Lucene search
+L

85 matches found

NVD
NVD
added 2026/06/30 11:17 p.m.7 views

CVE-2026-14091

Use after free in DevTools in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Low...

8.8CVSS0.0028EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/24 8:52 p.m.20 views

CVE-2026-33235 AutoGPT: Denial of Service (DoS) via Resource Exhaustion in text templating features

AutoGPT is a workflow automation platform for creating, deploying, and managing continuous artificial intelligence agents. In versions prior to 0.6.52, the Fill Text Template block is vulnerable to a Denial of Service DoS attack. While the backend implements a SandboxedEnvironment to prevent...

7.7CVSS0.0031EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/19 2:46 p.m.7 views

Arbitrary Argument Injection

Overview bedrock-agentcore is an An SDK for using Bedrock AgentCore Affected versions of this package are vulnerable to Arbitrary Argument Injection via the installpackages function. An attacker can execute arbitrary commands within the sandboxed environment or redirect package resolution to a...

8.4CVSS6AI score0.00302EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/16 12:32 p.m.9 views

CVE-2026-6045

A flaw was found in LibreOffice. A heap buffer overflow exists when importing EMF+ graphics, which may be embedded in documents. An attacker could exploit this by convincing a user to open a specially crafted document. This could lead to denial of service or memory corruption, potentially allowin...

6.9CVSS6AI score0.0012EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/16 6:57 a.m.10 views

CVE-2026-6047

A flaw was found in LibreOffice. This vulnerability, a heap buffer overflow, occurs when processing specially crafted OOXML Office Open XML documents. An attacker could create a malicious document that, when opened, causes a write beyond the intended memory boundary during the replaying of deferr...

6.9CVSS5.4AI score0.0012EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.23 views

PT-2026-46122

Name of the Vulnerable Software and Affected Versions Docling versions prior to 2.91.0 Description The LaTeX backend fails to validate path containment when handling the includegraphics, input, and include commands. This allows attackers to use path traversal sequences, such as ../../../etc/passw...

5.5CVSS5.9AI score0.00163EPSS
Exploits0References9
OSV
OSV
added 2026/05/29 5:33 p.m.9 views

GHSA-V6MX-MF47-R5WG vm2 has a Sandbox Escape issue

Summary By combining Buffer.call.call.lookupGetter, Buffer, "proto", Buffer.call.call.lookupSetter, Buffer, "proto", and Node.js's ERRINVALIDARGTYPE Error, the host's TypeError constructor can be obtained, which allows the escape from the sandbox. This allows attackers to run arbitrary code. PoC ...

10CVSS5.9AI score0.004EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/04 9:18 a.m.11 views

CVE-2026-6534

A flaw was found in Wireshark. A remote attacker could exploit this vulnerability by crafting a malicious USB Human Interface Device HID protocol packet. This could lead to an infinite loop in the dissector, causing a denial of service DoS condition, making the application unresponsive. Mitigatio...

5.5CVSS5.8AI score0.0018EPSS
Exploits1References5
Snyk
Snyk
added 2026/04/18 12:46 a.m.2 views

Incomplete List of Disallowed Inputs

Overview flowise-components is a Flowiseai Components Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs in the run method of the AirtableAgents class, which evaluates LLM-generated Python scripts in a non-sandboxed environment. An attacker can execute...

9.8CVSS6.3AI score0.00464EPSS
Exploits1References2
OSV
OSV
added 2026/04/16 9:28 p.m.3 views

GHSA-33QF-Q99X-WPM8 Home Assistant Command-line Interface: Handling of user-supplied Jinja2 templates

Impact Up to 1.0.0 of home-assitant-cli or hass-cli for short an unrestricted environment was used to handle Jninja2 templates instead of a sandboxed one. The user-supplied input within Jinja2 templates was rendered locally with no restrictions. This gave users access to Python's internals and...

