Lucene search
K

160 matches found

OSV
OSV
added 2026/04/10 12:30 a.m.2 views

GHSA-HM63-VWJ4-MJ2Q Duplicate Advisory: OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4qwc-c7g9-4xcw. This link is maintained to preserve external references. Original Description OpenClaw before 2026.3.22 contains an unbounded memory allocation vulnerability in remote media HTTP error handling...

6.9CVSS5.8AI score0.0036EPSS
Exploits0References5
CVE
CVE
added 2026/04/09 9:27 p.m.15 views

CVE-2026-35633

OpenClaw prior to version 2026.3.22 is affected by an unbounded memory allocation vulnerability in the remote media HTTP error handling path. Attackers can send crafted HTTP error responses with large bodies to remote media endpoints, causing the application to allocate memory without bounds befo...

6.9CVSS6AI score0.0036EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/09 9:27 p.m.4 views

CVE-2026-35633 OpenClaw < 2026.3.22 - Unbounded Memory Allocation via Remote Media Error Responses

OpenClaw before 2026.3.22 contains an unbounded memory allocation vulnerability in remote media HTTP error handling that allows attackers to trigger excessive memory consumption. Attackers can send crafted HTTP error responses with large bodies to remote media endpoints, causing the application t...

6.9CVSS5.8AI score0.0036EPSS
Exploits0References4
NVD
NVD
added 2026/04/07 9:17 p.m.5 views

CVE-2026-34045

Podman Desktop is a graphical tool for developing on containers and Kubernetes. Prior to 1.26.2, an unauthenticated HTTP server exposed by Podman Desktop allows any network attacker to remotely trigger denial-of-service conditions and extract sensitive information. By abusing missing connection...

9.1CVSS0.00474EPSS
Exploits1References5
OSV
OSV
added 2026/03/26 7:50 p.m.2 views

GHSA-4QWC-C7G9-4XCW OpenClaw: Remote media error responses could trigger unbounded memory allocation before failure

Summary Remote media HTTP error bodies were read without a hard size cap before failure handling, allowing unbounded allocation on error responses. Affected Packages / Versions - Package: openclaw npm - Affected: = 2026.3.22 - Latest released tag checked: v2026.3.23-2...

8.2CVSS5.9AI score0.0036EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:12 p.m.6 views

CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/25 7:53 p.m.6 views

EUVD-2026-14498

AVideo has Pre-Captcha User Enumeration and Account Status Disclosure in Password Recovery Endpoint...

5.3CVSS5.8AI score0.00278EPSS
Exploits1References3
OSV
OSV
added 2026/03/25 7:53 p.m.3 views

GHSA-M99F-MMVG-3XMX AVideo has Pre-Captcha User Enumeration and Account Status Disclosure in Password Recovery Endpoint

Summary The password recovery endpoint at objects/userRecoverPass.php performs user existence and account status checks before validating the captcha. This allows an unauthenticated attacker to enumerate valid usernames and determine whether accounts are active, inactive, or banned — at scale and...

5.3CVSS5.9AI score0.00278EPSS
Exploits1References4
OSV
OSV
added 2026/03/23 6:43 p.m.6 views

CVE-2026-33688 AVideo has Pre-Captcha User Enumeration and Account Status Disclosure in Password Recovery Endpoint

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the password recovery endpoint at objects/userRecoverPass.php performs user existence and account status checks before validating the captcha. This allows an unauthenticated attacker to enumerate valid usernames a...

5.3CVSS5.8AI score0.00278EPSS
Exploits1References4
OSV
OSV
added 2026/03/23 6:14 p.m.6 views

GO-2026-4744 Mattermost fails to use consistent error responses when handling the /mute command in github.com/mattermost/mattermost-server

Mattermost fails to use consistent error responses when handling the /mute command in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.3 views

PT-2026-27188

Name of the Vulnerable Software and Affected Versions AVideo versions prior to 26.1 Description AVideo is an open source video platform. Versions up to and including 26.0 have an issue in the password recovery endpoint at objects/userRecoverPass.php. This endpoint performs user existence and...

5.3CVSS5.8AI score0.00278EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/03/23 12:0 a.m.5 views

PT-2026-27213

Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, the filePath parameter accepts path traversal sequences, allowing enumeration of file existence on the server via different error responses. This issue has been patched in version 1.8.4...

6.9CVSS5.8AI score0.00302EPSS
Exploits0References4
NVD
NVD
added 2026/03/20 5:16 a.m.12 views

CVE-2026-33012

Micronaut Framework is a JVM-based full stack Java framework designed for building modular, easily testable JVM applications. Versions 4.7.0 through 4.10.16 used an unbounded ConcurrentHashMap cache with no eviction policy in its DefaultHtmlErrorResponseBodyProvider. If the application throws an...

7.5CVSS0.00561EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2026-12437

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS5.8AI score0.00184EPSS
Exploits0References2
NVD
NVD
added 2026/03/16 3:16 p.m.4 views

CVE-2026-21386

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS0.00184EPSS
Exploits0References1
OSV
OSV
added 2026/03/16 2:51 p.m.3 views

CVE-2026-21386 Private channel enumeration via /mute slash command

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to use consistent error responses when handling the /mute command which allows an authenticated team member to enumerate private channels they are not authorized to know about via differing error messages for nonexisten...

4.3CVSS6.3AI score0.00184EPSS
Exploits0References3
EUVD
EUVD
added 2026/03/11 7:23 p.m.4 views

EUVD-2026-11298

Shopware has user enumeration via distinct error codes on Store API login endpoint...

5.3CVSS5.8AI score0.00218EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/11 12:0 a.m.8 views

PT-2026-24802

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 8.6.34 and 9.6.0-alpha.8, the email verification endpoint /verificationEmailRequest returns distinct error responses depending on whether an email address belongs to an existing user, ...

6.3CVSS5.8AI score0.00241EPSS
Exploits0References7
OSV
OSV
added 2026/03/10 6:28 p.m.4 views

GO-2026-4568 Curio exposes database credentials to users with network access through verbose HTTP error responses in github.com/filecoin-project/curio

Curio exposes database credentials to users with network access through verbose HTTP error responses in github.com/filecoin-project/curio...

5.8AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/06 8:28 p.m.4 views

CVE-2026-30835

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6.7 and 9.5.0-alpha.6, malformed $regex query parameter e.g. abc causes the database to return a structured error object that is passed unsanitized through the API response...

6.9CVSS5.8AI score0.00336EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder