Lucene search
K

19980 matches found

vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.7 views

@antv/f-charts (=0.0.0), @antv/f-lottie (>=0.0.1 <=1.10.0) +14 more potentially affected by unknown CVE via @antv/f-engine (>=1.0.10 <=1.10.0)

@antv/f-engine NPM version =1.0.10, =0.0.1, =0.0.1, =1.0.1, =0.0.1, =1.0.1, =5.0.27, =5.0.0-alpha.1, =5.0.0-alpha.1, =5.0.1, =0.0.1, =0.0.1-alpha.1, =1.0.3 and more Source cves: unknown CVE Source advisory: SNYK:JS-ANTVFENGINE-16754378...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.6 views

@antv/f-engine (=0.0.2), @antv/f-my (=0.0.2) +3 more potentially affected by unknown CVE via @antv/g-css-layout-api (=1.0.38)

@antv/g-css-layout-api NPM version =1.0.38 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g-css-layout-api and may be impacted: - @antv/f-engine =0.0.2 - @antv/f-my =0.0.2 - @antv/f-react =0.0.2 - @antv/f2-wx =0.0.2 - @antv/g =5.8.9, =5.16.33...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.8 views

@antv/f-charts (=0.0.0), @antv/f2 (>=5.0.27 <=5.14.0) +7 more potentially affected by unknown CVE via @antv/f-lottie (=1.10.0)

@antv/f-lottie NPM version =1.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f-lottie and may be impacted: - @antv/f-charts =0.0.0 - @antv/f2 =5.0.27, =5.0.0-alpha.1, =5.0.0-alpha.1, =5.0.1, =0.1.6, =0.9.5 Source cves: unknown CVE Source...

5.5AI score
Exploits0
Snyk
Snyk
added 2026/05/18 9:0 p.m.10 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that conceals a credential-stealing payload and worm propagation logic. A malicious actor associated with the "TeamPCP" or "Mini Shai-Hulud" campaign compromised a maintainer's access token; this allowed the...

9.8CVSS5.9AI score
Exploits0References3
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.6 views

@antv/f2-react (>=5.0.19 <=5.14.0), @antv/f2-site (=5.0.0-alpha.1) potentially affected by unknown CVE via @antv/f-react (=1.10.0)

@antv/f-react NPM version =1.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f-react and may be impacted: - @antv/f2-react =5.0.19, =5.14.0 - @antv/f2-site =5.0.0-alpha.1 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVFREACT-16755126...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.5 views

@antv/f2-react (>=5.0.19 <=5.14.0), @antv/f2-site (=5.0.0-alpha.1) potentially affected by unknown CVE via @antv/f-react (=1.10.0)

@antv/f-react NPM version =1.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f-react and may be impacted: - @antv/f2-react =5.0.19, =5.14.0 - @antv/f2-site =5.0.0-alpha.1 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVFREACT-16754957...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.6 views

@antv/f-engine (=0.0.2), @antv/f-my (=0.0.2) +3 more potentially affected by unknown CVE via @antv/g-css-typed-om-api (=1.0.38)

@antv/g-css-typed-om-api NPM version =1.0.38 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g-css-typed-om-api and may be impacted: - @antv/f-engine =0.0.2 - @antv/f-my =0.0.2 - @antv/f-react =0.0.2 - @antv/f2-wx =0.0.2 - @antv/g =5.8.9, =5.16.3...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.6 views

@antv/f-charts (=0.0.0), @antv/f2 (>=5.0.27 <=5.14.0) +7 more potentially affected by unknown CVE via @antv/f-lottie (=1.10.0)

@antv/f-lottie NPM version =1.10.0 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/f-lottie and may be impacted: - @antv/f-charts =0.0.0 - @antv/f2 =5.0.27, =5.0.0-alpha.1, =5.0.0-alpha.1, =5.0.1, =0.1.6, =0.9.5 Source cves: unknown CVE Source...

5.5AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/05/18 9:0 p.m.5 views

@antv/f-engine (=0.0.2), @antv/f-my (=0.0.2) +3 more potentially affected by unknown CVE via @antv/g-css-layout-api (=1.0.38)

@antv/g-css-layout-api NPM version =1.0.38 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/g-css-layout-api and may be impacted: - @antv/f-engine =0.0.2 - @antv/f-my =0.0.2 - @antv/f-react =0.0.2 - @antv/f2-wx =0.0.2 - @antv/g =5.8.9, =5.16.33...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/14 6:31 p.m.11 views

CVE-2026-41256

A flaw was found in jq, a command line JSON processor. Top-level jq programs loaded from a file using the -f flag are truncated at the first embedded NUL byte. This issue allows an attacker who can supply a crafted filter file to prematurely truncate the program, potentially bypassing filtering...

5.5CVSS5.7AI score0.00158EPSS
Exploits1References4
Circl
Circl
added 2026/05/14 6:0 p.m.8 views

CVE-2026-41956

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities20260515...

8.7CVSS5.3AI score0.00263EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/13 8:1 a.m.9 views

jq: Embedded NUL truncates top-level jq programs loaded with -f

...

5.5CVSS5.8AI score0.00158EPSS
Exploits1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform developed by F5 Technologies in the United States. It integrates functions such as network traffic management, application security management, and load balancing. F5 BIG-IP has a security vulnerability that stems from allowing authenticated attackers...

6.9CVSS5.8AI score0.0029EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.13 views

F5 BIG-IP和F5 BIG-IQ 命令注入漏洞

F5 BIG-IP and F5 BIG-IQ are both products from the American company F5. F5 BIG-IP is an application delivery platform that integrates functions such as network traffic management, application security management, and load balancing. F5 BIG-IQ is a software-based cloud management solution. This...

8.7CVSS5.8AI score0.00235EPSS
Exploits0References1
OSV
OSV
added 2026/05/11 1:32 p.m.5 views

MINI-4VHF-RW9F-WQM6

Bulletin has no description...

5.3CVSS5.7AI score0.00179EPSS
Exploits0
OSV
OSV
added 2026/05/11 9:32 a.m.8 views

MINI-FGF7-MVVX-W7C3

Bulletin has no description...

7.5CVSS5.7AI score0.00588EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.11 views

jq 安全漏洞

jq is a lightweight and flexible command-line JSON processor developed by jqlang. Jq versions 1.8.1 and earlier have security vulnerabilities. These vulnerabilities arise from the top-level jq program loaded via the -f parameter being truncated at the first NUL byte. This can result in the...

5.5CVSS5.9AI score0.00158EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/05/08 11:25 p.m.9 views

CVE-2026-43424

A flaw was found in the Linux kernel's USB gadget subsystem ftcm. A malicious or misconfigured USB host can exploit a race condition by sending specific Bulk-Only Transport BOT commands. This can trigger a NULL pointer dereference, leading to a kernel panic and a local Denial of Service DoS on th...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/08 7:33 p.m.14 views

CVE-2026-43343

A flaw was found in the usb: gadget: fsubset module of the Linux kernel. The gethfree function fails to decrement a reference count that was incremented by gethalloc. This unbalanced reference count can lead to a resource leak, preventing the configuration of attributes through the configfs...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.6 views

CVE-2026-43423

Removed by vendor...

5.2AI score0.00091EPSS
Exploits0
Rows per page
Query Builder