Articles
Daily digests summarizing the vulnerabilities and incidents tracked by VulnWatch.
-
· 19 entries · daily · Subscribers only
VulnWatch Daily: Critical MCP Server Flaws and Agent RCE Risks Surge
Today's digest highlights critical path traversal and prompt injection flaws in MCP servers and AI agents, including Langflow and SQLBot. Immediate patching is recommended for exposed instances.
-
· 30 entries · weekly
Langflow Floods, MCP Risks, and Ollama Windows RCE
This week saw a cascade of vulnerabilities in IBM Langflow, critical RCE risks in Ollama for Windows, and emerging threats in the Model Context Protocol ecosystem. Security teams must prioritize patching agentic frameworks and securing local AI deployments.
-
· 12 entries · daily · Subscribers only
VulnWatch Daily: Critical RCE in Agentic Frameworks and Ollama Memory Leaks
Today's digest highlights critical command injection flaws in Evolver and PPTAgent, alongside high-severity memory leaks in Ollama. Platform teams should prioritize patching agent runtimes and reviewing file upload policies.
-
· 3 entries · daily · Subscribers only
VulnWatch Daily: Critical MCP & Agentic Vulnerabilities in OpenClaw and LiteLLM
New advisories highlight risks in agent gateway configurations and MCP stdio transports. OpenClaw and LiteLLM users must patch immediately to prevent config mutations and authenticated RCE.
-
· 24 entries · daily · Subscribers only
VulnWatch Daily: Flowise Critical Swarm and Agentic RCE Risks
April 23, 2026: Critical RCE in Paperclip, 18+ CVEs in Flowise, and agentic consent bypasses demand immediate patching and network isolation.
-
· 51 entries · weekly
Flowise Floods Critical RCEs; Agentic Frameworks Under Siege
This week saw an unprecedented cascade of critical vulnerabilities in Flowise, alongside severe agentic bypasses in Paperclip and Gemini CLI. Immediate patching is required for LLM orchestration layers.