Lucene search
K

771 matches found

CVE
CVE
added yesterday7 views

CVE-2026-8314

CVE-2026-8314 affects Rockwell Automation Arena Simulation’s siman.exe component. The issue is a memory corruption/out-of-bounds write caused by inadequate validation of user-supplied data, enabling code execution in the user’s context when a malicious file is opened. The CVSS v4.0 score is 7.0 (...

7CVSS6.3AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-8313

The provided data describes CVE-2026-8313 affecting Arena® Simulation, specifically a memory corruption vulnerability in the linker.exe (Siman) component. The issue arises from improper validation of user-supplied data, leading to an out-of-bounds write. An attacker could potentially execute arbi...

7CVSS6.3AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-8312

The CVE-2026-8312 entry concerns Arena® Simulation’s expmt.exe (Siman) component. It describes a memory corruption vulnerability caused by improper validation of user-supplied data, leading to an out-of-bounds write. The documented impact is arbitrary code execution in the context of the current ...

7CVSS6.3AI score
Exploits0References1
CVE
CVE
added yesterday7 views

CVE-2026-8085

The CVE concerns Arena® Simulation, specifically memory corruption in the model.exe (Siman) component caused by improper validation of user-supplied data, leading to an out-of-bounds write. Exploitation could allow arbitrary code execution in the context of the current process when a user opens a...

7CVSS6.3AI score
Exploits0References1
NVD
NVD
added 6 days ago8 views

CVE-2026-59225

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.12 before 0.10.0, an authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model through task endpoints such as /api/v1/tasks/moa/completions. The...

6.3CVSS0.00211EPSS
Exploits0References4
Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-59225 Open WebUI: Arena task endpoints can bypass underlying model access controls

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.12 before 0.10.0, an authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model through task endpoints such as /api/v1/tasks/moa/completions. The...

5.4CVSS0.00211EPSS
Exploits0References4
CVE
CVE
added 6 days ago14 views

CVE-2026-59225

Open WebUI vulnerability CVE-2026-59225 affects versions 0.8.12 up to before 0.10.0. An authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model via task endpoints like /api/v1/tasks/moa/completions. The normal chat flow re-checks submodel ac...

6.3CVSS6AI score0.00211EPSS
Exploits0References4Affected Software1
OSV
OSV
added 6 days ago3 views

CVE-2026-59225 Open WebUI: Arena task endpoints can bypass underlying model access controls

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.12 before 0.10.0, an authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model through task endpoints such as /api/v1/tasks/moa/completions. The...

5.4CVSS6.1AI score0.00211EPSS
Exploits0References6
EUVD
EUVD
added 6 days ago8 views

EUVD-2026-42639

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. From 0.8.12 before 0.10.0, an authenticated non-admin user with read access to an arena wrapper model can reach a restricted underlying model through task endpoints such as /api/v1/tasks/moa/completions. The...

5.4CVSS6AI score0.00211EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 6 days ago7 views

PT-2026-56888

Name of the Vulnerable Software and Affected Versions Open WebUI versions 0.8.12 through 0.9.x Description An authenticated non-admin user with read access to an arena wrapper model can access a restricted underlying model. This occurs because task endpoints, such as...

6.3CVSS6.2AI score0.00211EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-53031

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds...

7.8CVSS6AI score0.00128EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/25 6:17 p.m.5 views

CVE-2026-53031

A flaw was found in the Linux kernel. The arenaallocpages function within the Berkeley Packet Filter BPF subsystem does not properly validate the nodeid parameter. A local attacker could exploit this vulnerability by supplying an invalid nodeid, which is then used without bounds checking during...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38899

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds checking. Validate nodeid before passing it down the allocation chain in...

5.7AI score0.00128EPSS
Exploits0References5
NVD
NVD
added 2026/06/24 5:17 p.m.5 views

CVE-2026-53031

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds checking. Validate nodeid before passing it down the allocation chain in...

7.8CVSS0.00128EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/24 4:29 p.m.28 views

CVE-2026-53031 bpf: Validate node_id in arena_alloc_pages()

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds checking. Validate nodeid before passing it down the allocation chain in...

7.8CVSS0.00128EPSS
Exploits0References4
CVE
CVE
added 2026/06/24 4:29 p.m.5 views

CVE-2026-53031

The CVE-2026-53031 issue affects the Linux kernel BPF unit: arena_alloc_pages() accepts a plain int node_id and forwards it through the allocation chain without bounds checks. A fix validates node_id before passing it down, mitigating potential memory corruption that could lead to DoS or instabil...

7.8CVSS5.7AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2026/06/24 4:29 p.m.2 views

CVE-2026-53031 bpf: Validate node_id in arena_alloc_pages()

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate nodeid in arenaallocpages arenaallocpages accepts a plain int nodeid and forwards it through the entire allocation chain without any bounds checking. Validate nodeid before passing it down the allocation chain in...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-51925

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the BPF Berkeley Packet Filter subsystem where the arena alloc pages function accepts an integer node id and forwards it through the allocation chain without performin...

7.8CVSS5.8AI score0.00128EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:32 p.m.9 views

CVE-2026-6608

A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the function addtext of the component Arena Side-by-Side View Handler. The manipulation results in incorrect control flow. The attack can be launched remotely. The exploit is now public and may be used. The root cause was...

6.9CVSS5.5AI score0.00308EPSS
Exploits0References1
CVE
CVE
added 2026/06/04 5:33 p.m.48 views

CVE-2026-48040

The CVE-2026-48040 entry concerns netty-incubator-codec.bhttp prior to 0.0.22.Final, where a fallback path for direct ByteBufs is taken when Unsafe is unavailable. Under these conditions, an unauthenticated network attacker can trigger cryptographic operations via crafted OHTTP requests, causing ...

9.1CVSS5.9AI score0.00174EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder