VulnScope — package-centric CVE lookup- MEDIUM5.3CVE-2025-35939⚠ KEVEPSS 33.1%Craft CMS stores arbitrary content provided by unauthenticated users in session files
- MEDIUM5.3⚠ KEVEPSS 94.5%[20230201] - Core - Improper access check in webservice endpoints
- MEDIUM5.3⚠ KEVEPSS 83.2%Vite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` query
- HIGH8.1⚠ KEVEPSS 70.8%freetype - security update
- HIGH8.0⚠ KEVEPSS 16.4%Craft CMS has a potential RCE with a compromised security key
- HIGH7.8⚠ KEVEPSS 2.0%Linux Kernel Out-of-Bounds Access Vulnerability
- HIGH7.1⚠ KEVEPSS 1.1%Linux Kernel Out-of-Bounds Read Vulnerability
- HIGH7.8⚠ KEVEPSS 18.0%Linux Kernel Out-of-Bounds Write Vulnerability
- MEDIUM6.3⚠ KEVEPSS 0.94%Apple Multiple Products Cross-Site Scripting (XSS) Vulnerability
- HIGH8.8⚠ KEVEPSS 0.96%webkit2gtk - security update
- MEDIUM5.5⚠ KEVEPSS 2.6%Linux Kernel Use of Uninitialized Resource Vulnerability
- HIGH8.8⚠ KEVEPSS 24.2%Google Chromium V8 Inappropriate Implementation Vulnerability
- HIGH7.8⚠ KEVEPSS 0.45%Android Kernel Remote Code Execution Vulnerability
- MEDIUM6.1⚠ KEVEPSS 64.5%roundcube - security update
- HIGH8.8⚠ KEVEPSS 6.3%chromium - security update
- HIGH7.5⚠ KEVEPSS 64.5%GitLab Community and Enterprise Editions Server-Side Request Forgery (SSRF) Vulnerability
- HIGH7.5⚠ KEVEPSS 94.0%Minio Information Disclosure in Cluster Deployment
- HIGH7.5⚠ KEVEPSS 94.4%Grafana path traversal
- HIGH7.8⚠ KEVEPSS 84.6%Linux Kernel Use-After-Free Vulnerability
- HIGH8.8⚠ KEVEPSS 0.62%Apple Multiple Products WebKit Type Confusion Vulnerability
- HIGH8.8⚠ KEVEPSS 0.18%Google Chromium V8 Out-of-Bounds Memory Access Vulnerability
- HIGH7.8⚠ KEVEPSS 2.7%Linux Kernel Use-After-Free Vulnerability
- HIGH7.8⚠ KEVEPSS 55.7%libspreadsheet-parseexcel-perl - security update
- HIGH8.8⚠ KEVEPSS 3.1%chromium - security update
- HIGH8.8⚠ KEVEPSS 0.09%Apple Multiple Products WebKit Memory Corruption Vulnerability