Lucene search
K

418059 matches found

EUVD
EUVD
added 2026/06/19 12:0 a.m.8 views

EUVD-2026-38051

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the mac parameter...

6.2AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:0 a.m.6 views

EUVD-2026-38052

In Tenda AC7 v15.03.06.44, the wanSpeed parameter of the route /goform/AdvSetMacMtuWan has a stack buffer overflow vulnerability that can lead to remote arbitrary code execution...

6.5AI score0.00561EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:0 a.m.8 views

EUVD-2026-38049

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the wanMTU parameter...

6.2AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:0 a.m.5 views

EUVD-2026-38050

Tenda AC7 v15.03.06.44 contains a stack buffer overflow vulnerability in the /goform/AdvSetMacMtuWan interface via the cloneType parameter...

6.2AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 12:0 a.m.9 views

EUVD-2025-210287

Microsoft HEIF Image Extensions 1.2.22.0 has an out-of-bounds read because CHEIFItemInfoEntryGetDataSize can return success while leaving the reported data size as 0. This causes a caller to make a 1-byte allocation. Later, CopyPixels computes copysize = stride absroiheight but does not check the...

6AI score0.00823EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/18 9:9 p.m.8 views

EUVD-2026-37953

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the terminal-server reverse proxy in backend/openwebui/routers/terminals.py does not fully confine the user-controlled path segment before forwarding it to an admin-configured termin...

7.7CVSS5.3AI score0.00349EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 8:47 p.m.7 views

EUVD-2026-37949

conda-smithy is a tool for combining a conda recipe with configurations to build using freely hosted CI services into a single repository. Prior to version 3.61.0, a vulnerability in the conda-forge automated webservices allowed unintended write access to feedstock repositories through GitHub...

7.6CVSS5.3AI score0.00201EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 8:44 p.m.9 views

EUVD-2026-4492

gemini-mcp-tool vulnerable to OS command injection and @file exfiltration via prompt quoting CVE-2026-0755...

9.8CVSS8.7AI score0.03336EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:44 p.m.11 views

EUVD-2026-37156

OpenClaw: Internal/webchat command auth could inherit ownerAllowFrom wildcard state...

6.5CVSS5.2AI score0.00245EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:42 p.m.11 views

EUVD-2026-37154

OpenClaw: Empty-scope device re-pairing could confuse caller scope containment...

5.4CVSS5.2AI score0.00206EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:41 p.m.13 views

EUVD-2026-37167

OpenClaw: Workspace-derived service PATH could influence trash command selection...

7.2CVSS5.2AI score0.00119EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:39 p.m.12 views

EUVD-2026-37160

OpenClaw: Workspace .env STATEDIRECTORY could influence bundled runtime dependency roots...

7.1CVSS5.2AI score0.00124EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:36 p.m.11 views

EUVD-2026-37151

OpenClaw: Discord allowFrom could bind to mutable display names...

8.6CVSS5.2AI score0.00267EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:34 p.m.8 views

EUVD-2026-37152

OpenClaw: Focus command could miss controlScope enforcement...

6.8CVSS5.2AI score0.00093EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:33 p.m.10 views

EUVD-2026-37148

OpenClaw: Workspace .env npmexecpath could influence bundled runtime dependency install...

7.1CVSS5.2AI score0.00118EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:33 p.m.9 views

EUVD-2026-37155

OpenClaw: Linux and macOS exec allowlists skipped configured argument patterns...

8.3CVSS5.2AI score0.00347EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:32 p.m.11 views

EUVD-2026-37162

OpenClaw: BlueBubbles sender policy could match mutable conversation identifiers...

5.4CVSS5.2AI score0.00171EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:31 p.m.10 views

EUVD-2026-37948

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, the HTJ2K High-Throughput JPEG 2000 decoder, htundoimpl in OpenEXRCore is vulnerable to a heap-buffer-overflow READ. The htundoimp...

8.3CVSS5.6AI score0.00263EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/18 8:31 p.m.8 views

EUVD-2026-37146

OpenClaw: memory-wiki shared search could miss session visibility checks...

6.5CVSS5.2AI score0.0021EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:29 p.m.11 views

EUVD-2026-37158

OpenClaw: Config recovery could restore openclaw.json with broad file permissions...

5.7CVSS5.2AI score0.00094EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:20 p.m.8 views

EUVD-2026-37944

OpenEXR is the reference implementation and specification for the EXR image format, widely used in the motion picture industry. In versions 3.4.0 through 3.4.11, an integer overflow in htundoimpl in src/lib/OpenEXRCore/internalht.cpp leads to a heap-buffer overflow when decoding a crafted...

