Recent vulnerabilities
Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-27922 |
7 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:11.466Z | 2026-04-14T16:58:11.466Z |
| CVE-2026-27914 |
7.8 (3.1)
|
Microsoft Management Console Elevation of Privilege Vu… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:09.319Z | 2026-04-14T16:58:09.319Z |
| CVE-2026-27913 |
7.7 (3.1)
|
Windows BitLocker Security Feature Bypass Vulnerability |
Microsoft |
Windows Server 2012 |
2026-04-14T16:58:08.294Z | 2026-04-14T16:58:08.294Z |
| CVE-2026-27910 |
7.8 (3.1)
|
Windows Installer Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:05.782Z | 2026-04-14T16:58:05.782Z |
| CVE-2026-27909 |
7.8 (3.1)
|
Windows Search Service Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:05.228Z | 2026-04-14T16:58:05.228Z |
| CVE-2026-26184 |
7.8 (3.1)
|
Windows Projected File System Elevation of Privilege V… |
Microsoft |
Windows 10 Version 1809 |
2026-04-14T16:58:04.498Z | 2026-04-14T16:58:04.498Z |
| CVE-2026-26177 |
7 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:02.355Z | 2026-04-14T16:58:02.355Z |
| CVE-2026-26176 |
7.8 (3.1)
|
Windows Client Side Caching driver (csc.sys) Elevation… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:01.441Z | 2026-04-14T16:58:01.441Z |
| CVE-2026-26173 |
7 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:00.795Z | 2026-04-14T16:58:00.795Z |
| CVE-2026-26172 |
7.8 (3.1)
|
Windows Push Notifications Elevation of Privilege Vuln… |
Microsoft |
Windows 10 Version 21H2 |
2026-04-14T16:58:00.062Z | 2026-04-14T16:58:00.062Z |
| CVE-2026-26168 |
7.8 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:57.537Z | 2026-04-14T16:57:57.537Z |
| CVE-2026-26163 |
7.8 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:56.857Z | 2026-04-14T16:57:56.857Z |
| CVE-2026-26159 |
7.8 (3.1)
|
Remote Desktop Licensing Service Elevation of Privileg… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:56.121Z | 2026-04-14T16:57:56.121Z |
| CVE-2026-26153 |
7.8 (3.1)
|
Windows Encrypted File System (EFS) Elevation of Privi… |
Microsoft |
Windows 10 Version 1809 |
2026-04-14T16:57:54.919Z | 2026-04-14T16:57:54.919Z |
| CVE-2026-26143 |
7.8 (3.1)
|
Microsoft PowerShell Security Feature Bypass Vulnerability |
Microsoft |
PowerShell 7.4 |
2026-04-14T16:57:53.686Z | 2026-04-14T16:57:53.686Z |
| CVE-2026-23666 |
7.5 (3.1)
|
.NET Framework Denial of Service Vulnerability |
Microsoft |
Microsoft .NET Framework 3.5 |
2026-04-14T16:57:53.069Z | 2026-04-14T16:57:53.069Z |
| CVE-2026-23657 |
7.8 (3.1)
|
Microsoft Word Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2026-04-14T16:57:52.448Z | 2026-04-14T16:57:52.448Z |
| CVE-2026-20928 |
4.6 (3.1)
|
Windows Recovery Environment Security Feature Bypass V… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:51.238Z | 2026-04-14T16:57:51.238Z |
| CVE-2026-33825 |
7.8 (3.1)
|
Microsoft Defender Elevation of Privilege Vulnerability |
Microsoft |
Microsoft Defender Antimalware Platform |
2026-04-14T16:57:49.361Z | 2026-04-14T16:57:49.361Z |
| CVE-2026-33098 |
7.8 (3.1)
|
Windows Container Isolation FS Filter Driver Elevation… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:46.577Z | 2026-04-14T16:57:46.577Z |
| CVE-2026-33096 |
7.5 (3.1)
|
HTTP.sys Denial of Service Vulnerability |
Microsoft |
Windows 11 version 22H3 |
2026-04-14T16:57:45.953Z | 2026-04-14T16:57:45.953Z |
| CVE-2026-32224 |
7 (3.1)
|
Windows Server Update Service (WSUS) Elevation of Priv… |
Microsoft |
Windows 11 version 26H1 |
2026-04-14T16:57:43.822Z | 2026-04-14T16:57:43.822Z |
| CVE-2026-32221 |
8.4 (3.1)
|
Windows Graphics Component Remote Code Execution Vulne… |
Microsoft |
Windows 11 Version 24H2 |
2026-04-14T16:57:41.793Z | 2026-04-14T16:57:41.793Z |
| CVE-2026-32220 |
4.4 (3.1)
|
UEFI Secure Boot Security Feature Bypass Vulnerability |
Microsoft |
Windows 11 Version 24H2 |
2026-04-14T16:57:40.959Z | 2026-04-14T16:57:40.959Z |
| CVE-2026-32216 |
5.5 (3.1)
|
Windows Redirected Drive Buffering System Denial of Se… |
Microsoft |
Windows 11 version 26H1 |
2026-04-14T16:57:38.302Z | 2026-04-14T16:57:38.302Z |
| CVE-2026-32195 |
7 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 11 version 26H1 |
2026-04-14T16:57:36.253Z | 2026-04-14T16:57:36.253Z |
| CVE-2026-32178 |
7.5 (3.1)
|
.NET Spoofing Vulnerability |
Microsoft |
.NET 10.0 |
2026-04-14T16:57:31.355Z | 2026-04-14T16:57:31.355Z |
| CVE-2026-32167 |
6.7 (3.1)
|
SQL Server Elevation of Privilege Vulnerability |
Microsoft |
Microsoft SQL Server 2016 Service Pack 3 (GDR) |
2026-04-14T16:57:30.245Z | 2026-04-14T16:57:30.245Z |
| CVE-2026-32157 |
8.8 (3.1)
|
Remote Desktop Client Remote Code Execution Vulnerability |
Microsoft |
Remote Desktop client for Windows Desktop |
2026-04-14T16:57:26.472Z | 2026-04-14T16:57:26.472Z |
| CVE-2026-32089 |
7.8 (3.1)
|
Windows Speech Brokered Api Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:23.056Z | 2026-04-14T16:57:23.056Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-27923 |
7.8 (3.1)
|
Desktop Window Manager Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:12.545Z | 2026-04-14T19:19:46.876Z |
| CVE-2026-27922 |
7 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:11.466Z | 2026-04-14T16:58:11.466Z |
| CVE-2026-27921 |
7 (3.1)
|
Windows TDI Translation Driver (tdx.sys) Elevation of … |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:13.819Z | 2026-04-14T16:57:13.819Z |
| CVE-2026-27920 |
7.8 (3.1)
|
Windows UPnP Device Host Elevation of Privilege Vulner… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:10.717Z | 2026-04-14T19:27:00.519Z |
| CVE-2026-27919 |
7.8 (3.1)
|
Windows UPnP Device Host Elevation of Privilege Vulner… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:13.307Z | 2026-04-14T19:21:46.409Z |
| CVE-2026-27918 |
7.8 (3.1)
|
Windows Shell Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2026-04-14T16:57:12.691Z | 2026-04-14T18:05:13.810Z |
| CVE-2026-27917 |
7 (3.1)
|
Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sy… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:12.195Z | 2026-04-14T16:57:12.195Z |
| CVE-2026-27916 |
7.8 (3.1)
|
Windows UPnP Device Host Elevation of Privilege Vulner… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:09.994Z | 2026-04-14T19:27:57.141Z |
| CVE-2026-27915 |
7.8 (3.1)
|
Windows UPnP Device Host Elevation of Privilege Vulner… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:10.835Z | 2026-04-14T19:21:52.308Z |
| CVE-2026-27914 |
7.8 (3.1)
|
Microsoft Management Console Elevation of Privilege Vu… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:09.319Z | 2026-04-14T16:58:09.319Z |
| CVE-2026-27913 |
7.7 (3.1)
|
Windows BitLocker Security Feature Bypass Vulnerability |
Microsoft |
Windows Server 2012 |
2026-04-14T16:58:08.294Z | 2026-04-14T16:58:08.294Z |
| CVE-2026-27912 |
8 (3.1)
|
Windows Kerberos Elevation of Privilege Vulnerability |
Microsoft |
Windows Server 2012 |
2026-04-14T16:58:07.073Z | 2026-04-14T19:28:20.933Z |
| CVE-2026-27911 |
7.8 (3.1)
|
Windows User Interface Core Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:06.493Z | 2026-04-14T19:19:52.620Z |
| CVE-2026-27910 |
7.8 (3.1)
|
Windows Installer Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:05.782Z | 2026-04-14T16:58:05.782Z |
| CVE-2026-27909 |
7.8 (3.1)
|
Windows Search Service Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:05.228Z | 2026-04-14T16:58:05.228Z |
| CVE-2026-27908 |
7 (3.1)
|
Windows TDI Translation Driver (tdx.sys) Elevation of … |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:10.169Z | 2026-04-14T19:36:29.517Z |
| CVE-2026-27907 |
7.8 (3.1)
|
Windows Storage Spaces Controller Elevation of Privile… |
Microsoft |
Windows 11 version 22H3 |
2026-04-14T16:57:09.412Z | 2026-04-14T19:21:58.201Z |
| CVE-2026-27906 |
4.4 (3.1)
|
Windows Hello Security Feature Bypass Vulnerability |
Microsoft |
Windows 10 Version 21H2 |
2026-04-14T16:57:08.779Z | 2026-04-14T18:03:55.293Z |
| CVE-2026-27303 |
9.6 (3.1)
|
Adobe Connect | Deserialization of Untrusted Data (CWE-502) |
Adobe |
Adobe Connect |
2026-04-14T17:33:50.425Z | 2026-04-14T18:22:29.043Z |
| CVE-2026-27258 |
5.5 (3.1)
|
DNG SDK | Out-of-bounds Write (CWE-787) |
Adobe |
DNG SDK |
2026-04-14T17:03:26.563Z | 2026-04-14T19:27:37.471Z |
| CVE-2026-27246 |
9.3 (3.1)
|
Adobe Connect | Cross-site Scripting (DOM-based XSS) (… |
Adobe |
Adobe Connect |
2026-04-14T17:33:47.834Z | 2026-04-14T17:55:44.469Z |
| CVE-2026-27245 |
9.3 (3.1)
|
Adobe Connect | Cross-site Scripting (Reflected XSS) (… |
Adobe |
Adobe Connect |
2026-04-14T17:33:46.104Z | 2026-04-14T19:27:37.316Z |
| CVE-2026-27243 |
9.3 (3.1)
|
Adobe Connect | Cross-site Scripting (Reflected XSS) (… |
Adobe |
Adobe Connect |
2026-04-14T17:33:43.289Z | 2026-04-14T19:10:50.684Z |
| CVE-2026-26184 |
7.8 (3.1)
|
Windows Projected File System Elevation of Privilege V… |
Microsoft |
Windows 10 Version 1809 |
2026-04-14T16:58:04.498Z | 2026-04-14T16:58:04.498Z |
| CVE-2026-26183 |
7.8 (3.1)
|
Remote Access Management service/API (RPC server) Elev… |
Microsoft |
Windows Server 2012 |
2026-04-14T16:57:08.213Z | 2026-04-14T19:36:56.260Z |
| CVE-2026-26182 |
7 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:03.895Z | 2026-04-14T19:19:58.179Z |
| CVE-2026-26181 |
7.8 (3.1)
|
Microsoft Brokering File System Elevation of Privilege… |
Microsoft |
Windows 11 version 22H3 |
2026-04-14T16:57:07.558Z | 2026-04-14T18:02:48.510Z |
| CVE-2026-26180 |
7.8 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:57:06.777Z | 2026-04-14T16:57:06.777Z |
| CVE-2026-26179 |
7.8 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 11 version 22H3 |
2026-04-14T16:57:06.263Z | 2026-04-14T19:37:18.018Z |
| CVE-2026-26178 |
8.8 (3.1)
|
Windows Advanced Rasterization Platform Elevation of P… |
Microsoft |
Windows 10 Version 1607 |
2026-04-14T16:58:03.225Z | 2026-04-14T19:20:05.814Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-27923 | Use after free in Desktop Window Manager allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:17:02.670 | 2026-04-14T18:17:02.670 |
