Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-59927 |
|
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, the Include directive in src/mistune/directives/include.py detects only direct self-includes and not indirect cycles, al...
Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.3.0, the Include directive in src/mistune/directives/include.py detects only direct self-includes and not indirect cycles, allowing two markdown files that include each other to trigger unbounded recursion, raise RecursionErr...
|
| CVE-2026-14803 |
|
Vulnerability in c (CVE-2026-14803)
vulnerability in c (CVE-2026-14803). Risk of unauthorized operations or information disclosure. Exploitable via ``_decode_value``.
|
| CVE-2026-38970 |
|
Vulnerability in CVE-2026-38970 (CVE-2026-38970)
vulnerability in CVE-2026-38970 (CVE-2026-38970). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55594 |
|
Vulnerability in imagemagick (CVE-2026-55594)
vulnerability in imagemagick (CVE-2026-55594). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56148 |
|
Vulnerability in dos (CVE-2026-56148)
vulnerability in dos (CVE-2026-56148). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49451 |
|
Vulnerability in Microsoft.OpenAPI (CVE-2026-49451)
vulnerability in Microsoft.OpenAPI (CVE-2026-49451). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.7.5` or later.
|
| CVE-2026-57081 |
|
Vulnerability in CVE-2026-57081 (CVE-2026-57081)
vulnerability in CVE-2026-57081 (CVE-2026-57081). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54888 |
|
Vulnerability in c (CVE-2026-54888)
vulnerability in c (CVE-2026-54888). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13757 |
|
Vulnerability in redhat (CVE-2026-13757)
vulnerability in redhat (CVE-2026-13757). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53288 |
|
Vulnerability in linux (CVE-2026-53288)
vulnerability in linux (CVE-2026-53288). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47770 |
|
Vulnerability in c (CVE-2026-47770)
vulnerability in c (CVE-2026-47770). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.2` or later.
|
| CVE-2026-53267 |
|
Vulnerability in linux (CVE-2026-53267)
vulnerability in linux (CVE-2026-53267). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53202 |
|
Vulnerability in linux (CVE-2026-53202)
vulnerability in linux (CVE-2026-53202). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71382 |
|
Vulnerability in c (CVE-2025-71382)
vulnerability in c (CVE-2025-71382). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48513 |
|
Vulnerability in MessagePack (CVE-2026-48513)
vulnerability in MessagePack (CVE-2026-48513). Risk of unauthorized operations or information disclosure. Exploitable via ``DynamicUnionResolver``. Mitigation: upgrade to `3.1.7` or later.
|
| CVE-2026-48512 |
|
Vulnerability in MessagePack (CVE-2026-48512)
vulnerability in MessagePack (CVE-2026-48512). Risk of unauthorized operations or information disclosure. Exploitable via ``MessagePackSerializer.ConvertFromJson``. Mitigation: upgrade to `3.1.7` or later.
|
| CVE-2026-48506 |
|
Vulnerability in MessagePack (CVE-2026-48506)
vulnerability in MessagePack (CVE-2026-48506). Risk of unauthorized operations or information disclosure. Exploitable via ``StackOverflowException``. Mitigation: upgrade to `3.1.7` or later.
|
| CVE-2026-48502 |
|
Out-of-Bounds Read in MessagePack (CVE-2026-48502)
vulnerability in MessagePack (CVE-2026-48502). Risk of unauthorized operations or information disclosure. Exploitable via ``tokenSize``. Mitigation: upgrade to `3.1.7` or later.
|
| CVE-2026-54297 |
|
Vulnerability in faraday (CVE-2026-54297)
vulnerability in faraday (CVE-2026-54297). Risk of unauthorized operations or information disclosure. Exploitable via ``Hash``. Mitigation: upgrade to `1.10.6` or later.
|
| CVE-2026-48712 |
|
Vulnerability in protobufjs (CVE-2026-48712)
vulnerability in protobufjs (CVE-2026-48712). Risk of unauthorized operations or information disclosure. Exploitable via ``google.protobuf.Any``. Mitigation: upgrade to `8.4.1` or later.
|
| CVE-2026-54269 |
|
Vulnerability in protobufjs (CVE-2026-54269)
vulnerability in protobufjs (CVE-2026-54269). Risk of unauthorized operations or information disclosure. Exploitable via ``hasOwnProperty``. Mitigation: upgrade to `8.6.0` or later.
