Play est un acteur de la menace suivi par FactualRisk. Cette page recense les 54 vulnérabilités associées à son activité, triées par priorité de remédiation.
| CVE | Produit | CVSS | Prio | KEV |
| CVE-2026-48519 | pip langflow | 9.6 | P0 | |
| CVE-2026-53512 | npm better-auth | 9.1 | P0 | |
| CVE-2026-55698 | npm pnpm | 8.8 | P0 | |
| CVE-2026-41241 | pip pretalx | 8.7 | P0 | |
| CVE-2026-49259 | composer nukeviet/nukeviet | 8.7 | P0 | |
| CVE-2026-45414 | rubygems decidim | 8.5 | P0 | |
| CVE-2026-44016 | pip docling | 8.2 | P0 | |
| CVE-2026-53849 | npm openclaw | 8.1 | P0 | |
| CVE-2026-53857 | npm openclaw | 8.1 | P0 | |
| CVE-2026-49340 | go go.senan.xyz/gonic | 8.1 | P0 | |
| CVE-2026-47260 | composer phanan/koel | 7.7 | P0 | |
| CVE-2026-54018 | pip open-webui | 7.7 | P0 | |
| CVE-2026-45337 | npm better-auth | 7.6 | P0 | |
| CVE-2026-9809 | composer mautic/core | 7.6 | P0 | |
| CVE-2026-44439 | pip PlaywrightCapture | 7.5 | P0 | |
| CVE-2026-55697 | npm pnpm | 7.5 | P0 | |
| CVE-2026-44511 | rubygems katalyst-koi | 7.4 | P0 | |
| CVE-2026-54783 | nuget CoreWCF.Primitives | 7.4 | P0 | |
| CVE-2026-49338 | go go.senan.xyz/gonic | 7.1 | P0 | |
| CVE-2026-49339 | go go.senan.xyz/gonic | 7.1 | P0 | |
| CVE-2026-54491 | composer phanan/koel | 7.1 | P0 | |
| CVE-2026-37982 | maven org.keycloak:keycloak-services | 6.8 | P2 | |
| CVE-2026-9802 | maven org.keycloak:keycloak-services | 6.8 | P2 | |
| CVE-2026-48545 | pip gradio | 6.8 | P2 | |
| CVE-2026-44353 | pip streamlink | 6.5 | P2 | |
| CVE-2026-54518 | maven com.fasterxml.jackson.core:jackson-d | 6.5 | P2 | |
| CVE-2026-55699 | npm pnpm | 6.5 | P2 | |
| CVE-2026-55180 | npm pnpm | 6.5 | P2 | |
| CVE-2026-53637 | composer sylius/sylius | 6.5 | P2 | |
| CVE-2026-45377 | rubygems decidim-core | 6.5 | P2 | |
| CVE-2026-50157 | composer auth0/symfony | 6.5 | P2 | |
| CVE-2026-41426 | pip pretalx | 6.1 | P2 | |
| CVE-2026-48520 | pip langflow | 6.1 | P2 | |
| CVE-2026-45680 | go go.opentelemetry.io/obi | 5.9 | P2 | |
| CVE-2026-54779 | nuget CoreWCF.Primitives | 5.9 | P2 | |
| CVE-2026-41017 | pip apache-airflow | 5.9 | P2 | |
| CVE-2026-44727 | pip jupyter-server | 5.4 | P2 | |
| CVE-2024-53253 | pip sentry | 5.3 | P2 | |
| CVE-2026-44428 | go github.com/modelcontextprotocol/registr | 4.7 | P2 | |
| CVE-2026-35366 | rust uu_printenv | 4.4 | P2 | |
| CVE-2026-6343 | go github.com/mattermost/mattermost/server | 4.3 | P2 | |
| CVE-2026-4055 | go github.com/mattermost/mattermost/server | 4.3 | P2 | |
| CVE-2026-53862 | npm openclaw | 4.2 | P2 | |
| CVE-2026-4286 | go github.com/mattermost/mattermost/server | 3.1 | P3 | |
| CVE-2026-34579 | composer mantisbt/mantisbt | 0.0 | P3 | |
| CVE-2026-46496 | npm @haxtheweb/haxcms-nodejs | 0.0 | P3 | |
| CVE-2026-47068 | erlang phoenix_storybook | 0.0 | P3 | |
| CVE-2026-8469 | erlang phoenix_storybook | 0.0 | P3 | |
| CVE-2026-8467 | erlang phoenix_storybook | 0.0 | P3 | |
| CVE-2025-48074 | pip OpenEXR | 0.0 | P3 | |
| CVE-2026-47348 | composer typo3/cms-core | 0.0 | P3 | |
| CVE-2026-48492 | composer snipe/snipe-it | 0.0 | P3 | |
| CVE-2026-7890 | composer concrete5/concrete5 | 0.0 | P3 | |
| CVE-2025-21617 | composer guzzlehttp/oauth-subscriber | 0.0 | P3 |
La donnée est gratuite. Pour un avis sur l'impact réel sur votre parc et un plan de remédiation, on en parle.
Nous contacter →