Lucene search
K

8 matches found

Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.13 views

PT-2026-51006

Name of the Vulnerable Software and Affected Versions mcp-memory-service versions prior to 10.65.3 Description The HTTP MCP JSON-RPC endpoint at "/mcp" fails to properly validate OAuth scopes. It allows requests with only the read scope to be dispatched to handlers that include mutating tools...

8.1CVSS5.9AI score0.00264EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.8 views

AgentScope 安全漏洞

AgentScope is an open-source application developed by ModelScope. It simplifies the development of multi-agent applications based on LLMs. Versions of AgentScope prior to 1.0.18 contained a security vulnerability, which was caused by incorrect handling of the parameter url in the file...

7.5CVSS7.1AI score0.00284EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/16 11:28 p.m.5 views

SUSE CVE-2026-34393

Weblate is a web based localization tool. In versions prior to 5.17, the user patching API endpoint didn't properly limit the scope of edits. This issue has been fixed in version 5.17...

8.8CVSS5.7AI score0.00391EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.4 views

EasyVirt DC Scope和EasyVirt CO2 Scope 安全漏洞

EasyVirt DC Scope and EasyVirt CO2 Scope are both products of the French company EasyVirt.EasyVirt DC Scope is a monitoring and management solution for VMware Virtualization VMware.EasyVirt CO2 Scope is a real-time monitoring and control solution for IT services, virtual machines and servers in...

9.8CVSS7.7AI score0.0109EPSS
Exploits1References2
OSV
OSV
added 2024/11/15 5:15 p.m.6 views

CVE-2021-1491

A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to read arbitrary files on the underlying file system of the device. This vulnerability is due to insufficient file scope limiting. An attacker could exploit this...

6.5CVSS5.9AI score0.01316EPSS
Exploits0References1
CNVD
CNVD
added 2022/11/05 12:0 a.m.63 views

IBM Robotic Process Automation Resources Exposed to False Scope Vulnerability

IBM Robotic Process Automation is a robotic process automation product from International Business Machines IBM, Inc. It can help you automate more business and IT processes at scale with the ease and speed of traditional RPA.IBM Robotic Process Automation for Cloud Pak suffers from a resource...

3.3CVSS1.8AI score0.00179EPSS
Exploits0References1
OSV
OSV
added 2022/09/24 12:0 a.m.7 views

OSV-2022-944 Stack-use-after-scope in RefCopyBytes

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51689 Crash type: Stack-use-after-scope READ Crash state: RefCopyBytes dngstream::Put tagdataptr::Put...

7.2AI score
Exploits0References1
NVD
NVD
added 2018/06/11 9:29 p.m.19 views

CVE-2017-7756

A use-after-free and use-after-scope vulnerability when logging errors from headers for XML HTTP Requests XHR. This could result in a potentially exploitable crash. This vulnerability affects Firefox 54, Firefox ESR 52.2, and Thunderbird 52.2...

9.8CVSS9.1AI score0.02665EPSS
Exploits0References10
Rows per page
Query Builder