Angular — CVE history (npm)
Angular
31 CVEs affect the Angular npm package (highest CVSS 8.8). Latest disclosed: 2026-06-22. Full CVE history sourced from NVD.
Summary
- Package
Angular(npm)- Total CVEs
31- Actively exploited (CISA KEV)
- 0
- Highest CVSS
8.8- Latest disclosed
- 2026-06-22
Recent CVEs (top 20)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-50556 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50555 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50184 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50171 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50170 | High | 7.5 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50169 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50168 | High | 8.2 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-46417 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54268 | High | 7.5 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54267 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54266 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54265 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54264 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-52725 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50557 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50178 | High | 8.8 | — | 2026-06-22 | The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. |
CVE-2026-49241 | High | 8.8 | — | 2026-06-22 | The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. |
CVE-2026-41423 | Medium | 5.3 | — | 2026-05-08 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-27970 | Medium | 6.1 | — | 2026-02-26 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-22610 | Medium | 6.1 | — | 2026-01-10 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
All-time worst (top 10 by CVSS)
| CVE | Severity | CVSS | KEV | Published | Summary |
|---|---|---|---|---|---|
CVE-2026-50178 | High | 8.8 | — | 2026-06-22 | The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. |
CVE-2026-49241 | High | 8.8 | — | 2026-06-22 | The Angular Language Service VS Code Extension provides a rich editing experience for Angular templates. |
CVE-2026-50168 | High | 8.2 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50170 | High | 7.5 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-54268 | High | 7.5 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2024-21490 | High | 7.5 | — | 2024-02-10 | This affects versions of the package angular from 1.3.0; versions of the package angularjs from 1.3.0. |
CVE-2026-50556 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50555 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50184 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |
CVE-2026-50171 | Medium | 6.1 | — | 2026-06-22 | Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. |