Lucene search
+L

1246 matches found

CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the incorrect clearing of the direct scheduling state. This could lead to false warnings...

5.5CVSS5.8AI score0.0013EPSS
Exploits0References1
NVD
NVD
added 2026/04/28 7:37 p.m.7 views

CVE-2026-41377

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS0.00231EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/04/28 6:9 p.m.2 views

CVE-2026-41377

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS5.2AI score0.00231EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2026/04/28 6:9 p.m.2 views

CVE-2026-41377 OpenClaw < 2026.3.31 - Fail-Open Security Scan Bypass in Plugin Installation

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS5.2AI score0.00231EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/28 6:9 p.m.8 views

EUVD-2026-26086

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS5.2AI score0.00231EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/28 6:9 p.m.35 views

CVE-2026-41377 OpenClaw < 2026.3.31 - Fail-Open Security Scan Bypass in Plugin Installation

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS0.00231EPSS
Exploits0References6
OSV
OSV
added 2026/04/28 6:9 p.m.2 views

CVE-2026-41377 OpenClaw < 2026.3.31 - Fail-Open Security Scan Bypass in Plugin Installation

OpenClaw before 2026.3.31 contains a fail-open vulnerability in the plugin installation flow where security scan failures do not block installation. Attackers can exploit scan failures to install untrusted plugins when operators proceed despite visible scan warnings...

5.1CVSS5.9AI score0.00231EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.11 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.3.31 contained security vulnerabilities. These vulnerabilities stemmed from flaws in the plugin installation process, and failed security scans did not prevent the installation...

5.1CVSS5.8AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.8 views

PT-2026-34919

In the Linux kernel, the following vulnerability has been resolved: PM: sleep: Drop spurious WARN ON from pm restore gfp mask Commit 35e4a69b2003f "PM: sleep: Allow pm restrict gfp mask stacking" introduced refcount-based GFP mask management that warns when pm restore gfp mask is called with save...

5.3AI score0.00128EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012993)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012993 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix field-spanning memcpy warning in AH output Fix field-spanning memcpy warnings in...

5.7AI score0.00184EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006910)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006910 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix shift-out-of-bounds/overflow in nilfssb2badoffset Patch series nilfs2: fix UBSAN...

7.1CVSS5.7AI score0.00155EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/15 7:22 p.m.8 views

CVE-2026-26151

Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...

7.1CVSS5.8AI score0.0083EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/14 11:33 p.m.21 views

DotNetNuke.Core security code analysis rules triggered

The codebase raises code analysis warnings related to security, including CA3075, CA5366, CA5371, CA5368, CA5369, CA5372, CA5379, CA5350, and CA5351. Most of these deal with disabling DTD processing in XML documents, but also includes cryptographic algorithm choices...

5.8AI score
Exploits0References2Affected Software1
OSV
OSV
added 2026/04/14 11:33 p.m.10 views

GHSA-FCPV-W245-R2Q7 DotNetNuke.Core security code analysis rules triggered

The codebase raises code analysis warnings related to security, including CA3075, CA5366, CA5371, CA5368, CA5369, CA5372, CA5379, CA5350, and CA5351. Most of these deal with disabling DTD processing in XML documents, but also includes cryptographic algorithm choices...

5.8AI score
Exploits0References2
EUVD
EUVD
added 2026/04/14 6:30 p.m.7 views

EUVD-2026-22372

Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...

7.1CVSS5.8AI score0.0083EPSS
Exploits0References2
NVD
NVD
added 2026/04/14 6:16 p.m.3 views

CVE-2026-26151

Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...

7.1CVSS0.0083EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/04/14 2:0 p.m.8 views

Remote Desktop Spoofing Vulnerability

Insufficient ui warning of dangerous operations in Windows Remote Desktop allows an unauthorized attacker to perform spoofing over a network...

7.1CVSS6.3AI score0.0083EPSS
Exploits0
Microsoft KB
Microsoft KB
added 2026/04/14 2:0 p.m.13 views

April 14, 2026—KB5082198 (OS Build 14393.9060)

None None...

9.8CVSS6.8AI score0.5585EPSS
Exploits10
SUSE CVE
SUSE CVE
added 2026/04/13 11:26 p.m.7 views

SUSE CVE-2026-31416

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinklog: account for netlink header size This is a followup to an old bug fix: NLMSGDONE needs to account for the netlink header size, not just the attribute size. This can result in a WARN splat + drop of the...

3.3CVSS5.7AI score0.0012EPSS
Exploits0References17
OSV
OSV
added 2026/04/09 8:27 a.m.7 views

SUSE-RU-2026:1228-1 Recommended update for shadow

This update for shadow fixes the following issues: shadow is updated to 4.17.2 to bring lots of features and bug fixes. - util-linux-2.41 introduced new variable: LOGINENVSAFELIST. Recognize it and update dependencies. - Set SYSUID,GIDMIN to 201: After repeated similar requests to change the ID...

5.5CVSS6.8AI score0.00308EPSS
Exploits0References17
Rows per page
Query Builder