PatchSiren

vowelweb CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM vowelweb CVE published 2026-07-13

CVE-2026-57776

A Missing Authorization vulnerability was found in VW Wedding vw-wedding, affecting versions from n/a through 1.3.7. This issue allows for Exploiting Incorrectly Configured Access Control Security Levels, potentially leading to security risks. The vulnerability has a CVSS score of 5.3 and a severity of MEDIUM. The issue is characterized by CWE-862, and the CVSS vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C [truncated]

MEDIUM vowelweb CVE published 2026-07-13

CVE-2026-57774

A Missing Authorization vulnerability in VW Food Corner vw-food-corner allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects VW Food Corner: from n/a through <= 1.1.0. The vulnerability has a CVSS score of 5.3 and is classified as MEDIUM severity. Users of VW Food Corner up to version 1.1.0 should assess and mitigate this vulnerability. The CVE record was published on [truncated]