Lucene search
K

13 matches found

OSV
OSV
added 2026/04/17 10:17 p.m.2 views

GHSA-JHPV-5J76-M56H OpenClaw: Sender policy bypass in host media attachment reads allows unauthorized local file disclosure

Summary OpenClaw's outbound host-media attachment read helper could enable host-local file reads based on global or agent-level read access without also honoring sender and group-scoped tool policy. In channel deployments that used toolsBySender or group policy to deny read for less-trusted...

6CVSS5.7AI score0.00236EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/11 12:24 a.m.5 views

SUSE CVE-2026-28689

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write. This...

6.3CVSS5.8AI score0.00108EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.4 views

PT-2026-24616

domain="path" authorization is checked before final file open/use. A symlink swap between check-time and use-time bypasses policy-denied read/write...

6.3CVSS5.8AI score0.00108EPSS
Exploits0References5
Snyk
Snyk
added 2026/02/24 1:27 a.m.8 views

Incomplete List of Disallowed Inputs

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.8CVSS6AI score0.00135EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:27 a.m.6 views

Incomplete List of Disallowed Inputs

Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.8CVSS6AI score0.00135EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:27 a.m.6 views

Incomplete List of Disallowed Inputs

Overview Magick.NET-Q8-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.8CVSS6AI score0.00135EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/24 1:27 a.m.4 views

Incomplete List of Disallowed Inputs

Overview Magick.NET-Q16-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

7.8CVSS6AI score0.00135EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.6 views

Kyverno security vulnerabilities

Kyverno is an open-source policy engine designed for Kubernetes. Versions of Kyverno prior to 1.16.3 and 1.15.3 have security vulnerabilities. These vulnerabilities stem from the policy engine’s unlimited memory consumption, which could allow users with permission to create policies to execute...

7.7CVSS7.4AI score0.00531EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2024/11/02 3:49 a.m.8 views

SUSE CVE-2024-47825

Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to versions 1.14.16 and 1.15.10, a policy rule denying a prefix that is broader than /32 may be ignored if there is a policy rule referencing a more narrow prefix CIDRSe...

8.7CVSS6.8AI score0.00391EPSS
Exploits0References5
OSV
OSV
added 2022/08/05 5:15 p.m.7 views

CVE-2021-28511

This advisory documents the impact of an internally found vulnerability in Arista EOS for security ACL bypass. The impact of this vulnerability is that the security ACL drop rule might be bypassed if a NAT ACL rule filter with permit action matches the packet flow. This could allow a host with an...

6.5CVSS5.7AI score0.00493EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/07/29 12:0 a.m.6 views

PT-2022-23025 · Minio +1 · Minio +1

Name of the Vulnerable Software and Affected Versions: MinIO affected versions not specified Description: The issue affects MinIO, a High Performance Object Storage, where admin users authorized for admin:ServerUpdate can trigger an error that returns the content of the requested path. This allow...

9CVSS6.8AI score0.83957EPSS
Exploits25References48
RedHat Linux
RedHat Linux
added 2016/06/21 9:24 p.m.6 views

setroubleshoot-plugins: insecure commands.getoutput use in the allow_execstack plugin

A shell command injection flaw was found in the way the setroubleshoot allowexecstack plugin executed external commands. A local attacker able to trigger an execstack SELinux denial could use this flaw to execute arbitrary code with root privileges...

7CVSS7.4AI score0.00475EPSS
Exploits1References4
NVD
NVD
added 2000/10/20 4:0 a.m.21 views

CVE-2000-0771

Microsoft Windows 2000 allows local users to cause a denial of service by corrupting the local security policy via malformed RPC traffic, aka the "Local Security Policy Corruption" vulnerability...

2.1CVSS6.2AI score0.01526EPSS
Exploits0References2
Rows per page
Query Builder