VYPR

CVEs

345,016 total · page 19 of 6,901

  • CVE-2026-13601Jun 30, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in Yelp due to an overly permissive Content Security Policy (CSP) implementation provided by yelp-xsl. A malicious Flatpak application can open crafted help content through the OpenURI portal. By embedding an untrusted CSS stylesheet within a structured SVG…

  • CVE-2026-57966Jun 30, 2026
    risk 0.00cvss epss 0.00

    A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any location on the guest operating system. This occurs because the filename provided by the SPICE host during file transfers is not…

  • CVE-2026-57965Jun 30, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. This vulnerability can lead to a heap buffer overflow, causing the spice-vdagent daemon to crash and resulting in a Denial of Service…

  • CVE-2026-12912Jun 30, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. This issue occurs when decoding Pixarlog codec images with the PIXARLOGDATAFMT_8BITABGR output format and a specific stride value,…

  • CVE-2026-56018Jun 30, 2026
    risk 0.00cvss epss 0.01

    JavaScript::Minifier::XS versions before 0.16 for Perl leak memory on every call to minify(), allowing unbounded memory growth. In JsMinify (XS.xs) the cleanup frees only the NodeSet structures and never the per-token contents buffers allocated in JsSetNodeContents;…

  • CVE-2026-56017Jun 30, 2026
    risk 0.00cvss epss 0.00

    JavaScript::Minifier::XS versions before 0.16 for Perl crash with a NULL pointer dereference when the first meaningful token of the input is a slash. The regexp versus division disambiguator in JsTokenizeString (XS.xs) inspects the previous token's last byte to choose between a…

  • CVE-2026-25707Jun 30, 2026
    risk 0.00cvss epss 0.01

    A relative path traversal bug problem when processing repository metadata in libzypp before 17.38.10 could be used by remote attackers supplying repositories to overwrite files on the system, leading to denial of service or privilege escalation.

  • CVE-2026-55957Jun 30, 2026
    risk 0.00cvss epss 0.00

    Missing Critical Step in Authentication vulnerability in Apache Tomcat when the JNDIRealm was configured to authenticate binds using GSSAPI allowed attackers to authenticate without provided the correct password. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.4,…

  • CVE-2026-55956Jun 30, 2026
    risk 0.00cvss epss 0.00

    Improper Authorization vulnerability in Apache Tomcat leads to security constraints specified for the default servlet ignoring any method or method omission configured as part of the constraint. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.22, from 10.1.0-M1…

  • CVE-2026-13758Jun 30, 2026
    risk 0.00cvss epss 0.00

    CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path. The decrypt_done($tag) form compares it against the computed tag with memNE (memcmp() != 0), which short-circuits on the first differing byte, so…

  • CVE-2026-13595Jun 30, 2026
    risk 0.00cvss epss 0.00

    A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition probers cache a raw pointer to a parent partition entry in a dynamically allocated array. When subsequent partition additions cause the…

  • CVE-2026-41992Jun 30, 2026
    risk 0.00cvss epss 0.00

    GNU gzip contains a global buffer overflow vulnerability in the LZH decompression logic caused by improper reuse of shared global state between different decompression formats within a single execution. GNU gzip maintains a global array that is shared across the LZ77, LZW, and…

  • CVE-2026-13593Jun 30, 2026
    risk 0.00cvss epss 0.00

    CSS::Minifier::XS versions before 0.14 for Perl have a memory leak when the entire document is minified away. The minify function has a memory leak when processing a document containing only characters to be removed, such as comments and whitespace.

  • CVE-2026-13574Jun 30, 2026
    risk 0.00cvss epss 0.00

    A vulnerability was determined in llvm llvm-project up to 22.1.6. This impacts the function GCRelocateInst::getBasePtr in the library llvm/lib/IR/IntrinsicInst.cpp of the component Bitcode File Handler. This manipulation causes heap-based buffer overflow. It is possible to…

  • CVE-2026-13573Jun 30, 2026
    risk 0.00cvss epss 0.00

    A vulnerability was found in llvm llvm-project up to 22.1.6. This affects the function llvm::StringMap::insert in the library /lib/IR/ValueSymbolTable.cpp of the component ValueSymbolTable Module. The manipulation results in stack-based buffer overflow. Attacking locally is a…

