Mscve - Page 50 of Mscve Vulnerabilities List

A flaw in Node.js URL processing causes an assertion failure in native code when `url.format()` is called with a malformed internationalized domain name (IDN) containing invalid characters, crashing the Node.js process.

...

5.7CVSS6.7AI score0.00325EPSS

Exploits0

Microsoft CVE•added 2026/03/31 8:1 a.m.•2 views

Libssh: improper sanitation of paths received from scp servers

...

6.3CVSS5.8AI score0.00408EPSS

Exploits0

Microsoft CVE•added 2026/03/31 8:1 a.m.•5 views

Libssh: buffer underflow in ssh_get_hexa() on invalid input

...

8.2CVSS5.8AI score0.00582EPSS

Exploits0

Microsoft CVE•added 2026/03/31 8:1 a.m.•3 views

Libssh: libssh: denial of service via inefficient regular expression processing

...

5.5CVSS5.8AI score0.00223EPSS

Exploits0

Microsoft CVE•added 2026/03/31 8:1 a.m.•3 views

Libssh: libssh: denial of service via improper configuration file handling

...

3.3CVSS5.8AI score0.00158EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:3 a.m.•6 views

Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching

...

5.3CVSS5.8AI score0.0041EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:3 a.m.•8 views

Picomatch has a ReDoS vulnerability via extglob quantifiers

...

7.5CVSS5.8AI score0.00412EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:2 a.m.•3 views

Directory Traversal vulnerability in the extractFile method of org.codehaus.plexus.util.Expand in plexus-utils before 6d780b3378829318ba5c2d29547e0012d5b29642. This allows an attacker to execute arbitrary code

...

8.8CVSS5.8AI score0.00664EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:2 a.m.•6 views

Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function

...

5.5CVSS5.8AI score0.00182EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:2 a.m.•3 views

LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64

...

7.6CVSS5.8AI score0.00585EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:2 a.m.•4 views

LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`

...

7.5CVSS5.8AI score0.01052EPSS

Exploits1

Microsoft CVE•added 2026/03/29 8:2 a.m.•4 views

A stack use-after-return flaw in SIG(0) handling code may enable ACL bypass

...

5.4CVSS5.8AI score0.0036EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:1 a.m.•4 views

Authenticated query containing a TKEY record may cause named to terminate unexpectedly

...

6.5CVSS5.8AI score0.00576EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:1 a.m.•5 views

Memory leak in code preparing DNSSEC proofs of non-existence

...

7.5CVSS5.8AI score0.00615EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:1 a.m.•5 views

python-ecdsa: Denial of Service via improper DER length validation in crafted private keys

...

5.3CVSS5.9AI score0.00476EPSS

Exploits1

Microsoft CVE•added 2026/03/29 8:1 a.m.•3 views

Flannel vulnerable to cross-node remote code execution via extension backend BackendData injection

...

8.8CVSS5.8AI score0.02709EPSS

Exploits0

Microsoft CVE•added 2026/03/29 8:1 a.m.•5 views

Excessive NSEC3 iterations cause high CPU load during insecure delegation validation

...

7.5CVSS5.8AI score0.00824EPSS

Exploits0

Microsoft CVE•added 2026/03/28 8:1 a.m.•6 views

etcd: Authorization bypasses in multiple APIs

...

8.8CVSS5.8AI score0.00249EPSS

Exploits0

Microsoft CVE•added 2026/03/28 8:1 a.m.•8 views

etcd: Nested etcd transactions bypass RBAC authorization checks

...

6.5CVSS5.8AI score0.0021EPSS

Exploits0

Microsoft CVE•added 2026/03/28 1:2 a.m.•5 views

Chromium: CVE-2026-4442 Heap buffer overflow in CSS