Lucene search
K

131179 matches found

CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

OpenClaw Encryption Problem Vulnerability (CNVD-2026-15057)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. A cryptographic issue vulnerability exists in versions prior to OpenClaw 2026.2.22. The vulnerability stems from the double use of authentication keys across security domains and can be exploited by an attacker to cause a...

6.3CVSS5.9AI score0.00262EPSS
Exploits0References1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•2 views

OpenClaw Command Injection Vulnerability (CNVD-2026-15058)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. A command injection vulnerability exists in versions of OpenClaw prior to 2026.2.24. The vulnerability stems from a failure to properly filter construct command special characters, commands, etc. in the system.run...

9.8CVSS6.1AI score0.00911EPSS
Exploits0References1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•7 views

OpenClaw Code Execution Vulnerability (CNVD-2026-16047)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a code execution vulnerability that can be exploited by an attacker to cause code execution at startup...

8.8CVSS6.3AI score0.00371EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15855)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•2 views

Unspecified vulnerability in Discourse (CNVD-2026-17265)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a security vulnerability that can be exploited by an attacker to disclose restricted post action counts to...

6.9CVSS5.7AI score0.00306EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Canva Affinity Out-of-Bounds Write Vulnerability

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code using a specially crafted EMF file...

7.8CVSS6.3AI score0.00269EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2026-15402)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause an out-of-bounds memory read to be performed via a specially crafted HTML page...

8.8CVSS7.3AI score0.00447EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15851)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

WordPress Plugin King Addons for Elementor Information Disclosure Vulnerability

WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin King Addons for Elemento...

5.3CVSS5.7AI score0.00219EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•2 views

Google Chrome integer overflow vulnerability (CNVD-2026-15405)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an integer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system...

8.8CVSS6.3AI score0.0034EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw has an unspecified vulnerability (CNVD-2026-16384)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to cause a bypass of the allowed list...

5.4CVSS5.7AI score0.0018EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Dell Integrated Dell Remote Access Controller Information Disclosure Vulnerability

Dell Integrated Dell Remote Access Controller is an embedded controller for remote management and monitoring of servers from Dell USA. An information disclosure vulnerability exists in Dell Integrated Dell Remote Access Controller. The vulnerability stems from the failure to clear debugging...

4.9CVSS5.6AI score0.00291EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Canva Affinity Type Obfuscation Vulnerability

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. A type confusion vulnerability exists in Canva Affinity, which can be exploited by an attacker to cause a specially crafted EMF file to trigger memory corruption and execute arbitrary code...

7.8CVSS6.1AI score0.00278EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw Denial of Service Vulnerability (CNVD-2026-15152)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a denial of service hole that can be exploited by attackers to cause regular expression injection and denial of service...

8.2CVSS5.9AI score0.00311EPSS
Exploits0References1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15859)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•7 views

OpenClaw Approves Bypass Vulnerability

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an approval bypass vulnerability that can be exploited by an attacker to execute commands from an unexpected file system location by rebinding a writable parent symbolic link...

6.9CVSS5.9AI score0.00095EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•7 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15854)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

GNU BinUtils Buffer Overflow Vulnerability (CNVD-2026-16063)

GNU BinUtils is a collection of programming tools for working with binaries from the American GNU community. A buffer overflow vulnerability exists in GNU BinUtils, which arises from processing specially crafted XCOFF object files without properly validating the relocation type value, and can be...

6.1CVSS6.1AI score0.00168EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw has an unspecified vulnerability (CNVD-2026-16386)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by attackers to cause bypassing of runtime restrictions...

9.9CVSS5.8AI score0.00281EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•6 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15846)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15845)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15856)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•2 views

Google Chrome memory misreference vulnerability (CNVD-2026-15404)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a memory misreference vulnerability that can be exploited by an attacker to execute arbitrary code on the system...

8.8CVSS6.3AI score0.00397EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•9 views

Unspecified Vulnerability in Google Chrome (CNVD-2026-15407)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security vulnerability that is due to an object lifecycle issue in PowerVR. An attacker can exploit the vulnerability to execute arbitrary code on the system...

8.8CVSS7.7AI score0.00377EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw Denial of Service Vulnerability (CNVD-2026-16390)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause a denial of service...

6.7CVSS5.8AI score0.00132EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•6 views

OpenClaw Denial of Service Vulnerability (CNVD-2026-16053)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause increased memory usage and process instability...

