CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

473 matches found

CVE•added 2026/05/11 4:46 p.m.•26 views

CVE-2026-44997

OpenClaw before 2026.4.22 is affected by a security envelope constraint bypass in ACP child sessions. The vulnerability allows restricted subagents to spawn ACP child sessions that do not inherit depth, child-count limits, control scope, or target-agent restrictions, potentially enabling privileg...

4.3CVSS5.8AI score0.00221EPSS

Exploits0References3Affected Software1

Microsoft KB•added 2026/03/10 2:0 p.m.•11 views

March 10, 2026—KB5079466 (OS Build 28000.1719)

March 10, 2026—KB5079466 OS Build 28000.1719 This security update for Windows 11, version 26H1 KB5079466, includes the latest security improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional...

8.8CVSS7AI score0.04491EPSS

Exploits11

OSV•added 2026/03/03 9:31 p.m.•5 views

GHSA-474H-PRJG-MMW3 OpenClaw: Sandboxed sessions_spawn(runtime="acp") bypassed sandbox inheritance and allowed host ACP initialization

Summary Sandboxed sessionsspawnruntime="acp" could bypass sandbox inheritance and initialize host-side ACP runtime. The fix now fail-closes ACP spawn from sandboxed requester sessions and rejects sandbox="require" for runtime="acp". Affected Packages / Versions - Package: openclaw npm - Latest...

8CVSS5.9AI score

Exploits0References4

Packet Storm•added 2025/12/03 12:0 a.m.•251 views

📄 Microsoft Windows 11 build 10.0.22631.6199 Privilege Escalation

Microsoft Windows 11 build 10.0.22631.6199 proof of concept tool that implements a notorious local privilege escalation technique on Windows. The code implements a task scheduler/DLL sideloading attack to achieve UAC bypass / privilege escalation by forcing the trusted SilentCleanup task to load...

7.4AI score

Exploits0

The Hacker News•added 2025/11/19 11:55 a.m.•5 views

Application Containment: How to Use Ringfencing to Prevent the Weaponization of Trusted Software

The challenge facing security leaders is monumental: Securing environments where failure is not an option. Reliance on traditional security postures, such as Endpoint Detection and Response EDR to chase threats after they have already entered the network, is fundamentally risky and contributes...

6.8AI score

Exploits0

CNNVD•added 2025/11/06 12:0 a.m.•5 views

编号撤回

WatchGuard Firebox is a WatchGuard company that provides comprehensive network security services, from traditional IPS and GAV to web site/application control and malicious software prevention. This CVE number has been withdrawn...

6.8AI score0.00043EPSS

Exploits3References2