快速搜索提示:
按厂商查询(如:microsoft)|
按产品查询(如:microsoft sql_server)
漏洞列表 359799
| CVE ID | 标题 | 严重程度 | CVSS | 发布时间 | 受影响产品 | 数据源 | 操作 |
|---|---|---|---|---|---|---|---|
| CVE-2026-2034 |
Sante DICOM Viewer Pro DCM File Parsing Buffer Overflow Remote Code Execution Vulnerability
|
HIGH | 7.8 | 2026-02-20 |
Sante DICOM Viewer Pro
santesoft dicom_viewer_pro
|
CVE NVD | |
| CVE-2026-2033 |
MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability
|
HIGH | 8.1 | 2026-02-20 |
MLflow MLflow
|
CVE NVD | |
| CVE-2026-0777 |
Xmind Attachment Insufficient UI Warning Remote Code Execution Vulnerability
|
HIGH | 7.8 | 2026-02-20 |
Xmind Xmind
|
CVE NVD | |
| CVE-2026-0797 |
GIMP ICO File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
|
HIGH | 7.8 | 2026-02-20 |
GIMP GIMP
gimp gimp
|
CVE NVD | |
| CVE-2026-27113 |
Liquid Prompt arbitrary command injection via crafted Git branch names in gitstatusd backend
|
MEDIUM | 6.3 | 2026-02-20 |
liquidprompt liquidprompt
|
CVE NVD | |
| CVE-2026-2858 |
wren-lang wren Source File wren_compiler.c peekChar out-of-bounds
|
MEDIUM | 4.8 | 2026-02-20 |
wren-lang wren
wren-lang wren
+3个
|
CVE NVD | |
| CVE-2026-27120 |
Leaf-kit html escaping does not work on characters that are part of extended grapheme cluster
|
MEDIUM | 6.1 | 2026-02-20 |
vapor leaf-kit
vapor leafkit
|
CVE NVD | |
| CVE-2026-27118 |
Cache poisoning in @sveltejs/adapter-vercel
|
MEDIUM | 5.3 | 2026-02-20 |
sveltejs kit
|
CVE NVD | |
| CVE-2026-27112 |
Kargo has an Authorization Bypass Vulnerability in Batch Resource Creation API Endpoints
|
CRITICAL | 9.4 | 2026-02-20 |
akuity kargo
akuity kargo
+2个
|
CVE NVD | |
| CVE-2026-27111 |
Kargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API Endpoints
|
MEDIUM | 5.3 | 2026-02-20 |
akuity kargo
akuity kargo
|
CVE NVD | |
| CVE-2026-27026 |
pypdf possibly has long runtimes for malformed FlateDecode streams
|
MEDIUM | 6.9 | 2026-02-20 |
py-pdf pypdf
pypdf_project pypdf
|
CVE NVD | |
| CVE-2026-27025 |
pypdf has possible long runtimes/large memory usage for large /ToUnicode streams
|
MEDIUM | 6.9 | 2026-02-20 |
py-pdf pypdf
pypdf_project pypdf
|
CVE NVD | |
| CVE-2026-27024 |
pypdf has a possible infinite loop when processing TreeObject
|
MEDIUM | 6.9 | 2026-02-20 |
py-pdf pypdf
pypdf_project pypdf
|
CVE NVD | |
| CVE-2026-27022 |
RediSearch Query Injection in @langchain/langgraph-checkpoint-redis
|
MEDIUM | 6.5 | 2026-02-20 |
langchain-ai langgraphjs
|
CVE NVD | |
| CVE-2026-27020 |
Photobooth has a XSS vulnerability in user input
|
MEDIUM | 5.3 | 2026-02-20 |
lukas12000 photobooth
|
CVE NVD | |
| CVE-2026-2857 |
D-Link DWR-M960 Port Forwarding Configuration Endpoint formPortFw sub_423E00 stack-based overflow
|
HIGH | 8.7 | 2026-02-20 |
D-Link DWR-M960
dlink dwr-m960_firmware
|
CVE NVD | |
| CVE-2026-25896 |
fast-xml-parser has an entity encoding bypass via regex injection in DOCTYPE entity names
|
CRITICAL | 9.3 | 2026-02-20 |
NaturalIntelligence fast-xml-parser
naturalintelligence fast-xml-parser
|
CVE NVD | |
| CVE-2026-24892 |
openITCOCKPIT has Unsafe Deserialization in openITCOCKPIT Changelog Handling
|
HIGH | 7.5 | 2026-02-20 |
openITCOCKPIT openITCOCKPIT
it-novum openitcockpit
|
CVE NVD | |
| CVE-2026-27190 |
Deno has a Command Injection via Incomplete shell metacharacter blocklist in node:child_process
|
HIGH | 8.1 | 2026-02-20 |
denoland deno
deno deno
|
CVE NVD | |
| CVE-2026-2856 |
D-Link DWR-M960 Filter Configuration Endpoint formFilter sub_424AFC stack-based overflow
|
HIGH | 8.7 | 2026-02-20 |
D-Link DWR-M960
dlink dwr-m960_firmware
|
CVE NVD |