VEX records
Browse vendor VEX statements available in this Vulnerability-Lookup instance and pivot to the related vulnerability.
221831 VEX records
API response| Vulnerability | Source | Title | Product status | Imported | Links |
|---|---|---|---|---|---|
| CVE-2025-71176 | redhat_vex | pytest: pytest: Denial of Service or Privilege Escalation via insecure temporary directory handling | fixed: 2 known affected: 86 | 2026-07-02T17:10:45+00:00 | Vulnerability · Source |
| CVE-2025-68468 | redhat_vex | avahi: Avahi: Denial of Service via crafted mDNS/DNS-SD announcements | fixed: 3 known affected: 89 | 2026-07-02T17:10:44+00:00 | Vulnerability · Source |
| CVE-2025-68276 | redhat_vex | avahi: Avahi: Denial of Service via D-Bus record browsers with AVAHI_LOOKUP_USE_WIDE_AREA flag | fixed: 3 known affected: 89 | 2026-07-02T17:10:42+00:00 | Vulnerability · Source |
| CVE-2025-59471 | redhat_vex | next: NextJS Denial of Service in Image Optimizer | known affected: 32 | 2026-07-02T17:10:41+00:00 | Vulnerability · Source |
| CVE-2025-59472 | redhat_vex | next: NextJS Denial of Service in Partial Pre Rendering | known affected: 32 | 2026-07-02T17:10:39+00:00 | Vulnerability · Source |
| CVE-2025-55132 | redhat_vex | nodejs: Nodejs filesystem permissions bypass | fixed: 313 | 2026-07-02T17:10:34+00:00 | Vulnerability · Source |
| CVE-2025-41117 | redhat_vex | github.com/grafana/grafana: Cross site scripting in Grafana Explore stack trace | known affected: 25 | 2026-07-02T17:10:31+00:00 | Vulnerability · Source |
| CVE-2025-15599 | redhat_vex | DOMPurify: DOMPurify: Cross-site scripting | known affected: 72 | 2026-07-02T17:10:28+00:00 | Vulnerability · Source |
| CVE-2020-37127 | redhat_vex | dnsmasq: dnsmasq-utils 'dhcp_release' Denial of Service | known affected: 19 | 2026-07-02T17:10:26+00:00 | Vulnerability · Source |
| CVE-2026-6842 | redhat_vex | nano: nano: Local attacker can inject malicious .desktop launcher due to insecure directory permissions | known affected: 8 | 2026-07-02T17:10:24+00:00 | Vulnerability · Source |
| CVE-2020-37011 | redhat_vex | gnome-font-viewer: Gnome Fonts Viewer: Denial of Service via malicious TTF font file | known affected: 5 | 2026-07-02T17:10:23+00:00 | Vulnerability · Source |
| CVE-2026-9150 | redhat_vex | libsolv: Stack-based buffer overflow in libsolv's Debian metadata parser when handling SHA384/SHA512 checksums | fixed: 120 known affected: 16 known not affected: 5 | 2026-07-02T17:10:12+00:00 | Vulnerability · Source |
| CVE-2026-9149 | redhat_vex | libsolv: Heap buffer overflow in libsolv repo_add_solv via negative maxsize from crafted .solv file | fixed: 120 known affected: 21 | 2026-07-02T17:10:09+00:00 | Vulnerability · Source |
| CVE-2026-7378 | redhat_vex | Wireshark: sharkd: Wireshark sharkd: Denial of Service via crash vulnerability | known affected: 20 | 2026-07-02T17:10:07+00:00 | Vulnerability · Source |
| CVE-2026-7376 | redhat_vex | Wireshark: sharkd: Wireshark sharkd: Denial of Service due to crash | known affected: 20 | 2026-07-02T17:10:04+00:00 | Vulnerability · Source |
| CVE-2026-7375 | redhat_vex | Wireshark: Wireshark: Denial of Service via UDS protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:10:00+00:00 | Vulnerability · Source |
| CVE-2026-6993 | redhat_vex | net/http: golang: github.com/go-kratos/kratos: go-kratos kratos: Information disclosure via unintended HTTP server intermediary | known affected: 391 | 2026-07-02T17:09:58+00:00 | Vulnerability · Source |
| CVE-2026-6869 | redhat_vex | wireshark: Wireshark: Denial of Service via WebSocket protocol dissector crash | known affected: 20 | 2026-07-02T17:09:56+00:00 | Vulnerability · Source |
| CVE-2026-6868 | redhat_vex | wireshark: Wireshark: Denial of Service via malicious network capture file | known affected: 20 | 2026-07-02T17:09:54+00:00 | Vulnerability · Source |
| CVE-2026-6843 | redhat_vex | nano: nano: Format string vulnerability leads to Denial of Service | known affected: 8 | 2026-07-02T17:09:52+00:00 | Vulnerability · Source |
| CVE-2026-6732 | redhat_vex | libxml2: libxml2: Denial of Service via crafted XSD-validated document | fixed: 3 known affected: 25 | 2026-07-02T17:09:49+00:00 | Vulnerability · Source |
| CVE-2026-6538 | redhat_vex | Wireshark: Wireshark: Denial of Service via BEEP protocol dissector crash | known affected: 20 | 2026-07-02T17:09:47+00:00 | Vulnerability · Source |
| CVE-2026-6537 | redhat_vex | Wireshark: Wireshark: Denial of Service via ZigBee protocol dissector crash | known affected: 20 | 2026-07-02T17:09:44+00:00 | Vulnerability · Source |
| CVE-2026-6536 | redhat_vex | wireshark: Wireshark: Denial of Service via DLMS/COSEM protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:43+00:00 | Vulnerability · Source |
