OSV - Open Source Vulnerabilities

MINI-w25h-jcq3-xccw

MinimOS/datadog-agent-fips-7
MinimOS/datadog-agent-fips-7-core-integrations
MinimOS/datadog-agent-fips-7-fakeintake
MinimOS/datadog-agent-fips-7-jmx
MinimOS/datadog-agent-fips-7-oci-compat
... 3 more

See record for full details

41 minutes ago

Fix available

MINI-r22j-jvv2-r84q

MinimOS/kibana-7
MinimOS/kibana-7-advanced-compat
MinimOS/kibana-7-config
MinimOS/kibana-7-oci-entrypoint

See record for full details

41 minutes ago

No fix available

MAL-2026-444

PyPI/terminalbrush

Malicious code in terminalbrush (PyPI)

1 hour ago

No fix available

CVE-2025-68134

github.com/everest/everest-core

EVerest's use of assert functions can potentially lead to denial of service

2 hours ago

Fix available
Severity - 7.4 (High)

CVE-2025-68132

github.com/everest/everest-core

EVerest has out-of-bounds read in DZG_GSH01 SLIP CRC parser that can crash powermeter driver

2 hours ago

Fix available
Severity - 2.4 (Low)

MAL-2026-443

PyPI/1q847

Malicious code in 1q847 (PyPI)

2 hours ago

No fix available

GHSA-66fc-rw6m-c2q6

npm/seroval

Seroval affected by Denial of Service via Array serialization

3 hours ago

Fix available
Severity - 7.5 (High)

CGA-x6vc-rjhj-8vq7

Chainguard/dask-kubernetes
Chainguard/open-webui
Chainguard/py3.10-setuptools
Chainguard/py3.11-setuptools
Chainguard/py3.12-setuptools
... 9 more

See record for full details

3 hours ago

Fix available

CGA-c27c-xqwj-2rjh

Chainguard/dask-kubernetes
Wolfi/dask-kubernetes

See record for full details

3 hours ago

Fix available

CGA-8prv-6xq4-4gw9

Chainguard/dask-kubernetes
Wolfi/dask-kubernetes

See record for full details

3 hours ago

Fix available

GHSA-fphv-w9fq-2525

Go/github.com/theupdateframework/go-tuf
Go/github.com/theupdateframework/go-tuf/v2

go-tuf improperly validates the configured threshold for delegations

4 hours ago

Fix available
Severity - 5.9 (Medium)

GHSA-846p-jg2w-w324

Go/github.com/theupdateframework/go-tuf
Go/github.com/theupdateframework/go-tuf/v2

go-tuf affected by client DoS via malformed server response

4 hours ago

Fix available
Severity - 5.9 (Medium)

GHSA-hpwg-xg7m-3p6m

npm/sm-crypto

sm-crypto Affected by Signature Forgery in SM2-DSA

4 hours ago

Fix available
Severity - 7.5 (High)

GHSA-qv7w-v773-3xqm

npm/sm-crypto

sm-crypto Affected by Signature Malleability in SM2-DSA

4 hours ago

Fix available
Severity - 7.5 (High)

GHSA-pgx9-497m-6c4v

npm/sm-crypto

sm-crypto Affected by Private Key Recovery in SM2-PKE

4 hours ago

Fix available
Severity - 9.1 (Critical)

GHSA-fqcv-8859-86x2

Packagist/coreshop/core-shop

CoreShop Vulnerable to SQL Injection via Admin customer-company-modifier

4 hours ago

Fix available
Severity - 6.9 (Medium)