Lucene search
K

9 matches found

Cvelist
Cvelist
added 2026/06/12 9:56 p.m.27 views

CVE-2026-53822 OpenClaw < 2026.5.18 - Command Argument Modification via Shell Wrapper Between Approval and Execution

OpenClaw before 2026.5.18 contains a command injection vulnerability where shell wrapper argv could change between approval and execution. Attackers can rebuild command arguments after allowlist approval to execute unapproved command shapes, potentially bypassing security controls...

8.8CVSS0.00982EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.4 views

The vulnerability in the Git GUI graphical user interface relates to the insertion or modification of arguments, allowing attackers to create or overwrite arbitrary files.

The vulnerability of the Git GUI graphical user interface is related to the implementation or modification of arguments. Exploiting this vulnerability allows an attacker to create or overwrite arbitrary files...

8.5CVSS7.4AI score0.00296EPSS
Exploits0References10Affected Software5
NVD
NVD
added 2025/02/26 7:1 a.m.14 views

CVE-2022-49264

In the Linux kernel, the following vulnerability has been resolved: exec: Force single empty string when argv is empty Quoting1 Ariadne Conill: "In several other operating systems, it is a hard requirement that the second argument to execve2 be the name of a program, thus prohibiting a scenario...

5.5CVSS0.00276EPSS
Exploits0References9
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.8 views

The vulnerability of the git-upload-pack method of the go-git library allows a perpetrator to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the git-upload-pack method in the go-git library is related to the implementation or modification of arguments. Exploiting this vulnerability could allow a malicious actor to influence the confidentiality, integrity, and accessibility of the protected information...

10CVSS6.9AI score0.0124EPSS
Exploits0References5Affected Software10
BDU FSTEC
BDU FSTEC
added 2023/12/21 12:0 a.m.11 views

The vulnerability of the OpenSSH cryptographic protection lies in the possibility of introducing or modifying arguments, allowing attackers to execute arbitrary commands.

The vulnerability of the SSH protocol’s implementation related to cryptographic security in OpenSSH lies in the exploitation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

6.5CVSS7.3AI score0.19753EPSS
Exploits7References15Affected Software8
BDU FSTEC
BDU FSTEC
added 2023/10/11 12:0 a.m.6 views

The vulnerability of the communication protocol implementation for microprogrammed router software ER2000, related to the implementation or modification of arguments, allows a perpetrator to execute arbitrary OS commands on devices.

The vulnerability of the communication protocol implementation for Connected IO microprogrammed routers involves the introduction or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary OS commands on devices remotely...

10CVSS8.3AI score0.01505EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/17 12:0 a.m.5 views

The vulnerability of the Ruby interpreter, related to the insertion or modification of arguments, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Ruby programming language interpreter is related to the introduction or modification of arguments. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

7.3CVSS6.6AI score0.02796EPSS
Exploits1References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/29 12:0 a.m.5 views

The vulnerability of the Etherpad text editor lies in the fact that the introduction or modification of arguments allows a hacker to execute arbitrary code.

The vulnerability of the Etherpad text editor is related to the implementation or modification of arguments. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

7.2CVSS7.4AI score0.02229EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2005/12/31 12:0 a.m.4 views

PT-2005-5364 · Tellme · Tellme

Name of the Vulnerable Software and Affected Versions: TellMe versions 1.2 and earlier Description: The issue allows remote attackers to modify command line arguments for the Whois program and obtain sensitive information via "--" style options in the q Host parameter. Recommendations: For TellMe...

6.4CVSS6.5AI score0.01864EPSS
Exploits1References7
Rows per page
Query Builder