Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
VulnersosvRecent
RecentMost viewed

25077 matches found

vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.6 views

org.webjars.npm:bazel__typescript (=1.7.0), org.webjars.npm:cesium (>=1.96.0 <=1.137.0) +13 more potentially affected by CVE-2026-44290 via org.webjars.npm:protobufjs (>=6.11.3 <=8.0.0)

org.webjars.npm:protobufjs MAVEN version =6.11.3, =1.96.0, =1.0.0, =1.0.0, =10.13.0, =4.7.0, =0.3.35, =1.6.1, =0.5.2, =0.7.15 - org.webjars.npm:tiktok-live-connector =1.0.2 Source cves: CVE-2026-44290 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-16643420...

7.5CVSS5.8AI score0.00373EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.6 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44290 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44290 Source advisory: SNYK:JS-PROTOBUFJS-16643419...

7.5CVSS5.8AI score0.00373EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.8 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44290 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44290 Source advisory: OSV:GHSA-JVWF-75H9-CWGG...

7.5CVSS5.8AI score0.00373EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.9 views

org.webjars.npm:bazel__typescript (=1.7.0), org.webjars.npm:cesium (>=1.96.0 <=1.137.0) +13 more potentially affected by CVE-2026-44289 via org.webjars.npm:protobufjs (>=6.11.3 <=8.0.0)

org.webjars.npm:protobufjs MAVEN version =6.11.3, =1.96.0, =1.0.0, =1.0.0, =10.13.0, =4.7.0, =0.3.35, =1.6.1, =0.5.2, =0.7.15 - org.webjars.npm:tiktok-live-connector =1.0.2 Source cves: CVE-2026-44289 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-16643267...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.5 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44289 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44289 Source advisory: OSV:GHSA-685M-2W69-288Q...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.8 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44289 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44289 Source advisory: SNYK:JS-PROTOBUFJS-16643262...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.6 views

10minions-engine (>=0.0.1 <=0.0.4), @1amageek/document-propagator (>=0.10.1 <=1.0.0) +1535 more potentially affected by CVE-2026-44289 via protobufjs-cli (>=1.0.0 <=1.1.3)

protobufjs-cli NPM version =1.0.0, =0.0.1, =0.10.1, =1.1.0, =0.4.0, =1.22.0, =6.2.36, =1.0.0, =1.8.0, =0.0.0-beta.0, =1.0.0, =1.0.1, =3.1.0 and more Source cves: CVE-2026-44289 Source advisory: SNYK:JS-PROTOBUFJSCLI-16643263...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.7 views

@forwardimpact/libcodegen (>=0.1.47 <=0.1.52) potentially affected by CVE-2026-44289 via protobufjs-cli (=2.0.1)

protobufjs-cli NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on protobufjs-cli and may be impacted: - @forwardimpact/libcodegen =0.1.47, =0.1.52 Source cves: CVE-2026-44289 Source advisory: SNYK:JS-PROTOBUFJSCLI-16643263...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:1 p.m.7 views

10minions-engine (>=0.0.1 <=0.0.4), @0xr404/lol404 (>=1.1.0 <=1.1.6) +3362 more potentially affected by CVE-2026-44289 via protobufjs (>=7.0.0 <=7.5.5)

protobufjs NPM version =7.0.0, =0.0.1, =1.1.0, =1.0.1-beta.0, =0.0.2-beta.0, =1.0.0, =1.5.10, =0.10.1, =1.1.0, =6.0.0, =2.0.2, =3.3.2 and more Source cves: CVE-2026-44289 Source advisory: SNYK:JS-PROTOBUFJS-16643262...

7.5CVSS5.8AI score0.00403EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:0 p.m.7 views

node-ral (=0.17.0), protobufjs (=6.1.0) +1 more potentially affected by CVE-2026-44288 via @protobufjs/utf8 (>=1.0.1 <=1.1.0)

@protobufjs/utf8 NPM version =1.0.1, =1.1.0 is affected by a known vulnerability. The following packages have a transitive dependency on @protobufjs/utf8 and may be impacted: - node-ral =0.17.0 - protobufjs =6.1.0 - protobufjs-mod =6.8.2 Source cves: CVE-2026-44288 Source advisory:...

