Lucene search
+L

2100 matches found

Snyk
Snyk
added 2026/04/17 10:20 p.m.3 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the service invocation access control process. An attacker can bypass access control policies and invoke unauthorized methods by submitting specially crafted method paths containing encoded path traversal...

8.6CVSS5.8AI score0.00325EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/17 10:20 p.m.4 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the service invocation access control process. An attacker can bypass access control policies and invoke unauthorized methods by submitting specially crafted method paths containing encoded path traversal...

8.6CVSS5.8AI score0.00325EPSS
Exploits0References3
Snyk
Snyk
added 2026/04/17 10:20 p.m.2 views

Access Control Bypass

Overview Affected versions of this package are vulnerable to Access Control Bypass via the service invocation access control process. An attacker can bypass access control policies and invoke unauthorized methods by submitting specially crafted method paths containing encoded path traversal...

8.6CVSS5.8AI score0.00325EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/07 10:11 p.m.21 views

CVE-2026-39936 Stored XSS in Score due to usage of non-reserved data attributes

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in The Wikimedia Foundation Mediawiki - Score Extension allows Cross-Site Scripting XSS. The issue has been remediated on the master branch, and in the release branches for MediaWiki versions 1.43,...

6.9CVSS0.00268EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 3:17 p.m.5 views

CVE-2026-32019

OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range validation in the isPrivateIpv4 function, allowing requests to RFC-reserved ranges to bypass SSRF policy checks. Attackers with network reachability to special-use IPv4 ranges can exploit webfetch functionality to acce...

7.4CVSS5.8AI score0.00206EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/25 11:26 p.m.5 views

CVE-2026-23335

A flaw was found in the Linux kernel's RDMA/irdma component. This vulnerability, located in the irdmacreateuserah function, is caused by uninitialized reserved memory. An attacker could potentially exploit this to leak 4 bytes of sensitive stack memory, leading to information disclosure...

3.3CVSS5.7AI score0.00125EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/03/25 4:56 p.m.8 views

SUSE CVE-2026-23335

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix kernel stack leak in irdmacreateuserah struct irdmacreateahresp // 8 bytes, no padding u32 ahid; // offset 0 - SET uresp.ahid = ah-scah.ahinfo.ahidx u8 rsvd4; // offset 4 - NEVER SET - LEAK ; rsvd4: 4 bytes of sta...

3.3CVSS5.7AI score0.00125EPSS
Exploits0References15
NVD
NVD
added 2026/03/25 11:16 a.m.6 views

CVE-2026-23352

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5CVSS0.00125EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.5 views

CVE-2026-23352

In the Linux kernel, the following vulnerability has been resolved: x86/efi: defer freeing of boot services memory efifreebootservices frees memory occupied by EFIBOOTSERVICESCODE and EFIBOOTSERVICESDATA using memblockfreelate. There are two issue with that: memblockfreelate should be used for...

5.5AI score0.00125EPSS
Exploits0References10Affected Software1
CVE
CVE
added 2026/03/25 10:27 a.m.21 views

CVE-2026-23335

CVE-2026-23335: Linux kernel RDMA/irdma create_user_ah() leak resolved. Root cause: the irdma_create_ah_resp struct contained 4 bytes (rsvd) that were never zeroed, leaking stack memory prior to ib_respond_udata(). Affected code paths thus exposed uninitialized stack content (4 bytes) in the resp...

5.5CVSS5.7AI score0.00125EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/03/23 6:14 p.m.5 views

GO-2026-4746 Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation in github.com/mattermost/mattermost-server

Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation in github.com/mattermost/mattermost-server. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4
NVD
NVD
added 2026/03/19 10:16 p.m.5 views

CVE-2026-32019

OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range validation in the isPrivateIpv4 function, allowing requests to RFC-reserved ranges to bypass SSRF policy checks. Attackers with network reachability to special-use IPv4 ranges can exploit webfetch functionality to acce...

7.4CVSS0.00206EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/19 10:6 p.m.11 views

EUVD-2026-13286

OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range validation in the isPrivateIpv4 function, allowing requests to RFC-reserved ranges to bypass SSRF policy checks. Attackers with network reachability to special-use IPv4 ranges can exploit webfetch functionality to acce...

6CVSS5.8AI score0.00206EPSS
Exploits0References6
CVE
CVE
added 2026/03/19 10:6 p.m.9 views

CVE-2026-32019

OpenClaw (npm) is affected by CVE-2026-32019 in versions prior to 2026.2.22 due to incomplete IPv4 special-use range validation in isPrivateIpv4(), which can let SSRF bypass protections for RFC-reserved/non-global ranges via web_fetch. Exploitation requires network reachability to those special-u...

7.4CVSS5.8AI score0.00206EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2026/03/19 10:6 p.m.5 views

CVE-2026-32019 OpenClaw < 2026.2.22 - Incomplete IPv4 Special-Use Range Blocking in SSRF Guard

OpenClaw versions prior to 2026.2.22 contain incomplete IPv4 special-use range validation in the isPrivateIpv4 function, allowing requests to RFC-reserved ranges to bypass SSRF policy checks. Attackers with network reachability to special-use IPv4 ranges can exploit webfetch functionality to acce...

2.3CVSS5.9AI score0.00206EPSS
Exploits0References8
NVD
NVD
added 2026/03/18 2:16 a.m.9 views

CVE-2026-27524

OpenClaw versions prior to 2026.2.21 accept prototype-reserved keys in runtime /debug set override object values, allowing prototype pollution attacks. Authorized /debug set callers can inject proto, constructor, or prototype keys to manipulate object prototypes and bypass command gate restrictio...

4.3CVSS0.00237EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a reserved leak that occurs due to certain incorrect paths when inline scope is inserted...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References7
EUVD
EUVD
added 2026/03/16 3:30 p.m.6 views

EUVD-2026-12441

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation which allows an attacker to perform SSRF attacks against internal services via IPv4-mapped IPv6 literals e.g., ::ffff:127.0.0.1.. Mattermost...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/16 3:30 p.m.7 views

Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation which allows an attacker to perform SSRF attacks against internal services via IPv4-mapped IPv6 literals e.g., ::ffff:127.0.0.1.. Mattermost...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4Affected Software2
OSV
OSV
added 2026/03/16 3:30 p.m.4 views

GHSA-GQV7-J2J8-QMWQ Mattermost fails to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to canonicalize IPv4-mapped IPv6 addresses before reserved IP validation which allows an attacker to perform SSRF attacks against internal services via IPv4-mapped IPv6 literals e.g., ::ffff:127.0.0.1.. Mattermost...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References4
Rows per page
Query Builder