NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-48515	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePack-CSharp's multi-dimensional array formatters read dimens...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48514	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, UnsafeBlitFormatterBase<T>.Deserialize reads an attacker-controlled...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48513	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, runtime-generated union deserializers emitted by DynamicUnionResolv...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48512	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePack-CSharp's JSON conversion helpers contain multiple recur...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48511	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, ExpandoObjectFormatter.Deserialize populates System.Dynamic.Expando...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48510	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, when MessagePack-CSharp decompresses Lz4Block or Lz4BlockArray payl...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48509	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, the parameterless MessagePackInputFormatter() constructor uses defa...	2026-06-22	9.1	NETWORK	CRITICAL	NVD
CVE-2026-48506	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePackReader.TrySkip() recursively descends into nested arrays...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48502	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, MessagePackReader.ReadDateTime() can allocate stack memory based on...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-48109	MessagePack for C# is a MessagePack serializer for C#. Prior to 2.5.301 and 3.1.7, A vulnerability exists in the optional LZ4 decompression path used ...	2026-06-22	8.2	NETWORK	HIGH	NVD
CVE-2026-44889	WebOb provides objects for HTTP requests and responses. Prior to 1.8.10, the normalization of the HTTP Location header during a redirect is vulnerable...	2026-06-22	6.1	NETWORK	MEDIUM	NVD
CVE-2026-44311	Fabric.js is a Javascript HTML5 canvas library. Prior to 7.4.0, a potential Cross-Site Scripting (XSS) vulnerability exists in Fabric.js due to improp...	2026-06-22	5.4	NETWORK	MEDIUM	NVD
CVE-2026-55603	http-proxy-middleware is node.js http-proxy middleware. From 3.0.4 until 3.0.7 and 4.1.1, fixRequestBody() is the library's documented helper for re-e...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-55599	phpseclib is a PHP secure communications library. From 0.1.1 until 1.0.30, 2.0.55, and 3.0.54, when an application validates an untrusted X.509 certif...	2026-06-22	5.8	NETWORK	MEDIUM	NVD
CVE-2026-54651	pypdf is a free and open-source pure-python PDF library. Prior to 6.13.1, an attacker who uses this vulnerability can craft a PDF which leads to an in...	2026-06-22	5.5	LOCAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.