Lucene search
K

5 matches found

NVD
NVD
added 2026/06/02 4:16 p.m.12 views

CVE-2026-45684

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. From version 0.7.0 to before version 0.9.0, OBI's log enricher mishandles writev buffers by reading only the first iovec entry but using the total ioviter.count as the copy length. When log...

5.3CVSS0.00172EPSS
Exploits1References2
NVD
NVD
added 2026/05/27 8:16 p.m.20 views

CVE-2026-47271

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, src/mem.c implemented out-of-memory guards for xmalloc, xrealloc, and xstrdup using assertdata != NULL. The C standard specifies that all assert expressions are compiled out when NDEBUG is defined at...

5.1CVSS0.00122EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/27 8:11 p.m.13 views

EUVD-2026-32656

pamusb provides hardware authentication for Linux using ordinary removable media. Prior to 0.9.0, pamusb's denyremote feature checks utmpx utaddrv6 to detect whether an authentication request originates from a remote session. The outer guard was if utent-utaddrv60 != 0, which only tests the first...

7.4CVSS5.9AI score0.00307EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/15 8:2 p.m.12 views

EUVD-2026-30625

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, a stored cross-site scripting XSS vulnerability that allows any authenticated user with model creation permission workspace.models to execute arbitrary JavaScript in the browser of a...

7.3CVSS7.3AI score0.00308EPSS
Exploits1References1
CVE
CVE
added 2026/05/15 7:18 p.m.27 views

CVE-2026-45399

Open WebUI CVE-2026-45399 describes a broken authorization gap in multi-user deployments: before release 0.9.0, authenticated, low-privilege users could enumerate and stop global background tasks via GET /api/tasks and POST /api/tasks/stop/{task_id}, impacting integrity and availability across us...

7.1CVSS5.8AI score0.0027EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder