Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-674 Clear
ID Title
CVE-2026-59927 Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, the Include directive in src/mistune/directives/include.py detects only direct self-includes and not indirect cycles, al...
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, the Include directive in src/mistune/directives/include.py detects only direct self-includes and not indirect cycles, allowing two markdown files that include each other to trigger unbounded recursion, raise RecursionErr...
CVE-2026-14803 Vulnerability in c (CVE-2026-14803)
vulnerability in c (CVE-2026-14803). Risk of unauthorized operations or information disclosure. Exploitable via ``_decode_value``.
CVE-2026-38970 Vulnerability in CVE-2026-38970 (CVE-2026-38970)
vulnerability in CVE-2026-38970 (CVE-2026-38970). Risk of unauthorized operations or information disclosure.
CVE-2026-55594 Vulnerability in imagemagick (CVE-2026-55594)
vulnerability in imagemagick (CVE-2026-55594). Risk of unauthorized operations or information disclosure.
CVE-2026-56148 Vulnerability in dos (CVE-2026-56148)
vulnerability in dos (CVE-2026-56148). Risk of unauthorized operations or information disclosure.
CVE-2026-49451 Vulnerability in Microsoft.OpenAPI (CVE-2026-49451)
vulnerability in Microsoft.OpenAPI (CVE-2026-49451). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.7.5` or later.
CVE-2026-57081 Vulnerability in CVE-2026-57081 (CVE-2026-57081)
vulnerability in CVE-2026-57081 (CVE-2026-57081). Risk of unauthorized operations or information disclosure.
CVE-2026-54888 Vulnerability in c (CVE-2026-54888)
vulnerability in c (CVE-2026-54888). Risk of unauthorized operations or information disclosure.
CVE-2026-13757 Vulnerability in redhat (CVE-2026-13757)
vulnerability in redhat (CVE-2026-13757). Risk of unauthorized operations or information disclosure.
CVE-2026-53288 Vulnerability in linux (CVE-2026-53288)
vulnerability in linux (CVE-2026-53288). Risk of unauthorized operations or information disclosure.
CVE-2026-47770 Vulnerability in c (CVE-2026-47770)
vulnerability in c (CVE-2026-47770). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.2` or later.
CVE-2026-53267 Vulnerability in linux (CVE-2026-53267)
vulnerability in linux (CVE-2026-53267). Successful exploitation can lead to full system takeover.
CVE-2026-53202 Vulnerability in linux (CVE-2026-53202)
vulnerability in linux (CVE-2026-53202). Successful exploitation can lead to full system takeover.
CVE-2025-71382 Vulnerability in c (CVE-2025-71382)
vulnerability in c (CVE-2025-71382). Risk of unauthorized operations or information disclosure.
CVE-2026-48513 Vulnerability in MessagePack (CVE-2026-48513)
vulnerability in MessagePack (CVE-2026-48513). Risk of unauthorized operations or information disclosure. Exploitable via ``DynamicUnionResolver``. Mitigation: upgrade to `3.1.7` or later.
CVE-2026-48512 Vulnerability in MessagePack (CVE-2026-48512)
vulnerability in MessagePack (CVE-2026-48512). Risk of unauthorized operations or information disclosure. Exploitable via ``MessagePackSerializer.ConvertFromJson``. Mitigation: upgrade to `3.1.7` or later.
CVE-2026-48506 Vulnerability in MessagePack (CVE-2026-48506)
vulnerability in MessagePack (CVE-2026-48506). Risk of unauthorized operations or information disclosure. Exploitable via ``StackOverflowException``. Mitigation: upgrade to `3.1.7` or later.
CVE-2026-48502 Out-of-Bounds Read in MessagePack (CVE-2026-48502)
vulnerability in MessagePack (CVE-2026-48502). Risk of unauthorized operations or information disclosure. Exploitable via ``tokenSize``. Mitigation: upgrade to `3.1.7` or later.
CVE-2026-54297 Vulnerability in faraday (CVE-2026-54297)
vulnerability in faraday (CVE-2026-54297). Risk of unauthorized operations or information disclosure. Exploitable via ``Hash``. Mitigation: upgrade to `1.10.6` or later.
CVE-2026-48712 Vulnerability in protobufjs (CVE-2026-48712)
vulnerability in protobufjs (CVE-2026-48712). Risk of unauthorized operations or information disclosure. Exploitable via ``google.protobuf.Any``. Mitigation: upgrade to `8.4.1` or later.
CVE-2026-54269 Vulnerability in protobufjs (CVE-2026-54269)
vulnerability in protobufjs (CVE-2026-54269). Risk of unauthorized operations or information disclosure. Exploitable via ``hasOwnProperty``. Mitigation: upgrade to `8.6.0` or later.
CVE-2025-7010 Vulnerability in CVE-2025-7010 (CVE-2025-7010)
vulnerability in CVE-2025-7010 (CVE-2025-7010). Risk of unauthorized operations or information disclosure.
CVE-2025-7005 Vulnerability in CVE-2025-7005 (CVE-2025-7005)
vulnerability in CVE-2025-7005 (CVE-2025-7005). Risk of unauthorized operations or information disclosure.
CVE-2026-4870 Vulnerability in dos (CVE-2026-4870)
vulnerability in dos (CVE-2026-4870). Risk of unauthorized operations or information disclosure.
CVE-2026-48734 Vulnerability in imagemagick (CVE-2026-48734)
vulnerability in imagemagick (CVE-2026-48734). Risk of unauthorized operations or information disclosure.
CVE-2026-9740 Vulnerability in mongodb (CVE-2026-9740)
vulnerability in mongodb (CVE-2026-9740). Risk of unauthorized operations or information disclosure.
CVE-2026-49847 Vulnerability in freeswitch (CVE-2026-49847)
vulnerability in freeswitch (CVE-2026-49847). Risk of unauthorized operations or information disclosure.
CVE-2026-49941 Vulnerability in dos (CVE-2026-49941)
vulnerability in dos (CVE-2026-49941). Risk of unauthorized operations or information disclosure.
CVE-2026-47706 Vulnerability in strawberry-graphql (CVE-2026-47706)
vulnerability in strawberry-graphql (CVE-2026-47706). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.315.7` or later.
CVE-2026-47320 Vulnerability in CVE-2026-47320 (CVE-2026-47320)
vulnerability in CVE-2026-47320 (CVE-2026-47320). Risk of unauthorized operations or information disclosure.
CVE-2026-47306 Vulnerability in CVE-2026-47306 (CVE-2026-47306)
vulnerability in CVE-2026-47306 (CVE-2026-47306). Risk of unauthorized operations or information disclosure.
CVE-2026-8936 Vulnerability in CVE-2026-8936 (CVE-2026-8936)
vulnerability in CVE-2026-8936 (CVE-2026-8936). Risk of unauthorized operations or information disclosure.
CVE-2026-40989 Vulnerability in vmware (CVE-2026-40989)
vulnerability in vmware (CVE-2026-40989). Risk of unauthorized operations or information disclosure.
CVE-2026-46217 Vulnerability in linux (CVE-2026-46217)
vulnerability in linux (CVE-2026-46217). Risk of unauthorized operations or information disclosure.
CVE-2026-46149 Vulnerability in linux (CVE-2026-46149)
vulnerability in linux (CVE-2026-46149). Confidential information can be exposed externally.
CVE-2026-42328 Vulnerability in github.com/ipld/go-ipld-prime (CVE-2026-42328)
vulnerability in github.com/ipld/go-ipld-prime (CVE-2026-42328). Risk of unauthorized operations or information disclosure. Exploitable via ``basicnode.Prototype.Any``. Mitigation: upgrade to `0.23.0` or later.
CVE-2026-45904 Vulnerability in linux (CVE-2026-45904)
vulnerability in linux (CVE-2026-45904). Risk of unauthorized operations or information disclosure.
CVE-2026-6936 Vulnerability in ibm (CVE-2026-6936)
vulnerability in ibm (CVE-2026-6936). Risk of unauthorized operations or information disclosure.
CVE-2026-7453 Vulnerability in autodesk (CVE-2026-7453)
vulnerability in autodesk (CVE-2026-7453). Risk of unauthorized operations or information disclosure.
CVE-2026-9358 Vulnerability in dos (CVE-2026-9358)
vulnerability in dos (CVE-2026-9358). Risk of unauthorized operations or information disclosure.
CVE-2026-4224 Vulnerability in libpython (CVE-2026-4224)
vulnerability in libpython (CVE-2026-4224). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.13.13, 3.14.4` or later.
CVE-2026-46373 Vulnerability in sqlfluff (CVE-2026-46373)
vulnerability in sqlfluff (CVE-2026-46373). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.1.0` or later.
CVE-2026-47317 Vulnerability in samsung (CVE-2026-47317)
vulnerability in samsung (CVE-2026-47317). Risk of unauthorized operations or information disclosure.
CVE-2026-47309 Vulnerability in samsung (CVE-2026-47309)
vulnerability in samsung (CVE-2026-47309). Risk of unauthorized operations or information disclosure.
CVE-2026-46557 Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-46557)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-46557). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.13.1` or later.
CVE-2026-45664 Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-45664)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-45664). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.13.1` or later.
CVE-2026-6811 Vulnerability in CVE-2026-6811 (CVE-2026-6811)
vulnerability in CVE-2026-6811 (CVE-2026-6811). Risk of unauthorized operations or information disclosure.
CVE-2026-41935 Vulnerability in dos (CVE-2026-41935)
vulnerability in dos (CVE-2026-41935). Risk of unauthorized operations or information disclosure.
CVE-2026-6479 Vulnerability in postgresql (CVE-2026-6479)
vulnerability in postgresql (CVE-2026-6479). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.23.0, 15.18.0, 16.14.0, 17.10.0, 18.4.0` or later.
CVE-2026-45205 Vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205)
vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.15.0` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →