VulnScope — package-centric CVE lookup

Search

997 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.7CVE-2026-8275EPSS 0.02%bettercap Has an Integer Coercion Error in the ippReadChunkedBody Function5/11/2026
LOW3.8EPSS 0.02%Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()5/9/2026
LOW3.0EPSS 0.01%In OpenStack Ironic before 35.0.2 (in a certain non-default configuration), instance_info['ks_template'] is rendered without sandboxing.5/8/2026
LOW3.3EPSS 0.01%OSGeo GDAL vulnerable to out-of-bounds read5/7/2026
LOW3.7EPSS 0.04%nuxt-og-image SSRF — bypass of GHSA-pqhr-mp3f-hrpp / v6.2.5 fix (IPv6 + redirect)5/7/2026
LOW3.1EPSS 0.01%Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in s…5/6/2026
LOW3.1EPSS 0.03%Side-channel information leakage in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in CORS in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised th…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compr…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromise…5/6/2026
LOW3.1EPSS 0.03%Inappropriate implementation in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the render…5/6/2026
LOW3.1EPSS 0.03%Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak c…5/6/2026
LOW3.1EPSS 0.03%Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to le…5/6/2026
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised th…5/6/2026
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had co…5/6/2026
LOW3.1EPSS 0.02%Insufficient policy enforcement in DevTools in Google Chrome prior to 148.0.7778.96 allowed an attacker who convinced a user to install a m…5/6/2026
LOW3.1EPSS 0.03%Inappropriate implementation in ServiceWorker in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the ren…5/6/2026
LOW3.7EPSS 0.02%Flowise: Bcrypt Password Hash Exposure5/6/2026
LOW3.4EPSS 0.00%Paramiko rsakey.py allows the SHA-1 algorithm5/6/2026
LOW3.7EPSS 0.06%Axios: Null Byte Injection via Reverse-Encoding in AxiosURLSearchParams5/5/2026
LOW2.3EPSS 0.01%Incus has an OVN TLS Verification that Accepts Peer-Supplied Roots5/4/2026
LOW2.5EPSS 0.01%mutt before 2.3.2 has a show_sig_summary NULL pointer dereference.5/4/2026
LOW3.7EPSS 0.04%mutt before 2.3.2 has an infinite loop in data_object_to_stream in crypt-gpgme.c.5/4/2026
LOW3.7EPSS 0.04%In mutt before 2.3.2, the imap_auth_gss security level is mishandled.5/4/2026
LOW3.7EPSS 0.04%mutt before 2.3.2 does not check for '\0' in url_pct_decode.5/4/2026

← PrevPage 4 of 40Next →