7 matches found
EUVD-2026-9915
OpenClaw versions prior to 2026.2.14 contain a webhook routing vulnerability in the Google Chat monitor component that allows cross-account policy context misrouting when multiple webhook targets share the same HTTP path. Attackers can exploit first-match request verification semantics to process...
CVE-2026-28469 OpenClaw < 2026.2.14 - Cross-Account Policy Context Misrouting via Shared Webhook Path Ambiguity
OpenClaw versions prior to 2026.2.14 contain a webhook routing vulnerability in the Google Chat monitor component that allows cross-account policy context misrouting when multiple webhook targets share the same HTTP path. Attackers can exploit first-match request verification semantics to process...
minio -- Privilege Escalation via Session Policy Bypass in Service Accounts and STS
mino reports: A privilege escalation vulnerability allows service accounts and STS Security Token Service accounts with restricted session policies to bypass their inline policy restrictions when performing "own" account operations, specifically when creating new service accounts for the same use...
Incorrect Authorization
Overview github.com/minio/minio/cmd is an open source object storage server compatible with Amazon S3 APIs. Affected versions of this package are vulnerable to Incorrect Authorization via the isAllowedBySessionPolicyForServiceAccount and isAllowedBySessionPolicy functions that incorrectly rely on...
NetScaler: Troubleshooting SSO Failures Over VPN Mode
SSO failures over VPN mode on NetScaler can often be traced to limitations in HTTPS inspection, misconfigured session or traffic policies, or incomplete authentication setups. By carefully reviewing these areas—especially the VPN mode, session policies, and authentication flow—you can...
What is the Order of XenMobile Timeouts
Question: What is the order of XenMobile Timeouts? Answer: Forced Time Out under NetScaler gateway Session policies Background Service Ticket Session Timeout NetScaler gateway OS session policies Max Offline PeriodMDX app Inactivity Timerclient properties on XMS. Setting| Component| Default...
NetScaler Cheat Sheets for XenMobile Integration
The purpose of these NetScaler cheat sheets is to provide a reference article with key information about each Session Policy or Session Profile configured via NetScaler / XenMobile wizard. These cheat sheets are applicable for XenMobile 9 and 10.x solutions. STWBRWIPAddress Clientless Access...