Lucene search
K

86 matches found

vulnrichment
vulnrichment
added 2026/05/15 7:26 p.m.8 views

CVE-2026-44564 Open WebUI: Read-Only Users Can Modify Collaborative Documents via Socket.IO

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, the ydoc:document:update Socket.IO event handler checks whether the sender is a member of the document's Socket.IO room line 678 but does not verify that the sender has write...

5.4CVSS5.8AI score0.0022EPSS
Exploits1References1
cve
cve
added 2026/05/15 7:26 p.m.26 views

CVE-2026-44564

Open WebUI (self-hosted offline AI platform) contains a vulnerability in the ydoc:document:update Socket.IO handler that allows read-only users to modify in-memory Yjs documents. The handler validates room membership but does not verify write permission, and read-only users join the document room...

5.4CVSS5.8AI score0.0022EPSS
Exploits1References1Affected Software1
osv
osv
added 2026/05/08 8:0 p.m.12 views

GHSA-VRFH-RJ4Q-RMHR Read-Only Open WebUI Users Can Modify Collaborative Documents via Socket.IO

Read-Only Users Can Modify Collaborative Documents via Socket.IO Affected Component Socket.IO collaborative document editing handler: - backend/openwebui/socket/main.py lines 667-721, ydoc:document:update handler Affected Versions Current main branch and likely all versions with collaborative not...

5.4CVSS5.5AI score0.0022EPSS
Exploits1References3
cve
cve
added 2026/04/03 10:10 p.m.8 views

CVE-2017-20238

Hirschmann Industrial HiVision (versions 06.0.00 and 07.0.00 before 06.0.06 and 07.0.01) contains an improper authorization vulnerability that lets read-only users gain write access to managed devices by bypassing access controls. The issue affects multiple interfaces, including the web UI and SN...

7.1CVSS5.9AI score0.00237EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/04/03 10:10 p.m.1 views

CVE-2017-20238

Hirschmann Industrial HiVision versions 06.0.00 and 07.0.00 prior to 06.0.06 and 07.0.01 contains an improper authorization vulnerability that allows read-only users to gain write access to managed devices by bypassing access control mechanisms. Attackers can exploit alternative interfaces such a...

7.1CVSS5.9AI score0.00237EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2026/04/03 10:10 p.m.16 views

CVE-2017-20238 Hirschmann Industrial HiVision Improper Authorization Privilege Escalation

Hirschmann Industrial HiVision versions 06.0.00 and 07.0.00 prior to 06.0.06 and 07.0.01 contains an improper authorization vulnerability that allows read-only users to gain write access to managed devices by bypassing access control mechanisms. Attackers can exploit alternative interfaces such a...

7.1CVSS0.00237EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/04/03 12:0 a.m.10 views

Belden Hirschmann Industrial HiVision 授权问题漏洞

Belden Hirschmann Industrial HiVision is an industrial network management software platform developed by the American company Belden. Versions of Belden Hirschmann Industrial HiVision prior to 06.0.06 and 07.0.01 contained vulnerabilities related to authorization. These vulnerabilities stemmed fr...

7.1CVSS5.8AI score0.00237EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/04/03 12:0 a.m.8 views

PT-2026-30261

Hirschmann Industrial HiVision versions 06.0.00 and 07.0.00 prior to 06.0.06 and 07.0.01 contains an improper authorization vulnerability that allows read-only users to gain write access to managed devices by bypassing access control mechanisms. Attackers can exploit alternative interfaces such a...

7.1CVSS5.9AI score0.00237EPSS
Exploits0References3
cvelist
cvelist
added 2026/03/24 7:15 p.m.22 views

CVE-2026-33330 FileRise ONLYOFFICE integration allows read-only users to overwrite files via forged save callback

FileRise is a self-hosted web file manager / WebDAV server. Prior to version 3.10.0, a broken access control issue in FileRise's ONLYOFFICE integration allows an authenticated user with read-only access to obtain a signed save callbackUrl for a file and then directly forge the ONLYOFFICE save...

7.1CVSS0.00377EPSS
Exploits1References3
osv
osv
added 2026/03/23 6:16 p.m.3 views

GO-2026-4795 Vikunja read-only users can delete project background images via broken object-level authorization in code.vikunja.io/api

Vikunja read-only users can delete project background images via broken object-level authorization in code.vikunja.io/api. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positiv...

