CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/05 7:13 p.m.•6 views

CVE-2026-40943

Oxia is a metadata store and coordination system. Prior to 0.16.2, a race condition between session heartbeat processing and session closure can cause the server to panic with send on closed channel. The heartbeat method uses a blocking channel send while holding a mutex, and under specific timin...

8.7CVSS5.7AI score0.00202EPSS

RedhatCVE•added 2026/05/19 7:57 a.m.•9 views

CVE-2026-44553

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, administrative role changes and user deletions do not iterate SESSIONPOOL to disconnect affected sessions. As a result, a user whose admin role has been revoked retains admin...

8.1CVSS5.7AI score0.00284EPSS

Exploits1References1

OSV•added 2026/05/08 7:43 p.m.•6 views

GHSA-45M8-CPM2-3V65 Open WebUI: Stale Admin Role in Socket.IO Session Pool Enables Post-Demotion Cross-User Note Access

Stale Admin Role in Socket.IO Session Pool Enables Post-Demotion Cross-User Note Access Affected Component Socket.IO session state and role-check callsites: - backend/openwebui/socket/main.py lines 330-351, connect handler — role snapshotted into SESSIONPOOL - backend/openwebui/socket/main.py lin...

8.1CVSS5.8AI score0.00284EPSS

Exploits1References3

Github Security Blog•added 2026/05/08 7:43 p.m.•9 views

Open WebUI: Stale Admin Role in Socket.IO Session Pool Enables Post-Demotion Cross-User Note Access

8.1CVSS5.8AI score0.00284EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•12 views

PT-2026-39270

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0 Description Administrative role changes and user deletions do not invalidate the SESSION POOL in-memory dictionary. When a user connects via Socket.IO, their role is snapshotted into this pool. Because the...

8.1CVSS5.8AI score0.00284EPSS

Exploits1References6

RedhatCVE•added 2026/05/07 8:21 p.m.•7 views

CVE-2026-43578

OpenClaw versions 2026.3.31 before 2026.4.10 contain a privilege escalation vulnerability where heartbeat owner downgrade detection misses local background async exec completion events. Attackers can exploit this by providing untrusted completion content to leave a run in a more privileged contex...

EUVD•added 2026/05/06 9:31 p.m.•6 views

EUVD-2026-28168

NVD•added 2026/05/06 8:16 p.m.•4 views

Exploits0References4

CVE-2026-43578

9.1CVSS0.00288EPSS

ATTACKERKB•added 2026/05/06 7:49 p.m.•4 views

CVE-2026-43578

Exploits0References4Affected Software1

Cvelist•added 2026/05/06 7:49 p.m.•40 views

CVE-2026-43578 OpenClaw 2026.3.31 < 2026.4.10 - Privilege Escalation via Missed Async Exec Completion Events in Heartbeat Owner Downgrade

9.1CVSS0.00288EPSS

Vulnrichment•added 2026/05/06 7:49 p.m.•5 views

CVE-2026-43578 OpenClaw 2026.3.31 < 2026.4.10 - Privilege Escalation via Missed Async Exec Completion Events in Heartbeat Owner Downgrade

CVE•added 2026/05/06 7:49 p.m.•14 views

CVE-2026-43578

OpenClaw 2026.3.31 before 2026.4.10 is affected by a privilege-escalation vulnerability in which heartbeat owner downgrade detection misses local background async exec completion events. Attackers can provide untrusted completion content to leave a run in a more privileged context than intended. ...

Exploits0References3Affected Software1

CNNVD•added 2026/05/06 12:0 a.m.•7 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw from 2026.3.31 to 2026.4.10 contained a security vulnerability. This vulnerability stemmed from a failure in the heartbeat owner’s detection mechanism, which overlooked local backend asynchrono...

9.1CVSS5.9AI score0.00288EPSS

vulnersOsv•added 2026/05/05 6:33 p.m.•6 views

arthexis (>=0.2.6 <=0.8.0), cg-django-uaa (=2.1.9) +29 more potentially affected by CVE-2026-5766 via django (>=5.2.0 <=5.2.13)

django PYPI version =5.2.0, =0.2.6, =0.1.0, =0.1.0, =1.3.0, =1.92.0.5, =4.2.0, =0.0.7, =3.0.0, =0.1.0, =0.1.1 and more Source cves: CVE-2026-5766 Source advisory: OSV:GHSA-W26R-RMM8-9C29...

6.3CVSS5.4AI score0.00423EPSS

Exploits0

NVD•added 2026/05/05 12:16 p.m.•11 views

CVE-2026-43566

OpenClaw versions 2026.4.7 before 2026.4.14 contain a privilege escalation vulnerability where heartbeat owner downgrade logic skips webhook wake events carrying untrusted content. Attackers can exploit this by sending untrusted webhook wake events to preserve owner-like execution context when th...

9.8CVSS0.00423EPSS

Cvelist•added 2026/05/05 11:25 a.m.•37 views

CVE-2026-43566 OpenClaw 2026.4.7 < 2026.4.14 - Privilege Escalation via Untrusted Webhook Wake Events

9.1CVSS0.00423EPSS

CVE•added 2026/05/05 11:25 a.m.•13 views

CVE-2026-43566

OpenClaw is affected in versions 2026.4.7 through 2026.4.13 by a privilege escalation vulnerability caused by heartbeat owner downgrade logic that skips webhook wake events carrying untrusted content. An attacker can exploit this by sending untrusted webhook wake events to preserve an owner‑like ...

9.8CVSS5.9AI score0.00423EPSS

Exploits0References3Affected Software1

CNNVD•added 2026/05/05 12:0 a.m.•9 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. The version of OpenClaw from 2026.4.7 to 2026.4.14 contains security vulnerabilities. These vulnerabilities stem from a logic that downgrades the heartbeat owner, causing it to skip Webhook wake-up events carrying...

9.8CVSS5.9AI score0.00423EPSS