Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2026/02/28 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-27148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat Enterprise Linux - storybook: Storybook: Remote Code Execution via WebSocket Hijacking CVE-2026-27148 Note that Nessus relies on the presence of the...

9.6CVSS6.1AI score0.00542EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/02/26 3:16 p.m.10 views

@boxcustodia/library (>=1.5.1-canary.0 <=1.5.1-canary.2), @buttery/cli (>=0.4.2 <=0.4.11) +24 more potentially affected by CVE-2026-27148 via storybook (>=8.1.1 <=8.6.16)

storybook NPM version =8.1.1, =1.5.1-canary.0, =0.4.2, =0.1.3, =1.0.0-canary.12734, =0.11.4, =0.12.4, =0.0.1-3d99df6-20260330104634, =7.33.6-qa-airteam-7.35.1.0, =0.0.3, =2.0.0-beta.1, =0.2.36, =0.1.51, =0.1.3, =8.3.3, =8.2.0, =8.6.16 and more Source cves: CVE-2026-27148 Source advisory:...

9.6CVSS5.7AI score0.00542EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/02/26 3:16 p.m.8 views

@1771technologies/oneplay (>=0.0.1 <=0.0.6), @cedarjs/cli-storybook-vite (>=1.0.0-canary.12742 <=1.0.0-canary.12784) +15 more potentially affected by CVE-2026-27148 via storybook (>=8.7.0-alpha.0 <=9.1.18)

storybook NPM version =8.7.0-alpha.0, =0.0.1, =1.0.0-canary.12742, =2.0.0-beta.3, =0.0.2-alpha.0, =1.0.0, =0.1.80, =9.0.0-alpha.0, =8.7.0-alpha.0, =9.0.0, =9.0.0-alpha.0, =1.2.1, =0.0.75-beta.11, =1.1.3-beta.3 and more Source cves: CVE-2026-27148 Source advisory: OSV:GHSA-MJF5-7G4M-GX5W...

9.6CVSS5.7AI score0.00542EPSS
Exploits0
Circl
Circl
added 2026/02/26 1:19 a.m.11 views

CVE-2026-27148

creationtimestamp| type| source ---|---|--- 2026-02-26 01:19:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mfpzoxhw5t2e 2026-02-26 19:10:19+00:00| seen| https://gist.github.com/alon710/09463d4ff783b0368066b3726e657169...

9.6CVSS4.8AI score0.00542EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2026/02/26 12:17 a.m.11 views

@1771technologies/oneplay (>=0.0.1 <=0.0.6), @cedarjs/cli-storybook-vite (>=1.0.0-canary.12742 <=1.0.0-canary.12784) +15 more potentially affected by CVE-2026-27148 via storybook (>=9.0.0-alpha.0 <=9.1.18)

storybook NPM version =9.0.0-alpha.0, =0.0.1, =1.0.0-canary.12742, =2.0.0-beta.3, =0.0.2-alpha.0, =1.0.0, =0.1.80, =9.0.0-alpha.0, =9.0.0, =9.0.0, =9.0.0-alpha.0, =1.2.1, =0.0.75-beta.11, =1.1.3-beta.3 and more Source cves: CVE-2026-27148 Source advisory: SNYK:JS-STORYBOOK-15353401...

9.6CVSS5.7AI score0.00542EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/02/26 12:17 a.m.10 views

@asherng/storybook (>=0.0.18 <=0.1.14), @bluefin-exchange/starship-v2 (>=1.1.1 <=1.1.16) +32 more potentially affected by CVE-2026-27148 via storybook (>=7.0.12 <=7.6.20)

storybook NPM version =7.0.12, =0.0.18, =1.1.1, =0.0.1, =0.0.4, =1.2.108, =3.50.0-next.2, =9.0.0-next.4, =1.0.967, =0.0.1, =1.0.0, =1.2.2, =0.0.1, =0.0.1, =7.6.4-next.32, =6.0.0-canary.234, =6.0.0-canary.318 and more Source cves: CVE-2026-27148 Source advisory: SNYK:JS-STORYBOOK-15353401...

9.6CVSS5.8AI score0.00542EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/02/25 9:46 p.m.3 views

CVE-2026-27148

Storybook is a frontend workshop for building user interface components and pages in isolation. Prior to versions 7.6.23, 8.6.17, 9.1.19, and 10.2.10, the WebSocket functionality in Storybook's dev server, used to create and update stories, is vulnerable to WebSocket hijacking. This vulnerability...

9.6CVSS5.8AI score0.00542EPSS
Exploits0References10Affected Software1
Rows per page
Query Builder