6.1CVSS5.2AI score0.00199EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/18 8:18 p.m.10 views

EUVD-2025-210285

libssh2 through 1.11.1, fixed in commit 2dae302, contains an out-of-bounds heap read vulnerability in the sftpsymlink function in src/sftp.c that allows a malicious SSH server or man-in-the-middle attacker to disclose heap memory contents or cause a crash by sending a crafted SSHFXPNAME response...

8.3CVSS5.4AI score0.00267EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/18 8:17 p.m.10 views

EUVD-2026-37159

OpenClaw: Zalo allowFrom could bind to mutable display names...

8.6CVSS5.2AI score0.00225EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:16 p.m.9 views

EUVD-2026-37147

OpenClaw: Skill-command dispatch could skip before-tool-call hooks...

4.3CVSS5.2AI score0.00185EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:15 p.m.12 views

EUVD-2026-37149

OpenClaw: Active Memory write scope could mutate global config...

5.4CVSS5.2AI score0.00176EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:14 p.m.10 views

EUVD-2026-37143

OpenClaw: Exported session HTML could keep unsafe markdown links...

6.1CVSS5.2AI score0.00188EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:13 p.m.11 views

EUVD-2026-37153

OpenClaw: Slack reaction events could ignore reaction notification settings...

6.3CVSS5.2AI score0.00191EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:12 p.m.11 views

EUVD-2026-37164

OpenClaw: Bootstrap token replay could widen pending pairing scopes...

5.4CVSS5.2AI score0.00088EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:12 p.m.12 views

EUVD-2026-37157

OpenClaw: Shell positional parameters could weaken strict inline-eval checks...

8.1CVSS5.2AI score0.0026EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:11 p.m.10 views

EUVD-2026-37161

OpenClaw: Hostname checks could treat trailing-dot hosts inconsistently...

6.5CVSS5.2AI score0.0021EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 8:10 p.m.10 views

EUVD-2026-37150

OpenClaw: Exec allowlist could miss side effects from transparent command wrappers...

4.3CVSS5.2AI score0.00185EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 7:54 p.m.8 views

EUVD-2026-37942

OneDev is a Git server with CI/CD, kanban, and packages. In versions 15.0.6 and below, TarUtils.untar creates symbolic links verbatim from TAR entry getLinkName without validating whether the target is an absolute path. A subsequent file entry in the same archive traverses the symlink, writing to...

8.8CVSS7.9AI score0.12163EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 7:44 p.m.13 views

EUVD-2026-37941

Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.10.0 contain a stack buffer overflow in decodeoauthtokengcm. A uint16t noncelen field read from an attacker-supplied OAuth access token 0-65535 is passed directly to memcpy as the copy length into a 256-byte...

8.1CVSS5.6AI score0.0045EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/18 7:39 p.m.10 views

EUVD-2026-37940

Punto Switcher through 4.5.0.583 contains an unquoted search path element vulnerability that allows local attackers to execute arbitrary code by exploiting the application's call to WinExec without a fully qualified path for RunDll32.exe when invoking shell32.dll ControlRunDLL input.dll. Attacker...

8.5CVSS6.3AI score0.00149EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 7:33 p.m.10 views

EUVD-2026-37939

Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.11.0 contain a stored cross-site scripting XSS vulnerability in the web-admin HTTPS interface. An attacker who can create a TURN allocation with a crafted USERNAME value can inject HTML/JavaScript that execut...

5.4CVSS4.8AI score0.00141EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 7:29 p.m.13 views

EUVD-2026-37938

OpenBSD before commit 6a23123 2026-06-18 contains an out-of-bounds read vulnerability in the mplsdoerror function within sys/netmpls/mplsinput.c that allows remote attackers to disclose kernel stack memory by sending crafted MPLS frames with 16 labels and no Bottom-of-Stack bit set...

6.9CVSS5.3AI score0.00423EPSS
Exploits2References3
EUVD
EUVD
added 2026/06/18 7:26 p.m.8 views

EUVD-2026-37937

pamusb provides hardware authentication for Linux using removable media. In versions prior to 0.9.2, getenv environment variables XRDPSESSION, DISPLAY and TMUX allow environment variable injection into local-check logic. These environment variables influence whether a current session is local or...

