Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2026/04/17 12:32 p.m.15 views

SUSE CVE-2003-0354

Unknown vulnerability in GNU Ghostscript before 7.07 allows attackers to execute arbitrary commands, even when -dSAFER is enabled, via a PostScript file that causes the commands to be executed from a malicious print job...

7.5CVSS6.1AI score0.0187EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/13 12:0 a.m.8 views

PT-2026-32486

Name of the Vulnerable Software and Affected Versions simple-git versions prior to 3.32.0 Description The library allows the execution of arbitrary commands through the manipulation of Git options. This occurs because the unsafe operations plugin uses a regular-expression-based blocklist to preve...

8.1CVSS5.9AI score0.00652EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.4 views

PT-2026-31966

OpenClaw before 2026.3.22 contains an identity spoofing vulnerability in ACP permission resolution that trusts conflicting tool identity hints from rawInput and metadata. Attackers can spoof tool identities through rawInput parameters to suppress dangerous-tool prompting and bypass security...

6.9CVSS5.8AI score0.00228EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/07 6:10 p.m.5 views

OpenClaw: Tlon media downloads can bypass core safety limits and exhaust disk

Summary Tlon media downloads can bypass core safety limits and exhaust disk Current Maintainer Triage - Status: narrow - Normalized severity: low - Assessment: Shipped v2026.3.28 Tlon media downloads bypassed core size/count/cleanup limits, but this is availability-only resource exhaustion in a...

6.5CVSS5.9AI score0.00343EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/03/10 12:0 a.m.9 views

CVE-2026-26742

PX4 Autopilot versions 1.12.x–1.15.x have a protection mechanism failure in the Re-arm Grace Period logic. The system applies the in-air emergency re-arm logic to ground scenarios; if a pilot switches to Manual mode and re-arms within 5 seconds of an automatic landing, pre-flight safety checks (i...

8.1CVSS5.8AI score0.00265EPSS
Exploits1References1Affected Software1
Snyk
Snyk
added 2025/01/14 6:43 p.m.2 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition during rsync's handling of symbolic links which allows an attacker to bypass the default behavior and traverse symbolic links. Remediation A fix was pushed into the master branch but not yet published. References - GitHub...

6.8CVSS6.9AI score0.00377EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2019/05/07 4:22 a.m.20 views

ghostscript: missing attack vector protections for CVE-2019-6116

It was found that some privileged operators remained accessible from various places after the CVE-2019-6116 fix. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

7.8CVSS5.8AI score0.01756EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2019/05/07 4:22 a.m.5 views

ghostscript: superexec operator is available (700585)

It was found that the superexec operator was available in the internal dictionary. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER...

7.3CVSS7.1AI score0.02642EPSS
Exploits0References5
Rows per page
Query Builder