Search

16,415 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

HIGH7.5CVE-2026-50031ipmi-oem in FreeIPMI before 1.6.18 has exploitable buffer overflows on response messages.6/3/2026
HIGH8.8CVE-2026-49157EPSS 0.06%Apache ActiveMQ: Authenticated low-privilege Web users retain Jolokia broker-management capability by default6/1/2026
HIGH8.1CVE-2026-42588EPSS 0.06%Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Remote Code Execution via Jolokia addNetworkConnector6/1/2026
HIGH8.8CVE-2026-45505EPSS 0.10%Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Jolokia `addNetworkConnector` Discovery Wrapper Bypass6/1/2026
HIGH7.8CVE-2026-43958EPSS 0.01%A flaw was found in rrdcached, a component of rrdtool.6/1/2026
HIGH7.8CVE-2026-46243EPSS 0.02%In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key…6/1/2026
HIGH7.8CVE-2026-10118EPSS 0.07%A flaw was found in Poppler's Splash backend.6/1/2026
HIGH7.1CVE-2026-48827EPSS 0.10%Path traversal vulnerability in Apache MINA SSHD bundle sshd-git.6/1/2026
HIGH8.1CVE-2026-8796EPSS 0.01%Sereal::Decoder versions before 5.005 for Perl allow heap out-of-bounds read via crafted input.5/31/2026
HIGH7.5CVE-2026-46527EPSS 0.06%cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library.5/29/2026
HIGH7.5CVE-2026-44422EPSS 0.05%FreeRDP is a free implementation of the Remote Desktop Protocol.5/29/2026
HIGH8.8CVE-2026-44421EPSS 0.06%FreeRDP is a free implementation of the Remote Desktop Protocol.5/29/2026
HIGH8.8CVE-2026-44420EPSS 0.04%FreeRDP is a free implementation of the Remote Desktop Protocol.5/29/2026
HIGH7.5CVE-2026-46599EPSS 0.06%Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff5/29/2026
HIGH7.4CVE-2026-48501EPSS 0.05%GitHub CLI has an incorrect authorization header in API requests to TUF repository mirrors via `gh attestation`, `gh release verify`, and `gh release verify-asset` commands5/29/2026
HIGH8.8CVE-2026-9999EPSS 0.08%Inappropriate implementation in ANGLE in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code i…5/28/2026
HIGH8.3CVE-2026-9998EPSS 0.07%Integer overflow in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to pot…5/28/2026
HIGH8.3CVE-2026-9997EPSS 0.12%Use after free in Input in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to pote…5/28/2026
HIGH8.8CVE-2026-9995EPSS 0.08%Use after free in WebXR in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via a…5/28/2026
HIGH8.3CVE-2026-9994EPSS 0.12%Use after free in Core in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer proce…5/28/2026
HIGH8.3CVE-2026-9993EPSS 0.12%Use after free in Views in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to pote…5/28/2026
HIGH8.8CVE-2026-9992EPSS 0.09%Use after free in Network in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to execute arbitrary code inside a sandbox via…5/28/2026
HIGH7.5CVE-2026-9990EPSS 0.07%Use after free in WebAppInstalls in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker who convinced a user to engage i…5/28/2026
HIGH8.3CVE-2026-9988EPSS 0.07%Use after free in WebRTC in Google Chrome on Linux prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escap…5/28/2026
HIGH7.8CVE-2026-9987EPSS 0.01%Insufficient validation of untrusted input in WebAppInstalls in Google Chrome on Android prior to 148.0.7778.216 allowed a local attacker t…5/28/2026

Page 1 of 657Next →