| fkie_cve-2026-27922 | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to el… | 2026-04-14T18:17:02.317 | 2026-04-14T18:17:02.317 |
| fkie_cve-2026-27921 | Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:17:01.980 | 2026-04-14T18:17:01.980 |
| fkie_cve-2026-27920 | Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an autho… | 2026-04-14T18:17:01.603 | 2026-04-14T18:17:01.603 |
| fkie_cve-2026-27919 | Untrusted pointer dereference in Windows Universal Plug and Play (UPnP) Device Host allows an autho… | 2026-04-14T18:17:01.037 | 2026-04-14T18:17:01.037 |
| fkie_cve-2026-27918 | Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:17:00.720 | 2026-04-14T18:17:00.720 |
| fkie_cve-2026-27917 | Use after free in Windows WFP NDIS Lightweight Filter Driver (wfplwfs.sys) allows an authorized att… | 2026-04-14T18:17:00.233 | 2026-04-14T18:17:00.233 |
| fkie_cve-2026-27916 | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker … | 2026-04-14T18:16:59.870 | 2026-04-14T18:16:59.870 |
| fkie_cve-2026-27915 | Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker … | 2026-04-14T18:16:59.520 | 2026-04-14T18:16:59.520 |
| fkie_cve-2026-27914 | Improper access control in Microsoft Management Console allows an authorized attacker to elevate pr… | 2026-04-14T18:16:59.180 | 2026-04-14T18:16:59.180 |
| fkie_cve-2026-27913 | Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security… | 2026-04-14T18:16:58.860 | 2026-04-14T18:16:58.860 |
| fkie_cve-2026-27912 | Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over… | 2026-04-14T18:16:58.600 | 2026-04-14T18:16:58.600 |
| fkie_cve-2026-27911 | Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:16:58.297 | 2026-04-14T18:16:58.297 |
| fkie_cve-2026-27910 | Improper handling of insufficient permissions or privileges in Windows Installer allows an authoriz… | 2026-04-14T18:16:57.953 | 2026-04-14T18:16:57.953 |
| fkie_cve-2026-27909 | Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privi… | 2026-04-14T18:16:57.613 | 2026-04-14T18:16:57.613 |
| fkie_cve-2026-27908 | Use after free in Windows TDI Translation Driver (tdx.sys) allows an authorized attacker to elevate… | 2026-04-14T18:16:57.270 | 2026-04-14T18:16:57.270 |
| fkie_cve-2026-27907 | Integer underflow (wrap or wraparound) in Windows Storage Spaces Controller allows an authorized at… | 2026-04-14T18:16:57.037 | 2026-04-14T18:16:57.037 |
| fkie_cve-2026-27906 | Improper input validation in Windows Hello allows an authorized attacker to bypass a security featu… | 2026-04-14T18:16:56.797 | 2026-04-14T18:16:56.797 |
| fkie_cve-2026-27303 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Dat… | 2026-04-14T18:16:56.633 | 2026-04-14T18:16:56.633 |
| fkie_cve-2026-27258 | DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that c… | 2026-04-14T18:16:56.247 | 2026-04-14T18:16:56.247 |
| fkie_cve-2026-27246 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a DOM-based Cross-Site Scripting (… | 2026-04-14T18:16:56.050 | 2026-04-14T18:16:56.050 |
| fkie_cve-2026-27245 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (… | 2026-04-14T18:16:55.890 | 2026-04-14T18:16:55.890 |
| fkie_cve-2026-27243 | Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (… | 2026-04-14T18:16:55.730 | 2026-04-14T18:16:55.730 |
| fkie_cve-2026-26184 | Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileg… | 2026-04-14T18:16:55.440 | 2026-04-14T18:16:55.440 |
| fkie_cve-2026-26183 | Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:16:55.187 | 2026-04-14T18:16:55.187 |
| fkie_cve-2026-26182 | Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to el… | 2026-04-14T18:16:54.850 | 2026-04-14T18:16:54.850 |
| fkie_cve-2026-26181 | Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileg… | 2026-04-14T18:16:54.590 | 2026-04-14T18:16:54.590 |
| fkie_cve-2026-26180 | Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:16:54.240 | 2026-04-14T18:16:54.240 |
| fkie_cve-2026-26179 | Double free in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:16:54.013 | 2026-04-14T18:16:54.013 |
| fkie_cve-2026-26178 | Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized at… | 2026-04-14T18:16:53.690 | 2026-04-14T18:16:53.690 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-x23f-9g5c-6qmp |
7.0 (3.1)
|
Use after free in Windows TDI Translation Driver (tdx.sys) allows an authorized attacker to elevate… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-whvh-93vh-g249 |
8.8 (3.1)
|
Integer size truncation in Windows Advanced Rasterization Platform (WARP) allows an unauthorized at… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-w9q8-v7fh-ff6x |
7.8 (3.1)
|
Improper access control in Windows RPC API allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-rhgr-5jwv-9hcr |
7.8 (3.1)
|
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker … | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-qqjc-23pp-wrrm |
4.4 (3.1)
|
Improper input validation in Windows Hello allows an authorized attacker to bypass a security featu… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-px9p-mm95-78ww |
9.3 (3.1)
|
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-p98g-6f6c-423f |
7.8 (3.1)
|
Integer underflow (wrap or wraparound) in Windows Storage Spaces Controller allows an authorized at… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-p85r-hffw-65q4 |
9.6 (3.1)
|
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a Deserialization of Untrusted Dat… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-jmgc-3mxg-m5mr |
7.8 (3.1)
|
Use after free in Microsoft Windows Search Component allows an authorized attacker to elevate privi… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-hxjp-pw3h-w6qr |
4.6 (3.1)
|
Use of uninitialized resource in Windows Boot Manager allows an unauthorized attacker to bypass a s… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-hm2p-4g74-cx7c |
8.0 (3.1)
|
Improper authorization in Windows Kerberos allows an authorized attacker to elevate privileges over… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-gc27-55qr-7cqv |
7.0 (3.1)
|
Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-fm65-7j3c-jcv3 |
9.3 (3.1)
|
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a reflected Cross-Site Scripting (… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-cxcv-8mqv-f8wf |
7.0 (3.1)
|
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to el… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-c95w-cq44-cgc5 |
7.8 (3.1)
|
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-9g78-wccg-v453 |
7.7 (3.1)
|
Improper input validation in Windows BitLocker allows an unauthorized attacker to bypass a security… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-9cr5-9f63-xhxx |
7.8 (3.1)
|
Heap-based buffer overflow in Windows Client Side Caching driver (csc.sys) allows an authorized att… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-8gh5-q362-whfc |
7.8 (3.1)
|
Double free in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-85g7-96qr-w5x4 |
5.5 (3.1)
|
DNG SDK versions 1.7.1 2502 and earlier are affected by an out-of-bounds write vulnerability that c… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-65v5-rhmh-vvjr |
7.8 (3.1)
|
Use after free in Windows Universal Plug and Play (UPnP) Device Host allows an authorized attacker … | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-55g2-jw6p-6xg8 |
7.8 (3.1)
|
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileg… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-4gmq-qmqj-mjvf |
7.8 (3.1)
|
Buffer over-read in Windows Projected File System allows an authorized attacker to elevate privileg… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-4c2f-hvf5-4jwv |
9.3 (3.1)
|
Adobe Connect versions 2025.3, 12.10 and earlier are affected by a DOM-based Cross-Site Scripting (… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-3wgf-ccpx-rv72 |
7.8 (3.1)
|
Improper handling of insufficient permissions or privileges in Windows Installer allows an authoriz… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-35fw-6mhj-pxpw |
7.0 (3.1)
|
Use after free in Windows Ancillary Function Driver for WinSock allows an authorized attacker to el… | 2026-04-14T18:30:38Z | 2026-04-14T18:30:38Z |
| ghsa-xm9h-x34f-j9hj |
7.5 (3.1)
|
Improper input validation in Windows Server Update Service allows an unauthorized attacker to perfo… | 2026-04-14T18:30:37Z | 2026-04-14T18:30:37Z |
| ghsa-xgxp-5498-vvcw |
7.8 (3.1)
|
Improper input validation in Microsoft PowerShell allows an authorized attacker to elevate privileg… | 2026-04-14T18:30:37Z | 2026-04-14T18:30:37Z |
| ghsa-xgvv-w3j6-fcfq |
7.0 (3.1)
|
Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:30:37Z | 2026-04-14T18:30:37Z |
| ghsa-xgrj-5fxr-f35m |
7.8 (3.1)
|
Heap-based buffer overflow in Windows Hyper-V allows an unauthorized attacker to execute code locally. | 2026-04-14T18:30:37Z | 2026-04-14T18:30:37Z |
| ghsa-x4rw-mm5h-f6gr |
8.8 (3.1)
|
Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-04-14T18:30:37Z | 2026-04-14T18:30:37Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2022-43171 |
7.5 (3.1)
|
An XML Entity Expansion (XEE) issue was discovered in Tryton Application Platform (Server… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.453983+00:00 |
| pysec-2022-43170 |
6.5 (3.1)
|
An XXE issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.248212+00:00 |
| pysec-2016-41 |
4.4 (3.1)
|
file_open in Tryton before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before… | tryton | 2016-09-07T19:28:00+00:00 | 2024-11-21T14:23:02.083165+00:00 |
| pysec-2016-40 |
5.3 (3.1)
|
Tryton 3.x before 3.2.17, 3.4.x before 3.4.14, 3.6.x before 3.6.12, 3.8.x before 3.8.8, a… | tryton | 2016-09-07T19:28:00+00:00 | 2024-11-21T14:23:02.008255+00:00 |
| pysec-2023-301 |
7.8 (3.1)
|
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. | transformers | 2023-12-20T17:15:00+00:00 | 2024-11-21T14:23:01.933055+00:00 |
| pysec-2023-300 |
8.8 (3.1)
|
Deserialization of Untrusted Data in GitHub repository huggingface/transformers prior to 4.36. | transformers | 2023-12-19T13:15:00+00:00 | 2024-11-21T14:23:01.871022+00:00 |
| pysec-2023-299 |
4.7 (3.1)
|
Insecure Temporary File in GitHub repository huggingface/transformers prior to 4.30.0. | transformers | 2023-05-18T17:15:00+00:00 | 2024-11-21T14:23:01.805729+00:00 |
| pysec-2022-43169 |
9.8 (3.1)
|
The Togglee package in PyPI version v0.0.8 was discovered to contain a code execution bac… | togglee | 2022-06-24T21:15:00Z | 2024-11-21T14:23:01.740031Z |
| pysec-2022-43167 |
8.8 (3.1)
|
Selenium Server (Grid) before 4 allows CSRF because it permits non-JSON content types suc… | selenium | 2022-04-19T03:15:00+00:00 | 2024-11-21T14:23:01.289420+00:00 |
| pysec-2022-43165 |
9.8 (3.1)
|
The Scoptrial package in PyPI version v0.0.5 was discovered to contain a code execution b… | scoptrial | 2022-06-24T21:15:00Z | 2024-11-21T14:23:01.181819Z |
| pysec-2016-39 |
7.5 (3.1)
|
An exploitable out-of-bounds array access vulnerability exists in the xrow_header_decode … | tarantool | 2016-12-23T22:59:00Z | 2024-11-21T14:23:01.531112Z |
| pysec-2023-297 |
7.5 (3.1)
|
A path traversal vulnerability has been detected in Repox, which allows an attacker to re… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.892241Z |
| pysec-2023-296 |
7.5 (3.1)
|
An XEE vulnerability has been found in Repox, which allows a remote attacker to interfere… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.841929Z |
| pysec-2023-295 |
5.4 (3.1)
|
An XSS vulnerability stored in Repox has been identified, which allows a local attacker t… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.792103Z |
| pysec-2023-294 |
6.1 (3.1)
|
An XSS vulnerability has been detected in Repox, which allows an attacker to compromise i… | repox | 2023-12-13T10:15:00Z | 2024-11-21T14:23:00.74018Z |
| pysec-2023-293 |
7.5 (3.1)
|
An authentication bypass vulnerability has been found in Repox, which allows a remote use… | repox | 2023-12-13T09:15:00Z | 2024-11-21T14:23:00.689595Z |
| pysec-2022-43164 |
9.8 (3.1)
|
The Rondolu-YT-Concate package in PyPI v0.1.0 was discovered to contain a code execution … | rondolu-yt-concate | 2022-06-24T21:15:00Z | 2024-11-21T14:23:00.996865Z |
| pysec-2022-43161 |
9.8 (3.1)
|
Origin Validation Error in GitHub repository ikus060/rdiffweb prior to 2.5.0a5. | rdiffweb | 2022-10-13T20:15:00+00:00 | 2024-11-21T14:23:00.575892+00:00 |
| pysec-2022-43160 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-13T20:15:00+00:00 | 2024-11-21T14:23:00.515460+00:00 |
| pysec-2022-43159 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-14T12:15:00+00:00 | 2024-11-21T14:23:00.456366+00:00 |
| pysec-2022-43158 |
6.1 (3.1)
|
Open Redirect in GitHub repository ikus060/rdiffweb prior to 2.5.0a4. | rdiffweb | 2022-10-10T12:15:00+00:00 | 2024-11-21T14:23:00.394851+00:00 |
| pysec-2022-43157 |
5.3 (3.1)
|
Weak Password Requirements in GitHub repository ikus060/rdiffweb prior to 2.5.0a4. | rdiffweb | 2022-10-06T18:16:00+00:00 | 2024-11-21T14:23:00.333240+00:00 |
| pysec-2022-43156 |
9.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2022-10-06T18:16:00+00:00 | 2024-11-21T14:23:00.273706+00:00 |
| pysec-2022-43155 |
5.5 (3.1)
|
wasm3 commit 7890a2097569fde845881e0b352d813573e371f9 was discovered to contain a segment… | pywasm3 | 2022-12-13T23:15:00Z | 2024-11-21T14:23:00.213494Z |
| pysec-2022-43153 |
5.5 (3.1)
|
Wasm3 0.5.0 has a heap-based buffer overflow in NewCodePage in m3_code.c (called indirect… | pywasm3 | 2022-04-16T16:15:00Z | 2024-11-21T14:23:00.113164Z |
| pysec-2023-292 |
7.8 (3.1)
|
PyInstaller bundles a Python application and all its dependencies into a single package. … | pyinstaller | 2023-12-09T01:15:00+00:00 | 2024-11-21T14:22:59.796437+00:00 |
| pysec-2023-291 |
7.8 (3.1)
|
PyDrive2 is a wrapper library of google-api-python-client that simplifies many common Goo… | pydrive2 | 2023-12-05T21:15:00+00:00 | 2024-11-21T14:22:59.681617+00:00 |
| pysec-2023-290 |
8.8 (3.1)
|
An issue was discovered with assimp 5.1.4, a use after free occurred in function ColladaP… | pyassimp | 2023-01-20T19:15:00Z | 2024-11-21T14:22:59.461917Z |
| pysec-2022-43149 |
6.5 (3.1)
|
Open Asset Import Library (assimp) commit 3c253ca was discovered to contain a segmentatio… | pyassimp | 2022-09-06T23:15:00Z | 2024-11-21T14:22:59.412324Z |
| pysec-2022-43148 |
5.5 (3.1)
|
Open Asset Import Library (aka assimp) 5.1.0 and 5.1.1 has a heap-based buffer overflow i… | pyassimp | 2022-01-01T00:15:00Z | 2024-11-21T14:22:59.35793Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-4232 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587045Z |
| gsd-2024-4231 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.534700Z |
| gsd-2024-4230 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.587245Z |
| gsd-2024-4229 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.599914Z |
| gsd-2024-4228 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.563352Z |
| gsd-2024-4227 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:16.624403Z |
| gsd-2024-32946 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-27T05:02:15.595218Z |
| gsd-2018-25102 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:03:04.675370Z |
| gsd-2024-33676 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.297185Z |
| gsd-2024-33675 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.273998Z |
| gsd-2024-33674 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.150702Z |
| gsd-2024-33673 | An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. Improper access… | 2024-04-26T05:02:19.162010Z |
| gsd-2024-33672 | An issue was discovered in Veritas NetBackup before 10.4. The Multi-Threaded Agent used i… | 2024-04-26T05:02:19.171109Z |
| gsd-2024-33671 | An issue was discovered in Veritas Backup Exec before 22.2 HotFix 917391. The Backup Exec… | 2024-04-26T05:02:19.236619Z |
| gsd-2024-33670 | Passbolt API before 4.6.2 allows HTML injection in a URL parameter, resulting in custom c… | 2024-04-26T05:02:19.244921Z |
| gsd-2024-33669 | An issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple … | 2024-04-26T05:02:19.275535Z |
| gsd-2024-33668 | An issue was discovered in Zammad before 6.3.0. The Zammad Upload Cache uses insecure, pa… | 2024-04-26T05:02:19.281107Z |
| gsd-2024-33667 | An issue was discovered in Zammad before 6.3.0. An authenticated agent could perform a re… | 2024-04-26T05:02:19.258447Z |
| gsd-2024-33666 | An issue was discovered in Zammad before 6.3.0. Users with customer access to a ticket co… | 2024-04-26T05:02:19.293701Z |
| gsd-2024-33665 | ** DISPUTED ** angular-translate through 2.19.1 allows XSS via a crafted key that is used… | 2024-04-26T05:02:19.265097Z |
| gsd-2024-33664 | python-jose through 3.3.0 allows attackers to cause a denial of service (resource consump… | 2024-04-26T05:02:19.131389Z |
| gsd-2024-33663 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.175935Z |
| gsd-2024-33662 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.149532Z |
| gsd-2024-33661 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.254483Z |
| gsd-2024-33660 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.226651Z |
| gsd-2024-33659 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.194728Z |
| gsd-2024-33658 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.225239Z |
| gsd-2024-33657 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.176271Z |
| gsd-2024-33656 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.263057Z |
| gsd-2024-33655 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-26T05:02:19.215383Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-2493 | Malicious code in cloudera-poc (npm) | 2026-04-05T19:40:31Z | 2026-04-07T14:41:21Z |
| mal-2026-2444 | Malicious code in exszpe3szs (npm) | 2026-04-02T15:12:47Z | 2026-04-07T14:41:21Z |
| mal-2026-2443 | Malicious code in exprrrress (npm) | 2026-04-02T18:21:44Z | 2026-04-07T14:41:21Z |
| mal-2026-2442 | Malicious code in expreeeess (npm) | 2026-04-02T18:11:34Z | 2026-04-07T14:41:21Z |
| mal-2026-2441 | Malicious code in expirs (npm) | 2026-04-02T15:13:53Z | 2026-04-07T14:41:21Z |
| mal-2026-2440 | Malicious code in experedzss (npm) | 2026-04-02T15:11:56Z | 2026-04-07T14:41:21Z |
| mal-2026-2439 | Malicious code in expeewas (npm) | 2026-04-02T15:22:21Z | 2026-04-07T14:41:21Z |
| mal-2026-2438 | Malicious code in expeedsxs (npm) | 2026-04-02T15:12:22Z | 2026-04-07T14:41:21Z |
| mal-2026-2437 | Malicious code in exaprse (npm) | 2026-04-02T15:12:58Z | 2026-04-07T14:41:21Z |
| mal-2026-2436 | Malicious code in eixp4ressz (npm) | 2026-04-02T15:12:04Z | 2026-04-07T14:41:21Z |
| mal-2026-2419 | Malicious code in express-session-js (npm) | 2026-04-02T09:56:44Z | 2026-04-07T14:41:21Z |
| mal-2026-2365 | Malicious code in env-nodejs (npm) | 2026-03-24T15:44:15Z | 2026-04-07T14:41:21Z |
| mal-2026-2364 | Malicious code in env-node-cli (npm) | 2026-03-24T15:44:15Z | 2026-04-07T14:41:21Z |
| mal-2026-2363 | Malicious code in env-extend (npm) | 2026-03-24T15:44:14Z | 2026-04-07T14:41:21Z |
| mal-2026-2362 | Malicious code in env-express-cli (npm) | 2026-03-24T15:44:13Z | 2026-04-07T14:41:21Z |
| mal-2026-2361 | Malicious code in env-express (npm) | 2026-03-24T15:44:12Z | 2026-04-07T14:41:21Z |
| mal-2026-2360 | Malicious code in env-expanded (npm) | 2026-03-24T15:44:12Z | 2026-04-07T14:41:21Z |
| mal-2026-2359 | Malicious code in env-embed (npm) | 2026-03-24T15:44:11Z | 2026-04-07T14:41:21Z |
| mal-2026-2358 | Malicious code in env-cli-express (npm) | 2026-03-24T15:44:10Z | 2026-04-07T14:41:21Z |
| mal-2026-2357 | Malicious code in ectoplast-spirit (npm) | 2026-03-24T15:43:46Z | 2026-04-07T14:41:21Z |
| mal-2026-2356 | Malicious code in ecto-spirit-core (npm) | 2026-03-24T15:43:45Z | 2026-04-07T14:41:21Z |
| mal-2026-2355 | Malicious code in ecto-spirit (npm) | 2026-03-24T15:43:45Z | 2026-04-07T14:41:21Z |
| mal-2026-2354 | Malicious code in ecto-registry (npm) | 2026-03-24T15:43:44Z | 2026-04-07T14:41:21Z |
| mal-2026-2353 | Malicious code in ecto-engine (npm) | 2026-03-24T15:43:43Z | 2026-04-07T14:41:21Z |
| mal-2026-2352 | Malicious code in ecto-corsair-lwirz (npm) | 2026-03-24T15:43:43Z | 2026-04-07T14:41:21Z |
