Lucene search
+L

6 matches found

OSV
OSV
added 2026/04/28 6:10 p.m.2 views

CVE-2026-41404 OpenClaw < 2026.3.31 - Operator Admin Privilege Escalation via Trusted-Proxy Authentication

OpenClaw before 2026.3.31 contains an incomplete scope-clearing vulnerability in trusted-proxy authentication mode that allows operator.admin privilege escalation. Attackers can exploit this by declaring operator scopes on non-Control-UI clients, allowing self-declared scopes to persist on...

7.7CVSS5.9AI score0.0034EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/03 12:0 a.m.8 views

Avation Light Engine Pro 访问控制错误漏洞

Avation Light Engine Pro is a high-performance search and navigation enhancement plugin developed by the Australian company Avation. Avation Light Engine Pro has a security vulnerability related to access control. This vulnerability arises from the fact that its configuration and control interfac...

9.3CVSS5.8AI score0.00494EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49859)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49859 advisory. - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to check atomicfile in f2fs...

4.7CVSS6.3AI score0.00157EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-50226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal t...

5.5CVSS6.6AI score0.00193EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 11:17 p.m.8 views

CVE-2022-24071

A Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs...

4.3CVSS6.7AI score0.00651EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/04 12:0 a.m.11 views

PT-2024-33705

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.58 Description: A potential race issue has been identified in certain f2fs ioctl interfaces, such as f2fs ioc set pin file, f2fs move file range, and f2fs defragment range, due to a missing check for atomic...

4.7CVSS5.3AI score0.00157EPSS
Exploits0
Rows per page
Query Builder