Lucene search
+L

1571 matches found

Redos
Redos
added 2026/05/12 12:0 a.m.13 views

ROS-20260512-73-0010

Vulnerability in beats related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

6.5CVSS5.9AI score0.0021EPSS
Exploits0
EUVD
EUVD
added 2026/05/11 12:32 p.m.11 views

EUVD-2025-209762

Due to not validating the organization context when executing adaptive authentication flows, the WSO2 Identity Server allows adaptive authentication logic to be triggered on unintended organizations. A malicious actor with privileges to configure adaptive authentication within one organization ca...

6.4CVSS5.9AI score0.00366EPSS
Exploits0References2
Snyk
Snyk
added 2026/05/08 7:20 a.m.6 views

Uncaught Exception

Overview Affected versions of this package are vulnerable to Uncaught Exception in the decryption process when chunking is performed at certain boundaries. An attacker can cause decryption failures and trigger exceptions by manipulating the way encrypted data is chunked and processed. Note: This ...

5.1CVSS5.8AI score0.00158EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/05/08 12:0 a.m.3 views

The vulnerability of the xfrm component in the Linux operating system’s kernel allows a hacker to elevate their privileges to the level of root.

The vulnerability of the xfrm component in the Linux operating system’s kernel is related to the execution of operations outside the buffer boundaries. Exploiting this vulnerability can allow an attacker to elevate their privileges to the root level...

8.8CVSS7.2AI score0.93235EPSS
Exploits31References31Affected Software10
Packet Storm News
Packet Storm News
added 2026/05/07 12:0 a.m.10 views

Demystifying and Detecting Agentic Workflow Injection Vulnerabilities in GitHub Actions

GitHub Actions is increasingly used to deploy LLM-based agents for repository-centric tasks such as issue triage, pull-request review, code modification, and release assistance. These agentic workflows extend traditional CI/CD automation with agentic capabilities but also create a new injection...

5.9AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/06 7:49 p.m.7 views

CVE-2026-43581

OpenClaw before 2026.4.10 contains an improper network binding vulnerability in the sandbox browser CDP relay that exposes Chrome DevTools Protocol on 0.0.0.0. Attackers can access the DevTools protocol outside intended local sandbox boundaries by exploiting the overly broad binding configuration...

9.6CVSS5.8AI score0.00214EPSS
Exploits0References4
NVD
NVD
added 2026/05/05 12:16 p.m.23 views

CVE-2026-42434

OpenClaw versions 2026.4.5 before 2026.4.10 contain a sandbox escape vulnerability allowing sandboxed agents to override exec routing by specifying host=node. Attackers can bypass sandbox boundaries and route execution to remote nodes instead of intended sandbox paths...

8.8CVSS0.00347EPSS
Exploits0References3
OSV
OSV
added 2026/05/05 11:25 a.m.5 views

CVE-2026-43529 OpenClaw < 2026.4.10 - Time-of-Check-Time-of-Use (TOCTOU) Race Condition in exec Script Preflight Validator

OpenClaw before 2026.4.10 contains a time-of-check-time-of-use vulnerability in the validateScriptFileForShellBleed function that allows local attackers to bypass workspace boundary checks. An attacker with workspace write access can race-condition swap the target file between validation and...

2CVSS6AI score0.00079EPSS
Exploits0References5
EUVD
EUVD
added 2026/05/05 11:24 a.m.6 views

EUVD-2026-27259

OpenClaw versions 2026.4.9 before 2026.4.10 contain a sender policy bypass vulnerability in the outbound host-media attachment read helper that allows unauthorized local file disclosure. Attackers with denied read access via toolsBySender or group policy can trigger host-media attachment loading ...

7.7CVSS5.8AI score0.00236EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/05 11:24 a.m.4 views

CVE-2026-42438

OpenClaw versions 2026.4.9 before 2026.4.10 contain a sender policy bypass vulnerability in the outbound host-media attachment read helper that allows unauthorized local file disclosure. Attackers with denied read access via toolsBySender or group policy can trigger host-media attachment loading ...

7.7CVSS5.8AI score0.00236EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/29 6:6 p.m.37 views

CVE-2026-7439 AgentFlow Local Web API Content-Type Validation Bypass

AgentFlow's local web API accepts non-JSON content types on POST /api/runs and POST /api/runs/validate endpoints without enforcing application/json validation, allowing attackers to bypass trust-boundary enforcement on sensitive operations. Attackers can exploit this content-type validation...

4.8CVSS0.00089EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/04/28 12:0 a.m.16 views

Threat-Oriented Digital Twinning for Security Evaluation of Autonomous Platforms

Open, unclassified research on secure autonomy is constrained by limited access to operational platforms, contested communications infrastructure, and representative adversarial test conditions. This paper presents a threat-oriented digital twinning methodology for cybersecurity evaluation of...

5.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/04/24 7:16 p.m.10 views

CVE-2026-35365

The mv utility in uutils coreutils improperly handles directory trees containing symbolic links during moves across filesystem boundaries. Instead of preserving symlinks, the implementation expands them, copying the linked targets as real files or directories at the destination. This can lead to...

6.6CVSS5.2AI score0.00161EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.5 views

CVE-2026-31588

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Use scratch field in MMIO fragment to hold small write values When exiting to userspace to service an emulated MMIO write, copy the to-be-written value to a scratch field in the MMIO fragment if the size of the data...

8.8CVSS5.4AI score0.00128EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.15 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the use of stack-local variables as source data during KVM x86 MMIO writes. When writing data tha...

8.8CVSS5.8AI score0.00128EPSS
Exploits0References2
NVD
NVD
added 2026/04/22 2:16 p.m.10 views

CVE-2026-31470

In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Fix handling of host controlled 'quote' buffer length Validate host controlled value quotebuf-outlen that determines how many bytes of the quote are copied out to guest userspace. In TDX environments with remote...

7.1CVSS0.00125EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.10 views

uutils coreutils 后置链接漏洞

uutils coreutils is a cross-platform core command-line toolset developed by Uutils. uutils coreutils has a post-installation link vulnerability, which arises from improper handling of directories containing symbolic links during the mv command’s file system boundary movement. This vulnerability m...

6.6CVSS5.8AI score0.00161EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/21 12:0 a.m.12 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.4.2 contained security vulnerabilities. These vulnerabilities were due to improper trust boundaries, which could allow untrusted workarea channel shadows to execute during built-i...

8.5CVSS6.1AI score0.00133EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/16 10:48 p.m.21 views

Insufficient Granularity of Access Control

Overview Affected versions of this package are vulnerable to Insufficient Granularity of Access Control inadequate authorization checks in the POST /api/agents/:id/keys, GET /api/agents/:id/keys, and DELETE /api/agents/:id/keys/:keyId routes. An attacker can gain unauthorized access to sensitive...

8.5CVSS5.8AI score
Exploits0References4
Redos
Redos
added 2026/04/14 12:0 a.m.6 views

ROS-20260414-73-0027

Vulnerability in kernel-lt related to writing outside buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to execute arbitrary code...

7.8CVSS6.3AI score0.00153EPSS
Exploits0
Rows per page
Query Builder