2.7

CVSS3.1

CVE-2026-32717 - AnythingLLM access control bypass: suspended users can continue using Browser Extension API keys

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, in multi-user mode, AnythingLLM blocks suspended users on the normal JWT-backed session path, but it does not block them on the browser extension API ke…

πŸ“… Published: March 13, 2026, 9:23 p.m. πŸ”„ Last Modified: March 13, 2026, 9:23 p.m.

3.8

CVSS3.1

CVE-2026-32715 - AnythingLLM Manager Privilege Bypass Allows Access to Admin-Only System Preferences

AnythingLLM is an application that turns pieces of content into context that any LLM can use as references during chatting. In 1.11.1 and earlier, The two generic system-preferences endpoints allow manager role access, while every other surface that touches the same settings is restricted to admin …

πŸ“… Published: March 13, 2026, 9:22 p.m. πŸ”„ Last Modified: March 13, 2026, 9:22 p.m.

4.3

CVSS3.1

CVE-2026-32713 - PX4 Autopilot MAVLink FTP Session Validation Logic Error Allows Operations on Invalid File Descript…

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, A logic error in the PX4 Autopilot MAVLink FTP session validation uses incorrect boolean logic (&& instead of ||), allowing BurstReadFile and WriteFile operations to proceed with invalid sessions or closed file descriptors.…

πŸ“… Published: March 13, 2026, 9:20 p.m. πŸ”„ Last Modified: March 13, 2026, 9:20 p.m.

5.4

CVSS3.1

CVE-2026-32709 - PX4 Autopilot MAVLink FTP Unauthenticated Path Traversal (Arbitrary File Read/Write/Delete)

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, An unauthenticated path traversal vulnerability in the PX4 Autopilot MAVLink FTP implementation allows any MAVLink peer to read, write, create, delete, and rename arbitrary files on the flight controller filesystem without …

πŸ“… Published: March 13, 2026, 9:19 p.m. πŸ”„ Last Modified: March 13, 2026, 9:19 p.m.

7.8

CVSS3.1

CVE-2026-32708 - Zenoh uORB Subscriber Allows Arbitrary Stack Allocation (PX4/PX4-Autopilot)

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the Zenoh uORB subscriber allocates a stack VLA directly from the incoming payload length without bounds. A remote Zenoh publisher can send an oversized fragmented message to force an unbounded stack allocation and copy, ca…

πŸ“… Published: March 13, 2026, 9:18 p.m. πŸ”„ Last Modified: March 13, 2026, 9:18 p.m.

5.2

CVSS3.1

CVE-2026-32707 - PX4 autopilot has a stack buffer overflow in tattu_can due to unbounded memcpy in frame assembly lo…

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, tattu_can contains an unbounded memcpy in its multi-frame assembly loop, allowing stack memory overwrite when crafted CAN frames are processed. In deployments where tattu_can is enabled and running, a CAN-injection-capable …

πŸ“… Published: March 13, 2026, 9:18 p.m. πŸ”„ Last Modified: March 13, 2026, 9:18 p.m.

7.1

CVSS3.1

CVE-2026-32706 - PX4 autopilot has a global buffer overflow in crsf_rc via oversized variable-length known packet

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, The crsf_rc parser accepts an oversized variable-length known packet and copies it into a fixed 64-byte global buffer without a bounds check. In deployments where crsf_rc is enabled on a CRSF serial port, an adjacent/raw-se…

πŸ“… Published: March 13, 2026, 9:17 p.m. πŸ”„ Last Modified: March 13, 2026, 9:17 p.m.

6.8

CVSS3.1

CVE-2026-32705 - PX4 autopilot BST Device Name Length Can Overflow Driver Buffer

PX4 autopilot is a flight control solution for drones. Prior to 1.17.0-rc2, the BST telemetry probe writes a string terminator using a device-provided length without bounds. A malicious BST device can report an oversized dev_name_len, causing a stack overflow in the driver and crashing the task (or…

πŸ“… Published: March 13, 2026, 9:15 p.m. πŸ”„ Last Modified: March 13, 2026, 9:15 p.m.

8.2

CVSS3.1

CVE-2026-32616 - Pigeon has a Host Header Injection in email verification flow

Pigeon is a message board/notepad/social system/blog. Prior to 1.0.201, the application uses $_SERVER['HTTP_HOST'] without validation to construct email verification URLs in the register and resendmail flows. An attacker can manipulate the Host header in the HTTP request, causing the verification l…

πŸ“… Published: March 13, 2026, 9:12 p.m. πŸ”„ Last Modified: March 13, 2026, 9:12 p.m.

6.5

CVSS3.1

CVE-2026-32704 - SiYuan renderSprig: missing admin check allows any user to read full workspace DB

SiYuan is a personal knowledge management system. Prior to 3.6.1, POST /api/template/renderSprig lacks model.CheckAdminRole, allowing any authenticated user to execute arbitrary SQL queries against the SiYuan workspace database and exfiltrate all note content, metadata, and custom attributes. This …

πŸ“… Published: March 13, 2026, 9:10 p.m. πŸ”„ Last Modified: March 13, 2026, 9:10 p.m.
Total resulsts: 337984
Page 2 of 33,799
Β« previous page Β» next page
Filters