8.7CVSS5.9AI score0.00543EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•6 views

OpenClaw elevation of privilege vulnerability (CNVD-2026-16395)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an elevation of privilege vulnerability that can be exploited by an attacker to gain higher operator range before pairing approval...

8.8CVSS5.7AI score0.00439EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•6 views

OpenClaw Arbitrary Code Execution Vulnerability (CNVD-2026-16394)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an arbitrary code execution vulnerability that can be exploited by an attacker to execute an attacker-controlled binary...

7.8CVSS6.5AI score0.00125EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15848)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•1 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15849)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Google Chrome FedCM Memory Misreference Vulnerability

Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in Google Chrome FedCM, which can be exploited by an attacker to execute arbitrary code on a system...

8.8CVSS6.3AI score0.00359EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Discourse cross-site scripting vulnerability (CNVD-2026-17264)

Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a cross-site scripting vulnerability that stems from the onebox method in the SharedAiConversation model rendering...

6.1CVSS5.9AI score0.00347EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15853)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00277EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•20 views

MailEnable StartDate Parameter Cross-Site Scripting Vulnerability

MailEnable is a Windows-based business email server. A cross-site scripting vulnerability exists in the MailEnable StartDate parameter, which stems from improper cleanup of the StartDate parameter in the FreeBusy.aspx form in the Webmail interface, and can be exploited by an attacker to execute...

6.1CVSS5.9AI score0.00296EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Google Chrome Resource Management Error Vulnerability (CNVD-2026-15395)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a resource management error vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the sandbox via specially crafted HTML pages...

8.8CVSS6.2AI score0.0042EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15850)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15860)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•7 views

OpenClaw has an unspecified vulnerability (CNVD-2026-16383)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to reuse previously approved requests and bypass enforcement of integrity controls...

6.5CVSS5.7AI score0.00191EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

OpenClaw Path Restriction Bypass Vulnerability

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a path restriction bypass vulnerability that can be exploited by an attacker to write a file to an arbitrary location...

5.3CVSS5.8AI score0.0013EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•7 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15858)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Google Chrome heap buffer overflow vulnerability (CNVD-2026-15406)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by improper boundary checking in WebAudio. An attacker can exploit this vulnerability to execute arbitrary code on the system or cause an application to...

8.8CVSS7.9AI score0.00504EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Canva Affinity Out-of-Bounds Read Vulnerability

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15847)

Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...

7.1CVSS5.8AI score0.00268EPSS
Exploits1
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw Access Control Error Vulnerability (CNVD-2026-16052)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that can be exploited by an attacker to cause a local process to capture a gateway authentication token...

6.8CVSS5.9AI score0.00126EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•3 views

Google Chrome heap buffer overflow vulnerability (CNVD-2026-15403)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by incorrect boundary checking in WebGL. An attacker can exploit this vulnerability to execute arbitrary code on the system or cause an application to...

8.8CVSS6.6AI score0.00385EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

OpenClaw path traversal vulnerability (CNVD-2026-16042)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a path traversal vulnerability. The vulnerability stems from the Feishu media download process failing to properly filter special elements in the path of a resource or file, which can be exploited by a...

9.1CVSS6AI score0.00339EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•4 views

Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2026-15401)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause out-of-bounds memory access to be performed via specially crafted HTML pages...

8.8CVSS7.3AI score0.00454EPSS
Exploits0
CNVD
CNVD
•added 2026/03/26 12:0 a.m.•5 views

OpenClaw Security Bypass Vulnerability (CNVD-2026-16045)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security bypass vulnerability that can be exploited by attackers to bypass command gate restrictions...

4.3CVSS5.9AI score0.00237EPSS
Exploits0
CNVD
CNVD
•added 2026/03/25 12:0 a.m.•5 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-15399)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from the presence of incorrect security UI in LookalikeChecks, which can be exploited by an attacker to perform UI spoofing via specially crafted HTML pages...

4.3CVSS5.9AI score0.00149EPSS
Exploits0
CNVD
CNVD
•added 2026/03/25 12:0 a.m.•3 views

Google Chrome Security Bypass Vulnerability (CNVD-2026-15397)

Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that is caused by insufficient policy enforcement in ChromeDriver. An attacker can exploit the vulnerability to bypass security restrictions...

6.5CVSS5.9AI score0.00187EPSS
Exploits0
Total number of security vulnerabilities131179