Lucene search
K

4 matches found

Github Security Blog
Github Security Blog
added 2026/06/04 5:36 p.m.13 views

kas's late signature validation may allow unnoticed repository manipulations

Impact So far, kas checks out and processes repositories regarding configuration includes prior to validating signatures of those repositories. This may allow to replace on original repository with one under the control of an attacker under very specific conditions. First of all, the attacker mus...

5.8AI score0.00021EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/05/05 6:43 p.m.10 views

GHSA-R39H-4C2P-3JXP OpenClaw vulnerable to arbitrary code execution via attacker-controlled setup-api.js loaded from cwd during env-key resolution

Summary OpenClaw's bundled plugin setup resolver could fall back to process.cwd while resolving provider setup metadata. If a user ran an OpenClaw command from an attacker-controlled repository containing extensions//setup-api.js, OpenClaw could load and execute that JavaScript during ordinary...

7.8CVSS6.4AI score0.00144EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/10 12:0 a.m.9 views

Anthropic Claude Code < 2.0.65 API Key Leak via Project Settings (CVE-2026-21852)

The version of Anthropic Claude Code installed on the remote host is prior to 2.0.65. It is, therefore, affected by an information disclosure vulnerability. A vulnerability in the project-load flow allowed malicious repositories to exfiltrate data including Anthropic API keys before users confirm...

7.5CVSS6.1AI score0.2297EPSS
Exploits2References2
CVE
CVE
added 2026/02/04 7:2 p.m.16 views

CVE-2026-25140

The CVE-2026-25140 issue affects chainguard.dev/apko: ExpandApk() expands .apk streams without decompression limits, enabling an attacker-controlled APK repository to inflate a small, highly-compressed archive into a large tar stream. This unbounded expansion can exhaust disk space and CPU on the...

7.5CVSS5.4AI score0.00366EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder