搜尋

3,835 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

CRITICAL9.8CVE-2026-31072EPSS 0.18%APScheduler's JSONSerializer and CBORSerializer are vulnerable to Remote Code Execution (RCE) via Insecure Deserialization2026/5/19
CRITICAL9.6CVE-2026-2587GlassFish's gadget handler is vulnerable to RCE2026/5/19
CRITICAL9.8CVE-2026-8956EPSS 0.06%Integer overflow in the Networking: JAR component.2026/5/19
CRITICAL9.6CVE-2026-8953EPSS 0.05%Sandbox escape due to use-after-free in the Disability Access APIs component.2026/5/19
CRITICAL9.3CVE-2026-8950EPSS 0.02%Same-origin policy bypass in the Networking: HTTP component.2026/5/19
CRITICAL9.8CVE-2026-43493EPSS 0.07%In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix handling of MAY_BACKLOG requests MAY_BACKLOG reque…2026/5/19
CRITICAL9.8CVE-2026-8721EPSS 0.02%Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl truncates passwords with embedded NULLs.2026/5/17
CRITICAL9.8CVE-2026-8507EPSS 0.05%Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out-of-bounds (OOB) write flaws.2026/5/17
CRITICAL9.6CVE-2026-8580EPSS 0.07%Use after free in Mojo in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a cra…2026/5/14
CRITICAL9.6CVE-2026-8511EPSS 0.07%Use after free in UI in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a craft…2026/5/14
CRITICAL9.1CVE-2026-46470EPSS 0.04%An issue was discovered in GStreamer gst-plugins-good before 1.28.2.2026/5/14
CRITICAL9.8CVE-2026-45083EPSS 0.05%Goobi viewer - Core: Unauthenticated Solr Streaming Expression Proxy2026/5/13
CRITICAL9.8CVE-2026-45185EPSS 0.08%Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing path.2026/5/12
CRITICAL9.1CVE-2026-33117EPSS 0.03%Security feature bypass vulnerability in Azure Key Vault Keys library for Java2026/5/12
CRITICAL9.8CVE-2026-31236EPSS 0.10%llm CLI tool contains a code injection vulnerability via `--functions` command-line argument2026/5/12
CRITICAL9.1CVE-2026-43515EPSS 0.10%Apache Tomcat - Security constraints not correctly applied2026/5/12
CRITICAL9.8CVE-2026-43512EPSS 0.14%Apache Tomcat - Digest authenticator will authenticate any unknown user2026/5/12
CRITICAL9.8CVE-2026-41293EPSS 0.25%Apache Tomcat - HTTP/2 request headers not validated2026/5/12
CRITICAL9.8CVE-2026-8401EPSS 0.08%Sandbox escape in the Profile Backup component.2026/5/12
CRITICAL9.1CVE-2026-45091EPSS 0.01%sealed-env: TOTP secret embedded in unseal token payload (enterprise mode)2026/5/12
CRITICAL9.1CVE-2026-27851EPSS 0.02%When safe filter is used with variable expansion, all following pipelines on the same string are incorrectly interpreted as safe too, enabl…2026/5/12
CRITICAL9.8CVE-2026-7210EPSS 0.07%The expat and elementtree parsers use insufficient entropy for XML hash-flooding protection2026/5/11
CRITICAL9.1CVE-2026-27478EPSS 0.03%Unity Catalog has a JWT Issuer Validation Bypass tht Allows Complete User Impersonation2026/5/11
CRITICAL9.1CVE-2026-6104EPSS 0.03%Global buffer over-read in mb_convert_encoding() with attacker-supplied encoding2026/5/10
CRITICAL9.8CVE-2026-7261EPSS 0.07%SoapServer session-persisted object use-after-free via SOAP header fault2026/5/10

← 上一頁第 3 / 154 頁下一頁 →