CVE-2026-42282

Summary: The CVE concerns n8n-mcp (MCP server) logging sensitive tool-call arguments on authenticated HTTP requests. Affected in HTTP transport mode prior to version 2.47.13, where full arguments and JSON‑RPC params could be written to server logs, exposing credentials and secret-bearing data (e....

n8n-MCP: Sensitive MCP tool-call arguments logged on authenticated requests in HTTP mode

Impact When n8n-mcp runs in HTTP transport mode, authenticated MCP tools/call requests had their full arguments and JSON-RPC params written to server logs by the request dispatcher and several sibling code paths before any redaction. When a tool call carries credential material — most notably...

LoongArch: BPF: Sign extend kfunc call arguments

...

CVE-2021-33505

A local malicious user can circumvent the Falco detection engine through 0.28.1 by running a program that alters arguments of system calls being executed. Issue is fixed in Falco versions = 0.29.1...

CVE-2017-15264

IrfanView version 4.44 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .tif file, related to "Data from Faulting Address is used as one or more arguments in a subsequent Function Call starting at image0000000000400000+0x00000000000236e4....