Lucene search
+L

32 matches found

Cvelist
Cvelist
added 2026/03/19 10:7 p.m.29 views

CVE-2026-32038 OpenClaw - Sandbox Network Isolation Bypass via docker.network=container Parameter

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.8CVSS0.00265EPSS
Exploits0References2
CVE
CVE
added 2026/03/19 10:7 p.m.14 views

CVE-2026-32038

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass allowing a trusted operator to join another container’s network namespace by configuring the docker.network parameter with container: values. This enables access to services in the target container namespaces and bypasses netwo...

9.8CVSS5.8AI score0.00265EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/19 10:7 p.m.5 views

EUVD-2026-13324

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.8CVSS5.8AI score0.00265EPSS
Exploits0References2
OSV
OSV
added 2026/03/19 10:7 p.m.6 views

CVE-2026-32038 OpenClaw - Sandbox Network Isolation Bypass via docker.network=container Parameter

OpenClaw before 2026.2.24 contains a sandbox network isolation bypass vulnerability that allows trusted operators to join another container's network namespace. Attackers can configure the docker.network parameter with container: values to reach services in target container namespaces and bypass...

9.3CVSS6AI score0.00265EPSS
Exploits0References4
Snyk
Snyk
added 2026/03/02 11:37 p.m.5 views

Protection Mechanism Failure

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Protection Mechanism Failure through improper validation of the docker.network configuration parameter. An attacker can gain unauthorized access to internal network resources by specifyin...

9.8CVSS5.9AI score0.00265EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/02/21 7:14 a.m.3 views

CVE-2026-27466 BigBlueButton: Exposed ClamAV port enables Denial of Service

BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official documentation for "Server Customization" on Support for ClamAV as presentation file scanner contains instructions that leave a BBB server vulnerable for Denial of Service. The flawed command exposes both...

7.2CVSS5.6AI score0.00397EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/02/21 1:28 a.m.7 views

CVE-2026-27002

OpenClaw is a personal AI assistant. Prior to version 2026.2.15, a configuration injection issue in the Docker tool sandbox could allow dangerous Docker options bind mounts, host networking, unconfined profiles to be applied, enabling container escape or host data access. OpenClaw 2026.2.15 block...

9.8CVSS5.4AI score0.00479EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/29 12:0 a.m.7 views

Vasion Print Virtual Appliance Host 安全漏洞

Vasion Print Virtual Appliance Host is a print management software from Vasion USA. A security vulnerability exists in Vasion Print Virtual Appliance Host versions prior to 25.2.169, which stems from a firewall rule that allows unrestricted traffic to a Docker-bridged network, which could lead to...

10CVSS7.8AI score0.01364EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/09/19 6:47 p.m.4 views

CVE-2025-34201 Vasion Print (formerly PrinterLogic) Lack of Network Segmentation Between Docker Instances

Vasion Print formerly PrinterLogic Virtual Appliance Host and Application VA and SaaS deployments run many Docker containers on shared internal networks without firewalling or segmentation between instances. A compromise of any single container allows direct access to internal services HTTP, Redi...

8.5CVSS6.5AI score0.00271EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/09/19 12:0 a.m.5 views

Vasion Print Virtual Appliance Host和Vasion Print Application 安全漏洞

Vasion Print Virtual Appliance Host and Vasion Print Application are both products of Vasion Corporation of the U.S.A. Vasion Print Virtual Appliance Host is a print management software.Vasion Print Application is a printer management application. A security vulnerability exists in Vasion Print...

8.8CVSS7.4AI score0.00918EPSS
Exploits1References5
OSV
OSV
added 2025/07/29 7:56 p.m.5 views

GHSA-4VQ8-7JFC-9CVP Moby firewalld reload removes bridge network isolation

Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. The Moby daemon component dockerd, which is developed as moby/moby is commonly referred to as Docker, or Docker...

3.3CVSS7.2AI score0.00152EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2024-29018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes...

7.5CVSS6.8AI score0.0075EPSS
Exploits0References3
Rows per page
Query Builder