CVE-2026-34508

...

CVE-2026-34508

OpenClaw before 2026.3.12 applies rate limiting only after webhook authentication succeeds, allowing attackers to bypass rate limits and brute-force webhook secrets without triggering 429 responses. Attackers can repeatedly guess invalid secrets to discover valid credentials and subsequently subm...

PT-2026-29238

OpenClaw before 2026.3.12 applies rate limiting only after webhook authentication succeeds, allowing attackers to bypass rate limits and brute-force webhook secrets without triggering 429 responses. Attackers can repeatedly guess invalid secrets to discover valid credentials and subsequently subm...

EUVD-2022-32307

Malicious code in bioql PyPI...

IPv6-in-IPv4 tunneling 安全漏洞

IPv6-in-IPv4 tunneling is an IETF-organized basic translation mechanism for IPv6 hosts and routers. A security vulnerability exists in IPv6-in-IPv4 tunneling that originates from an unauthenticated network packet source, which could allow an attacker to forge and route traffic through an exposed...

CVE-2022-27812

Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS...

CVE-2022-27812

Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS...

CVE-2022-27812

Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS...

PT-2022-18607 · Unknown · Sns Firewall

Name of the Vulnerable Software and Affected Versions: SNS firewall versions 3.7.0 through 3.7.29 SNS firewall versions 3.11.0 through 3.11.17 SNS firewall versions 4.2.0 through 4.2.10 SNS firewall versions 4.3.0 through 4.3.6 Description: Flooding the SNS firewall with specific forged traffic c...

CVE-2022-27812

Flooding SNS firewall versions 3.7.0 to 3.7.29, 3.11.0 to 3.11.17, 4.2.0 to 4.2.10, and 4.3.0 to 4.3.6 with specific forged traffic, can lead to SNS DoS...

CVE-2022-30279

An issue was discovered in Stormshield Network Security SNS 4.3.x before 4.3.8. The event logging of the ASQ sofbus lacbus plugin triggers the dereferencing of a NULL pointer, leading to a crash of SNS. An attacker could exploit this vulnerability via forged sofbus lacbus traffic to cause a...

CVE-2022-30279

An issue was discovered in Stormshield Network Security SNS 4.3.x before 4.3.8. The event logging of the ASQ sofbus lacbus plugin triggers the dereferencing of a NULL pointer, leading to a crash of SNS. An attacker could exploit this vulnerability via forged sofbus lacbus traffic to cause a...

PT-2022-20042 · Stormshield · Stormshield Network Security

Name of the Vulnerable Software and Affected Versions: Stormshield Network Security SNS versions 4.3.x through 4.3.7 Description: An issue was discovered in the event logging of the ASQ sofbus lacbus plugin, which triggers the dereferencing of a NULL pointer, leading to a crash of the system. An...

CVE-2022-23989

In Stormshield Network Security SNS before 3.7.25, 3.8.x through 3.11.x before 3.11.13, 4.x before 4.2.10, and 4.3.x before 4.3.5, a flood of connections to the SSLVPN service might lead to saturation of the loopback interface. This could result in the blocking of almost all network traffic, maki...