搜尋

1,596 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

CRITICAL10.0CVE-2026-7411EPSS 0.13%Eclipse BaSyx Java Server SDK vulnerable to Path Traversal2026/5/5
CRITICAL9.8CVE-2026-26956EPSS 0.12%VM2 Has a WASM Sandbox Escape (Node 25 only)2026/5/5
CRITICAL9.8CVE-2026-26332EPSS 0.08%VM2 Has a Sandbox Escape Issue via SuppressedError2026/5/5
CRITICAL9.8CVE-2026-24781EPSS 0.17%VM2 Has Sandbox Breakout Through Inspect Function2026/5/5
CRITICAL9.8CVE-2026-24120EPSS 0.12%VM2 Has Sandbox Breakout Through Promise Species2026/5/5
CRITICAL9.0CVE-2026-41901EPSS 0.10%Sandboxed Thymeleaf expressions vulnerable to improper recognition of unauthorized syntax patterns2026/5/4
CRITICAL9.1CVE-2026-41258EPSS 0.06%OpenMRS has Stored Velocity SSTI to RCE via ConceptReferenceRange2026/5/4
CRITICAL9.9CVE-2026-42812EPSS 0.12%Apache Polaris has an Improper Input Validation issue2026/5/4
CRITICAL9.9CVE-2026-42811EPSS 0.11%Apache Polaris has an Improper Input Validation issue2026/5/4
CRITICAL9.9CVE-2026-42810EPSS 0.11%Apache Polaris has an Improper Input Validation Issue2026/5/4
CRITICAL9.9CVE-2026-42809EPSS 0.10%Apache Polaris has an Improper Input Validation Issue2026/5/4
CRITICAL9.8CVE-2026-42027EPSS 0.64%Apache OpenNLP ExtensionLoader Vulnerable to Arbitrary Class Instantiation via Model Manifest2026/5/4
CRITICAL9.1CVE-2026-40682EPSS 0.11%Apache OpenNLP DictionaryEntryPersistor Vulnerable to XML External Entity (XXE) via Unsanitized Dictionary Parsing2026/5/4
CRITICAL9.8CVE-2026-24118EPSS 0.16%VM2 Sandbox Breakout Through __lookupGetter__2026/5/4
CRITICAL9.8CVE-2026-42779EPSS 0.08%Apache MINA vulnerable to Deserialization of Untrusted Data (CVE-2026-41635 Incomplete Fix)2026/5/1
CRITICAL9.8CVE-2026-42778EPSS 0.29%Apache MINA vulnerable to Deserialization of Untrusted Data (CVE-2026-41409 Incomplete Fix)2026/5/1
CRITICAL10.0CVE-2026-36767EPSS 0.09%Shopizer has a path traversal issue2026/4/30
CRITICAL9.9CVE-2026-42232EPSS 0.19%n8n has XML Node Prototype Pollution that to RCE2026/4/29
CRITICAL10.0CVE-2026-42231EPSS 0.41%n8n has Prototype Pollution in XML Webhook Body Parser that Leads to RCE2026/4/29
CRITICAL9.8CVE-2026-42233EPSS 0.06%n8n has SQL Injection in Oracle Database Node via Limit Field2026/4/29
CRITICAL9.0CVE-2026-42523EPSS 0.05%Jenkins GitHub Plugin has an XSS vulnerability2026/4/29
CRITICAL9.1CVE-2026-40976EPSS 0.02%Spring Boot's default security filter chain has no authorization rule with Actuator but without Health2026/4/28
CRITICAL9.8CVE-2026-41409EPSS 0.28%Apache MINA Vulnerable to Deserialization of Untrusted Data (CVE-2024-52046 Incomplete Fix)2026/4/27
CRITICAL9.4CVE-2026-33454EPSS 0.33%Apache Camel's Camel-Mail component is vulnerable to Camel message header injection2026/4/27
CRITICAL10.0CVE-2026-33453EPSS 6.1%Apache camel-coap allows header injection that can lead to remote code execution2026/4/27