Bugs with TODO items

Hide "check" TODOs

BugDescriptionNote
CVE-2016-1584In all versions of Unity8 a running but not active application on a la ...check proper tracking update
CVE-2018-25246Wikipedia 12.0 contains a denial of service vulnerability that allows ...check
CVE-2018-25305librsvg2-bin 2.40.13 contains a buffer overflow vulnerability that all ...check
CVE-2018-25306PDFunite 0.41.0 contains a buffer overflow vulnerability that allows l ...check
CVE-2019-25485R 3.4.4 on Windows x64 contains a buffer overflow vulnerability in the ...check
CVE-2019-25683FileZilla 3.40.0 contains a denial of service vulnerability in the loc ...check
CVE-2020-37182Redir 3.3 contains a stack overflow vulnerability in the doproxyconnec ...check details
CVE-2021-26380A compromised Trusted OS (TOS) driver could issue a malformed call tha ...check
CVE-2021-26381Improper system call parameter validation in the Trusted OS may allow ...check
CVE-2021-26410Improper syscall input validation in ASP (AMD Secure Processor) may fo ...check
CVE-2021-47793Telegram Desktop 2.9.2 contains a denial of service vulnerability that ...check
CVE-2022-23538github.com/sylabs/scs-library-client is the Go client for the Singular ...check details, might as well affect golang-github-apptainer-container-library-client
CVE-2022-23826A TOCTOU (Time-Of-Check to Time-Of-Use) in the graphics interface may ...check
CVE-2022-50942Incinga Web 2.8.2 contains a client-side cross-site scripting vulnerab ...check status upstream
CVE-2023-20514Improper handling of parameters in the AMD Secure Processor (ASP) coul ...check
CVE-2023-20548A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure ...check
CVE-2023-20585Insufficient checks of the RMP on host buffer access in IOMMU may allo ...check
CVE-2023-20601Improper input validation within RAS TA Driver can allow a local attac ...check
CVE-2023-26044react/http is an event-driven, streaming HTTP client and server implem ...check, is embedded inicinga-php-thirdparty, icingaweb2-module-reactbundle possibly affected
CVE-2023-31309Improper validation in Power Management Firmware (PMFW) may allow an a ...check
CVE-2023-31313An unintended proxy or intermediary in the AMD power management firmwa ...check
CVE-2023-31316Improperly preserved integrity of hardware configuration state during ...check
CVE-2023-31317Improper restriction of operations within the bounds of a memory buffe ...check
CVE-2023-31324A Time-of-check time-of-use (TOCTOU) race condition in the AMD Secure ...check
CVE-2023-31364Improper handling of direct memory writes in the input-output memory m ...check
CVE-2023-47268In libslic3r/GCode/PostProcessor.cpp in Prusa PrusaSlicer through 2.6. ...check
CVE-2023-49316In Math/BinaryField.php in phpseclib 3 before 3.0.34, excessively larg ...check if affecting ldap-account-manager or unused path
CVE-2023-50251php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50252php-svg-lib is an SVG file parsing / rendering library. Prior to versi ...check, other packages are embedding the library: civicrm, icinga-php-thirdparty and icingaweb2 to be checked
CVE-2023-50262Dompdf is an HTML to PDF converter for PHP. When parsing SVG images Do ...check sources embedding php-dompdf if affected
CVE-2024-21953Improper input validation in IOMMU could allow a malicious hypervisor ...check
CVE-2024-22420JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-22421JupyterLab is an extensible environment for interactive and reproducib ...check completeness, src:jupyter-notebook?
