Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
GHSA-fq56-hvg6-wvm5
  • npm/signalk-server
 Signal K Server vulnerable to JWT Token Theft via WebSocket Enumeration and Unauthenticated Polling 1 hour ago
  • Fix available
  • Severity - 9.1 (Critical)
GHSA-vfrf-vcj7-wvr8
  • npm/signalk-server
 Signal K Server Vulnerable to Access Request Spoofing 1 hour ago
  • Fix available
  • Severity - 6.3 (Medium)
GHSA-93jc-vqqc-vvvh
  • npm/signalk-server
 Signal K Server Vulnerable to Remote Code Execution via Malicious npm Package 1 hour ago
  • Fix available
  • Severity - 7.3 (High)
GHSA-fpf5-w967-rr2m
  • npm/signalk-server
 Signal K Server Vulnerable to Unauthenticated Information Disclosure via Exposed Endpoints 1 hour ago
  • Fix available
  • Severity - 5.3 (Medium)
GHSA-w3x5-7c4c-66p9
  • npm/signalk-server
 Signal K Server has Unauthenticated State Pollution leading to Remote Code Execution (RCE) 1 hour ago
  • Fix available
  • Severity - 9.6 (Critical)
MAL-2026-7
  • PyPI/gatr
 Malicious code in gatr (PyPI) 3 hours ago
  • No fix available
CGA-qxw5-j9fj-3qj3
  • Chainguard/gitlab-rails-ce-18.7
  • Chainguard/gitlab-rails-ce-assets-18.7
  • Chainguard/gitlab-rails-ce-doc-18.7
 See record for full details 4 hours ago
  • Fix available
CGA-wrvr-hvw3-qqhw
  • Chainguard/geoserver-2.28
  • Chainguard/geoserver-2.28-community
  • Chainguard/geoserver-2.28-docker
 See record for full details 5 hours ago
  • Fix available
CGA-wcrf-pxpp-94m7
  • Chainguard/geoserver-2.27
  • Chainguard/geoserver-2.27-community
  • Chainguard/geoserver-2.27-docker
 See record for full details 5 hours ago
  • Fix available
CGA-7wx6-qmq7-wvgp
  • Chainguard/hadoop-fips-3.3.6
 See record for full details 5 hours ago
  • Fix available
DLA-4431-1
  • Debian:11/gimp
 gimp - security update 16 hours ago
  • Fix available
MAL-2026-6
  • PyPI/ziphash
 Malicious code in ziphash (PyPI) 18 hours ago
  • No fix available
DEBIAN-CVE-2025-15412
  • Debian:11/wabt
  • Debian:12/wabt
  • Debian:13/wabt
  • Debian:14/wabt
 See record for full details 19 hours ago
  • No fix available
  • Severity - 5.3 (Medium)
DEBIAN-CVE-2025-15411
  • Debian:11/wabt
  • Debian:12/wabt
  • Debian:13/wabt
  • Debian:14/wabt
 See record for full details 20 hours ago
  • No fix available
  • Severity - 5.3 (Medium)
MAL-2026-5
  • PyPI/queryservice-client
 Malicious code in queryservice-client (PyPI) 22 hours ago
  • No fix available
CVE-2025-69203
  • github.com/signalk/signalk-server
 Signal K Server Vulnerable to Access Request Spoofing 22 hours ago
  • Fix available
  • Severity - 6.3 (Medium)
Load more...