Vulnerability DB | Snyk

Find out if you have vulnerabilities that put you at risk

Test your applications

All Vulnerabilities

APPLICATION

Cargo | Rust
Objective-C, CocoaPods | Swift
Composer | PHP
Conan | C/C++
GitHub | Go
Hex | Elixir / Erlang
Maven | Java
npm | JavaScript
NuGet | C#/F#/VB
Pypi | Python
pub | Dart, Flutter
RubyGems | Ruby
Swift Packages | Swift
C/C++

OPERATING SYSTEM

All OS vulnerabilities
AlmaLinux
Alpine Linux
Amazon Linux
CentOS
Chainguard
Debian
MinimOS
Oracle Linux
Red Hat Enterprise Linux
Rocky Linux
SUSE Linux Enterprise Server
Ubuntu
Wolfi

Report a new vulnerability

H

Heap-based Buffer OverflowCVE-2026-32316

Affects stedolan/jq | Versions [,1.8.2-rc1)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Out-of-bounds ReadCVE-2026-39979

Affects stedolan/jq | Versions [,1.8.2-rc1)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Uncontrolled RecursionCVE-2026-33947

Affects stedolan/jq | Versions [,1.8.2-rc1)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Out-of-bounds ReadCVE-2026-39956

Affects stedolan/jq | Versions [,1.8.2-rc1)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Improper Null TerminationCVE-2026-33948

Affects stedolan/jq | Versions [,1.8.2-rc1)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

C

Unsafe Dependency ResolutionCVE-2026-40959

Affects minetest/minetest | Versions [5.0.0,5.15.2)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

H

Always-Incorrect Control Flow ImplementationCVE-2026-40960

Affects minetest/minetest | Versions [5.0.0,5.15.2)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

H

Allocation of Resources Without Limits or ThrottlingCVE-2026-35469

Affects github.com/docker/spdystream/spdy | Versions <0.5.1

Has fix

GoPublished 27 Apr 2026

C

Information ExposureCVE-2026-40173

Affects github.com/dgraph-io/dgraph/x | Versions <25.3.2

Has fix

GoPublished 27 Apr 2026

C

Information ExposureCVE-2026-40173

Affects github.com/dgraph-io/dgraph/dgraph/cmd/zero | Versions <25.3.2

Has fix

GoPublished 27 Apr 2026

C

Information ExposureCVE-2026-40173

Affects github.com/dgraph-io/dgraph/dgraph/cmd/alpha | Versions <25.3.2

Has fix

GoPublished 27 Apr 2026

M

Division by zeroCVE-2026-33593

Affects dnsdist | Versions [,1.9.13)[2.0.0-alpha0,2.0.4)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

L

Use of Uninitialized VariableCVE-2025-13763

Affects opensc/opensc | Versions [,0.27.0)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Directory TraversalCVE-2026-21726

Affects github.com/grafana/loki/v3/pkg/ruler/base | Versions <3.6.4

Has fix

GoPublished 27 Apr 2026

H

Expired Pointer DereferenceCVE-2026-34001

Affects xorg/xwayland | Versions [,24.1.10)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

H

Expired Pointer DereferenceCVE-2026-34001

Affects xorg-server | Versions [,21.1.22)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

C

Exposure of Private Personal Information to an Unauthorized ActorCVE-2025-41118

Affects github.com/grafana/pyroscope/pkg/objstore/providers/cos | Versions <1.15.2>=1.16.0 <1.16.1

Has fix

GoPublished 27 Apr 2026

H

Integer Underflow (Wrap or Wraparound)CVE-2026-33999

Affects xorg/xwayland | Versions [,24.1.10)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

H

Integer Underflow (Wrap or Wraparound)CVE-2026-33999

Affects xorg-server | Versions [,21.1.22)

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

H

Missing Write Protection for Parametric Data ValuesCVE-2026-40188

Affects github.com/patrickhener/goshs/sftpserver | Versions >=1.0.7 <2.0.0-beta.4

Has fix

GoPublished 27 Apr 2026

C

Missing AuthorizationCVE-2026-40189

Affects github.com/patrickhener/goshs/httpserver | Versions <2.0.0-beta.4

Has fix

GoPublished 27 Apr 2026

M

Improper AuthorizationCVE-2026-39901

Affects github.com/monetr/monetr/server/controller | Versions <1.12.3

Has fix

GoPublished 27 Apr 2026

H

Missing AuthorizationCVE-2026-39429

Affects github.com/kcp-dev/kcp/config/helpers | Versions <0.29.3>=0.30.0 <0.30.3

Has fix

GoPublished 27 Apr 2026

H

Directory TraversalCVE-2026-40090

Affects github.com/zarf-dev/zarf/src/pkg/packager/layout | Versions >=0.23.0 <0.74.2

Has fix

GoPublished 27 Apr 2026

H

Directory TraversalCVE-2026-40090

Affects github.com/zarf-dev/zarf/src/pkg/packager | Versions >=0.23.0 <0.74.2

Has fix

GoPublished 27 Apr 2026

H

Directory TraversalCVE-2026-40090

Affects github.com/zarf-dev/zarf/src/cmd | Versions >=0.23.0 <0.74.2

Has fix

GoPublished 27 Apr 2026

M

Arbitrary Code InjectionCVE-2026-41282

Affects github.com/projectdiscovery/nuclei/v3/pkg/protocols/javascript | Versions >=3.0.0 <3.8.0

Has fix

GoPublished 27 Apr 2026

M

Arbitrary Code InjectionCVE-2026-41282

Affects github.com/projectdiscovery/nuclei/v3/pkg/protocols/common/expressions | Versions >=3.0.0 <3.8.0

Has fix

GoPublished 27 Apr 2026

L

Incorrect Permission Assignment for Critical ResourceCVE-2026-6842

Affects nano | Versions [0,]

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

M

Use of Externally-Controlled Format StringCVE-2026-6843

Affects nano | Versions [0,]

Has fix

Unmanaged (C/C++)Published 27 Apr 2026

Product

Partners
Developers & Devops Features
Enterprise Features
Pricing
Test with GitHub
Test with CLI
API status

Resources

Vulnerability DB
Blog
Documentation
FAQs

Company

About
Jobs
Contact
Legal terms
Privacy
Press kit
Events

Contact us

Support
Report a new vuln

Find us online

Track our development

© 2026 Snyk Ltd.