Lucene search
K

431 matches found

RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.6 views

CVE-2026-25157

OpenClaw is a personal AI assistant. Prior to version 2026.1.29, there is an OS command injection vulnerability via the Project Root Path in sshNodeCommand. The sshNodeCommand function constructed a shell script without properly escaping the user-supplied project path in an error message. When th...

7.7CVSS5.9AI score0.00935EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/02/02 11:41 p.m.15 views

OpenClaw/Clawdbot has OS Command Injection via Project Root Path in sshNodeCommand

Two related vulnerabilities existed in the macOS application's SSH remote connection handling CommandResolver.swift: Details The sshNodeCommand function constructed a shell script without properly escaping the user-supplied project path in an error message. When the cd command failed, the unescap...

7.7CVSS6.4AI score0.00935EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/23 12:26 a.m.7 views

CVE-2025-56590

An issue was discovered in the InsertFromURL function of the Apryse HTML2PDF SDK thru 11.10. This vulnerability could allow an attacker to execute arbitrary operating system commands on the local server...

9.8CVSS6.1AI score0.00488EPSS
Exploits1References1
NVD
NVD
added 2026/01/22 6:16 p.m.9 views

CVE-2025-56590

An issue was discovered in the InsertFromURL function of the Apryse HTML2PDF SDK thru 11.10. This vulnerability could allow an attacker to execute arbitrary operating system commands on the local server...

9.8CVSS0.00488EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

MiracleLinux 7 : emacs-24.3-23.0.1.el7.AXS7 (AXSA:2024-8912:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8912:03 advisory. CVE-2024-48337: fix etags local command injection vulnerability CVEs: CVE-2024-48337 RESERVED This candidate has been reserved by an organization or individu...

5.5AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/17 4:30 p.m.6 views

CVE-2026-23523

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the...

9.6CVSS7AI score0.06299EPSS
Exploits1References1
NVD
NVD
added 2026/01/16 5:15 p.m.7 views

CVE-2026-23523

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the...

9.6CVSS0.06299EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/01/16 4:29 p.m.3 views

CVE-2026-23523 Dive allows One-click Remote Code Execution through Deep Links for MCP Install

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the...

9.6CVSS6.6AI score0.06299EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/16 4:29 p.m.4 views

CVE-2026-23523

Dive is an open-source MCP Host Desktop Application that enables integration with function-calling LLMs. Prior to 0.13.0, crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation and can lead to arbitrary local command execution on the...

9.6CVSS5.8AI score0.06299EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/01/16 4:29 p.m.16 views

CVE-2026-23523

Dive (MCP Host Desktop Application) prior to version 0.13.0 is affected. A crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user confirmation, leading to arbitrary local command execution on the victim’s machine. This vulnerability is fixed in 0.13.0...

9.6CVSS6.6AI score0.06299EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/16 12:0 a.m.5 views

PT-2026-3261

Name of the Vulnerable Software and Affected Versions Dive versions prior to 0.13.0 Description Dive is an open-source MCP Host Desktop Application that integrates with function-calling LLMs. A crafted deeplink can install an attacker-controlled MCP server configuration without sufficient user...

9.6CVSS6.8AI score0.06299EPSS
Exploits1References12
RedhatCVE
RedhatCVE
added 2026/01/15 7:23 a.m.5 views

CVE-2026-22718

The VSCode extension for Spring CLI are vulnerable to command injection, resulting in command execution on the users machine...

6.8CVSS7.2AI score0.00503EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/01/13 8:36 p.m.24 views

Malicious website can execute commands on the local system through XSS in the OpenCode web UI

Summary A malicious website can abuse the server URL override feature of the OpenCode web UI to achieve cross-site scripting on http://localhost:4096. From there, it is possible to run arbitrary commands on the local system using the /pty/ endpoints provided by the OpenCode API. Code execution vi...

9.4CVSS6.6AI score0.00914EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2026/01/13 4:0 p.m.25 views

CVE-2026-0403

The CVE-2026-0403 entry concerns NETGEAR Orbi routers with an insufficient input validation vulnerability that enables OS command injections when an attacker is connected to the LAN. Affected component is the router software; the root cause is input validation weakness. Documented impact indicate...

8CVSS6.8AI score0.00291EPSS
Exploits0References11Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/12 10:52 p.m.3 views

CVE-2026-22813 Malicious website can execute commands on the local system through XSS in the OpenCode web UI

OpenCode is an open source AI coding agent. The markdown renderer used for LLM responses will insert arbitrary HTML into the DOM. There is no sanitization with DOMPurify or even a CSP on the web interface to prevent JavaScript execution via HTML injection. This means controlling the LLM response...

9.4CVSS6.6AI score0.00914EPSS
Exploits1References1
CVE
CVE
added 2026/01/12 10:52 p.m.25 views

CVE-2026-22813

The CVE-2026-22813 issue affects OpenCode, where the markdown renderer for LLM responses does not sanitize HTML, allowing arbitrary HTML/JavaScript to run in the OpenCode web UI at http://localhost:4096. The root cause is lack of DOM sanitization and CSP, enabling XSS that can leverage the localh...

9.4CVSS6.6AI score0.00914EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/01/12 10:52 p.m.36 views

CVE-2026-22813 Malicious website can execute commands on the local system through XSS in the OpenCode web UI

OpenCode is an open source AI coding agent. The markdown renderer used for LLM responses will insert arbitrary HTML into the DOM. There is no sanitization with DOMPurify or even a CSP on the web interface to prevent JavaScript execution via HTML injection. This means controlling the LLM response...

9.4CVSS0.00914EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.6 views

CVE-2020-10049

A vulnerability has been identified in SIMATIC RTLS Locating Manager All versions V2.10.2. The start-stop scripts for the services of the affected application could allow a local attacker to include arbitrary commands that are executed when services are started or stopped interactively by system...

7.3CVSS6.9AI score0.0026EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:43 a.m.8 views

CVE-1999-0689

The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack...

7.2CVSS7.6AI score0.00834EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/10 8:34 a.m.5 views

CVE-2025-2296

A flaw was found in EDK2 EFI Development Kit 2. This vulnerability allows an attacker to cause arbitrary command execution and impact Confidentiality, Integrity, and Availability via improper input validation by local access. Mitigation To reduce the risk by disabling direct-boot mode, ensuring a...

8.4CVSS6.7AI score0.00669EPSS
Exploits0References4
Rows per page
Query Builder