CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/04/18 12:41 a.m.•12 views

CVE-2026-35465

CVE-2026-35465 affects SecureDrop Client

7.5CVSS6.1AI score0.00439EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/18 12:41 a.m.•1 views

CVE-2026-35465 SecureDrop Client has path injection in read_gzip_header_filename()

SecureDrop Client is a desktop app for journalists to securely communicate with sources and handle submissions on the SecureDrop Workstation. In versions 0.17.4 and below, a compromised SecureDrop Server can achieve code execution on the Client's virtual machine sd-app by exploiting improper...

7.5CVSS6.2AI score0.00439EPSS

CNNVD•added 2026/04/18 12:0 a.m.•7 views

securedrop-client 安全漏洞

Securedrop-client is an open-source application developed by the Freedom of the Press Foundation. Versions of Securedrop-client prior to 0.17.4 contain security vulnerabilities. These vulnerabilities stem from improper filename validation during the gzip archive extraction process. Allowing...

7.5CVSS5.9AI score0.00439EPSS

Exploits0References2

CNNVD•added 2026/04/18 12:0 a.m.•7 views

Emissary 安全漏洞

Emissary is a distributed P2P data-driven workflow framework developed by the National Security Agency. Versions of Emissary 8.42.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the Executrix.getCommand function, which inserted temporary file paths into shell...

8.8CVSS5.8AI score0.00861EPSS

Exploits1References2

Positive Technologies•added 2026/04/18 12:0 a.m.•9 views

PT-2026-33546

Name of the Vulnerable Software and Affected Versions SecureDrop Client versions prior to 0.17.5 Description Improper filename validation during gzip archive extraction allows a compromised SecureDrop Server to achieve code execution on the Client virtual machine sd-app. This occurs because the...

7.5CVSS6.2AI score0.00439EPSS

Exploits0References6

Github Security Blog•added 2026/04/17 10:33 p.m.•7 views

OpenClaw: QMD memory_get restricts reads to canonical or indexed memory paths

Summary The QMD backend memoryget read path accepted arbitrary workspace Markdown paths that were inside the workspace but outside the canonical memory locations or indexed QMD result set. Impact When the QMD backend was enabled, a caller with access to memoryget could read arbitrary .md files...

5.9AI score

Exploits0References4Affected Software1

OSV•added 2026/04/17 10:33 p.m.•7 views

GHSA-F934-5RQF-XX47 OpenClaw: QMD memory_get restricts reads to canonical or indexed memory paths

5.3CVSS5.9AI score

Exploits0References4

Github Security Blog•added 2026/04/17 10:33 p.m.•8 views

OpenClaw: Webchat media embedding enforces local-root containment for tool-result files

Summary Webchat tool-result media normalization could pass local and UNC-style file paths into the host-side media embedding path without applying the configured local-root containment policy. Impact A crafted tool-result media reference could cause the host to attempt local file reads or Windows...

6.3CVSS5.7AI score0.00264EPSS

Exploits0References10Affected Software1

OSV•added 2026/04/17 10:33 p.m.•1 views

GHSA-MR34-9552-QR95 OpenClaw: Webchat media embedding enforces local-root containment for tool-result files

6.3CVSS5.7AI score0.00264EPSS

Exploits0References10

Snyk•added 2026/04/17 10:20 p.m.•5 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the service invocation access control process. An attacker can bypass access control policies and invoke unauthorized methods by submitting specially crafted method paths containing encoded path traversal...

Access Control Bypass

Access Control Bypass

Access Control Bypass

Access Control Bypass