Lucene search
+L

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-53194

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: serial: kl5kusb105: fix bulk-out buffer overflow klsi105preparewritebuffer is called by the generic write path with the bulk-out buffer and its size...

7.8CVSS6.2AI score0.00148EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/10 8:0 p.m.12 views

EUVD-2026-36116

bit7z is a cross-platform C++ static library that allows the compression/extraction of archive files. Prior to version 4.0.12, a one-byte off-by-one error in SafeOutPathBuilder::restoreSymlink allows an attacker to craft a .7z archive that, when extracted with bit7z on any non-Windows platform,...

3.6CVSS5.5AI score0.00116EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/05/05 9:15 p.m.14 views

@evomap/evolver: Path Traversal in `evolver fetch` default-branch `safeId` allows Hub-controlled overwrite of project files (RCE)

Summary The evolver fetch subcommand in index.js writes Hub-supplied bundledfiles into a directory derived from a Hub-supplied skillid. When --out is not used, the path-sanitizing regex permits . characters, allowing a skillid of .. to escape the skills/ subdirectory and resolve to the user's...

6.4AI score
Exploits0References2Affected Software1
OSV
OSV
added 2026/05/05 11:25 a.m.4 views

CVE-2026-43567 OpenClaw < 2026.4.10 - Path Traversal in screen_record outPath Parameter

OpenClaw before 2026.4.10 contains a path traversal vulnerability in the screenrecord tool's outPath parameter that bypasses workspace-only filesystem guards. Attackers can exploit this by specifying an outPath outside the workspace boundary to write files to unintended locations on the system...

7.1CVSS6AI score0.0022EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/17 9:58 p.m.14 views

OpenClaw: screen_record outPath bypassed workspace-only filesystem guard

Summary screenrecord outPath bypassed workspace-only filesystem guard. Affected Packages / Versions - Package: openclaw - Ecosystem: npm - Affected versions: = 2026.4.10 Impact The node-host screen recording tool could honor an outPath outside the workspace guard, allowing an authorized tool call...

7.1CVSS5.7AI score0.0022EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder