Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/03/25 5:7 p.m.40 views

CVE-2026-27496 n8n has In-Process Memory Disclosure in its Task Runner

n8n is an open source workflow automation platform. Prior to versions 1.123.22, 2.9.3, and 2.10.1, an authenticated user with permission to create or modify workflows could use the JavaScript Task Runner to allocate uninitialized memory buffers. Uninitialized buffers may contain residual data fro...

7.1CVSS0.00262EPSS
Exploits0References3
NVD
NVD
added 2026/02/25 11:16 p.m.12 views

CVE-2026-27577

n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, additional exploits in the expression evaluation of n8n have been identified and patched following CVE-2025-68613. An authenticated user with permission to create or modify workflows could abuse...

9.9CVSS0.1016EPSS
Exploits0References5
CVE
CVE
added 2026/02/25 10:19 p.m.36 views

CVE-2026-27577

CVE-2026-27577 concerns n8n’s expression evaluation in workflow parameters, enabling remote code execution when an authenticated user with workflow edit rights crafts expressions. The issue is the expression sandbox escape leading to unintended host command execution. Affected releases are before...

9.9CVSS5.8AI score0.1016EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/25 10:8 p.m.8 views

CVE-2026-27494 n8n has Arbitrary File Read via Python Code Node Sandbox Escape

n8n is an open source workflow automation platform. Prior to versions 2.10.1, 2.9.3, and 1.123.22, an authenticated user with permission to create or modify workflows could use the Python Code node to escape the sandbox. The sandbox did not sufficiently restrict access to certain built-in Python...

7.1CVSS5.9AI score0.00352EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/09/11 12:0 a.m.4 views

IBM多款产品 安全漏洞

IBM Fusion and others are a hybrid cloud application data platform from International Business Machines IBM. A security vulnerability exists in various IBM products that stems from the use of insecure default configurations that could lead to an attacker performing unauthorized operations. The...

9.8CVSS6.3AI score0.00351EPSS
Exploits0References2
CNNVD
CNNVD
added 2023/05/26 12:0 a.m.6 views

CKAN 安全漏洞

CKAN is an open source Dms data management system. It is used to power data centers and data portals. A security vulnerability exists in CKAN versions prior to 2.9.9, and prior to 2.10.1, which stems from DOS due to a lack of length checking for resource ids...

9.8CVSS8.3AI score0.01684EPSS
Exploits0References3
Prion
Prion
added 2022/11/18 10:15 p.m.20 views

Stack overflow

TensorFlow is an open source platform for machine learning. If FractionMaxPoolGrad is given outsize inputs rowpoolingsequence and colpoolingsequence, TensorFlow will crash. We have patched the issue in GitHub commit d71090c3e5ca325bdf4b02eb236cfb3ee823e927. The fix will be included in TensorFlow...

5CVSS8AI score0.0044EPSS
Exploits1References3Affected Software1
vulnersOsv
vulnersOsv
added 2018/10/16 11:10 p.m.5 views

net.osgiliath.framework:net.osgiliath.feature.camel (>=0.2.0 <=0.2.3), net.osgiliath.framework:net.osgiliath.feature.full (>=0.2.0 <=0.2.3) +74 more potentially affected by CVE-2015-5344 via org.apache.camel:camel-xstream (>=2.10.1 <=2.15.3)

org.apache.camel:camel-xstream MAVEN version =2.10.1, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.0, =0.2.3 and more Source cves: CVE-201...

9.8CVSS7.2AI score0.0712EPSS
Exploits0
Rows per page
Query Builder