搜尋

1,879 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

LOW3.1CVE-2026-40963Apache Airflow: DAG authorization bypass on /ui/structure/structure_data2026/6/5
LOW3.7CVE-2026-48011Shopware: Timing-attack on admin panel allowing enumeration of administrator usernames2026/6/4
LOW3.7CVE-2026-44546daphne before 4.2.2 reconstructs a raw HTTP request from Twisted's parsed headers and feeds it to autobahn for WebSocket handshake processi…2026/6/3
LOW3.3CVE-2026-10528EPSS 0.01%A security flaw has been discovered in Orthanc DICOM Server up to 1.12.11.2026/6/2
LOW3.3CVE-2026-10298EPSS 0.01%A security flaw has been discovered in ggml-org whisper.cpp up to 1.8.2.2026/6/1
LOW3.1CVE-2026-45426EPSS 0.04%Apache Airflow: Log server JWT authorization bypass via Python lstrip() character stripping allows cross-Dag log access2026/6/1
LOW3.3CVE-2026-10233EPSS 0.01%A security vulnerability has been detected in Assimp up to 6.0.4.2026/6/1
LOW3.3CVE-2026-10201EPSS 0.01%A vulnerability was determined in Assimp up to 6.0.4.2026/6/1
LOW3.3CVE-2026-10199EPSS 0.01%A vulnerability has been found in Assimp up to 6.0.4.2026/5/31
LOW3.3CVE-2026-10198EPSS 0.01%A flaw has been found in Assimp up to 6.0.4.2026/5/31
LOW3.3CVE-2026-10197EPSS 0.01%A vulnerability was detected in Assimp up to 6.0.4.2026/5/31
LOW3.7CVE-2026-44489Axios has a Patch Bypass: Proxy-Authorization Header Injection via Prototype Pollution — Incomplete Null-Prototype Fix2026/5/29
LOW3.1CVE-2026-9991EPSS 0.03%Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the…2026/5/28
LOW3.1CVE-2026-9959EPSS 0.03%Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML p…2026/5/28
LOW3.1CVE-2026-9950EPSS 0.04%Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had comprom…2026/5/28
LOW3.1CVE-2026-9944EPSS 0.03%Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to l…2026/5/28
LOW3.1CVE-2026-9920EPSS 0.03%Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pro…2026/5/28
LOW3.1CVE-2026-10011EPSS 0.03%Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pr…2026/5/28
LOW3.9CVE-2026-30963EPSS 0.06%Capsule Namespace Hijacking via subresource2026/5/28
LOW3.7CVE-2026-48524EPSS 0.06%PyJWT is a JSON Web Token implementation in Python.2026/5/28
LOW3.3CVE-2026-48156EPSS 0.01%pypdf is a free and open-source pure-python PDF library.2026/5/28
LOW3.7CVE-2026-42791EPSS 0.05%Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows forged OCSP responses signed with an exp…2026/5/27
LOW3.3CVE-2026-9572EPSS 0.02%A security vulnerability has been detected in GPAC up to 2.4.0.2026/5/26
LOW3.3CVE-2026-9567EPSS 0.01%A security flaw has been discovered in GPAC up to 2.4.0.2026/5/26
LOW3.7CVE-2026-48852EPSS 0.05%PuTTY 0.71 before 0.84 has an assertion failure in ECDSA signature verification.2026/5/25

第 1 / 76 頁下一頁 →