| mal-2026-2351 | Malicious code in dotenv-xtend (npm) | 2026-03-24T15:43:16Z | 2026-04-07T14:41:21Z |
| mal-2026-2350 | Malicious code in dotenv-express (npm) | 2026-03-24T15:43:15Z | 2026-04-07T14:41:21Z |
| mal-2026-2349 | Malicious code in deriv_ppetest (npm) | 2026-03-24T15:42:44Z | 2026-04-07T14:41:21Z |
| mal-2026-2348 | Malicious code in cursed-module (npm) | 2026-03-24T15:41:56Z | 2026-04-07T14:41:21Z |
| mal-2026-2347 | Malicious code in ctf-package-onetimeuseforctf (npm) | 2026-03-24T15:41:46Z | 2026-04-07T14:41:21Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2026-0441 | OpenClaw: Mehrere Schwachstellen | 2026-02-17T23:00:00.000+00:00 | 2026-03-05T23:00:00.000+00:00 |
| wid-sec-w-2026-0424 | OpenClaw: Mehrere Schwachstellen | 2026-02-15T23:00:00.000+00:00 | 2026-03-05T23:00:00.000+00:00 |
| wid-sec-w-2026-0535 | Juniper JUNOS Evolved: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2026-02-25T23:00:00.000+00:00 | 2026-03-03T23:00:00.000+00:00 |
| wid-sec-w-2026-0546 | Red Hat Enterprise Linux (Valkey): Mehrere Schwachstellen | 2026-02-26T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0526 | IBM App Connect Enterprise: Mehrere Schwachstellen | 2026-02-25T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0410 | HAProxy Enterprise, Community und ALOHA (QUIC): Mehrere Schwachstellen ermöglichen Denial of Service | 2026-02-12T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0379 | Intel Prozessoren: Mehrere Schwachstellen | 2026-02-10T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0305 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2026-02-04T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0234 | OpenSSL: Mehrere Schwachstellen | 2026-01-27T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0080 | Microsoft Azure: Mehrere Schwachstellen | 2026-01-13T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0068 | libpng (API-Funktionen): Mehrere Schwachstellen ermöglichen DoS und Offenlegung von Informationen | 2026-01-12T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0062 | Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Datenmanipulation | 2026-01-11T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2887 | PHP: Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2488 | Red Hat Enterprise Linux (SSSD, libsoup): Mehrere Schwachstellen | 2025-11-04T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-2311 | Red Hat Enterprise Linux (libsoup3): Schwachstelle ermöglicht Offenlegung von Informationen | 2025-10-15T22:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-1965 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2025-09-03T22:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-1417 | Linux Kernel: Mehrere Schwachstellen | 2025-06-29T22:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-1140 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-25T22:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0935 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0649 | Linux Kernel: Mehrere Schwachstellen | 2025-03-27T23:00:00.000+00:00 | 2026-03-02T23:00:00.000+00:00 |
| wid-sec-w-2026-0278 | OpenClaw: Schwachstelle ermöglicht Codeausführung | 2026-02-01T23:00:00.000+00:00 | 2026-03-01T23:00:00.000+00:00 |
| wid-sec-w-2025-2712 | Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-01T23:00:00.000+00:00 | 2026-02-26T23:00:00.000+00:00 |
| wid-sec-w-2025-2685 | Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-11-26T23:00:00.000+00:00 | 2026-02-26T23:00:00.000+00:00 |
| wid-sec-w-2026-0331 | BeyondTrust Privileged Remote Access und Remote Support: Schwachstelle ermöglicht Codeausführung | 2026-02-05T23:00:00.000+00:00 | 2026-02-25T23:00:00.000+00:00 |
| wid-sec-w-2026-0496 | Fortinet FortiOS: Mehrere Schwachstellen | 2018-05-22T22:00:00.000+00:00 | 2026-02-24T23:00:00.000+00:00 |
| wid-sec-w-2026-0478 | GIMP: Mehrere Schwachstellen ermöglichen Denial of Service | 2017-12-19T23:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| wid-sec-w-2026-0448 | Red Hat Enterprise Linux (MUNGE): Schwachstelle ermöglicht Privilegieneskalation | 2026-02-17T23:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2931 | GIMP: Schwachstelle ermöglicht Codeausführung | 2025-12-29T23:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2871 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-12-17T23:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2608 | Golang Go: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-296-03 | Veeder-Root TLS4B Automatic Tank Gauge System | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-02 | ASKI Energy ALS-Mini-S8 and ALS-Mini-S4 | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-296-01 | AutomationDirect Productivity Suite | 2025-10-23T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-294-02 | Rockwell Automation Compact GuardLogix 5370 | 2025-10-21T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-294-01 | Rockwell Automation 1783-NATR | 2025-10-21T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-289-02 | Rockwell Automation FactoryTalk Linx | 2025-10-16T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| icsa-25-280-01 | Delta Electronics DIAScreen | 2025-10-07T06:00:00.000000Z | 2025-10-23T06:00:00.000000Z |
| va-25-296-01 | Frontier Airlines website publicly available email address validation | 2025-10-23T00:00:00Z | 2025-10-23T00:00:00Z |
| icsma-25-294-01 | Oxford Nanopore Technologies MinKNOW | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-25-294-06 | Raisecomm RAX701-GC Series | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-25-294-05 | CloudEdge Online Cameras and App | 2025-10-21T06:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| icsa-24-354-07 | Schneider Electric Modicon Controllers (Update A) | 2024-12-19T07:00:00.000000Z | 2025-10-21T06:00:00.000000Z |
| va-25-289-01 | OPEXUS FOIAXpress unauthenticated administrator password reset | 2025-10-16T16:43:55Z | 2025-10-16T16:43:55Z |
| icsa-25-289-04 | Rockwell Automation ArmorStart AOP | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-289-03 | Rockwell Automation FactoryTalk ViewPoint | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-289-01 | Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7 | 2025-10-16T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-24-121-01 | Delta Electronics CNCSoft-G2 DOPSoft (Update A) | 2024-04-30T06:00:00.000000Z | 2025-10-16T06:00:00.000000Z |
| icsa-25-301-01 | Schneider Electric EcoStruxure | 2025-10-14T07:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-259-01 | Schneider Electric Altivar products ATVdPAC module ILC992 InterLink Converter (Update A) | 2025-09-09T04:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-140-08 | Schneider Electric Modicon Controllers (Update B) | 2025-05-13T04:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-24-352-04 | Schneider Electric Modicon | 2024-12-10T05:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-287-01 | Rockwell Automation 1715 EtherNet/IP Comms Module | 2025-10-14T06:00:00.000000Z | 2025-10-14T06:00:00.000000Z |
| icsa-25-294-04 | Siemens RUGGEDCOM ROS Devices | 2025-07-08T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-294-03 | Siemens SIMATIC S7-1200 CPU V1/V2 Devices | 2011-06-10T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-09 | Siemens TeleControl Server Basic | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-08 | Siemens SINEC NMS | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-07 | Siemens SIMATIC ET 200SP Communication Processors | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-289-05 | Siemens Solid Edge | 2025-10-14T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-254-07 | Siemens User Management Component (UMC) | 2025-09-09T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-226-18 | Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER | 2025-08-12T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-asaftd-acl-bypass-vvnlnkqf | Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-24T21:19:17+00:00 |
| cisco-sa-asaftd-acl-bypass-VvnLNKqf | Cisco Adaptive Security Appliance and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-24T21:19:17+00:00 |
| cisco-sa-fmc-xss-infodisc-rl4mjfer | Cisco Secure Firewall Management Center Software Cross-Site Scripting and Information Disclosure Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-24T11:52:38+00:00 |
| cisco-sa-ata19x-multi-rdteqrsy | Cisco ATA 190 Series Analog Telephone Adapter Firmware Vulnerabilities | 2024-10-16T16:00:00+00:00 | 2024-10-24T11:47:37+00:00 |
| cisco-sa-ata19x-multi-RDTEqRsy | Cisco ATA 190 Series Analog Telephone Adapter Firmware Vulnerabilities | 2024-10-16T16:00:00+00:00 | 2024-10-24T11:47:37+00:00 |
| cisco-sa-snort-rf-bypass-OY8f3pnM | Multiple Cisco Products Snort Rate Filter Bypass Vulnerability | 2024-10-23T16:00:00+00:00 | 2025-01-13T16:44:31+00:00 |
| cisco-sa-snort-bypass-ptry37fx | Cisco Firepower Threat Defense Software TCP Snort 3 Detection Engine Bypass Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-snort-bypass-PTry37fX | Cisco Firepower Threat Defense Software TCP Snort 3 Detection Engine Bypass Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-sa-ftd-snort-fw-bcjtzpmu | Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TCP/IP Traffic with Snort 2 and Snort 3 Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-sa-ftd-snort-fw-BCJTZPMu | Cisco Firepower Threat Defense Software and Cisco FirePOWER Services TCP/IP Traffic with Snort 2 and Snort 3 Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd2100-snort-dos-m9humt75 | Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Appliances TCP UDP Snort 2 and Snort 3 Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd2100-snort-dos-M9HuMt75 | Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Appliances TCP UDP Snort 2 and Snort 3 Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-vdb-snort-djj4cnbr | Cisco Firepower Threat Defense Software Vulnerability Database with Snort Detection Engine Security Policy Bypass and Denial of Service Issue | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-vdb-snort-djj4cnbR | Cisco Firepower Threat Defense Software Vulnerability Database with Snort Detection Engine Security Policy Bypass and Denial of Service Issue | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-tls-dos-qxye5ufy | Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-tls-dos-QXYE5Ufy | Cisco Firepower Threat Defense Software for Firepower 2100 Series TLS Denial of Service Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-statcred-dfc8txt5 | Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-statcred-dFC8tXT5 | Cisco Firepower Threat Defense Software for Firepower 1000, 2100, 3100, and 4200 Series Static Credential Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-geoip-bypass-mb4zrdu | Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-ftd-geoip-bypass-MB4zRDu | Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-xss-infodisc-RL4mJFer | Cisco Secure Firewall Management Center Software Cross-Site Scripting and Information Disclosure Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-24T11:52:38+00:00 |