5.6CVSS6.3AI score0.00103EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/16 9:28 p.m.7 views

Home Assistant Command-line Interface: Handling of user-supplied Jinja2 templates

Impact Up to 1.0.0 of home-assitant-cli or hass-cli for short an unrestricted environment was used to handle Jninja2 templates instead of a sandboxed one. The user-supplied input within Jinja2 templates was rendered locally with no restrictions. This gave users access to Python's internals and...

5.6CVSS6.3AI score0.00103EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/13 5:38 a.m.5 views

CVE-2026-4152

A flaw was found in GIMP. A remote attacker could exploit this by tricking a user into opening a specially crafted JP2 JPEG 2000 file. This flaw is due to a heap-based buffer overflow during JP2 file parsing, which allows for arbitrary code execution. Successful exploitation enables the attacker ...

7.8CVSS7.6AI score0.00744EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/08 12:0 a.m.6 views

PT-2026-31434

InvenTree is an Open Source Inventory Management System. From 1.2.3 to 1.2.6, the fix for CVE-2026-27629 upgraded the PART NAME FORMAT validator to use jinja2.sandbox.SandboxedEnvironment. However, the actual renderer in part/helpers.py was not updated and still uses the non-sandboxed...

8.8CVSS6.2AI score0.00259EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/06 3:17 p.m.3 views

CVE-2026-5704

A flaw was found in tar. A remote attacker could exploit this vulnerability by crafting a malicious archive, leading to hidden file injection with fully attacker-controlled content. This bypasses pre-extraction inspection mechanisms, potentially allowing an attacker to introduce malicious files...

5.5CVSS5.9AI score0.0043EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/04/01 5:3 p.m.7 views

CVE-2026-34172

Giskard is an open-source Python library for testing and evaluating agentic systems. Prior to versions 0.3.4 and 1.0.2b1, ChatWorkflow.chatmessage passes its string argument directly as a Jinja2 template source to a non-sandboxed Environment. A developer who passes user input to this method enabl...

8.8CVSS6.3AI score0.00611EPSS
Exploits1References1
OSV
OSV
added 2026/03/27 10:17 p.m.11 views

GHSA-FRV4-X25R-588M Giskard Agents have Server-side template injection via ChatWorkflow.chat() using non-sandboxed Jinja2 Environment

Summary ChatWorkflow.chatmessage passes its string argument directly as a Jinja2 template source to a non-sandboxed Environment. A developer who passes user input to this method enables full remote code execution via Jinja2 class traversal. The method name chat and parameter name message naturall...

7.7CVSS6.5AI score0.00611EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2026/03/27 10:17 p.m.10 views

Giskard Agents have Server-side template injection via ChatWorkflow.chat() using non-sandboxed Jinja2 Environment

Summary ChatWorkflow.chatmessage passes its string argument directly as a Jinja2 template source to a non-sandboxed Environment. A developer who passes user input to this method enables full remote code execution via Jinja2 class traversal. The method name chat and parameter name message naturall...

8.8CVSS6.5AI score0.00611EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2026/03/27 9:13 p.m.7 views

CVE-2026-33941

Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Handlebars CLI precompiler bin/handlebars / lib/precompiler.js concatenates user-controlled strings — template file names and several CLI options — directly into the JavaScript it...

8.2CVSS5.6AI score0.00291EPSS
Exploits1
Snyk
Snyk
added 2026/03/27 6:22 p.m.2 views

Improper Encoding or Escaping of Output

Overview org.webjars.npm:handlebars is an extension to the Mustache templating language. Affected versions of this package are vulnerable to Improper Encoding or Escaping of Output through the CLI precompiler in lib/precompiler.js. An attacker can execute arbitrary JavaScript in the generated...

8.4CVSS6AI score0.00291EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.5 views

PT-2026-28603

Name of the Vulnerable Software and Affected Versions Giskard versions prior to 0.3.4 Giskard versions prior to 1.0.2b1 Description Giskard, a Python library for testing agentic systems, contains a flaw where the ChatWorkflow.chat method directly uses a string argument as a Jinja2 template source...

8.8CVSS6.7AI score0.00611EPSS
Exploits1References11
Rows per page
Query Builder