CVEs classified under CWE-913, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-47208 — CVSS 10.0 (critical): vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, VM2 suffers from a sandbox breakout vulnerability. This allows…
CVE-2026-47137 — CVSS 10.0 (critical): vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, the fix for GHSA-8hg8-63c5-gwmx (CVE-2023-37903) introduced a check…
CVE-2026-47131 — CVSS 10.0 (critical): vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, by combining Buffer.call.call({}.__lookupGetter__, Buffer…
CVE-2023-29017 — CVSS 10.0 (critical): vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. Prior to version 3.9.15, vm2 was not properly…
CVE-2022-36067 — CVSS 10.0 (critical): vm2 is a sandbox that can run untrusted code with whitelisted Node's built-in modules. In versions prior to version 3.9.11, a threat actor…
CVE-2026-34156 — CVSS 9.9 (critical): NocoBase is an AI-powered no-code/low-code platform for building business applications and enterprise solutions. Prior to version 2.0.28…
CVE-2026-25049 — CVSS 9.9 (critical): n8n is an open source workflow automation platform. Prior to versions 1.123.17 and 2.5.2, an authenticated user with permission to create…
CVE-2026-47210 — CVSS 9.8 (critical): vm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, a sandbox escape vulnerability in vm2 allows arbitrary code…
CVE-2025-25270 — CVSS 9.8 (critical): An unauthenticated remote attacker can alter the device configuration in a way to get remote code execution as root with specific…
CVE-2024-8953 — CVSS 9.8 (critical): In composiohq/composio version 0.4.3, the mathematical_calculator endpoint uses the unsafe eval() function to perform mathematical…
CVE-2024-5452 — CVSS 9.8 (critical): A remote code execution (RCE) vulnerability exists in the lightning-ai/pytorch-lightning library version 2.2.1 due to improper handling of…
CVE-2023-43177 — CVSS 9.8 (critical): CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes.
CVE-2023-29199 — CVSS 9.8 (critical): There exists a vulnerability in source code transformer (exception sanitization logic) of vm2 for versions up to 3.9.15, allowing attackers…
CVE-2021-22387 — CVSS 9.8 (critical): There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this…
CVE-2021-32563 — CVSS 9.8 (critical): An issue was discovered in Thunar before 4.16.7 and 4.17.x before 4.17.2. When called with a regular file as a command-line argument, it…
CVE-2020-15568 — CVSS 9.8 (critical): TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method…
CVE-2014-9852 — CVSS 9.8 (critical): distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact…
CVE-2026-48700: An issue was discovered in all versions of PCManFM-Qt starting from 1.1.0. When a regular file's path is passed as a URI in an…
CVE-2026-33286 — CVSS 9.1 (critical): Graphiti is a framework that sits on top of models and exposes them via a JSON:API-compliant interface. Versions prior to 1.10.2 have an…
CVE-2025-6384 — CVSS 9.1 (critical): Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to…
CVE-2023-33175 — CVSS 9.1 (critical): ToUI is a Python package for creating user interfaces (websites and desktop apps) from HTML. ToUI is using Flask-Caching (SimpleCache) to…
CVE-2025-69219 — CVSS 8.8 (high): A user with access to the DB could craft a database entry that would result in executing code on Triggerer - which gives anyone who have…
CVE-2025-13659 — CVSS 8.8 (high): Improper control of dynamically managed code resources in Ivanti Endpoint Manager prior to version 2024 SU4 SR1 allows a remote…
CVE-2024-7297 — CVSS 8.8 (high): Langflow versions prior to 1.0.13 suffer from a Privilege Escalation vulnerability, allowing a remote and low privileged attacker to gain…
CVE-2022-3225 — CVSS 8.8 (high): Improper Control of Dynamically-Managed Code Resources in GitHub repository budibase/budibase prior to 1.3.20.
CVE-2025-13426: A vulnerability exists in Google Apigee's JavaCallout policy https://docs.apigee.com/api-platform/reference/policies/java-callout-policy…
CVE-2022-31764 — CVSS 8.5 (high): The Lite UI of Apache ShardingSphere ElasticJob-UI allows an attacker to perform RCE by constructing a special JDBC URL of H2 database…
CVE-2023-37271 — CVSS 8.4 (high): RestrictedPython is a tool that helps to define a subset of the Python language which allows users to provide a program input into a…
CVE-2023-25560 — CVSS 8.2 (high): DataHub is an open-source metadata platform. The AuthServiceClient which is responsible for creation of new accounts, verifying…
CVE-2022-43441 — CVSS 8.1 (high): A code execution vulnerability exists in the Statement Bindings functionality of Ghost Foundation node-sqlite3 5.1.1. A specially-crafted…
CVE-2021-21413 — CVSS 8.0 (high): isolated-vm is a library for nodejs which gives you access to v8's Isolate interface. Versions of isolated-vm before v4.0.0 have API…
CVE-2025-54065 — CVSS 7.9 (high): GZDoom is a feature centric port for all Doom engine games. GZDoom is an open source Doom engine. In versions 4.14.2 and earlier, ZScript…
CVE-2022-4318 — CVSS 7.8 (high): A vulnerability was found in cri-o. This issue allows the addition of arbitrary lines into /etc/passwd by use of a specially crafted…
CVE-2022-25265 — CVSS 7.8 (high): In the Linux kernel through 5.16.10, certain binary files may have the exec-all attribute if they were built in approximately 2003 (e.g…
CVE-2021-23267 — CVSS 7.6 (high): Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to…
CVE-2025-31674 — CVSS 7.5 (high): Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Drupal Drupal core allows Object…
CVE-2023-31032 — CVSS 7.5 (high): NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable evaluation by local access. A successful exploit…
CVE-2012-2055 — CVSS 7.5 (high): GitHub Enterprise before 20120304 does not properly restrict the use of a hash to provide values for a model's attributes, which allows…
CVE-2019-1617 — CVSS 7.4 (high): A vulnerability in the Fibre Channel over Ethernet (FCoE) N-port Virtualization (NPV) protocol implementation in Cisco NX-OS Software could…
CVE-2019-1595 — CVSS 7.4 (high): A vulnerability in the Fibre Channel over Ethernet (FCoE) protocol implementation in Cisco NX-OS Software could allow an unauthenticated…
CVE-2025-9905 — CVSS 7.3 (high): The Keras Model.load_model method can be exploited to achieve arbitrary code execution, even with safe_mode=True. One can create a…
CVE-2023-5763 — CVSS 6.8 (medium): In Eclipse Glassfish 5 or 6, running with old versions of JDK (lower than 6u211, or < 7u201, or < 8u191), allows remote attackers to load…
CVE-2022-39051 — CVSS 6.8 (medium): Attacker might be able to execute malicious Perl code in the Template toolkit, by having the admin installing an unverified 3th party…
CVE-2021-42809 — CVSS 6.5 (medium): Improper Access Control of Dynamically-Managed Code Resources (DLL) in Thales Sentinel Protection Installer could allow the execution of…
CVE-2020-3419 — CVSS 6.5 (medium): A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to join a Webex…
CVE-2019-15006 — CVSS 6.5 (medium): There was a man-in-the-middle (MITM) vulnerability present in the Confluence Previews plugin in Confluence Server and Confluence Data…
CVE-2022-40635 — CVSS 6.4 (medium): Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to…
CVE-2022-40634 — CVSS 6.4 (medium): Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of Crafter CMS allows authenticated developers to…
CVE-2026-5251 — CVSS 6.3 (medium): A vulnerability was identified in z-9527 admin 1.0/2.0. This impacts an unknown function of the file /server/routes/user.js of the…