248 matches found
CVE-2026-41350
CVE-2026-41350 affects OpenClaw prior to 2026.3.31, where the session_status function fails to enforce tools.sessions.visibility restrictions for unsandboxed invocations. This allows attackers to invoke session_status without sandbox constraints, bypassing session-policy controls and accessing re...
EUVD-2026-17955
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access. This vulnerability is due to improper authorization...
CVE-2026-20155
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access. This vulnerability is due to improper authorization...
CVE-2026-20155 Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access. This vulnerability is due to improper authorization...
CVE-2026-20155
Cisco EPNM has a REST API authorization flaw in its web-based management interface. An authenticated user with low privileges can query a REST endpoint and potentially view session information of active EPNM users, including administrators, which could lead to device compromise. The provided sour...
Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker with low privileges to access sensitive information that they are not authorized to access. This vulnerability is due to improper authorization...
PT-2026-29562
Cisco Evolved Programmable Network Manager Improper Authorization Vulnerability CVE: CVE-2026-20155 PT ID: PT-2026-29562 Vendor: Cisco Product: Cisco Evolved Programmable Network Manager EPNM CVSS: 8.0 Credits: n/a Description: A vulnerability in the web-based management interface of Cisco Evolve...
CVE-2023-40314
Cross-site scripting in bootstrap.jsp in multiple versions of OpenNMS Meridian and Horizon allows an attacker access to confidential session information. The solution is to upgrade to Horizon 32.0.5 or newer and Meridian 2023.1.9 or newer Meridian and Horizon installation instructions state that...
EUVD-2025-201276
Solstice Pod API version 5.5, 6.2 contains an unauthenticated API endpoint /api/config that exposes sensitive information such as the session key, server version, product details, and display name. Unauthorized users can extract live session information by accessing this endpoint without...
Mersive Solstice Pod API 安全漏洞
The Mersive Solstice Pod API is an application programming interface from Mersive USA. A security vulnerability exists in Mersive Solstice Pod API versions 5.5 and 6.2, which originates from an unauthenticated api/config endpoint that exposes sensitive information, potentially leading to session...
EUVD-2005-3806
Malware in sbrugna...
EUVD-2018-6583
Malware in sbrugna...
EUVD-2017-15417
Malware in sbrugna...
EUVD-2020-6184
Malware in sbrugna...
EUVD-2018-1975
Malware in sbrugna...
EUVD-2020-26513
Malware in sbrugna...
EUVD-2012-0364
Malware in sbrugna...
EUVD-2021-24829
Malware in sbrugna...
EUVD-2006-5790
Malware in sbrugna...
EUVD-2018-6585
Malware in sbrugna...