Lucene search
K

6 matches found

CVE
CVE
added 2026/04/27 11:24 p.m.28 views

CVE-2026-41369

OpenClaw prior to 2026.3.31 is affected by insufficient environment variable sanitization in host execution paths. The vulnerability concerns the sanitization of environment variables related to packages, registries, Docker, compilers, and TLS overrides, allowing an attacker to inject malicious v...

7.1CVSS5.5AI score0.00307EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/27 5:25 a.m.1 views

CVE-2026-32678

Authentication bypass issue exists in BUFFALO Wi-Fi router products, which may allow an attacker to alter critical configuration settings without authentication...

8.7CVSS7.1AI score0.00319EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.7 views

PT-2026-28441

Name of the Vulnerable Software and Affected Versions BUFFALO Wi-Fi router products affected versions not specified Description An authentication bypass issue exists in BUFFALO Wi-Fi router products. This issue may allow an attacker to alter critical configuration settings without authentication...

8.7CVSS5.9AI score0.00319EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/17 12:36 p.m.6 views

Security Bulletin: Race Condition in Eclipse Jersey (Versions 2.45, 3.0.16, 3.1.9) May Bypass Critical SSL Configurations and Compromise Secure Connections, affects watsonx.data

Summary In Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 a race condition can cause ignoring of critical SSL configurations - such as mutual authentication, custom key/trust stores, and other security settings. This issue may result in SSLHandshakeException under normal circumstances, but under...

9.4CVSS5.8AI score0.00271EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/11/18 6:32 p.m.1 views

GHSA-7P63-W6X9-6GR7 Eclipse Jersey has a Race Condition

In Eclipse Jersey versions 2.45, 3.0.16, 3.1.9 a race condition can cause ignoring of critical SSL configurations - such as mutual authentication, custom key/trust stores, and other security settings. This issue may result in SSLHandshakeException under normal circumstances, but under certain...

9.4CVSS5.9AI score0.00271EPSS
Exploits0References13
OSV
OSV
added 2025/01/28 6:15 p.m.4 views

CVE-2025-23054

A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an authenticated low privilege operator user to perform operations not allowed by their privilege level. Successful exploitation could allow an attacker to manipulate user generated files,...

6.5CVSS5.8AI score0.0036EPSS
Exploits0References1
Rows per page
Query Builder