swifturl

Top products

The 15 most recently published vulnerabilities affecting swifturl.

• CVE-2026-28499LeafKit's HTML escaping may be skipped for Collection values, enabling XSS6.1Mar 18, 2026
• CVE-2026-27120Leaf-kit html escaping does not work on characters that are part of extended grapheme cluster6.1Feb 20, 2026
• CVE-2026-20613The ArchiveReader.extractContents() function used by cctl image load and container image load performs no pathname validation before extracting an archive member. This means that a carelessly or ma...7.8Jan 22, 2026
• CVE-2026-23886Swift W3C TraceContext has malformed HTTP header that can cause a crash5.3Jan 19, 2026
• CVE-2025-54951A group of related buffer overflow vulnerabilities in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This iss...9.8Aug 7, 2025
• CVE-2025-54950An out-of-bounds access vulnerability in the loading of ExecuTorch models can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects Ex...9.8Aug 7, 2025
• CVE-2025-54949A heap buffer overflow vulnerability in the loading of ExecuTorch models can potentially result in code execution or other undesirable effects. This issue affects ExecuTorch prior to commit ede8249...9.8Aug 7, 2025
• CVE-2025-30405An integer overflow vulnerability in the loading of ExecuTorch models can cause objects to be placed outside their allocated memory area, potentially resulting in code execution or other undesirabl...9.8Aug 7, 2025
• CVE-2025-30404An integer overflow vulnerability in the loading of ExecuTorch models can cause overlapping allocations, potentially resulting in code execution or other undesirable effects. This issue affects Exe...9.8Aug 7, 2025
• CVE-2025-30402A heap-buffer-overflow vulnerability in the loading of ExecuTorch methods can cause the runtime to crash and potentially result in code execution or other undesirable effects. This issue affects Ex...8.1Jul 11, 2025
• CVE-2025-0509Signing Checks Bypass7.3Feb 4, 2025
• CVE-2025-0343Swift ASN.1 can be caused to crash when parsing certain BER/DER constructions. This crash is caused by a confusion in the ASN.1 library itself which assumes that certain objects can only be provide...7.5Jan 15, 2025
• CVE-2024-27529wasm3 139076a contains memory leaks in Read_utf8.8.4Nov 8, 2024
• CVE-2024-28867Swift Prometheus un-sanitized metric name or labels can be used to take over exported metrics5.9Mar 29, 2024
• CVE-2024-25713yyjson through 0.8.0 has a double free, leading to remote code execution in some cases, because the pool_free function lacks loop checks. (pool_free is part of the pool series allocator, along with...8.6Feb 11, 2024