CVE-2026-7271 DV0x creative-ad-agent creative-ad-agent-server sdk-server.ts path traversal

A vulnerability was detected in DV0x creative-ad-agent up to 751b9e5146604dc65049bd0f62dcbdad6212f8a3. Impacted is an unknown function of the file server/sdk-server.ts of the component creative-ad-agent-server. Performing a manipulation of the argument req.params results in path traversal. Remote...

EUVD-2022-6805

Malicious code in bioql PyPI...

CVE-2025-53365

The MCP Python SDK (package name mcp) has a CVE-2025-53365 issue affecting versions prior to 1.10.0. If a client deliberately triggers an exception after establishing a streamable HTTP session, the server can emit an uncaught ClosedResourceError, potentially crashing the server and requiring a re...

Malicious code in paypal-sdk-server-side-integration (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e7cbb479a86e79945f77f69a5ee3fa04d2ed76af23ea3bc9de04b02ed5cc0b4d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Moderate: Red Hat Security Advisory: Red Hat Camel for Spring Boot 3.18.3 release and security update

A minor version update from 3.14.5 to 3.18.3 is now available for Camel for Spring Boot. The purpose of this text-only errata is to inform you about the security issues fixed in this release. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common...

com.digitalpetri.opcua:uanodeset-parser (=0.4.0), com.festo.aas:p4m-helpers (>=1.0.0 <=1.0.4) +58 more potentially affected by CVE-2022-25897 via org.eclipse.milo:sdk-server (>=0.1.0 <=0.6.7)

org.eclipse.milo:sdk-server MAVEN version =0.1.0, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =0.2.1, =0.2.1, =0.2.0, =0.2.0, =0.2.6 - de.fraunhofer.iosb.ilt.faaast.client:core =1.1.0 and more Source cves: CVE-2022-25897 Source advisory: OSV:GHSA-FPH9-F5R6-VHQF...

Denial Of Service (DoS)

sdk-server is vulnerable to denial of service. The vulnerability exists because the maximum number of monitored items per session does not properly configure in the getMaxMonitoredItems function of OpcUaServerConfigLimits.java, allowing an attacker to cause an application crash by sending multipl...

CVE-2022-25897

The CVE-2022-25897 issue affects the Eclipse Milo SDK-Server (org.eclipse.milo:sdk-server) prior to version 0.6.8. The root cause is a memory‑consumption bypass in CloseSession handling when deleteSubscription is False, allowing a denial of service via repeated CloseSession requests. The Red Hat ...

PT-2022-17593 · Eclipse · Org.Eclipse.Milo:Sdk-Server

Name of the Vulnerable Software and Affected Versions: org.eclipse.milo:sdk-server versions prior to 0.6.8 Description: The issue allows for a Denial of Service DoS when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscriptio...

Denial of Service (DoS)

Overview org.eclipse.milo:sdk-server is an open-source implementation of OPC UA Affected versions of this package are vulnerable to Denial of Service DoS when bypassing the limitations for excessive memory consumption by sending multiple CloseSession requests with the deleteSubscription parameter...

com.digitalpetri.opcua:uanodeset-parser (=0.4.0), com.festo.aas:p4m-helpers (>=1.0.0 <=1.0.4) +58 more potentially affected by CVE-2022-25897 via org.eclipse.milo:sdk-server (>=0.1.0 <=0.6.7)

org.eclipse.milo:sdk-server MAVEN version =0.1.0, =1.0.0, =0.0.1, =0.1.0, =0.1.0, =0.2.1, =0.2.1, =0.2.0, =0.2.0, =0.2.6 - de.fraunhofer.iosb.ilt.faaast.client:core =1.1.0 and more Source cves: CVE-2022-25897 Source advisory: SNYK:JAVA-ORGECLIPSEMILO-2990191...