Lucene search
K

69 matches found

The Hacker News
The Hacker News
added 3 days ago11 views

Ransomware Groups Turn to Citrix Bleed 2, BYOVD, and Supply Chain Credentials

Threat actors associated with the Anubis ransomware operation have been observed exploiting the Citrix Bleed 2 CVE-2025-5777 vulnerability to obtain initial access. "Although tactics differ between affiliates, common patterns emerged in tradecraft through use of legitimate Remote Management and...

9.3CVSS7.5AI score0.99897EPSS
Exploits18
NVD
NVD
added 2026/05/05 12:16 p.m.31 views

CVE-2026-43529

OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attacker with workspace write access can race-condition swap the target file between validation and...

2.5CVSS0.00079EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/05 11:25 a.m.6 views

CVE-2026-43529 OpenClaw < 2026.4.10 - Time-of-Check-Time-of-Use (TOCTOU) Race Condition in exec Script Preflight Validator

OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attacker with workspace write access can race-condition swap the target file between validation and...

2.5CVSS5.8AI score0.00079EPSS
Exploits0References3
OSV
OSV
added 2026/05/04 1:12 p.m.8 views

JLSEC-2026-419 When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's...

When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent domain's cache entry, making it end sooner or later than otherwise intended. This affects curl using applications that enable HSTS and use URLs with the insecure HTTP:// scheme and perform transfers with host...

5.9CVSS6.8AI score0.0197EPSS
Exploits1References16
Snyk
Snyk
added 2026/04/16 9:19 p.m.10 views

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition via the validateScriptFileForShellBleed function. An attacker can cause the preflight analysis to inspect a different file than the one tha...

2.9CVSS5.8AI score0.00079EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/06 10:53 p.m.8 views

EUVD-2026-18490

OpenClaw's complex interpreter pipelines could skip exec script preflight validation...

5.4CVSS5.9AI score0.00303EPSS
Exploits0References4
OSV
OSV
added 2026/04/02 9:32 p.m.2 views

GHSA-RF75-G96H-J3RM Duplicate Advisory: OpenClaw's complex interpreter pipelines could skip exec script preflight validation

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fvx6-pj3r-5q4q. This link is maintained to preserve external references. Original Description OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in shell-bleed protecti...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References4
Snyk
Snyk
added 2026/04/02 9:32 p.m.3 views

Incomplete List of Disallowed Inputs

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs through the validateScriptFileForShellBleed process. An attacker can execute unauthorized script content by crafting piped, substituted, or subshell...

5.4CVSS6AI score0.00303EPSS
Exploits0References2
Snyk
Snyk
added 2026/04/02 9:32 p.m.10 views

Incomplete List of Disallowed Inputs

Overview @openclaw/discord is an OpenClaw Discord channel plugin Affected versions of this package are vulnerable to Incomplete List of Disallowed Inputs through the validateScriptFileForShellBleed process. An attacker can execute unauthorized script content by crafting piped, substituted, or...

5.4CVSS5.9AI score0.00303EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/02 9:32 p.m.6 views

Duplicate Advisory: OpenClaw's complex interpreter pipelines could skip exec script preflight validation

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-fvx6-pj3r-5q4q. This link is maintained to preserve external references. Original Description OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in shell-bleed protecti...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/02 6:15 p.m.21 views

CVE-2026-34425

OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass in the shell-bleed protection. The bypass lets attackers craft piped, subshell, or command-substitution forms that the parser fails to recognize, enabling execution of blocked script content that would otherwise be bl...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/02 6:15 p.m.1 views

CVE-2026-34425

OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in shell-bleed protection that allows attackers to execute blocked script content by using piped or complex command forms that the parser fails to recognize. Attackers can craft commands such as piped...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/02 6:15 p.m.16 views

CVE-2026-34425 OpenClaw - Shell-Bleed Protection Preflight Validation Bypass

OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in shell-bleed protection that allows attackers to execute blocked script content by using piped or complex command forms that the parser fails to recognize. Attackers can craft commands such as piped...

5.4CVSS0.00303EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/02 6:15 p.m.2 views

CVE-2026-34425 OpenClaw - Shell-Bleed Protection Preflight Validation Bypass

OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in shell-bleed protection that allows attackers to execute blocked script content by using piped or complex command forms that the parser fails to recognize. Attackers can craft commands such as piped...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/02 12:0 a.m.4 views

PT-2026-29868

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to commit 8aceaf5 Description OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass in shell-bleed protection. This allows attackers to execute blocked script content by using piped or complex...

5.4CVSS6.1AI score0.00303EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/04/02 12:0 a.m.9 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Previous versions of OpenClaw, such as 8aceaf5, had security vulnerabilities. These vulnerabilities stemmed from a bypass of pre-checking in the shell-bleed protection mechanism. Attackers could execute blocked...

5.4CVSS5.9AI score0.00303EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/25 5:4 p.m.11 views

Security Bulletin: IBM Sterling Transformation Extender is affected by MongoBleed security vulnerability

Summary IBM Sterling Transformation Extender uses MongoDB and is affected by MongoBleed security vulnerability CVE-2025-14847. Vulnerability Details CVEID:CVE-2025-14847 DESCRIPTION: Mismatched length fields in Zlib compressed protocol headers may allow a read of uninitialized heap memory by an...

8.7CVSS5.7AI score0.83007EPSS
Exploits39Affected Software1
CVE
CVE
added 2026/02/08 1:9 a.m.14 views

CVE-2026-2208

WeKan up to version 8.20 contains a vulnerability in the Rules Handler, specifically an unknown function within server/publications/rules.js that allows missing authorization. The issue can be exploited remotely, enabling an attacker to access without proper authorization. It is mitigated by upda...

6.5CVSS4.6AI score0.00244EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/05 9:32 p.m.4 views

CVE-2026-1964 WeKan REST Endpoint boards.js BoardTitleRESTBleed access control

A vulnerability was determined in WeKan up to 8.20. This impacts an unknown function of the file models/boards.js of the component REST Endpoint. This manipulation causes improper access controls. Remote exploitation of the attack is possible. Upgrading to version 8.21 will fix this issue. Patch...

5.3CVSS5AI score0.00218EPSS
Exploits0References6
CVE
CVE
added 2026/02/05 9:2 p.m.13 views

CVE-2026-1963

Affected software: WeKan up to 8.20. Vulnerability: Improper access controls in the Attachment Storage component, specifically in the file models/attachments.js. The issue could be exploited remotely and is driven by an unspecified function, enabling access control bypass. Impact: High (as per CV...

9.8CVSS4.9AI score0.00323EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder