Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2023-54326
N/A
misc: pci_endpoint_test: Free IRQs before removing the… Linux
 Linux
 2025-12-30T12:37:09.698Z 2025-12-30T12:37:09.698Z
CVE-2023-54325
N/A
crypto: qat - fix out-of-bounds read Linux
 Linux
 2025-12-30T12:37:09.015Z 2025-12-30T12:37:09.015Z
CVE-2023-54324
N/A
dm: fix a race condition in retrieve_deps Linux
 Linux
 2025-12-30T12:37:08.337Z 2025-12-30T12:37:08.337Z
CVE-2023-54323
N/A
cxl/pmem: Fix nvdimm registration races Linux
 Linux
 2025-12-30T12:37:07.656Z 2025-12-30T12:37:07.656Z
CVE-2022-50889
N/A
dm integrity: Fix UAF in dm_integrity_dtr() Linux
 Linux
 2025-12-30T12:37:06.957Z 2025-12-30T12:37:06.957Z
CVE-2022-50888
N/A
remoteproc: qcom: q6v5: Fix potential null-ptr-deref i… Linux
 Linux
 2025-12-30T12:37:06.269Z 2025-12-30T12:37:06.269Z
CVE-2022-50887
N/A
regulator: core: fix unbalanced of node refcount in re… Linux
 Linux
 2025-12-30T12:37:05.505Z 2025-12-30T12:37:05.505Z
CVE-2023-54322
N/A
arm64: set __exception_irq_entry with __irq_entry as a… Linux
 Linux
 2025-12-30T12:34:15.446Z 2025-12-30T12:34:15.446Z
CVE-2023-54321
N/A
driver core: fix potential null-ptr-deref in device_add() Linux
 Linux
 2025-12-30T12:34:14.793Z 2025-12-30T12:34:14.793Z
CVE-2023-54320
N/A
platform/x86/amd: pmc: Fix memory leak in amd_pmc_stb_… Linux
 Linux
 2025-12-30T12:34:14.133Z 2025-12-30T12:34:14.133Z
CVE-2023-54319
N/A
pinctrl: at91-pio4: check return value of devm_kasprintf() Linux
 Linux
 2025-12-30T12:34:13.468Z 2025-12-30T12:34:13.468Z
CVE-2022-50886
N/A
mmc: toshsd: fix return value check of mmc_add_host() Linux
 Linux
 2025-12-30T12:34:12.782Z 2025-12-30T12:34:12.782Z
CVE-2022-50885
N/A
RDMA/rxe: Fix NULL-ptr-deref in rxe_qp_do_cleanup() wh… Linux
 Linux
 2025-12-30T12:34:12.093Z 2025-12-30T12:34:12.093Z
CVE-2022-50884
N/A
drm: Prevent drm_copy_field() to attempt copying a NUL… Linux
 Linux
 2025-12-30T12:34:11.390Z 2025-12-30T12:34:11.390Z
CVE-2025-7195
5.2 (3.1)
Operator-sdk: privilege escalation due to incorrect pe… operator-framework
 operator-sdk
 2025-08-07T19:05:08.756Z 2025-12-30T12:33:12.890Z
CVE-2025-15248
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
sunhailin12315 product-review 商品评价系统 Write a Review cr… sunhailin12315
 product-review 商品评价系统
 2025-12-30T12:32:10.563Z 2025-12-30T12:32:10.563Z
CVE-2023-54318
N/A
net/smc: use smc_lgr_list.lock to protect smc_lgr_list… Linux
 Linux
 2025-12-30T12:23:48.134Z 2025-12-30T12:23:48.134Z
CVE-2023-54317
N/A
dm flakey: don't corrupt the zero page Linux
 Linux
 2025-12-30T12:23:47.232Z 2025-12-30T12:23:47.232Z
CVE-2023-54316
N/A
refscale: Fix uninitalized use of wait_queue_head_t Linux
 Linux
 2025-12-30T12:23:46.526Z 2025-12-30T12:23:46.526Z
CVE-2023-54315
N/A
powerpc/powernv/sriov: perform null check on iov befor… Linux
 Linux
 2025-12-30T12:23:45.858Z 2025-12-30T12:23:45.858Z
CVE-2023-54314
N/A
media: af9005: Fix null-ptr-deref in af9005_i2c_xfer Linux
 Linux
 2025-12-30T12:23:45.179Z 2025-12-30T12:23:45.179Z
CVE-2023-54313
N/A
ovl: fix null pointer dereference in ovl_get_acl_rcu() Linux
 Linux
 2025-12-30T12:23:44.484Z 2025-12-30T12:23:44.484Z
CVE-2023-54312
N/A
samples/bpf: Fix buffer overflow in tcp_basertt Linux
 Linux
 2025-12-30T12:23:43.828Z 2025-12-30T12:23:43.828Z
CVE-2023-54311
N/A
ext4: fix deadlock when converting an inline directory… Linux
 Linux
 2025-12-30T12:23:43.174Z 2025-12-30T12:23:43.174Z
CVE-2023-54310
N/A
scsi: message: mptlan: Fix use after free bug in mptla… Linux
 Linux
 2025-12-30T12:23:42.509Z 2025-12-30T12:23:42.509Z
CVE-2023-54309
N/A
tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpm… Linux
 Linux
 2025-12-30T12:23:41.834Z 2025-12-30T12:23:41.834Z
CVE-2023-54308
N/A
ALSA: ymfpci: Create card with device-managed snd_devm… Linux
 Linux
 2025-12-30T12:23:41.163Z 2025-12-30T12:23:41.163Z
CVE-2023-54307
N/A
ptp_qoriq: fix memory leak in probe() Linux
 Linux
 2025-12-30T12:23:40.491Z 2025-12-30T12:23:40.491Z
CVE-2023-54306
N/A
net: tls: avoid hanging tasks on the tx_lock Linux
 Linux
 2025-12-30T12:23:39.833Z 2025-12-30T12:23:39.833Z
CVE-2023-54305
N/A
ext4: refuse to create ea block when umounted Linux
 Linux
 2025-12-30T12:23:39.163Z 2025-12-30T12:23:39.163Z
ID CVSS Description Vendor Product Published Updated
CVE-2025-15247
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
gmg137 snap7-rs client.rs download heap-based overflow gmg137
 snap7-rs
 2025-12-30T12:02:09.529Z 2025-12-30T12:02:09.529Z
CVE-2025-15246
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
aizuda snail-job API FurySerializer.deserialize deseri… aizuda
 snail-job
 2025-12-30T11:32:09.752Z 2025-12-30T11:32:09.752Z
CVE-2025-14509
7.2 (3.1)
Lucky Wheel for WooCommerce – Spin a Sale <= 1.1.13 - … villatheme
 Lucky Wheel for WooCommerce – Spin a Sale
 2025-12-30T11:14:25.111Z 2025-12-30T11:14:25.111Z
CVE-2023-54162
N/A
ksmbd: fix possible memory leak in smb2_lock() Linux
 Linux
 2025-12-30T12:03:23.583Z 2025-12-30T12:03:23.583Z
CVE-2022-50786
N/A
media: s5p-mfc: Clear workbit to handle error condition Linux
 Linux
 2025-12-30T12:03:22.909Z 2025-12-30T12:03:22.909Z
CVE-2022-50785
N/A
fsi: occ: Prevent use after free Linux
 Linux
 2025-12-30T12:03:22.224Z 2025-12-30T12:03:22.224Z
CVE-2022-50784
N/A
wifi: iwlwifi: mei: fix potential NULL-ptr deref after clone Linux
 Linux
 2025-12-30T12:03:21.544Z 2025-12-30T12:03:21.544Z
CVE-2025-69093
N/A
WordPress ShopMagic plugin <= 4.7.2 - Broken Access Co… wpdesk
 ShopMagic
 2025-12-30T10:47:58.699Z 2025-12-30T10:47:58.699Z
CVE-2025-69092
N/A
WordPress Essential Addons for Elementor plugin <= 6.5… WPDeveloper
 Essential Addons for Elementor
 2025-12-30T10:47:58.488Z 2025-12-30T10:47:58.488Z
CVE-2025-69091
N/A
WordPress Demo Importer Plus plugin <= 2.0.8 - Broken … Kraft Plugins
 Demo Importer Plus
 2025-12-30T10:47:58.298Z 2025-12-30T10:47:58.298Z
CVE-2025-69089
N/A
WordPress Auto Listings plugin <= 2.7.1 - Cross Site S… autolistings
 Auto Listings
 2025-12-30T10:47:58.084Z 2025-12-30T10:47:58.084Z
CVE-2025-69088
N/A
WordPress Combo Offers WooCommerce plugin <= 4.2 - Cro… Vidish
 Combo Offers WooCommerce
 2025-12-30T10:47:57.866Z 2025-12-30T10:47:57.866Z
CVE-2025-69034
N/A
WordPress Lekker theme <= 1.8 - Local File Inclusion v… Mikado-Themes
 Lekker
 2025-12-30T10:47:57.680Z 2025-12-30T10:47:57.680Z
CVE-2025-69033
N/A
WordPress Blog Filter plugin <= 1.7.3 - Cross Site Scr… A WP Life
 Blog Filter
 2025-12-30T10:47:57.477Z 2025-12-30T10:47:57.477Z
CVE-2025-69032
N/A
WordPress FiveStar theme <= 1.7 - Insecure Direct Obje… Mikado-Themes
 FiveStar
 2025-12-30T10:47:57.290Z 2025-12-30T10:47:57.290Z
CVE-2025-69031
N/A
WordPress Arcane theme <= 3.6.6 - Broken Access Contro… Skywarrior
 Arcane
 2025-12-30T10:47:57.098Z 2025-12-30T10:47:57.098Z
CVE-2025-69030
N/A
WordPress Backpack Traveler theme <= 2.10.3 - Insecure… Mikado-Themes
 Backpack Traveler
 2025-12-30T10:47:56.911Z 2025-12-30T10:47:56.911Z
CVE-2025-69029
N/A
WordPress Struktur theme <= 2.5.1 - Insecure Direct Ob… Select-Themes
 Struktur
 2025-12-30T10:47:56.721Z 2025-12-30T10:47:56.721Z
CVE-2025-69028
N/A
WordPress weForms plugin <= 1.6.25 - Broken Access Con… BoldGrid
 weForms
 2025-12-30T10:47:56.532Z 2025-12-30T10:47:56.532Z
CVE-2025-69027
N/A
WordPress Product Delivery Date for WooCommerce – Lite… tychesoftwares
 Product Delivery Date for WooCommerce – Lite
 2025-12-30T10:47:56.343Z 2025-12-30T10:47:56.343Z
CVE-2025-69026
N/A
WordPress PopupKit plugin <= 2.1.5 - Sensitive Data Ex… Roxnor
 PopupKit
 2025-12-30T10:47:56.141Z 2025-12-30T10:47:56.141Z
CVE-2025-69025
N/A
WordPress Poptics: AI-Powered Popup Builder for Lead G… Aethonic
 Poptics: AI-Powered Popup Builder for Lead Generation, Conversions, Exit-Intent, Email Opt-ins &amp; WooCommerce Sales
 2025-12-30T10:47:55.921Z 2025-12-30T10:47:55.921Z
CVE-2025-69024
N/A
WordPress BizPrint plugin <= 4.6.7 - Broken Access Con… bizswoop
 BizPrint
 2025-12-30T10:47:55.715Z 2025-12-30T10:47:55.715Z
CVE-2025-69023
N/A
WordPress Discussion Board plugin <= 2.5.7 - Broken Ac… Marketing Fire
 Discussion Board
 2025-12-30T10:47:55.530Z 2025-12-30T10:47:55.530Z
CVE-2025-69022
N/A
WordPress HR Management Lite plugin <= 3.5 - Broken Ac… Weblizar - WordPress Themes &amp; Plugin
 HR Management Lite
 2025-12-30T10:47:55.337Z 2025-12-30T10:47:55.337Z
CVE-2025-69021
N/A
WordPress Popup box plugin <= 6.0.7 - Cross Site Reque… Ays Pro
 Popup box
 2025-12-30T10:47:55.134Z 2025-12-30T10:47:55.134Z
CVE-2025-69020
N/A
WordPress Newsletters plugin <= 4.12 - Cross Site Scri… Tribulant Software
 Newsletters
 2025-12-30T10:47:54.856Z 2025-12-30T10:47:54.856Z
CVE-2025-69019
N/A
WordPress FlippingBook plugin <= 2.0.1 - Cross Site Sc… FlippingBook
 FlippingBook
 2025-12-30T10:47:54.668Z 2025-12-30T10:47:54.668Z
CVE-2025-69018
N/A
WordPress Web Directory Free plugin <= 1.7.12 - Cross … Shamalli
 Web Directory Free
 2025-12-30T10:47:54.463Z 2025-12-30T10:47:54.463Z
CVE-2025-69017
N/A
WordPress RestroPress plugin <= 3.2.4.2 - Cross Site S… Magnigenie
 RestroPress
 2025-12-30T10:47:54.276Z 2025-12-30T10:47:54.276Z
ID Description Published Updated
fkie_cve-2025-15359 DVP-12SE11T - Out-of-bound memory write Vulnerability 2025-12-30T10:15:52.333 2025-12-30T10:15:52.333
fkie_cve-2025-15243 A flaw has been found in code-projects Simple Stock System 1.0. This affects an unknown function of… 2025-12-30T10:15:52.137 2025-12-30T10:15:52.137
fkie_cve-2025-15242 A vulnerability was detected in PHPEMS up to 11.0. The impacted element is an unknown function of t… 2025-12-30T10:15:51.610 2025-12-30T10:15:51.610
fkie_cve-2025-15358 DVP-12SE11T - Denial of Service Vulnerability 2025-12-30T09:15:52.997 2025-12-30T09:15:52.997
fkie_cve-2025-15241 A security vulnerability has been detected in CloudPanel Community Edition up to 2.5.1. The affecte… 2025-12-30T09:15:52.787 2025-12-30T09:15:52.787
fkie_cve-2025-15234 A weakness has been identified in Tenda M3 1.0.0.13(4903). Impacted is the function formSetRemoteIn… 2025-12-30T09:15:52.597 2025-12-30T09:15:52.597
fkie_cve-2025-15103 DVP-12SE11T - Authentication Bypass via Partial Password Disclosure 2025-12-30T09:15:52.463 2025-12-30T09:15:52.463
fkie_cve-2025-15102 DVP-12SE11T - Password Protection Bypass 2025-12-30T09:15:52.157 2025-12-30T09:15:52.157
fkie_cve-2025-15355 ISOinsight developed by NetVision Information has a Reflected Cross-site Scripting vulnerability, a… 2025-12-30T08:15:43.480 2025-12-30T08:15:43.480
fkie_cve-2025-15233 A security flaw has been discovered in Tenda M3 1.0.0.13(4903). This issue affects the function for… 2025-12-30T08:15:43.300 2025-12-30T08:15:43.300
fkie_cve-2025-15232 A vulnerability was identified in Tenda M3 1.0.0.13(4903). This vulnerability affects the function … 2025-12-30T08:15:43.040 2025-12-30T08:15:43.040
fkie_cve-2023-36377 Buffer Overflow vulnerability in mtrojnar osslsigncode v.2.3 and before allows a local attacker to … 2023-07-03T21:15:09.923 2025-12-30T08:15:42.540
fkie_cve-2025-15231 A vulnerability was determined in Tenda M3 1.0.0.13(4903). This affects the function formSetRemoteV… 2025-12-30T07:15:43.380 2025-12-30T07:15:43.380
fkie_cve-2025-15230 A vulnerability was found in Tenda M3 1.0.0.13(4903). Affected by this issue is the function formSe… 2025-12-30T07:15:41.793 2025-12-30T07:15:41.793
fkie_cve-2025-15229 A vulnerability has been found in Tenda CH22 up to 1.0.0.1. Affected by this vulnerability is the f… 2025-12-30T06:15:41.190 2025-12-30T06:15:41.190
fkie_cve-2025-15222 A vulnerability has been found in Dromara Sa-Token up to 1.44.0. This issue affects the function Ob… 2025-12-30T06:15:40.900 2025-12-30T06:15:40.900
fkie_cve-2025-14313 The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a p… 2025-12-30T06:15:40.800 2025-12-30T06:15:40.800
fkie_cve-2025-14312 The Advance WP Query Search Filter WordPress plugin through 1.0.10 does not sanitise and escape a p… 2025-12-30T06:15:39.973 2025-12-30T06:15:39.973
fkie_cve-2025-15221 A flaw has been found in SohuTV CacheCloud up to 3.2.0. This vulnerability affects the function ind… 2025-12-30T05:16:05.260 2025-12-30T05:16:05.260
fkie_cve-2025-15220 A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. This affects the function init of th… 2025-12-30T05:16:00.933 2025-12-30T05:16:00.933
fkie_cve-2025-15219 A security vulnerability has been detected in SohuTV CacheCloud up to 3.2.0. Affected by this issue… 2025-12-30T04:15:49.470 2025-12-30T04:15:49.470
fkie_cve-2025-15218 A weakness has been identified in Tenda AC10U 15.03.06.48/15.03.06.49. Affected by this vulnerabili… 2025-12-30T04:15:49.267 2025-12-30T04:15:49.267
fkie_cve-2025-15217 A security flaw has been discovered in Tenda AC23 16.03.07.52. Affected is the function formSetPPTP… 2025-12-30T03:15:51.887 2025-12-30T03:15:51.887
fkie_cve-2025-15216 A vulnerability was identified in Tenda AC23 16.03.07.52. This impacts the function fromSetIpMacBin… 2025-12-30T03:15:51.707 2025-12-30T03:15:51.707
fkie_cve-2025-15215 A vulnerability was determined in Tenda AC10U 15.03.06.48/15.03.06.49. This affects the function fo… 2025-12-30T03:15:50.733 2025-12-30T03:15:50.733
fkie_cve-2025-69235 Whale browser before 4.35.351.12 allows an attacker to bypass the Same-Origin Policy in a sidebar e… 2025-12-30T02:16:16.930 2025-12-30T02:16:16.930
fkie_cve-2025-69234 Whale browser before 4.35.351.12 allows an attacker to escape the iframe sandbox in a sidebar envir… 2025-12-30T02:16:16.810 2025-12-30T02:16:16.810
fkie_cve-2025-15214 A vulnerability was found in Campcodes Park Ticketing System 1.0. The impacted element is the funct… 2025-12-30T02:16:16.593 2025-12-30T02:16:16.593
fkie_cve-2025-69217 coturn is a free open source implementation of TURN and STUN Server. Versions 4.6.2r5 through 4.7.0… 2025-12-30T01:15:41.390 2025-12-30T01:15:41.390
fkie_cve-2025-15213 A vulnerability has been found in code-projects Student File Management System 1.0. The affected el… 2025-12-30T01:15:41.173 2025-12-30T01:15:41.173
ID Severity Description Published Updated
ghsa-xh4m-g9pq-wh25
7.3 (3.1)
5.5 (4.0)
A vulnerability was identified in gmg137 snap7-rs up to 153d3e8c16decd7271e2a5b2e3da4d6f68589424. A… 2025-12-30T12:30:29Z 2025-12-30T12:30:29Z
ghsa-wv6p-qh73-f5xp
In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after fr… 2025-12-30T12:30:28Z 2025-12-30T12:30:29Z
ghsa-w944-w7q2-5fv6
6.3 (3.1)
2.1 (4.0)
A vulnerability was determined in aizuda snail-job up to 1.7.0 on macOS. Affected by this vulnerabi… 2025-12-30T12:30:29Z 2025-12-30T12:30:29Z
ghsa-p389-cvqc-hq98
In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit … 2025-12-30T12:30:29Z 2025-12-30T12:30:29Z
ghsa-gpc8-vf5r-8fj8
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix possible memory lea… 2025-12-30T12:30:29Z 2025-12-30T12:30:29Z
ghsa-4j86-ppwp-cc7w
7.2 (3.1)
The Lucky Wheel for WooCommerce – Spin a Sale plugin for WordPress is vulnerable to PHP Code Inject… 2025-12-30T12:30:29Z 2025-12-30T12:30:29Z
ghsa-xp63-hvhq-5m3r
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-wq34-g9h9-cqq9
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-vqrx-xj77-j7v9
Authorization Bypass Through User-Controlled Key vulnerability in Select-Themes Struktur struktur a… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-vc28-3php-xh48
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-rmj9-79r3-8qw2
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-qvm9-gm9c-32vw
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-qjgg-3vm9-227x
Missing Authorization vulnerability in jetmonsters Stratum stratum allows Exploiting Incorrectly Co… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-p244-phj2-hfp4
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-mxc9-8cwj-h23w
Server-Side Request Forgery (SSRF) vulnerability in Youzify Youzify youzify allows Server Side Requ… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-mrhx-85fj-369h
Missing Authorization vulnerability in Weblizar - WordPress Themes &amp; Plugin HR Management Lite … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-m5q6-m3r3-f79r
Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Backpack Traveler b… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-jwp9-67cw-p569
Missing Authorization vulnerability in Kraft Plugins Demo Importer Plus demo-importer-plus allows E… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-jrcg-jrhw-f5j2
Missing Authorization vulnerability in wpdesk ShopMagic shopmagic-for-woocommerce allows Exploiting… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-hmhp-5gjw-xvjp
Cross-Site Request Forgery (CSRF) vulnerability in Ays Pro Popup box ays-popup-box allows Cross Sit… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-ghhg-x4v7-v6cr
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Aethoni… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-ff66-qf7h-2cxr
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-f83w-rm2p-49p5
Missing Authorization vulnerability in tychesoftwares Product Delivery Date for WooCommerce – Lite … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-cj76-m557-r94x
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mei: fix potent… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-9cvv-766g-ppjv
Missing Authorization vulnerability in Automattic Crowdsignal Forms crowdsignal-forms allows Exploi… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-8pmc-h6vj-j676
Missing Authorization vulnerability in BoldGrid weForms weforms allows Exploiting Incorrectly Confi… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-835m-mf3p-35j7
Missing Authorization vulnerability in Marketing Fire Discussion Board wp-discussion-board allows E… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-7pr7-7wh6-j8cc
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-79cq-9x28-wqfm
Missing Authorization vulnerability in bizswoop BizPrint print-google-cloud-print-gcp-woocommerce a… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ghsa-798j-rghc-7f74
Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes FiveStar fivestar a… 2025-12-30T12:30:28Z 2025-12-30T12:30:28Z
ID Severity Description Package Published Updated
pysec-2024-85
7.5 (3.1)
Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD… mindsdb 2024-09-12T13:15:00Z 2025-12-16T15:05:59.978434Z
pysec-2024-84
7.5 (3.1)
Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD… mindsdb 2024-09-12T13:15:00Z 2025-12-16T15:05:59.815196Z
pysec-2024-83
7.5 (3.1)
Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD… mindsdb 2024-09-12T13:15:00Z 2025-12-16T15:05:59.652331Z
pysec-2024-82
8.8 (3.1)
Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB… mindsdb 2024-09-12T13:15:00Z 2025-12-16T15:05:59.488172Z
pysec-2023-278
5.3 (3.1)
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1… mindsdb 2023-12-11T21:15:00Z 2025-12-16T15:05:59.273145Z
pysec-2025-52
gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation. mlflow 2025-06-23T15:15:29Z 2025-12-05T13:25:55.146081Z
pysec-2020-220
A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll… ansible 2020-10-05T14:15:00Z 2025-10-31T04:43:53.616247Z
pysec-2025-72
The `num2words` project was compromised via a phishing attack and two new versions were u… num2words 2025-07-31T14:34:47+00:00
pysec-2025-71
Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas… cadwyn 2025-07-21T21:15:25+00:00 2025-07-23T15:24:03.825615+00:00
pysec-2025-70
10.0 (3.1)
A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen… langchain-community 2025-06-23T21:15:25+00:00 2025-07-16T21:23:40.211079+00:00
pysec-2024-259
9.8 (3.1)
In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m… torch 2024-10-29T21:15:04+00:00 2025-07-16T03:09:57.748865+00:00
pysec-2024-258
In scrapy/scrapy, an issue was identified where the Authorization header is not removed d… scrapy 2024-05-20T08:15:08+00:00 2025-07-15T17:37:50.051730+00:00
pysec-2025-69
In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem… roundup 2025-07-13T20:15:25+00:00 2025-07-13T21:23:01.161315+00:00
pysec-2025-68
8.0 (3.1)
A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6… upsonic 2025-06-19T21:15:27+00:00 2025-07-08T19:22:27.449399+00:00
pysec-2025-67
9.8 (3.1)
A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil… upsonic 2025-06-19T21:15:27+00:00 2025-07-08T19:22:27.385619+00:00
pysec-2025-66
Improper privilege management in a REST interface allowed registered users to access unau… streampipes 2025-03-03T11:15:11+00:00 2025-07-08T15:23:46.628375+00:00
pysec-2025-65
A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0… llama-index 2025-07-07T13:15:28+00:00 2025-07-07T15:23:42.730681+00:00
pysec-2025-61
Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap … pillow 2025-07-01T19:15:27Z 2025-07-07T14:12:46.226030Z
pysec-2025-64
9.8 (3.1)
A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0… python-a2a 2025-06-17T07:15:18+00:00 2025-07-02T21:23:13.806273+00:00
pysec-2025-63
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe… vllm 2025-03-19T16:15:32+00:00 2025-07-01T23:22:49.176005+00:00
pysec-2025-62
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal… vllm 2025-02-07T20:15:34+00:00 2025-07-01T23:22:49.083695+00:00
pysec-2025-60
Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform… apache-iotdb 2025-05-14T11:16:28+00:00 2025-07-01T21:22:47.232036+00:00
pysec-2025-59
Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack… apache-iotdb 2025-05-14T11:15:47+00:00 2025-07-01T21:22:47.177405+00:00
pysec-2024-257
7.5 (3.1)
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… mobsf 2024-03-22T23:15:07+00:00 2025-06-30T15:23:50.085549+00:00
pysec-2025-58
8.8 (3.1)
vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl… vllm 2025-01-27T18:15:41+00:00 2025-06-27T21:22:36.583615+00:00
pysec-2025-57
A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent… zenml 2025-03-20T10:15:48+00:00 2025-06-27T17:22:55.175431+00:00
pysec-2025-56
4.3 (3.1)
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t… octoprint 2025-04-22T18:15:59+00:00 2025-06-27T17:22:53.513680+00:00
pysec-2024-256
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… mobsf 2024-12-03T16:15:24+00:00 2025-06-27T17:22:53.325430+00:00
pysec-2025-55
vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.407481+00:00
pysec-2025-54
vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.319321+00:00
ID Description Updated
gsd-2024-33903 In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede… 2024-04-29T05:02:07.295775Z
gsd-2024-33902 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.486429Z
gsd-2024-33901 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.525896Z
gsd-2024-33900 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.290639Z
gsd-2024-33899 RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr… 2024-04-29T05:02:07.400574Z
gsd-2024-33898 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.287632Z
