-in functions like getattr and setattr. This allows an attacker to...

10CVSS6.5AI score0.00613EPSS
Exploits1References3Affected Software1
SUSE Linux
SUSE Linux
added 2026/03/26 5:56 p.m.2 views

Security update for python-deepdiff

This update for python-deepdiff fixes the following issues: CVE-2026-33155: Fixed denial of service via builtins.bytes, builtins.list, builtins.range bsc1260064. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

8.7CVSS5.8AI score0.00452EPSS
Exploits1References4
OSV
OSV
added 2026/03/26 5:56 p.m.2 views

SUSE-SU-2026:1094-1 Security update for python-deepdiff

This update for python-deepdiff fixes the following issues: - CVE-2026-33155: Fixed denial of service via builtins.bytes, builtins.list, builtins.range bsc1260064...

8.7CVSS5.8AI score0.00452EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/03/24 10:13 p.m.7 views

Scriban: Built-in operations bypass LoopLimit and delay cancellation, enabling Denial of Service

Summary Scriban's LoopLimit only applies to script loop statements, not to expensive iteration performed inside operators and builtins. An attacker can submit a single expression such as 1..1000000 | array.size and force large amounts of CPU work even when LoopLimit is set to a very small value...

6AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 2026/03/06 5:6 p.m.3 views

CVE-2026-29089

TimescaleDB is a time-series database for high-performance real-time analytics packaged as a Postgres extension. From version 2.23.0 to 2.25.1, PostgreSQL uses the searchpath setting to locate unqualified database objects tables, functions, operators. If the searchpath includes user-writable...

8.8CVSS6.2AI score0.00136EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.13 views

PT-2026-23731

Name of the Vulnerable Software and Affected Versions TimescaleDB versions 2.23.0 through 2.25.1 Description TimescaleDB is a time-series database that functions as a Postgres extension. A flaw exists where PostgreSQL’s use of the search path setting can allow a malicious user to create functions...

8.8CVSS6AI score0.00136EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/03/05 5:35 a.m.200 views

Exploit for Code Injection in Agentfront Enclave

RCE in ESM Environments — The require Problem When achievi...

10CVSS6.1AI score0.00588EPSS
Exploits4
vulnersOsv
vulnersOsv
added 2026/02/24 3:24 a.m.9 views

@antonyfaris/prefix-node-builtins (>=1.0.0 <=1.0.1), @anyauth/design-system (>=0.5.0 <=0.5.1) +21 more potentially affected by CVE-2026-27729 via astro (>=5.10.1 <=5.17.2)

astro NPM version =5.10.1, =1.0.0, =0.5.0, =0.0.1, =0.1.0, =0.0.1, =2.0.0, =2.18.7, =0.1.2-alpha.1, =0.0.28, =0.0.28, =1.5.1, =1.13.2, =0.0.1, =0.0.2 and more Source cves: CVE-2026-27729 Source advisory: SNYK:JS-ASTRO-15338138...

7.5CVSS5.8AI score0.00415EPSS
Exploits1
OSV
OSV
added 2026/02/20 6:23 p.m.14 views

GHSA-M7JM-9GC2-MPF2 fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names

Entity encoding bypass via regex injection in DOCTYPE entity names Summary A dot . in a DOCTYPE entity name is treated as a regex wildcard during entity replacement, allowing an attacker to shadow built-in XML entities , , &, ", ' with arbitrary values. This bypasses entity encoding and leads to...

9.3CVSS7.1AI score0.00445EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/12 3:31 p.m.2 views

CVE-2026-26216 Crawl4AI < 0.8.0 Docker API Unauthenticated Remote Code Execution via Hooks Parameter

Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec. The import builtin was included in the allowed builtins, allowing unauthenticated remote...

10CVSS6.7AI score0.01589EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/02/02 8:45 p.m.11 views

picklescan missing detection by simple obfuscation of a `builtins.eval` call

Summary An unsafe deserialization vulnerability allows any unauthenticated user to execute arbitrary code on the host loading a pickle payload from an untrusted source. Details It's possible to hide the eval call nested under another callable via getattr. PoC python import builtins class EvilClas...

9.8CVSS6.2AI score0.00519EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/02/02 8:42 p.m.5 views

GHSA-X34R-63HX-W57F Langroid has WAF Bypass Leading to RCE in TableChatAgent

Affected Scope langroid = 0.59.31 Vulnerability Description CVE-2025-46724 fix bypass: TableChatAgent can call pandaseval tool to evaluate the expression. There is a WAF in langroid/utils/pandasutils.py introduced to block code injection CVE-2025-46724. However it can be bypassed due to literalok...

9.4CVSS6.1AI score0.00648EPSS
Exploits1References7
Github Security Blog
Github Security Blog
added 2026/02/02 8:42 p.m.14 views

Langroid has WAF Bypass Leading to RCE in TableChatAgent

Affected Scope langroid = 0.59.31 Vulnerability Description CVE-2025-46724 fix bypass: TableChatAgent can call pandaseval tool to evaluate the expression. There is a WAF in langroid/utils/pandasutils.py introduced to block code injection CVE-2025-46724. However it can be bypassed due to literalok...

9.8CVSS6.1AI score0.00741EPSS
Exploits2References7Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/28 9:17 a.m.11 views

CVE-2026-24812

Vulnerability in root-project root builtins/zlib modules. This vulnerability is associated with program files inftrees.C. This issue affects root: through 6.36.00-rc1...

9.3CVSS5.9AI score0.00287EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/28 9:17 a.m.5 views

CVE-2026-24811

Vulnerability in root-project root builtins/zlib modules. This vulnerability is associated with program files inffast.C. This issue affects root...

9.8CVSS5.9AI score0.00301EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 9:15 a.m.10 views

AZL-75357 CVE-2026-24812 affecting package fltk 1.3.5-4

Vulnerability in root-project root builtins/zlib modules. This vulnerability is associated with program files inftrees.C. This issue affects root: through 6.36.00-rc1...

9.3CVSS5.8AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 9:15 a.m.8 views

AZL-75363 CVE-2026-24811 affecting package openjpeg2 2.3.1-12

Vulnerability in root-project root builtins/zlib modules. This vulnerability is associated with program files inffast.C. This issue affects root...

9.8CVSS5.8AI score0.00301EPSS
Exploits0References1
OSV
OSV
added 2026/01/27 9:15 a.m.9 views

AZL-75384 CVE-2026-24811 affecting package openjpeg2 2.3.1-12

Vulnerability in root-project root builtins/zlib modules. This vulnerability is associated with program files inffast.C. This issue affects root...

9.8CVSS5.7AI score0.00301EPSS
Exploits0References1
Rows per page
Query Builder