Lucene search
K

4 matches found

OSV
OSV
added 2026/04/13 3:31 p.m.2 views

GHSA-C4HG-6933-X62X Apache SkyWalking MCP: Server-Side Request Forgery via SW-URL Header in MCP Server

Server-Side Request Forgery via SW-URL Header vulnerability in Apache SkyWalking MCP. This issue affects Apache SkyWalking MCP: 0.1.0. Users are recommended to upgrade to version 0.2.0, which fixes this issue...

7.1CVSS5.8AI score0.00346EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/13 1:1 p.m.1 views

CVE-2026-34476 Apache SkyWalking MCP: Server-Side Request Forgery via SW-URL Header in MCP Server

Server-Side Request Forgery via SW-URL Header vulnerability in Apache SkyWalking MCP. This issue affects Apache SkyWalking MCP: 0.1.0. Users are recommended to upgrade to version 0.2.0, which fixes this issue...

5.8AI score0.00346EPSS
Exploits0References1
Snyk
Snyk
added 2025/05/14 5:35 p.m.2 views

Arbitrary Code Injection

Overview Affected versions of this package are vulnerable to Arbitrary Code Injection through the improper handling of gas limits in precompile executions. An attacker can manipulate the state of the blockchain by causing certain functions to execute with insufficient gas, leading to incomplete...

8.3CVSS7.5AI score
Exploits0References2
Snyk
Snyk
added 2024/12/01 6:28 a.m.3 views

Deserialization of Untrusted Data

Overview chattts is an A generative speech model for daily dialogue Affected versions of this package are vulnerable to Deserialization of Untrusted Data when loading the tokenizer with torch.load. An attacker can exploit this by supplying a malicious tokenizer.pt file, leading to code execution...

9.8CVSS7.7AI score
Exploits0References3
Rows per page
Query Builder