Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Vulnerability List - Page 29

CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-41340 OpenClaw < 2026.3.31 - Authentication Boundary Bypass via Telegram Legacy allowFrom Migration OpenClawOpenClaw Medium 6.5 2026-04-23 21:57:59 Deep Dive
CVE-2026-41339 OpenClaw < 2026.4.2 - Information Disclosure via Gateway Connect Snapshot OpenClawOpenClaw Medium 4.3 2026-04-23 21:57:59 Deep Dive
CVE-2026-41338 OpenClaw < 2026.3.31 - Time-of-Check-Time-of-Use (TOCTOU) Vulnerability in Sandbox File Operations OpenClawOpenClaw Medium 5.0 2026-04-23 21:57:58 Deep Dive
CVE-2026-41337 OpenClaw < 2026.3.31 - Callback Origin Mutation in Plivo Voice-call Replay OpenClawOpenClaw Medium 5.3 2026-04-23 21:57:57 Deep Dive
CVE-2026-41336 OpenClaw < 2026.3.31 - Arbitrary Hook Code Execution via OPENCLAW_BUNDLED_HOOKS_DIR Environment Variable Override OpenClawOpenClaw High 7.8 2026-04-23 21:57:56 Deep Dive
CVE-2026-41335 OpenClaw < 2026.3.31 - Information Disclosure via Control UI Bootstrap JSON OpenClawOpenClaw Medium 5.3 2026-04-23 21:57:55 Deep Dive
CVE-2026-41334 OpenClaw < 2026.3.31 - Decompression Bomb Denial of Service via Image Pixel-Limit Guard Bypass OpenClawOpenClaw Medium 6.5 2026-04-23 21:57:55 Deep Dive
CVE-2026-41333 OpenClaw < 2026.3.31 - Authentication Rate Limiting Bypass via Fake DeviceToken OpenClawOpenClaw Low 3.7 2026-04-23 21:57:54 Deep Dive
CVE-2026-41332 OpenClaw < 2026.3.28 - Code Execution via Missing Environment Variable Blocklist OpenClawOpenClaw Medium 5.3 2026-04-23 21:57:53 Deep Dive
CVE-2026-2708 Libsoup: libsoup: http request smuggling via duplicate content-length headers Red HatRed Hat Enterprise Linux 10 Low 3.7 2026-04-23 21:51:23 Deep Dive
CVE-2026-32172 Microsoft Power Apps Remote Code Execution Vulnerability MicrosoftMicrosoft Power Apps High 8.0 2026-04-23 21:37:43 Deep Dive
CVE-2026-35431 Microsoft Entra ID Entitlement Management Spoofing Vulnerability MicrosoftMicrosoft Entra Critical 10.0 2026-04-23 21:37:42 Deep Dive
CVE-2026-24303 Microsoft Partner Center Elevation of Privilege Vulnerability MicrosoftMicrosoft Partner Center Critical 9.6 2026-04-23 21:37:41 Deep Dive
CVE-2026-26150 Microsoft Purview eDiscovery Elevation of Privilege Vulnerability MicrosoftMicrosoft Purview eDiscovery High 8.6 2026-04-23 21:37:40 Deep Dive
CVE-2026-33819 Microsoft Bing Remote Code Execution Vulnerability MicrosoftMicrosoft Bing Critical 10.0 2026-04-23 21:35:50 Deep Dive
CVE-2026-33102 Microsoft 365 Copilot Elevation of Privilege Vulnerability MicrosoftMicrosoft 365 Copilot Critical 9.3 2026-04-23 21:35:49 Deep Dive
CVE-2026-32210 Microsoft Dynamics 365 (online) Spoofing Vulnerability MicrosoftMicrosoft Dynamics 365 (online) Critical 9.3 2026-04-23 21:35:48 Deep Dive
CVE-2026-26210 KTransformers Unsafe Deserialization RCE via balance_serve kvcache-aiktransformers Critical 9.8 2026-04-23 21:24:49 Deep Dive
CVE-2026-41274 Flowise: Cypher Injection in GraphCypherQAChain FlowiseAIFlowise--2026-04-23 21:12:52 Deep Dive
CVE-2026-28525 SWUpdate Integer Underflow in Multipart Upload Parser sbabicswupdate Medium 6.8 2026-04-23 20:59:31 Deep Dive