Lucene search
K

99 matches found

EUVD
EUVD
added last week7 views

EUVD-2026-41411

Use of Default Cryptographic Key vulnerability in Erlang/OTP ssl DTLS server allows predictable DTLS cookie computation during the startup window, enabling source address verification bypass. On DTLS server startup, dtlsserverconnection:initialhello/3 initializes previouscookiesecret to the empty...

6.3CVSS5.8AI score0.00243EPSS
Exploits0References5
Snyk
Snyk
added 2026/06/19 8:46 p.m.4 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview CoreWCF.NetNamedPipe is a port of the service side of Windows Communication Foundation WCF to .NET Core. The goal of this project is to enable existing WCF services to move to .NET Core. Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition v...

7.3CVSS5.9AI score
Exploits0References2
NVD
NVD
added 2026/06/19 3:16 p.m.13 views

CVE-2020-37252

Realtek Audio Service 1.0.0.55 contains an unquoted service path vulnerability in RtkAudioService64.exe that allows local attackers to escalate privileges by injecting malicious code. Attackers can place executable files in the unquoted service path directory to execute arbitrary code with...

8.5CVSS0.00121EPSS
Exploits0References3
NVD
NVD
added 2026/06/19 3:16 p.m.9 views

CVE-2020-37250

TFTP Broadband 4.3.0.1465 contains an unquoted service path vulnerability in the tftpt.exe service binary that allows local attackers to execute arbitrary code with system privileges. Attackers can place a malicious executable in the Program Files directory path that will be executed during servi...

8.5CVSS0.00119EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:16 p.m.5 views

CVE-2016-20092

NetDrive 2.6.12 contains an unquoted service path vulnerability in the Netdrive2ServiceNetdrive2 service that allows local users to execute arbitrary code with SYSTEM privileges. Attackers can insert malicious executables in the system root path that will be executed during service startup or...

8.5CVSS6.2AI score0.0012EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.14 views

PT-2026-50916

Name of the Vulnerable Software and Affected Versions RealTimes Desktop Service version 18.1.4 Description An unquoted service path exists in the rpdsvc.exe binary. This allows local attackers to escalate privileges by placing malicious executables in unquoted path directories, which are then...

8.5CVSS5.9AI score0.00119EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/16 3:25 p.m.6 views

CVE-2020-37231

Privacy Drive 3.17.0 contains an unquoted service path vulnerability in the pdsvc.exe service binary that allows local attackers to escalate privileges by exploiting the service startup process. Attackers can place malicious executables in the unquoted path directories to execute arbitrary code...

8.5CVSS6.2AI score0.0012EPSS
Exploits0References4
NVD
NVD
added 2026/05/11 5:16 p.m.23 views

CVE-2026-31251

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its gRPC server component. When the server starts, it loads the speech synthesis model from a user-specified directory using torch.load without enabling the...

7.3CVSS0.00218EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/11 12:0 a.m.33 views

CVE-2026-31251

CosyVoice thru commit 6e01309e01bc93bbeb83bdd996b1182a81aaf11e 2025-30-21 contains an insecure deserialization vulnerability CWE-502 in its gRPC server component. When the server starts, it loads the speech synthesis model from a user-specified directory using torch.load without enabling the...

0.00218EPSS
Exploits0References2
NVD
NVD
added 2026/04/28 12:16 a.m.5 views

CVE-2026-40977

When an application is configured to use ApplicationPidFileWriter, a local attacker with write access to the PID file's location can corrupt one file on the host each time the application is started. Affected: Spring Boot 4.0.0–4.0.5 fix 4.0.6, 3.5.0–3.5.13 fix 3.5.14, 3.4.0–3.4.15 fix 3.4.16,...

6.7CVSS0.00112EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.8 views

VMware Spring Boot 后置链接漏洞

VMware Spring Boot is an open-source framework developed by the American company VMware. Vulnerabilities exist in versions 4.0.0 to 4.0.5, 3.5.0 to 3.5.13, 3.4.0 to 3.4.15, 3.3.0 to 3.3.18, and 2.7.0 to 2.7.32 of VMware Spring Boot. These vulnerabilities stem from issues with PID files and symbol...

6.7CVSS5.8AI score0.00112EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/20 11:8 p.m.5 views

EUVD-2026-23998

OpenClaw before 2026.3.28 loads the current working directory .env file before trusted state-dir configuration, allowing environment variable injection. Attackers can place a malicious .env file in a repository or workspace to override runtime configuration and security-sensitive environment...

8.6CVSS5.8AI score0.0013EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/20 11:8 p.m.5 views

CVE-2026-41294 OpenClaw < 2026.3.28 - Environment Variable Injection via CWD .env File

OpenClaw before 2026.3.28 loads the current working directory .env file before trusted state-dir configuration, allowing environment variable injection. Attackers can place a malicious .env file in a repository or workspace to override runtime configuration and security-sensitive environment...

8.6CVSS5.8AI score0.0013EPSS
Exploits0References2
CVE
CVE
added 2026/04/20 11:8 p.m.18 views

CVE-2026-41294

OpenClaw is affected by CVE-2026-41294: versions before 2026.3.28 load the current working directory’s .env file during startup before trusted state-dir configuration, allowing environment variable injection that can override runtime configuration and security-sensitive environment settings. The ...

8.6CVSS5.8AI score0.0013EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/18 7:22 a.m.4 views

CVE-2026-6482

The Rapid7 Insight Agent versions 4.1.0.2 is vulnerable to a local privilege escalation attack that allows users to gain SYSTEM level control of a Windows host. Upon startup the agent service attempts to load an OpenSSL configuration file from a non-existent directory that is writable by standard...

9.3CVSS5.9AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2026/04/06 6:16 p.m.10 views

PYSEC-2026-72

Kedro is a toolbox for production-ready data science. Prior to 1.3.0, Kedro allows the logging configuration file path to be set via the KEDROLOGGINGCONFIG environment variable and loads it without validation. The logging configuration schema supports the special key, which enables arbitrary...

9.8CVSS6.6AI score0.00714EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.8 views

PT-2026-33861

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.28 Description An environment variable injection issue occurs because the software loads the .env file from the current working directory before the trusted state-dir configuration. This allows untrusted...

9.6CVSS5.7AI score0.0013EPSS
Exploits0References14
Cvelist
Cvelist
added 2026/03/11 6:23 p.m.29 views

CVE-2019-25474 Easy MP3 Downloader 4.7.8.8 Denial of Service Buffer Overflow

Easy MP3 Downloader 4.7.8.8 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long unlock code. Attackers can generate a file containing 6000 'A' characters and paste the contents into the Unlock Code field during application...

6.9CVSS0.00142EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/02/19 11:16 p.m.6 views

CVE-2026-26959

ADB Explorer is a fluent UI for ADB on Windows. Versions 0.9.26020 and below fail to validate the integrity or authenticity of the ADB binary path specified in the ManualAdbPath setting before executing it, allowing arbitrary code execution with the privileges of the current user. An attacker can...

7.8CVSS6.5AI score0.00175EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/02/15 10:48 a.m.5 views

EUVD-2025-206902

There is a misconfiguration vulnerability inside the Infotainment ECU manufactured by BOSCH. The vulnerability happens during the startup phase of a specific systemd service, and as a result, the following developer features will be activated: the disabled firewall and the launched SSH server...

6.8CVSS5.5AI score0.00232EPSS
Exploits0References3
Rows per page
Query Builder