NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-54275	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the server_hostname TLS SNI check can be bypassed whe...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-54274	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, if an attacker sends large incomplete websocket frame...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-54273	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, no limit was present on the number of pipelined reque...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-54271	protobufjs-cli is the command line add-on for protobuf.js. Prior to 1.3.2 and 2.5.0, a previous fix for unsafe name handling in pbjs static / static-m...	2026-06-22	8.2	NETWORK	HIGH	NVD
CVE-2026-54270	protobufjs compiles protobuf definitions into JavaScript (JS) functions. From 8.2.0 to 8.4.2, protobufjs preserved unknown wire elements in message.$u...	2026-06-22	5.3	NETWORK	MEDIUM	NVD
CVE-2026-54269	protobufjs compiles protobuf definitions into JavaScript (JS) functions. Prior to 8.6.0 and 7.6.3, protobufjs accepted certain schema-derived names th...	2026-06-22	5.3	NETWORK	MEDIUM	NVD
CVE-2026-53571	Vite is a frontend tooling framework for JavaScript. Prior to 8.0.16, 7.3.5, and 6.4.3, the contents of files that are specified by server.fs.deny can...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-53540	Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.31, parse_form() did not validate the Content-Length header before using it ...	2026-06-22	3.7	NETWORK	LOW	NVD
CVE-2026-53539	Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, when parsing application/x-www-form-urlencoded bodies, QuerystringParser...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-53538	Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, QuerystringParser treated ; as a field separator in application/x-www-fo...	2026-06-22	3.7	NETWORK	LOW	NVD
CVE-2026-53537	Python-Multipart is a streaming multipart parser for Python. Prior to 0.0.30, parse_options_header parsed Content-Disposition (and Content-Type) heade...	2026-06-22	3.7	NETWORK	LOW	NVD
CVE-2026-50556	Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc...	2026-06-22	6.1	NETWORK	MEDIUM	NVD
CVE-2026-50555	Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc...	2026-06-22	6.1	NETWORK	MEDIUM	NVD
CVE-2026-50269	AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.0, attacker-controlled input included into multipart/pay...	2026-06-22	7.5	NETWORK	HIGH	NVD
CVE-2026-50184	Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to 22.0.0-rc...	2026-06-22	6.1	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.