VulnScope — package-centric CVE lookup

Search

1,234 results

Severity:CRITICAL HIGH MEDIUM LOW|Ecosystem:npm PyPI Maven Debian Alpine|⚠ In KEV only

LOW3.1CVE-2026-8545EPSS 0.03%Object corruption in Compositing in Google Chrome prior to 148.0.7778.168 allowed a remote attacker who had compromised the renderer proces…5/14/2026
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in ReadingMode in Google Chrome on Mac prior to 148.0.7778.168 allowed a remote attacker who had…5/14/2026
LOW2.5EPSS 0.02%libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel.5/14/2026
LOW2.7EPSS 0.09%Synapse pagination Denial of Service5/14/2026
LOW3.7EPSS 0.10%Apache Tomcat: AJP secret compared in non-constant time5/12/2026
LOW3.8EPSS 0.04%Vulnerability in Wikimedia Foundation MediaWiki.5/11/2026
LOW3.7EPSS 0.01%Next.js's Middleware / Proxy redirects can be cache-poisoned5/11/2026
LOW3.7EPSS 0.01%Next.js vulnerable to cache poisoning via collisions in React Server Component cache-busting5/11/2026
LOW3.7EPSS 0.06%bettercap Has an Integer Coercion Error in modules/mysql_server/mysql_server.go5/11/2026
LOW3.7EPSS 0.02%bettercap Has an Integer Coercion Error in the ippReadChunkedBody Function5/11/2026
LOW3.8EPSS 0.02%Hono has improper validation of NumericDate claims (exp, nbf, iat) in JWT verify()5/9/2026
LOW3.0EPSS 0.01%In OpenStack Ironic before 35.0.2 (in a certain non-default configuration), instance_info['ks_template'] is rendered without sandboxing.5/8/2026
LOW3.3EPSS 0.01%OSGeo gdal GDapi.c GDfieldinfo out-of-bounds5/7/2026
LOW3.7EPSS 0.04%nuxt-og-image SSRF — bypass of GHSA-pqhr-mp3f-hrpp / v6.2.5 fix (IPv6 + redirect)5/7/2026
LOW3.7EPSS 0.05%Micronaut has Unbounded `bundleCache` in `ResourceBundleMessageSource` that Allows Memory Exhaustion via `Accept-Language` Header5/6/2026
LOW3.1EPSS 0.01%Inappropriate implementation in MHTML in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who convinced a user to engage in s…5/6/2026
LOW3.1EPSS 0.03%Side-channel information leakage in Media in Google Chrome prior to 148.0.7778.96 allowed a remote attacker to leak cross-origin data via a…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in CORS in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised th…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in SiteIsolation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compr…5/6/2026
LOW3.1EPSS 0.04%Insufficient validation of untrusted input in DevTools in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromise…5/6/2026
LOW3.1EPSS 0.03%Inappropriate implementation in Navigation in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the render…5/6/2026
LOW3.1EPSS 0.03%Race in Shared Storage in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to leak c…5/6/2026
LOW3.1EPSS 0.03%Out of bounds read in Skia in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to le…5/6/2026
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in COOP in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised th…5/6/2026
LOW3.1EPSS 0.03%Insufficient validation of untrusted input in Persistent Cache in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had co…5/6/2026

← PrevPage 4 of 50Next →