CVE-2024-36310Improper input validation in the SMM communications buffer could allow ...check
CVE-2024-36311A Time-of-check time-of-use (TOCTOU) race condition in the SMM communi ...check
CVE-2024-36316The integer overflow vulnerability within AMD Graphics driver could al ...check
CVE-2024-36323Improper isolation of VCN-JPEG HW register space could allow a malicio ...check
CVE-2024-36324Improper input validation in AMD Graphics Driver could allow an attack ...check
CVE-2024-36332Improper isolation of GPU HW register space could allow a privileged a ...check
CVE-2024-36334Improper verification of cryptographic signature in the Radeon RGB too ...check
CVE-2024-36343Improper input validation in the System Management Mode (SMM) communic ...check
CVE-2024-36345Improper input validation in the AMD OverDrive (AOD) System Management ...check
CVE-2024-47091Privilege escalation in the mk_mysql agent plugin on Windows in Checkm ...check
CVE-2024-54192An issue inTcpreplay v4.5.1 allows a local attacker to cause a denial ...check
CVE-2025-0012Improper handling of overlap between the segmented reverse map table ( ...check
CVE-2025-0028An unchecked return value within the AMD Platform Management Framework ...check
CVE-2025-0029Improper handling of error condition during host-induced faults can al ...check
CVE-2025-0031A use after free in the SEV firmware could allow a malicous hypervisor ...check
CVE-2025-0040Improper access control between the Joint Test Action Group (JTAG) and ...check
CVE-2025-0044An out-of-bounds read in power management firmware by a malicious loca ...check
CVE-2025-0045Improper Input validation in the AMD Secure Processor (ASP) PCI driver ...check
CVE-2025-1782In HylaFAX Enterprise Web Interface and AvantFAX, the language form el ...check
CVE-2025-4382A flaw was found in systems utilizing LUKS-encrypted disks with GRUB c ...double check if vulnerability only considered present after grub_is_cli_disabled is introduced
CVE-2025-6499A vulnerability classified as problematic was found in vstakhov libucl ...check if impacts security wise rspamd, which embeds libucl and uses it a compile time
CVE-2025-8671A mismatch caused by client-triggered server-sent stream resets betwee ...check, some projects will assign own CVEs and should then be covered under that specific CVE instead
CVE-2025-8941A flaw was found in linux-pam. The pam_namespace module may improperly ...check likely RedHat specific incomplete fix for CVE-2025-6020, but asked to pinpoint incomplete fixes
CVE-2025-11010A vulnerability has been found in vstakhov libucl up to 0.9.2. Affecte ...check if impacts security wise rspamd, which embeds libucl and uses it a compile time
CVE-2025-11147Reflected cross-site scripting (XSS) in Apt-Cacher-NG v3.2.1. The vuln ...clarifying with reporter and Eduard Bloch on the issue.
CVE-2025-14575An Uncontrolled Search Path Element vulnerability in the OpenSSL TLS b ...check
CVE-2025-15569A flaw has been found in Artifex MuPDF up to 1.26.1 on Windows. The im ...check
CVE-2025-27723Use after free for some Linux kernel driver for the Intel(R) Ethernet ...check
CVE-2025-29935An out of bounds write within the AMD Platform Management Framework (P ...check
CVE-2025-29936Improper input validation within the AMD Platform Management Framework ...check
CVE-2025-29937An out of bounds read within the AMD Platform Management Framework (PM ...check
CVE-2025-29938An unchecked return value within the AMD Platform Management Framework ...check
CVE-2025-29939Improper access control in secure encrypted virtualization (SEV) could ...check
CVE-2025-29946Insufficient or Incomplete Data Removal in Hardware Component in SEV f ...check
CVE-2025-29948Improper access control in AMD Secure Encrypted Virtualization (SEV) f ...check
CVE-2025-29952Improper Initialization within the AMD Secure Encrypted Virtualization ...check
CVE-2025-33221NVIDIA Display Driver for Windows and Linux contains a vulnerability i ...check
CVE-2025-48512Incorrect default permissions in the installation directory for the AM ...check
CVE-2025-48513Use of uninitialized resource within the AMD Platform Management Frame ...check
CVE-2025-48519An improper input validation vulnerability within the AMD Platform Man ...check
CVE-2025-48520An improper input validation vulnerability within the AMD Platform Man ...check
