Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
OSV-2026-903
  • OSS-Fuzz/gpac
  • github.com/gpac/gpac
 UNKNOWN in avi_parse_input_file yesterday
  • Fix available
EEF-CVE-2026-53423
  • Hex/membrane_mp4_plugin
  • github.com/membraneframework/membrane_mp4_plugin
 Unauthenticated denial-of-service via BEAM atom table exhaustion in membrane_mp4_plugin yesterday
  • Fix available
  • Severity - 5.9 (Medium)
EEF-CVE-2026-48856
  • github.com/erlang/otp
 httpc leaks Authorization header to cross-origin redirect targets 2 days ago
  • Fix available
  • Severity - 7.1 (High)
EEF-CVE-2026-48860
  • github.com/erlang/otp
 Distribution-over-TLS LAN allowlist silently bypassed due to sockname/peername confusion in inet_tls_dist 2 days ago
  • Fix available
  • Severity - 7.5 (High)
EEF-CVE-2026-48855
  • github.com/erlang/otp
 SFTP READLINK Leaks Absolute Backend Filesystem Path When Root Is Configured 2 days ago
  • Fix available
  • Severity - 2.3 (Low)
EEF-CVE-2026-48858
  • github.com/erlang/otp
 ftp client PASV response IP not validated against control peer, enabling SSRF and FTP bounce attacks 2 days ago
  • Fix available
  • Severity - 6.3 (Medium)
EEF-CVE-2026-48859
  • github.com/erlang/otp
 SSH server timing side-channel in ssh_auth:check_password/3 allows unauthenticated username enumeration 2 days ago
  • Fix available
  • Severity - 6.3 (Medium)
EEF-CVE-2026-49759
  • github.com/erlang/otp
 Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash 2 days ago
  • Fix available
  • Severity - 8.8 (High)
EEF-CVE-2026-49760
  • github.com/erlang/otp
 Stack Buffer Overflow in ei_s_print_term at Very Large Integer 2 days ago
  • Fix available
  • Severity - 6.9 (Medium)
OSV-2026-895
  • OSS-Fuzz/libhevc
  • github.com/ittiam-systems/libhevc.git
 Heap-buffer-overflow in ihevcd_fmt_conv 3 days ago
  • Fix available
EEF-CVE-2026-49762
  • github.com/elixir-lang/elixir.git
 Unbounded integer parsing in the Version module enables CPU and memory exhaustion denial of service 3 days ago
  • Fix available
  • Severity - 5.1 (Medium)
OSV-2026-892
  • OSS-Fuzz/libredwg
  • github.com/libredwg/libredwg
 Heap-buffer-overflow in decode_R13_RNUMBER 4 days ago
  • Fix available
PSF-2026-27
  • github.com/python/cpython
 See record for full details 4 days ago
  • Fix available
EEF-CVE-2026-43966
  • Hex/cowlib
  • github.com/ninenines/cowlib
 HTTP Response Splitting via Non-VCHAR Bytes in cow_http_struct_hd:escape_string/2 4 days ago
  • No fix available
  • Severity - 6.3 (Medium)
EEF-CVE-2026-49755
  • Hex/req
  • github.com/wojtekmach/req.git
 Decompression bomb DoS in Req via auto-decoded archive and compressed response bodies 4 days ago
  • Fix available
  • Severity - 8.2 (High)
EEF-CVE-2026-49756
  • Hex/req
  • github.com/wojtekmach/req.git
 Multipart form-data header injection in Req via unescaped name/filename/content_type 4 days ago
  • Fix available
  • Severity - 2.1 (Low)
Load more...