Vulnerabilities
Recent vulnerabilities
Recent vulnerabilities from
🏠GNA-1 (CIRCL)
Select from 78 available sources using the dropdown above.
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2026-1067 |
|
Unspecified vulnerability in Zope 2.12.x and 2.13.x, as used in Plone 4.0.x through 4.0.9… | zope2 | 2026-07-06T08:03:27.453449Z | 2026-07-07T11:31:27.404215Z |
| pysec-2026-1066 |
4.7 (3.1)
|
wolfSSL and wolfCrypt 4.0.0 and earlier (when configured without `--enable-fpecc`, `--ena… | wolfcrypt | 2026-07-06T08:03:28.431283Z | 2026-07-07T11:31:26.691267Z |
| pysec-2026-1065 |
7.5 (3.1)
|
In Pallets Werkzeug before 0.15.5, SharedDataMiddleware mishandles drive names (such as C… | werkzeug | 2026-07-06T08:03:28.302032Z | 2026-07-07T11:31:26.467787Z |
| pysec-2026-1064 |
6.1 (3.1)
|
Open redirect vulnerability exists in web2py versions prior to 2.23.1. When using the too… | web2py | 2026-07-07T10:17:28.107147Z | 2026-07-07T11:31:26.145797Z |
| pysec-2026-1063 |
4.8 (3.1)
|
Web2py versions 2.14.5 and below was affected by Reflected XSS vulnerability, which allow… | web2py | 2026-07-06T08:03:25.188081Z | 2026-07-07T11:31:26.091638Z |
| pysec-2026-1062 |
5.5 (3.1)
|
web2py before 2.14.2 allows remote attackers to obtain the session_cookie_key value via a… | web2py | 2026-07-06T08:03:21.683498Z | 2026-07-07T11:31:26.039703Z |
| pysec-2026-1061 |
4.5 (3.1)
|
Web2py versions 2.14.5 and below was affected by CSRF (Cross Site Request Forgery) vulner… | web2py | 2026-07-06T08:03:25.147793Z | 2026-07-07T11:31:25.987292Z |
| pysec-2026-1060 |
6.1 (3.1)
|
Open redirect vulnerability in web2py versions prior to 2.22.5 allows a remote attacker t… | web2py | 2026-07-06T08:03:30.915282Z | 2026-07-07T11:31:25.934420Z |
| pysec-2026-1059 |
5.5 (3.1)
|
An issue was discovered in OpenStack Sushy-Tools through 0.21.0 and VirtualBMC through 2.… | virtualbmc | 2026-07-07T10:17:22.957829Z | 2026-07-07T11:31:24.892578Z |
| pysec-2026-1058 |
7.5 (3.1)
|
HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This iss… | uwsgi | 2026-07-07T10:17:28.280695Z | 2026-07-07T11:31:24.643049Z |
| pysec-2026-1057 |
7.5 (3.1)
|
### Impact _What kind of vulnerability is it? Who is impacted?_ Anyone parsing JSON from… | ujson | 2026-07-06T08:03:31.058927Z | 2026-07-07T11:31:24.197503Z |
| pysec-2026-1056 |
5.9 (3.1)
|
### Impact _What kind of vulnerability is it? Who is impacted?_ When an error occurs whi… | ujson | 2026-07-06T08:03:30.989917Z | 2026-07-07T11:31:24.124624Z |
| pysec-2026-1055 |
5.4 (3.1)
5.1 (4.0)
|
When the host header does not match a configured host, `twisted.web.vhost.NameVirtualHost… | twisted | 2026-07-07T10:17:22.852562Z | 2026-07-07T11:31:24.020421Z |
| pysec-2026-1053 |
5.5 (3.1)
|
The `_write_config` function in `trove/guestagent/datastore/experimental/mongodb/service.… | trove | 2026-07-06T08:03:24.655833Z | 2026-07-07T11:31:23.872501Z |
| pysec-2026-1052 |
5.5 (3.1)
|
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permis… | tripleo-ansible | 2026-07-07T10:17:28.635311Z | 2026-07-07T11:31:23.695399Z |
