Filter
Merge-deep Project Merge-deepThe merge-deep library before 3.0.3 for Node.js can be tricked into overwriting properties of Object…
9.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Grafana GrafanaStored XSS in Grafana's Unified Alerting
8.7
First published (updated )
Netapp StoragegridOracle Java Runtime Environment HTML Rendering Out-Of-Bounds Write Remote Code Execution Vulnerability
8.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
IBM Cloud Pak for Security (CP4S)Node.js is vulnerable to a denial of service, caused by a file descriptor leak. By making multiple a…
7.8
First published (updated )
maven/org.eclipse.jetty:jetty-serverIn Eclipse Jetty 7.2.2 to 9.4.38, 10.0.0.alpha0 to 10.0.1, and 11.0.0.alpha0 to 11.0.1, CPU usage ca…
7.8
First published (updated )
Linux Linux kernelLinux Kernel Improper Privilege Management Vulnerability
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Grafana GrafanaGrafana plugin signature bypass vulnerability
7.8
First published (updated )
redhat/grafanaThe snapshot feature in Grafana 6.7.3 through 7.4.1 can allow an unauthenticated remote attackers to…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
npm/trim-newlinesA flaw was found in nodejs-trim-newlines. Node.js has an issue related to regular expression denial-…
7.5
First published (updated )
redhat/grafanaGrafana account takeover via OAuth vulnerability
7.5
First published (updated )
Oracle PeopleSoft Enterprise PeopleToolsSegmentation fault in SSL_check_chain
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
OpenSSL OpenSSLInvalid handling of X509_verify_cert() internal errors in libssl
7.5
First published (updated )
Css-what Project Css-whatThe css-what package 4.0.0 through 5.0.0 for Node.js does not ensure that attribute parsing has Line…
7.5
First published (updated )
Schema-inspector Project Schema-inspectorRegular Expression Denial-of-Service in npm schema-inspector
7.5
First published (updated )
Nodejs Node.jsNULL pointer deref in signature_algorithms processing
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.