CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

242 matches found

pandoc security update

An update is available for pandoc. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Pandoc is a markdown/markup conversion tool. The version of pandoc in Rocky...

9.8CVSS7.3AI score0.04192EPSS

Exploits3

Snyk•added 2026/02/04 9:46 a.m.•3 views

Malicious Package

Overview remark-gfm-v4 is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score

Exploits0References2

OSSF Malicious Packages•added 2026/02/04 9:46 a.m.•9 views

Malicious code in remark-gfm-v4 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3eb645996981f1453b9049a0d97b6f0b6c7ff4cadc29d4ccddd7f48cd65cbb21 The package remark-gfm-v4 was found to contain malicious code. Source: ghsa-malware 10eecf76003bd92639bb172deaa68448c44a5899c772fdcce927765011d807eb...

5.4AI score

Exploits0References1

OSV•added 2026/02/04 9:46 a.m.•4 views

MAL-2026-737 Malicious code in remark-gfm-v4 (npm)

5.5AI score

Exploits0References1

Tenable Nessus•added 2026/01/20 12:0 a.m.•6 views

MiracleLinux 8 : pandoc-2.0.6-6.el8 (AXSA:2022-3835:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3835:01 advisory. cmark-gfm: possible RCE due to integer overflow CVE-2022-24724 Tenable has extracted the preceding description block directly from the MiracleLinux security...

9.8CVSS5.7AI score0.04192EPSS

Exploits3References2

OSV•added 2025/12/27 8:58 a.m.•4 views

HSEC-2025-0007 cmark-gfm: resource exhaustion due to quadratic complexity in parser

cmark-gfm: resource exhaustion due to quadratic complexity in parser cmark-gfm is GitHub's fork of cmark, a CommonMark parsing and rendering library and program in C. A polynomial time complexity issue in cmark-gfm may lead to unbounded resource exhaustion and subsequent denial of service, due to...

7.5CVSS6.7AI score0.01027EPSS

Exploits2References4

Tenable Nessus•added 2025/11/20 12:0 a.m.•22 views

TencentOS Server 4: python-cmarkgfm (TSSA-2025:0086)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0086 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.5CVSS7.2AI score0.00591EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•5 views

EUVD-2018-9715

Malware in sbrugna...

5.3CVSS5.6AI score0.01133EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-26630