|
| CVE-2025-7010 |
|
Vulnerability in CVE-2025-7010 (CVE-2025-7010)
vulnerability in CVE-2025-7010 (CVE-2025-7010). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7005 |
|
Vulnerability in CVE-2025-7005 (CVE-2025-7005)
vulnerability in CVE-2025-7005 (CVE-2025-7005). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4870 |
|
Vulnerability in dos (CVE-2026-4870)
vulnerability in dos (CVE-2026-4870). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48734 |
|
Vulnerability in imagemagick (CVE-2026-48734)
vulnerability in imagemagick (CVE-2026-48734). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9740 |
|
Vulnerability in mongodb (CVE-2026-9740)
vulnerability in mongodb (CVE-2026-9740). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49847 |
|
Vulnerability in freeswitch (CVE-2026-49847)
vulnerability in freeswitch (CVE-2026-49847). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49941 |
|
Vulnerability in dos (CVE-2026-49941)
vulnerability in dos (CVE-2026-49941). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47706 |
|
Vulnerability in strawberry-graphql (CVE-2026-47706)
vulnerability in strawberry-graphql (CVE-2026-47706). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.315.7` or later.
|
| CVE-2026-47320 |
|
Vulnerability in CVE-2026-47320 (CVE-2026-47320)
vulnerability in CVE-2026-47320 (CVE-2026-47320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47306 |
|
Vulnerability in CVE-2026-47306 (CVE-2026-47306)
vulnerability in CVE-2026-47306 (CVE-2026-47306). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8936 |
|
Vulnerability in CVE-2026-8936 (CVE-2026-8936)
vulnerability in CVE-2026-8936 (CVE-2026-8936). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40989 |
|
Vulnerability in vmware (CVE-2026-40989)
vulnerability in vmware (CVE-2026-40989). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46217 |
|
Vulnerability in linux (CVE-2026-46217)
vulnerability in linux (CVE-2026-46217). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46149 |
|
Vulnerability in linux (CVE-2026-46149)
vulnerability in linux (CVE-2026-46149). Confidential information can be exposed externally.
|
| CVE-2026-42328 |
|
Vulnerability in github.com/ipld/go-ipld-prime (CVE-2026-42328)
vulnerability in github.com/ipld/go-ipld-prime (CVE-2026-42328). Risk of unauthorized operations or information disclosure. Exploitable via ``basicnode.Prototype.Any``. Mitigation: upgrade to `0.23.0` or later.
|
| CVE-2026-45904 |
|
Vulnerability in linux (CVE-2026-45904)
vulnerability in linux (CVE-2026-45904). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6936 |
|
Vulnerability in ibm (CVE-2026-6936)
vulnerability in ibm (CVE-2026-6936). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7453 |
|
Vulnerability in autodesk (CVE-2026-7453)
vulnerability in autodesk (CVE-2026-7453). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9358 |
|
Vulnerability in dos (CVE-2026-9358)
vulnerability in dos (CVE-2026-9358). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4224 |
|
Vulnerability in libpython (CVE-2026-4224)
vulnerability in libpython (CVE-2026-4224). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.13.13, 3.14.4` or later.
|
| CVE-2026-46373 |
|
Vulnerability in sqlfluff (CVE-2026-46373)
vulnerability in sqlfluff (CVE-2026-46373). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.1.0` or later.
|
| CVE-2026-47317 |
|
Vulnerability in samsung (CVE-2026-47317)
vulnerability in samsung (CVE-2026-47317). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47309 |
|
Vulnerability in samsung (CVE-2026-47309)
vulnerability in samsung (CVE-2026-47309). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46557 |
|
Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-46557)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-46557). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.13.1` or later.
|
| CVE-2026-45664 |
|
Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-45664)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-45664). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.13.1` or later.
|
| CVE-2026-6811 |
|
Vulnerability in CVE-2026-6811 (CVE-2026-6811)
vulnerability in CVE-2026-6811 (CVE-2026-6811). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41935 |
|
Vulnerability in dos (CVE-2026-41935)
vulnerability in dos (CVE-2026-41935). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6479 |
|
Vulnerability in postgresql (CVE-2026-6479)
vulnerability in postgresql (CVE-2026-6479). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.23.0, 15.18.0, 16.14.0, 17.10.0, 18.4.0` or later.
|
| CVE-2026-45205 |
|
Vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205)
vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.15.0` or later.
|