| cisco-sa-fmc-xss-dhjxqyzs | Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-xss-dhJxQYZs | Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-sql-inject-2EnmTC8v | Cisco Secure Firewall Management Center Software SQL Injection Vulnerability | 2024-10-23T16:00:00+00:00 | 2026-03-04T16:11:01+00:00 |
| cisco-sa-fmc-sql-inj-loyafcfq | Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-sql-inj-LOYAFcfq | Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-priv-esc-cmq4s6m7 | Cisco Secure Firewall Management Center Privilege Escalation Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-priv-esc-CMQ4S6m7 | Cisco Secure Firewall Management Center Privilege Escalation Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-html-inj-nfjeyhxz | Cisco Secure Firewall Management Center Software HTML Injection Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| cisco-sa-fmc-html-inj-nfJeYHxz | Cisco Secure Firewall Management Center Software HTML Injection Vulnerability | 2024-10-23T16:00:00+00:00 | 2024-10-23T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2026-31408 | Bluetooth: SCO: Fix use-after-free in sco_recv_frame() due to missing sock_hold | 2026-04-02T00:00:00.000Z | 2026-04-07T01:01:28.000Z |
| msrc_cve-2026-31407 | netfilter: conntrack: add missing netlink policy validations | 2026-04-02T00:00:00.000Z | 2026-04-07T01:01:22.000Z |
| msrc_cve-2026-31410 | ksmbd: use volume UUID in FS_OBJECT_ID_INFORMATION | 2026-04-02T00:00:00.000Z | 2026-04-07T01:01:16.000Z |
| msrc_cve-2026-0968 | Libssh: libssh: denial of service due to malformed sftp message | 2026-03-02T00:00:00.000Z | 2026-04-06T14:38:18.000Z |
| msrc_cve-2026-35549 | CVE-2026-35549 | 2026-04-02T00:00:00.000Z | 2026-04-04T01:02:53.000Z |
| msrc_cve-2026-34601 | xmldom: XML injection via unsafe CDATA serialization allows attacker-controlled markup insertion | 2026-04-02T00:00:00.000Z | 2026-04-04T01:02:47.000Z |
| msrc_cve-2026-2100 | P11-kit: p11-kit: null dereference via c_derivekey with specific null parameters | 2026-03-02T00:00:00.000Z | 2026-04-03T01:39:20.000Z |
| msrc_cve-2026-23401 | KVM: x86/mmu: Drop/zap existing present SPTE even when creating an MMIO SPTE | 2026-04-02T00:00:00.000Z | 2026-04-03T01:39:03.000Z |
| msrc_cve-2026-34073 | cryptography has incomplete DNS name constraint enforcement on peer names | 2026-03-02T00:00:00.000Z | 2026-04-03T01:01:25.000Z |
| msrc_cve-2026-32287 | Infinite loop in github.com/antchfx/xpath | 2026-03-02T00:00:00.000Z | 2026-04-02T14:39:36.000Z |
| msrc_cve-2026-4732 | Out-of-bounds Read Overflow in tildearrow/furnace | 2026-03-02T00:00:00.000Z | 2026-04-02T14:38:55.000Z |
| msrc_cve-2026-5119 | Libsoup: libsoup: information disclosure via cleartext transmission of cookies during https tunnel establishment | 2026-03-02T00:00:00.000Z | 2026-04-02T14:38:47.000Z |
| msrc_cve-2026-33107 | Azure Databricks Elevation of Privilege Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-33105 | Microsoft Azure Kubernetes Service Elevation of Privilege Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-32213 | Azure AI Foundry Elevation of Privilege Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-32211 | Azure MCP Server Information Disclosure Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-32173 | Azure SRE Agent Information Disclosure Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-26135 | Azure Custom Locations Resource Provider (RP) Elevation of Privilege Vulnerability | 2026-04-02T07:00:00.000Z | 2026-04-02T07:00:00.000Z |
| msrc_cve-2026-34043 | Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects | 2026-03-02T00:00:00.000Z | 2026-04-02T01:40:32.000Z |
| msrc_cve-2026-33542 | Incus does not verify combined fingerprint when downloading images from simplestreams servers | 2026-03-02T00:00:00.000Z | 2026-04-02T01:40:07.000Z |
| msrc_cve-2026-33750 | brace-expansion: Zero-step sequence causes process hang and memory exhaustion | 2026-03-02T00:00:00.000Z | 2026-04-02T01:39:52.000Z |
| msrc_cve-2026-29111 | systemd: Local unprivileged user can trigger an assert | 2026-03-02T00:00:00.000Z | 2026-04-02T01:38:20.000Z |
| msrc_cve-2026-2739 | This affects versions of the package bn.js before 5.2.3. Calling maskn(0) on any BN instance corrupts the internal state, causing toString(), divmod(), and other methods to enter an infinite loop, hanging the process indefinitely. | 2026-02-02T00:00:00.000Z | 2026-04-02T01:37:20.000Z |
| msrc_cve-2026-33636 | LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64 | 2026-03-02T00:00:00.000Z | 2026-04-02T01:06:35.000Z |
| msrc_cve-2026-33416 | LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE` | 2026-03-02T00:00:00.000Z | 2026-04-02T01:05:59.000Z |
| msrc_cve-2026-5121 | Libarchive: libarchive: arbitrary code execution via integer overflow in iso9660 image processing | 2026-03-02T00:00:00.000Z | 2026-04-02T01:04:42.000Z |
| msrc_cve-2026-4739 | Integer overflow vulnerabilities in InsightSoftwareConsortium/ITK | 2026-03-02T00:00:00.000Z | 2026-04-02T01:04:10.000Z |
| msrc_cve-2026-4176 | Perl versions from 5.9.4 before 5.40.4-RC1, from 5.41.0 before 5.42.2-RC1, from 5.43.0 before 5.43.9 contain a vulnerable version of Compress::Raw::Zlib | 2026-03-02T00:00:00.000Z | 2026-04-02T01:04:04.000Z |
| msrc_cve-2026-4046 | iconv crash due to assertion failure with untrusted input | 2026-03-02T00:00:00.000Z | 2026-04-02T01:01:22.000Z |
| msrc_cve-2026-33896 | Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation) | 2026-03-02T00:00:00.000Z | 2026-04-01T14:37:25.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0227 | Kwetsbaarheid verholpen in Juniper SRX300 Series | 2025-07-11T09:57:40.476096Z | 2025-07-11T09:57:40.476096Z |
| ncsc-2025-0225 | Kwetsbaarheid verholpen in Juniper Networks Security Director | 2025-07-11T09:55:46.934253Z | 2025-07-11T09:55:46.934253Z |
| ncsc-2025-0224 | Kwetsbaarheden verholpen in Adobe Illustrator | 2025-07-09T08:57:08.548822Z | 2025-07-09T08:57:08.548822Z |
| ncsc-2025-0223 | Kwetsbaarheden verholpen in Adobe Framemaker | 2025-07-09T08:47:38.891072Z | 2025-07-09T08:47:38.891072Z |
| ncsc-2025-0222 | Kwetsbaarheden verholpen in Adobe ColdFusion | 2025-07-09T08:41:53.656736Z | 2025-07-09T08:41:53.656736Z |
| ncsc-2025-0221 | Kwetsbaarheden verholpen in Schneider Electric EcoStruxture IT Datacenter Expert | 2025-07-09T08:38:05.336146Z | 2025-07-09T08:38:05.336146Z |
| ncsc-2025-0220 | Kwetsbaarheden verholpen in Palo Alto PAN-OS | 2025-07-09T08:33:14.284978Z | 2025-07-09T08:33:14.284978Z |
| ncsc-2025-0219 | Kwetsbaarheden verholpen in SAP producten | 2025-07-09T08:29:00.474865Z | 2025-07-09T08:29:00.474865Z |
| ncsc-2025-0218 | Kwetsbaarheden verholpen in Microsoft Edge (Chromium based) | 2025-07-08T18:26:55.812717Z | 2025-07-08T18:26:55.812717Z |
| ncsc-2025-0217 | Kwetsbaarheden verholpen in Microsoft Visual Studio | 2025-07-08T18:26:14.881161Z | 2025-07-08T18:26:14.881161Z |
| ncsc-2025-0216 | Kwetsbaarheden verholpen in Microsoft SQL Server | 2025-07-08T18:25:40.909948Z | 2025-07-08T18:25:40.909948Z |
| ncsc-2025-0214 | Kwetsbaarheden verholpen in Microsoft Azure | 2025-07-08T18:24:14.065296Z | 2025-07-08T18:24:14.065296Z |
| ncsc-2025-0213 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-07-08T18:23:09.960791Z | 2025-07-08T18:23:09.960791Z |
| ncsc-2025-0212 | Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform | 2025-07-08T12:03:17.100858Z | 2025-07-08T12:03:17.100858Z |
| ncsc-2025-0211 | Kwetsbaarheden verholpen in Siemens producten | 2025-07-08T11:58:23.712452Z | 2025-07-08T11:58:23.712452Z |
| ncsc-2025-0210 | Kwetsbaarheid verholpen in Cisco Unified Communications Manager | 2025-07-03T07:43:27.075341Z | 2025-07-03T07:43:27.075341Z |
| ncsc-2025-0209 | Kwetsbaarheid verholpen in Google Chrome | 2025-07-01T15:56:24.236216Z | 2025-07-01T15:56:24.236216Z |
| ncsc-2025-0208 | Kwetsbaarheden verholpen in Adobe Commerce | 2025-06-30T12:59:12.105658Z | 2025-06-30T12:59:12.105658Z |
| ncsc-2025-0207 | Kwetsbaarheden verholpen in Adobe InDesign Desktop | 2025-06-30T12:58:32.421661Z | 2025-06-30T12:58:32.421661Z |
| ncsc-2025-0206 | Kwetsbaarheden verholpen in Adobe Acrobat Reader | 2025-06-30T12:57:43.622242Z | 2025-06-30T12:57:43.622242Z |
| ncsc-2025-0205 | Kwetsbaarheid verholpen in IBM WebSphere Application Server | 2025-06-26T12:32:54.177712Z | 2025-06-26T12:32:54.177712Z |
| ncsc-2025-0203 | Kwetsbaarheid verholpen in Citrix NetScaler ADC en NetScaler Gateway | 2025-06-25T14:54:38.413413Z | 2025-06-25T14:54:38.413413Z |
| ncsc-2025-0202 | Kwetsbaarheden verholpen in IBM InfoSphere Information Server | 2025-06-22T08:19:47.485567Z | 2025-06-22T08:19:47.485567Z |
| ncsc-2025-0201 | Kwetsbaarheid verholpen in IBM Spectrum Protect Server | 2025-06-22T08:17:03.146698Z | 2025-06-22T08:17:03.146698Z |
| ncsc-2025-0200 | Kwetsbaarheden verholpen in IBM QRadar SIEM | 2025-06-20T11:04:50.445218Z | 2025-06-20T11:04:50.445218Z |
| ncsc-2025-0199 | Kwetsbaarheid verholpen in Cisco AnyConnect VPN voor Meraki MX en Z | 2025-06-19T08:42:22.673078Z | 2025-06-19T08:42:22.673078Z |