gsd-2024-33897 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.283756Z
gsd-2024-33896 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.313250Z
gsd-2024-33895 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.493081Z
gsd-2024-33894 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.488420Z
gsd-2024-33893 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.381761Z
gsd-2024-33892 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.378170Z
gsd-2024-33891 Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th… 2024-04-29T05:02:07.412035Z
gsd-2024-33890 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.344384Z
gsd-2024-33889 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.392587Z
gsd-2024-33888 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.468423Z
gsd-2024-33887 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.503613Z
gsd-2024-33886 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.287167Z
gsd-2024-33885 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.441746Z
gsd-2024-33884 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:07.534455Z
gsd-2024-33883 The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa… 2024-04-29T05:02:07.271727Z
gsd-2024-4303 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:05.716348Z
gsd-2024-4302 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:05.603637Z
gsd-2024-4301 The format of the source doesn't require a description, click on the link for more details. 2024-04-29T05:02:05.678292Z
gsd-2024-4300 E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo… 2024-04-29T05:02:05.715239Z
gsd-2024-4299 The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc… 2024-04-29T05:02:05.606402Z
gsd-2024-4298 The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit… 2024-04-29T05:02:05.598531Z
gsd-2024-4297 The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo… 2024-04-29T05:02:05.700888Z
gsd-2024-4296 The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock… 2024-04-29T05:02:05.621428Z
gsd-2024-33882 The format of the source doesn't require a description, click on the link for more details. 2024-04-28T05:02:07.803998Z
ID Description Published Updated
mal-2025-192962 Malicious code in rippling-cli (PyPI) 2025-12-30T09:52:01Z 2025-12-30T10:09:50Z
mal-2025-192961 Malicious code in awsutil (PyPI) 2025-12-29T21:57:34Z 2025-12-29T21:57:34Z
mal-2025-192960 Malicious code in kcheck (npm) 2025-12-29T15:45:39Z 2025-12-29T16:09:42Z
mal-2025-192959 Malicious code in intl-tel-input-utils (npm) 2025-12-29T15:00:48Z 2025-12-29T16:09:42Z
mal-2025-192956 Malicious code in cryptozip (PyPI) 2025-12-28T19:49:40Z 2025-12-29T13:20:36Z
mal-2025-192690 Malicious code in smtrlib (PyPI) 2025-12-22T17:15:11Z 2025-12-29T11:08:56Z
mal-2025-192579 Malicious code in smtblib (PyPI) 2025-12-15T15:24:47Z 2025-12-29T11:08:56Z
mal-2025-192958 Malicious code in smtmlib (PyPI) 2025-12-29T10:04:23Z 2025-12-29T10:08:51Z
mal-2025-192957 Malicious code in crypto-trade-analyzer (npm) 2025-12-29T07:45:42Z 2025-12-29T07:45:42Z
mal-2025-192953 Malicious code in aiogram-types-v3 (PyPI) 2025-12-28T01:44:36Z 2025-12-28T20:09:20Z
mal-2025-192955 Malicious code in eslint-config-pexip-engage (npm) 2025-12-28T17:50:47Z 2025-12-28T17:50:47Z
mal-2025-192952 Malicious code in eslint-config-sdk (npm) 2025-12-27T20:20:29Z 2025-12-28T17:39:25Z
mal-2025-192954 Malicious code in api-umbrella-admin-ui (npm) 2025-12-28T15:05:48Z 2025-12-28T15:05:48Z
mal-2025-192951 Malicious code in ugc-kit (npm) 2025-12-27T17:21:21Z 2025-12-27T17:21:21Z
mal-2025-192949 Malicious code in ing-feat-malware-detection (npm) 2025-12-27T17:11:12Z 2025-12-27T17:11:12Z
mal-2025-192950 Malicious code in ing-feat-ui-image (npm) 2025-12-27T17:11:08Z 2025-12-27T17:11:08Z
mal-2025-192934 Malicious code in ing-feat-kyc-consent (npm) 2025-12-25T18:55:12Z 2025-12-27T16:09:26Z
mal-2025-192948 Malicious code in extrazip (PyPI) 2025-12-27T09:41:01Z 2025-12-27T09:41:01Z
mal-2025-192947 Malicious code in crypo (PyPI) 2025-12-27T08:56:38Z 2025-12-27T08:56:38Z
mal-2025-192946 Malicious code in crpto (PyPI) 2025-12-27T08:55:55Z 2025-12-27T08:55:55Z
mal-2025-192945 Malicious code in flaask (PyPI) 2025-12-27T08:53:06Z 2025-12-27T08:53:06Z
mal-2025-192944 Malicious code in backstage-plugin-glean (npm) 2025-12-27T02:51:04Z 2025-12-27T02:51:04Z
mal-2025-192942 Malicious code in telebot-bot (PyPI) 2025-12-26T20:04:06Z 2025-12-26T20:04:06Z
mal-2025-192943 Malicious code in telegrem (PyPI) 2025-12-26T20:03:22Z 2025-12-26T20:03:22Z
mal-2025-192941 Malicious code in bola511 (npm) 2025-12-26T14:09:11Z 2025-12-26T14:09:11Z
mal-2025-192940 Malicious code in aiogram-3 (PyPI) 2025-12-26T04:33:18Z 2025-12-26T10:09:30Z
mal-2025-192939 Malicious code in magic-poc (npm) 2025-12-26T03:35:35Z 2025-12-26T03:35:35Z
mal-2025-192938 Malicious code in bettermode-icons (npm) 2025-12-25T21:52:38Z 2025-12-25T22:40:17Z
mal-2025-192937 Malicious code in bettermode-common (npm) 2025-12-25T19:41:57Z 2025-12-25T19:41:57Z
mal-2025-192933 Malicious code in ing-feat-auth-idin (npm) 2025-12-25T18:54:53Z 2025-12-25T18:54:53Z
ID Description Published Updated
wid-sec-w-2025-2930 Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-07-21T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2717 Django: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2595 Linux Kernel: Mehrere Schwachstellen 2025-11-12T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2579 Linux Kernel: Mehrere Schwachstellen 2025-11-11T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2495 Django: Mehrere Schwachstellen ermöglichen Denial of Service und SQL-Injection 2025-11-05T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2431 Linux Kernel: Mehrere Schwachstellen 2025-10-28T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2394 Linux Kernel: Mehrere Schwachstellen 2025-10-22T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2229 Linux Kernel: Mehrere Schwachstellen 2025-10-07T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2166 OpenSSL und LibreSSL: Mehrere Schwachstellen 2025-09-30T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2053 Linux Kernel: Mehrere Schwachstellen 2025-09-15T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2045 expat: Schwachstelle ermöglicht Denial of Service 2025-09-14T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1948 libxml2 (exsltDynMapFunction): Schwachstelle ermöglicht Denial of Service 2025-09-02T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1744 OpenJPEG: Schwachstelle ermöglicht Denial of Service 2025-08-07T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0956 Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Denial of Service 2025-05-06T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0836 Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Offenlegung von Informationen 2025-04-15T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2024-1850 Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service 2024-08-13T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-2853 Red Hat Enterprise Linux: Mehrere Schwachstellen 2023-11-07T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-0580 Red Hat Enterprise Linux (mod_auth_openidc): Mehrere Schwachstellen 2022-05-10T22:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2022-0499 expat: Schwachstelle ermöglicht Codeausführung 2022-01-26T23:00:00.000+00:00 2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2905 MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-18T23:00:00.000+00:00 2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2910 Hitachi Ops Center: Mehrere Schwachstellen 2025-12-22T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2891 WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS 2025-12-18T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2871 GIMP: Mehrere Schwachstellen ermöglichen Codeausführung 2025-12-17T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2830 Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service 2025-12-11T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2741 cPython: Schwachstelle ermöglicht Denial of Service 2025-12-03T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2706 Python: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-01T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2694 MariaDB: Schwachstelle ermöglicht Codeausführung 2025-11-27T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2677 OPNsense: Schwachstelle ermöglicht Manipulation von Dateien 2025-11-25T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2645 Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-19T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2637 Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-11-18T23:00:00.000+00:00 2025-12-23T23:00:00.000+00:00
ID Description Published Updated
ncsc-2025-0403 Kwetsbaarheden verholpen in QNAP besturingssystemen 2025-12-29T09:17:28.385450Z 2025-12-29T09:17:28.385450Z
ncsc-2025-0402 Kwetsbaarheid verholpen in MongoDB 2025-12-27T11:38:11.514349Z 2025-12-27T11:38:11.514349Z
ncsc-2025-0399 Kwetsbaarheid verholpen in HPE OneView Software 2025-12-18T18:38:20.794784Z 2025-12-24T11:29:46.123674Z
ncsc-2025-0401 Kwetsbaarheden verholpen in Foxit PDF Reader 2025-12-24T09:14:56.590353Z 2025-12-24T09:14:56.590353Z
ncsc-2025-0400 Kwetsbaarheid verholpen in WatchGuard Firebox 2025-12-19T11:16:01.438518Z 2025-12-19T11:16:01.438518Z
ncsc-2025-0398 Kwetsbaarheid in Cisco AsyncOS 2025-12-17T19:47:00.346651Z 2025-12-17T19:47:00.346651Z
ncsc-2025-0386 Kwetsbaarheden verholpen in Fortinet producten 2025-12-10T09:51:34.918202Z 2025-12-16T10:33:05.061241Z
ncsc-2025-0397 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2025-12-15T09:08:39.804149Z 2025-12-15T09:08:39.804149Z
ncsc-2025-0396 Kwetsbaarheden verholpen in Apple macOS 2025-12-15T09:06:36.450655Z 2025-12-15T09:06:36.450655Z
ncsc-2025-0394 Kwetsbaarheden verholpen in React Server Components 2025-12-12T09:04:19.324080Z 2025-12-12T10:46:34.688189Z
ncsc-2025-0395 Kwetsbaarheden verholpen in SAP Software 2025-12-12T09:29:08.429888Z 2025-12-12T09:29:08.429888Z
ncsc-2025-0393 Kwetsbaarheid verholpen in GeoServer 2025-12-12T08:12:18.831044Z 2025-12-12T09:02:27.681292Z
ncsc-2025-0392 Kwetsbaarheid verholpen in Barracuda Service Center 2025-12-11T13:53:23.819008Z 2025-12-11T13:53:23.819008Z
ncsc-2025-0391 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2025-12-11T13:51:55.178462Z 2025-12-11T13:51:55.178462Z
ncsc-2025-0390 Kwetsbaarheden verholpen in GitLab CE/EE 2025-12-11T09:22:54.841848Z 2025-12-11T09:22:54.841848Z
ncsc-2025-0389 Kwetsbaarheden verholpen in Adobe Experience Manager 2025-12-10T14:59:57.911864Z 2025-12-10T14:59:57.911864Z
ncsc-2025-0388 Kwetsbaarheden verholpen in Adobe Acrobat Reader 2025-12-10T13:35:58.314547Z 2025-12-10T13:35:58.314547Z
ncsc-2025-0387 Kwetsbaarheden verholpen in Adobe ColdFusion 2025-12-10T13:34:08.908897Z 2025-12-10T13:34:08.908897Z
ncsc-2025-0385 Kwetsbaarheden verholpen in Microsoft Exchange 2025-12-09T18:42:32.332749Z 2025-12-09T18:42:32.332749Z
ncsc-2025-0384 Kwetsbaarheden verholpen in Microsoft Office 2025-12-09T18:40:33.839342Z 2025-12-09T18:40:33.839342Z
ncsc-2025-0383 Kwetsbaarheden verholpen in Microsoft Windows 2025-12-09T18:39:18.152251Z 2025-12-09T18:39:18.152251Z
ncsc-2025-0382 Kwetsbaarheden verholpen in Siemens producten 2025-12-09T13:15:05.391966Z 2025-12-09T13:15:05.391966Z
