Lucene search
K

6 matches found

Circl
Circl
added 2025/02/18 8:16 p.m.7 views

CVE-2025-26604

creationtimestamp| type| source ---|---|--- 2025-02-18 20:16:36+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lii3cpnyeq23 2025-02-18 22:48:32+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114027325798860281 2025-02-18 23:30:31+00:00| seen|...

8.3CVSS4.8AI score0.00328EPSS
Exploits0References3
NVD
NVD
added 2025/02/18 8:15 p.m.13 views

CVE-2025-26604

Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code execution, this allows user to execute potentially malicious code to perform damage or extract...

8.3CVSS0.00328EPSS
Exploits0References2
OSV
OSV
added 2025/02/18 8:15 p.m.11 views

CVE-2025-26604

Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code execution, this allows user to execute potentially malicious code to perform damage or extract...

8.3AI score
Exploits0References2
CVE
CVE
added 2025/02/18 7:11 p.m.83 views

CVE-2025-26604

Discord-Bot-Framework-Kernel is affected by CVE-2025-26604 due to an arbitrary user-submitted code execution vulnerability. A malicious module can extract the bot token and, with high privileges, allow the attacker to impersonate the bot or gain near-full control; a blocking module can also be lo...

8.3CVSS7.5AI score0.00328EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/18 7:11 p.m.22 views

CVE-2025-26604 Possibility to retrieve bot token by malicious module developers in Discord-Bot-Framework-Kernel

Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code execution, this allows user to execute potentially malicious code to perform damage or extract...

8.3CVSS0.00328EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/02/18 7:11 p.m.7 views

CVE-2025-26604 Possibility to retrieve bot token by malicious module developers in Discord-Bot-Framework-Kernel

Discord-Bot-Framework-Kernel is a Discord bot framework built with interactions.py, featuring modular extension management and secure execution. Because of the nature of arbitrary user-submited code execution, this allows user to execute potentially malicious code to perform damage or extract...

8.3CVSS7.3AI score0.00328EPSS
Exploits0References2
Rows per page
Query Builder