| ncsc-2025-0198 | Kwetsbaarheden verholpen in Veeam Backup | 2025-06-18T12:18:39.049977Z | 2025-06-18T12:18:39.049977Z |
| ncsc-2025-0197 | Kwetsbaarheid verholpen in GeoServer | 2025-06-18T10:17:42.472544Z | 2025-06-18T10:17:42.472544Z |
| ncsc-2025-0195 | Kwetsbaarheden verholpen in Apache Tomcat | 2025-06-18T08:01:06.984131Z | 2025-06-18T08:01:06.984131Z |
| ncsc-2025-0194 | Kwetsbaarheden verholpen in Trend Micro Apex One en Apex Central | 2025-06-12T11:12:33.408725Z | 2025-06-12T11:12:33.408725Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2026:10318-1 | helm-4.1.1-3.1 on GA media | 2026-03-10T00:00:00Z | 2026-03-10T00:00:00Z |
| opensuse-su-2026:10317-1 | grype-0.109.1-1.1 on GA media | 2026-03-10T00:00:00Z | 2026-03-10T00:00:00Z |
| opensuse-su-2026:10316-1 | ghostty-1.3.0-1.1 on GA media | 2026-03-10T00:00:00Z | 2026-03-10T00:00:00Z |
| opensuse-su-2026:10315-1 | GraphicsMagick-1.3.46-2.1 on GA media | 2026-03-10T00:00:00Z | 2026-03-10T00:00:00Z |
| opensuse-su-2026:20336-1 | Security update for cockpit-podman | 2026-03-09T10:47:09Z | 2026-03-09T10:47:09Z |
| opensuse-su-2026:20337-1 | Security update for ImageMagick | 2026-03-09T10:04:29Z | 2026-03-09T10:04:29Z |
| opensuse-su-2026:10314-1 | traefik2-2.11.40-1.1 on GA media | 2026-03-09T00:00:00Z | 2026-03-09T00:00:00Z |
| opensuse-su-2026:10313-1 | rclone-1.73.2-1.1 on GA media | 2026-03-09T00:00:00Z | 2026-03-09T00:00:00Z |
| opensuse-su-2026:10312-1 | python311-pymongo-4.16.0-1.1 on GA media | 2026-03-09T00:00:00Z | 2026-03-09T00:00:00Z |
| opensuse-su-2026:10311-1 | corepack24-24.13.0-4.1 on GA media | 2026-03-08T00:00:00Z | 2026-03-08T00:00:00Z |
| opensuse-su-2026:10310-1 | go1.25-1.25.8-1.1 on GA media | 2026-03-08T00:00:00Z | 2026-03-08T00:00:00Z |
| opensuse-su-2026:20332-1 | Security update for chromium | 2026-03-07T12:59:14Z | 2026-03-07T12:59:14Z |
| opensuse-su-2026:10309-1 | weblate-5.16.1-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10308-1 | virtiofsd-1.13.2-2.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10307-1 | tomcat11-11.0.18-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10306-1 | tomcat10-10.1.52-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10305-1 | tomcat-9.0.115-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10304-1 | python311-nltk-3.9.3-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10303-1 | libIex-3_4-33-3.4.6-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10302-1 | kubeshark-cli-53.1.0-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10301-1 | kernel-devel-longterm-6.18.16-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10300-1 | jetty-annotations-9.4.58-3.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10299-1 | go1.26-1.26.1-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10298-1 | exiv2-0.28.8-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10297-1 | coredns-1.14.2-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10296-1 | chromedriver-145.0.7632.159-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:10295-1 | NetworkManager-applet-strongswan-1.6.4-1.1 on GA media | 2026-03-07T00:00:00Z | 2026-03-07T00:00:00Z |
| opensuse-su-2026:20333-1 | Security update for python-PyPDF2 | 2026-03-06T21:01:39Z | 2026-03-06T21:01:39Z |
| opensuse-su-2026:20330-1 | Security update for python-uv | 2026-03-06T14:43:28Z | 2026-03-06T14:43:28Z |
| opensuse-su-2026:20323-1 | Security update for roundcubemail | 2026-03-05T18:31:03Z | 2026-03-05T18:31:03Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:4462 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-05T14:35:59+00:00 | 2026-04-15T02:07:09+00:00 |
| rhsa-2025:4250 | Red Hat Security Advisory: RHSA: Submariner 0.19.4 - bug fix and enhancement update | 2025-04-28T16:10:25+00:00 | 2026-04-15T02:07:09+00:00 |
| rhsa-2025:4211 | Red Hat Security Advisory: OpenShift Container Platform 4.18.11 bug fix and security update | 2025-05-01T03:08:42+00:00 | 2026-04-15T02:07:09+00:00 |
| rhsa-2025:4422 | Red Hat Security Advisory: OpenShift Container Platform 4.15.50 bug fix and security update | 2025-05-08T19:55:32+00:00 | 2026-04-15T02:07:07+00:00 |
| rhsa-2025:4409 | Red Hat Security Advisory: OpenShift Container Platform 4.12.76 bug fix and security update | 2025-05-08T19:54:33+00:00 | 2026-04-15T02:07:07+00:00 |
| rhsa-2025:4204 | Red Hat Security Advisory: OpenShift Container Platform 4.17.27 bug fix and security update | 2025-04-30T03:47:47+00:00 | 2026-04-15T02:07:06+00:00 |
| rhsa-2025:4188 | Red Hat Security Advisory: Red Hat OpenShift Builds 1.2 | 2025-04-24T13:21:19+00:00 | 2026-04-15T02:07:04+00:00 |
| rhsa-2025:4177 | Red Hat Security Advisory: OpenShift Container Platform 4.14.51 bug fix and security update | 2025-04-30T07:11:57+00:00 | 2026-04-15T02:07:04+00:00 |
| rhsa-2025:4171 | Red Hat Security Advisory: Red Hat OpenShift Builds 1.3 | 2025-04-24T11:52:49+00:00 | 2026-04-15T02:07:04+00:00 |
| rhsa-2025:4019 | Red Hat Security Advisory: OpenShift Container Platform 4.18.10 bug fix and security update | 2025-04-22T23:52:01+00:00 | 2026-04-15T02:07:04+00:00 |
| rhsa-2025:4012 | Red Hat Security Advisory: OpenShift Container Platform 4.17.26 bug fix and security update | 2025-04-23T12:41:37+00:00 | 2026-04-15T02:07:03+00:00 |
| rhsa-2025:4008 | Red Hat Security Advisory: OpenShift Container Platform 4.16.39 bug fix and security update | 2025-04-23T05:51:53+00:00 | 2026-04-15T02:07:03+00:00 |
| rhsa-2025:4002 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates | 2025-04-17T22:09:36+00:00 | 2026-04-15T02:07:03+00:00 |
| rhsa-2025:3993 | Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.15.1-6 Update | 2025-04-17T14:42:51+00:00 | 2026-04-15T02:07:02+00:00 |
| rhsa-2025:3987 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.7.4 security updates | 2025-04-17T17:18:55+00:00 | 2026-04-15T02:07:02+00:00 |
| rhsa-2025:3959 | Red Hat Security Advisory: VolSync 0.11.2 security fixes and enhancements for RHEL 9 | 2025-04-16T21:10:52+00:00 | 2026-04-15T02:07:02+00:00 |
| rhsa-2025:3932 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release | 2025-04-16T02:48:23+00:00 | 2026-04-15T02:07:01+00:00 |
| rhsa-2025:3930 | Red Hat Security Advisory: RHACS 4.7 security update | 2025-04-15T20:29:23+00:00 | 2026-04-15T02:07:01+00:00 |
| rhsa-2025:3929 | Red Hat Security Advisory: ACS 4.6 enhancement and security update | 2025-04-15T19:52:32+00:00 | 2026-04-15T02:07:00+00:00 |
| rhsa-2025:3907 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.1.5 | 2025-04-16T21:35:18+00:00 | 2026-04-15T02:07:00+00:00 |
| rhsa-2025:3928 | Red Hat Security Advisory: ACS 4.5 enhancement and security update | 2025-04-15T19:46:07+00:00 | 2026-04-15T02:06:59+00:00 |
| rhsa-2025:3906 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.13 | 2025-04-16T10:29:32+00:00 | 2026-04-15T02:06:59+00:00 |
| rhsa-2025:3905 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.7 | 2025-04-16T14:51:29+00:00 | 2026-04-15T02:06:58+00:00 |
| rhsa-2025:3886 | Red Hat Security Advisory: RHOAI 2.19.0 - Red Hat OpenShift AI | 2025-04-15T07:52:02+00:00 | 2026-04-15T02:06:57+00:00 |
| rhsa-2025:3863 | Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update | 2025-04-14T18:00:47+00:00 | 2026-04-15T02:06:57+00:00 |
| rhsa-2025:3833 | Red Hat Security Advisory: gvisor-tap-vsock security update | 2025-04-14T09:21:59+00:00 | 2026-04-15T02:06:57+00:00 |
| rhsa-2025:3820 | Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release | 2025-04-10T17:22:43+00:00 | 2026-04-15T02:06:56+00:00 |
| rhsa-2025:3814 | Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release | 2025-04-10T15:20:44+00:00 | 2026-04-15T02:06:56+00:00 |
| rhsa-2025:3813 | Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release | 2025-04-10T14:56:45+00:00 | 2026-04-15T02:06:56+00:00 |
| rhsa-2025:3811 | Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release | 2025-04-10T14:32:08+00:00 | 2026-04-15T02:06:55+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-097786 | SSA-097786: Insertion of Sensitive Information into Log File Vulnerability in SINUMERIK systems | 2024-09-10T00:00:00Z | 2024-09-10T00:00:00Z |
| ssa-088132 | SSA-088132: Denial of Service Vulnerability in the OPC UA Server Implementations of Several Industrial Products | 2024-07-09T00:00:00Z | 2024-09-10T00:00:00Z |
| ssa-857368 | SSA-857368: Multiple Vulnerabilities in Omnivise T3000 | 2024-08-02T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-856475 | SSA-856475: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-813746 | SSA-813746: BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families | 2023-04-11T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-784301 | SSA-784301: Multiple Vulnerabilities in SINEC NMS Before V3.0 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-771940 | SSA-771940: X_T File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2024-06-11T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-722010 | SSA-722010: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go | 2024-07-09T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-720392 | SSA-720392: Multiple Vulnerabilities in Third-Party Components in Location Intelligence Before V4.4 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-716317 | SSA-716317: Multiple Vulnerability in SINEC Traffic Analyzer Before V2.0 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-659443 | SSA-659443: Local Code Execution Vulnerabilities in COMOS Before V10.5 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-640968 | SSA-640968: Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Multiuser Server | 2023-02-14T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-625850 | SSA-625850: Multiple WIBU Systems CodeMeter Vulnerabilities Affecting the Desigo CC Product Family and SENTRON powermanager | 2023-11-14T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-417547 | SSA-417547: Multiple Vulnerabilities in INTRALOG WMS Before V4 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-407785 | SSA-407785: Multiple X_T File Parsing Vulnerabilities in Parasolid and Teamcenter Visualization | 2023-08-08T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-357412 | SSA-357412: PRT File Parsing Vulnerability in NX Before V2406.3000 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-180704 | SSA-180704: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-116924 | SSA-116924: Path Traversal Vulnerability in TIA Portal | 2023-04-11T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-087301 | SSA-087301: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.1 | 2024-08-13T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-068047 | SSA-068047: Multiple Vulnerabilities in SCALANCE M-800 Family Before V7.2.2 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-071402 | SSA-071402: Multiple Vulnerabilities in SICAM Products | 2024-07-22T00:00:00Z | 2024-07-22T00:00:00Z |
