Lucene search
K
GithubRecent

33225 matches found

Github Security Blog
Github Security Blog
added 2026/04/21 4:25 p.m.6 views

Tekton Pipelines has VerificationPolicy regex pattern bypass via substring matching

hey guys, triage contract this is a first-screen summary; deterministic proof is in the proof bundle canonical.log/control.log/witness.txt. summary trusted resources verification policies match a resource source string refSource.URI against spec.resources.pattern using regexp.MatchString. in go,...

6.5CVSS5.8AI score0.00264EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:32 p.m.9 views

Dolibarr user with permission to edit PHP content can bypass filtering to restrict dangerous PHP functions

In the Website module of Dolibarr ERP & CRM 22.0.4 and below, the application uses blacklist-based filtering to restrict dangerous PHP functions related to system command execution. An authenticated user with permission to edit PHP content can bypass this filtering, resulting in full remote code...

8.8CVSS6.9AI score0.00572EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:32 p.m.8 views

Dolibarr Allows Code Injection through its Website Module

In Dolibarr ERP & CRM = 22.0.4, PHP code detection and editing permission enforcement in the Website module is not applied consistently to all input parameters, allowing an authenticated user restricted to HTML/JavaScript editing to inject PHP code through unprotected inputs during website page...

8.8CVSS5.3AI score0.00273EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:21 p.m.9 views

Auth0 Next.js SDK has Improper Proxy Cache Lookup

Description In affected versions of the Next.js SDK, simultaneous requests that trigger a nonce retry may cause the proxy cache fetcher to perform improper lookups for the token request results. Which Projects are Affected? Users are affected if they meet all of the following preconditions: -...

5.4CVSS5.8AI score0.00214EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:20 p.m.12 views

OpenMage LTS: Cross-user wishlist import leads to private option & file disclosure

Cross-user wishlist item import via shared wishlist code, leading to private option disclosure and file-disclosure variant Summary The shared wishlist add-to-cart endpoint authorizes access with a public sharingcode, but loads the acted-on wishlist item by a separate global wishlistitemid and nev...

5.4CVSS5.7AI score0.00176EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:18 p.m.8 views

Glances has CQL Injection in its Cassandra Export Module via Unsanitized Config Values

Summary The Cassandra export module glances/exports/glancescassandra/init.py interpolates keyspace, table, and replicationfactor configuration values directly into CQL statements without validation. A user with write access to glances.conf can redirect all monitoring data to an attacker-controlle...

6.3CVSS5.8AI score0.00212EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:17 p.m.13 views

Glances has SSRF in IP Plugin via public_api leading to credential leakage

Summary A Server-Side Request Forgery SSRF vulnerability exists in the Glances IP plugin due to improper validation of the publicapi configuration parameter. The value of publicapi is used directly in outbound HTTP requests without any scheme restriction or hostname/IP validation. An attacker who...

8.8CVSS5.9AI score0.00396EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:16 p.m.9 views

OpenClaude: Sandbox Bypass via Early-Exit Logic Flaw Allows Path Traversal

A logic flaw exists in bashToolHasPermission inside src/tools/BashTool/bashPermissions.ts. When the sandbox auto-allow feature is active and no explicit deny rule is configured, the function returns an allow result immediately — before the path constraint filter checkPathConstraints is ever...

8.4CVSS5.9AI score0.00232EPSS
Exploits2References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:14 p.m.12 views

Glances: Cross-Origin Information Disclosure via Unauthenticated REST API (/api/4) due to Permissive CORS

Summary The Glances web server exposes a REST API /api/4/ that is accessible without authentication and allows cross-origin requests from any origin due to a permissive CORS policy Access-Control-Allow-Origin: . This allows a malicious website to read sensitive system information from a running...

8.7CVSS5.8AI score0.00408EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:13 p.m.10 views

Nginx-UI: Cross-Site WebSocket Hijacking (CSWSH) via missing origin validation on all WebSocket endpoints

Summary All WebSocket endpoints in nginx-ui use a gorilla/websocket Upgrader with CheckOrigin unconditionally returning true, allowing Cross-Site WebSocket Hijacking CSWSH. Combined with the fact that authentication tokens are stored in browser cookies set via JavaScript without HttpOnly or...

