VulnScope — package-centric CVE lookup

Search

3,911 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

CRITICAL9.6CVE-2026-12027Inappropriate implementation in Headless in Google Chrome prior to 149.0.7827.115 allowed a remote attacker who had compromised the rendere…6/11/2026
CRITICAL9.8Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#7 signature verification.6/9/2026
CRITICAL9.1Issue Summary: Cryptographic Message Services (CMS) processing fails to perform sufficient input validation on the cipher and tag length fi…6/9/2026
CRITICAL9.1Arm C1-Ultra, C1-Premium, Neoverse V3 & V3AE, Neoverse V2, Neoverse V1, Neoverse-N2, Neoverse-N1, Cortex-X925, Cortex-X4, Cortex-X3, Cortex…6/9/2026
CRITICAL9.1EPSS 0.06%Catalyst::Plugin::Authentication versions before 0.10_027 for Perl is susceptible to session fixation attacks.6/9/2026
CRITICAL9.6Insufficient validation of untrusted input in UI in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform…6/9/2026
CRITICAL9.6Use after free in Navigation in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via…6/9/2026
CRITICAL9.6Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape…6/9/2026
CRITICAL9.6Use after free in CameraCapture in Google Chrome on Mac prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox…6/9/2026
CRITICAL9.6Use after free in Network in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via…6/9/2026
CRITICAL9.6Use after free in Printing in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a…6/9/2026
CRITICAL9.6Use after free in Gamepad in Google Chrome on Windows prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox es…6/9/2026
CRITICAL9.8Apache HTTP Server: Heap Underflow in `ap_regname` via Signed Char Overflow6/8/2026
CRITICAL9.1Apache HTTP Server: mod_dav_fs protected directory access6/8/2026
CRITICAL9.8Apache HTTP Server: mod_ldap per-dir use-after-free6/8/2026
CRITICAL10.0MariaDB server has unsafe parameter handling in `wsrep_notify_cmd`6/7/2026
CRITICAL9.8DBI versions before 1.648 for Perl saved errors in a limited-sized buffer.6/6/2026
CRITICAL9.8DBI versions before 1.648 for Perl have a heap overflow when preparsing SQL statements with more than 9 binders.6/5/2026
CRITICAL9.6Use after free in Input in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perform a sandbox escape via a cra…6/5/2026
CRITICAL9.6Insufficient policy enforcement in Sandbox in Google Chrome on Linux prior to 149.0.7827.53 allowed a remote attacker to potentially perfor…6/5/2026
CRITICAL9.6Inappropriate implementation in DevTools in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compromised the renderer…6/5/2026
CRITICAL9.6Insufficient validation of untrusted input in Reading Mode in Google Chrome prior to 149.0.7827.53 allowed a remote attacker who had compro…6/4/2026
CRITICAL9.6Insufficient validation of untrusted input in Autofill in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially per…6/4/2026
CRITICAL9.6Insufficient validation of untrusted input in Codecs in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to potentially perfo…6/4/2026
CRITICAL9.6Inappropriate implementation in WebView in Google Chrome on Android prior to 149.0.7827.53 allowed a remote attacker who had compromised th…6/4/2026

Page 1 of 157Next →