openharness · threatengine.sh

Home/Product/hkuds openharness

Product

hkuds openharness

8 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

HKUDS OpenHarness contains a remote code execution vulnerability in the /bridge slash command that allows remote senders accepted

HKUDS OpenHarness prior to PR #147 remediation contains an insecure default configuration vulnerability where remote channels inhe

HKUDS OpenHarness prior to PR #156 remediation exposes plugin lifecycle commands including /plugin install, /plugin enable, /plugi

HKUDS OpenHarness prior to PR #159 remediation contains a session key derivation vulnerability that allows authenticated participa

OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fetch and web_search tools that

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exp

OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gateway users with chat access to r

OpenHarness prior to commit dd1d235 contains a command injection vulnerability that allows remote gateway users with chat access t

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin