Command Injection

Overview Affected versions of this package are vulnerable to Command Injection via the /agents/:id update endpoint and adapterConfig.workspaceStrategy.provisionCommand. An attacker can execute arbitrary OS commands by updating their agent’s configuration with a crafted provisionCommand, which is...

GHSA-7XR2-Q9VF-X4R5 OpenClaw: Symlink Traversal via IDENTITY.md appendFile in agents.create/update (Incomplete Fix for CVE-2026-32013)

Summary The patch for CVE-2026-32013 introduced symlink resolution and workspace boundary enforcement for agents.files.get and agents.files.set. However, two other handlers in the same file agents.create and agents.update still use raw fs.appendFile on the IDENTITY.md file without any symlink...

Azure File Sync Agent v22.1 Release – February 2026 (KB5080681)

Update Rollup for Azure File Sync agent version 22.1.0.0. For more details, see the associated Microsoft Knowledge Base article...

CVE-2022-31215

In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of up to 30 seconds. This affects Goverlan Reach Console before 10.5.1, Reach Server before 3.70.1,...

EUVD-2020-7820

Malware in sbrugna...

EUVD-2021-19906

Malware in sbrugna...

EUVD-2023-12453

Malicious code in bioql PyPI...

openSUSE Security Advisory (SUSE-SU-2025:02149-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2025-25558 · Tenable · Tenable Agent

Name of the Vulnerable Software and Affected Versions: Tenable Agent versions prior to 10.8.5 Description: A security issue was discovered where a non-administrative user could execute code with SYSTEM privilege on a Windows host. Recommendations: For versions prior to 10.8.5, update to version...

CVE-2023-0392

The LDAP Agent Update service with versions prior to 5.18 used an unquoted path, which could allow arbitrary code execution...

openSUSE Security Advisory (SUSE-SU-2025:1006-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Veertu Anka Build 安全漏洞

Veertu Anka Build is a centralized dashboard from Veertu. A security vulnerability exists in Veertu Anka Build version 1.42.0, which stems from an unexpected privilege escalation during a node agent update where a user with low privileges can trigger the update action...

Veertu Anka Build node agent update privilege escalation vulnerability

Talos Vulnerability Report TALOS-2024-2060 Veertu Anka Build node agent update privilege escalation vulnerability October 3, 2024 CVE Number CVE-2024-39755 SUMMARY A privilege escalation vulnerability exists in the node update functionality of Veertu Anka Build 1.42.0. A specially crafted PKG fil...

Azure File Sync Agent v17 Release - December 2023

Azure File Sync Agent v17 Release - December 2023 This article describes the improvements and issues that are fixed in the Azure File Sync Agent v17.1 release that is dated February 2024. Additionally, this article contains installation instructions for this release. Improvements and issues that...

CVE-2023-0392

The LDAP Agent Update service with versions prior to 5.18 used an unquoted path, which could allow arbitrary code execution...

CVE-2023-0392

The LDAP Agent Update service with versions prior to 5.18 used an unquoted path, which could allow arbitrary code execution...

PT-2023-16237 · Unknown · Ldap Agent Update Service

Name of the Vulnerable Software and Affected Versions: LDAP Agent Update service versions prior to 5.18 Description: The issue concerns the use of an unquoted path in the LDAP Agent Update service, which could potentially allow arbitrary code execution. Recommendations: For versions prior to 5.18...

Low: amazon-ssm-agent

Issue Overview: No CVE associated with this advisory Affected Packages: amazon-ssm-agent Issue Correction: Run dnf update amazon-ssm-agent --releasever 2023.2.20231002 or dnf update --advisory ALAS2023-2023-373 --releasever 2023.2.20231002 to update your system. More information on how to update...

PT-2023-5774 · Acronis · Acronis Agent +1

Name of the Vulnerable Software and Affected Versions: Acronis Agent versions prior to build 30600 Acronis Cyber Protect 15 versions prior to build 35979 Description: The issue is related to errors in cryptographic signature verification, allowing for local privilege escalation due to the...

CVE-2022-31215

In certain Goverlan products, the Windows Firewall is temporarily turned off upon a Goverlan agent update operation. This allows remote attackers to bypass firewall blocking rules for a time period of up to 30 seconds. This affects Goverlan Reach Console before 10.5.1, Reach Server before 3.70.1,...