CVEs classified under CWE-625, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2026-32973 — CVSS 9.8 (critical): OpenClaw before 2026.3.11 contains an exec allowlist bypass vulnerability where matchesExecAllowlistPattern improperly normalizes patterns…
CVE-2018-8926 — CVSS 8.8 (high): Permissive regular expression vulnerability in synophoto_dsm_user in Synology Photo Station before 6.8.5-3471 and before 6.3-2975 allows…
CVE-2026-23651 — CVSS 6.7 (medium): Permissive regular expression in Azure Compute Gallery allows an authorized attacker to elevate privileges locally.
CVE-2020-8910 — CVSS 6.5 (medium): A URL parsing issue in goog.uri of the Google Closure Library versions up to and including v20200224 allows an attacker to send malicious…
CVE-2026-34830 — CVSS 5.9 (medium): Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Sendfile#map_accel_path interpolates the…
CVE-2023-6544 — CVSS 5.4 (medium): A flaw was found in the Keycloak package. This issue occurs due to a permissive regular expression hardcoded for filtering which allows…
CVE-2026-34763 — CVSS 5.3 (medium): Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Directory interpolates the configured root…