ncsc-2025-0381 Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform 2025-12-08T08:23:21.965599Z 2025-12-08T08:23:21.965599Z
ncsc-2025-0380 Kwetsbaarheden verholpen in React Server Components 2025-12-03T20:11:57.728117Z 2025-12-05T12:13:36.590522Z
ncsc-2025-0379 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-12-02T13:25:17.745981Z 2025-12-02T13:25:17.745981Z
ncsc-2025-0378 Kwetsbaarheden verholpen in Mattermost 2025-11-28T09:53:42.334621Z 2025-11-28T09:53:42.334621Z
ncsc-2025-0377 Kwetsbaarheden verholpen in GitLab 2025-11-27T13:35:09.121804Z 2025-11-27T13:35:09.121804Z
ncsc-2025-0376 Kwetsbaarheden verholpen in SonicWall Email Security appliances 2025-11-21T16:06:33.949861Z 2025-11-21T16:06:33.949861Z
ncsc-2025-0375 Kwetsbaarheid verholpen in Progress MOVEit Transfer 2025-11-21T16:06:14.387571Z 2025-11-21T16:06:14.387571Z
ncsc-2025-0334 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2025-10-23T13:42:11.992643Z 2025-11-21T16:03:18.991100Z
ID Description Published Updated
ssa-512988 SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
ssa-915282 SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-912274 SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-882673 SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-868571 SSA-868571: Missing Server Certificate Validation in IAM Client 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-800126 SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20 2024-12-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-763474 SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-734261 SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-723487 SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products 2024-07-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-710408 SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-693808 SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-673996 SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products 2024-09-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-626856 SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-493396 SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-471761 SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-420375 SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP) 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-416652 SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-408105 SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products 2022-12-13T00:00:00Z 2025-12-09T00:00:00Z
ssa-392859 SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20 2024-12-10T00:00:00Z 2025-12-09T00:00:00Z
ssa-356310 SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-282044 SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery 2025-08-12T00:00:00Z 2025-12-09T00:00:00Z
ssa-212953 SSA-212953: Multiple Vulnerabilities in COMOS 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-202008 SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-978177 SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices 2025-08-12T00:00:00Z 2025-11-17T00:00:00Z
ssa-241605 SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-190588 SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
ssa-864900 SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-832273 SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices 2024-03-12T00:00:00Z 2025-11-11T00:00:00Z
ssa-794185 SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products 2025-05-13T00:00:00Z 2025-11-11T00:00:00Z
ssa-770770 SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices 2025-02-11T00:00:00Z 2025-11-11T00:00:00Z
ID Description Published Updated
rhsa-2025:23932 Red Hat Security Advisory: httpd security update 2025-12-22T16:55:54+00:00 2025-12-30T11:34:27+00:00
rhsa-2025:23732 Red Hat Security Advisory: httpd:2.4 security update 2025-12-22T01:33:02+00:00 2025-12-30T11:34:27+00:00
rhsa-2025:23919 Red Hat Security Advisory: httpd security update 2025-12-22T23:27:16+00:00 2025-12-30T11:34:26+00:00
rhsa-2025:23542 Red Hat Security Advisory: OpenShift File Integrity Operator bug fix and enhancement update 2025-12-17T16:35:07+00:00 2025-12-30T11:28:31+00:00
rhsa-2025:23529 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.11.9 security update 2025-12-17T14:58:47+00:00 2025-12-30T11:28:31+00:00
rhsa-2025:23528 Red Hat Security Advisory: multicluster engine for Kubernetes 2.6 security update 2025-12-17T14:58:16+00:00 2025-12-30T11:28:31+00:00
rhsa-2025:22684 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update 2025-12-03T23:53:32+00:00 2025-12-30T11:28:31+00:00
rhsa-2025:22683 Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update 2025-12-03T22:50:31+00:00 2025-12-30T11:28:30+00:00
rhsa-2025:22420 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14 security, enhancement & bug fix update 2025-12-01T12:14:05+00:00 2025-12-30T11:28:30+00:00
rhsa-2025:22418 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15 security, enhancement & bug fix update 2025-12-01T12:10:52+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:22416 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16 security, enhancement & bug fix update 2025-12-01T12:00:04+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:22415 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update 2025-12-01T11:59:39+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:21885 Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update 2025-11-20T19:56:52+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:21368 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update 2025-11-13T17:36:32+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:19961 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update 2025-11-10T01:30:28+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:19958 Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update 2025-11-10T01:14:14+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:19335 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update 2025-10-30T12:58:23+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:19332 Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update 2025-10-30T12:27:36+00:00 2025-12-30T11:28:28+00:00
rhsa-2025:9259 Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update 2025-06-26T01:50:03+00:00 2025-12-30T04:52:29+00:00
rhsa-2025:9759 Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update 2025-07-02T17:25:30+00:00 2025-12-30T04:52:27+00:00
rhsa-2025:9646 Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update 2025-06-25T14:06:29+00:00 2025-12-30T04:52:27+00:00
rhsa-2025:9562 Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update 2025-10-21T04:13:27+00:00 2025-12-30T04:52:27+00:00
rhsa-2025:9541 Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates 2025-06-24T14:31:21+00:00 2025-12-30T04:52:26+00:00
rhsa-2025:9388 Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates 2025-06-23T15:10:48+00:00 2025-12-30T04:52:26+00:00
rhsa-2025:9167 Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release 2025-06-17T09:27:34+00:00 2025-12-30T04:52:25+00:00
rhsa-2025:9136 Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release 2025-06-16T18:32:02+00:00 2025-12-30T04:52:25+00:00
rhsa-2025:8704 Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release 2025-06-09T16:42:07+00:00 2025-12-30T04:52:24+00:00
rhsa-2025:8691 Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update 2025-06-09T14:26:17+00:00 2025-12-30T04:52:23+00:00
rhsa-2025:8560 Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update 2025-06-10T06:26:36+00:00 2025-12-30T04:52:23+00:00
rhsa-2025:8556 Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update 2025-06-13T05:16:43+00:00 2025-12-30T04:52:22+00:00
ID Description Published Updated
icsa-25-177-01 Mitsubishi Electric Air Conditioning Systems (Update B) 2025-06-26T06:00:00.000000Z 2025-12-23T07:00:00.000000Z
icsa-25-352-02 Schneider Electric EcoStruxure Foxboro DCS Advisor 2025-12-09T08:00:00.000000Z 2025-12-18T18:23:06.311869Z
icsa-25-352-05 Siemens Interniche IP-Stack 2025-12-09T00:00:00.000000Z 2025-12-18T18:13:59.515670Z
icsa-25-352-08 Axis Communications Camera Station Pro, Camera Station, and Device Manager 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-25-352-07 Rockwell Automation Micro820, Micro850, Micro870 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-25-352-06 Advantech WebAccess/SCADA 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-25-352-04 Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-25-352-03 National Instruments LabView 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-25-352-01 Inductive Automation Ignition 2025-12-18T07:00:00.000000Z 2025-12-18T07:00:00.000000Z
icsa-24-291-03 Mitsubishi Electric CNC Series (Update C) 2024-10-17T06:00:00.000000Z 2025-12-18T07:00:00.000000Z
va-25-352-01 BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities 2025-12-18T00:00:00Z 2025-12-18T00:00:00Z
icsa-25-350-04 Mitsubishi Electric GT Designer3 2025-12-16T07:00:00.000000Z 2025-12-16T07:00:00.000000Z
icsa-25-350-03 Hitachi Energy AFS, AFR and AFF Series 2025-12-16T07:00:00.000000Z 2025-12-16T07:00:00.000000Z
icsa-25-350-02 Johnson Controls PowerG, IQPanel and IQHub 2025-12-16T07:00:00.000000Z 2025-12-16T07:00:00.000000Z
icsa-25-350-01 Güralp Systems Fortimus Series, Minimus Series, and Certimus Series 2025-12-16T07:00:00.000000Z 2025-12-16T07:00:00.000000Z
icsa-25-308-01 Fuji Electric Monitouch V-SFT-6 (Update A) 2025-11-04T07:00:00.000000Z 2025-12-16T07:00:00.000000Z
icsa-25-224-02 Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A) 2025-08-12T06:00:00.000000Z 2025-12-16T07:00:00.000000Z
va-25-345-01 CISA Software Acquisition Guide Supplier Response Web Tool XSS 2025-12-12T20:27:47Z 2025-12-12T20:27:47Z
icsma-25-345-02 Varex Imaging Panoramic Dental Imaging Software 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
icsma-25-345-01 Grassroots DICOM (GDCM) 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
icsa-25-345-10 OpenPLC_V3 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
icsa-25-345-03 AzeoTech DAQFactory 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
icsa-25-345-02 Johnson Controls iSTAR Ultra 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
icsa-25-345-01 Johnson Controls iSTAR 2025-12-11T07:00:00.000000Z 2025-12-11T07:00:00.000000Z
va-25-343-01 Windscribe for Linux 'changeMTU' local privilege escalation 2025-12-10T16:46:41Z 2025-12-10T16:46:41Z
icsa-25-343-01 Universal Boot Loader (U-Boot) 2025-12-09T07:00:00.000000Z 2025-12-09T07:00:00.000000Z
icsa-25-343-03 Multiple India-based CCTV Cameras** 2025-12-09T05:00:00.000000Z 2025-12-09T05:00:00.000000Z
icsa-25-345-09 Siemens Gridscale X Prepay 2025-12-09T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
icsa-25-345-08 Siemens Energy Services 2025-12-09T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
icsa-25-345-07 Siemens Building X - Security Manager Edge Controller 2025-12-09T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
ID Description Published Updated
cisco-sa-react-flight-tyw32ddb Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025 2025-12-04T16:00:00+00:00 2025-12-17T22:37:17+00:00
