VulnScope — package-centric CVE lookup- HIGH7.5CVE-2021-39935⚠ KEVEPSS 64.5%GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability
- HIGH7.5⚠ KEVEPSS 94.0%Minio Information Disclosure in Cluster Deployment
- CRITICAL9.8⚠ KEVEPSS 93.4%Weak Password Recovery Mechanism for Forgotten Password in GitLab
- CRITICAL9.8⚠ KEVEPSS 94.4%Remote Code Execution Vulnerability in Packaging
- CRITICAL9.8⚠ KEVEPSS 94.4%apisix/batch-requests plugin allows overwriting the X-REAL-IP header
- HIGH7.5⚠ KEVEPSS 94.4%Grafana path traversal
- HIGH7.8⚠ KEVEPSS 84.6%Linux Kernel Use-After-Free Vulnerability
- CRITICAL9.8⚠ KEVEPSS 94.5%Arbitrary file read vulnerability through the Jenkins CLI can lead to RCE
- HIGH8.8⚠ KEVEPSS 0.62%Apple Multiple Products WebKit Type Confusion Vulnerability
- HIGH8.8⚠ KEVEPSS 0.18%Google Chromium V8 Out-of-Bounds Memory Access Vulnerability
- HIGH7.8⚠ KEVEPSS 2.7%Linux Kernel Use-After-Free Vulnerability
- HIGH7.8⚠ KEVEPSS 55.7%libspreadsheet-parseexcel-perl - security update
- HIGH8.8⚠ KEVEPSS 3.1%chromium - security update
- HIGH8.8⚠ KEVEPSS 0.09%Apple Multiple Products WebKit Memory Corruption Vulnerability
- MEDIUM6.5⚠ KEVEPSS 0.05%webkit2gtk - security update
- CRITICAL9.6⚠ KEVEPSS 1.9%chromium - security update
- CRITICAL10.0⚠ KEVEPSS 94.4%Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack
- MEDIUM5.4⚠ KEVEPSS 83.2%roundcube - security update
- MEDIUM5.3⚠ KEVEPSS 94.4%nghttp2 - security update
- HIGH7.8⚠ KEVEPSS 62.2%glibc - security update
- HIGH8.8⚠ KEVEPSS 5.0%libvpx - security update
- MEDIUM6.1⚠ KEVEPSS 79.5%roundcube - security update
- HIGH8.8⚠ KEVEPSS 24.2%Apple Multiple Products WebKit Code Execution Vulnerability
- CRITICAL9.8⚠ KEVEPSS 94.0%Improper Control of Generation of Code ('Code Injection') in jai-ext
- HIGH8.8⚠ KEVEPSS 93.3%thunderbird - security update