9 matches found
EUVD-2026-36916
Editor Privilege Escalation in AI Engine = 3.4.9 versions...
CVE-2026-27407
Editor Privilege Escalation in AI Engine = 3.4.9 versions...
DEBIAN-CVE-2026-34378
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.4.0 to before 3.4.9, a missing bounds check on the dataWindow attribute in EXR file headers allows an attacker to trigger a signed integer overfl...
CVE-2026-34378
OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.4.0 to before 3.4.9, a missing bounds check on the dataWindow attribute in EXR file headers allows an attacker to trigger a signed integer overfl...
CVE-2026-33132 ZITADEL is missing enforcement of organization scopes
ZITADEL is an open source identity management platform. Versions prior to 3.4.9 and 4.0.0 through 4.12.2 allowed users to bypass organization enforcement during authentication. Zitadel allows applications to enforce an organzation context during authentication using scopes urn:zitadel:iam:org:id:...
WordPress Banhammer plugin <= 3.4.8 - Unauthenticated Protection Mechanism Bypass vulnerability
Unauthenticated Protection Mechanism Bypass vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Banhammer versions = 3.4.8...
CVE-2022-34982
The eziod package in PyPI before v0.0.1 included a code execution backdoor inserted by a third party...
CVE-2023-49409
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet...
CVE-2025-34946
...