|
1201
|
5.5 |
MEDIUM
Adjacent
|
-
|
-
|
A vulnerability was detected in 8421bit MiniClaw 0.8.0/0.9.0. This issue affects the function resolveSkillScriptPath of the file src/kernel.ts of the component System Command Handler. The manipulatio…
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8235
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1202
|
3.5 |
LOW
Adjacent
|
-
|
-
|
A vulnerability was found in Dotouch XproUPF 2.0.0-release-088aa7c4. This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.so of the component UPF Process. The ma…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-8232
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1203
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was found in Open5GS up to 2.7.7. Affected by this vulnerability is the function pcf_sess_sbi_discover_and_send of the component sm-policies Endpoint. Performing a manipulation result…
New
|
CWE-404
Improper Resource Shutdown or Release
|
CVE-2026-8223
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1204
|
6.3 |
MEDIUM
Network
|
-
|
-
|
A security flaw has been discovered in Industrial Application Software IAS Canias ERP 8.03. Impacted is the function Runtime.getRuntime.exec of the component RMI Interface. Performing a manipulation …
New
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-8217
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1205
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A flaw has been found in Open5GS up to 2.7.7. This impacts the function _gtpv1_u_recv_cb of the file src/upf/gtp-path.c of the component UPF. Executing a manipulation can lead to resource consumption…
New
|
CWE-400
CWE-404
Uncontrolled Resource Consumption
Improper Resource Shutdown or Release
|
CVE-2026-8187
|
2026-05-12 01:17 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1206
|
5.3 |
MEDIUM
Network
|
-
|
-
|
A vulnerability was detected in Open5GS up to 2.7.7. This affects the function ogs_sbi_client_send_via_scp_or_sepp in the library lib/sbi/client.c of the component NF. Performing a manipulation resul…
New
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2026-8186
|
2026-05-12 01:17 |
2026-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1207
|
2.2 |
LOW
Local
|
-
|
-
|
GrapheneOS before 2026050400 allows attackers to discover the real IP address of a VPN user as a consequence of a registerQuicConnectionClosePayload optimization, because an application can let syste…
New
|
CWE-441
Confused Deputy
|
CVE-2026-45182
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1208
|
8.8 |
HIGH
Network
|
-
|
-
|
AzuraCast is a self-hosted, all-in-one web radio management suite. Prior to version 0.23.6, the currentDirectory request parameter in the Flow.js media upload endpoint (POST /api/station/{station_id}…
New
|
CWE-22
Path Traversal
|
CVE-2026-42605
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1209
|
- |
|
-
|
-
|
ArchiveBox is an open source self-hosted web archiving system. In versions 0.8.6rc0 and prior, the /add/ endpoint (AddView in core/views.py) accepts a config JSON field that gets merged into the craw…
New
|
CWE-88
Argument Injection
|
CVE-2026-42601
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1210
|
- |
|
-
|
-
|
Quarkus OpenAPI Generator is Quarkus' extensions for generation of Rest Clients and server stubs generation. Prior to versions 2.11.1-lts, 2.16.0-lts, and 2.17.0, the generated authentication filter …
New
|
CWE-200
Information Exposure
|
CVE-2026-42333
|
2026-05-12 01:17 |
2026-05-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