8.1CVSS5.8AI score0.00176EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:4 p.m.18 views

LMDeploy has Server-Side Request Forgery (SSRF) via Vision-Language Image Loading

Summary A Server-Side Request Forgery SSRF vulnerability exists in LMDeploy's vision-language module. The loadimage function in lmdeploy/vl/utils.py fetches arbitrary URLs without validating internal/private IP addresses, allowing attackers to access cloud metadata services, internal networks, an...

7.5CVSS5.9AI score0.4525EPSS
Exploits2References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 3:0 p.m.9 views

Nginx-UI: Disabled users retain full API access through previously issued bearer tokens

Summary A user who was disabled by an administrator can use previously issued API tokens for up to the token lifetime. In practice, disabling a compromised account does not actually terminate that user’s access, so an attacker who already stole a JWT can continue reading and modifying protected...

8.6CVSS5.8AI score0.00274EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 2:53 p.m.10 views

Spinnaker: RCE via expression parsing due to unrestricted context handling

Spinnaker is an open source, multi-cloud continuous delivery platform. Echo like some other services, uses SPeL Spring Expression Language to process information - specifically around expected artifacts. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and 2025.3.2, unlike orca, it was NOT...

9.9CVSS5.4AI score0.00553EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 2:48 p.m.9 views

Spinnaker: RCE when using gitrepo artifact types due to improper sanitization of user input on branch and paths

Spinnaker is an open source, multi-cloud continuous delivery platform. In versions prior to 2026.1.0, 2026.0.1, 2025.4.2, and 2025.3.2, a bad actor can execute arbitrary commands very simply on the clouddriver pods. This can expose credentials, remove files, or inject resources easily. Versions...

9.9CVSS5.7AI score0.00606EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 2:38 p.m.43 views

python-dotenv: Symlink following in set_key allows arbitrary file overwrite via cross-device rename fallback

Summary setkey and unsetkey in python-dotenv follow symbolic links when rewriting .env files, allowing a local attacker to overwrite arbitrary files via a crafted symlink when a cross-device rename fallback is triggered. Details The rewrite context manager in dotenv/main.py is used by both setkey...

6.6CVSS5.8AI score0.00236EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 2:35 p.m.11 views

OpenMage LTS has a Path Traversal Filter Bypass in Dataflow Module

The Dataflow module in OpenMage LTS uses a weak blacklist filter strreplace'../', '', $input to prevent path traversal attacks. This filter can be bypassed using patterns like ..././ or ....//, which after the replacement still result in ../. An authenticated administrator can exploit this to rea...

4.9CVSS5.9AI score0.00502EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/21 2:32 p.m.11 views

OpenMage LTS: Phar Deserialization leads to Remote Code Execution

PHP functions such as getimagesize, fileexists, and isreadable can trigger deserialization when processing phar:// stream wrapper paths. OpenMage LTS uses these functions with potentially controllable file paths during image validation and media handling. An attacker who can upload a malicious ph...

8.1CVSS6.4AI score0.00539EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 p.m.9 views

Duplicate Advisory: OpenClaw: Webchat media embedding enforces local-root containment for tool-result files

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-mr34-9552-qr95. This link is maintained to preserve external references. Original Description OpenClaw versions 2026.4.7 before 2026.4.15 fail to enforce local-root containment on tool-result media paths, allowi...

6.3CVSS5.9AI score0.00264EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 p.m.14 views

pip has an interpretation conflict due to handling both concatenated tar and ZIP files as ZIP files

pip handles concatenated tar and ZIP files as ZIP files regardless of filename or whether a file is both a tar and ZIP file. This behavior could result in confusing installation behavior, such as installing "incorrect" files according to the filename of the archive. New behavior only proceeds wit...

4.6CVSS5.2AI score0.00144EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:31 p.m.10 views

Apache Kafka does not validate JWT tokens in its OAUTHBEARER authentication implementation

A security vulnerability has been identified in Apache Kafka. By default, the broker property sasl.oauthbearer.jwt.validator.class is set to org.apache.kafka.common.security.oauthbearer.DefaultJwtValidator. It accepts any JWT token without validating its signature, issuer, or audience. An attacke...

