Weekly Threat Summary 2026-W19 — 22 items tracked
22 CVEs EPSS avg 0.0060
Lane Breakdown
22 background
Top CVEs by EPSS
CVE-2026-25639
0.0124EPSS
A denial of service flaw has been discovered in the Axios npm package. the me...
CVSS 7.5
CVE-2025-62718
0.0107EPSS
A flaw was found in Axios, a promise-based HTTP client. This vulnerability oc...
CVSS 7
CVE-2026-4800
0.0103EPSS
A flaw was found in lodash. The fix for CVE-2021-23337 added validation for t...
CVSS 8.1
CVE-2026-29063
0.0061EPSS
A flaw was found in Immutable.js, a library for persistent immutable data str...
CVSS 8.8
CVE-2026-32285
0.0054EPSS
A flaw was found in github.com/buger/jsonparser. The Delete function, when pr...
CVSS 7.5
CVE-2026-25679
0.0052EPSS
The Go standard library function net/url.Parse insufficiently validated the h...
CVSS 7.5
CVE-2026-33816
0.0038EPSS
A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This me...
CVSS 8.3
CVE-2026-32280
0.0037EPSS
A flaw was found in the Go standard library packages `crypto/x509` and `crypt...
CVSS 7.5
CVE-2025-13465
0.0032EPSS
A flaw was found in Lodash. A prototype pollution vulnerability in the _.unse...
CVSS 8.2
CVE-2026-32282
0.0029EPSS
A flaw was found in the internal/syscall/unix package in the Go standard libr...
CVSS 7.8
← All weekly summaries