CVE-2025-48521Improper input validation in the AMD Secure Processor (ASP) PCI driver ...check
CVE-2025-52540An improper input validation vulnerability within the AMD Platform Man ...check
CVE-2025-54511Improper handling of insufficient privileges in the AMD Secure Process ...check
CVE-2025-58064CKEditor 5 is a modern JavaScript rich-text editor with an MVC archite ...check
CVE-2025-60796phpPgAdmin 7.13.0 and earlier contains multiple cross-site scripting ( ...check, possibly not reported upstream
CVE-2025-60797phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability i ...check, possibly not reported upstream
CVE-2025-60798phpPgAdmin 7.13.0 and earlier contains a SQL injection vulnerability i ...check, possibly not reported upstream
CVE-2025-60799phpPgAdmin 7.13.0 and earlier contains an incorrect access control vul ...check, possibly not reported upstream
CVE-2025-61261A reflected cross-site scripting (XSS) vulnerability in CKeditor v46.1 ...check
CVE-2025-61971Missing lock bit protection for NBIO registers could allow a local adm ...check
CVE-2025-61982An arbitrary code execution vulnerability exists in the Code Stream di ...check upstream status
CVE-2025-65865An integer overflow in eProsima Fast-DDS v3.3 allows attackers to caus ...check https://gist.github.com/lkloliver/7aa48cb9fc7a1dd74cb595212bb69d33, unclear if reported upstream
CVE-2025-66578xmlseclibs is a library written in PHP for working with XML Encryption ...check
CVE-2025-66664Insufficient parameter sanitization in AMD Secure Processor (ASP) TEE ...check
CVE-2025-67108eProsima Fast-DDS v3.3 was discovered to contain improper validation f ...check https://gist.github.com/lkloliver/81b5d5a8328d712dbfd497bf11dbe913, unclear if reported upstream
CVE-2025-68708SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a ...check
CVE-2025-68709SailingLab AppLock (aka com.alpha.applock) 4.3.8 for Android allows a ...check
CVE-2025-68710Easyelife App lock (aka Fingerprint,Applock or locker.app.safe.applock ...check
CVE-2025-68711AppLockZ App Lock and Fingerprint Lock (applock.passwordfingerprint.ap ...check
CVE-2025-69534Python-Markdown version 3.8 contain a vulnerability where malformed HT ...Asking whether it really needs a backport: https://bugs.debian.org/1131896
CVE-2025-69720The infocmp command-line tool in ncurses before 6.5-20251213 has a sta ...check upstream status
CVE-2025-69969A lack of authentication and authorization mechanisms in the Bluetooth ...check
CVE-2025-70887An issue in ralphje Signify before v.0.9.2 allows a remote attacker to ...check
CVE-2025-71310The GDPR cookies module for Backdrop CMS (before 1.x-1.3.5) doesn't ...check
CVE-2026-0427Improper cleanup of shared register resources in GPU firmware could al ...check
CVE-2026-0438A System Management Mode (SMM) handler could perform a callout to code ...check
CVE-2026-0481Unrestricted IP address binding in the AMD Device Metrics Exporter (RO ...check
CVE-2026-0708A flaw was found in libucl. A remote attacker could exploit this by pr ...check if impacts security wise rspamd, which embeds libucl and uses it a compile time
CVE-2026-1703When pip is installing and extracting a maliciously crafted wheel arch ...check as well pipenv
CVE-2026-2264A vulnerability in the Google Cloud ApigeeSetIntegrationRequestpolicy ...check
CVE-2026-3515A vulnerability in the `GitHubRepository` block of the `prefect-github ...check
CVE-2026-3650A memory leak exists in the Grassroots DICOM library (GDCM). The bug o ...check, vague report from Red Hat, no upstream details
CVE-2026-4833A weakness has been identified in Orc discount up to 3.0.1.2. This iss ...check libtext-markdown-discount-perl, ruby-rdiscount, cantor, embedding discount; check if security impact present
CVE-2026-5222Cargo between 1.68 and 1.96 incorrectly normalized the URLs of third-p ...check
CVE-2026-5223Cargo incorrectly handled symlinks inside of crate tarballs downloaded ...check
CVE-2026-7701A security vulnerability has been detected in Telegram Desktop up to 6 ...check
CVE-2026-7790Uncontrolled Resource Consumption vulnerability in ninenines cowlib (c ...check if embedded copy in rabbitmq-server is problematic
CVE-2026-8212A flaw has been found in OSGeo gdal up to 3.13.0dev-4. Affected by thi ...check
