16 matches found
UBUNTU-CVE-2026-47242
Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to 0.6.5 and 0.5.15, when Net::IMAPid is called with a hash argument, although the ID field value strings are correctly quoted escaping quoted specials, they were not validated to prohibit CRLF sequence...
CVE-2026-10814
A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...
CVE-2026-10814 milvus-io milvus Grantee ID Hash kv_catalog.go weak hash
A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...
EUVD-2026-34292
A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...
CVE-2026-10814 milvus-io milvus Grantee ID Hash kv_catalog.go weak hash
A vulnerability has been found in milvus-io milvus up to 2.6.13. This vulnerability affects unknown code of the file internal/metastore/kv/rootcoord/kvcatalog.go of the component Grantee ID Hash Handler. The manipulation leads to use of weak hash. The attack needs to be performed locally. The...
CVE-2026-10814
Milvus up to version 2.6.13 has a local vulnerability in the Grantee ID Hash Handler (internal/metastore/kv/rootcoord/kv_catalog.go) related to using a weak hash. Exploitation is described as locally possible with high complexity; exploitability is difficult. A patch is identified as 3d932f1c3e06...
milvus 安全漏洞
Milvus is a high-performance cloud-native vector database open-sourced by The Milvus Project. Versions of Milvus 2.6.13 and earlier contain security vulnerabilities. These vulnerabilities stem from the use of weak hashing in unknown code within the Grantee ID Hash Handler component’s...
CVE-2026-32897
OpenClaw versions prior to 2026.2.22 reuse gateway.auth.token as a fallback hash secret for owner-ID prompt obfuscation when commands.ownerDisplay is set to hash and commands.ownerDisplaySecret is unset, creating dual-use of authentication secrets across security domains. Attackers with access to...
CVE-2025-22009
creationtimestamp| type| source ---|---|--- 2025-04-08 14:00:04+00:00| seen| https://t.me/cvedetector/22453...
CVE-2024-42737
creationtimestamp| type| source ---|---|--- 2024-08-13 17:07:04+00:00| seen| https://t.me/cvedetector/3021...
PT-2024-13289 · Unknown · Oroplatform
Name of the Vulnerable Software and Affected Versions: OroPlatform versions prior to 5.1.4 Description: A logged in user can access page state data of pinned pages of other users by pageId hash. This issue allows unauthorized access to sensitive information. Recommendations: For versions prior to...
CVE-2022-43782
creationtimestamp| type| source ---|---|--- 2022-11-19 05:38:09+00:00| seen| https://t.me/thehackernews/2779 2022-11-19 09:31:36+00:00| seen| https://t.me/cKure/10449 2022-11-19 15:36:37+00:00| seen| https://t.me/itsecnews/1806 2022-11-21 08:43:48+00:00| seen| https://t.me/truesecator/3727...
CVE-2022-41239
creationtimestamp| type| source ---|---|--- 2022-09-21 20:41:30+00:00| seen| https://t.me/cibsecurity/50218...
PT-2022-4880 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to an out-of-bounds access in the Linux kernel sound subsystem, specifically with the get ctl id hash function. This occurs when the id-name parameter does not end...
CVE-2020-28929
creationtimestamp| type| source ---|---|--- 2020-12-17 00:42:05+00:00| seen| https://t.me/cibsecurity/20964...
PT-2005-1470 · Citrusdb · Citrusdb
Name of the Vulnerable Software and Affected Versions: CitrusDB versions 0.3.6 and earlier Description: The issue allows remote attackers to bypass authentication and gain privileges by calculating the MD5 checksum of the user name combined with the "boogaadeeboo" string, which is hard-coded in t...