CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

106 matches found

NVD•added 2026/04/14 2:16 a.m.•1 views

CVE-2026-39419

MaxKB is an open-source AI assistant for enterprise. In versions 2.7.1 and below, an authenticated user can bypass sandbox result validation and spoof tool execution results by exploiting Python frame introspection to read the wrapper's UUID from its bytecode constants, then writing a forged resu...

3.1CVSS0.00063EPSS

Exploits0References3

CVE•added 2026/04/14 1:3 a.m.•7 views

CVE-2026-39419

MaxKB (enterprise open-source AI assistant)

3.1CVSS5.9AI score0.00063EPSS

Exploits0References3Affected Software1

EUVD•added 2026/04/14 1:3 a.m.•1 views

EUVD-2026-22191

3.1CVSS5.9AI score0.00063EPSS

Exploits0References3

Packet Storm News•added 2026/04/03 12:0 a.m.•1 views

Credential Leakage in LLM Agent Skills: A Large-Scale Empirical Study

Third-party skills extend LLM agents with powerful capabilities but often handle sensitive credentials in privileged environments, making leakage risks poorly understood. We present the first large-scale empirical study of this problem, analyzing 17,022 skills sampled from 170,226 on SkillsMP usi...

6AI score

Exploits0

OSV•added 2026/04/02 8:42 a.m.•0 views

SUSE-SU-2026:1170-1 Security update for perl-Crypt-URandom

This update for perl-Crypt-URandom fixes the following issue: Update to 0.550.0 0.55: - CVE-2026-2474: heap buffer overflow in the XS function crypturandomgetrandom bsc1258266. Changelog: - Fix for sysread/read failures. Thanks to Miha Purg for GH20. - Fix for test suite failures on STDOUT...

7.5CVSS6.2AI score0.00062EPSS

Exploits0References3

Cvelist•added 2026/03/31 1:33 p.m.•22 views

CVE-2026-34156 NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node

NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.28, NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist controlled by WORKFLOWSCRIPTMODUL...

9.9CVSS0.29502EPSS

Exploits7References3

CVE•added 2026/03/31 1:33 p.m.•18 views

CVE-2026-34156

NocoBase exposes a sandbox escape in the Workflow Script Node: an attacker can traverse the sandbox through the host console object (console._stdout/console._stderr) prototype chain to reach the Function constructor, access process, require child_process, and achieve Remote Code Execution as root...

9.9CVSS5.9AI score0.29502EPSS

Exploits7References3Affected Software1

OSV•added 2026/03/31 1:33 p.m.•0 views

CVE-2026-34156 NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node

9.9CVSS5.9AI score0.29502EPSS

Exploits7References5

Github Security Blog•added 2026/03/30 5:16 p.m.•10 views

NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node

Summary NocoBase's Workflow Script Node executes user-supplied JavaScript inside a Node.js vm sandbox with a custom require allowlist controlled by WORKFLOWSCRIPTMODULES env var. However, the console object passed into the sandbox context exposes host-realm WritableWorkerStdio stream objects via...

9.9CVSS6AI score0.29502EPSS

Exploits7References5Affected Software1

OSV•added 2026/03/30 5:16 p.m.•0 views

GHSA-PX3P-VGH9-M57C NocoBase Affected by Sandbox Escape to RCE via console._stdout Prototype Chain Traversal in Workflow Script Node

9.9CVSS6AI score0.29502EPSS

Exploits7References5

RedhatCVE•added 2026/03/26 3:10 p.m.•3 views

CVE-2026-32128

FastGPT is an AI Agent building platform. In 4.14.7 and earlier, FastGPT's Python Sandbox fastgpt-sandbox includes guardrails intended to prevent file writes static detection + seccomp. These guardrails are bypassable by remapping stdout fd 1 to an arbitrary writable file descriptor using fcntl...

6.3CVSS5.9AI score0.00089EPSS

Exploits1References1

Hacker One•added 2026/03/22 4:50 a.m.•6 views

AWS VDP: Encryption context keys and values logged at INFO level

Component: cmd/server/main.go:101-106 Affected Version: aws-encryption-provider @ 4341c70 all versions Found by: Source audit TLP: TLP:Amber --- Summary The server startup code logs all encryption context key-value pairs at INFO level. Encryption context is metadata associated with KMS operations...

5.9AI score

Exploits0

NVD•added 2026/03/11 10:16 p.m.•1 views

CVE-2026-32128

6.3CVSS0.00089EPSS

Exploits1References1

ATTACKERKB•added 2026/03/11 9:30 p.m.•1 views

CVE-2026-32128

6.3CVSS5.9AI score0.00089EPSS

Exploits1References2Affected Software1

EUVD•added 2026/03/11 9:30 p.m.•1 views

EUVD-2026-11408

6.3CVSS5.9AI score0.00089EPSS

Exploits1References1

Cvelist•added 2026/03/11 9:30 p.m.•22 views

CVE-2026-32128 FastGPT Python Sandbox Bypass of File-Write Restriction

6.3CVSS0.00089EPSS

Exploits1References1

OSV•added 2026/03/11 9:30 p.m.•0 views

CVE-2026-32128 FastGPT Python Sandbox Bypass of File-Write Restriction

6.3CVSS5.9AI score0.00089EPSS

Exploits1References3

Positive Technologies•added 2026/03/11 12:0 a.m.•0 views

PT-2026-24852

6.3CVSS5.9AI score0.00089EPSS

Exploits1References3

Github Security Blog•added 2026/02/24 3:42 p.m.•3 views

ImageMagick's Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout access

The shipped “secure” security policy includes a rule intended to prevent reading/writing from standard streams: xml However, ImageMagick also supports fd: pseudo-filenames e.g., fd:0, fd:1. This path form is not blocked by the secure policy templates, and therefore bypasses the protection goal of...

7.8CVSS5.4AI score0.00007EPSS

Exploits0References5Affected Software17

OSV•added 2026/02/24 3:42 p.m.•2 views

GHSA-XWC6-V6G8-PW2H ImageMagick's Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout access

5.9CVSS5.5AI score0.00007EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by