Busca de CVEs
362.780 resultadosCVE-2025-71368HIGHpicklescan - Arbitrary Code Execution via Undetected doctest.debug_scriptEPSS —CVE-2025-71363HIGHpicklescan - Arbitrary Code Execution via Undetected cProfile.run in Pickle DeserializationEPSS —CVE-2025-71355HIGHPicklescan - Arbitrary Code Execution via Unsafe Numpy Function Detection BypassEPSS —CVE-2025-71352HIGHpicklescan - Remote Code Execution via Undetected trace.Trace.runctx in Pickle FilesEPSS —CVE-2025-71350HIGHpicklescan - Undetected Remote Code Execution via torch.utils.collect_env.runEPSS —CVE-2025-71349HIGHpicklescan - Arbitrary Code Execution via Undetected trace.Trace.run in Pickle FilesEPSS —CVE-2026-54696LOWRuby JSON: JSON generator heap buffer overflow when streaming to an IOEPSS —CVE-2026-57204MEDIUMpypdf: Missing stream length values ignore defined limitsEPSS —CVE-2026-10585MEDIUMStored cross-site scripting vulnerability in GitHub Enterprise Server allowed arbitrary JavaScript execution via crafted Discussion titles in the Q&A categoryEPSS —CVE-2026-57585HIGHMessagePack: Out-of-bounds read/crash on Unpacker reuse after caught errorEPSS —CVE-2026-50003CRITICALOFFIS DCMTK Toolkit Path TraversalEPSS —CVE-2026-50254HIGHOFFIS DCMTK Toolkit Missing Release of Memory after Effective LifetimeEPSS —CVE-2026-35505HIGHOFFIS DCMTK Toolkit Missing Release of Memory after Effective LifetimeEPSS —CVE-2026-58450MEDIUMInvoice Ninja 5.13.26 - Open Redirect in Client Portal Login via intended ParameterEPSS —CVE-2026-58449CRITICALtxtai - Unauthenticated Remote Code Execution via Unsafe Reflection in API /reindex function ParameterEPSS —CVE-2026-52868HIGHOFFIS DCMTK Toolkit Path TraversalEPSS —CVE-2026-58448HIGHyudao-cloud < 2026.06 - BPM Module Broken Access Control via process-instance APIEPSS —CVE-2026-58447HIGHInvidious - Cross-User Playlist Video Deletion via Missing Ownership CheckEPSS —CVE-2026-58446MEDIUMPresenton < 0.8.8-beta - Authentication Bypass of Session Auth via Unprotected MCP EndpointEPSS —CVE-2026-11541HIGHIBM WebSphere Application Server and WebSphere Application Server Liberty are affected by HTTP request smugglingEPSS —