VulnScope — package-centric CVE lookup

Search

1,920 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.1CVE-2026-9950EPSS 0.04%Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had comprom…5/28/2026
LOW3.1EPSS 0.03%Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to l…5/28/2026
LOW3.1EPSS 0.03%Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pro…5/28/2026
LOW3.1EPSS 0.03%Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pr…5/28/2026
LOW3.9EPSS 0.06%Capsule Namespace Hijacking via subresource5/28/2026
LOW3.7EPSS 0.06%PyJWKClient unbounded JWKS endpoint requests via attacker-controlled kid values (DoS)5/28/2026
LOW3.3EPSS 0.01%pypdf: Possible long runtimes for zero-only width values in cross-reference streamsuntimes for zero-only width values in cross-reference streams5/28/2026
LOW3.7EPSS 0.05%Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an exp…5/27/2026
LOW3.3EPSS 0.02%A security vulnerability has been detected in GPAC up to 2.4.0.5/26/2026
LOW3.3EPSS 0.01%A security flaw has been discovered in GPAC up to 2.4.0.5/26/2026
LOW3.7EPSS 0.05%PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification.5/25/2026
LOW3.1EPSS 0.03%PuTTY 0.77 before 0.84 uses a copy of the PuTTY icon as a trust indication for TELNET data but the trust status is not cleared between prox…5/25/2026
LOW3.7EPSS 0.07%Roundcube Webmail 1.6.x before 1.6.16, and 1.7.x before 1.7.1 allows pre-authentication arbitrary file deletion via redis/memcache session…5/25/2026
LOW3.5EPSS 0.03%action/cookie.php in ecrire in SPIP before 4.4.15 is prone to an open redirect vulnerability.5/24/2026
LOW3.3EPSS 0.01%Invoking integer overflow in NewNTUnicodeString in golang.org/x/sys/windows5/22/2026
LOW2.0NocoDB: OAuth Token Scope Not Enforced at ACL Layer Allows Scope Escalation5/21/2026
LOW3.7EPSS 0.05%A time-of-check time-of-use (TOCTOU) condition in the ad_flush function in Netatalk 3.0.0 through 4.4.2 involves root-privileged file opera…5/21/2026
LOW3.7EPSS 0.12%A missing break statement in DSI OpenSession processing in Netatalk 1.5.0 through 4.4.2 causes a DSIOPT_ATTNQUANT switch case to fall throu…5/21/2026
LOW3.7EPSS 0.14%Netatalk 2.1.0 through 4.4.2 combines multiple errno values using bitwise OR, resulting in incorrect error codes when multiple error condit…5/21/2026
LOW3.7EPSS 0.16%Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which disables built-in buffer overflow detection at runtime, potentially…5/21/2026
LOW3.1EPSS 0.04%A dead bounds check in the Spotlight RPC unmarshaller in Netatalk 3.0.0 through 4.4.2 results in an unreachable code path that provides no…5/21/2026
LOW3.1EPSS 0.04%An incorrect calculation in the hextoint macro in Netatalk 2.0.0 through 4.4.2 due to improper uppercase character handling allows a remote…5/21/2026
LOW3.1EPSS 0.11%A format string argument mismatch in Netatalk 3.0.3 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service…5/21/2026
LOW3.0EPSS 0.03%Netatalk 2.2.1 through 4.4.2 calls system() after a failed chdir() without properly handling the error condition, which allows a local priv…5/21/2026
LOW3.1EPSS 0.12%An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to c…5/21/2026

← PrevPage 3 of 77Next →