V
Vexday
by TrueHacking
›
Briefing
Live
PT
ES
EN
Home
/
Weakness types
/
CWE-396
Weaknesses of type
CWE-396
2 results
CVE-2026-27482
MEDIUM
Ray: Dashboard DELETE endpoints allow unauthenticated browser-triggered DoS (Serve shutdown / job deletion)
EPSS
0.3%
CVE-2026-40149
HIGH
PraisonAI has an Unauthenticated Allow-List Manipulation Bypasses Agent Tool Approval Safety Controls
EPSS
0.2%