9.1CVSS5.4AI score0.00581EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:31 p.m.10 views

Apache Kafka exposes sensitive information in its DEBUG logs

Information exposure vulnerability has been identified in Apache Kafka. The NetworkClient component will output entire requests and responses information in the DEBUG log level in the logs. By default, the log level is set to INFO level. If the DEBUG level is enabled, the sensitive information wi...

5.3CVSS5.2AI score0.00535EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:31 p.m.13 views

Apache Doris MCP Server vulnerable to SQL Injection via improper query context neutralization

Apache Doris MCP Server versions prior to 0.6.1 are affected by an improper neutralization flaw in query context handling that may allow execution of unintended SQL statements and bypass of intended query validation and access restrictions through the MCP query execution interface. Versions 0.6.1...

5.3CVSS5.8AI score0.00655EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 12:32 p.m.12 views

Memos has an Incorrect Privilege Assignment issue

A weakness has been identified in usememos memos up to 0.22.1. This affects the function memosaccesstoken of the file src/App.tsx of the component UpdateInstanceSetting. This manipulation of the argument additionalStyle/additionalScript causes improper authorization. The attack is possible to be...

6.5CVSS6.2AI score0.00252EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 12:32 p.m.10 views

Cockpit has NoSQL Injection Through Content Aggregation Pipelines

A vulnerability was detected in Cockpit-HQ Cockpit up to 2.13.5. Affected by this issue is some unknown functionality of the component Asset Handler/Aggregate Handler. The manipulation results in improper neutralization of special elements in data query logic. It is possible to launch the attack...

6.5CVSS6.2AI score0.00232EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.12 views

FastChat has a Content Moderation Bypass via Arena Side-by-Side Views

A vulnerability was detected in lm-sys fastchat up to 0.2.36. Impacted is the function addtext of the component Arena Side-by-Side View Handler. The manipulation results in incorrect control flow. The attack can be launched remotely. The exploit is now public and may be used. The root cause was...

6.9CVSS5.7AI score0.00308EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.7 views

FastChat has Denial of Service Through Blocking Event Loop in Model Workers (Incomplete Fix for ff66426)

A security vulnerability has been detected in lm-sys fastchat up to 0.2.36. This issue affects the function apigenerate of the component Worker API Endpoint. The manipulation leads to resource consumption. The attack can be initiated remotely. The exploit has been disclosed publicly and may be...

6.9CVSS5.4AI score0.00623EPSS
Exploits0References10Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.7 views

AgentScope vulnerable to Server-Side Request Forgery

A weakness has been identified in modelscope agentscope up to 1.0.18. This vulnerability affects the function processaudioblock of the file src/agentscope/agent/agentbase.py. Executing a manipulation of the argument url can lead to server-side request forgery. It is possible to launch the attack...

7.5CVSS7.1AI score0.00284EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.10 views

Langflow: Cleartext Storage of Authentication Settings in Project Creation Endpoint

A security vulnerability has been detected in langflow-ai langflow up to 1.8.3. The affected element is the function createproject/encryptauthsettings of the file src/backend/base/Langflow/api/v1/projects.py of the component Project Creation Endpoint. Such manipulation of the argument authsetting...

5.3CVSS4.7AI score0.00152EPSS
Exploits0References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.8 views

AgentScope vulnerable to Server-Side Request Forgery

A security flaw has been discovered in modelscope agentscope up to 1.0.18. This affects the function getbytesfromweburl of the file src/agentscope/utils/common.py of the component Internal Service. Performing a manipulation results in server-side request forgery. It is possible to initiate the...

7.5CVSS7AI score0.00326EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.4 views

Langflow vulnerable to injection

A vulnerability was detected in langflow-ai langflow up to 1.8.3. The impacted element is the function getclientip/installmcpconfig of the file src/backend/base/langflow/api/v1/mcpprojects.py of the component Model Context Protocol Configuration API. Performing a manipulation of the argument...

6.5CVSS6.2AI score0.00232EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.6 views

AgentScope Vulnerable to Remote Code Injection

A vulnerability was determined in modelscope agentscope up to 1.0.18. Affected by this vulnerability is the function executepythoncode/executeshellcommand of the file src/AgentScope/tool/coding/python.py. This manipulation causes code injection. The attack is possible to be carried out remotely...

