Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: cwe-441 Clear
ID Title
CVE-2026-49086 Vulnerability in apache (CVE-2026-49086)
vulnerability in apache (CVE-2026-49086). Risk of unauthorized operations or information disclosure.
CVE-2026-46592 Vulnerability in apache (CVE-2026-46592)
vulnerability in apache (CVE-2026-46592). Confidential information can be exposed externally.
CVE-2026-0098 Vulnerability in google (CVE-2026-0098)
vulnerability in google (CVE-2026-0098). Successful exploitation can lead to full system takeover.
CVE-2025-48570 Vulnerability in google (CVE-2025-48570)
vulnerability in google (CVE-2025-48570). Successful exploitation can lead to full system takeover.
CVE-2026-44494 Vulnerability in axios (CVE-2026-44494)
vulnerability in axios (CVE-2026-44494). Confidential information can be exposed externally. Exploitable via `Authorization header`. Mitigation: upgrade to `1.15.0` or later.
CVE-2026-3160 Vulnerability in gitlab (CVE-2026-3160)
vulnerability in gitlab (CVE-2026-3160). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
CVE-2026-45003 Vulnerability in openclaw (CVE-2026-45003)
vulnerability in openclaw (CVE-2026-45003). Confidential information can be exposed externally. Mitigation: upgrade to `2026.4.22` or later.
CVE-2026-44992 Vulnerability in openclaw (CVE-2026-44992)
vulnerability in openclaw (CVE-2026-44992). Confidential information can be exposed externally. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.20` or later.
CVE-2026-42043 Vulnerability in axios (CVE-2026-42043)
vulnerability in axios (CVE-2026-42043). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.15.1` or later.
CVE-2025-62718 Vulnerability in axios (CVE-2025-62718)
vulnerability in axios (CVE-2025-62718). Confidential information can be exposed externally. Exploitable via ``NO_PROXY``. Mitigation: upgrade to `0.31.0` or later.
CVE-2022-36537 KEV [KEV] Vulnerability in Zk framework zk-framework (CVE-2022-36537)
vulnerability in Zk framework zk-framework (CVE-2022-36537). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →