kubo | Snyk

Direct Vulnerabilities

Known vulnerabilities in the kubo package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
L GHSA-vvgj-x9jq-8cj9	<0.41.0-r6
H Allocation of Resources Without Limits or Throttling	<0.41.0-r6
L CVE-2026-39821	<0.41.0-r5
L GHSA-w2q5-6q6x-x959	<0.41.0-r5
L CVE-2026-42507	<0.41.0-r4
L GHSA-h3gm-q7m7-mp28	<0.41.0-r4
L GHSA-4279-q6mj-392r	<0.41.0-r4
L CVE-2026-27145	<0.41.0-r4
H NULL Pointer Dereference	<0.41.0-r1
L CVE-2026-39825	<0.41.0-r1
L GHSA-qc64-m6c2-v4x7	<0.41.0-r1
H Double Free	<0.41.0-r1
M Link Following	<0.41.0-r1
L GHSA-2283-wf8c-rw8r	<0.41.0-r1
L GHSA-5m4p-2gjx-p2g8	<0.41.0-r1
L Cross-site Scripting (XSS)	<0.41.0-r1
L GHSA-497x-jcxf-m478	<0.41.0-r1
L Improper Encoding or Escaping of Output	<0.41.0-r1
L GHSA-3v2c-x6q9-f697	<0.41.0-r1
L GHSA-8g2r-hhvj-mv99	<0.41.0-r1
L GHSA-qf3q-3h68-mmh2	<0.41.0-r1
H Loop with Unreachable Exit Condition ('Infinite Loop')	<0.41.0-r1
M Out-of-bounds Write	<0.41.0-r1
L CVE-2026-42501	<0.41.0-r1
L GHSA-h74g-238j-357m	<0.41.0-r1
L GHSA-9f3f-wv7r-qc8r	<0.41.0-r0
M CVE-2026-26014	<0.41.0-r0
L GHSA-w8rr-5gcm-pp58	<0.40.1-r9
L Uncontrolled Memory Allocation	<0.40.1-r9
L GHSA-hfvc-g4fc-pqhx	<0.40.1-r8
H Untrusted Search Path	<0.40.1-r8
L Uncaught Exception	<0.40.1-r7
L GHSA-78h2-9frx-2jm8	<0.40.1-r7
L GHSA-p77j-4mvh-x3m3	<0.40.1-r5
L Improper Authorization	<0.40.1-r5
L GHSA-j3gx-2473-5fp8	<0.40.1-r2
L Cross-site Scripting (XSS)	<0.40.1-r2
L GHSA-rv83-g57w-fr8j	<0.40.1-r2
L GHSA-j4j7-vw47-rhfq	<0.40.1-r2
L Directory Traversal	<0.40.1-r2
L Direct Request ('Forced Browsing')	<0.40.1-r2
L GHSA-px4r-g4p3-hhqv	<0.39.0-r5
L Reachable Assertion	<0.38.1-r1
L Allocation of Resources Without Limits or Throttling	<0.39.0-r5
L GHSA-j5pm-7495-qmr3	<0.36.0-r2
H Resource Exhaustion	<0.39.0-r5
L GHSA-g6x7-jq8p-6q9q	<0.39.0-r5
L GHSA-g9q4-qjx4-2v7q	<0.39.0-r2
L GHSA-8jvr-vh7g-f8gx	<0.39.0-r3
L Out-of-bounds Write	<0.39.0-r2
L Memory Leak	<0.39.0-r5
H Allocation of Resources Without Limits or Throttling	<0.39.0-r5
L CVE-2026-27141	<0.40.1-r1
L GHSA-xvqr-69v8-f3gv	<0.39.0-r2
L GHSA-cm6p-qc7v-m3jw	<0.39.0-r2
L GHSA-47m2-4cr7-mhcw	<0.38.1-r1
L GHSA-gm9r-q53w-2gh4	<0.39.0-r2
L GHSA-f6x5-jh6r-wrfv	<0.38.2-r1
L CVE-2025-47914	<0.38.2-r1
L GHSA-g754-hx8w-x2g6	<0.39.0-r5
L CVE-2025-61731	<0.39.0-r2
L GHSA-h355-32pf-p2xm	<0.39.0-r3
L GHSA-2f2x-8mwp-p2gc	<0.39.0-r5
L GHSA-gr56-3gp6-6gmj	<0.39.0-r2
L Allocation of Resources Without Limits or Throttling	<0.39.0-r2
C CVE-2025-68121	<0.39.0-r3
L CVE-2025-58181	<0.38.2-r1
L Race Condition	<0.36.0-r2
L CVE-2025-61732	<0.39.0-r3
L GHSA-j5w8-q4qc-rx2x	<0.38.2-r1
L GHSA-8fj7-8h3w-xwfm	<0.40.1-r1
L CVE-2025-61730	<0.39.0-r2
L Allocation of Resources Without Limits or Throttling	<0.39.0-r2

Vulnerability

Vulnerable Version

GHSA-vvgj-x9jq-8cj9

<0.41.0-r6