3 matches found
CVE-2026-40914
A flaw was found in Apache ActiveMQ Artemis. An authenticated user, with existing permissions to send or consume messages via the STOMP protocol, could bypass intended access controls. This vulnerability allows the user to modify the routing-type of an address, even without the necessary...
CVE-2026-23516
CVAT is an open source interactive video and image annotation tool for computer vision. In versions 2.2.0 through 2.54.0, an attacker is able to execute arbitrary JavaScript in a victim user's CVAT UI session, provided that they are able to create a maliciously crafted label in a CVAT task or...
UBUNTU-CVE-2023-32784
In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. The memory dump can be a KeePass process dump, swap file pagefile.sys, hibernation file hiberfil.sys, or RAM dump of the entire system. The...