CVE-2026-8213A vulnerability has been found in OSGeo gdal up to 3.13.0dev-4. Affect ...check
CVE-2026-8851SOGo versions 5.12.7 and prior contains a SQL injection vulnerability ...check correctness
CVE-2026-9053Mothra would respect a default value given by a website for HTML file ...check
CVE-2026-9054An attacker sending tcp, il, rudp, rudp, or gre packets with a length ...check
CVE-2026-9101Prototype pollution in csv parsing logic during import can lead to unt ...check
CVE-2026-9358A vulnerability was determined in postcss up to 7.1.1. Affected is the ...check
CVE-2026-9495Versions of the package @koa/router from 14.0.0 and before 15.0.0 are ...check
CVE-2026-9496Versions of the package pacote from 11.2.7 are vulnerable to Denial of ...check
CVE-2026-9520A weakness has been identified in blitz-js blitz up to 3.0.2 on GitHub ...check
CVE-2026-22739Vulnerability in Spring Cloud when substituting the profile parameter ...check
CVE-2026-23479Redis is an in-memory data structure store. In redis-server from 7.2.0 ...check redict and valkey
CVE-2026-23631Redis is an in-memory data structure store. In all versions of redis-s ...check redict and valkey
CVE-2026-23870A denial of service vulnerability could be triggered by sending specia ...check
CVE-2026-24182NVIDIA Display Driver for Windows and Linux contains a vulnerability w ...check
CVE-2026-24187NVIDIA Display Driver for Linux contains a vulnerability where an atta ...check
CVE-2026-24188NVIDIA TensorRT contains a vulnerability where an attacker could cause ...check
CVE-2026-24190NVIDIA Display Driver for Windows and Linux contains a vulnerability i ...check
CVE-2026-24191NVIDIA Display Driver for Windows contains a vulnerability where an at ...check
CVE-2026-24192NVIDIA Display Driver for Linux contains a vulnerability where an atta ...check
CVE-2026-24193NVIDIA Display Driver for Windows and Linux contains a vulnerability w ...check
CVE-2026-24194NVIDIA Display Driver for Linux contains a vulnerability in a kernel m ...check
CVE-2026-24195NVIDIA Display Driver for Linux contains a vulnerability in UVM, where ...check
CVE-2026-24196NVIDIA Display Driver for Linux contains a vulnerability where a user ...check
CVE-2026-24197NVIDIA Display Driver for Linux contains a vulnerability in the Multi- ...check
CVE-2026-24198NVIDIA GPU Display Driver for Linux contains a vulnerability where an ...check
CVE-2026-24199NVIDIA Display Driver for Linux contains a vulnerability in a kernel m ...check
CVE-2026-24200NVIDIA vGPU software contains a vulnerability in the virtual GPU manag ...check
CVE-2026-24201NVIDIA vGPU software contains a vulnerability in the virtual GPU manag ...check
CVE-2026-24712Northern.tech CFEngine Enterprise and Community before 3.21.8, 3.24.3, ...check
CVE-2026-25104MediaArea MediaInfoLib LXF parsing heap-based buffer overflow vulnerab ...check
CVE-2026-25112A high-severity vulnerability in the deployment of Genetec RabbitMQ th ...check
CVE-2026-25243Redis is an in-memory data structure store. In versions of redis-serve ...check redict and valkey
CVE-2026-25701An Insecure Temporary File vulnerability in openSUSE sdbootutil allows ...check
CVE-2026-25702A Improper Access Control vulnerability in the kernel of SUSE SUSE Lin ...check
CVE-2026-25713MediaArea MediaInfoLib ID3v2 parsing heap buffer overflow vulnerabilit ...check
CVE-2026-27586Caddy is an extensible server platform that uses TLS by default. Prior ...check, introducing version
CVE-2026-27704The Dart and Flutter SDKs provide software development kits for the Da ...check
CVE-2026-27738The Angular SSR is a server-rise rendering tool for Angular applicatio ...check
CVE-2026-27739The Angular SSR is a server-rise rendering tool for Angular applicatio ...check
CVE-2026-27970Angular is a development platform for building mobile and desktop web ...check status for older versions
CVE-2026-28343CKEditor 5 is a modern JavaScript rich-text editor with an MVC archite ...check
CVE-2026-28687ImageMagick is free and open-source software used for editing and mani ...For imagemagick6 superseded by fix inside jumbo patch for CVE-2026-28686, first patch was incomplete
CVE-2026-28687ImageMagick is free and open-source software used for editing and mani ...Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/6a602fb36f181a0089848344a3b0d79fc6155a2b (6.9.13-41)