  • CVE-2026-13149impJun 30, 2026
    risk 0.42cvss 7.5epss 0.00

    brace-expansion: Brace-expansion: Denial of Service due to exponential-time complexity

  • CVE-2026-45822impJun 30, 2026
    risk 0.42cvss 7.5epss 0.00

    decode-uri-component: decode-uri-component: Denial of Service via crafted input

  • CVE-2026-12818criJun 30, 2026
    risk 0.64cvss 9.8epss 0.00

    Delta Electronics DVP12SE PLCs are susceptible to a resource allocation vulnerability without limits or throttling (CWE-770) within their Modbus TCP service. A remote attacker could exploit this vulnerability by flooding the Modbus port (TCP/502) with a continuous stream of raw…

  • CVE-2026-12819criJun 30, 2026
    risk 0.64cvss 9.8epss 0.00

    The Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, permitting unauthenticated interaction with security-sensitive PLC functions. The device accepts Modbus commands from any reachable network source…

  • CVE-2026-13207higJun 30, 2026
    risk 0.49cvss 7.5epss 0.00

    FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to normalize dot-segment sequences before applying authentication middleware, allowing unauthenticated requests to access…

  • CVE-2026-50040medJun 30, 2026
    risk 0.40cvss 6.1epss 0.00

    Storage Concentrator (SC & SCVM) is vulnerable to reflected cross-site scripting (XSS) due to unsanitized content being echoed back in 404 error pages. An attacker can craft a malicious URL that, when visited by an authenticated user, causes arbitrary script content to execute…

  • CVE-2026-50110criJun 30, 2026
    risk 0.60cvss 9.2epss 0.00

    Storage Concentrator (SC & SCVM) contains hardcoded credentials for numerous internal services embedded within a configuration file. While the credentials are stored in an encoded format, the encoding can be reversed to plaintext. The exposed credentials span a broad range of…

  • CVE-2026-55721criJun 30, 2026
    risk 0.60cvss 9.3epss 0.00

    Storage Concentrator (SC & SCVM) is vulnerable to SQL injection through cookie values processed by the login.pl and debug.pl scripts. The cookie value is incorporated directly into database queries without adequate sanitization, allowing an unauthenticated remote attacker to…

  • CVE-2026-56413criJun 30, 2026
    risk 0.65cvss 10.0epss 0.03

    Storage Concentrator (SC & SCVM) contains a command injection vulnerability in the ms_service.pl service, which listens on TCP port 9000 by default and accepts custom network packets to perform device actions. An unauthenticated remote attacker can send a specially crafted…

  • CVE-2026-56415criJun 30, 2026
    risk 0.65cvss 10.0epss 0.03

    Storage Concentrator (SC & SCVM) contains a command injection vulnerability within the debug.pl script that is reachable without authentication. A remote attacker can submit a specially crafted HTTP request containing a malicious payload that is processed without adequate input…

  • CVE-2026-12243impJun 30, 2026
    risk 0.49cvss 7.5epss 0.01

    nltk: NLTK: Information disclosure via path traversal vulnerability

  • CVE-2026-10763higJun 30, 2026
    risk 0.46cvss 7.1epss 0.00

    PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server.

  • CVE-2026-37106lowJun 30, 2026
    risk 0.24cvss 3.7epss 0.01

    DokuWiki: DokuWiki: Unauthorized account creation via registration function

  • CVE-2026-48192medJun 30, 2026
    risk 0.35cvss 5.4epss 0.00

    Affected versions of Mendix Studio Pro do not properly validate or sanitize project files processed during the build pipeline. This could allow an attacker who tricks a user into opening and running a specially crafted malicious project locally on their system to execute…

  • CVE-2026-55955modJun 29, 2026
    risk 0.20cvss 4.2epss 0.00

    tomcat: Apache Tomcat: Replay attack via improper authentication in EncryptionInterceptor