cisco-sa-sma-attack-n9bf4 Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager 2025-12-17T16:00:00+00:00 2025-12-17T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities 2025-11-05T16:00:00+00:00 2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn Multiple Cisco Contact Center Products Vulnerabilities 2025-11-05T16:00:00+00:00 2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu Cisco Catalyst Center Privilege Escalation Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59 Cisco Catalyst Center Cross-Site Scripting Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt Cisco Catalyst Center REST API Command Injection Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability 2025-11-13T16:00:00+00:00 2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities 2025-11-05T16:00:00+00:00 2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability 2025-09-25T16:00:00+00:00 2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability 2025-11-05T16:00:00+00:00 2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability 2025-07-02T16:00:00+00:00 2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities 2025-10-15T16:00:00+00:00 2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability 2025-10-15T16:00:00+00:00 2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities 2025-10-15T16:00:00+00:00 2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc Cisco IOS XE Software Secure Boot Bypass Vulnerabilities 2025-09-24T16:00:00+00:00 2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability 2025-09-24T16:00:00+00:00 2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability 2025-09-24T16:00:00+00:00 2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9 Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities 2025-10-01T16:00:00+00:00 2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability 2025-10-01T16:00:00+00:00 2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability 2025-09-24T16:00:00+00:00 2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability 2025-09-24T16:00:00+00:00 2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e Cisco IOS XE Software CLI Argument Injection Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl Cisco IOS XE Software HTTP API Command Injection Vulnerability 2025-09-24T16:00:00+00:00 2025-09-24T16:00:00+00:00
ID Description Published Updated
sca-2025-0013 Vulnerabilities affecting SICK TLOC100-100 2025-10-27T14:00:00.000Z 2025-11-11T14:00:00.000Z
sca-2025-0014 CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC 2025-11-03T11:00:00.000Z 2025-11-03T14:00:00.000Z
sca-2025-0012 Sudo vulnerability affects SICK SID products 2025-10-27T11:00:00.000Z 2025-10-27T14:00:00.000Z
sca-2025-0011 Vulnerabilities affecting Endress+Hauser SSG-E210GC 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0010 Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0009 Vulnerabilities affecting SICK TDC-E210GC 2025-08-01T13:00:00.000Z 2025-08-01T13:00:00.000Z
sca-2025-0008 Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4 2025-07-03T13:00:00.000Z 2025-07-03T13:00:00.000Z
sca-2025-0007 Multiple vulnerabilities in SICK Field Analytics and SICK Media Server 2025-06-12T13:00:00.000Z 2025-06-12T13:00:00.000Z
sca-2025-0003 FreeRTOS Vulnerabilities have no impact on SICK Products 2025-02-28T00:00:00.000Z 2025-05-20T11:00:00.000Z
sca-2025-0006 Vulnerability affecting picoScan and multiScan 2025-04-28T13:00:00.000Z 2025-04-28T13:00:00.000Z
sca-2025-0005 Vulnerabilities in SICK Flexi Compact 2025-04-28T10:00:00.000Z 2025-04-28T10:00:00.000Z
sca-2025-0004 Critical vulnerabilities in SICK DL100-2xxxxxxx 2025-03-14T11:00:00.000Z 2025-03-14T11:00:00.000Z
sca-2025-0001 Multiple vulnerabilities in SICK MEAC300 2025-02-14T14:00:00.000Z 2025-02-21T14:00:00.000Z
sca-2025-0002 Vulnerability in SICK Lector8xx and SICK InspectorP8xx 2025-02-14T10:19:00.000Z 2025-02-14T10:19:00.000Z
sca-2024-0007 Vulnerability in SICK OLM 2024-12-31T00:00:00.000Z 2024-12-31T00:00:00.000Z
sca-2024-0006 Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx 2024-12-06T00:00:00.000Z 2024-12-06T00:00:00.000Z
sca-2024-0005 Vulnerability in SICK Incoming Goods Suite 2024-11-19T00:00:00.000Z 2024-11-19T00:00:00.000Z
sca-2024-0004 Third party vulnerabilities in SICK CDE-100 2024-11-07T12:00:00.000Z 2024-11-07T12:00:00.000Z
sca-2024-0003 Critical vulnerability in multiple SICK products 2024-10-17T13:00:00.000Z 2024-10-17T13:00:00.000Z
sca-2024-0002 Vulnerability in SICK MSC800 2024-09-11T23:00:00.000Z 2024-09-11T23:00:00.000Z
sca-2024-0001 Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics 2024-01-29T00:00:00.000Z 2024-01-29T00:00:00.000Z
sca-2023-0011 Vulnerability in multiple SICK Flexi Soft Gateways 2023-10-23T11:00:00.000Z 2023-10-23T11:00:00.000Z
SCA-2023-0011 Vulnerability in multiple SICK Flexi Soft Gateways 2023-10-23T11:00:00.000Z 2023-10-23T11:00:00.000Z
sca-2023-0010 Vulnerabilities in SICK Application Processing Unit 2023-10-09T11:00:00.000Z 2023-10-09T11:00:00.000Z
SCA-2023-0010 Vulnerabilities in SICK Application Processing Unit 2023-10-09T11:00:00.000Z 2023-10-09T11:00:00.000Z
sca-2023-0008 Vulnerability in SICK SIM1012 2023-09-29T13:00:00.000Z 2023-09-29T13:00:00.000Z
SCA-2023-0008 Vulnerability in SICK SIM1012 2023-09-29T13:00:00.000Z 2023-09-29T13:00:00.000Z
sca-2023-0009 Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products 2023-09-29T10:00:00.000Z 2023-09-29T10:00:00.000Z
SCA-2023-0009 Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products 2023-09-29T10:00:00.000Z 2023-09-29T10:00:00.000Z
sca-2023-0007 Vulnerabilities in SICK LMS5xx 2023-08-25T11:00:00.000Z 2023-08-25T11:00:00.000Z
ID Description Published Updated
nn-2025:15-01 Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:14-01 HTML injection in Asset List in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:13-01 Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:12-01 HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:11-01 Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0 2025-11-25T11:00:00.000Z 2025-11-26T11:00:00.000Z
nn-2025:9-01 Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:8-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:7-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:6-01 Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:5-01 Incorrect authorization for CLI in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:4-01 Client-side path traversal in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:10-01 Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:3-01 Incorrect authorization for traces request/download in CMC before 25.1.0 2025-08-26T11:00:00.000Z 2025-08-26T11:00:00.000Z
nn-2025:2-01 Privilege escalation in Guardian/CMC before 24.6.0 2025-06-10T11:00:00.000Z 2025-06-10T11:00:00.000Z
nn-2025:1-01 Authenticated RCE in update functionality in Guardian/CMC before 24.6.0 2025-06-10T11:00:00.000Z 2025-06-10T11:00:00.000Z
nn-2023_17-01 Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-11T11:00:00.000Z
nn-2023:17-01 Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-11T11:00:00.000Z
nn-2024_1-01 DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-10T11:00:00.000Z
nn-2024:1-01 DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-10T11:00:00.000Z
nn-2023_12-01 Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0 2024-01-15T11:00:00.000Z 2024-01-16T11:00:00.000Z
nn-2023:12-01 Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0 2024-01-15T11:00:00.000Z 2024-01-16T11:00:00.000Z
nn-2023_9-01 Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_8-01 Session Fixation in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_7-01 DoS via SAML configuration in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_6-01 Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_5-01 Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_4-01 Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_3-01 Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_2-01 Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2 2023-08-09T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_11-01 SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
ID Description Published Updated
oxdc-adv-2025-0001 OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001 2025-10-31T00:00:00+00:00 2025-11-27T00:00:00+00:00
oxas-adv-2025-0003 OX App Suite Security Advisory OXAS-ADV-2025-0003 2025-09-24T00:00:00+02:00 2025-11-27T00:00:00+00:00
oxas-adv-2025-0002 OX App Suite Security Advisory OXAS-ADV-2025-0002 2025-08-12T00:00:00+02:00 2025-10-31T00:00:00+00:00
oxas-adv-2025-0001 OX App Suite Security Advisory OXAS-ADV-2025-0001 2025-01-27T00:00:00+01:00 2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003 2024-09-10T00:00:00+02:00 2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002 2024-09-10T00:00:00+02:00 2024-09-10T00:00:00+00:00
oxas-adv-2024-0005 OX App Suite Security Advisory OXAS-ADV-2024-0005 2024-07-08T00:00:00+02:00 2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001 2024-09-02T00:00:00+02:00 2024-09-06T00:00:00+00:00
oxas-adv-2024-0004 OX App Suite Security Advisory OXAS-ADV-2024-0004 2024-06-13T00:00:00+02:00 2024-08-19T00:00:00+00:00
oxas-adv-2024-0003 OX App Suite Security Advisory OXAS-ADV-2024-0003 2024-04-24T00:00:00+02:00 2024-08-19T00:00:00+00:00
oxas-adv-2024-0002 OX App Suite Security Advisory OXAS-ADV-2024-0002 2024-03-06T00:00:00+01:00 2024-05-06T00:00:00+00:00
oxas-adv-2024-0001 OX App Suite Security Advisory OXAS-ADV-2024-0001 2024-02-08T00:00:00+01:00 2024-04-25T00:00:00+00:00
oxas-adv-2023-0007 OX App Suite Security Advisory OXAS-ADV-2023-0007 2023-12-11T00:00:00+01:00 2024-02-16T00:00:00+00:00
oxas-adv-2023-0006 OX App Suite Security Advisory OXAS-ADV-2023-0006 2023-09-25T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0005 OX App Suite Security Advisory OXAS-ADV-2023-0005 2023-09-19T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0004 OX App Suite Security Advisory OXAS-ADV-2023-0004 2023-08-01T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0003 OX App Suite Security Advisory OXAS-ADV-2023-0003 2023-05-02T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0002 OX App Suite Security Advisory OXAS-ADV-2023-0002 2023-03-20T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0001 OX App Suite Security Advisory OXAS-ADV-2023-0001 2023-02-06T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2022-0002 OX App Suite Security Advisory OXAS-ADV-2022-0002 2022-11-02T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2022-0001 OX App Suite Security Advisory OXAS-ADV-2022-0001 2022-08-10T00:00:00+02:00 2024-01-22T00:00:00+00:00
ID Description Published Updated
msrc_cve-2025-13699 MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability 2025-12-02T00:00:00.000Z 2025-12-30T01:37:07.000Z
msrc_cve-2025-68615 Net-SNMP snmptrapd crash 2025-12-02T00:00:00.000Z 2025-12-30T01:36:49.000Z
msrc_cve-2025-13912 Potential non-constant time compiled code with Clang LLVM 2025-12-02T00:00:00.000Z 2025-12-30T01:36:30.000Z
msrc_cve-2025-13281 Portworx Half-Blind SSRF in kube-controller-manager 2025-12-02T00:00:00.000Z 2025-12-30T01:36:19.000Z
msrc_cve-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. 2025-12-02T00:00:00.000Z 2025-12-30T01:36:12.000Z
msrc_cve-2023-52970 MariaDB Server 10.4 through 10.5.*, 10.6 through 10.6.*, 10.7 through 10.11.*, 11.0 through 11.0.*, and 11.1 through 11.4.* crashes in Item_direct_view_ref::derived_field_transformer_for_where. 2025-03-02T00:00:00.000Z 2025-12-30T01:35:17.000Z
msrc_cve-2025-68973 In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.) 2025-12-02T00:00:00.000Z 2025-12-30T01:01:21.000Z
