Search

4,158 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

MEDIUM6.5CVE-2026-23557EPSS 0.01%Any guest can cause xenstored to crash by issuing a XS_RESET_WATCHES command within a transaction due to an assert() triggering.5/19/2026
HIGH7.5CVE-2026-42009EPSS 0.31%A flaw was found in gnutls.5/18/2026
HIGH7.0CVE-2026-46483EPSS 0.02%Vim is an open source, command line text editor.5/15/2026
—CVE-2025-54518EPSS 0.01%Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to corrupt instructio…5/15/2026
HIGH8.8CVE-2026-6638EPSS 0.02%PostgreSQL REFRESH PUBLICATION allows SQL injection via table name5/14/2026
HIGH8.8CVE-2026-6637EPSS 0.04%PostgreSQL refint allows stack buffer overflow and SQL injection5/14/2026
MEDIUM4.3CVE-2026-6575EPSS 0.03%PostgreSQL pg_restore_attribute_stats accepts values that cause query planning to read past end of stats array5/14/2026
HIGH7.5CVE-2026-6479EPSS 0.02%PostgreSQL SSL/GSS init causes denial of service, via uncontrolled recursion5/14/2026
MEDIUM6.5CVE-2026-6478EPSS 0.08%PostgreSQL discloses MD5-hashed passwords via covert timing channel5/14/2026
HIGH8.8CVE-2026-6477EPSS 0.05%PostgreSQL libpq lo_* functions let server superuser overwrite client stack memory5/14/2026
HIGH7.2CVE-2026-6476EPSS 0.03%PostgreSQL pg_createsubscriber allows SQL injection via subscription name5/14/2026
HIGH8.8CVE-2026-6475EPSS 0.05%PostgreSQL pg_basebackup and pg_rewind can overwrite unrelated files of origin superuser choice5/14/2026
MEDIUM4.3CVE-2026-6474EPSS 0.03%PostgreSQL timeofday() can disclose portions of server memory5/14/2026
HIGH8.8CVE-2026-6473EPSS 0.07%PostgreSQL server undersizes allocations, via integer wraparound5/14/2026
MEDIUM5.4CVE-2026-6472EPSS 0.03%PostgreSQL CREATE TYPE does not check multirange schema CREATE privilege5/14/2026
MEDIUM6.5CVE-2026-42946EPSS 0.07%NGINX ngx_http_scgi_module and ngx_http_uwsgi_module vulnerability5/13/2026
—CVE-2026-42945EPSS 0.90%NGINX ngx_http_rewrite_module vulnerability5/13/2026
MEDIUM4.8CVE-2026-42934EPSS 0.04%NGINX ngx_http_charset_module vulnerability5/13/2026
MEDIUM4.8CVE-2026-40701EPSS 0.04%NGINX ngx_http_ssl_module vulnerability5/13/2026
MEDIUM6.5CVE-2026-40460EPSS 0.03%NGINX ngx_quic_module vulnerability5/13/2026
—CVE-2025-35979EPSS 0.02%Exposure of sensitive information caused by shared microarchitectural predictor state that influences transient execution for some Intel(R)…5/12/2026
HIGH7.3CVE-2026-5172EPSS 0.02%A buffer overflow in dnsmasq’s extract_addresses() function allows an attacker to trigger a heap out-of-bounds read and crash by exploiting…5/11/2026
MEDIUM5.3CVE-2026-4893EPSS 0.03%An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 c…5/11/2026
HIGH8.4CVE-2026-4892EPSS 0.01%A heap-based out-of-bounds write vulnerability in the DHCPv6 implementation of dnsmasq allows local attackers to execute arbitrary code wit…5/11/2026
MEDIUM5.3CVE-2026-4891EPSS 0.07%A heap-based out-of-bounds read vulnerability in the DNSSEC validation of dnsmasq allows remote attackers to cause a denial of service via…5/11/2026

← PrevPage 2 of 167Next →