  • CVE-2026-55276lowJun 29, 2026
    risk 0.08cvss 2.3epss 0.00

    tomcat: Apache Tomcat: Misleading security logs due to incorrect control flow

  • CVE-2026-53434lowJun 29, 2026
    risk 0.17cvss 3.7epss 0.00

    tomcat: Apache Tomcat: Error condition not handled when configuring CRLs

  • CVE-2026-53404modJun 29, 2026
    risk 0.35cvss 6.5epss 0.00

    Apache Tomcat: Apache Tomcat: Incorrect control flow in rewrite valve allows unexpected rule processing

  • CVE-2026-50229modJun 29, 2026
    risk 0.28cvss 5.4epss 0.00

    tomcat: Apache Tomcat: Cross-Site Scripting vulnerability in number guess example

  • CVE-2026-55607impJun 29, 2026
    risk 0.39cvss 7.1epss 0.01

    Claude Code: @anthropic-ai/claude-code: Claude Code: Arbitrary code execution through git directory confusion

  • CVE-2026-46406modJun 29, 2026
    risk 0.37cvss 6.8epss 0.00

    @anthropic-ai/claude-code: Claude Code: Information disclosure and file overwrite via insecure temporary file in /copy command

  • CVE-2026-13676impJun 29, 2026
    risk 0.42cvss 7.5epss 0.00

    fast-uri: fast-uri: Security policy bypass due to improper Unicode hostname canonicalization

  • CVE-2026-11979modJun 29, 2026
    risk 0.24cvss 4.8epss 0.00

    libxml2: libxml2: Arbitrary code execution in xmlcatalog utility via buffer overflow

  • CVE-2026-54369impJun 29, 2026
    risk 0.46cvss 7.1epss 0.00

    acl: Symlink traversal privilege escalation via libacl functions

  • CVE-2026-54370modJun 29, 2026
    risk 0.41cvss 6.3epss 0.00

    acl: TOCTOU Symlink Traversal via getfacl/setfacl

  • CVE-2026-54371impJun 29, 2026
    risk 0.46cvss 7.1epss 0.00

    attr: Symlink Traversal Privilege Escalation via getfattr

  • CVE-2026-12856impJun 29, 2026
    risk 0.57cvss 8.8epss 0.00

    vscode-java: vscode: Command Injection vulnerability in the JavaDoc hover provider of the vscode-java extension

  • CVE-2026-41991modJun 29, 2026
    risk 0.39cvss 6.0epss 0.00

    gzip: gzip: Arbitrary file overwrite via insecure temporary file handling in gzexe utility

  • CVE-2026-22879Jun 29, 2026
    risk 0.00cvss epss 0.00

    vtk vtk-dicom vtkDICOMItem::NewDataElement heap-based buffer overflow vulnerability

  • CVE-2026-58049Jun 29, 2026
    risk 0.00cvss epss 0.00

    FFmpeg's RASC video decoder (decode_dlta in libavcodec/rasc.c) performs 32-bit reads and writes at the row cursor before the NEXT_LINE row-boundary check and validates the DLTA region in pixel rather than byte units, so a DLTA run on a PAL8 frame can access several bytes past…

  • CVE-2026-13606impJun 28, 2026
    risk 0.53cvss 8.1epss

    GraphicsMagick: GraphicsMagick: Memory corruption via crafted Photo CD (PCD) file

  • CVE-2026-56130Jun 28, 2026
    risk 0.00cvss epss 0.00

    "Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie and reuse it indefinitely, even after the configured expiration time has passed. This issue affects all Apache Shiro versions from 1.2.4 through 2.x, and…

  • CVE-2026-56091Jun 28, 2026
    risk 0.00cvss epss 0.00

    When using Apache Shiro with the shiro-guice module in a web servlet context, a specially crafted HTTP request may cause an authentication bypass. This vulnerability is similar to https://www.cve.org/CVERecord?id=CVE-2020-1957 https://www.cve.org/CVERecord , except that it…

  • CVE-2026-58055Jun 28, 2026
    risk 0.00cvss epss 0.00

    nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that…

  • CVE-2025-60464Jun 28, 2026
    risk 0.00cvss epss 0.00

    A use-after-free in the gf_sei_load_from_state_internal function (/filters/sei_load.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service (DoS) via supplying a crafted MPEG-2 TS file.