Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/01/12 10:49 p.m.4 views

CVE-2026-22812 OpenCode's Unauthenticated HTTP Server Allows Arbitrary Command Execution

OpenCode is an open source AI coding agent. Prior to 1.0.216, OpenCode automatically starts an unauthenticated HTTP server that allows any local process or any website via permissive CORS to execute arbitrary shell commands with the user's privileges. This vulnerability is fixed in 1.0.216...

8.8CVSS7.1AI score0.16955EPSS
Exploits7References1
NVD
NVD
added 2025/08/07 10:15 a.m.9 views

CVE-2025-8533

A vulnerability was identified in the XPC services of Fantastical. The services failed to implement proper client authorization checks in its listener:shouldAcceptNewConnection method, unconditionally accepting requests from any local process. As a result, any local, unprivileged process could...

6.9CVSS0.00365EPSS
Exploits0References2
OSV
OSV
added 2018/07/27 1:40 p.m.8 views

SUSE-SU-2018:2088-1 Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP1)

This update for the Linux Kernel 3.12.74-606454 fixes several issues. The following security issue was fixed: - CVE-2018-3665: System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially have allowed a local process to infer data fro...

5.6CVSS5.7AI score0.00611EPSS
Exploits0References4
OSV
OSV
added 2018/07/27 1:38 p.m.3 views

SUSE-SU-2018:2102-1 Security update for the Linux Kernel (Live Patch 26 for SLE 12)

This update for the Linux Kernel 3.12.61-5289 fixes several issues. The following security issue was fixed: - CVE-2018-3665: System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially have allowed a local process to infer data from...

5.6CVSS5.7AI score0.00611EPSS
Exploits0References4
Rows per page
Query Builder