6.3CVSS5.2AI score0.00127EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 7:7 p.m.8 views

EUVD-2026-37936

pamusb provides hardware authentication for Linux using ordinary removable media. In versions prior to 0.9.2, a symlink race condition exists in per-device and per-user pad directory creation. pamusb uses a check-then-act pattern: it calls lstat to test for existence and then calls mkdir separate...

5.8CVSS5.3AI score0.00084EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 7:1 p.m.9 views

EUVD-2026-37935

pamusb provides hardware authentication for Linux using ordinary removable media. In versions prior to 0.9.2, when updating a one-time pad file, a temporary file is created using open without the OEXCL flag. Without OEXCL, the create operation is not atomic: two concurrent processes racing to...

5.8CVSS5.2AI score0.00088EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 6:55 p.m.9 views

EUVD-2026-37934

pamusb provides hardware authentication for Linux using ordinary removable media. In versions prior to 0.9.2, pamusb calls xmlReadFile with flags=0 when loading the configuration file, allowing libxml2 to process external entity references XXE, potentially making outbound network connections or...

6.7CVSS5.3AI score0.00115EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 6:46 p.m.8 views

EUVD-2026-37933

nanobot is a personal AI assistant. In versions 0.1.5.post3 and prior, the WhatsApp bridge in bridge/src/whatsapp.ts constructs a filesystem path using the fileName field from an incoming WhatsApp document message without sanitization. The WhatsApp bridge downloads media attachments and writes th...

8.7CVSS5.2AI score0.00276EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 6:39 p.m.9 views

EUVD-2026-37932

Bitnami Cassandra container images are affected by a retained default superuser vulnerability. When a custom administrator account is configured via the CASSANDRAUSER environment variable, the container initialization script creates the new superuser account but fails to drop the built-in cassand...

9.8CVSS5.2AI score0.00338EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 6:37 p.m.7 views

EUVD-2026-37931

Bitnami MariaDB Galera container images and Helm chart are affected by a hardcoded default credential vulnerability in the Galera replication health-check user. The MARIADBREPLICATIONUSER and MARIADBREPLICATIONPASSWORD environment variables defaulted to monitor and monitor respectively. This user...

5.3CVSS5.3AI score0.00187EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 6:30 p.m.7 views

EUVD-2026-37930

In AzeoTech DAQFactory versions 21.1 and prior, a Type Confusion vulnerability can be exploited by an attacker using specially crafted .ctl files which can result in code execution...

8.4CVSS5.4AI score0.00148EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 6:30 p.m.10 views

EUVD-2026-37929

setupBpmLogs follows symlink for bpm.log open and chown — container-to-host privilege escalation via /etc/shadow. A compromised process inside a bpm container can cause root to chown an arbitrary host file to vcap and append bpm JSON log lines to it. The chown alone lets the attacker take ownersh...

6.9CVSS5.4AI score0.00125EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/18 6:1 p.m.9 views

EUVD-2026-37928

A flaw in Node.js HTTP/2 server API can cause servers to keep accepting data even after sending a GOAWAY frame. This vulnerability affects two supported release lines: Node.js 22 and Node.js 24...

5.3CVSS5.4AI score0.00445EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 6:0 p.m.9 views

EUVD-2026-37927

NILFS utilities through 2.3.0, fixed in commit 26efb5d, nilfssbisvalid function fails to validate slogblocksize field in NILFS2 superblock before bit-shift operations. Attackers supplying crafted NILFS2 images trigger undefined behavior through oversized shifts or out-of-memory conditions, crashi...

6.7CVSS5.2AI score0.00105EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/18 5:53 p.m.9 views

EUVD-2026-37926

Mojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, the heap address of an anonymous hash, and the PID. These are predictable or low-entropy...

7.3CVSS5.2AI score0.00329EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/18 5:33 p.m.13 views

EUVD-2026-37925

JTL Shop versions 5.2.0 through 5.7.1 contains a server-side template injection vulnerability that allows unauthenticated attackers to inject malicious template syntax due to unsanitized user-supplied input passed to the Smarty template engine. Attackers can exploit this flaw to read sensitive...

9.8CVSS5.8AI score0.00333EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/18 5:30 p.m.9 views

EUVD-2026-37924

pamusb provides hardware authentication for Linux using ordinary removable media. In versions 0.9.1 and below, pusbisloginctllocal can cause a NULL dereference crash when parsing loginctl output. The function calls popen and reads the result; if the Remote field is only a newline, fgets succeeds...

5.5CVSS5.4AI score0.00113EPSS
Exploits0References2
Total number of security vulnerabilities418059