196 matches found
OpenClaw Directory Traversal Vulnerability
OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a directory traversal vulnerability that can be exploited by an attacker to cause data to be written to an arbitrary location on the host file system...
EulerOS Virtualization 2.10.1 : rsync (EulerOS-SA-2026-1145)
According to the versions of the rsync package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in rsync. When using the --safe-links option, the rsync client fails to properly verify if a symbolic link destinati...
PT-2026-3713
Name of the Vulnerable Software and Affected Versions Oracle Hospitality OPERA 5 Property Services versions 5.6.19.23 through 5.6.27.4 Description An easily exploitable issue exists in the Oracle Hospitality OPERA 5 Property Services component, allowing an unauthenticated attacker with network...
CVE-2025-68264
In the Linux kernel, the following vulnerability has been resolved: ext4: refresh inline data size before write operations The cached ei-iinlinesize can become stale between the initial size check and when ext4updateinlinedata/ext4createinlinedata use it. Although ext4getmaxinlinesize reads the...
EUVD-2025-202414
An unauthenticated remote attacker can abuse unsafe sscanf calls within the checkcookie function to write arbitrary data into fixed-size stack buffers which leads to full device compromise...
CVE-2025-10986
Path traversal in the admin panel of Ivanti EPMM before version 12.6.0.2, 12.5.0.4, and 12.4.0.4 allows a remote authenticated attacker with admin privileges to write data in unintended locations on disk...
CVE-2025-10986
CVE-2025-10986 affects Ivanti Endpoint Manager Mobile (EPMM) admin panel. A path traversal vulnerability exists in EPMM versions before 12.6.0.2, 12.5.0.4, and 12.4.0.4 that could allow a remote authenticated attacker with admin privileges to write data to unintended locations on disk. Connected ...
EUVD-2014-7052
Malware in sbrugna...
EUVD-2020-17940
Malware in sbrugna...
EUVD-2020-18821
Malware in sbrugna...
EUVD-2020-14827
Malware in sbrugna...
EUVD-2017-18378
Malware in sbrugna...
EUVD-2017-16779
Malware in sbrugna...
EUVD-2025-6400
Malicious code in bioql PyPI...
EUVD-2023-32479
Malicious code in bioql PyPI...
EUVD-2022-55351
Malicious code in bioql PyPI...
EUVD-2023-58438
Malicious code in bioql PyPI...
UBUNTU-CVE-2025-39928
In the Linux kernel, the following vulnerability has been resolved: i2c: rtl9300: ensure data length is within supported range Add an explicit check for the xfer length to 'rtl9300i2cconfigxfer' to ensure the data length isn't within the supported range. In particular a data length of 0 is not...
DEBIAN-CVE-2025-38677
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in dnode page As Jiaming Zhang reported: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x1c1/0x2a0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:378 inline...
Schneider Electric Software Update < 3.0.12 Privilege Escalation
The version of Schneider Electric Software Update installed on the remote host is prior to 3.0.12. It is, therefore, affected by a link following vulnerability that allows arbitrary data to be written to protected locations, potentially leading to escalation of privilege, arbitrary file corruptio...