CVE-2026-28688ImageMagick is free and open-source software used for editing and mani ...For imagemagick6 by fix inside jumbo patch for CVE-2026-28686, first patch was incomplete
CVE-2026-28688ImageMagick is free and open-source software used for editing and mani ...Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/6a602fb36f181a0089848344a3b0d79fc6155a2b (6.9.13-41)
CVE-2026-29022dr_libs dr_wav.h version 0.14.4 and earlier (fixed in commit 8a7258c) ...qtads, dosbox-x, roc-toolkit, octave-ltfat, faudio bundle a copy, check security impact
CVE-2026-30478A Dynamic-link Library Injection vulnerability in GatewayGeo MapServer ...check
CVE-2026-30479A Dynamic-link Library Injection vulnerability in OSGeo Project MapSer ...check
CVE-2026-31053A double free vulnerability exists in librz/bin/format/le/le.c in the ...check
CVE-2026-31192Insufficient validation of Chrome extension identifiers in Raindrop.io ...check
CVE-2026-31221PyTorch-Lightning versions 2.6.0 and earlier contain an insecure deser ...check
CVE-2026-32148Insufficient Verification of Data Authenticity vulnerability in hexpm ...check
CVE-2026-32313xmlseclibs is a library written in PHP for working with XML Encryption ...check
CVE-2026-32600xml-security is a library that implements XML signatures and encryptio ...check
CVE-2026-32635Angular is a development platform for building mobile and desktop web ...check status for older versions
CVE-2026-32836dr_libsdr_flac.h version 0.13.3 and earlier (fixed in commits fefced4, ...check
CVE-2026-33397The Angular SSR is a server-rise rendering tool for Angular applicatio ...check
CVE-2026-34240JOSE is a Javascript Object Signing and Encryption (JOSE) library. Pri ...check
CVE-2026-36189Buffer Overflow vulnerability in Uncrustify Project Affected v.Uncrust ...check
CVE-2026-36239PbootCMS v.3.2.11 contains a code injection vulnerability in its site ...check
CVE-2026-37630An issue in QuickJS-NG v.0.12.1 allows an attacker to execute arbitrar ...check
CVE-2026-39860Nix is a package manager for Linux and other Unix systems. A bug in th ...check, potentially affecting guix if same issue in backporting fix for CVE-2024-2729
CVE-2026-40033FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in ...check
CVE-2026-40034gix-submodule before 0.82.0 incorrectly validates the update field in ...check
CVE-2026-40968When an authenticated user is denied access to a gRPC method, their au ...check
CVE-2026-40969The raw message of every server-side AuthenticationException is return ...check
CVE-2026-40981When using Google Secrets Manager as a backend for the Spring Cloud Co ...check
CVE-2026-40982Spring Cloud Config allows applications to serve arbitrary text and bi ...check
CVE-2026-41002The base directory (`spring.cloud.config.server.git.basedir`) used by ...check
CVE-2026-41004When enabling trace logging in Spring Cloud Config Server sensitive in ...check
CVE-2026-41164nuts-node is the reference implementation of the Nuts specification. P ...check
CVE-2026-41401libyang before 5.2.6 contains a heap use-after-free write vulnerabilit ...check
CVE-2026-41423Angular is a development platform for building mobile and desktop web ...check
CVE-2026-41889pgx is a PostgreSQL driver and toolkit for Go. Prior to version 5.9.2, ...check the other golang-github-jackc-pgx* sources
CVE-2026-42199Grid is a data structure grid for rust. From version 0.17.0 to before ...check
CVE-2026-42308Pillow is a Python imaging library. Prior to version 12.2.0, if a font ...research fixing commit(s), maybe https://github.com/python-pillow/Pillow/pull/9518/changes
CVE-2026-42335MaxKB is an open-source AI assistant for enterprise. Prior to 2.8.1, M ...check
CVE-2026-42336MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and p ...check
CVE-2026-42337MaxKB is an open-source AI assistant for enterprise. MaxKB 2.8.0 and p ...check
CVE-2026-42503gopls by default communicates via pipe. However, -port and -listen fla ...check
CVE-2026-42627In Arm ArmNN through 2026-03-27, an integer overflow in TensorShape::G ...check details
CVE-2026-43988Vanetza is an open-source implementation of the ETSI C-ITS protocol su ...check
CVE-2026-44159Tyler Identity Local (TID-L) uses documented, default administrative c ...check