msrc_cve-2025-14180 NULL Pointer Dereference in PDO quoting 2025-12-02T00:00:00.000Z 2025-12-29T14:36:08.000Z
msrc_cve-2025-14178 Heap buffer overflow in array_merge() 2025-12-02T00:00:00.000Z 2025-12-29T14:36:03.000Z
msrc_cve-2025-14177 Information Leak of Memory in getimagesize 2025-12-02T00:00:00.000Z 2025-12-29T14:35:58.000Z
msrc_cve-2025-68972 In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line. 2025-12-02T00:00:00.000Z 2025-12-29T14:35:53.000Z
msrc_cve-2025-14104 Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames 2025-12-02T00:00:00.000Z 2025-12-27T14:36:13.000Z
msrc_cve-2025-68156 Expr has Denial of Service via Unbounded Recursion in Builtin Functions 2025-12-02T00:00:00.000Z 2025-12-27T01:36:36.000Z
msrc_cve-2025-7425 Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr 2025-07-02T00:00:00.000Z 2025-12-26T14:39:00.000Z
msrc_cve-2023-54061 x86: fix clear_user_rep_good() exception handling annotation 2025-12-02T00:00:00.000Z 2025-12-26T14:38:55.000Z
msrc_cve-2025-68733 smack: fix bug: unprivileged task can create labels 2025-12-02T00:00:00.000Z 2025-12-26T14:38:50.000Z
msrc_cve-2025-68374 md: fix rcu protection in md_wakeup_thread 2025-12-02T00:00:00.000Z 2025-12-26T14:38:46.000Z
msrc_cve-2025-68724 crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id 2025-12-02T00:00:00.000Z 2025-12-26T14:38:41.000Z
msrc_cve-2025-68380 wifi: ath11k: fix peer HE MCS assignment 2025-12-02T00:00:00.000Z 2025-12-26T14:38:36.000Z
msrc_cve-2025-68376 coresight: ETR: Fix ETR buffer use-after-free issue 2025-12-02T00:00:00.000Z 2025-12-26T14:38:31.000Z
msrc_cve-2025-68378 bpf: Fix stackmap overflow check in __bpf_get_stackid() 2025-12-02T00:00:00.000Z 2025-12-26T14:38:26.000Z
msrc_cve-2025-68727 ntfs3: Fix uninit buffer allocated by __getname() 2025-12-02T00:00:00.000Z 2025-12-26T14:38:22.000Z
msrc_cve-2025-68364 ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent() 2025-12-02T00:00:00.000Z 2025-12-26T14:38:17.000Z
msrc_cve-2025-68346 ALSA: dice: fix buffer overflow in detect_stream_formats() 2025-12-02T00:00:00.000Z 2025-12-26T14:38:12.000Z
msrc_cve-2025-68379 RDMA/rxe: Fix null deref on srq->rq.queue after resize failure 2025-12-02T00:00:00.000Z 2025-12-26T14:38:07.000Z
msrc_cve-2025-68363 bpf: Check skb->transport_header is set in bpf_skb_check_mtu 2025-12-02T00:00:00.000Z 2025-12-26T14:38:02.000Z
msrc_cve-2025-68740 ima: Handle error code returned by ima_filter_rule_match() 2025-12-02T00:00:00.000Z 2025-12-26T14:37:57.000Z
msrc_cve-2023-54082 af_unix: Fix null-ptr-deref in unix_stream_sendpage(). 2025-12-02T00:00:00.000Z 2025-12-26T14:37:53.000Z
msrc_cve-2025-68358 btrfs: fix racy bitfield write in btrfs_clear_space_info_full() 2025-12-02T00:00:00.000Z 2025-12-26T14:37:48.000Z
msrc_cve-2025-68372 nbd: defer config put in recv_work 2025-12-02T00:00:00.000Z 2025-12-26T14:37:43.000Z
ID Description Published Updated
9akk108471a8107 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-09-16T00:30:00.000Z 2025-11-28T08:00:00.000Z
4hzm000603 ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC) 2025-11-27T00:30:00.000Z 2025-11-28T00:30:00.000Z
7paa022088 Edgenius Management Portal Authentication Bypass 2025-11-20T00:30:00.000Z 2025-11-20T00:30:00.000Z
2nga002813 PCM600 SharpZip library vulnerability 2025-11-03T00:30:00.000Z 2025-11-03T00:30:00.000Z
4tz00000006007 ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations 2025-10-20T00:30:00.000Z 2025-10-23T00:30:00.000Z
9akk108471a8948 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-10-20T00:30:00.000Z 2025-10-21T00:30:00.000Z
3kxg200000r4801 CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability 2025-04-16T00:30:00.000Z 2025-10-20T00:30:00.000Z
sa25p003 B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-14T00:30:00.000Z
4tz00000006008 LVS MConfig Insecure memory handling 2025-10-08T00:30:00.000Z 2025-10-08T00:30:00.000Z
sa25p002 B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-07T00:30:00.000Z
9akk108471a7808 EIBPORT Reflected XSS 2025-10-07T00:30:00.000Z 2025-10-07T00:30:00.000Z
9akk108471a7121 FLXeon Controllers Multiple vulnerabilities 2025-09-09T00:30:00.000Z 2025-09-18T00:30:00.000Z
9akk108471a4462 ELSB/BLBA ASPECT advisory several CVEs 2025-08-11T00:30:00.000Z 2025-09-04T00:30:00.000Z
9akk108471a3623 RMC - 100 Vulnerabilities in web UI (REST Interface) 2025-07-03T00:30:00.000Z 2025-08-18T00:30:00.000Z
2nga002743 ABB AbilityTM zenon Remote Transport Vulnerability 2025-08-12T00:30:00.000Z 2025-08-12T00:30:00.000Z
3adr011407 ABB Automation Builder Vulnerabilities in user management and access control 2025-04-30T00:00:00.000Z 2025-07-25T00:00:00.000Z
3adr011432 AC500 V2 Buffer overread on Modbus protocol 2025-07-23T00:30:00.000Z 2025-07-23T00:30:00.000Z
9akk108471a4556 Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode. 2025-07-21T00:30:00.000Z 2025-07-21T00:30:00.000Z
2crt000008 Lite Panel Pro Vulnerability in Session Management 2025-06-26T00:30:00.000Z 2025-06-26T00:30:00.000Z
9akk108470a8948 ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway. 2025-05-29T00:30:00.000Z 2025-06-05T00:30:00.000Z
9akk108471a1621 EIBPORT Session Management Fail 2025-06-02T00:30:00.000Z 2025-06-04T00:30:00.000Z
9akk108471a0021 ELSB/BLBA ASPECT advisory several CVEs 2025-05-22T00:30:00.000Z 2025-05-23T10:30:00.000Z
2crt000006 ANC – ABB Network Card Multiple vulnerabilities in ANC 2025-04-30T00:30:00.000Z 2025-04-30T00:30:00.000Z
2crt000007 Ekip Com IEC61850 Vulnerability in 3rd Party Library 2025-04-29T00:30:00.000Z 2025-04-29T00:30:00.000Z
9akk108470a9989 ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities 2025-04-10T08:30:00.000Z 2025-04-10T08:30:00.000Z
2nga002579 ABB Arctic communication solution ARM600 Vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
2nga002427 ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities 2025-04-07T10:30:00.000Z 2025-04-07T10:30:00.000Z
9akk108470a9494 Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
9akk108470a9491 ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities 2025-03-26T00:30:00.000Z 2025-03-27T00:30:00.000Z
sa24p015 B&R APROL Potential Privilege Escalation and Information Disclosure 2025-03-24T00:30:00.000Z 2025-03-24T00:30:00.000Z
ID Description Updated
var-202407-2188 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:32.699000Z
var-202406-3119 Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s… 2024-07-23T22:46:22.685000Z
var-202407-1740 NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha… 2024-07-23T22:46:18.378000Z
var-202407-1417 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:07.784000Z
var-202407-1103 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:01.992000Z
var-202407-0957 WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile… 2024-07-23T22:45:59.391000Z
var-202407-0819 SIMATIC S7-1500 is a modular control system suitable for various automation applications … 2024-07-23T22:45:56.958000Z
var-202407-0818 NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6… 2024-07-23T22:45:56.946000Z
var-202407-0779 Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of … 2024-07-23T22:45:56.150000Z
var-202407-0778 Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera… 2024-07-23T22:45:56.131000Z
var-202407-0745 Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera… 2024-07-23T22:45:55.498000Z
var-202305-1479 D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution … 2024-07-23T22:45:09.335000Z
var-202108-1158 A race condition was addressed with improved locking. This issue is fixed in macOS Monter… 2024-07-23T22:44:06.976000Z
var-201109-0089 Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used… 2024-07-23T22:43:49.590000Z
var-200702-0378 Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 … 2024-07-23T22:43:25.614000Z
var-201011-0225 Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent … 2024-07-23T22:41:43.584000Z
var-201112-0297 Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne… 2024-07-23T22:41:20.004000Z
var-201507-0645 D-Link is an internationally renowned provider of network equipment and solutions, includ… 2024-07-23T22:41:18.832000Z
var-201803-1810 A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial … 2024-07-23T22:41:17.171000Z
var-201809-0087 WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul… 2024-07-23T22:41:16.554000Z
var-200607-0396 Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b… 2024-07-23T22:41:04.279000Z
var-201702-0423 An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft… 2024-07-23T22:40:53.160000Z
var-202305-1588 D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit… 2024-07-23T22:40:05.297000Z
var-201112-0173 The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, … 2024-07-23T22:39:32.535000Z
var-201103-0371 SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d… 2024-07-23T22:39:32.874000Z
var-201706-0017 In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie… 2024-07-23T22:38:34.494000Z
var-202305-1520 D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul… 2024-07-23T22:38:26.576000Z
var-202407-0490 A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP … 2024-07-23T22:38:24.768000Z
var-201810-0396 Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili… 2024-07-23T22:37:44.850000Z
var-202001-0833 A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo… 2024-07-23T22:37:43.471000Z
ID Description Published Updated
jvndb-2025-022878 Media Player MP-01 vulnerable to Missing Authentication for Critical Function 2025-12-24T11:10+09:00 2025-12-24T11:10+09:00
jvndb-2025-019621 EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts 2025-11-21T15:31+09:00 2025-12-24T10:54+09:00
jvndb-2025-014967 Multiple vulnerabilities in multiple Keyence products 2025-10-03T11:19+09:00 2025-12-23T14:36+09:00
jvndb-2025-000117 SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow 2025-12-16T15:31+09:00 2025-12-23T11:57+09:00
jvndb-2025-022400 Ruijie Networks AP180 Series vulnerable to OS command injection 2025-12-19T12:33+09:00 2025-12-19T12:33+09:00
jvndb-2025-000118 GROWI vulnerable to cross-site request forgery 2025-12-17T13:04+09:00 2025-12-17T13:04+09:00
jvndb-2025-022062 Multiple vulnerabilities in CHOCO TEI WATCHER mini 2025-12-17T11:28+09:00 2025-12-17T11:28+09:00
jvndb-2025-000115 QND vulnerable to privilege escalation 2025-12-11T14:33+09:00 2025-12-11T14:33+09:00
jvndb-2025-000113 Multiple vulnerabilities in GroupSession 2025-12-08T17:48+09:00 2025-12-11T11:30+09:00
jvndb-2025-000091 Multiple I-O DATA NAS management applications register Windows services with unquoted file paths 2025-10-22T15:04+09:00 2025-12-10T16:20+09:00
jvndb-2021-000081 Multiple vulnerabilities in Sharp NEC Display Solutions' public displays 2021-09-17T15:13+09:00 2025-12-10T10:24+09:00
jvndb-2025-021305 Android App "Brother iPrint&Scan" improper use of an external cache directory 2025-12-09T17:25+09:00 2025-12-09T17:25+09:00
jvndb-2025-000114 ELECOM Clone for Windows registers a Windows service with an unquoted file path 2025-12-09T17:16+09:00 2025-12-09T17:16+09:00
jvndb-2025-000116 GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths 2025-12-08T14:06+09:00 2025-12-08T14:06+09:00
jvndb-2025-000094 Multiple vulnerabilities in ABB Terra AC Wallbox 2025-12-05T14:12+09:00 2025-12-05T14:12+09:00
jvndb-2025-000112 Installer of INZONE Hub may insecurely load Dynamic Link Libraries 2025-11-28T13:36+09:00 2025-11-28T13:36+09:00
