Lucene search
K

636 matches found

Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.7 views

PT-2026-29036

Name of the Vulnerable Software and Affected Versions virtio-win affected versions not specified Description A memory management issue exists in the VirtIO Block BLK device within virtio-win. A reset of the device does not properly handle memory, leading to a use-after-free condition. This could...

7.8CVSS5.9AI score0.00109EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/03/26 3:2 p.m.4 views

CVE-2026-32049

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS5.8AI score0.00543EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/26 12:0 a.m.5 views

OpenClaw Denial of Service Vulnerability (CNVD-2026-16053)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause increased memory usage and process instability...

8.7CVSS5.9AI score0.00543EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/03/25 6:57 p.m.5 views

CVE-2026-23363

A flaw was found in the Linux kernel's mt76 wireless driver, specifically within the mt7925 component. This vulnerability arises from a failure to properly check the frame length before accessing management fields in the mt7925macwritetxwi80211 function. An attacker could potentially exploit this...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 5:59 p.m.5 views

CVE-2026-23294

A flaw was found in the Linux kernel. A race condition in the devmap component, specifically within the xdpdevbulkqueue bq on PREEMPTRT kernels, allows multiple preemptible tasks on the same CPU to concurrently access the bq. This can lead to a use-after-free vulnerability, potentially resulting ...

5.8AI score0.0009EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 5:45 p.m.3 views

CVE-2026-23344

A flaw was found in the Linux kernel's crypto: ccp module. A use-after-free vulnerability exists in the sevtsminitlocked function's error handling path. This occurs when the system attempts to access memory that has already been released, leading to a memory corruption vulnerability. This could...

5.7AI score0.0012EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 4:48 p.m.3 views

CVE-2026-23360

A flaw was found in the Linux kernel's Non-Volatile Memory Express NVMe subsystem. When an NVMe controller is reset, a previously allocated administration queue may not be properly released before a new one is created. This can lead to the old queue becoming orphaned, potentially causing resource...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 3:11 p.m.6 views

CVE-2026-23358

A flaw was found in the Linux kernel's drm/amdgpu driver. During slot reset error handling, the system could attempt to access an uninitialized list due to an uninitialized pointer. This could lead to system instability or a denial of service...

5.7AI score0.00121EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 1:48 p.m.6 views

CVE-2026-23373

A flaw was found in the Linux kernel's wifi: rsi module. The rsimac80211config function's failure to default to a zero value can trigger a WARNON in the ieee80211hwconfinit function. This unexpected driver behavior may lead to system instability or other unforeseen operational issues...

5.7AI score0.00114EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 1:39 p.m.3 views

CVE-2026-23355

A flaw was found in the Linux kernel's libata subsystem. This vulnerability occurs due to improper handling of deferred work. When ap-deferredqc is cleared, the associated queued work is not canceled, leading to the work being executed at an inappropriate time. This can result in a WARNON...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/25 12:20 p.m.4 views

CVE-2026-23376

A flaw was found in the Linux kernel's nvmet-fcloop component. This vulnerability occurs due to incorrect handling of resource freeing when the remote port state is not online. Specifically, the fcloopt2hxmtlsrsp routine fails to check the remoteport-portstate before calling a done callback, whic...

3.3CVSS5.8AI score0.00117EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/21 3:31 a.m.5 views

EUVD-2026-13945

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS5.9AI score0.00543EPSS
Exploits0References4
OSV
OSV
added 2026/03/21 3:31 a.m.1 views

GHSA-XQ3G-M3J8-2VMM Duplicate Advisory: OpenClaw's inbound media downloads could exceed configured byte limits before rejection across multiple channels

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-rxxp-482v-7mrh. This link is maintained to preserve external references. Original Description OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before bufferi...

8.7CVSS5.8AI score0.00543EPSS
Exploits0References4
NVD
NVD
added 2026/03/21 1:17 a.m.4 views

CVE-2026-32049

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS0.00543EPSS
Exploits0References3
OSV
OSV
added 2026/03/21 12:42 a.m.5 views

CVE-2026-32049 OpenClaw < 2026.2.22 - Denial of Service via Inbound Media Download Byte Limit Bypass

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS6AI score0.00543EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/21 12:42 a.m.6 views

CVE-2026-32049

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS5.9AI score0.00543EPSS
Exploits0References4
CVE
CVE
added 2026/03/21 12:42 a.m.11 views

CVE-2026-32049

OpenClaw is affected on versions prior to 2026.2.22. The issue concerns enforcement of configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads, triggering elevated memory usage and potential pro...

8.7CVSS5.9AI score0.00543EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/03/21 12:0 a.m.8 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause increased memory usage and process instability...

8.7CVSS5.8AI score0.00543EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/21 12:0 a.m.4 views

PT-2026-26731

OpenClaw versions prior to 2026.2.22 fail to consistently enforce configured inbound media byte limits before buffering remote media across multiple channel ingestion paths. Remote attackers can send oversized media payloads to trigger elevated memory usage and potential process instability...

8.7CVSS5.9AI score0.00543EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/03/20 12:28 p.m.4 views

CVE-2026-23278

A flaw was found in the Linux kernel's netfilter subsystem, specifically within the nftables component. This vulnerability occurs during transaction processing when the system incorrectly handles multiple pending catchall elements, particularly when the associated map is being removed. This can...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References4
Rows per page
Query Builder