USN-8098-10: Linux kernel (Raspberry Pi) vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

CVE-2026-28450 OpenClaw < 2026.2.12 - Unauthenticated Profile Tampering via Nostr Plugin HTTP Endpoints

OpenClaw versions prior to 2026.2.12 with the optional Nostr plugin enabled expose unauthenticated HTTP endpoints at /api/channels/nostr/:accountId/profile and /api/channels/nostr/:accountId/profile/import that allow reading and modifying Nostr profiles without gateway authentication. Remote...

CVE-2026-24403

ICCDev (iccDEV) versions

Logic Design Vulnerability in SentCMS v3.0.1707

SentCMS is a website management system of Nanchang Tengshu Technology Co. A logical design vulnerability exists in SentCMS v3.0.1707. The vulnerability exists in \application\user\controller\Profile.php, which allows an attacker to modify the administrator's information by modifying the member's...