| ssa-998949 | SSA-998949: Hard-coded Default Encryption Key in Mendix Encryption Module V10.0.0 and V10.0.1 | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-928781 | SSA-928781: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.2 HF1 | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-868282 | SSA-868282: Multiple Vulnerabilities in SINEMA Remote Connect Client before V3.2 HF1 | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-825651 | SSA-825651: Deserialization Vulnerability in SIMATIC STEP 7 (TIA Portal) before V18 Update 2 | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-824889 | SSA-824889: XML File Parsing Vulnerabilities in JT Open and PLM XML SDK | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-780073 | SSA-780073: Denial of Service Vulnerability in PROFINET Devices via DCE-RPC Packets | 2020-02-11T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-779936 | SSA-779936: Catalog-Profile Deserialization Vulnerability in Siemens Engineering Platforms before V19 | 2024-07-09T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-750274 | SSA-750274: Impact of CVE-2024-3400 on RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual NGFW | 2024-04-19T00:00:00Z | 2024-07-09T00:00:00Z |
| ssa-484086 | SSA-484086: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1 | 2022-06-14T00:00:00Z | 2024-07-09T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2026:1008-1 | Security update for Prometheus | 2026-03-25T10:07:27Z | 2026-03-25T10:07:27Z |
| suse-su-2026:20932-1 | Security update for ffmpeg-7 | 2026-03-25T09:58:50Z | 2026-03-25T09:58:50Z |
| suse-su-2026:20878-1 | Security update for python-pyasn1 | 2026-03-25T09:44:19Z | 2026-03-25T09:44:19Z |
| suse-su-2026:20868-1 | Security update for capstone | 2026-03-25T09:40:00Z | 2026-03-25T09:40:00Z |
| suse-su-2026:1002-1 | Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP5) | 2026-03-25T09:34:30Z | 2026-03-25T09:34:30Z |
| suse-su-2026:1005-1 | Security update for giflib | 2026-03-25T09:32:48Z | 2026-03-25T09:32:48Z |
| suse-su-2026:1004-1 | Security update for libsoup | 2026-03-25T09:32:40Z | 2026-03-25T09:32:40Z |
| suse-su-2026:20869-1 | Security update for python-PyJWT | 2026-03-25T09:31:26Z | 2026-03-25T09:31:26Z |
| suse-su-2026:1003-1 | Security update for the Linux Kernel | 2026-03-25T09:25:47Z | 2026-03-25T09:25:47Z |
| suse-su-2026:20931-1 | Security update for the Linux Kernel | 2026-03-25T08:48:43Z | 2026-03-25T08:48:43Z |
| suse-su-2026:20838-1 | Security update for the Linux Kernel | 2026-03-25T08:48:43Z | 2026-03-25T08:48:43Z |
| suse-ru-2026:1001-1 | Recommended update for rust1.94 | 2026-03-25T08:36:36Z | 2026-03-25T08:36:36Z |
| suse-su-2026:1000-1 | Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) | 2026-03-25T07:08:02Z | 2026-03-25T07:08:02Z |
| suse-su-2026:20944-1 | Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16) | 2026-03-25T06:46:04Z | 2026-03-25T06:46:04Z |
| suse-su-2026:20837-1 | Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16) | 2026-03-25T06:46:04Z | 2026-03-25T06:46:04Z |
| suse-su-2026:20943-1 | Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 16) | 2026-03-25T05:44:30Z | 2026-03-25T05:44:30Z |
| suse-su-2026:20836-1 | Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 16) | 2026-03-25T05:44:30Z | 2026-03-25T05:44:30Z |
| suse-su-2026:20930-1 | Security update for python-pyOpenSSL | 2026-03-25T03:41:42Z | 2026-03-25T03:41:42Z |
| suse-su-2026:20929-1 | Security update for python-pyasn1 | 2026-03-25T03:09:46Z | 2026-03-25T03:09:46Z |
| suse-su-2026:20835-1 | Security update for python-pyasn1 | 2026-03-25T03:09:46Z | 2026-03-25T03:09:46Z |
| suse-su-2026:20942-1 | Security update for the initial kernel livepatch | 2026-03-24T20:36:24Z | 2026-03-24T20:36:24Z |
| suse-su-2026:20834-1 | Security update for the initial kernel livepatch | 2026-03-24T20:36:24Z | 2026-03-24T20:36:24Z |
| suse-su-2026:20928-1 | Security update for python-black | 2026-03-24T19:40:56Z | 2026-03-24T19:40:56Z |
| suse-su-2026:20927-1 | Security update for 389-ds | 2026-03-24T17:50:31Z | 2026-03-24T17:50:31Z |
| suse-su-2026:20889-1 | Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:44Z | 2026-03-24T16:49:44Z |
| suse-su-2026:20888-1 | Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:44Z | 2026-03-24T16:49:44Z |
| suse-su-2026:20866-1 | Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:44Z | 2026-03-24T16:49:44Z |
| suse-su-2026:20865-1 | Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:44Z | 2026-03-24T16:49:44Z |
| suse-su-2026:20887-1 | Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:34Z | 2026-03-24T16:49:34Z |
| suse-su-2026:20886-1 | Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:49:34Z | 2026-03-24T16:49:34Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2026:0759 | Important: kernel security update | 2026-01-19T00:00:00Z | 2026-01-20T08:07:16Z |
| alsa-2026:0750 | Important: net-snmp security update | 2026-01-19T00:00:00Z | 2026-01-20T07:38:35Z |
| alsa-2026:0756 | Moderate: transfig security update | 2026-01-19T00:00:00Z | 2026-01-19T10:24:15Z |
| alsa-2026:0492 | Moderate: postgresql:15 security update | 2026-01-13T00:00:00Z | 2026-01-19T10:02:02Z |
| alsa-2026:0493 | Moderate: postgresql:16 security update | 2026-01-13T00:00:00Z | 2026-01-19T09:45:22Z |
| alsa-2026:0436 | Important: buildah security update | 2026-01-12T00:00:00Z | 2026-01-16T15:50:15Z |
| alsa-2026:0423 | Important: libsoup3 security update | 2026-01-12T00:00:00Z | 2026-01-16T15:49:08Z |
| alsa-2026:0422 | Important: libsoup security update | 2026-01-12T00:00:00Z | 2026-01-16T15:46:52Z |
| alsa-2026:0421 | Important: libsoup security update | 2026-01-12T00:00:00Z | 2026-01-16T15:44:34Z |
| alsa-2026:0337 | Moderate: openssl security update | 2026-01-08T00:00:00Z | 2026-01-16T15:42:22Z |
| alsa-2026:0312 | Moderate: cups security update | 2026-01-08T00:00:00Z | 2026-01-16T15:40:37Z |
| alsa-2026:0437 | Important: buildah security update | 2026-01-12T00:00:00Z | 2026-01-16T15:38:30Z |
| alsa-2026:0443 | Important: kernel-rt security update | 2026-01-12T00:00:00Z | 2026-01-16T15:37:02Z |
| alsa-2026:0444 | Important: kernel security update | 2026-01-12T00:00:00Z | 2026-01-16T15:34:47Z |
| alsa-2026:0445 | Moderate: kernel security update | 2026-01-12T00:00:00Z | 2026-01-16T15:31:40Z |
| alsa-2026:0453 | Important: kernel security update | 2026-01-12T00:00:00Z | 2026-01-16T15:27:10Z |
| alsa-2026:0458 | Moderate: libpq security update | 2026-01-12T00:00:00Z | 2026-01-16T15:21:50Z |
| alsa-2026:0464 | Moderate: cups security update | 2026-01-12T00:00:00Z | 2026-01-16T15:20:45Z |
| alsa-2026:0470 | Important: podman security update | 2026-01-12T00:00:00Z | 2026-01-16T15:18:30Z |
| alsa-2026:0491 | Moderate: postgresql security update | 2026-01-13T00:00:00Z | 2026-01-16T15:16:39Z |
| alsa-2026:0519 | Moderate: postgresql:16 security update | 2026-01-13T00:00:00Z | 2026-01-16T15:14:12Z |
| alsa-2026:0523 | Moderate: postgresql:13 security update | 2026-01-13T00:00:00Z | 2026-01-16T15:11:39Z |
| alsa-2026:0524 | Moderate: postgresql:15 security update | 2026-01-13T00:00:00Z | 2026-01-16T15:09:07Z |
| alsa-2026:0525 | Moderate: postgresql16 security update | 2026-01-13T00:00:00Z | 2026-01-16T15:06:52Z |
| alsa-2026:0545 | Important: podman security update | 2026-01-14T00:00:00Z | 2026-01-16T15:04:20Z |
| alsa-2026:0594 | Moderate: libpq security update | 2026-01-14T00:00:00Z | 2026-01-16T15:02:50Z |
| alsa-2026:0596 | Moderate: cups security update | 2026-01-14T00:00:00Z | 2026-01-16T14:59:53Z |
| alsa-2026:0605 | Moderate: vsftpd security update | 2026-01-14T00:00:00Z | 2026-01-16T14:57:43Z |
| alsa-2026:0606 | Moderate: vsftpd security update | 2026-01-14T00:00:00Z | 2026-01-16T14:56:39Z |
| alsa-2026:0608 | Moderate: vsftpd security update | 2026-01-14T00:00:00Z | 2026-01-16T14:54:25Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2025-808 | Use-of-uninitialized-value in WebPMultRow_C | 2025-10-04T00:07:11.139186Z | 2025-10-04T00:07:11.139704Z |
| osv-2025-803 | Global-buffer-overflow in icaltime_day_of_year | 2025-10-02T00:11:54.061581Z | 2025-10-02T00:11:54.061989Z |
| osv-2025-797 | Heap-buffer-overflow in ProcessRows | 2025-09-30T00:07:53.914184Z | 2025-09-30T00:07:53.914578Z |
| osv-2025-796 | Heap-buffer-overflow in AddGreenToBlueAndRed_AVX2 | 2025-09-30T00:07:08.673173Z | 2025-09-30T00:07:08.673608Z |
| osv-2025-793 | Heap-use-after-free in parse_from_header | 2025-09-29T00:08:32.876425Z | 2025-09-29T00:08:32.876798Z |
| osv-2024-370 | Heap-buffer-overflow in H5O__chunk_protect | 2024-04-30T00:08:00.120801Z | 2025-09-27T15:27:53.336806Z |
| osv-2025-787 | Heap-buffer-overflow in DwaCompressor_uncompress | 2025-09-27T00:18:30.312049Z | 2025-09-27T00:18:30.312655Z |
| osv-2022-795 | UNKNOWN READ in pcl::PLYReader::read | 2022-08-28T00:00:11.408403Z | 2025-09-26T14:12:06.751834Z |
| osv-2025-783 | Heap-buffer-overflow in inspect_process | 2025-09-26T00:06:21.859576Z | 2025-09-26T00:06:21.859964Z |
| osv-2025-262 | UNKNOWN WRITE in _lou_handlePassVariableAction | 2025-04-07T00:02:21.621602Z | 2025-09-25T14:33:42.888095Z |
| osv-2025-290 | Heap-buffer-overflow in pcpp::TelnetLayer::toString | 2025-04-19T00:05:45.140280Z | 2025-09-25T14:31:44.695948Z |
