Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-35466 | 1 Cmu | 1 Cveclient | 2026-06-03 | N/A | 6.1 MEDIUM |
| XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services | |||||
| CVE-2026-35467 | 1 Cmu | 1 Cveclient | 2026-06-03 | N/A | 7.5 HIGH |
| The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials. | |||||