Skip to content

Menu
  • Home
Menu

CVE-2026-40630 – SenseLive X3050 Authentication bypass using an alternate path or channel

Posted on April 24, 2026

CVE ID :CVE-2026-40630 Published : April 23, 2026, 11:45 p.m. | 24 minutes ago Description :A vulnerability in  SenseLive X3050’s web management interface allows unauthorized access to certain configuration endpoints due to improper…

CVE-2026-41353 – OpenClaw < 2026.3.22 – allowProfiles Bypass via Profile Mutation and Runtime Selection

Posted on April 24, 2026

CVE ID :CVE-2026-41353 Published : April 23, 2026, 10:16 p.m. | 1 hour, 53 minutes ago Description :OpenClaw before 2026.3.22 contains an access control bypass vulnerability in the allowProfiles feature that allows attackers to…

CVE-2026-41352 – OpenClaw < 2026.3.31 – Remote Code Execution via Node Scope Gate Bypass

Posted on April 24, 2026

CVE ID :CVE-2026-41352 Published : April 23, 2026, 10:16 p.m. | 1 hour, 53 minutes ago Description :OpenClaw before 2026.3.31 contains a remote code execution vulnerability where a device-paired node can bypass the node…

CVE-2026-41349 – OpenClaw < 2026.3.28 – Agentic Consent Bypass via config.patch

Posted on April 24, 2026

CVE ID :CVE-2026-41349 Published : April 23, 2026, 10:16 p.m. | 1 hour, 53 minutes ago Description :OpenClaw before 2026.3.28 contains an agentic consent bypass vulnerability allowing LLM agents to silently disable execution approval…

CVE-2026-41336 – OpenClaw < 2026.3.31 – Arbitrary Hook Code Execution via OPENCLAW_BUNDLED_HOOKS_DIR Environment Variable Override

Posted on April 24, 2026

CVE ID :CVE-2026-41336 Published : April 23, 2026, 10:16 p.m. | 1 hour, 53 minutes ago Description :OpenClaw before 2026.3.31 allows workspace .env files to override the OPENCLAW_BUNDLED_HOOKS_DIR environment variable, enabling loading of attacker-controlled…

CVE-2026-41179 – RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution

Posted on April 23, 2026

CVE ID :CVE-2026-41179 Published : April 23, 2026, 12:16 a.m. | 1 hour, 51 minutes ago Description :Rclone is a command-line program to sync files and directories to and from different cloud storage providers….

CVE-2026-41176 – Rclone: Unauthenticated options/set allows runtime auth bypass, leading to sensitive operations and command execution

Posted on April 23, 2026

CVE ID :CVE-2026-41176 Published : April 23, 2026, 12:16 a.m. | 1 hour, 51 minutes ago Description :Rclone is a command-line program to sync files and directories to and from different cloud storage providers….

CVE-2026-40062 – Ziostation2 Path Traversal Vulnerability

Posted on April 23, 2026

CVE ID :CVE-2026-40062 Published : April 23, 2026, 12:16 a.m. | 1 hour, 51 minutes ago Description :A path Traversal vulnerability exists in Ziostation2 v2.9.8.7 and earlier. A remote unauthenticated attacker may get sensitive…

CVE-2026-32679 – Canon Network Camera Plugin DLL Loading Vulnerability

Posted on April 23, 2026

CVE ID :CVE-2026-32679 Published : April 23, 2026, 12:16 a.m. | 1 hour, 51 minutes ago Description :The installers of LiveOn Meet Client for Windows (Downloader5Installer.exe and Downloader5InstallerForAdmin.exe) and the installers of Canon Network…

CVE-2026-41455 – WeKan < 8.35 SSRF via Webhook URL

Posted on April 23, 2026

CVE ID :CVE-2026-41455 Published : April 22, 2026, 10:16 p.m. | 1 hour, 51 minutes ago Description :WeKan before 8.35 contains a server-side request forgery vulnerability in webhook integration URL handling where the url schema…

Posts pagination

1 2 … 69 Next

Site map

  • About Us
  • Privacy Policy
  • Terms & Conditions of Use
©2026 | Design: Newspaperly WordPress Theme