Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

IBM Security Bulletins
IBM Security Bulletinsadded 2026/06/03 7:21 a.m.10 views

Security Bulletin: IBM Maximo Application Suite uses once-2.0.0.tgz which is vulnerable to CVE-2026-3449

Summary IBM Maximo Application Suite uses once-2.0.0.tgz which is vulnerable to CVE-2026-3449. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-3449 DESCRIPTION: Versions of the package @tootallnate/once before 3.0.1 are vulnerab...

4.8CVSS5.8AI score0.00018EPSS
Exploits0Affected Software1
Wolfi
Wolfiadded 2026/03/10 7:48 p.m.2 views

CVE-2026-3449 vulnerabilities

Vulnerabilities for packages: code-server, argo-workflows, langfuse, opensearch-dashboards, prism, vitess, kubeflow-pipelines, tileserver-gl...

4.8CVSS5.4AI score0.00018EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-3449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat Enterprise Linux - @tootallnate/once: @tootallnate/once: Denial of Service due to incorrect control flow scoping with AbortSignal CVE-2026-3449 Note tha...

4.8CVSS5.8AI score0.00018EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2026/03/03 9:36 p.m.4 views

CVE-2026-3449

A flaw was found in @tootallnate/once. When the AbortSignal option is used, a Promise can remain in a permanently pending state after the signal is aborted. This incorrect control flow scoping can lead to stalled requests, blocked workers, or degraded application availability. Mitigation Mitigati...

4.8CVSS5.6AI score0.00018EPSS
Exploits0References6
vulnersOsv
vulnersOsvadded 2026/03/03 6:31 a.m.1 views

-fides-amor-et-lux (=1.0.0), -react-file-list-components (=1.1.1) +47239 more potentially affected by CVE-2026-3449 via @tootallnate/once (>=1.1.2 <=2.0.0)

@tootallnate/once NPM version =1.1.2, =0.1.0, =0.1.0, =0.1.6 - 0beny1s =1.1.6 - 0scarclassa =1.0.1 - 0scarclassb =1.0.1 - 0scarclassc =1.0.1 - 0scarclassd =1.0.1 - 0scarclasse =1.0.1 - 0scarclassf =1.0.1 - 0scarclassg =1.0.1 - 0scarclassh =1.0.1 - 0scarclassi =1.0.1 - 0scarclassj =1.0.1 and more...

4.8CVSS5.4AI score0.00018EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/02/02 10:3 p.m.6 views

@activepieces/piece-snowflake (>=0.2.1 <=0.3.0), @bhanu17/nextjs-starter (>=1.2.0 <=2.2.14) +92 more potentially affected by CVE-2026-3449 via @tootallnate/once (=2.0.0)

@tootallnate/once NPM version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on @tootallnate/once and may be impacted: - @activepieces/piece-snowflake =0.2.1, =1.2.0, =0.0.18, =0.2.0, =0.0.6, =0.0.1, =50.32.5-depup.0, =0.6.0, =0.4.2, =0.1.10,...

4.8CVSS5.4AI score0.00018EPSS
Exploits0
Rows per page
Query Builder