Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
CVE-2023-43637
EVE Has Partially Predetermined Vault Key
CVE-2023-43636
EVE Doesn't Protect Rootfs
CVE-2023-43635
EVE Seals Vault Key With SHA1 PCRs
CVE-2023-43634
EVE Doesn't Protect Config Partition with Measured Boot
CVE-2023-43633
EVE's Debug Functions Unlockable Without Triggering Measured Boot
CVE-2023-43632
EVE Freely Allocates Buffer on The Stack With Data From Socket
CVE-2023-43631
EVE: SSH as Root Unlockable Without Triggering Measured Boot
CVE-2023-43630
EVE Doesn't Measure Config Partition From 2 Fronts
CVE-2025-62878
Local Path Provisioner vulnerable to Path Traversal via parameters.pathPattern
CVE-2026-25538
Devtron Attributes API Unauthorized Access Leading to API Token Signing Key Leakage
CVE-2026-25161
Alist vulnerable to Path Traversal in multiple file operation handlers
CVE-2026-25160
Alist has Insecure TLS Config
CVE-2026-24735
Apache Answer Exposure of Private Personal Information to an Unauthorized Actor vulnerability
CVE-2026-24514
ingress-nginx vulnerable to Allocation of Resources Without Limits or Throttling
CVE-2026-24513
ingress-nginx has Improper Check for Unusual or Exceptional Conditions
CVE-2026-1580
ingress-nginx's `nginx.ingress.kubernetes.io/auth-method` Ingress annotation can be used to inject configuration into nginx
CVE-2026-24512
ingress-nginx's `rules.http.paths.path` Ingress field can be used to inject configuration into nginx
CVE-2026-25579
Navidrome affected by Denial of Service and disk exhaustion via oversized `size` parameter in `/rest/getCoverArt` and `/share/img/<token>` endpoints
CVE-2026-25578
Navidrome has XSS via comment from song metadata
CVE-2026-25145
melange has a path traversal in license-path which allows reading files outside workspace
Showing 1 - 20 of 1,000+ results