Known Vulnerabilities for products from Facebook
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Facebook".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40907 json | Not Provided | 2026-04-21 | 2026-04-21 | |
| CVE-2026-39328 json | Not Provided | 2026-04-07 | 2026-04-09 | |
| CVE-2026-35534 json | Not Provided | 2026-04-07 | 2026-04-09 | |
| CVE-2026-35179 json | Not Provided | 2026-04-06 | 2026-04-06 | |
| CVE-2026-34721 json | Not Provided | 2026-04-08 | 2026-04-09 | |
| CVE-2026-32491 json | Not Provided | 2026-03-25 | 2026-03-25 | |
| CVE-2026-32428 json | Not Provided | 2026-03-13 | 2026-04-01 | |
| CVE-2026-27379 json | Not Provided | 2026-03-05 | 2026-04-01 | |
| CVE-2025-64296 json | Not Provided | 2025-10-29 | 2026-04-01 | |
| CVE-2025-63022 json | Not Provided | 2025-12-31 | 2026-04-01 | |
| CVE-2024-23347 json | 7.8 - HIGH | 2024-01-16 | 2024-01-30 | |
| CVE-2023-49062 json | 7.5 - HIGH | 2023-11-28 | 2023-12-04 | |
| CVE-2023-45239 json | A lack of input validation exists in tac_plus prior to commit 4fdf178 which, when pre or post auth commands are enabled, allo... | 9.8 - CRITICAL | 2023-10-06 | 2023-11-07 |
| CVE-2023-44487 json | The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many stre... | 7.5 - HIGH | 2023-10-10 | 2024-02-02 |
| CVE-2023-30792 json | Anchor tag hrefs in Lexical prior to v0.10.0 would render javascript: URLs, allowing for cross-site scripting on link clicks ... | 6.1 - MEDIUM | 2023-04-29 | 2023-11-07 |
| CVE-2023-30470 json | A use-after-free related to unsound inference in the bytecode generation when optimizations are enabled for Hermes prior to c... | 9.8 - CRITICAL | 2023-05-18 | 2023-11-07 |
| CVE-2023-28753 json | netconsd prior to v0.2 was vulnerable to an integer overflow in its parse_packet function. A malicious individual could lever... | 9.8 - CRITICAL | 2023-05-18 | 2023-11-07 |
| CVE-2023-28081 json | A bytecode optimization bug in Hermes prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could be used to cause an use-... | 9.8 - CRITICAL | 2023-05-18 | 2023-11-07 |
| CVE-2023-25933 json | A type confusion bug in TypedArray prior to commit e6ed9c1a4b02dc219de1648f44cd808a56171b81 could have been used by a malicio... | 9.8 - CRITICAL | 2023-05-18 | 2023-11-07 |
| CVE-2023-24833 json | A use-after-free in BigIntPrimitive addition in Hermes prior to commit a6dcafe6ded8e61658b40f5699878cd19a481f80 could have be... | 7.5 - HIGH | 2023-05-18 | 2023-11-07 |
Known software with vulnerabilities from Facebook
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Al Jazeera | 6 | |
| Application | Arabic Troll Football | 1.0.1 | |
| Application | Barcode Scanner | 2.3.0 | |
| Application | Best Beginning | 2 | |
| Application | Bilingual Magic Ball | 0.1 | |
| Application | Bilingual Magic Ball Relajo | 0.1 | |
| Application | Bite It! | 1.1.8 | |
| Application | Buck | 2015.09.10.01 | |
| Application | Create-react-app | 0.5.0 | |
| Application | Facebook For Woocommerce | 1.9.11 | |
| Application | Facebook Platform | 1.0 | |
| Application | Face Fun Photo Collage Maker 2 | 1.3.0 | |
| Application | Fire Equipments Screen Lock | 1.1 | |
| Application | Fizz | 2018.09.24.00 | |
| Application | Folly | 0.22.0 | |
| Application | Hermes | - | |
| Application | Hhvm | 2.2.0 | |
| Application | Hiphop Virtual Machine | 2.2.0 | |
| Application | Hunting Trophy Whitetails | 0.75.13441.88885 | |
| Application | - |