jvndb-2025-000111 SwitchBot Smart Video Doorbell vulnerable to active debug code 2025-11-26T14:35+09:00 2025-11-26T14:35+09:00
jvndb-2025-000110 Multiple vulnerabilities in Security Point (Windows) of MaLion 2025-11-25T17:17+09:00 2025-11-25T17:17+09:00
jvndb-2025-000109 Multiple vulnerabilities in SNC-CX600W 2025-11-25T14:59+09:00 2025-11-25T14:59+09:00
jvndb-2025-000108 "FOD" App uses hard-coded cryptographic keys 2025-11-25T14:15+09:00 2025-11-25T14:15+09:00
jvndb-2025-000106 Multiple vulnerabilities in LogStare Collector 2025-11-21T16:27+09:00 2025-11-21T16:27+09:00
jvndb-2025-000107 Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries 2025-11-19T16:22+09:00 2025-11-19T16:22+09:00
jvndb-2025-000097 "Dejira" App for iOS vulnerable to improper server certificate verification 2025-11-17T14:09+09:00 2025-11-17T14:09+09:00
jvndb-2025-000105 NCP-HG100 vulnerable to OS command injection 2025-11-14T15:26+09:00 2025-11-14T15:26+09:00
jvndb-2025-000104 Multiple vulnerabilities in GNU Libmicrohttpd 2025-11-10T15:07+09:00 2025-11-10T15:07+09:00
jvndb-2025-000103 Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series" 2025-11-07T15:39+09:00 2025-11-07T15:39+09:00
jvndb-2025-000102 CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection 2025-11-07T14:55+09:00 2025-11-07T14:55+09:00
jvndb-2025-000101 GROWI vulnerable to stored cross-site scripting 2025-11-06T13:45+09:00 2025-11-06T13:45+09:00
jvndb-2024-013260 Multiple vulnerabilities in Edgecross Basic Software for Windows 2024-11-22T10:59+09:00 2025-11-04T16:41+09:00
jvndb-2025-017972 Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series 2025-11-04T16:37+09:00 2025-11-04T16:37+09:00
ID Description Updated
ts-2025-008 TS-2025-008 2025-11-19T00:00
ts-2025-007 TS-2025-007 2025-11-07T00:00
ts-2025-006 TS-2025-006 2025-10-28T00:00
ts-2025-005 TS-2025-005 2025-08-07T00:00
ts-2025-004 TS-2025-004 2025-05-27T00:00
ts-2025-003 TS-2025-003 2025-05-21T00:00
ts-2025-002 TS-2025-002 2025-05-15T00:00
ts-2025-001 TS-2025-001 2025-03-07T00:00
ts-2024-013 TS-2024-013 2024-12-04T00:00
ts-2024-012 TS-2024-012 2024-10-02T00:00
ts-2024-011 TS-2024-011 2024-07-22T00:00
ts-2024-010 TS-2024-010 2024-07-19T00:00
ts-2024-009 TS-2024-009 2024-06-27T00:00
ts-2024-008 TS-2024-008 2024-06-14T00:00
ts-2024-007 TS-2024-007 2024-06-12T00:00
ts-2024-006 TS-2024-006 2024-05-22T00:00
ts-2024-005 TS-2024-005 2024-05-08T00:00
ts-2024-004 TS-2024-004 2024-05-06T00:00
ts-2024-003 TS-2024-003 2024-04-23T00:00
ts-2024-002 TS-2024-002 2024-01-30T00:00
ts-2024-001 TS-2024-001 2024-01-08T00:00
ts-2023-009 TS-2023-009 2023-12-22T00:00
ts-2023-008 TS-2023-008 2023-11-01T00:00
ts-2023-007 TS-2023-007 2023-10-26T00:00
ts-2023-006 TS-2023-006 2023-08-22T00:00
ts-2023-005 TS-2023-005 2023-04-28T00:00
ts-2023-004 TS-2023-004 2023-04-04T00:00
ts-2023-003 TS-2023-003 2023-03-22T00:00
ts-2023-002 TS-2023-002 2023-01-24T00:00
ts-2023-001 TS-2023-001 2023-01-17T00:00
ID Description Published Updated
suse-su-2025:4532-1 Security update for apache2-mod_auth_openidc 2025-12-29T13:53:59Z 2025-12-29T13:53:59Z
suse-su-2025:4530-1 Security update for the Linux Kernel 2025-12-29T10:48:23Z 2025-12-29T10:48:23Z
suse-su-2025:4528-1 Security update for webkit2gtk3 2025-12-26T14:52:35Z 2025-12-26T14:52:35Z
suse-su-2025:4527-1 Security update for webkit2gtk3 2025-12-26T14:49:08Z 2025-12-26T14:49:08Z
suse-su-2025:4526-1 Security update for buildah 2025-12-26T12:24:16Z 2025-12-26T12:24:16Z
suse-su-2025:4525-1 Security update for gnutls 2025-12-26T12:19:11Z 2025-12-26T12:19:11Z
suse-su-2025:4523-1 Security update for qemu 2025-12-26T10:45:48Z 2025-12-26T10:45:48Z
suse-su-2025:4522-1 Security update for python39 2025-12-26T10:35:01Z 2025-12-26T10:35:01Z
suse-su-2025:4521-1 Security update for the Linux Kernel 2025-12-24T12:42:49Z 2025-12-24T12:42:49Z
suse-su-2025:4520-1 Security update for mariadb 2025-12-24T09:19:47Z 2025-12-24T09:19:47Z
suse-su-2025:4518-1 Security update for apache2 2025-12-23T19:07:45Z 2025-12-23T19:07:45Z
suse-su-2025:4517-1 Security update for the Linux Kernel 2025-12-23T16:28:51Z 2025-12-23T16:28:51Z
suse-su-2025:4516-1 Security update for the Linux Kernel 2025-12-23T16:27:39Z 2025-12-23T16:27:39Z
suse-su-2025:4515-1 Security update for the Linux Kernel 2025-12-23T16:19:45Z 2025-12-23T16:19:45Z
suse-su-2025:4507-1 Security update for the Linux Kernel 2025-12-22T16:46:54Z 2025-12-22T16:46:54Z
suse-su-2025:4506-1 Security update for the Linux Kernel 2025-12-22T16:39:00Z 2025-12-22T16:39:00Z
suse-su-2025:4505-1 Security update for the Linux Kernel 2025-12-22T16:35:13Z 2025-12-22T16:35:13Z
suse-su-2025:4504-1 Security update for glib2 2025-12-22T16:30:38Z 2025-12-22T16:30:38Z
suse-su-2025:4502-1 Security update for mariadb 2025-12-22T11:28:30Z 2025-12-22T11:28:30Z
suse-su-2025:4494-1 Security update for libpng16 2025-12-19T13:14:13Z 2025-12-19T13:14:13Z
suse-su-2025:4493-1 Security update for mariadb 2025-12-19T13:01:17Z 2025-12-19T13:01:17Z
suse-su-2025:4491-1 Security update for mariadb 2025-12-19T11:40:47Z 2025-12-19T11:40:47Z
suse-su-2025:4490-1 Security update for xen 2025-12-19T11:17:12Z 2025-12-19T11:17:12Z
suse-su-2025:4489-1 Security update for netty 2025-12-19T11:01:56Z 2025-12-19T11:01:56Z
suse-su-2025:4488-1 Security update for apache2 2025-12-18T17:17:26Z 2025-12-18T17:17:26Z
suse-su-2025:4442-1 Security update for glib2 2025-12-17T16:17:51Z 2025-12-17T16:17:51Z
suse-su-2025:4441-1 Security update for glib2 2025-12-17T16:15:21Z 2025-12-17T16:15:21Z
suse-su-2025:4440-1 Security update for wireshark 2025-12-17T15:44:39Z 2025-12-17T15:44:39Z
suse-su-2025:4439-1 Security update for poppler 2025-12-17T15:44:25Z 2025-12-17T15:44:25Z
suse-su-2025:4438-1 Security update for mariadb 2025-12-17T15:43:51Z 2025-12-17T15:43:51Z
ID Description Published Updated
opensuse-su-2025:15848-1 python311-openapi-core-0.22.0-1.1 on GA media 2025-12-28T00:00:00Z 2025-12-28T00:00:00Z
opensuse-su-2025:15847-1 anubis-1.24.0-1.1 on GA media 2025-12-28T00:00:00Z 2025-12-28T00:00:00Z
opensuse-su-2025:15846-1 python39-3.9.25-2.1 on GA media 2025-12-24T00:00:00Z 2025-12-24T00:00:00Z
opensuse-su-2025:15845-1 podman-5.7.1-1.1 on GA media 2025-12-24T00:00:00Z 2025-12-24T00:00:00Z
opensuse-su-2025:15844-1 cpp-httplib-devel-0.28.0-1.1 on GA media 2025-12-24T00:00:00Z 2025-12-24T00:00:00Z
opensuse-su-2025:15843-1 buildah-1.42.2-1.1 on GA media 2025-12-24T00:00:00Z 2025-12-24T00:00:00Z
opensuse-su-2025:15841-1 zk-0.15.2-1.1 on GA media 2025-12-22T00:00:00Z 2025-12-22T00:00:00Z
opensuse-su-2025:15840-1 python315-3.15.0~a3-1.1 on GA media 2025-12-22T00:00:00Z 2025-12-22T00:00:00Z
opensuse-su-2025:15839-1 python310-3.10.19-3.1 on GA media 2025-12-22T00:00:00Z 2025-12-22T00:00:00Z
opensuse-su-2025:15832-1 coredns-for-k8s1.35-1.13.1-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15831-1 chromedriver-143.0.7499.146-1.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15830-1 alloy-1.12.0-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15829-1 ImageMagick-7.1.2.10-2.1 on GA media 2025-12-19T00:00:00Z 2025-12-19T00:00:00Z
opensuse-su-2025:15824-1 netty-4.1.130-1.1 on GA media 2025-12-17T00:00:00Z 2025-12-17T00:00:00Z
opensuse-su-2025:15823-1 clair-4.9.0-1.1 on GA media 2025-12-17T00:00:00Z 2025-12-17T00:00:00Z
opensuse-su-2025:15822-1 strongswan-6.0.4-1.1 on GA media 2025-12-15T00:00:00Z 2025-12-15T00:00:00Z
opensuse-su-2025:15821-1 qemu-10.1.3-1.1 on GA media 2025-12-15T00:00:00Z 2025-12-15T00:00:00Z
opensuse-su-2025:15819-1 libruby4_0-4_0-4.0.0~preview2-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15818-1 pgadmin4-9.11-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15817-1 buildpacks-cli-0.39.1-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15816-1 ImageMagick-7.1.2.10-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15812-1 libpoppler-cpp2-25.09.1-4.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15811-1 keylime-config-7.13.0+40-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15810-1 gio-branding-upstream-2.86.3-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15809-1 firefox-esr-140.6.0-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15808-1 apache2-2.4.66-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15802-1 corepack24-24.11.1-2.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15801-1 libpng16-16-1.6.52-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15800-1 kdeconnect-kde-25.11.90-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15797-1 libpng12-0-1.2.59-4.1 on GA media 2025-12-04T00:00:00Z 2025-12-04T00:00:00Z
ID Description Published Updated
cnvd-2025-31070 Advantech WebAccess/VPN StandaloneVpnClientsController.addStandaloneVpnClientAction函数跨站脚本漏洞 2025-11-11 2025-12-19
cnvd-2025-31069 Advantech WebAccess/VPN NetworksController.addNetworkAction函数跨站脚本漏洞 2025-11-11 2025-12-19
cnvd-2025-31068 Advantech WebAccess/VPN AjaxFwRulesController.ajaxNetworkFwRulesAction函数SQL注入漏洞 2025-11-11 2025-12-19
cnvd-2025-31067 Advantech WebAccess/VPN AjaxFwRulesController.ajaxDeviceFwRulesAction函数SQL注入漏洞 2025-11-11 2025-12-19
cnvd-2025-31066 Advantech WebAccess/VPN AjaxDeviceController.ajaxDeviceAction函数SQL注入漏洞 2025-11-11 2025-12-19
cnvd-2025-31065 Advantech iView SQL注入漏洞(CNVD-2025-31065) 2025-11-11 2025-12-19
cnvd-2025-31064 Advantech iView SQL注入漏洞(CNVD-2025-31064) 2025-11-11 2025-12-19
cnvd-2025-31063 Advantech iView SQL注入漏洞(CNVD-2025-31063) 2025-11-11 2025-12-19
cnvd-2025-31062 Advantech iView SQL注入漏洞(CNVD-2025-31062) 2025-11-11 2025-12-19
cnvd-2025-31061 Advantech iView SQL注入漏洞(CNVD-2025-31061) 2025-11-11 2025-12-19
cnvd-2025-31112 Online Birth Certificate System不安全的直接对象引用漏洞 2024-12-19 2025-12-18
cnvd-2025-31111 Online Birth Certificate System未授权访问漏洞 2024-12-20 2025-12-18
cnvd-2025-31110 Online Birth Certificate System /user/certificate-form.php文件跨站脚本漏洞 2024-12-20 2025-12-18
cnvd-2025-31109 Online Birth Certificate System HTML注入漏洞 2024-12-20 2025-12-18
cnvd-2025-31108 Online Birth Certificate System /user/certificate-form.php文件跨站脚本漏洞 2025-02-18 2025-12-18
cnvd-2025-31107 Online Birth Certificate System /admin/bwdates-reports-details.php文件SQL注入漏洞 2025-05-13 2025-12-18
cnvd-2025-31106 Online Birth Certificate System /search.php文件SQL注入漏洞 2025-05-14 2025-12-18
cnvd-2025-31105 Online Birth Certificate System /registered-users.php文件SQL注入漏洞 2025-06-06 2025-12-18
cnvd-2025-31104 Advantech WebAccess/VPN命令注入漏洞 2025-11-11 2025-12-18
cnvd-2025-31103 Advantech WebAccess/VPN绝对路径遍历漏洞 2025-11-11 2025-12-18
cnvd-2025-31102 News Portal login.php文件SQL注入漏洞 2025-03-07 2025-12-18
cnvd-2025-31101 News Portal /index.php文件SQL注入漏洞 2025-05-22 2025-12-18
cnvd-2025-31100 News Portal Project /contactus.php文件SQL注入漏洞 2025-05-22 2025-12-18
cnvd-2025-31099 News Portal /aboutus.php文件SQL注入漏洞 2025-05-22 2025-12-18
cnvd-2025-31098 News Portal /forgot-password.php文件SQL注入漏洞 2025-06-06 2025-12-18
cnvd-2025-31008 Credit Card Application Management System跨站脚本漏洞 2025-05-22 2025-12-18
cnvd-2025-31007 Credit Card Application Management System SQL注入漏洞 2025-05-22 2025-12-18
cnvd-2025-31006 Daily Expense Tracker System跨站脚本漏洞(CNVD-2025-31006) 2021-02-03 2025-12-18
cnvd-2025-31005 Daily Expense Tracker System跨站脚本漏洞(CNVD-2025-31005) 2021-02-03 2025-12-18
cnvd-2025-31004 Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31004) 2025-02-17 2025-12-18
ID Description Published Updated
