VulnScope — package-centric CVE lookup

Search

616 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.3CVE-2025-3730EPSS 0.02%PyTorch LossCTC.cpp torch.nn.functional.ctc_loss denial of service4/16/2025
LOW2.2EPSS 0.26%VCS credentials included in URL parameters are potentially logged and saved into browser history as plaintext4/15/2025
LOW3.3EPSS 0.08%A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3.4/14/2025
LOW3.8EPSS 0.23%openssh - security update4/10/2025
LOW3.3EPSS 0.06%PyTorch torch.mkldnn_max_pool2d denial of service3/30/2025
LOW2.9EPSS 0.02%atop - security update3/26/2025
LOW3.8EPSS 0.10%Weak Password Requirements in mlflow/mlflow3/20/2025
LOW3.1EPSS 0.09%Jenkins Zoho QEngine Plugin Displays Unmasked API Keys3/19/2025
LOW3.3EPSS 0.11%Snowflake JDBC Driver client-side encryption key in DEBUG logs3/13/2025
LOW2.5EPSS 0.05%PyTorch Quantized Sigmoid Module nnq_Sigmoid initialization3/10/2025
LOW3.7EPSS 0.50%Flask-AppBuilder Observable Response Discrepancy3/3/2025
LOW3.6EPSS 0.30%copyparty renders unsanitized filenames as HTML when user uploads empty files2/26/2025
LOW3.8EPSS 0.20%Keycloak allows cross-site scripting (XSS)2/18/2025
LOW2.6EPSS 0.32%vLLM uses Python 3.12 built-in hash() which leads to predictable hash collisions in prefix cache2/6/2025
LOW3.4EPSS 0.33%When asked to use a `.netrc` file for credentials **and** to follow HTTP redirects, curl could leak the password used for the first host to…2/5/2025
LOW2.6EPSS 0.12%Jenkins Zoom Plugin is Missing Password Field Masking2/4/2025
LOW3.7EPSS 0.24%Strawberry GraphQL has type resolution vulnerability in node interface that allows potential data leakage through incorrect type resolution1/9/2025
LOW3.6EPSS 0.07%The Permission Model assumes that any path starting with two backslashes \ has a four-character prefix that can be ignored, which is not al…1/9/2025
LOW3.4EPSS 1.4%When asked to both use a `.netrc` file for credentials and to follow HTTP redirects, curl could leak the password used for the first host t…12/11/2024
LOW3.7EPSS 0.14%Spring LDAP data exposure vulnerability12/4/2024
LOW2.2EPSS 1.0%PyJWT Issuer field partial matches allowed12/2/2024
LOW2.7EPSS 0.17%Keycloak Path Traversal Vulnerability Due to External Control of File Name or Path11/25/2024
LOW3.7EPSS 0.34%PostgreSQL libpq retains an error message from man-in-the-middle11/14/2024
LOW3.7EPSS 1.2%Eclipse Jetty URI parsing of invalid authority10/14/2024
LOW3.1EPSS 0.56%Eclipse Jetty's PushSessionCacheFilter can cause remote DoS attacks10/14/2024

← PrevPage 6 of 25Next →