VulnScope — package-centric CVE lookup

Search

2,450 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

HIGH7.3CVE-2026-52858Vim is an open source, command line text editor.6/11/2026
HIGH7.5Vim is an open source, command line text editor.6/11/2026
CRITICAL9.8Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification.6/9/2026
HIGH7.5Issue summary: When an application drives an AES-OCB context through the public EVP_Cipher() one-shot interface, the application-supplied i…6/9/2026
HIGH7.5Issue summary: Parsing a crafted DER-encoded ASN.1 structure with a primitive element whose content exceeds 2 gigabytes in length may cause…6/9/2026
HIGH7.5Issue summary: When CMS password-based decryption (RFC 3211 / PWRI key unwrap) processes attacker-supplied CMS data, an attacker-chosen str…6/9/2026
CRITICAL9.1Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fi…6/9/2026
HIGH7.5Issue summary: Receiving a QUIC initial packet with an invalid token may trigger a NULL pointer dereference in the OpenSSL QUIC server with…6/9/2026
HIGH7.4Issue Summary: The PKCS#12 file processing fails to perform sufficient input validation for files that use Password-Based Message Authentic…6/9/2026
HIGH7.5Issue summary: Remote peer may exhaust heap memory of the QUIC server or client by flooding it with packets containing PATH_CHALLENGE frame…6/9/2026
HIGH8.1Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1_mbstring_ncopy() can lead to a heap…6/9/2026
CRITICAL9.1Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex…6/9/2026
HIGH8.0MariaDB server is a community developed fork of MySQL server.6/7/2026
HIGH8.0MariaDB server is a community developed fork of MySQL server.6/7/2026
HIGH8.0MariaDB server is a community developed fork of MySQL server.6/7/2026
HIGH7.5Apache HTTP Server: mod_http2 denial of service6/3/2026
HIGH7.1EPSS 0.06%A flaw was found in Samba’s handling of NTFS-style reparse points on shares configured with read only = yes.5/27/2026
HIGH8.0EPSS 0.01%A flaw was found in Samba’s certificate auto-enrollment Group Policy handling.5/27/2026
HIGH8.2EPSS 0.23%A flaw was found in libgnutls.5/26/2026
HIGH8.2EPSS 0.05%A flaw was found in gnutls.5/26/2026
HIGH7.1EPSS 0.04%A flaw was found in gnutls.5/26/2026
HIGH8.5EPSS 0.39%A flaw was found in the Samba printing subsystem.5/26/2026
HIGH7.5A flaw was found in Samba’s WINS server component when running as an Active Directory Domain Controller.5/26/2026
CRITICAL9.0EPSS 0.39%A flaw was found in Samba.5/26/2026
HIGH7.5EPSS 0.07%Multiple flaws have been identified in `named` related to the handling of DNS messages whose CLASS is not Internet (`IN`) — for example, `C…5/20/2026

Page 1 of 98Next →