VulnScope — 以套件為主體的 CVE 查詢工具

搜尋

1,442 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

LOW3.1CVE-2026-7966EPSS 0.04%Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compr…2026/5/6
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromise…2026/5/6
LOW3.1EPSS 0.03%Inappropriate implementation in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the render…2026/5/6
LOW3.1EPSS 0.03%Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak c…2026/5/6
LOW3.1EPSS 0.03%Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to le…2026/5/6
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised th…2026/5/6
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had co…2026/5/6
LOW3.1EPSS 0.02%Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a m…2026/5/6
LOW3.1EPSS 0.03%Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the ren…2026/5/6
LOW3.7EPSS 0.02%Flowise: Bcrypt Password Hash Exposure2026/5/6
LOW3.4EPSS 0.00%Paramiko rsakey.py allows the SHA-1 algorithm2026/5/6
LOW3.0EPSS 0.01%ciguard: Container image runs as root (no USER directive)2026/5/5
LOW3.7EPSS 0.02%ciguard: SCA HTTP client reads response body without size cap2026/5/5
LOW2.4EPSS 0.03%Geyser Vulnerable to Server-Side Request Forgery (SSRF) via Player Head Texture URL in Geyser2026/5/5
LOW3.7EPSS 0.05%Microdot has HTTP response splitting in Response.set_cookie()2026/5/5
LOW2.6EPSS 0.04%Langchain-Chatchat Uses Insufficiently Random Values2026/5/5
LOW2.6EPSS 0.03%Langchain-Chatchat has a Race Condition in its OpenAI-Compatible File Upload API2026/5/5
LOW2.6EPSS 0.01%Langchain-Chatchat Uses a Broken or Risky Cryptographic Algorithm2026/5/5
LOW3.7EPSS 0.06%Axios: Null Byte Injection via Reverse-Encoding in AxiosURLSearchParams2026/5/5
LOW2.3EPSS 0.01%Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots2026/5/4
LOW2.5EPSS 0.01%mutt before 2.3.2 has a show_sig_summary NULL pointer dereference.2026/5/4
LOW3.7EPSS 0.04%mutt before 2.3.2 has an infinite loop in data_object_to_stream in crypt-gpgme.c.2026/5/4
LOW3.7EPSS 0.04%In mutt before 2.3.2, the imap_auth_gss security level is mishandled.2026/5/4
LOW3.7EPSS 0.04%mutt before 2.3.2 does not check for '\0' in url_pct_decode.2026/5/4
LOW3.7EPSS 0.04%mutt before 2.3.2 sometimes truncates the hash_passwd by one byte for IMAP auth_cram MD5 digest.2026/5/4