logo

Database

Security

Vulnerabilities

Real-time alerts of vulnerabilities across monitored open-source ecosystems.

Ecosystems covered

3

Debian, Go, Npm

Total vulnerabilities tracked

24

From global vulnerability databases

Exclude malware
Package incus

FLAT-OXB3L (CVE-2026-41685)

Inadequate file size control In incus

5.7

Medium

Ecosystem: Debian

Package: incus

FLAT-IQ9DZ (CVE-2026-41647)

Asymmetric denial of service In incus

3.8

Low

Ecosystem: Debian

Package: incus

FLAT-JEMEO (CVE-2026-41684)

Asymmetric denial of service In incus

3.8

Low

Ecosystem: Debian

Package: incus

FLAT-2JVW7 (CVE-2026-40243)

Authentication mechanism absence or evasion In incus

0.6

Low

Ecosystem: Debian

Package: incus

FLAT-LKKQ2 (CVE-2026-40197)

Asymmetric denial of service In incus

4.9

Medium

Ecosystem: Debian

Package: incus

FLAT-57OFL (CVE-2026-40195)

Asymmetric denial of service In incus

4.9

Medium

Ecosystem: Debian

Package: incus

FLAT-3VK6R (CVE-2026-35527)

Server-side request forgery (SSRF) In incus

1.3

Low

Ecosystem: Debian

Package: incus

FLAT-GOXBQ (CVE-2026-33898)

Improper authorization control for web services In github.com/lxc/incus/v6

5.9

Medium

Ecosystem: Go

Package: github.com/lxc/incus/v6

FLAT-D4GX6 (CVE-2026-33945)

Lack of data validation - Path Traversal In github.com/lxc/incus

3.8

Low

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-RWLG2 (CVE-2026-33711)

Insecure temporary files In github.com/lxc/incus

1.9

Low

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-G2BQ1 (CVE-2026-33542)

Insufficient data authenticity validation In github.com/lxc/incus/v6

3.8

Low

Ecosystem: Go

Package: github.com/lxc/incus/v6

FLAT-3CSX5 (DSA-6184-1)

Supply Chain Attack - Lock Files In incus

0.5

Low

Ecosystem: Debian

Package: incus

FLAT-QO7R8 (CVE-2026-33897)

Lack of data validation - Path Traversal In github.com/lxc/incus/v6

5.8

Medium

Ecosystem: Go

Package: github.com/lxc/incus/v6

FLAT-U7SZN (CVE-2026-33743)

Improper resource allocation In github.com/lxc/incus

3.8

Low

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-AXWW7 (CVE-2026-32606)

Weak credential policy In github.com/lxc/incus-os/incus-osd

3.7

Low

Ecosystem: Go

Package: github.com/lxc/incus-os/incus-osd

FLAT-EVGS1 (CVE-2026-23953)

Lack of data validation In github.com/lxc/incus

5.8

Medium

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-ATJPF (CVE-2026-23954)

Lack of data validation - Path Traversal In github.com/lxc/incus

5.8

Medium

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-MYSKR (DSA-6109-1)

Supply Chain Attack - Lock Files In incus

0.5

Low

Ecosystem: Debian

Package: incus

FLAT-003S1 (CVE-2025-64507)

Excessive privileges In github.com/lxc/incus/v6

6.1

Medium

Ecosystem: Go

Package: github.com/lxc/incus/v6

FLAT-SZ6YA (DSA-6051-1)

Supply Chain Attack - Lock Files In incus

0.6

Low

Ecosystem: Debian

Package: incus

FLAT-I48NP (DSA-6027-1)

Supply Chain Attack - Lock Files In incus

0.6

Low

Ecosystem: Debian

Package: incus

FLAT-LDXJC (MAL-2025-35556)

Use of software with malware In test-mlw2-incus-bykes-avert-watts

5.2

Medium

Ecosystem: Npm

Package: test-mlw2-incus-bykes-avert-watts

FLAT-ND0YO (CVE-2025-52890)

Authentication mechanism absence or evasion In github.com/lxc/incus

5.6

Medium

Ecosystem: Go

Package: github.com/lxc/incus

FLAT-86X90 (CVE-2025-52889)

Improper resource allocation In github.com/lxc/incus

1.1

Low

Ecosystem: Go

Package: github.com/lxc/incus