| CVE-2026-6535 | redhat_vex | wireshark: Wireshark: Denial of service via zlib decompression crash | known affected: 20 | 2026-07-02T17:09:39+00:00 | Vulnerability · Source |
| CVE-2026-6533 | redhat_vex | Wireshark: Wireshark: Denial of service via LZ77 decompression crash | known affected: 20 | 2026-07-02T17:09:38+00:00 | Vulnerability · Source |
| CVE-2026-6531 | redhat_vex | Wireshark: Wireshark: Denial of Service via SANE protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:34+00:00 | Vulnerability · Source |
| CVE-2026-6529 | redhat_vex | wireshark: Wireshark: Denial of Service via iLBC audio codec processing | known affected: 20 | 2026-07-02T17:09:33+00:00 | Vulnerability · Source |
| CVE-2026-6528 | redhat_vex | Wireshark: Wireshark: Denial of service via TLS protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:32+00:00 | Vulnerability · Source |
| CVE-2026-6527 | redhat_vex | wireshark: Wireshark: Denial of Service due to ASN.1 PER protocol dissector crash | known affected: 20 | 2026-07-02T17:09:28+00:00 | Vulnerability · Source |
| CVE-2026-6526 | redhat_vex | wireshark: Wireshark: Denial of Service due to RTSP protocol dissector crash | known affected: 20 | 2026-07-02T17:09:24+00:00 | Vulnerability · Source |
| CVE-2026-6522 | redhat_vex | Wireshark: Wireshark: Denial of Service via RPKI-Router protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:23+00:00 | Vulnerability · Source |
| CVE-2026-6520 | redhat_vex | Wireshark: Wireshark: Denial of Service via OpenFlow v6 protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:19+00:00 | Vulnerability · Source |
| CVE-2026-6521 | redhat_vex | Wireshark: Wireshark: Denial of Service via OpenFlow v5 protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:19+00:00 | Vulnerability · Source |
| CVE-2026-6420 | redhat_vex | keylime: Keylime: Security bypass due to hardcoded TPM quote nonce | fixed: 30 known affected: 8 | 2026-07-02T17:09:17+00:00 | Vulnerability · Source |
| CVE-2026-6519 | redhat_vex | Wireshark: Wireshark: Denial of Service via MBIM protocol dissector infinite loop | known affected: 20 | 2026-07-02T17:09:14+00:00 | Vulnerability · Source |
| CVE-2026-6245 | redhat_vex | sssd: out-of-bounds read in the sssd | known affected: 163 | 2026-07-02T17:09:09+00:00 | Vulnerability · Source |
| CVE-2026-5657 | redhat_vex | Wireshark: Wireshark: Denial of service via iLBC codec crash | known affected: 20 | 2026-07-02T17:09:09+00:00 | Vulnerability · Source |
| CVE-2026-6357 | redhat_vex | pip: pip: Arbitrary code execution or information disclosure via malicious wheel package installation | known affected: 93 known not affected: 20 | 2026-07-02T17:09:09+00:00 | Vulnerability · Source |
| CVE-2026-5655 | redhat_vex | wireshark: Wireshark: Denial of Service due to SDP protocol dissector crash | known affected: 20 | 2026-07-02T17:09:02+00:00 | Vulnerability · Source |
| CVE-2026-5654 | redhat_vex | wireshark: Wireshark: Denial of service vulnerability in AMR-NB codec | known affected: 20 | 2026-07-02T17:08:59+00:00 | Vulnerability · Source |
| CVE-2026-5653 | redhat_vex | wireshark: Wireshark: Denial of Service via DCP-ETSI protocol dissector crash | known affected: 20 | 2026-07-02T17:08:54+00:00 | Vulnerability · Source |
| CVE-2026-5409 | redhat_vex | wireshark: Wireshark: Denial of service via Monero protocol dissector crash | known affected: 20 | 2026-07-02T17:08:54+00:00 | Vulnerability · Source |
| CVE-2026-5408 | redhat_vex | wireshark: Wireshark: Denial of service via BT-DHT protocol dissector crash | known affected: 20 | 2026-07-02T17:08:54+00:00 | Vulnerability · Source |
| CVE-2025-9566 | redhat_vex | podman: Podman kube play command may overwrite host files | fixed: 2676 known affected: 1 known not affected: 1174 | 2026-07-02T17:00:10+00:00 | Vulnerability · Source |
| CVE-2026-44222 | redhat_vex | vllm: vLLM: Denial of Service via malformed multimodal input or token injection | known affected: 19 | 2026-07-02T16:43:13+00:00 | Vulnerability · Source |
| CVE-2026-46406 | redhat_vex | @anthropic-ai/claude-code: Claude Code: Information disclosure and file overwrite via insecure temporary file in /copy command | known affected: 1 known not affected: 1 | 2026-07-02T16:22:43+00:00 | Vulnerability · Source |
| CVE-2026-41643 | redhat_vex | github.com/osrg/gobgp: GoBGP: Denial of Service via malformed BGP UPDATE message | known not affected: 1 | 2026-07-02T15:59:54+00:00 | Vulnerability · Source |
| CVE-2025-15666 | redhat_vex | assimp: Assimp: Heap-based buffer overflow via crafted model file | known affected: 8 | 2026-07-02T15:50:50+00:00 | Vulnerability · Source |
| CVE-2026-10101 | redhat_vex | assisted-service: assisted-service: InfraEnv status leaks referenced pull-secret contents to namespace view users | known affected: 1 | 2026-07-02T15:50:50+00:00 | Vulnerability · Source |