Lucene search
+L

169 matches found

Snyk
Snyk
added 2026/03/09 7:54 p.m.3 views

Protection Mechanism Failure

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Protection Mechanism Failure via the /acp spawn command handler. An attacker can escalate privileges by initializing host-side ACP sessions from a sandboxed context when ACP is enabled an...

7.1CVSS5.8AI score0.00104EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2026/02/18 12:0 a.m.5 views

The vulnerability of the Messaging System component of Mozilla Firefox and the email client Thunderbird allows a hacker to execute arbitrary code.

The vulnerability of the Messaging System component in Mozilla Firefox and the email client Thunderbird is related to a flaw in data protection mechanisms. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

10CVSS7.6AI score0.00306EPSS
Exploits0References9Affected Software3
EUVD
EUVD
added 2026/01/21 4:26 p.m.5 views

EUVD-2026-3662

A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...

5.3CVSS5.6AI score0.00309EPSS
Exploits0References2
CVE
CVE
added 2026/01/21 4:26 p.m.19 views

CVE-2026-20080

CVE-2026-20080 affects Cisco IEC6400 Wireless Backhaul Edge Compute Software. The SSH service can be flooded by unauthenticated remote attackers, causing the SSH server to become unresponsive while other operations stay stable. Reported by Cisco and mirrored in multiple feeds, the issue arises fr...

5.3CVSS5.6AI score0.00309EPSS
Exploits0References1
Cisco
Cisco
added 2026/01/21 4:0 p.m.9 views

Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability

A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...

5.3CVSS5.6AI score0.00309EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.7 views

MiracleLinux 3 : kernel-2.6.18-8.17AXS3 (AXSA:2008-82:04)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-82:04 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. CVE-2007-5498: The Xen hypervisor block backend driver for Linux...

7.8CVSS7.1AI score0.04934EPSS
Exploits14References18
Cvelist
Cvelist
added 2025/11/17 4:57 p.m.13 views

CVE-2025-58410 GPU DDK - Multiple calls into PhysmemGEMPrimeExport can inherit write access permission for an existing read-only dma_buf import PMR

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permissions to memory buffers exported as read-only. This is caused by improper handling of the memory protections for the buffer resource...

0.0027EPSS
Exploits0References1
OSV
OSV
added 2025/11/05 6:8 p.m.6 views

DRUPAL-CONTRIB-2025-115

The Email TFA module provides additional email-based two-factor authentication for Drupal logins. In certain scenarios, the module does not fully protect all login mechanisms as expected. This issue is mitigated by the fact that an attacker must already have valid user credentials username and...

5.4CVSS7AI score0.002EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/05 4:32 p.m.3 views

CVE-2025-20305

A vulnerability in the web-based management interface of Cisco ISE could allow an authenticated, remote attacker to obtain sensitive information from an affected device. This vulnerability exists because certain files lack proper data protection mechanisms. An attacker with read-only Administrato...

4.3CVSS6AI score0.00278EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/10/27 12:0 a.m.4 views

The vulnerability of the dma-direct component in the Linux operating system’s kernel allows a hacker to gain access to confidential information.

The vulnerability of the dma-direct component in the Linux operating system’s kernel is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow an attacker to access confidential information...

5.5CVSS6.7AI score0.00215EPSS
Exploits0References10Affected Software9
Cvelist
Cvelist
added 2025/10/16 10:3 a.m.13 views

CVE-2025-58079

Improper Protection of Alternate Path CWE-424 in the AppSuite of desknet's NEO V4.0R1.0 to V9.0R2.0 allows an attacker to create malicious AppSuite applications...

5.3CVSS0.00271EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-4691

Malware in sbrugna...

5.8CVSS6.4AI score0.01034EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-4613

Malware in sbrugna...

3.3CVSS6AI score0.0153EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2007-1514

Malware in sbrugna...

6.8CVSS6.4AI score0.00779EPSS
Exploits1References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2021-7740

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00196EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/09/19 12:0 a.m.3 views

Vulnerability of the Graphics component: Canvas2D in Mozilla Firefox, Firefox ESR, and the email client Thunderbird, which allows attackers to escalate their privileges.

The vulnerability of the Canvas2D component in Mozilla Firefox, Firefox ESR, and the email client Thunderbird is related to a data protection mechanism flaw. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

7.5CVSS7AI score0.00329EPSS
Exploits0References20Affected Software7
Vulnrichment
Vulnrichment
added 2025/08/12 4:59 p.m.3 views

CVE-2025-24835

Protection mechanism failure in the IntelR Graphics Driver for the IntelR ArcTM B-Series graphics before version 32.0.101.6737 may allow an authenticated user to potentially enable denial of service via local access...

6.5CVSS6.8AI score0.00134EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/08/01 12:0 a.m.9 views

The vulnerability of the Mozilla Firefox browser on Android operating systems relates to a violation of data protection mechanisms, allowing attackers to circumvent existing security restrictions.

The vulnerability of the Mozilla Firefox browser on Android operating systems is related to a flaw in the data protection mechanism. Exploiting this vulnerability allows an attacker to bypass existing security restrictions remotely...

5CVSS5.4AI score0.00423EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.8 views

The vulnerability of Juniper Networks’ Junos OS operating systems arises from a flaw in the data protection mechanism, allowing attackers to circumvent existing security restrictions.

The vulnerability of Juniper Networks’ Junos OS lies in the compromised data protection mechanism. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

5.8CVSS5.4AI score0.00318EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/06/30 8:15 p.m.9 views

CVE-2025-52996

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. In versions 2.32.0 and prior, the implementation of password protected links is error-prone, resulting in potential unprotected sharing of a file...

4.3CVSS0.00312EPSS
Exploits1References3
Rows per page
Query Builder