搜尋

51,377 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

HIGH8.1CVE-2026-42588EPSS 0.06%Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Remote Code Execution via Jolokia addNetworkConnector2026/6/1
HIGH8.8CVE-2026-45505EPSS 0.10%Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Jolokia `addNetworkConnector` Discovery Wrapper Bypass2026/6/1
MEDIUM5.9CVE-2026-49270EPSS 0.09%Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: Durable Subscription Disclosure via Crafted BrokerInfo (OpenWire)2026/6/1
MEDIUM4.3CVE-2026-10294EPSS 0.03%A vulnerability has been found in PackageKit up to 1.3.5.2026/6/1
HIGH7.8CVE-2026-43958EPSS 0.01%A flaw was found in rrdcached, a component of rrdtool.2026/6/1
MEDIUM4.3CVE-2026-45729EPSS 0.03%Thor Vector Graphics (ThorVG) is a production-ready vector graphics engine.2026/6/1
HIGH7.8CVE-2026-46243EPSS 0.02%In the Linux kernel, the following vulnerability has been resolved: smb: client: reject userspace cifs.spnego descriptions cifs.spnego key…2026/6/1
MEDIUM5.0CVE-2026-10275EPSS 0.06%A flaw has been found in OpenSC up to 0.26.1.2026/6/1
HIGH7.8CVE-2026-10118EPSS 0.07%A flaw was found in Poppler's Splash backend.2026/6/1
MEDIUM5.5CVE-2025-60495EPSS 0.01%A segmentation violation in the gf_media_get_color_info function (/media_tools/isom_tools.c) of GPAC Project/MP4Box before 26.02.0 allows a…2026/6/1
MEDIUM5.5CVE-2025-60486EPSS 0.01%A heap use-after-free in the dasher_process function (/filters/dasher.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a…2026/6/1
MEDIUM5.5CVE-2025-60485EPSS 0.01%A segmentation violation in the gf_isom_apple_set_tag_ex function (/isomedia/isom_write.c) of GPAC Project/MP4Box before 26.02.0 allows att…2026/6/1
MEDIUM5.5CVE-2025-60483EPSS 0.01%A NULL pointer dereference in the gf_ac4_pres_b_4_back_channels_present function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before…2026/6/1
MEDIUM5.5CVE-2025-60481EPSS 0.01%A NULL pointer dereference in the gf_odf_ac4_cfg_dsi_v1 function (/odf/descriptors.c) of GPAC Project/MP4Box before 26.02.0 allows attacker…2026/6/1
MEDIUM5.5CVE-2025-55664EPSS 0.01%A heap buffer overflow in the m2tsdmx_send_packet function (filters/dmx_m2ts.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of S…2026/6/1
—CVE-2026-47191kas checks out SHA-like git branches as valid commits2026/6/1
HIGH8.1CVE-2026-47412praisonai-platform: Any workspace member can delete the entire workspace via DELETE /workspaces/{id}2026/6/1
HIGH8.3CVE-2026-47415praisonai-platform: Issue endpoints accept any issue_id without workspace ownership check, cross-workspace read/update/delete IDOR2026/6/1
CRITICAL9.6CVE-2026-47413praisonai-platform: Any workspace member can add arbitrary user as owner via POST /workspaces/{id}/members2026/6/1
MEDIUM6.5CVE-2026-47411praisonai-platform: Any workspace member can rewrite workspace name, description, and settings via PATCH /workspaces/{id}2026/6/1
HIGH8.1CVE-2026-47417praisonai-platform: Comment endpoints accept any issue_id without workspace ownership check, cross-workspace comment read and post IDOR2026/6/1
HIGH8.1CVE-2026-47418praisonai-platform: Project endpoints accept any project_id without workspace ownership check, cross-workspace read/update/delete IDOR2026/6/1
—CVE-2026-10532EPSS 0.09%Deserialization of untrusted data vulnerability in QOS.CH Sarl logback logback-core (HardenedObjectInputStream (logback-core) modules) allo…2026/6/1
—CVE-2026-47192kas's late signature validation may allow unnoticed repository manipulations2026/6/1
—CVE-2026-414372026/6/1

← 上一頁第 2 / 2056 頁下一頁 →