VulnScope — 以套件為主體的 CVE 查詢工具

搜尋

4,263 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

—CVE-2025-54518EPSS 0.01%Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructio…2026/5/15
HIGH8.8CVE-2026-6638EPSS 0.02%PostgreSQL REFRESH PUBLICATION allows SQL injection via table name2026/5/14
HIGH8.8EPSS 0.04%PostgreSQL refint allows stack buffer overflow and SQL injection2026/5/14
MEDIUM4.3EPSS 0.03%PostgreSQL pg_restore_attribute_stats accepts values that cause query planning to read past end of stats array2026/5/14
HIGH7.5EPSS 0.02%PostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion2026/5/14
MEDIUM6.5EPSS 0.08%PostgreSQL discloses MD5-hashed passwords via covert timing channel2026/5/14
HIGH8.8EPSS 0.05%PostgreSQL libpq lo_* functions let server superuser overwrite client stack memory2026/5/14
HIGH7.2EPSS 0.03%PostgreSQL pg_createsubscriber allows SQL injection via subscription name2026/5/14
HIGH8.8EPSS 0.05%PostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of origin superuser choice2026/5/14
MEDIUM4.3EPSS 0.03%PostgreSQL timeofday() can disclose portions of server memory2026/5/14
HIGH8.8EPSS 0.07%PostgreSQL server undersizes allocations, via integer wraparound2026/5/14
MEDIUM5.4EPSS 0.03%PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege2026/5/14
MEDIUM6.5EPSS 0.07%NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability2026/5/13
—EPSS 0.90%NGINX ngx_http_rewrite_module vulnerability2026/5/13
MEDIUM4.8EPSS 0.04%NGINX ngx_http_charset_module vulnerability2026/5/13
MEDIUM5.8EPSS 0.02%NGINX ngx_http_proxy_v2_module vulnerability2026/5/13
MEDIUM4.8EPSS 0.04%NGINX ngx_http_ssl_module vulnerability2026/5/13
MEDIUM6.5EPSS 0.03%NGINX ngx_quic_module vulnerability2026/5/13
MEDIUM5.3EPSS 0.08%Successfully using libcurl to do a transfer over a specific HTTP proxy (`proxyA`) with **Digest** authentication and then changing the prox…2026/5/13
MEDIUM5.3When curl is told to use the Certificate Status Request TLS extension, often referred to as *OCSP stapling*, to verify that the server cert…2026/5/13
MEDIUM5.3EPSS 0.02%When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, libcurl could leak the password used for the first hos…2026/5/13
HIGH7.5EPSS 0.01%Using libcurl, when a custom `Host:` header is first set for an HTTP request and a second request is subsequently done using the same *easy…2026/5/13
MEDIUM5.9EPSS 0.03%curl might erroneously pass on credentials for a first proxy to a second proxy.2026/5/13
HIGH7.5EPSS 0.02%libcurl might in some circumstances reuse the wrong connection for SMB(S) transfers.2026/5/13
MEDIUM6.5EPSS 0.04%libcurl might in some circumstances reuse the wrong connection when asked to do an authenticated HTTP(S) request after a Negotiate-authenti…2026/5/13

← 上一頁第 4 / 171 頁下一頁 →