5.4CVSS5.8AI score0.00211EPSS
Exploits1References3
gitlab
gitlab
added 2026/03/20 12:0 a.m.7 views

Vikunja read-only users can delete project background images via broken object-level authorization

The DELETE /api/v1/projects/:project/background endpoint checks CanRead permission instead of CanUpdate, allowing any user with read-only access to a project to permanently delete its background image...

5.4CVSS5.8AI score0.00211EPSS
Exploits1References5Affected Software1
nvd
nvd
added 2026/02/25 3:16 a.m.9 views

CVE-2026-27608

Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42 through 9.0.0-alpha.7, the AI Agent API endpoint POST /apps/:appId/agent does not enforce authorization. Authenticated users scoped to specific apps can access any other app's agent endpoint by...

9.3CVSS0.0022EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/02/25 12:0 a.m.11 views

Cisco UCS Manager Software 安全漏洞

Cisco UCS Manager Software is a device management software developed by the American company Cisco. There is a security vulnerability in Cisco UCS Manager Software. This vulnerability stems from the unnecessary permissions assigned at the NX-OS CLI permission level, which may allow attackers with...

4.4CVSS5.8AI score0.00095EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/02/25 12:0 a.m.7 views

PT-2026-21836

Name of the Vulnerable Software and Affected Versions Parse Dashboard versions 7.3.0-alpha.42 through 9.0.0-alpha.7 Description Parse Dashboard, a standalone dashboard for managing Parse Server apps, contains an issue where the AI Agent API endpoint POST /apps/:appId lacks proper authorization...

9.3CVSS5.9AI score0.0022EPSS
Exploits0References11
ptsecurity
ptsecurity
added 2026/02/25 12:0 a.m.46 views

PT-2026-21948

Name of the Vulnerable Software and Affected Versions Cisco UCS Manager Software affected versions not specified Description A flaw exists in the NX-OS CLI privilege levels of Cisco UCS Manager Software that could allow an authenticated, local attacker with read-only privileges to modify files an...

4.4CVSS5.2AI score0.00095EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/02/24 12:0 a.m.18 views

Devolutions Server 安全漏洞

Devolutions Server is an application system developed by the Canadian company Devolutions. It provides a fully functional solution for shared accounts and password management. Versions of Devolutions Server prior to 2025.3.14.0 contained security vulnerabilities. These vulnerabilities stemmed fro...

6.5CVSS5.8AI score0.00301EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/02/13 1:30 a.m.5 views

CVE-2026-26010

OpenMetadata is a unified metadata platform. Prior to 1.11.8, calls issued by the UI against /api/v1/ingestionPipelines leak JWTs used by ingestion-bot for certain services Glue / Redshift / Postgres. Any read-only user can gain access to a highly privileged account, typically which has the...

7.6CVSS5.5AI score0.00331EPSS
Exploits1References1
cnnvd
cnnvd
added 2026/02/11 12:0 a.m.7 views

OpenMetadata 安全漏洞

OpenMetadata is an open-source platform for discovery, observability, and governance, supported by a central metadata storage library, deep lineage, and seamless team collaboration. There were security vulnerabilities in versions of OpenMetadata prior to 1.11.8. These vulnerabilities stemmed from...

7.6CVSS7.1AI score0.00331EPSS
Exploits1References2
cnnvd
cnnvd
added 2026/02/10 12:0 a.m.7 views

Fortinet FortiAuthenticator 安全漏洞

Fortinet FortiAuthenticator is a centralized user identity management solution provided by the American company Fortinet. Vulnerabilities exist in versions 6.6.0 to 6.6.6, 6.5 all versions, 6.4 all versions, and 6.3 all versions of FortiAuthenticator. These vulnerabilities stem from the lack of...

7.2CVSS5.8AI score0.00336EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/02/07 9:58 p.m.5 views

CVE-2026-25565

WeKan versions prior to 8.19 contain an authorization vulnerability where certain card update API paths validate only board read access rather than requiring write permission. This can allow users with read-only roles to perform card updates that should require write access...

7.1CVSS5.3AI score0.00277EPSS
Exploits0References4
Rows per page
Query Builder