5.3CVSS5.8AI score0.00301EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:0 p.m.6 views

org.webjars.npm:bazel__typescript (=1.7.0), org.webjars.npm:cesium (>=1.96.0 <=1.137.0) +13 more potentially affected by CVE-2026-44288 via org.webjars.npm:protobufjs (>=6.11.3 <=8.0.0)

org.webjars.npm:protobufjs MAVEN version =6.11.3, =1.96.0, =1.0.0, =1.0.0, =10.13.0, =4.7.0, =0.3.35, =1.6.1, =0.5.2, =0.7.15 - org.webjars.npm:tiktok-live-connector =1.0.2 Source cves: CVE-2026-44288 Source advisory: SNYK:JAVA-ORGWEBJARSNPM-16643235...

5.3CVSS5.8AI score0.00301EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:0 p.m.9 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44288 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44288 Source advisory: SNYK:JS-PROTOBUFJS-16643234...

5.3CVSS5.4AI score0.00301EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:0 p.m.6 views

10minions-engine (>=0.0.1 <=0.0.4), @0xr404/lol404 (>=1.1.0 <=1.1.6) +3362 more potentially affected by CVE-2026-44288 via protobufjs (>=7.0.0 <=7.5.5)

protobufjs NPM version =7.0.0, =0.0.1, =1.1.0, =1.0.1-beta.0, =0.0.2-beta.0, =1.0.0, =1.5.10, =0.10.1, =1.1.0, =6.0.0, =2.0.2, =3.3.2 and more Source cves: CVE-2026-44288 Source advisory: SNYK:JS-PROTOBUFJS-16643234...

5.3CVSS5.4AI score0.00301EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 3:0 p.m.7 views

@0xchain/telemetry (>=1.1.0-beta.8 <=1.1.0-beta.18), @20206205tech/nestjs-common (>=0.8.0 <=0.11.3) +961 more potentially affected by CVE-2026-44288 via protobufjs (>=8.0.0 <=8.0.1)

protobufjs NPM version =8.0.0, =1.1.0-beta.8, =0.8.0, =1.0.0, =1.1.4, =0.3.1, =0.3.1, =0.7.1, =0.7.0, =0.8.0 and more Source cves: CVE-2026-44288 Source advisory: OSV:GHSA-Q6X5-8V7M-XCRF...

5.3CVSS5.4AI score0.00301EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 2:59 p.m.8 views

@forwardimpact/libcodegen (>=0.1.47 <=0.1.52) potentially affected by CVE-2026-42290 via protobufjs-cli (=2.0.1)

protobufjs-cli NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on protobufjs-cli and may be impacted: - @forwardimpact/libcodegen =0.1.47, =0.1.52 Source cves: CVE-2026-42290 Source advisory: OSV:GHSA-F84P-CVGM-XGJJ...

7.8CVSS5.4AI score0.00132EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 2:59 p.m.6 views

@forwardimpact/libcodegen (>=0.1.47 <=0.1.52) potentially affected by CVE-2026-42290 via protobufjs-cli (=2.0.1)

protobufjs-cli NPM version =2.0.1 is affected by a known vulnerability. The following packages have a transitive dependency on protobufjs-cli and may be impacted: - @forwardimpact/libcodegen =0.1.47, =0.1.52 Source cves: CVE-2026-42290 Source advisory: SNYK:JS-PROTOBUFJSCLI-16643433...

7.8CVSS5.4AI score0.00132EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 2:59 p.m.7 views

10minions-engine (>=0.0.1 <=0.0.4), @1amageek/document-propagator (>=0.10.1 <=1.0.0) +1535 more potentially affected by CVE-2026-42290 via protobufjs-cli (>=1.0.0 <=1.1.3)

protobufjs-cli NPM version =1.0.0, =0.0.1, =0.10.1, =1.1.0, =0.4.0, =1.22.0, =6.2.36, =1.0.0, =1.8.0, =0.0.0-beta.0, =1.0.0, =1.0.1, =3.1.0 and more Source cves: CVE-2026-42290 Source advisory: SNYK:JS-PROTOBUFJSCLI-16643433...

7.8CVSS5.4AI score0.00132EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.9 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +288 more potentially affected by CVE-2026-41713 via org.springframework.ai:spring-ai-client-chat (>=1.1.0-M1 <=1.1.5)

org.springframework.ai:spring-ai-client-chat MAVEN version =1.1.0-M1, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =0.6.0, =1.1.0, =1.1.0, =1.1.0, =1.1.4 and more Source cves: CVE-2026-41713 Source advisory: OSV:GHSA-5852-PHMH-8FHR...

