Lucene search
K

14 matches found

Github Security Blog
Github Security Blog
added 2026/03/27 7:45 p.m.10 views

LangChain Core has Path Traversal vulnerabilites in legacy `load_prompt` functions

Summary Multiple functions in langchaincore.prompts.loading read files from paths embedded in deserialized config dicts without validating against directory traversal or absolute path injection. When an application passes user-influenced prompt configurations to loadprompt or loadpromptfromconfig...

7.5CVSS6AI score0.01204EPSS
Exploits2References5Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-24039

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00548EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:4 a.m.12 views

CVE-2023-1837

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

8.8CVSS7.1AI score0.00548EPSS
Exploits0References1
OSV
OSV
added 2023/05/23 7:15 p.m.5 views

CVE-2023-1837

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

8.8CVSS7.3AI score0.00548EPSS
Exploits0References1
NVD
NVD
added 2023/05/23 7:15 p.m.16 views

CVE-2023-1837

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

8.8CVSS8.7AI score0.00548EPSS
Exploits0References1
Prion
Prion
added 2023/05/23 7:15 p.m.12 views

Authentication flaw

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

6.5CVSS8.8AI score0.00548EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/05/23 6:23 p.m.46 views

CVE-2023-1837

CVE-2023-1837 affects HYPR Server prior to version 8.0 when Legacy APIs are enabled. The vulnerability is a Missing Authentication for a critical function that enables an authentication bypass, with impact on confidentiality, integrity, and availability (per CVSS v3.1 metrics: HIGH, with NETWORK ...

8.8CVSS8.7AI score0.00548EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/05/23 6:23 p.m.16 views

CVE-2023-1837

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

8.5CVSS9AI score0.00548EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/05/23 6:23 p.m.13 views

CVE-2023-1837

Missing Authentication for critical function vulnerability in HYPR Server allows Authentication Bypass when using Legacy APIs.This issue affects HYPR Server: before 8.0 with enabled Legacy APIs...

8.5CVSS9AI score0.00548EPSS
Exploits0References1
Wallarm Lab
Wallarm Lab
added 2022/09/09 11:17 a.m.16 views

What’s most important for a CISO in API security?

As threats to networks and systems have changed, so have CISOs’ priorities. API security has grown more important with everything as a service and in the cloud. Todays CISOs must ensure they have a plan for protecting APIs. To learn what’s most crucial when protecting APIs, we surveyed CISOs and...

0.4AI score
Exploits0
Microsoft KB
Microsoft KB
added 2021/06/08 7:0 a.m.61 views

June 8, 2021—KB5003696 (Security-only update)

None None...

9.8CVSS6.8AI score0.86132EPSS
Exploits67
Microsoft KB
Microsoft KB
added 2021/06/08 7:0 a.m.102 views

June 8, 2021—KB5003671 (Monthly Rollup)

None None...

9.8CVSS6.8AI score0.86132EPSS
Exploits67
OSV
OSV
added 2021/01/20 1:13 p.m.9 views

USN-4689-3 nvidia-graphics-drivers-418-server, nvidia-graphics-drivers-450-server vulnerabilities

It was discovered that the NVIDIA GPU display driver for the Linux kernel contained a vulnerability that allowed user-mode clients to access legacy privileged APIs. A local attacker could use this to cause a denial of service or escalate privileges. CVE-2021-1052 It was discovered that the NVIDIA...

7.8CVSS6.5AI score0.00452EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2021/01/07 12:0 a.m.7 views

PT-2021-2437 · Nvidia +2 · Nvidia Gpu Display Driver +2

Name of the Vulnerable Software and Affected Versions: NVIDIA GPU Display Driver for Windows and Linux, all versions Description: The issue is related to incorrect access to legacy APIs in the kernel mode layer handler for DxgkDdiEscape or IOCTL, allowing user-mode clients to access privileged...

7.8CVSS6.2AI score0.01777EPSS
Exploits0References27
Rows per page
Query Builder