7.8 CVE-2026-0536
A maliciously crafted GIF file, when parsed through Autodesk 3ds Max, can cause a Stack-Based Buffer...

7.5 CVE-2026-25121
apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8...

5.5 CVE-2026-25122
apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8...

7.5 CVE-2026-25140
apko allows users to build and publish OCI container images built from apk packages. From version 0.14.8...

6.5 CVE-2025-68699
NanoMQ MQTT Broker (NanoMQ) is an all-around Edge Messaging Platform. In version 0.24.6, NanoMQ has...

7.5 CVE-2025-71031
Water-Melon Melon commit 9df9292 and below is vulnerable to Denial of Service. The HTTP component doesn't...

7.5 CVE-2026-23897
Apollo Server is an open-source, spec-compliant GraphQL server that's compatible with any GraphQL client,...

8.2 CVE-2026-24843
melange allows users to build apk packages using declarative pipelines. In version 0.11.3 to before...

7.9 CVE-2026-24844
melange allows users to build apk packages using declarative pipelines. From version 0.3.0 to before...

8.4 CVE-2026-24884
Compressing is a compressing and uncompressing lib for node. In version 2.0.0 and 1.10.3 and prior,...

7.8 CVE-2026-25143
melange allows users to build apk packages using declarative pipelines. From version 0.10.0 to before...

5.5 CVE-2026-25145
melange allows users to build apk packages using declarative pipelines. From version 0.14.0 to before...

7.7 CVE-2026-25157
OpenClaw is a personal AI assistant. Prior to version 2026.1.29, there is an OS command injection vulnerability...

9.1 CVE-2026-25160
Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version...

8.8 CVE-2026-25161
Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version...

6.5 CVE-2026-25475
OpenClaw is a personal AI assistant. Prior to version 2026.1.30, the isValidMedia() function in src/media/parse.ts...

CVE-2026-25481
Langroid is a framework for building large-language-model-powered applications. Prior to version 0.59.32,...

9.8 CVE-2026-25505
Bambuddy is a self-hosted print archive and management system for Bambu Lab 3D printers. Prior to version...

CVE-2026-25513
FacturaScripts is open-source enterprise resource planning and accounting software. Prior to version...

CVE-2026-25514
FacturaScripts is open-source enterprise resource planning and accounting software. Prior to version...

5.3 CVE-2023-38010
IBM Cloud Pak System displays sensitive information in user messages that could aid in further attacks...