8.2CVSS5.4AI score0.00218EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.6 views

ai.driftkit:driftkit-clients-spring-ai (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-clients-spring-ai-starter (>=0.6.0 <=0.8.7) +328 more potentially affected by CVE-2026-41713 via org.springframework.ai:spring-ai-client-chat (>=1.0.0-M7 <=1.0.6)

org.springframework.ai:spring-ai-client-chat MAVEN version =1.0.0-M7, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.7.0, =0.6.0, =0.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.24, =1.0.27, =1.0.28 - ai.intelliswarm:swarmai-rag =1.0.28 and more Source cves: CVE-2026-41713 Source advisory:...

8.2CVSS5.4AI score0.00218EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.4 views

com.alibaba.cloud.ai:spring-ai-alibaba-autoconfigure-model-chat-memory-mem0 (=2.0.0-M1.1), com.alibaba.cloud.ai:spring-ai-alibaba-model-chat-memory-repository-mem0 (=2.0.0-M1.1) +2 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-advisors-vector-store (>=2.0.0-M1 <=2.0.0-M4)

org.springframework.ai:spring-ai-advisors-vector-store MAVEN version =2.0.0-M1, =0.1.0, =0.1.1 Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.5 views

ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +123 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-client-chat (>=2.0.0-M1 <=2.0.0-M5)

org.springframework.ai:spring-ai-client-chat MAVEN version =2.0.0-M1, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.8 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +288 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-client-chat (>=1.1.0-M1 <=1.1.5)

org.springframework.ai:spring-ai-client-chat MAVEN version =1.1.0-M1, =0.1.0, =0.1.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =0.6.0, =1.1.0, =1.1.0, =1.1.0, =1.1.4 and more Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.14 views

com.alibaba.cloud.ai:spring-ai-alibaba-autoconfigure-memory-long (>=1.1.0.0 <=1.1.2.3), com.alibaba.cloud.ai:spring-ai-alibaba-starter-memory-long (>=1.1.0.0 <=1.1.2.3) +8 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-advisors-vector-store (>=1.1.0-M3 <=1.1.5)

org.springframework.ai:spring-ai-advisors-vector-store MAVEN version =1.1.0-M3, =1.1.0.0, =1.1.0.0, =1.1.0.0, =0.0.6, =1.1.19, =1.1.19, =1.1.19, =4.17.0, =4.17.0, =4.20.0 - org.vrspace:server =0.8.7 Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.6 views

ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess (>=0.1.0 <=0.2.0), ai.aletyx.kogito:aletyx-kogito-ai-addons-springboot-adhoc-subprocess-storage-jpa (>=0.1.0 <=0.2.0) +518 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-model (>=1.1.0-M1 <=1.1.5)

org.springframework.ai:spring-ai-model MAVEN version =1.1.0-M1, =0.1.0, =0.1.0, =0.8.0, =0.7.0, =0.7.0, =0.8.0, =1.0.0, =1.0.0, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.4, =1.2.6 and more Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.6 views

ai.driftkit:driftkit-clients-spring-ai (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-clients-spring-ai-starter (>=0.6.0 <=0.8.7) +328 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-client-chat (>=1.0.0-M7 <=1.0.6)

org.springframework.ai:spring-ai-client-chat MAVEN version =1.0.0-M7, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.7.0, =0.6.0, =0.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.24, =1.0.27, =1.0.28 - ai.intelliswarm:swarmai-rag =1.0.28 and more Source cves: CVE-2026-41712 Source advisory:...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.11 views

ai.driftkit:driftkit-clients-spring-ai (>=0.6.0 <=0.8.7), ai.driftkit:driftkit-clients-spring-ai-starter (>=0.6.0 <=0.8.7) +468 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-model (>=1.0.0-M7 <=1.0.6)

org.springframework.ai:spring-ai-model MAVEN version =1.0.0-M7, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.6.0, =0.7.0, =0.6.0, =0.6.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.24, =1.0.27, =1.0.28 - ai.intelliswarm:swarmai-rag =1.0.28 and more Source cves: CVE-2026-41712 Source advisory:...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.7 views

com.alibaba.cloud.ai.autoconfigure.memory.long:spring-ai-alibaba-autoconfigure-memory-long (=1.0.0.4), com.alibaba.cloud.ai:spring-ai-alibaba-starter-memory-long (=1.0.0.4) +3 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-advisors-vector-store (>=1.0.0 <=1.0.1)

org.springframework.ai:spring-ai-advisors-vector-store MAVEN version =1.0.0, =1.0.0.1, =1.0.0.3-20260305-cve - com.alibaba.cloud.ai:spring-ai-alibaba-studio-client =1.0.0.4 Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:32 p.m.6 views

ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0), ai.new-wave:spring-agent-core (>=0.1.0 <=0.3.0) +369 more potentially affected by CVE-2026-41712 via org.springframework.ai:spring-ai-model (>=2.0.0-M1 <=2.0.0-M5)

org.springframework.ai:spring-ai-model MAVEN version =2.0.0-M1, =0.1.0, =0.1.0, =1.21.9, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.1, =0.0.2 and more Source cves: CVE-2026-41712 Source advisory: OSV:GHSA-Q62F-H9X2-GCQC...

7.5CVSS5.4AI score0.0026EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 11:24 a.m.4 views

@aaa-backend-stack/graphql-rest-bindings (>=1.16.0 <=1.16.9), @aaa-backend-stack/image-service (>=1.16.0 <=1.16.9) +589 more potentially affected by CVE-2026-8162 via multiparty (>=4.0.0 <=4.2.3)

multiparty NPM version =4.0.0, =1.16.0, =1.16.0, =1.16.0, =0.1.155, =1.0.0, =1.1.0, =0.0.1, =0.0.1, =0.1.0, =0.58.14, =0.1.0, =1.0.0, =0.1.1, =0.1.3 and more Source cves: CVE-2026-8162 Source advisory: SNYK:JS-MULTIPARTY-16787378...

7.5CVSS5.4AI score0.00279EPSS
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 9:19 a.m.7 views

@4399ywkf/core (>=5.0.0 <=5.0.32), @all-star/base (>=0.17.0 <=0.18.2) +327 more potentially affected by CVE-2025-30359 +1 more via webpack-dev-server (>=5.0.0 <=5.2.3)

webpack-dev-server NPM version =5.0.0, =5.0.0, =0.17.0, =0.17.0, =0.17.0, =8.0.0-next.2, =20.3.1, =20.3.0, =18.0.0, =18.0.0, =18.2.6-RC-1, =18.0.0, =18.0.0, =5.0.0, =1.0.5-beta.4, =1.0.1, =1.0.17 and more Source cves: CVE-2025-30359, CVE-2026-6402 Source advisory: SNYK:JS-WEBPACKDEVSERVER-1664206...

6.5CVSS5.4AI score0.00427EPSS
Exploits1
vulnersOsv
vulnersOsvadded 2026/05/12 12:42 a.m.4 views

@agentionai/agents (>=0.11.0 <=0.12.0-beta), @andreafspeziale/nestjs-search (>=2.0.0 <=2.0.1) +63 more potentially affected by unknown CVE via @opensearch-project/opensearch (=3.6.0)

@opensearch-project/opensearch NPM version =3.6.0 is affected by a known vulnerability. The following packages have a transitive dependency on @opensearch-project/opensearch and may be impacted: - @agentionai/agents =0.11.0, =2.0.0, =1.8.0, =3.0.17, =1.0.84, =0.1.0, =1.0.0, =1.0.1, =0.1.0, =0.1.0...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/12 12:12 a.m.5 views

@tanstack/react-start (=1.166.4), @tanstack/react-start-client (=1.166.4) +11 more potentially affected by CVE-2026-45321 via @tanstack/start-storage-context (=1.166.4)

@tanstack/start-storage-context NPM version =1.166.4 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/start-storage-context and may be impacted: - @tanstack/react-start =1.166.4 - @tanstack/react-start-client =1.166.4 -...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/12 12:12 a.m.4 views

@tanstack/react-start (>=1.167.5 <=1.167.6), @tanstack/router-vite-plugin (=1.166.19) +3 more potentially affected by CVE-2026-45321 via @tanstack/router-plugin (=1.167.4)