7.5CVSS7.1AI score0.00311EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 6:31 a.m.7 views

AgentScope vulnerable to Server-Side Request Forgery

A vulnerability was identified in modelscope agentscope up to 1.0.18. Affected by this issue is the function parseurl/prepareimage/openaiaudiototext of the file src/agentscope/tool/multimodality/openaitools.py of the component Cloud Metadata Endpoint. Such manipulation of the argument...

7.5CVSS7AI score0.00284EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:34 a.m.7 views

Langflow: DoS Through Lack of File Size Restriction via Deprecated Unauthenticated File Upload API

A security flaw has been discovered in langflow-ai langflow up to 1.1.0. This issue affects the function createuploadfile of the file src/backend/base/Langflow/api/v1/endpoints.py of the component API Endpoint. The manipulation results in unrestricted upload. It is possible to launch the attack...

7.5CVSS7AI score0.00284EPSS
Exploits0References8Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:34 a.m.9 views

Langflow has an Information Leak through Incomplete API Key Redaction

A weakness has been identified in langflow-ai langflow up to 1.8.3. Impacted is the function removeapikeys/hasapiterms of the file src/backend/base/langflow/api/utils/core.py of the component Flow Using API. This manipulation causes unprotected storage of credentials. The attack can be initiated...

5.1CVSS4.4AI score0.0032EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 3:34 a.m.98 views

Deep Merge is Vulnerable to Prototype Pollution Through Lack of Sanitization

A Prototype Pollution vulnerability was determined in brikcss merge up to 1.3.0. Executing a manipulation of the argument proto/constructor.prototype/prototype can lead to improperly controlled modification of object prototype attributes. The attack may be performed from remote. The vendor was...

7.5CVSS6.9AI score0.00336EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/20 12:30 a.m.10 views

RAGAS has SSRF via Multi-Modal Faithfulness Collections Module

A security flaw has been discovered in vibrantlabsai RAGAS up to 0.4.3. The affected element is the function tryprocesslocalfile/tryprocessurl of the file src/ragas/metrics/collections/multimodalfaithfulness/util.py of the component Collections Module. Performing a manipulation of the argument...

8.1CVSS5.4AI score0.00534EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 3:34 p.m.6 views

apache-airflow-providers-keycloak: Missing OAuth 2.0 State and PKCE Enables Login CSRF and Session Fixation

The Keycloak authentication manager in apache-airflow-providers-keycloak did not generate or validate the OAuth 2.0 state parameter on the login / login-callback flow, and did not use PKCE. An attacker with a Keycloak account in the same realm could deliver a crafted callback URL to a victim's...

5.4CVSS5.7AI score0.00328EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 9:30 a.m.16 views

Apache Airflow Exposes Secrets in Variables Saved as JSON Dictionaries

Secrets in Variables saved as JSON dictionaries were not properly redacted - in case the variables were retrieved by the user the secrets stored as nested fields were not masked. If developers do not store variables with sensitive values in JSON form, their projects are not affected. Otherwise...

3.7CVSS5.7AI score0.00421EPSS
Exploits0References6Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/18 9:30 a.m.9 views

Apache Airflow exposes SQL stack trace despite "api/expose_stack_traces" set to false

In case of SQL errors, exception/stack trace of errors was exposed in API even if "api/exposestacktraces" was set to false. That could lead to exposing additional information to potential attacker. Users are recommended to upgrade to Apache Airflow 3.2.0, which fixes the issue...

7.5CVSS5.7AI score0.00449EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 9:30 a.m.5 views

Apache Airflow allows users with asset materialize permissions to trigger DAGs outside of their permissions

UI / API User with asset materialize permission could trigger dags they had no access to. Users are advised to migrate to Airflow version 3.2.0 that fixes the issue...

7.5CVSS5.7AI score0.00426EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 9:30 a.m.20 views

Apache Airflow allows code execution through crafted XCom payloads

Dag Authors, who normally should not be able to execute code in the webserver context could craft XCom payload causing the webserver to execute arbitrary code. Since Dag Authors are already highly trusted, severity of this issue is Low. Users are recommended to upgrade to Apache Airflow 3.2.0,...

