CVE Vulnerability Catalog
Translated CVE descriptions from NVD NIST - in English
CISA KEV catalog updated: (v2026.07.10)
Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within internal agent validation processes. A local attacker could potentially bypass built-in security controls or cryptographic validations.
In Vim prior to version 9.2.0597, the Python omni-completion feature executes reconstructed function and class definitions from the current buffer using exec(). Python evaluates default argument values, parameter annotations, and class base expressions at definition time, allowing a malicious buffer to execute attacker-controlled Python expressions during omni-completion. The existing g:pythoncomplete_allow_import mitigation does not cover this path because the attacker-controlled code is not a harvested import/from statement.
In Vim, prior to version 9.2.0565, the update_snapshot() function in src/terminal.c copied the visible terminal screen into the scrollback buffer, which could lead to out-of-bounds array access. As a result, a program rendered inside a :terminal window could trigger a crash.
Vim prior to version 9.2.0561 has a security issue related to executing code from malicious .py files when using Python's omni-completion feature. As a result, malicious code can be run in the context of the editing user.
KanaDojo contains a command injection vulnerability that allows an attacker with pull request access to execute arbitrary shell commands by inserting shell metacharacters into the version or changes fields of patchNotesData.json. These inputs are interpolated unsanitized into a child_process.execSync() call in the release.yml workflow.
Quest Bot is a modern Discord bot that prior to version 1.0.5 had a vulnerability in the AutoMod feature, allowing the removal of rules without verifying their association with the server. A user could identify the victim guild's AutoMod rule ID and remove it from another guild where they had Manage Server permissions.
In PenguinMod-BackendApi prior to version 1.0.0, a NoSQL injection vulnerability in the password reset endpoint allows any authenticated user to change the password of an account, leading to full account takeover. An attacker only needs a registered account and a valid password reset token for their own account.
Quest Bot is a modern Discord bot designed for moderation, utilities, and support. In versions prior to 1.0.3, a normal user could create a reminder containing @everyone or @here, resulting in mass notifications when triggered.
Garlic-Hub, managing a digital signage network, prior to version 1.1 allowed authenticated users to send arbitrary HTTP requests to internal services via the uploadFromUrl endpoint. This enables internal port scanning, service fingerprinting, and retrieval of internal HTTP responses stored in the publicly accessible media pool.
Quest Bot is a modern Discord bot that prior to version 1.0.3 had a vulnerability allowing users with Manage Server / ManageGuild permissions to assign arbitrary roles to new members. If the selected role had Administrator permissions and was below the bot's highest role, an attacker could gain full server admin rights.
Quest Bot is a modern Discord bot designed for moderation, utilities, and support. In versions prior to 1.0.1, any guild member could use the /automod add, /automod remove, and /automod list commands, allowing them to add moderation rules without proper permissions.
In Vim prior to version 9.2.0495, a Vimscript code injection vulnerability exists in the s:NetrwBookHistSave() function of the netrw plugin. A directory name from the filesystem is interpolated into a single-quoted Vimscript string without escaping embedded single quotes, allowing arbitrary Vimscript execution, including shell commands, when the history file is sourced.
mcp-server-kubernetes is a Model Context Protocol server for Kubernetes cluster management. Prior to version 3.6.0, this server exposes three environment variables intended for access control to Kubernetes operations, but these controls were only effective at the tool discovery layer, not at the execution layer.
Idira Secrets Manager Self-Hosted versions 13.8.0 and lower exhibit improper access control within internal cluster endpoints. A remote, authenticated attacker possessing standard node-level credentials could leverage these endpoints to potentially retrieve unauthorized secrets or cause a denial of service (DoS).
Idira Endpoint Privilege Manager Agent versions prior to 26.5 exhibit improper access control within high-privileged agent components. A local, low-privileged attacker could exploit this by manipulating an internal communication mechanism or file operation.
An integer overflow flaw was found in the SASL I/O layer of 389 Directory Server (389-ds-base). Adding sizeof(uint32_t) to a crafted SASL packet length prefix of 0xFFFFFFFC causes unsigned wraparound to zero, bypassing the nsslapd-maxsasliosize limit and leading to a heap buffer overflow of up to approximately 2 megabytes of attacker-controlled data.
A permissions issue was addressed with additional restrictions. An app may be able to access protected user data.
The issue was addressed with improved checks. An app may be able to bypass launch constraint protections and execute malicious code with elevated privileges.
This issue was addressed with improved checks to prevent unauthorized actions. An app may be able to break out of its sandbox.
KanaDojo before 0.1.18 contains a sandbox escape vulnerability that allows an attacker to execute arbitrary code. This is exploited by passing the global require function into a Node.js vm.runInNewContext() sandbox context in the issue-auto-respond.yml workflow.