CVE-2026-44209Banks generates meaningful LLM prompts using a template language that ...check
CVE-2026-44213The OpenTelemetry.Exporter.Instana exports telemetry to Instana backen ...check
CVE-2026-44214eventsource-encoder encodes events as well-formed EventSource/Server S ...check
CVE-2026-44230should not affect 5.0.3 in bookworm, check
CVE-2026-44437The Angular SSR is a server-rise rendering tool for Angular applicatio ...check
CVE-2026-44443Lumiverse is a full-featured AI chat application. Prior to 0.9.7, cons ...check
CVE-2026-44444Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the ...check
CVE-2026-44449Lumiverse is a full-featured AI chat application. Prior to 0.9.7, when ...check
CVE-2026-44450Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the ...check
CVE-2026-44451Lumiverse is a full-featured AI chat application. Prior to 0.9.7, the ...check
CVE-2026-44708Mistune is a Python Markdown parser with renderers and plugins. Prior ...check
CVE-2026-44728Babel is a compiler for writing next generation JavaScript. From 7.12. ...check
CVE-2026-44788SharpCompress is a fully managed C# library to deal with many compress ...check
CVE-2026-44831Snipe-IT is an IT asset/license management system. Prior to 8.4.1, use ...check
CVE-2026-44832Snipe-IT is an IT asset/license management system. Prior to 8.4.1, aAn ...check
CVE-2026-44833Snipe-IT is an IT asset/license management system. Prior to 8.4.1, an ...check
CVE-2026-44836view_component is a framework for building reusable, testable, and enc ...check
CVE-2026-44837view_component is a framework for building reusable, testable, and enc ...check
CVE-2026-44843LangChain is a framework for building agents and LLM-powered applicati ...check
CVE-2026-44844eml_parser serves as a python module for parsing eml files and returni ...check
CVE-2026-44847MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.0, M ...check
CVE-2026-44895GitLab MCP Server lets an AI agent talk directly to GitLab. Prior to 0 ...check
CVE-2026-44896Mistune is a Python Markdown parser with renderers and plugins. In 3.2 ...check
CVE-2026-44897Mistune is a Python Markdown parser with renderers and plugins. Prior ...check
CVE-2026-44898Mistune is a Python Markdown parser with renderers and plugins. Prior ...check
CVE-2026-44899Mistune is a Python Markdown parser with renderers and plugins. Prior ...check
CVE-2026-44900epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...check
CVE-2026-44903Prometheus is an open-source monitoring system and time series databas ...check
CVE-2026-44905Vanetza is an open-source implementation of the ETSI C-ITS protocol su ...check
CVE-2026-44933`PluginScript` attempts to `chroot` the plugin to the `repoManagerRoot ...check
CVE-2026-44966Velocity.js is a JavaScript implementation of the Apache Velocity temp ...check
CVE-2026-44983smallbitvec is a growable bit-vector for Rust, optimized for size. Fro ...check
CVE-2026-44985Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2 ...check
CVE-2026-45249A cross-site scripting (XSS) vulnerability exists in Apache ECharts in ...check
CVE-2026-45298Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2 ...check
CVE-2026-45412MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, S ...check
CVE-2026-45413MaxKB is an open-source AI assistant for enterprise. Prior to 2.9.1, u ...check
CVE-2026-45574epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...check
CVE-2026-45575epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...check
CVE-2026-45760(Externally Controlled Reference to a Resource in Another Sphere), (Au ...check
CVE-2026-46727An issue was discovered in Ruby 4 before 4.0.5. A race condition leadi ...check
CVE-2026-47672epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telemat ...check
CVE-2026-48132The Security Gateway does not correctly validate a length value in cer ...check
CVE-2026-48592Missing Authorization vulnerability in oban-bg oban_web ('Elixir.Oban. ...check
CVE-2026-48593Uncontrolled Resource Consumption vulnerability in oban-bg oban_web (' ...check
CVE-2026-49014In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF ...check
CVE-2026-49017In OpenStack Swift before 2.36.2 and 2.37.2, s3api middleware enters a ...check
Search for package or bug name: Reporting problems