Fallos del tipo CWE-184
134 resultadosCVE-2026-43566CRITICALOpenClaw 2026.4.7 < 2026.4.14 - Privilege Escalation via Untrusted Webhook Wake EventsEPSS 0.4%CVE-2025-71351HIGHpicklescan - Remote Code Execution via timeit.timeit() Detection BypassEPSS 0.4%CVE-2022-34888LOWThe Remote Mount feature can potentially be abused by valid, authenticated users to make connections to internal services that may not normaEPSS 0.4%CVE-2026-32747MEDIUMSiYuan: Incomplete sensitive path blocklist in globalCopyFiles allows reading /proc and Docker secretsEPSS 0.4%CVE-2026-1773HIGHIEC 60870-5-104 used in RTU500: Potential Denial of Service impact on reception of invalid U-format frame. Product is only affected if IEC 6EPSS 0.4%CVE-2021-31370MEDIUMJunos OS: QFX5000 Series and EX4600 Series: Control traffic might be dropped if a high rate of specific multicast traffic is receivedEPSS 0.4%CVE-2026-42435HIGHOpenClaw 2026.2.22 < 2026.4.12 - Shell-Wrapper Detection Bypass via Environment Variable Assignment InjectionEPSS 0.4%CVE-2024-28246MEDIUMKaTeX is missing normalization of the protocol in URLs allows bypassing forbidden protocolsEPSS 0.4%CVE-2022-38179MEDIUMJetBrains Ktor before 2.1.0 was vulnerable to the Reflect File Download attackEPSS 0.4%CVE-2026-34430HIGHByteDance DeerFlow LocalSandboxProvider Host Bash EscapeEPSS 0.4%CVE-2024-54149HIGHWinter CMS Modules allows a sandbox bypass in Twig templates leading to data modification and deletionEPSS 0.4%CVE-2026-43584HIGHOpenClaw < 2026.4.10 - Insufficient Environment Variable Denylist in Exec PolicyEPSS 0.4%CVE-2026-34177CRITICALVM lowlevel restriction bypass via raw.apparmor and raw.qemu.confEPSS 0.4%CVE-2026-44115HIGHOpenClaw < 2026.4.22 - Shell Expansion Bypass in Unquoted Heredocs via Exec AllowlistEPSS 0.4%CVE-2026-40893HIGHGotenberg: ExifTool Dangerous Tag Blocklist Bypass via Group-Prefixed Tag Names Allows Arbitrary File Rename and MoveEPSS 0.3%CVE-2026-22608HIGHFickling vulnerable to use of ctypes and pydoc gadget chain to bypass detectionEPSS 0.3%CVE-2026-31992HIGHOpenClaw < 2026.2.23 - Allowlist Exec-Guard Bypass via env -SEPSS 0.3%CVE-2026-22175HIGHOpenClaw < 2026.2.23 - Exec Approval Bypass via Unrecognized Multiplexer Shell WrappersEPSS 0.3%CVE-2026-54090HIGHFile Browser: Command Allowlist Bypass via Shell Metacharacter InjectionEPSS 0.3%CVE-2026-34425MEDIUMOpenClaw - Shell-Bleed Protection Preflight Validation BypassEPSS 0.3%