Lucene search
K

7 matches found

EUVD
EUVD
added 2026/03/05 9:59 p.m.3 views

EUVD-2026-9915

OpenClaw versions prior to 2026.2.14 contain a webhook routing vulnerability in the Google Chat monitor component that allows cross-account policy context misrouting when multiple webhook targets share the same HTTP path. Attackers can exploit first-match request verification semantics to process...

9.8CVSS5.9AI score0.003EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/05 9:59 p.m.2 views

CVE-2026-28469 OpenClaw < 2026.2.14 - Cross-Account Policy Context Misrouting via Shared Webhook Path Ambiguity

OpenClaw versions prior to 2026.2.14 contain a webhook routing vulnerability in the Google Chat monitor component that allows cross-account policy context misrouting when multiple webhook targets share the same HTTP path. Attackers can exploit first-match request verification semantics to process...

8.2CVSS5.8AI score0.003EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2025/10/17 12:0 a.m.14 views

minio -- Privilege Escalation via Session Policy Bypass in Service Accounts and STS

mino reports: A privilege escalation vulnerability allows service accounts and STS Security Token Service accounts with restricted session policies to bypass their inline policy restrictions when performing "own" account operations, specifically when creating new service accounts for the same use...

8.1CVSS7.2AI score0.00523EPSS
Exploits1References1
Snyk
Snyk
added 2025/10/16 9:36 p.m.2 views

Incorrect Authorization

Overview github.com/minio/minio/cmd is an open source object storage server compatible with Amazon S3 APIs. Affected versions of this package are vulnerable to Incorrect Authorization via the isAllowedBySessionPolicyForServiceAccount and isAllowedBySessionPolicy functions that incorrectly rely on...

8.1CVSS7.1AI score0.00523EPSS
Exploits1References2
Citrix
Citrix
added 2025/04/16 12:0 a.m.5 views

NetScaler: Troubleshooting SSO Failures Over VPN Mode

SSO failures over VPN mode on NetScaler can often be traced to limitations in HTTPS inspection, misconfigured session or traffic policies, or incomplete authentication setups. By carefully reviewing these areas—especially the VPN mode, session policies, and authentication flow—you can...

7.4AI score
Exploits0
Citrix
Citrix
added 2017/06/19 12:0 a.m.6 views

What is the Order of XenMobile Timeouts

Question: What is the order of XenMobile Timeouts? Answer: Forced Time Out under NetScaler gateway Session policies Background Service Ticket Session Timeout NetScaler gateway OS session policies Max Offline PeriodMDX app Inactivity Timerclient properties on XMS. Setting| Component| Default...

7.5AI score
Exploits0
Citrix
Citrix
added 2016/05/16 12:0 a.m.8 views

NetScaler Cheat Sheets for XenMobile Integration

The purpose of these NetScaler cheat sheets is to provide a reference article with key information about each Session Policy or Session Profile configured via NetScaler / XenMobile wizard. These cheat sheets are applicable for XenMobile 9 and 10.x solutions. STWBRWIPAddress Clientless Access...

6.9AI score
Exploits0
Rows per page
Query Builder