2 vulnerabilities classified as CWE-396 (对通用异常声明Catch语句). AI Chinese analysis included.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-40149 | PraisonAI has an Unauthenticated Allow-List Manipulation Bypasses Agent Tool Approval Safety Controls — PraisonAI | 7.9 | High | 2026-04-09 |
| CVE-2026-27482 | Ray: Dashboard DELETE endpoints allow unauthenticated browser-triggered DoS (Serve shutdown / job deletion) — ray | 5.9 | Medium | 2026-02-21 |
Vulnerabilities classified as CWE-396 (对通用异常声明Catch语句) represent 2 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.