LOW3.7CVE-2026-44074EPSS 0.14%Netatalk 2.1.0 through 4.4.2 combines multiple errno values using bitwise OR, resulting in incorrect error codes when multiple error condit…
LOW3.7CVE-2026-44071EPSS 0.16%Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY_SOURCE, which disables built-in buffer overflow detection at runtime, potentially…
LOW3.1CVE-2026-44057EPSS 0.04%A dead bounds check in the Spotlight RPC unmarshaller in Netatalk 3.0.0 through 4.4.2 results in an unreachable code path that provides no…
LOW3.1CVE-2026-7836EPSS 0.04%An incorrect calculation in the hextoint macro in Netatalk 2.0.0 through 4.4.2 due to improper uppercase character handling allows a remote…
LOW3.1CVE-2026-7835EPSS 0.11%A format string argument mismatch in Netatalk 3.0.3 through 4.4.2 allows a remote authenticated attacker to cause a minor denial of service…
LOW3.0CVE-2026-44072EPSS 0.03%Netatalk 2.2.1 through 4.4.2 calls system() after a failed chdir() without properly handling the error condition, which allows a local priv…
LOW3.1CVE-2026-44070EPSS 0.12%An unbounded memory reallocation in the charset conversion code in Netatalk 2.0.0 through 4.4.2 allows a remote authenticated attacker to c…
LOW3.9CVE-2026-44069EPSS 0.01%An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information,…
LOW3.7CVE-2026-45232EPSS 0.04%Rsync versions before 3.4.3 contain an off-by-one out-of-bounds stack write vulnerability in the establish_proxy_connection() function in s…
LOW3.5CVE-2026-45803EPSS 0.03%GitHub CLI: GitHub Actions log output in `gh run view` allows terminal escape sequence injection
LOW3.1CVE-2026-8579EPSS 0.04%Insufficient validation of untrusted input in Skia in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised t…
LOW3.1CVE-2026-8578EPSS 0.03%Out of bounds read in GPU in Google Chrome on Linux prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer proc…
LOW3.1CVE-2026-8572EPSS 0.04%Insufficient policy enforcement in Network in Google Chrome on Android prior to 148.0.7778.168 allowed a remote attacker who had compromise…
LOW3.1CVE-2026-8568EPSS 0.03%Insufficient policy enforcement in AI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer p…
LOW3.1CVE-2026-8556EPSS 0.03%Inappropriate implementation in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the…
LOW3.1CVE-2026-8554EPSS 0.04%Type Confusion in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer proc…
LOW3.1CVE-2026-8553EPSS 0.03%Use after free in GPU in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer process to perfor…
LOW3.1CVE-2026-8545EPSS 0.03%Object corruption in Compositing in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer proces…
LOW3.1CVE-2026-8536EPSS 0.03%Insufficient validation of untrusted input in ReadingMode in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who had…
LOW2.5CVE-2026-44638EPSS 0.02%libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel.
LOW3.7CVE-2026-43514EPSS 0.10%Apache Tomcat - AJP secret compared in non-constant time
LOW3.8CVE-2026-34094EPSS 0.04%Vulnerability in Wikimedia Foundation MediaWiki.
LOW3.7CVE-2026-8276EPSS 0.06%bettercap Has an Integer Coercion Error in modules/mysql_server/mysql_server.go
LOW3.7CVE-2026-8275EPSS 0.02%bettercap Has an Integer Coercion Error in the ippReadChunkedBody Function
LOW3.0CVE-2026-44916EPSS 0.01%In OpenStack Ironic before 35.0.2 (in a certain non-default configuration), instance_info['ks_template'] is rendered without sandboxing.