@tanstack/router-plugin NPM version =1.167.4 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/router-plugin and may be impacted: - @tanstack/react-start =1.167.5, =1.167.5, =1.167.8, =1.167.5, =1.167.6 Source cves: CVE-2026-45321 Source...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/12 12:12 a.m.5 views

@tanstack/react-start (=1.167.25) potentially affected by CVE-2026-45321 via @tanstack/react-start-rsc (=0.0.5)

@tanstack/react-start-rsc NPM version =0.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/react-start-rsc and may be impacted: - @tanstack/react-start =1.167.25 Source cves: CVE-2026-45321 Source advisory: OSV:GHSA-G7CV-RXG3-HMPX...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/12 12:12 a.m.4 views

@tanstack/vue-start (=1.166.5) potentially affected by CVE-2026-45321 via @tanstack/vue-start-client (=1.166.5)

@tanstack/vue-start-client NPM version =1.166.5 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/vue-start-client and may be impacted: - @tanstack/vue-start =1.166.5 Source cves: CVE-2026-45321 Source advisory: OSV:GHSA-G7CV-RXG3-HMPX...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/12 12:12 a.m.5 views

@tanstack/router-devtools (=1.166.2) potentially affected by CVE-2026-45321 via @tanstack/react-router-devtools (=1.166.2)

@tanstack/react-router-devtools NPM version =1.166.2 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/react-router-devtools and may be impacted: - @tanstack/router-devtools =1.166.2 Source cves: CVE-2026-45321 Source advisory:...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/12 12:1 a.m.4 views

@tanstack/react-start (=1.166.4), @tanstack/react-start-client (=1.166.4) +11 more potentially affected by unknown CVE via @tanstack/start-storage-context (=1.166.4)

@tanstack/start-storage-context NPM version =1.166.4 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/start-storage-context and may be impacted: - @tanstack/react-start =1.166.4 - @tanstack/react-start-client =1.166.4 -...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 11:59 p.m.5 views

@tanstack/react-start (>=1.167.5 <=1.167.6), @tanstack/router-vite-plugin (=1.166.19) +3 more potentially affected by unknown CVE via @tanstack/router-plugin (=1.167.4)

@tanstack/router-plugin NPM version =1.167.4 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/router-plugin and may be impacted: - @tanstack/react-start =1.167.5, =1.167.5, =1.167.8, =1.167.5, =1.167.6 Source cves: unknown CVE Source advisory:...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 11:52 p.m.5 views

@tanstack/react-start (=1.167.25) potentially affected by unknown CVE via @tanstack/react-start-rsc (=0.0.5)

@tanstack/react-start-rsc NPM version =0.0.5 is affected by a known vulnerability. The following packages have a transitive dependency on @tanstack/react-start-rsc and may be impacted: - @tanstack/react-start =1.167.25 Source cves: unknown CVE Source advisory: OSV:MAL-2026-3470...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 9:31 p.m.8 views

a2 (>=0.1.0 <=0.3.17), abnativ (>=1.1.0 <=1.2.9) +347 more potentially affected by CVE-2026-2614 via mlflow (>=0.8.2 <=3.0.1)

mlflow PYPI version =0.8.2, =0.1.0, =1.1.0, =0.0.5, =0.1.0, =0.1.0, =1.7.0, =1.7.0, =1.8.0, =1.7.0, =1.7.0, =0.1.1, =0.1.5 - anovos =1.1.0 and more Source cves: CVE-2026-2614 Source advisory: OSV:GHSA-42H5-H8QH-VV9V...

7.5CVSS7.1AI score0.00737EPSS
Exploits1
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.5 views

modern-web-swiss-army-knife (>=2.7.2 <=2.7.4) potentially affected by CVE-2026-45321 via @tanstack/router-devtools (>=1.105.0 <=1.106.0)

@tanstack/router-devtools NPM version =1.105.0, =2.7.2, =2.7.4 Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKROUTERDEVTOOLS-16640220...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.14 views

birdclaw (>=0.1.0 <=0.6.0), livemark (>=0.0.0-dev <=0.23.0) potentially affected by CVE-2026-45321 via @tanstack/react-router-ssr-query (>=1.166.10 <=1.166.12)

@tanstack/react-router-ssr-query NPM version =1.166.10, =0.1.0, =0.0.0-dev, =0.23.0 Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKREACTROUTERSSRQUERY-16640207...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.8 views

@d-trattner/pidex (>=0.1.1 <=0.1.3), @tanstack/react-start (>=1.167.21 <=1.167.65) +1 more potentially affected by CVE-2026-45321 via @tanstack/react-start-rsc (>=0.0.1 <=0.0.5)

@tanstack/react-start-rsc NPM version =0.0.1, =0.1.1, =1.167.21, =0.1.0, =0.6.0 Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKREACTSTARTRSC-16640211...

