Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2026/06/11 6:34 p.m.8 views

CVE-2026-46519 mcp-server-kubernetes Affected By Tool Access Control Bypass: Presentation-Layer Filtering Without Execution-Layer Enforcement

mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Prior to version 3.6.0, mcp-server-kubernetes exposes three environment variables ALLOWONLYREADONLYTOOLS, ALLOWONLYNONDESTRUCTIVETOOLS, ALLOWEDTOOLS documented as access controls for restricting which...

8.8CVSS5.6AI score0.00376EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/11 4:46 p.m.10 views

CVE-2026-44998

OpenClaw before 2026.4.20 contains a tool policy bypass vulnerability allowing bundled MCP and LSP tools to circumvent configured tool restrictions. Attackers with local agent access can append restricted tools to the effective tool set after policy filtering, bypassing profile policies, allow/de...

5.4CVSS5.8AI score0.00706EPSS
Exploits0References4
OSV
OSV
added 2026/04/16 9:23 p.m.8 views

GHSA-QQVM-66Q4-VF5C Flowise: SSRF Protection Bypass via Direct node-fetch / axios Usage (Patch Enforcement Failure)

Summary Flowise introduced SSRF protections through a centralized HTTP security wrapper httpSecurity.ts that implements deny-list validation and IP pinning logic. However, multiple tool implementations directly import and invoke raw HTTP clients node-fetch, axiosInstead of using the secured...

5.3CVSS5.9AI score0.00396EPSS
Exploits1References3
OSV
OSV
added 2026/03/26 9:48 p.m.3 views

GHSA-CFP9-W5V9-3Q4H OpenClaw: Image Tool `tools.fs.workspaceOnly` Bypass via Sandbox Bridge Mounts

Summary The image tool did not fully honor the tools.fs.workspaceOnly filesystem boundary. In affected releases, image-path resolution could still traverse sandbox bridge mounts outside the workspace and read files from mounted directories that the other file tools would reject. Affected Packages...

6.5CVSS5.9AI score0.00286EPSS
Exploits0References8
EUVD
EUVD
added 2026/03/19 10:6 p.m.13 views

EUVD-2026-13271

OpenClaw versions prior to 2026.2.22 contain an allowlist bypass vulnerability in the safe-bin configuration when sort is manually added to tools.exec.safeBins. Attackers can invoke sort with the --compress-program flag to execute arbitrary external programs without operator approval in allowlist...

6.3CVSS6AI score0.00286EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/03/04 7:13 p.m.14 views

OpenClaw's image tool bypasses tools.fs.workspaceOnly on sandbox mount paths and exfiltrates out-of-workspace images

Summary In OpenClaw, the sandboxed image tool did not honor tools.fs.workspaceOnly=true for mounted paths resolved by the sandbox FS bridge. This allowed reading out-of-workspace mounted images for example /agent/ and forwarding those bytes to vision model providers. Impact Sandbox boundary bypas...

6.5CVSS5.9AI score0.00315EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/05 12:0 a.m.5 views

Amazon Linux 2023 : runfinch-finch (ALAS2023-2026-1420)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1420 advisory. SSH clients receiving SSHAGENTSUCCESS when expecting a typed response will panic and cause early termination of the client process. CVE-2025-47913 net/http: memory exhaustion in...

10CVSS7AI score0.01945EPSS
Exploits4References14
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.5 views

Neuron 代码注入漏洞

Neuron is an Industrial Internet of Things IIoT connectivity server open-sourced by EMQ. Used for modern Big Data and AI/ML technologies to harness the power of Industry 4.0. A code injection vulnerability exists in Neuron 2.8.11 and earlier versions, which stems from a read-only bypass...

8.2CVSS7.2AI score0.00253EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-47511

Malicious code in bioql PyPI...

5.5CVSS5.4AI score0.00311EPSS
Exploits1References4
Rows per page
Query Builder