| pysec-2026-1051 |
5.5 (3.1)
|
A flaw was found in tripleo-ansible. Due to an insecure default configuration, the permis… | tripleo-ansible | 2026-07-07T10:17:28.592137Z | 2026-07-07T11:31:23.642369Z |
| pysec-2026-938 |
5.9 (3.1)
|
### Impact If `RaggedBincount` is given an empty input tensor `splits`, it results in a s… | tensorflow | 2026-07-07T10:17:21.902508Z | 2026-07-07T11:31:23.201236Z |
| pysec-2026-937 |
5.9 (3.1)
|
### Impact If `EmptyTensorList` receives an input `element_shape` with more than one dime… | tensorflow | 2026-07-07T10:17:19.979224Z | 2026-07-07T11:31:23.051815Z |
| pysec-2026-936 |
7.1 (3.1)
|
### Impact The reference kernel of the [`CONV_3D_TRANSPOSE`](https://github.com/tensorflo… | tensorflow | 2026-07-07T10:17:24.149856Z | 2026-07-07T11:31:22.913487Z |
| pysec-2026-1050 |
5.5 (3.1)
|
### Impact If a list of quantized tensors is assigned to an attribute, the pywrap code fa… | tensorflow-gpu | 2026-07-07T10:17:23.864505Z | 2026-07-07T11:31:22.658093Z |
| pysec-2026-1049 |
7.1 (3.1)
|
### Impact An input `pooling_ratio` that is smaller than 1 will trigger a heap OOB in [`t… | tensorflow-gpu | 2026-07-07T10:17:24.574177Z | 2026-07-07T11:31:22.542273Z |
| pysec-2026-1048 |
5.5 (3.1)
|
### Impact The implementation of [`tf.histogram_fixed_width`](https://github.com/tensorfl… | tensorflow-gpu | 2026-07-06T08:03:30.201421Z | 2026-07-07T11:31:22.431196Z |
| pysec-2026-1047 |
5.9 (3.1)
|
### Impact The [`RaggedRangOp`](https://github.com/tensorflow/tensorflow/blob/0b6b491d21d… | tensorflow-gpu | 2026-07-07T10:17:20.354916Z | 2026-07-07T11:31:22.314307Z |
| pysec-2026-1046 |
5.9 (3.1)
|
### Impact The implementation of `AvgPool3DGradOp` does not fully validate the input `ori… | tensorflow-gpu | 2026-07-07T10:17:20.090426Z | 2026-07-07T11:31:22.200766Z |
| pysec-2026-1045 |
5.9 (3.1)
|
### Impact If `Requantize` is given `input_min`, `input_max`, `requested_output_min`, `re… | tensorflow-gpu | 2026-07-07T10:17:19.592538Z | 2026-07-07T11:31:22.086737Z |
| pysec-2026-1044 |
5.9 (3.1)
|
### Impact When `SetSize` receives an input `set_shape` that is not a 1D tensor, it gives… | tensorflow-gpu | 2026-07-07T10:17:20.633524Z | 2026-07-07T11:31:21.973045Z |
| pysec-2026-1043 |
5.9 (3.1)
|
### Impact `DenseBincount` assumes its input tensor `weights` to either have the same sha… | tensorflow-gpu | 2026-07-07T10:17:18.995529Z | 2026-07-07T11:31:21.860656Z |
| pysec-2026-1041 |
5.9 (3.1)
|
### Impact `FractionalMaxPoolGrad` validates its inputs with `CHECK` failures instead of … | tensorflow-gpu | 2026-07-07T10:17:21.615262Z | 2026-07-07T11:31:21.692819Z |
| pysec-2026-1040 |
5.9 (3.1)
|
### Impact When `TensorListScatter` and `TensorListScatterV2` receive an `element_shape` … | tensorflow-gpu | 2026-07-07T10:17:20.821174Z | 2026-07-07T11:31:21.579913Z |
| pysec-2026-1039 |
5.9 (3.1)
|
### Impact If `QuantizeDownAndShrinkRange` is given nonscalar inputs for `input_min` or `… | tensorflow-gpu | 2026-07-07T10:17:21.488024Z | 2026-07-07T11:31:21.468607Z |