CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

CVE•added 2026/03/31 12:0 a.m.•2 views

CVE-2026-29870

The CVE-2026-29870 entry describes a directory traversal in the agentic-context-engine (versions up to 0.7.1) that enables arbitrary file writes via the checkpoint_dir parameter in OfflineACE.run. The root cause is that save_to_file in ace/skillbook.py does not normalize or validate filesystem pa...

7.6CVSS6.3AI score0.00113EPSS

Exploits0References1

Positive Technologies•added 2026/03/31 12:0 a.m.•3 views

PT-2026-29270

A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes via the checkpoint dir parameter in OfflineACE.run. The save to file method in ace/skillbook.py fails to normalize or validate filesystem paths, allowing traversal sequences...

7.6CVSS6.3AI score0.00113EPSS

Exploits0References2

Cvelist•added 2026/03/31 12:0 a.m.•20 views

CVE-2026-29870

A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes via the checkpointdir parameter in OfflineACE.run. The savetofile method in ace/skillbook.py fails to normalize or validate filesystem paths, allowing traversal sequences to...

0.00113EPSS

Exploits0References1

Vulnrichment•added 2026/03/31 12:0 a.m.•2 views

CVE-2026-29870

A directory traversal vulnerability in the agentic-context-engine project versions up to 0.7.1 allows arbitrary file writes via the checkpointdir parameter in OfflineACE.run. The savetofile method in ace/skillbook.py fails to normalize or validate filesystem paths, allowing traversal sequences to...

6.3AI score0.00113EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by