Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/04/27 7:23 p.m.4 views

CVE-2026-7021

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS4.8AI score0.0018EPSS
Exploits0References1
NVD
NVD
added 2026/04/26 6:16 a.m.12 views

CVE-2026-7021

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS0.0018EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/26 5:30 a.m.9 views

EUVD-2026-25696

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS4.8AI score0.0018EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/26 5:30 a.m.5 views

CVE-2026-7021 SmythOS sre Connector Service utils.ts information disclosure

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS4.8AI score0.0018EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/04/26 5:30 a.m.36 views

CVE-2026-7021 SmythOS sre Connector Service utils.ts information disclosure

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS0.0018EPSS
Exploits0References4
CVE
CVE
added 2026/04/26 5:30 a.m.9 views

CVE-2026-7021

SmythOS SRE up to 0.0.15 is affected by CVE-2026-7021 in the Connector Service, specifically via the file packages/sdk/src/LLM/utils.ts. The vulnerability arises from manipulating the baseURL argument, leading to information disclosure. The issue is exploitable remotely and publicly available too...

5.1CVSS4.9AI score0.0018EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/26 5:30 a.m.4 views

CVE-2026-7021

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS4.9AI score0.0018EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/26 12:0 a.m.9 views

PT-2026-35202

A weakness has been identified in SmythOS sre up to 0.0.15. This impacts an unknown function of the file packages/sdk/src/LLM/utils.ts of the component Connector Service. This manipulation of the argument baseURL causes information disclosure. It is possible to initiate the attack remotely. The...

5.1CVSS4.8AI score0.0018EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/26 12:0 a.m.9 views

SmythOS 信息泄露漏洞

SmythOS is an open-source infrastructure for the execution and development of AI agents. Versions of SmythOS prior to 0.0.15 contained a vulnerability related to information leakage. This vulnerability stemmed from operations on the baseURL parameter in the Connector Service component’s files...

5.1CVSS5.9AI score0.0018EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 10:55 a.m.7 views

CVE-2022-23909

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.8CVSS6.8AI score0.01027EPSS
Exploits4References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28831

Malicious code in bioql PyPI...

7.8CVSS7.8AI score0.01027EPSS
Exploits4References3
Exploit DB
Exploit DB
added 2022/04/07 12:0 a.m.287 views

Sherpa Connector Service v2020.2.20328.2050 - Unquoted Service Path

Exploit Title: Sherpa Connector Service v2020.2.20328.2050 - Unquoted Service Path Exploit Author: Manthan Chhabra netsectuna, Harshit fumenoid Version: 2020.2.20328.2050 Date: 02/04/2022 Vendor Homepage: http://gimmal.com/ Vulnerability Type: Unquoted Service Path Tested on: Windows 10 CVE:...

7.8CVSS7.9AI score0.01027EPSS
Exploits4
0day.today
0day.today
added 2022/04/06 12:0 a.m.262 views

Sherpa Connector Service 2020.2.20328.2050 Unquoted Service Path Vulnerability

Exploit Title: Sherpa Connector Service v2020.2.20328.2050 - Unquoted Service Path Exploit Author: Manthan Chhabra netsectuna, Harshit fumenoid Version: 2020.2.20328.2050 Vendor Homepage: http://gimmal.com/ Vulnerability Type: Unquoted Service Path Tested on: Windows 10 CVE: CVE-2022-23909 Step t...

7.8CVSS0.4AI score0.01027EPSS
Exploits4
NVD
NVD
added 2022/04/05 6:15 a.m.29 views

CVE-2022-23909

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.8CVSS0.01027EPSS
Exploits4References2
OSV
OSV
added 2022/04/05 6:15 a.m.2 views

CVE-2022-23909

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.8CVSS7.3AI score0.01027EPSS
Exploits4References2
ATTACKERKB
ATTACKERKB
added 2022/04/05 6:15 a.m.5 views

CVE-2022-23909

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.8CVSS7.1AI score0.01027EPSS
Exploits4References3
Prion
Prion
added 2022/04/05 6:15 a.m.13 views

Design/Logic Flaw

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.2CVSS7.5AI score0.01027EPSS
Exploits4References2Affected Software1
CVE
CVE
added 2022/04/05 5:49 a.m.86 views

CVE-2022-23909

The CVE-2022-23909 entry concerns an unquoted service path in the Sherpa Connector Service (SherpaConnectorService.exe, version 2020.2.20328.2050). Multiple sources (NVD, Red Hat, CVE listings, ExploitDB) describe a local privilege escalation where a local attacker could create the file C:\Progra...

7.8CVSS7.6AI score0.01027EPSS
Exploits4References2Affected Software1
Cvelist
Cvelist
added 2022/04/05 5:49 a.m.30 views

CVE-2022-23909

There is an unquoted service path in Sherpa Connector Service SherpaConnectorService.exe 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file...

7.9AI score0.01027EPSS
Exploits4References2
CNNVD
CNNVD
added 2022/04/05 12:0 a.m.3 views

Gimmal Sherpa Connector Service 代码问题漏洞

Gimmal Sherpa Connector Service is a connector service from Gimmal USA. A security vulnerability exists in Sherpa Connector Service version 2020.2.20328.2050, which originates from an unreferenced service path. A local attacker can exploit the vulnerability to escalate privileges by creating the...

7.8CVSS7.5AI score0.01027EPSS
Exploits4References5
Rows per page
Query Builder