Every CVE whose affected-product data names Steipete Summarize, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2026-45245 — CVSS 7.4 (high): Summarize prior to 0.15.1 contains a vulnerability in the hover summary feature that allows malicious pages to dispatch synthetic mouseover…
CVE-2026-45242 — CVSS 7.1 (high): Summarize prior to 0.15.1 contains a path traversal vulnerability in the /v1/summarize daemon endpoint that allows authenticated callers to…
CVE-2026-45243 — CVSS 6.1 (medium): Summarize prior to 0.15.1 contains a missing authorization vulnerability in the content script window.postMessage bridge that allows…
CVE-2026-45246 — CVSS 5.5 (medium): Summarize prior to 0.15.1 contains an insecure file permission vulnerability in the refresh-free configuration rewrite path that allows…
CVE-2026-45244 — CVSS 5.4 (medium): Summarize prior to 0.15.1 contains a missing authorization vulnerability that allows attackers to execute browser automation actions…