Lucene search
+L

5 matches found

Cvelist
Cvelist
added 2026/05/07 8:46 p.m.49 views

CVE-2026-42449 n8n-MCP: IPv4-mapped IPv6 addresses bypass SSRF protection in validateUrlSync(), enabling full SSRF for SDK embedders

n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, properties, and operations. In versions 2.47.4 through 2.47.13, the SDK embedder path N8NDocumentationMCPServer constructor, getN8nApiClient, and validateInstanceContext, the synchronous URL validator in...

8.5CVSS0.00206EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/24 9:23 p.m.5 views

CVE-2026-27204 Wasmtime WASI implementations are vulnerable to guest-controlled resource exhaustion

Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0, Wasmtime's implementation of WASI host interfaces are susceptible to guest-controlled resource exhaustion on the host. Wasmtime did not appropriately place limits on resource allocations requested...

6.9CVSS5.9AI score0.00345EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/02/24 9:23 p.m.9 views

CVE-2026-27204

Wasmtime is a runtime for WebAssembly. Prior to versions 24.0.6, 36.0.6, 4.0.04, 41.0.4, and 42.0.0, Wasmtime's implementation of WASI host interfaces are susceptible to guest-controlled resource exhaustion on the host. Wasmtime did not appropriately place limits on resource allocations requested...

6.9CVSS5.4AI score0.00345EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/02/23 7:17 a.m.10 views

datapizza-ai-cache-redis (=0.0.3), datapizza-ai-clients-anthropic (>=0.0.3 <=0.0.5) +21 more potentially affected by CVE-2026-2969 via datapizza-ai-core (>=0.0.1 <=0.0.26)

datapizza-ai-core PYPI version =0.0.1, =0.0.3, =0.0.2, =0.0.4, =0.0.4, =0.0.6, =0.0.6, =0.0.3, =0.0.3, =0.0.2, =0.0.2, =0.0.8 and more Source cves: CVE-2026-2969 Source advisory: SNYK:PYTHON-DATAPIZZAAICORE-15363212...

7.2CVSS5.8AI score0.00686EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.5 views

PT-2026-21805

Name of the Vulnerable Software and Affected Versions Wasmtime versions prior to 24.0.6 Wasmtime versions prior to 36.0.6 Wasmtime versions prior to 40.0.4 Wasmtime versions prior to 41.0.4 Wasmtime versions prior to 42.0.0 Description Wasmtime's implementation of WASI host interfaces is...

6.9CVSS5.7AI score0.00345EPSS
Exploits0References18
Rows per page
Query Builder