Lucene search
+L

9 matches found

nvd
nvd
added 2026/07/03 9:16 p.m.6 views

CVE-2026-14611

A vulnerability has been found in DeepMyst Mysti up to 0.4.0. The affected element is the function initProjectMemory of the file src/managers/MemoryManager.ts of the component Per-Project Auto-Memory Handler. Such manipulation of the argument workspacePath leads to exposure of resource. The attac...

5.3CVSS0.00253EPSS
Exploits0References8
euvd
euvd
added 2026/07/03 9:0 p.m.8 views

EUVD-2026-41610

A vulnerability has been found in DeepMyst Mysti up to 0.4.0. The affected element is the function initProjectMemory of the file src/managers/MemoryManager.ts of the component Per-Project Auto-Memory Handler. Such manipulation of the argument workspacePath leads to exposure of resource. The attac...

5.3CVSS5.5AI score0.00253EPSS
Exploits0References8
cve
cve
added 2026/07/03 9:0 p.m.20 views

CVE-2026-14611

DeepMyst Mysti (up to 0.4.0) is affected by a vulnerability in MemoryManager.ts initProjectMemory where manipulating workspacePath can cause resource exposure. The issue is exploitable remotely and is fixed by upgrading to version 0.4.0; the patch is identified as 6d709229b5199f6769fb3cf763e5122d...

5.3CVSS5.5AI score0.00253EPSS
Exploits0References8
ptsecurity
ptsecurity
added 2026/07/03 12:0 a.m.12 views

PT-2026-55651

Name of the Vulnerable Software and Affected Versions DeepMyst Mysti versions prior to 0.4.0 Description Remote manipulation of the workspacePath argument within the initProjectMemory function, located in the src/managers/MemoryManager.ts file of the Per-Project Auto-Memory Handler component, can...

5.3CVSS5.9AI score0.00253EPSS
Exploits0References13
cvelist
cvelist
added 2026/06/29 5:0 p.m.41 views

CVE-2026-13591 DeepMyst Mysti Contact Tracking ChannelBridge.ts _isTrackedConversation improper authorization

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function isTrackedConversation of the file src/managers/ChannelBridge.ts of the component Contact Tracking. This manipulation of the argument channelType causes improper authorization. The attack may be initiated remotely. A...

5CVSS0.00199EPSS
Exploits0References8
euvd
euvd
added 2026/06/29 5:0 p.m.7 views

EUVD-2026-40153

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function isTrackedConversation of the file src/managers/ChannelBridge.ts of the component Contact Tracking. This manipulation of the argument channelType causes improper authorization. The attack may be initiated remotely. A...

5CVSS5.3AI score0.00199EPSS
Exploits0References8
osv
osv
added 2026/06/29 5:0 p.m.3 views

CVE-2026-13591 DeepMyst Mysti Contact Tracking ChannelBridge.ts _isTrackedConversation improper authorization

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function isTrackedConversation of the file src/managers/ChannelBridge.ts of the component Contact Tracking. This manipulation of the argument channelType causes improper authorization. The attack may be initiated remotely. A...

2.3CVSS5.3AI score0.00199EPSS
Exploits0References10
cve
cve
added 2026/06/29 5:0 p.m.21 views

CVE-2026-13591

DeepMyst Mysti 0.4.0 is affected by a vulnerability in the Contact Tracking module: the function _isTrackedConversation in ChannelBridge.ts can be manipulated via the _channelType argument, causing improper authorization. Access may be possible remotely, with attack complexity described as high a...

5CVSS5.3AI score0.00199EPSS
Exploits0References8
attackerkb
attackerkb
added 2026/06/29 5:0 p.m.14 views

CVE-2026-13591

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function isTrackedConversation of the file src/managers/ChannelBridge.ts of the component Contact Tracking. This manipulation of the argument channelType causes improper authorization. The attack may be initiated remotely. A...

5CVSS5.1AI score0.00199EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder