VulnScope — package-centric CVE lookup

Search

1,707 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

HIGH8.2CVE-2026-52859Vim is an open source, command line text editor.6/11/2026
MEDIUM4.8CVE-2026-45446Issue summary: The implementations of AES-SIV (RFC 5297) and AES-GCM-SIV (RFC 8452) mishandle the authentication of AAD (Additional Authent…6/9/2026
MEDIUM5.9Issue summary: A specially crafted password-encrypted CMS message can trigger a NULL pointer dereference during CMS decryption.6/9/2026
LOW3.7Issue summary: The CMS_decrypt and PKCS7_decrypt functions are vulnerable to Bleichenbacher-style attack when an attacker is able to provid…6/9/2026
LOW3.7Issue summary: When EVP_PKEY_derive_set_peer() is called with a DHX (X9.42) peer key, the peer key is not properly checked for the subgroup…6/9/2026
MEDIUM5.9Issue summary: An attacker-controlled CMP (Certificate Management Protocol) server could trigger a NULL pointer dereference in a CMP client…6/9/2026
MEDIUM5.3Issue Summary: An error in the callback used to verify the certificate provided in a Root CA key update Certificate Management Protocol (CM…6/9/2026
MEDIUM4.3MariaDB: Authorization bypass in role-based routine-level privilege check exposes stored routine definitions6/7/2026
MEDIUM6.3MariaDB: path traversal in mbstream6/7/2026
MEDIUM5.0MariaDB: FILE privilege was not checked for subqueries in the FROM clause6/7/2026
MEDIUM4.37-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM4.37-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM6.57-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM4.27-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM6.57-Zip is a file archiver with a high compression ratio.5/29/2026
LOW3.17-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM4.37-Zip is a file archiver with a high compression ratio.5/29/2026
MEDIUM6.5EPSS 0.07%A flaw was found in Samba’s vfs_worm module.5/27/2026
MEDIUM5.3EPSS 0.25%A flaw was found in gnutls.5/26/2026
MEDIUM5.3EPSS 0.07%Cargo incorrectly handled symlinks inside of crate tarballs downloaded from third-party registries, allowing a malicious crate to override…5/25/2026
MEDIUM6.5EPSS 0.03%Cargo between 1.68 and 1.96 incorrectly normalized the URLs of third-party registries using the sparse index protocol.5/25/2026
MEDIUM5.3EPSS 0.14%An unbounded resend loop vulnerability exists in the BIND 9 resolver state machine during bad-server handling, enabling a remote unauthenti…5/20/2026
MEDIUM5.9EPSS 0.04%Undefined behavior may result due to a race condition leading to a use-after-free violation.5/20/2026
MEDIUM5.3EPSS 0.02%BIND resolvers are vulnerable to an amplified resource consumption/exhaustion attack.5/20/2026
MEDIUM5.9EPSS 0.05%NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met…5/20/2026

Page 1 of 69Next →