CVE-2026-35570 OpenClaude has Sandbox Bypass via Early-Exit Logic Flaw that Allows Path Traversal

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Versions prior to 0.5.1 have a logic flaw in bashToolHasPermission inside src/tools/BashTool/bashPermissions.ts. When the sandbox auto-allow feature is active and no explicit deny rule is...

EUVD-2019-18160

Malware in sbrugna...

EUVD-2021-17572

Malware in sbrugna...

EUVD-2020-25126

Malware in sbrugna...

EUVD-2020-25103

Malware in sbrugna...

EUVD-2021-17842

Malware in sbrugna...

EUVD-2021-17916

Malware in sbrugna...

EUVD-2021-17733

Malware in sbrugna...

EUVD-2019-18170

Malware in sbrugna...

EUVD-2021-17849

Malware in sbrugna...

EUVD-2021-7267

Malicious code in bioql PyPI...

EUVD-2021-7303

Malicious code in bioql PyPI...

EUVD-2024-52595

Malicious code in bioql PyPI...

EUVD-2023-47271

Malicious code in bioql PyPI...

EUVD-2021-7296

Malicious code in bioql PyPI...

EUVD-2021-7261

Malicious code in bioql PyPI...

EUVD-2021-7295

Malicious code in bioql PyPI...

CVE-2024-49720

In multiple functions of Permissions.java, there is a possible way to override the state of the user's location permissions due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a logic error vulnerability, which is caused by a code logic error in multiple functions. An attacker can exploit the vulnerability to cause a local elevation of privilege...

CVE-2024-54495

The issue was addressed with improved permissions logic. This issue is fixed in macOS Sequoia 15.2, macOS Sonoma 14.7.2. An app may be able to modify protected parts of the file system...