Search Vulnerabilities

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause incorrect control flow behavior

Nov 25, 2025

CVE-2025-32942

SSH Tectia Server before 6

Oct 2, 2025

CVE-2025-49091

KDE Konsole before 25

Jun 11, 2025

CVE-2025-32996

In http-proxy-middleware before 2

Apr 15, 2025

CVE-2025-2886

Terminating targets role delegations are not respected in tough

Mar 27, 2025

CVE-2025-24800

CRITICAL

Critical vulnerability in `ismp-grandpa` <v15.0.1

Jan 28, 2025

CVE-2025-21607

Success of Certain Precompile Calls not Checked in Vyper

Jan 14, 2025

CVE-2024-53271

HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset in envoy

CVE-2024-53270

HTTP/1: sending overload crashes when the request is reset beforehand in envoy

CVE-2024-53269

Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting in envoy

CVE-2024-52811

Acks not validated before logged to qlog leads to buffer overflow in ngtcp2

Nov 25, 2024

CVE-2024-38365

btcd did not correctly re-implement Bitcoin Core's "FindAndDelete()" functionality

CVE-2024-25622

H2O ignores headers configuration directives

CVE-2024-47168

The `enable_monitoring` flag set to `False` does not disable monitoring in Gradio

Oct 10, 2024

CVE-2024-47763

Wasmtime runtime crash when combining tail calls with trapping imports

Oct 9, 2024

CVE-2024-45807

oghttp2 crash on OnBeginHeadersForStream in envoy

Sep 19, 2024

CVE-2024-45298

Disabled user can bypass lockout by requesting password reset in wiki.js

Sep 18, 2024

CVE-2024-45311

Denial of service in quinn-proto when using `Endpoint::retry()`

Sep 2, 2024

CVE-2024-45304

OwnableTwoStep allows a pending owner to accept ownership after the original owner has renounced ownership in cairo-contracts

Aug 30, 2024

CVE-2024-5659

Rockwell Automation Multicast Request Causes major nonrecoverable fault on Select Controllers

Jun 14, 2024

Showing 1 - 20 of 1,000+ results

...

Searching...

Filters

1,000+ results

CVE-2025-33199

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause incorrect control flow behavior

Nov 25, 2025

CVE-2025-32942

SSH Tectia Server before 6

Oct 2, 2025

CVE-2025-49091

KDE Konsole before 25

Jun 11, 2025

CVE-2025-32996

In http-proxy-middleware before 2

Apr 15, 2025

CVE-2025-2886

Terminating targets role delegations are not respected in tough

Mar 27, 2025

CVE-2025-24800

CRITICAL

Critical vulnerability in `ismp-grandpa` <v15.0.1

Jan 28, 2025

CVE-2025-21607

Success of Certain Precompile Calls not Checked in Vyper

Jan 14, 2025

CVE-2024-53271

HTTP/1.1 multiple issues with envoy.reloadable_features.http1_balsa_delay_reset in envoy

CVE-2024-53270

HTTP/1: sending overload crashes when the request is reset beforehand in envoy

CVE-2024-53269

Happy Eyeballs: Validate that additional_address are IP addresses instead of crashing when sorting in envoy

CVE-2024-52811

Acks not validated before logged to qlog leads to buffer overflow in ngtcp2

Nov 25, 2024

CVE-2024-38365

btcd did not correctly re-implement Bitcoin Core's "FindAndDelete()" functionality

CVE-2024-25622

H2O ignores headers configuration directives

CVE-2024-47168

The `enable_monitoring` flag set to `False` does not disable monitoring in Gradio

Oct 10, 2024

CVE-2024-47763

Wasmtime runtime crash when combining tail calls with trapping imports

Oct 9, 2024

CVE-2024-45807

oghttp2 crash on OnBeginHeadersForStream in envoy

Sep 19, 2024

CVE-2024-45298

Disabled user can bypass lockout by requesting password reset in wiki.js

Sep 18, 2024

CVE-2024-45311

Denial of service in quinn-proto when using `Endpoint::retry()`

Sep 2, 2024

CVE-2024-45304

OwnableTwoStep allows a pending owner to accept ownership after the original owner has renounced ownership in cairo-contracts

Aug 30, 2024

CVE-2024-5659

Rockwell Automation Multicast Request Causes major nonrecoverable fault on Select Controllers