11 matches found
EUVD-2025-30787
Malicious code in bioql PyPI...
RHEL 10 : command-line-assistant (RHSA-2025:16345)
The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:16345 advisory. The command-line-assistant package provides a simple wrapper to interact with RAG. Security Fix: command-line-assistant: Improper Access Control in...
rhel-lightspeed: Improper Access Control in Lightspeed History Management Allows Local Privilege Manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
rhel-lightspeed: Improper Access Control in Lightspeed History Management Allows Local Privilege Manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
Moderate: Red Hat Security Advisory: command-line-assistant security update
An update for command-line-assistant is now available for Red Hat Enterprise Linux 10.0. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...
CVE-2025-5962
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962 Rhel-lightspeed: improper access control in lightspeed history management allows local privilege manipulation
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962
A flaw was found in the Lightspeed history service. Insufficient access controls allow a local, unprivileged user to access and manipulate the chat history of another user on the same system. By abusing inter-process communication calls to the history service, an attacker can view, delete, or...
CVE-2025-5962
CVE-2025-5962 affects Lightspeed history service. A local, unprivileged user can abuse inter-process communication with the history service to view, delete, or inject history entries, potentially manipulating another user’s chat history and enabling privilege misuse or unauthorized command execut...
PT-2025-38699
Name of the Vulnerable Software and Affected Versions Lightspeed affected versions not specified Description A flaw exists in the Lightspeed history service due to insufficient access controls. A local, unprivileged user can access and manipulate the chat history of another user on the same syste...