快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 359799
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-27002 |
OpenClaw: Docker container escape via unvalidated bind mount config injection
|
HIGH | 7.7 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-2350 |
Tanium addressed an insertion of sensitive information into log file vulnerability in Interact and TDS.
|
MEDIUM | 6.5 | 2026-02-19 |
Tanium Interact
Tanium TDS
+1个
|
CVE NVD | |
| CVE-2026-1292 |
Tanium addressed an insertion of sensitive information into log file vulnerability in Trends.
|
MEDIUM | 6.5 | 2026-02-19 |
Tanium Trends
tanium trends
|
CVE NVD | |
| CVE-2026-27001 |
OpenClaw: Unsanitized CWD path injection into LLM prompts
|
HIGH | 8.6 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-2605 |
Tanium addressed an insertion of sensitive information into log file vulnerability in TanOS.
|
MEDIUM | 5.3 | 2026-02-19 |
Tanium TanOS
tanium tanos
|
CVE NVD | |
| CVE-2026-2408 |
Use-after-free in Cloud Workloads
|
MEDIUM | 4.7 | 2026-02-19 |
Tanium Cloud Workloads
tanium cloud_workloads
|
CVE NVD | |
| CVE-2026-2435 |
ASSET-7706
|
MEDIUM | 6.3 | 2026-02-19 |
Tanium Asset
tanium asset
|
CVE NVD | |
| CVE-2026-26972 |
OpenClaw has a Path Traversal in Browser Download Functionality
|
MEDIUM | 6.7 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26329 |
OpenClaw has a path traversal in browser upload allows local file read
|
HIGH | 7.1 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26328 |
OpenClaw iMessage group allowlist authorization inherited DM pairing-store identities
|
MEDIUM | 6.5 | 2026-02-19 |
openclaw openclaw
openclaw clawdbot
+1个
|
CVE NVD | |
| CVE-2026-26958 |
filippo.io/edwards25519 MultiScalarMult function produces invalid results or undefined behavior if receiver is not the identity
|
LOW | 1.7 | 2026-02-19 |
FiloSottile filippo.io/edwards25519
|
CVE NVD | |
| CVE-2026-26327 |
OpenClaw allows unauthenticated discovery TXT records to steer routing and TLS pinning
|
HIGH | 7.1 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26326 |
OpenClaw skills.status could leak secrets to operator.read clients
|
MEDIUM | 5.3 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26325 |
OpenClaw Node host system.run rawCommand/command mismatch can bypass allowlist/approvals
|
HIGH | 7.2 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26953 |
Pi-hole Web Interface has Stored HTML Injection via X-Forwarded-For Header in Active Sessions Table
|
MEDIUM | 5.4 | 2026-02-19 |
pi-hole web
|
CVE NVD | |
| CVE-2026-26324 |
OpenClaw has a SSRF guard bypass via full-form IPv4-mapped IPv6 (loopback / metadata reachable)
|
HIGH | 7.5 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26323 |
OpenClaw has a command injection in maintainer clawtributors updater
|
HIGH | 8.6 | 2026-02-19 |
openclaw openclaw
openclaw openclaw
|
CVE NVD | |
| CVE-2026-26952 |
Pi-hole Web Interface has Stored HTML Injection via Local DNS Records (CNAME/Hosts) in data-tag Attribute
|
MEDIUM | 5.4 | 2026-02-19 |
pi-hole web
|
CVE NVD | |
| CVE-2026-1658 |
Content spoofing vulnerability discovered in OpenText™ Directory Services
|
MEDIUM | 5.3 | 2026-02-19 |
OpenText™ Directory Services
opentext directory_services
|
CVE NVD | |
| CVE-2025-9208 |
Stored-XSS vulnerability discovered in OpenText WSM Management Server.
|
HIGH | 7.5 | 2026-02-19 |
OpenText™ Web Site Management Server
OpenText™ Web Site Management Server
+2个
|
CVE NVD |