12 matches found
CVE-2026-7424
Integer underflow in the DHCPv6 sub-option parser in FreeRTOS-Plus-TCP before V4.4.1 and V4.2.6 allows an adjacent network actor to corrupt the device's IPv6 address assignment, DNS configuration, and lease times, and to cause a denial of service permanent IP task freeze requiring hardware reset ...
CVE-2026-33028
Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui application is vulnerable to a Race Condition. Due to the complete absence of synchronization mechanisms Mutex and non-atomic file writes, concurrent requests lead to the severe corruption of the prima...
GHSA-M468-XCM6-FXG4 nginx-ui has Race Condition that Leads to Persistent Data Corruption and Service Collapse
Summary The nginx-ui application is vulnerable to a Race Condition. Due to the complete absence of synchronization mechanisms Mutex and non-atomic file writes, concurrent requests lead to the severe corruption of the primary configuration file app.ini. This vulnerability results in a persistent...
Nginx UI 竞争条件问题漏洞
Nginx UI is a web interface for Nginx developed by Jacky. Versions of Nginx UI prior to 2.3.4 contained a race condition vulnerability. This vulnerability arises due to race conditions; the lack of synchronization mechanisms and non-atomic file writes can lead to corrupted main configuration file...
CVE-2026-28459
OpenClaw versions prior to 2026.2.12 fail to validate the sessionFile path parameter, allowing authenticated gateway clients to write transcript data to arbitrary locations on the host filesystem. Attackers can supply a sessionFile path outside the sessions directory to create files and append da...
CVE-2026-28459 OpenClaw < 2026.2.12 - Arbitrary File Write via Untrusted sessionFile Path
OpenClaw versions prior to 2026.2.12 fail to validate the sessionFile path parameter, allowing authenticated gateway clients to write transcript data to arbitrary locations on the host filesystem. Attackers can supply a sessionFile path outside the sessions directory to create files and append da...
CVE-2026-28459
OpenClaw versions prior to 2026.2.12 fail to validate the sessionFile path parameter, allowing authenticated gateway clients to write transcript data to arbitrary locations on the host filesystem. Attackers can supply a sessionFile path outside the sessions directory to create files and append da...
PT-2026-23536
Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.2.12 Description OpenClaw versions prior to 2026.2.12 do not properly validate the sessionFile path parameter, potentially allowing authenticated gateway clients to write transcript data to arbitrary locations o...
kernel: wifi: nl80211: reject iftype change with mesh ID change
CVE-2024-27410 is a vulnerability in the Linux kernel’s Wi-Fi subsystem, affecting the nl80211 interface. The issue occurs when a mesh ID is set while simultaneously switching the interface to mesh mode, which can overwrite critical data in the wireless device's configuration. This can lead to...
Micro Focus Access Manager Cross-Site Scripting Vulnerability
Micro Focus Access Manager Appliance is an application from Micro Focus UK. It is used to improve security and simplify management. A cross-site scripting vulnerability exists in Micro Focus Access Manager product. An attacker could exploit the vulnerability to cause configuration corruption...
Micro Focus Access Manager Appliance 跨站脚本漏洞
Micro Focus Access Manager Appliance is an application from Micro Focus UK. It is used to improve security and simplify management. A cross-site scripting vulnerability exists in Micro Focus Access Manager product. An attacker could exploit the vulnerability to cause configuration corruption...
kernel security and bug fix update
kernel 2.6.18-406.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...