9.6CVSS8AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.4 views

@squawk/mcp (>=0.4.1 <=0.8.1) potentially affected by unknown CVE via @squawk/airway-data (>=0.3.3 <=0.4.2)

@squawk/airway-data NPM version =0.3.3, =0.4.1, =0.8.1 Source cves: unknown CVE Source advisory: SNYK:JS-SQUAWKAIRWAYDATA-16640895...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.5 views

@blinkk/root-cms (>=2.0.0 <=2.4.7), @cravery/core (=0.0.2) +8 more potentially affected by unknown CVE via @mistralai/mistralai-gcp (=1.7.0)

@mistralai/mistralai-gcp NPM version =1.7.0 is affected by a known vulnerability. The following packages have a transitive dependency on @mistralai/mistralai-gcp and may be impacted: - @blinkk/root-cms =2.0.0, =0.9.7, =0.2.11, =0.0.1, =2.1.4, =0.0.694, =0.0.1, =0.8.11, =0.8.14 Source cves: unknow...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.4 views

@squawk/mcp (>=0.4.1 <=0.8.1) potentially affected by unknown CVE via @squawk/fix-data (>=0.4.1 <=0.5.2)

@squawk/fix-data NPM version =0.4.1, =0.4.1, =0.8.1 Source cves: unknown CVE Source advisory: SNYK:JS-SQUAWKFIXDATA-16640873...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.4 views

a2cli (>=0.1.0 <=0.2.1), a2py (>=0.2.1 <=0.2.3) +864 more potentially affected by unknown CVE via mistralai (>=0.0.11 <=2.4.8)

mistralai PYPI version =0.0.11, =0.1.0, =0.2.1, =0.1.0, =0.1.0, =0.1.0, =0.1.0, =0.2.5, =0.1.0, =0.0.1, =0.1.0, =0.1.0, =0.2.1 and more Source cves: unknown CVE Source advisory: SNYK:PYTHON-MISTRALAI-16641237...

5.5AI score
Exploits0
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.8 views

@tanstack/vue-start (>=1.141.0 <=1.167.58), @tanstack/vue-start-client (>=1.141.0 <=1.166.43) +1 more potentially affected by CVE-2026-45321 via @tanstack/vue-router (>=1.141.0 <=1.169.2)

@tanstack/vue-router NPM version =1.141.0, =1.141.0, =1.141.0, =1.141.0, =1.166.47 Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKVUEROUTER-16640252...

9.6CVSS7.4AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.10 views

@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +26 more potentially affected by CVE-2026-45321 via @tanstack/virtual-file-routes (>=1.121.0-alpha.28 <=1.154.7)

@tanstack/virtual-file-routes NPM version =1.121.0-alpha.28, =1.0.0, =1.0.0, =0.1.0, =1.20.3-alpha.1, =1.111.10, =1.130.0, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.121.0-alpha.28, =1.20.3-alpha.1, =1.114.29, =1.130.0, =1.97.4, =1.120.20 and more Source cves: CVE-2026-45321 Sour...

9.6CVSS7.4AI score0.02342EPSS
Exploits3
vulnersOsv
vulnersOsvadded 2026/05/11 9:0 p.m.8 views

@ardeora/start-devtools (>=1.0.0 <=1.0.1), @carvajalconsultants/headstart (>=1.0.0 <=1.0.2) +33 more potentially affected by CVE-2026-45321 via @tanstack/router-generator (>=1.10.0 <=1.166.42)

@tanstack/router-generator NPM version =1.10.0, =1.0.0, =1.0.0, =0.1.1, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =1.20.3-alpha.1, =1.111.10, =1.121.23, =0.0.1, =1.10.0, =1.121.0-alpha.28, =1.167.35 and more Source cves: CVE-2026-45321 Source advisory: SNYK:JS-TANSTACKROUTERGENERATOR-16640221...

9.6CVSS8AI score0.02342EPSS
Exploits3
Total number of security vulnerabilities25077