7.2CVSS6AI score0.00822EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 1:15 a.m.11 views

Zebra Vulnerable to Consensus Divergence in Transparent Sighash Hash-Type Handling

CVE-2026-41583: Consensus Divergence in Transparent Sighash Hash-Type Handling Summary After a refactoring, Zebra failed to validate a consensus rule that restricted the possible values of sighash hash types for V5 transactions which were enabled in the NU5 network upgrade. Zebra nodes could thus...

9.3CVSS5.8AI score0.00278EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/18 1:15 a.m.11 views

Zebra Vulnerable to Denial of Service via Interrupted JSON-RPC Requests from Authenticated Clients

A vulnerability in Zebra's JSON-RPC HTTP middleware allows an authenticated RPC client to cause a Zebra node to crash by disconnecting before the request body is fully received. The node treats the failure to read the HTTP request body as an unrecoverable error and aborts the process instead of...

6.9CVSS5.7AI score0.00257EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/18 1:14 a.m.10 views

Zebra has rk Identity Point Panic in Transaction Verification

rk Identity Point Panic in Transaction Verification Summary Orchard transactions contain a rk field which is a randomized validating key and also an elliptic curve point. The Zcash specification allows the field to be the identity a "zero" value, however, the orchard crate which is used to verify...

9.2CVSS5.7AI score0.00268EPSS
Exploits0References3Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/18 1:13 a.m.63 views

MailKit has STARTTLS Response Injection via unflushed stream buffer that enables SASL mechanism downgrade

Summary A STARTTLS Response Injection vulnerability in MailKit allows a Man-in-the-Middle attacker to inject arbitrary protocol responses across the plaintext-to-TLS trust boundary, enabling SASL authentication mechanism downgrade e.g., forcing PLAIN instead of SCRAM-SHA-256. The internal read...

6.8CVSS6.8AI score0.16334EPSS
Exploits2References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 1:11 a.m.11 views

pretalx vulnerable to stored cross-site scripting in organizer search typeahead

The organiser search in the pretalx backend rendered submission titles, speaker display names, and user names/emails into the result dropdown using innerHTML string interpolation. Any user who controls one of those fields which includes any registered user whose display name is looked up by an...

8.7CVSS5.8AI score0.00166EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 1:11 a.m.12 views

pretalx mail templates vulnerable to email injection via unescaped user-controlled placeholders

An unauthenticated attacker can send arbitrary HTML-rendered emails from a pretalx instance's configured sender address by embedding malformed HTML or markdown link syntax in a user-controlled template placeholder such as the account display name. The most direct vector is the password-reset flow...

6.1CVSS5.9AI score0.00154EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/04/18 1:9 a.m.7 views

Wish has SCP Path Traversal that allows arbitrary file read/write

Summary The SCP middleware in charm.land/wish/v2 is vulnerable to path traversal attacks. A malicious SCP client can read arbitrary files from the server, write arbitrary files to the server, and create directories outside the configured root directory by sending crafted filenames containing ../...

9.6CVSS6.6AI score0.00393EPSS
Exploits1References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/04/18 1:7 a.m.29 views

Dagster Vulnerable to SQL Injection via Dynamic Partition Keys in Database I/O Manager Integrations

Summary The DuckDB, Snowflake, BigQuery, and DeltaLake I/O managers constructed SQL WHERE clauses by interpolating dynamic partition key values into queries without escaping. A user with the Add Dynamic Partitions permission could create a partition key that injects arbitrary SQL, which would...

8.3CVSS6AI score0.00265EPSS
Exploits1References5Affected Software6
Github Security Blog
Github Security Blog
added 2026/04/18 1:7 a.m.13 views

Amazon EFS CSI Driver has mount option injection via unsanitized volumeHandle and mounttargetip fields

Summary The Amazon EFS CSI Driver is a Container Storage Interface driver that allows Kubernetes clusters to use Amazon Elastic File System. An issue exists where, under certain circumstances, unsanitized values in the volumeHandle and mounttargetip fields are passed directly to the mount command...

6.9CVSS5.8AI score0.00424EPSS
Exploits0References6Affected Software1
Total number of security vulnerabilities33225