CVE-2026-30624

Agent Zero 0.9.8 contains a remote code execution vulnerability in its External MCP Servers configuration feature. The application allows users to define MCP servers using a JSON configuration containing arbitrary command and args values. These values are executed by the application when the...

CVE-2026-30624

Agent Zero 0.9.8 contains a remote code execution vulnerability in its External MCP Servers configuration feature. The application allows users to define MCP servers using a JSON configuration containing arbitrary command and args values. These values are executed by the application when the...

The vulnerability of Microsoft Defender for Endpoint on Linux operating systems, related to improper external management of file names or paths, allows attackers to escalate their privileges.

The vulnerability of Microsoft Defender for Endpoint on Linux operating systems is related to incorrect external management of file names or file paths. Exploiting this vulnerability can allow attackers to increase their privileges...

SUSE-SU-2025:20154-1 Security update for python311

This update for python311 fixes the following issues: - Skip PGO with %wantreproduciblebuilds bsc1239210 - CVE-2025-0938: Disallows square brackets and in domain names for parsed URLs bsc1236705. - Configure externallymanaged with a bcond bsc1228165. - Update to 3.11.11: - Tools/Demos - gh-123418...

The vulnerability of the OpenSSH cryptographic protection mechanism for Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the OpenSSH cryptographic security mechanism for Windows operating systems is related to improper external management of file names or file paths. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2024-6181 · Microsoft · Windows Compressed Folder +1

Name of the Vulnerable Software and Affected Versions: Windows Compressed Folder affected versions not specified Description: The issue is related to incorrect external management of a file's name or path in Windows operating systems. This can allow a remote attacker to gain unauthorized access t...

The vulnerability of the PowerScale OneFS operating system, related to incorrect external management of file names or paths, allows a attacker to trigger a service failure.

The vulnerability of the PowerScale OneFS operating system is related to improper external management of file names or file paths. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the FortiClient.msi installer of the Fortinet FortiClient for Windows security solution allows a malicious individual to escalate their privileges.

The vulnerability of the FortiClient.msi installer of the Fortinet FortiClient for Windows security solution is related to incorrect external management of file names or file paths. Exploiting this vulnerability can allow attackers to increase their privileges...

CVE-2021-1600

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

CVE-2021-1601

Multiple vulnerabilities in Cisco Intersight Virtual Appliance could allow an unauthenticated, adjacent attacker to access sensitive internal services from an external interface. These vulnerabilities are due to insufficient restrictions for IPv4 or IPv6 packets that are received on the external...

SQL Injection Vulnerability in NetMizer Log Management System

The NetMizer system records all session logs flowing through the device and transmits them to an external management center, which is an analysis system in conjunction with the NetMizer system. NetMizer log management system has a SQL injection vulnerability, through which an attacker can steal...