Lucene search
K

7 matches found

Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.13 views

PT-2026-49771

Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.4.25 Description An issue in internal and webchat command authentication allows senders to inherit wildcard ownerAllowFrom state across channel boundaries. This enables attackers to send commands on affected...

6.5CVSS5.5AI score0.00245EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:46 p.m.6 views

CVE-2026-44991

OpenClaw before 2026.4.21 contains an authorization bypass vulnerability in command-auth.ts that allows non-owner senders to execute owner-enforced slash commands when wildcard inbound senders are configured without explicit owner allowFrom settings. Attackers can exploit this by sending commands...

4.2CVSS5.9AI score0.00237EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.8 views

Cline 安全漏洞

Cline is an AI programming assistant that serves as an integrated CLI and editor for necboy developers. Cline has a security vulnerability, which stems from a vulnerability in the command autentication module—specifically, an OS command injection vulnerability—potentially allowing remote code...

9.8CVSS6.1AI score0.01145EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-2675

Malware in sbrugna...

9.8CVSS9.5AI score0.03413EPSS
Exploits0References3
CNVD
CNVD
added 2025/05/13 12:0 a.m.3 views

Huawei HarmonyOS Unauthorized Access Vulnerability (CNVD-2025-11077)

Huawei HarmonyOS is an operating system from the Chinese company Huawei. Huawei HarmonyOS suffers from an unauthorized access vulnerability that originates from a web search command authentication module bypass. An attacker can exploit the vulnerability to authenticate and access unauthorized...

6.5CVSS6.6AI score0.00174EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/06/21 7:42 p.m.11 views

CVE-2023-0971 Command Authentication Bypass in Z/IP Gateway

A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encryption keys to be recovered...

9.6CVSS7.2AI score0.0025EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2017/02/06 12:0 a.m.95 views

ntp security update

4.2.6p5-25.0.1.el73.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-25.el73.1 - don't limit rate of packets from sources CVE-2016-7426 - don't change interface from received packets CVE-2016-7429 - fix calculation of root distance again CVE-2016-7433 - require...

7.5CVSS3.7AI score0.12367EPSS
Exploits2
Rows per page
Query Builder