See the full list of npm packages compromised in the "Antv Supply Chain Compromise - May 2026" [View compromised packages].
Find out if you have vulnerabilities that put you at risk
Test your applicationsAPPLICATION
OPERATING SYSTEM
- H
Integer Overflow or WraparoundCVE-2026-43618
Affects rsync | Versions [,3.4.3)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Time-of-check Time-of-use (TOCTOU) Race ConditionCVE-2026-43619
Affects rsync | Versions [,3.4.3)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Authentication Bypass by Alternate NameCVE-2026-43617
Affects rsync | Versions [,3.4.3)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Out-of-bounds ReadCVE-2026-43620
Affects rsync | Versions [,3.4.3)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- L
Off-by-one ErrorCVE-2026-45232
Affects rsync | Versions [,3.4.3)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- C
Timing AttackCVE-2026-47783
Affects memcached/memcached | Versions [,1.6.42)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- C
Timing AttackCVE-2026-47784
Affects memcached/memcached | Versions [,1.6.42)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Out-of-bounds ReadCVE-2026-32738
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Out-of-bounds WriteCVE-2026-32740
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Infinite loopCVE-2026-32739
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Use of Uninitialized ResourceCVE-2026-32814
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Heap-based Buffer OverflowCVE-2026-32741
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Out-of-bounds ReadCVE-2026-32882
Affects strukturag/libheif | Versions [,1.22.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
NULL Pointer DereferenceCVE-2026-32134
Affects nanomq/NanoNNG | Versions [,0.24.11)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Origin Validation ErrorCVE-2026-8948
Affects thunderbird | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- H
Origin Validation ErrorCVE-2026-8948
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Access Control BypassCVE-2026-8969
Affects thunderbird | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Access Control BypassCVE-2026-8969
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8960
Affects thunderbird | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8960
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8961
Affects thunderbird | Versions [,140.11)[141.0,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8961
Affects Firefox-ESR | Versions [,140.11)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8961
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Signed to Unsigned Conversion ErrorCVE-2026-8965
Affects thunderbird | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Signed to Unsigned Conversion ErrorCVE-2026-8965
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Access Control BypassCVE-2026-8962
Affects thunderbird | Versions [,140.11)[141.0,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Access Control BypassCVE-2026-8962
Affects Firefox-ESR | Versions [,140.11)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
Access Control BypassCVE-2026-8962
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8963
Affects thunderbird | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026
- M
User ImpersonationCVE-2026-8963
Affects Firefox | Versions [,151.0)
Has fix
Unmanaged (C/C++)Published 20 May 2026