Canonical Ubuntu 安全漏洞

Canonical Ubuntu is a GNU/Linux operating system primarily for desktop applications, developed by the British company Canonical. Versions of Canonical Ubuntu from 6.8.0-56.58 to 6.8.0-84.84 contained security vulnerabilities. These vulnerabilities were due to issues with the AFUNIX garbage...

CVE-2025-45691

An Arbitrary File Read vulnerability exists in the ImageTextPromptValue class in Exploding Gradients RAGAS v0.2.3 to v0.2.14. The vulnerability stems from improper validation and sanitization of URLs supplied in the retrievedcontexts parameter when handling multimodal inputs...

0agent (>=1.0.1 <=1.1.5), 0dot (=0.6.0) +58303 more potentially affected by CVE-2026-29045 via hono (>=0.5.10 <=4.12.3)

hono NPM version =0.5.10, =1.0.1, =1.0.0, =0.1.0, =0.1.0, =0.1.6, =0.1.0, =1.0.0, =0.3.2, =0.1.0, =1.0.0, =1.0.1 and more Source cves: CVE-2026-29045 Source advisory: OSV:GHSA-Q5QW-H33P-QVWR...

CVE-2026-3343

A reflected cross-site scripting XSS vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript in the context of an authenticated management user's browser when they click on a specially crafted link. This vulnerability affects Fireware OS 12.7 up to and including 12.11.7...

CVE-2026-21424

Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an execution with unnecessary privileges vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

CVE-2026-21421

CVE-2026-21421 affects Dell PowerScale OneFS. Affected versions: prior to 9.10.1.6 and 9.11.0.0 through 9.12.0.1. The issue is an execution with unnecessary privileges that could enable privilege elevation by a high-privileged attacker with local access; no user interaction is required. Impact is...

CVE-2026-21423

Dell PowerScale OneFS, versions prior to 9.10.1.6 and versions 9.11.0.0 through 9.12.0.1, contains an incorrect default permissions vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to code execution, denial of service, elevation of...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-32001 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-32001 Source advisory: OSV:GHSA-RV2Q-F2H5-6XMG...

CVE-2026-25146

OpenEMR is a free and open source electronic health records and medical practice management application. From 5.0.2 to before 8.0.0, there are at least two paths where the gatewayapikey secret value is rendered to the client in plaintext. These secret keys being leaked could result in arbitrary...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-32896 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-32896 Source advisory: OSV:GHSA-5MX2-2MGW-X8RM...

CVE-2025-14923 IBM WebSphere Application Server Liberty could provide weaker than expected security

IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected security when using the Security Utility when administering security settings...

EUVD-2025-208255

IBM DevOps Plan 3.0.0 through 3.0.5 allows web page cache to be stored locally which can be read by another user on the system...

CVE-2026-1265 IBM InfoSphere Information Server is vulnerable due to sensitive information written to a log file

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to writing of sensitive Information in a log file...

EUVD-2026-9313

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to writing of sensitive Information in a log file...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-32053 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-32053 Source advisory: OSV:GHSA-VQX8-9XXW-F2M7...

LLM-Claw 安全漏洞

LLM-Claw is an open-source AI agent framework developed by CLAW LLM. Versions 0.1.0, 0.1.1, 0.1.1a, and 0.1.1a-p1 of LLM-Claw contain security vulnerabilities. These vulnerabilities stem from a buffer overflow in the agentdeployinit function within the Agent Deployment component, which may lead t...

PT-2026-22803

IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to writing of sensitive Information in a log file...

PT-2026-22795

IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP response that could be used in further attacks against the system...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-31993 via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-31993 Source advisory: OSV:GHSA-5F9P-F3W2-FWCH...

vantuz (>=3.3.2 <=3.3.7) potentially affected by CVE-2026-28461 +1 more via openclaw (=0.0.1)

openclaw NPM version =0.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on openclaw and may be impacted: - vantuz =3.3.2, =3.3.7 Source cves: CVE-2026-28461, CVE-2026-32066 Source advisory: OSV:GHSA-WR6M-JG37-68XH...