搜尋

8,076 筆結果

嚴重程度:CRITICAL HIGH MEDIUM LOW|生態系:npm PyPI Maven Debian Alpine|⚠ 只看 KEV

CRITICAL9.8CVE-2026-8838EPSS 0.08%amazon-redshift-python-driver vulnerable to Remote Code Execution via eval() Injection2026/5/29
CRITICAL10.0CVE-2026-47140NodeVM builtin denylist bypass via process and inspector/promises allows host code execution2026/5/29
CRITICAL9.8CVE-2026-47210vm2 sandbox escape via JSPI-backed Promise `.finally()` species bypass2026/5/29
CRITICAL10.0CVE-2026-47137vm2 has a CVE-2023-37903 patch bypass: nesting:true without explicit require still allows full RCE2026/5/29
CRITICAL10.0CVE-2026-47208vm2 is Vulnerable to Sandbox Breakout Through Promise Species2026/5/29
CRITICAL10.0CVE-2026-47131vm2 has a Sandbox Escape issue2026/5/29
LOW3.7CVE-2026-44489Axios has a Patch Bypass: Proxy-Authorization Header Injection via Prototype Pollution — Incomplete Null-Prototype Fix2026/5/29
CRITICAL9.6CVE-2026-2611EPSS 0.04%MLflow: Improper Origin Validation in MLflow Assistant /ajax-api Endpoints Enables Browser-Mediated Local Command Execution2026/5/29
CRITICAL9.8CVE-2026-48902EPSS 0.00%Joomla! Core - [20260518] - Transport encryption downgrade for password and username reset links2026/5/29
LOW3.1CVE-2026-9991EPSS 0.03%Inappropriate implementation in Media in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker who had compromised the…2026/5/28
CRITICAL9.6CVE-2026-9967EPSS 0.11%Out of bounds write in GPU in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a…2026/5/28
LOW3.1CVE-2026-9959EPSS 0.03%Race in WebRTC in Google Chrome on Windows prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML p…2026/5/28
LOW3.1CVE-2026-9950EPSS 0.04%Insufficient validation of untrusted input in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker who had comprom…2026/5/28
LOW3.1CVE-2026-9944EPSS 0.03%Uninitialized Use in ANGLE in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to l…2026/5/28
LOW3.1CVE-2026-9920EPSS 0.03%Uninitialized Use in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pro…2026/5/28
CRITICAL9.6CVE-2026-9918EPSS 0.08%Inappropriate implementation in Tint in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox es…2026/5/28
CRITICAL9.0CVE-2026-9891EPSS 0.16%Use after free in Extensions in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer process to…2026/5/28
CRITICAL9.6CVE-2026-9886EPSS 0.12%Use after free in Base in Google Chrome on Mac prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape vi…2026/5/28
CRITICAL9.0CVE-2026-9881EPSS 0.04%Use after free in Bluetooth in Google Chrome on Mac prior to 148.0.7778.216 allowed an attacker who convinced a user to install a malicious…2026/5/28
CRITICAL9.6CVE-2026-9876EPSS 0.11%Use after free in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox esca…2026/5/28
CRITICAL9.6CVE-2026-9875EPSS 0.08%Out of bounds read in WebGL in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox…2026/5/28
CRITICAL9.6CVE-2026-9874EPSS 0.07%Use after free in Dawn in Google Chrome prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox escape via a cra…2026/5/28
CRITICAL9.6CVE-2026-9872EPSS 0.11%Out of bounds write in GPU in Google Chrome on Android prior to 148.0.7778.216 allowed a remote attacker to potentially perform a sandbox e…2026/5/28
LOW3.1CVE-2026-10011EPSS 0.03%Inappropriate implementation in Skia in Google Chrome prior to 148.0.7778.216 allowed a remote attacker who had compromised the renderer pr…2026/5/28
LOW3.9CVE-2026-30963EPSS 0.06%Capsule Namespace Hijacking via subresource2026/5/28

← 上一頁第 2 / 324 頁下一頁 →