Browse all 6 CVE security advisories affecting craigjbass. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Craigjbass focuses on web application security research, identifying vulnerabilities in commercial and open-source software. Their CVE history primarily includes remote code execution, cross-site scripting, and privilege escalation flaws, often affecting authentication mechanisms and data processing functions. Security analysis reveals a pattern of discovering issues in content management systems and e-commerce platforms, with some findings involving complex exploit chains. While no major public incidents are directly attributed to this researcher, their contributions have led to multiple high-severity patches across vendor ecosystems. The researcher maintains a consistent track record of responsible disclosure, working with vendors to remediate issues before public release.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-40604 | ClearanceKit: opfilter system extension can be suspended or signalled by a root process, disabling file-access policy enforcement — clearancekitCWE-693 | 7.1AI | HighAI | 2026-04-21 |
| CVE-2026-40599 | ClearanceKit: Ad-hoc signed binaries can spoof Apple process identities in the global allowlist — clearancekitCWE-863 | 6.2AI | MediumAI | 2026-04-21 |
| CVE-2026-40191 | ClearanceKit has a policy bypass via dual-path Endpoint Security events checking only source path — clearancekitCWE-863 | 7.8 | - | 2026-04-10 |
| CVE-2026-34218 | ClearanceKit: Managed and user-defined policy rules not enforced between opfilter start and first policy modification — clearancekitCWE-269 | 7.7AI | HighAI | 2026-03-31 |
| CVE-2026-33632 | ClearanceKit: opfilter policy bypass via exchangedata and clone operations — clearancekitCWE-862 | 5.5 | - | 2026-03-26 |
| CVE-2026-33631 | ClearanceKit: opfilter policy bypass via non-open file operations — clearancekitCWE-862 | 8.7 | High | 2026-03-26 |
This page lists every published CVE security advisory associated with craigjbass. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.