Known Vulnerabilities for Via Agent by Tripwire
Listed below are 10 of the newest known vulnerabilities associated with "Via Agent" by "Tripwire".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-59100 json | LobeChat through 2.2.9 contains a broken object level authorization vulnerability that allows authenticated attackers to acce... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58579 json | RAGFlow before 0.26.3 stores an agent pipeline (DSL) node name without sanitization: the agent update endpoint normalizes the... | Not Provided | 2026-07-02 | 2026-07-06 |
| CVE-2026-58370 json | Woodpecker before 3.15.0 matches the ApprovalAllowedUsers bypass list against pipeline.Author. For the GitLab forge driver, p... | Not Provided | 2026-06-30 | 2026-07-02 |
| CVE-2026-58171 json | Vibe-Trading before 0.1.10 constructs the swarm run directory by joining a caller-supplied run identifier onto the runs base ... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-58170 json | Vibe-Trading before 0.1.10 builds the proposal file path by joining a caller-supplied proposal identifier onto the broker pro... | Not Provided | 2026-06-30 | 2026-06-30 |
| CVE-2026-57301 json | Jenkins OWASP ZAP Plugin 1.0.7 and earlier performs build operations on the Jenkins controller rather than the assigned agent... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57287 json | Jenkins Job Configuration History Plugin 1356.ve360da_6c523a_ and earlier does not redact the encrypted values of secrets whe... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-57282 json | Jenkins Git client Plugin 6.6.0 and earlier does not correctly escape the workspace directory name when it is embedded into a... | Not Provided | 2026-06-24 | 2026-06-24 |
| CVE-2026-56696 json | OpenHarness /issue and /pr_comments slash commands lack remote_invocable=False protection, allowing remote channel senders to... | Not Provided | 2026-06-23 | 2026-06-23 |
| CVE-2026-56694 json | NanoClaw before 2.1.0 contains a privilege escalation vulnerability in the channel-registration approval flow where handleCha... | Not Provided | 2026-06-23 | 2026-06-23 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Tripwire | Via Agent | 2.2.0 |