131179 matches found
OpenClaw Encryption Problem Vulnerability (CNVD-2026-15057)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. A cryptographic issue vulnerability exists in versions prior to OpenClaw 2026.2.22. The vulnerability stems from the double use of authentication keys across security domains and can be exploited by an attacker to cause a...
OpenClaw Command Injection Vulnerability (CNVD-2026-15058)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. A command injection vulnerability exists in versions of OpenClaw prior to 2026.2.24. The vulnerability stems from a failure to properly filter construct command special characters, commands, etc. in the system.run...
OpenClaw Code Execution Vulnerability (CNVD-2026-16047)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a code execution vulnerability that can be exploited by an attacker to cause code execution at startup...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15855)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Unspecified vulnerability in Discourse (CNVD-2026-17265)
Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a security vulnerability that can be exploited by an attacker to disclose restricted post action counts to...
Canva Affinity Out-of-Bounds Write Vulnerability
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds write vulnerability that can be exploited by an attacker to execute arbitrary code using a specially crafted EMF file...
Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2026-15402)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause an out-of-bounds memory read to be performed via a specially crafted HTML page...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15851)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
WordPress Plugin King Addons for Elementor Information Disclosure Vulnerability
WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up a personal blog site on a PHP and MySQL based server.WordPress plugin is an application plugin. An information disclosure vulnerability exists in the WordPress plugin King Addons for Elemento...
Google Chrome integer overflow vulnerability (CNVD-2026-15405)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an integer overflow vulnerability that can be exploited by an attacker to execute arbitrary code on the system...
OpenClaw has an unspecified vulnerability (CNVD-2026-16384)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to cause a bypass of the allowed list...
Dell Integrated Dell Remote Access Controller Information Disclosure Vulnerability
Dell Integrated Dell Remote Access Controller is an embedded controller for remote management and monitoring of servers from Dell USA. An information disclosure vulnerability exists in Dell Integrated Dell Remote Access Controller. The vulnerability stems from the failure to clear debugging...
Canva Affinity Type Obfuscation Vulnerability
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. A type confusion vulnerability exists in Canva Affinity, which can be exploited by an attacker to cause a specially crafted EMF file to trigger memory corruption and execute arbitrary code...
OpenClaw Denial of Service Vulnerability (CNVD-2026-15152)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a denial of service hole that can be exploited by attackers to cause regular expression injection and denial of service...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15859)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
OpenClaw Approves Bypass Vulnerability
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an approval bypass vulnerability that can be exploited by an attacker to execute commands from an unexpected file system location by rebinding a writable parent symbolic link...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15854)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
GNU BinUtils Buffer Overflow Vulnerability (CNVD-2026-16063)
GNU BinUtils is a collection of programming tools for working with binaries from the American GNU community. A buffer overflow vulnerability exists in GNU BinUtils, which arises from processing specially crafted XCOFF object files without properly validating the relocation type value, and can be...
OpenClaw has an unspecified vulnerability (CNVD-2026-16386)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by attackers to cause bypassing of runtime restrictions...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15846)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15845)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15856)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Google Chrome memory misreference vulnerability (CNVD-2026-15404)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a memory misreference vulnerability that can be exploited by an attacker to execute arbitrary code on the system...
Unspecified Vulnerability in Google Chrome (CNVD-2026-15407)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security vulnerability that is due to an object lifecycle issue in PowerVR. An attacker can exploit the vulnerability to execute arbitrary code on the system...
OpenClaw Denial of Service Vulnerability (CNVD-2026-16390)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause a denial of service...
OpenClaw Denial of Service Vulnerability (CNVD-2026-16053)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a denial of service vulnerability that can be exploited by attackers to cause increased memory usage and process instability...
OpenClaw elevation of privilege vulnerability (CNVD-2026-16395)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an elevation of privilege vulnerability that can be exploited by an attacker to gain higher operator range before pairing approval...
OpenClaw Arbitrary Code Execution Vulnerability (CNVD-2026-16394)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an arbitrary code execution vulnerability that can be exploited by an attacker to execute an attacker-controlled binary...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15848)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15849)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Google Chrome FedCM Memory Misreference Vulnerability
Google Chrome is a web browser from Google, an American company. A memory misreference vulnerability exists in Google Chrome FedCM, which can be exploited by an attacker to execute arbitrary code on a system...
Discourse cross-site scripting vulnerability (CNVD-2026-17264)
Discourse is Discourse open source set of open source community discussion platform. The platform includes features such as community , e-mail and chat rooms . Discourse suffers from a cross-site scripting vulnerability that stems from the onebox method in the SharedAiConversation model rendering...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15853)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
MailEnable StartDate Parameter Cross-Site Scripting Vulnerability
MailEnable is a Windows-based business email server. A cross-site scripting vulnerability exists in the MailEnable StartDate parameter, which stems from improper cleanup of the StartDate parameter in the FreeBusy.aspx form in the Webmail interface, and can be exploited by an attacker to execute...
Google Chrome Resource Management Error Vulnerability (CNVD-2026-15395)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a resource management error vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the sandbox via specially crafted HTML pages...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15850)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15860)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
OpenClaw has an unspecified vulnerability (CNVD-2026-16383)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to reuse previously approved requests and bypass enforcement of integrity controls...
OpenClaw Path Restriction Bypass Vulnerability
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a path restriction bypass vulnerability that can be exploited by an attacker to write a file to an arbitrary location...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15858)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...
Google Chrome heap buffer overflow vulnerability (CNVD-2026-15406)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by improper boundary checking in WebAudio. An attacker can exploit this vulnerability to execute arbitrary code on the system or cause an application to...
Canva Affinity Out-of-Bounds Read Vulnerability
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to disclose sensitive information when using specially crafted EMF files...
Canva Affinity Out-of-Bounds Read Vulnerability (CNVD-2026-15847)
Canva Affinity is a range of professional graphic design and image editing software from Canva Australia. Canva Affinity suffers from an out-of-bounds read vulnerability, which can be exploited by an attacker to perform an out-of-bounds read using a specially crafted EMF file to disclose sensitiv...
OpenClaw Access Control Error Vulnerability (CNVD-2026-16052)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an Access Control Error vulnerability that can be exploited by an attacker to cause a local process to capture a gateway authentication token...
Google Chrome heap buffer overflow vulnerability (CNVD-2026-15403)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a heap buffer overflow vulnerability that is caused by incorrect boundary checking in WebGL. An attacker can exploit this vulnerability to execute arbitrary code on the system or cause an application to...
OpenClaw path traversal vulnerability (CNVD-2026-16042)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a path traversal vulnerability. The vulnerability stems from the Feishu media download process failing to properly filter special elements in the path of a resource or file, which can be exploited by a...
Google Chrome Out-of-Bounds Read Vulnerability (CNVD-2026-15401)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause out-of-bounds memory access to be performed via specially crafted HTML pages...
OpenClaw Security Bypass Vulnerability (CNVD-2026-16045)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from a security bypass vulnerability that can be exploited by attackers to bypass command gate restrictions...
Google Chrome Security Bypass Vulnerability (CNVD-2026-15399)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that stems from the presence of incorrect security UI in LookalikeChecks, which can be exploited by an attacker to perform UI spoofing via specially crafted HTML pages...
Google Chrome Security Bypass Vulnerability (CNVD-2026-15397)
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a security bypass vulnerability that is caused by insufficient policy enforcement in ChromeDriver. An attacker can exploit the vulnerability to bypass security restrictions...