certfr-2025-avi-1141 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1140 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1139 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1138 Multiples vulnérabilités dans VMware Tanzu Platform 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1137 Multiples vulnérabilités dans les produits IBM 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1076 Multiples vulnérabilités dans MISP 2025-12-08T00:00:00.000000 2025-12-24T00:00:00.000000
certfr-2025-avi-1126 Multiples vulnérabilités dans PHP 2025-12-19T00:00:00.000000 2025-12-22T00:00:00.000000
certfr-2025-avi-1136 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1135 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1134 Multiples vulnérabilités dans MongoDB Server 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1133 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1132 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1131 Multiples vulnérabilités dans les produits IBM 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1130 Multiples vulnérabilités dans les produits Foxit 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1129 Multiples vulnérabilités dans les produits VMware 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1128 Multiples vulnérabilités dans Mozilla Firefox 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1127 Multiples vulnérabilités dans Centreon Web 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1125 Vulnérabilité dans les produits NetApp 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1124 Multiples vulnérabilités dans Microsoft Edge 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1123 Multiples vulnérabilités dans les produits Elastic 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1122 Multiples vulnérabilités dans Mattermost Server 2025-12-18T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1121 Vulnérabilité dans Sonicwall Secure Mobile Access 2025-12-18T00:00:00.000000 2025-12-18T00:00:00.000000
certfr-2025-avi-1120 Vulnérabilité dans les produits Cisco 2025-12-18T00:00:00.000000 2025-12-18T00:00:00.000000
certfr-2025-avi-1119 Multiples vulnérabilités dans les produits Synology 2025-12-17T00:00:00.000000 2025-12-17T00:00:00.000000
certfr-2025-avi-1118 Vulnérabilité dans Mozilla Firefox 2025-12-17T00:00:00.000000 2025-12-17T00:00:00.000000
certfr-2025-avi-1117 Multiples vulnérabilités dans GLPI 2025-12-17T00:00:00.000000 2025-12-17T00:00:00.000000
certfr-2025-avi-1116 Multiples vulnérabilités dans Google Chrome 2025-12-17T00:00:00.000000 2025-12-17T00:00:00.000000
certfr-2025-avi-1115 Vulnérabilité dans Trend Micro Apex One 2025-12-16T00:00:00.000000 2025-12-16T00:00:00.000000
certfr-2025-avi-1114 Multiples vulnérabilités dans Tenable Nessus 2025-12-16T00:00:00.000000 2025-12-16T00:00:00.000000
certfr-2025-avi-1113 Multiples vulnérabilités dans Moodle 2025-12-16T00:00:00.000000 2025-12-16T00:00:00.000000
ID Description Published Updated
certfr-2025-ale-014 [MàJ] Vulnérabilité dans React Server Components 2025-12-05T00:00:00.000000 2025-12-08T00:00:00.000000
certfr-2025-ale-013 [MàJ] Multiples vulnérabilités dans Cisco ASA et FTD 2025-09-25T00:00:00.000000 2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013 [MàJ] Multiples vulnérabilités dans Cisco ASA et FTD 2025-09-25T00:00:00.000000 2025-10-06T00:00:00.000000
CERTFR-2025-ALE-014 [MàJ] Vulnérabilité dans React Server Components 2025-12-05T00:00:00.000000 2025-12-08T00:00:00.000000
certfr-2025-ale-012 Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012 Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-ale-010 [MàJ] Multiples vulnérabilités dans Microsoft SharePoint 2025-07-21T00:00:00.000000 2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010 [MàJ] Multiples vulnérabilités dans Microsoft SharePoint 2025-07-21T00:00:00.000000 2025-08-26T00:00:00.000000
certfr-2025-ale-011 Incidents de sécurité dans les pare-feux SonicWall 2025-08-05T00:00:00.000000 2025-08-18T00:00:00.000000
certfr-2025-ale-009 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-07-01T00:00:00.000000 2025-07-17T00:00:00.000000
CERTFR-2025-ALE-011 Incidents de sécurité dans les pare-feux SonicWall 2025-08-05T00:00:00.000000 2025-08-18T00:00:00.000000
CERTFR-2025-ALE-009 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-07-01T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-ale-004 Activités de post-exploitation dans Fortinet FortiGate 2025-04-11T00:00:00.000000 2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004 Activités de post-exploitation dans Fortinet FortiGate 2025-04-11T00:00:00.000000 2025-08-07T00:00:00.000000
certfr-2025-ale-008 [MàJ] Vulnérabilité dans Roundcube 2025-06-05T00:00:00.000000 2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008 [MàJ] Vulnérabilité dans Roundcube 2025-06-05T00:00:00.000000 2025-07-21T00:00:00.000000
certfr-2025-ale-007 Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) 2025-05-14T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-006 Vulnérabilité dans les produits Fortinet 2025-05-13T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-005 Vulnérabilité dans SAP NetWeaver 2025-04-28T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-003 [MàJ] Vulnérabilité dans les produits Ivanti 2025-04-04T00:00:00.000000 2025-04-11T00:00:00.000000
CERTFR-2025-ALE-007 Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) 2025-05-14T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006 Vulnérabilité dans les produits Fortinet 2025-05-13T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005 Vulnérabilité dans SAP NetWeaver 2025-04-28T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-003 [MàJ] Vulnérabilité dans les produits Ivanti 2025-04-04T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2025-ale-002 [MàJ] Vulnérabilité dans les produits Fortinet 2025-05-07T00:00:00.000000 2025-01-14T00:00:00.000000
certfr-2025-ale-001 [MàJ] Vulnérabilité dans les produits Ivanti 2025-01-09T00:00:00.000000 2025-04-01T00:00:00.000000
CERTFR-2025-ALE-002 [MàJ] Vulnérabilité dans les produits Fortinet 2025-05-07T00:00:00.000000 2025-01-14T00:00:00.000000
CERTFR-2025-ALE-001 [MàJ] Vulnérabilité dans les produits Ivanti 2025-01-09T00:00:00.000000 2025-04-01T00:00:00.000000
certfr-2024-ale-014 [MàJ] Multiples vulnérabilités dans Fortinet FortiManager 2024-10-30T00:00:00.000000 2024-10-23T00:00:00.000000
certfr-2024-ale-013 Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) 2025-03-31T00:00:00.000000 2024-10-25T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
GCVE-1-2025-0041
6.4 (4.0)
[online services] Reflected Cross-Site Scripting (XSS)… typo3
 typo3
 2025-12-19T14:25:00.000Z 2025-12-19T14:54:51.594645Z
GCVE-1-2025-0031
7.1 (4.0)
A cross-site scripting (XSS) vulnerability was identif… misp
 misp
 2025-12-03T10:58:00.000Z 2025-12-16T09:36:09.594750Z
GCVE-1-2025-0040
7.2 (4.0)
A cross-site scripting (XSS) vulnerability was id… misp
 misp
 2025-12-13T08:44:32.378924Z 2025-12-13T08:44:32.378924Z
GCVE-1-2025-0039
8.5 (4.0)
XSS Reintroduced in MISP Dashboard World Map Widget Du… misp
 misp
 2025-12-10T14:33:52.856734Z 2025-12-10T14:33:52.856734Z
GCVE-1-2025-0038
5 (4.0)
Reflected XSS in MISP Template Tag Removal and MISP Ad… misp
 misp
 2025-12-10T14:10:00.000Z 2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037
7 (4.0)
Reflected XSS in MISP Dashboard Widgets via Unescaped … misp
 misp
 2025-12-10T14:01:03.200804Z 2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036
8.3 (4.0)
A reflected cross-site scripting (XSS) vulnerability w… misp
 misp
 2025-12-10T13:46:07.170083Z 2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035
8.3 (4.0)
Insufficient sanitization of bundle metadata (availabl… CIRCL
 vulnerability-lookup
 2025-12-08T10:25:00.000Z 2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034
7 (4.0)
Missing CSRF protection on state-changing endpoints in… CIRCL
 vulnerability-lookup
 2025-12-08T10:19:00.000Z 2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033
8.1 (4.0)
Vulnerability-lookup did not track or limit failed One… CIRCL
 vulnerability-lookup
 2025-12-08T10:11:00.000Z 2025-12-08T12:12:53.235996Z
GCVE-1-2025-0032
10 (4.0)
The default configuration of WatchGuard Firebox device… watchguard
 firebox
 2025-12-03T16:25:00.000Z 2025-12-19T13:48:34.570799Z
GCVE-1-2025-0030
6.2 (4.0)
A cross-site scripting (XSS) vulnerability in the MISP… misp
 misp
 2025-12-03T10:53:00.000Z 2025-12-03T10:58:55.845341Z
GCVE-1-2025-0019
4 (4.0)
Path traversal vulnerability in EventReport for site-admin misp
 misp
 2025-11-26T14:47:00.000Z 2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017
9.4 (4.0)
Privilege escalation in Cerebrate allows an authentica… cerebrate
 cerebrate
 2025-11-12T08:15:00.000Z 2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029
6.3 (4.0)
Reflected cross-site scripting (XSS) vulnerabilities i… misp
 misp
 2025-11-27T12:41:00.000Z 2025-11-27T12:48:51.085860Z
GCVE-1-2025-0027
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-27T07:17:00.000Z 2025-12-02T08:51:04.323899Z
GCVE-1-2025-0028
8.5 (4.0)
Information leakage vulnerability in the MISP Feed con… misp
 misp
 2025-11-27T07:23:00.000Z 2025-12-02T08:51:35.429494Z
GCVE-1-2025-0026
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:35:00.000Z 2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-26T16:27:00.000Z 2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024
9.4 (4.0)
cross-site scripting (XSS) vulnerability in the MISP s… misp
 misp
 2025-11-26T16:14:00.000Z 2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023
9.4 (4.0)
XSS in MISP server comparison tool misp
 misp
 2025-11-26T16:10:00.000Z 2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022
9.4 (4.0)
Clarified setting's impact on download_attachments_on_load misp
 misp
 2025-11-26T16:04:00.000Z 2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021
9.4 (4.0)
XSS in MISP ReST client in HTML view misp
 misp
 2025-11-26T15:55:00.000Z 2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020
9.4 (4.0)
cross-site scripting (XSS) in Galaxy element JSON view misp
 misp
 2025-11-26T15:49:00.000Z 2025-12-02T08:47:41.151429Z
GCVE-1-2025-0018
9.4 (4.0)
HTML injection issue was identified in Lookyloo’s web … lookyloo
 lookyloo
 2025-11-18T15:33:00.000Z 2025-11-18T20:39:45.579295Z
GCVE-1-2025-0016
6 (4.0)
Local file inclusion in [ImportFromUrl() URL hand… misp
 misp
 2025-11-04T09:20:00.000Z 2025-11-04T09:56:38.383646Z
GCVE-1-2025-0015
9 (4.0)
Potential XSS in decaying simulation tool misp
 misp
 2025-11-04T09:06:00.000Z 2025-11-04T09:06:59.216121Z
GCVE-1-2025-0014
9.4 (4.0)
XSS in event report via Mermaid diagram misp
 misp
 2025-11-04T08:58:00.024516Z 2025-11-04T08:58:00.024516Z
ID CVSS Description Vendor Product Published Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011
9.1 (3.1)
HexStrike AI MCP Server Command Injection 0x4m4
 HexStrike AI
 2025-11-30T21:27:56.057Z 2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100
6.5 (3.1)
Abilis CPX Fallback Shell Connection Relay Abilis
 CPX
 2025-11-04T00:23:23.924Z 2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010
7.3 (3.1)
Unitree Multiple Robotic Products Command Injection Unitree
 Go2
 2025-09-26T06:53:49.585Z 2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001
4.3 (3.1)
Unauthenticated leak of sensitive information affectin… Brother Industries, Ltd
 HL-L8260CDN
 2025-08-12T15:23:00.577Z 2025-08-15T05:53:23.017Z