| osv-2024-86 | Security exception in org.threeten.bp.format.DateTimeFormatterBuilder$CompositePrinterParser.parse | 2024-02-09T00:00:11.154046Z | 2025-09-25T14:31:01.295253Z |
| osv-2024-171 | Security exception in org.threeten.bp.format.DateTimeFormatterBuilder$CompositePrinterParser.parse | 2024-03-15T00:08:01.855772Z | 2025-09-25T14:28:39.920838Z |
| osv-2024-184 | Security exception in org.threeten.bp.format.DateTimeFormatterBuilder$CompositePrinterParser.parse | 2024-03-21T00:13:27.175097Z | 2025-09-25T14:28:31.599671Z |
| osv-2018-6 | Use-of-uninitialized-value in DosSlashToUnix | 2021-01-13T00:00:02.571744Z | 2025-09-25T14:18:29.826514Z |
| osv-2018-204 | UNKNOWN WRITE in __msan_memcpy.part.51 | 2021-01-13T00:01:23.035709Z | 2025-09-25T14:18:29.315747Z |
| osv-2025-424 | UNKNOWN READ in RDKit::RDValue::destroy | 2025-06-03T00:12:35.236863Z | 2025-09-24T14:19:44.921114Z |
| osv-2025-447 | Use-of-uninitialized-value in spvtools::EmitNumericLiteral | 2025-06-09T00:05:11.128452Z | 2025-09-24T14:18:33.220549Z |
| osv-2025-767 | UNKNOWN READ in dcd_int_handler | 2025-09-20T00:19:20.851166Z | 2025-09-20T00:19:20.851464Z |
| osv-2025-766 | Heap-buffer-overflow in Open | 2025-09-20T00:18:10.380843Z | 2025-09-20T00:18:10.381141Z |
| osv-2025-765 | Security exception in com.spotify.docker.client.shaded.com.fasterxml.jackson.databind.util.TokenBuffer | 2025-09-20T00:18:07.994839Z | 2025-09-20T00:18:07.995257Z |
| osv-2025-764 | Global-buffer-overflow in Ogg_CreateES | 2025-09-20T00:15:54.584666Z | 2025-09-20T00:15:54.585041Z |
| osv-2025-762 | Use-of-uninitialized-value in fuzzer_send | 2025-09-19T00:14:45.258709Z | 2025-09-19T00:14:45.259063Z |
| osv-2025-742 | Null-dereference READ in ubsan_GetStackTrace | 2025-09-14T00:15:42.184140Z | 2025-09-14T00:15:42.184553Z |
| osv-2025-729 | UNKNOWN READ in sam_hrecs_free_tags | 2025-09-13T00:08:43.863495Z | 2025-09-13T00:08:43.863848Z |
| osv-2025-723 | Heap-buffer-overflow in processClientServerHello | 2025-09-13T00:02:40.666090Z | 2025-09-13T00:02:40.666412Z |
| osv-2025-357 | Segv on unknown address in pcpp::Packet::computeCalculateFields | 2025-05-12T00:13:14.901744Z | 2025-09-10T14:24:05.862334Z |
| osv-2025-684 | Heap-buffer-overflow in TGAHandler::read | 2025-08-25T00:17:17.781502Z | 2025-08-25T00:17:17.782094Z |
| osv-2025-677 | Heap-buffer-overflow in TGAHandler::read | 2025-08-23T00:05:27.168432Z | 2025-08-23T00:05:27.168725Z |
| osv-2025-373 | Heap-use-after-free in aiMesh::~aiMesh | 2025-05-17T00:11:17.621374Z | 2025-08-22T19:20:38.723565Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2025-0099 | `unic-ucd-block` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0098 | `unic-ucd-version` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0097 | `unic-idna-mapping` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0096 | `unic-bidi` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0095 | `unic` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0094 | `unic-ucd-category` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0093 | `unic-char-basics` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0092 | `unic-ucd-case` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0091 | `unic-utils` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0090 | `unic-emoji-char` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0089 | `unic-ucd-name_aliases` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0088 | `unic-idna-punycode` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0087 | `unic-cli` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0086 | `unic-char` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0085 | `unic-idna` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0084 | `unic-emoji` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0083 | `unic-ucd-bidi` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0082 | `unic-normal` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0081 | `unic-char-property` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0080 | `unic-common` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0079 | `unic-ucd-hangul` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0078 | `unic-ucd-normal` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0077 | `unic-ucd` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0076 | `unic-ucd-name` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0074 | `unic-segment` is unmaintained | 2025-10-18T12:00:00Z | 2025-10-21T11:12:59Z |
| rustsec-2025-0073 | DoS vulnerability on `alloy_dyn_abi::TypedData` hashing | 2025-10-15T12:00:00Z | 2025-10-15T13:11:39Z |
| rustsec-2025-0070 | Pingora MadeYouReset HTTP/2 vulnerability | 2025-09-17T12:00:00Z | 2025-09-18T07:10:31Z |
| rustsec-2025-0069 | `daemonize` is Unmaintained | 2025-09-14T12:00:00Z | 2025-09-15T14:42:32Z |
| rustsec-2023-0094 | `martin-mbtiles` has been renamed to `mbtiles` | 2023-10-30T12:00:00Z | 2025-09-14T19:19:34Z |
| rustsec-2025-0066 | The `google-apis-rs` project is now unmaintained | 2025-09-09T12:00:00Z | 2025-09-11T16:34:38Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-parse-2026-31828 | Parse Server has an LDAP injection via unsanitized user input in DN and group filter construction | 2026-03-12T14:48:18.251Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-31800 | Parse Server: Classes `_GraphQLConfig` and `_Audience` master key bypass via generic class routes | 2026-03-12T14:48:16.613Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30972 | Parse Server has a rate limit bypass via batch request endpoint | 2026-03-12T14:48:14.900Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30967 | Parse Server OAuth2 authentication adapter account takeover via identity spoofing | 2026-03-12T14:48:13.390Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30966 | Parse Server role escalation and CLP bypass via direct `_Join` table write | 2026-03-12T14:48:11.522Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30965 | Parse Server session token exfiltration via `redirectClassNameForKey` query parameter | 2026-03-12T14:48:09.696Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30962 | Parse Server has a protected fields bypass via logical query operators | 2026-03-12T14:48:07.977Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30949 | Parse Server is missing audience validation in Keycloak authentication adapter | 2026-03-12T14:48:06.075Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30948 | Parse Server has stored cross-site scripting (XSS) via SVG file upload | 2026-03-12T14:48:04.274Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30947 | Parse Server ha a bypass of class-level permissions in LiveQuery | 2026-03-12T14:48:02.496Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30946 | Parse Server affected by denial-of-service via unbounded query complexity in REST and GraphQL API | 2026-03-12T14:48:00.783Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30941 | Parse Server has a NoSQL injection via token type in password reset and email verification endpoints | 2026-03-12T14:47:58.977Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30939 | Parse Server has Denial of Service (DoS) and Cloud Function Dispatch Bypass via Prototype Chain Resolution | 2026-03-12T14:47:57.281Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30938 | Parse Server has denylist `requestKeywordDenylist` keyword scan bypass through nested object placement | 2026-03-12T14:47:55.401Z | 2026-03-20T09:47:33.381Z |
| bit-parse-2026-30925 | Parse Server affected by Regular Expression Denial of Service (ReDoS) via `$regex` query in LiveQuery | 2026-03-12T14:47:53.415Z | 2026-03-20T09:47:33.381Z |
| bit-nifi-2023-49145 | Apache NiFi: Improper Neutralization of Input in Advanced User Interface for Jolt | 2025-09-12T11:47:03.168Z | 2026-03-20T09:47:33.381Z |
| bit-mongodb-2020-7925 | Denial of Service when processing malformed Role names | 2024-03-06T10:58:54.976Z | 2026-03-20T09:47:33.381Z |
| bit-mongodb-2020-7923 | Specific GeoQuery can cause DoS against MongoDB Server | 2024-03-06T10:59:03.972Z | 2026-03-20T09:47:33.381Z |
| bit-mastodon-2025-67500 | Mastodon Error Handling Discrepancy Enables Private Status Existence Enumeration | 2025-12-11T11:41:16.693Z | 2026-03-20T09:47:33.381Z |
| bit-mastodon-2025-62605 | Mastodon quotes control can be bypassed | 2025-10-23T08:44:09.997Z | 2026-03-20T09:47:33.381Z |
| bit-mastodon-2023-42452 | Mastodon vulnerable to Stored XSS through the translation feature | 2024-03-06T10:55:46.292Z | 2026-03-20T09:47:33.381Z |
| bit-mastodon-2023-42451 | Mastodon Invalid Domain Name Normalization vulnerability | 2024-03-06T10:55:56.068Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2022-42344 | [CVE-2021-36032] Magento IDOR Leads to Account Takeover | 2024-03-06T10:55:33.798Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-36036 | Magento Commerce Media Gallery Upload Improper Access Control Could Lead To Remote Code Execution | 2024-03-06T10:57:23.602Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-36023 | Magento Commerce Widgets Update Layout XML Injection Vulnerability Could Lead To Remote Code Execution | 2024-03-06T10:57:34.606Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-36021 | Magento Commerce CMS Page Improper Input Validation Could Lead To Remote Code Execution | 2024-03-06T10:57:45.085Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-28585 | Magento Commerce improper input validation in customer customer webapi | 2024-03-06T10:58:00.077Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-28584 | Magento Commerce path traversal vulnerability in child theme store creation | 2024-03-06T10:58:13.389Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-28583 | Magento Commerce insecure storage of sensitive documentation | 2024-03-06T10:58:23.464Z | 2026-03-20T09:47:33.381Z |
| bit-magento-2021-28567 | Magento Commerce improper authorization allows an authenticated user to perform certain functions without permission | 2024-03-06T10:58:36.807Z | 2026-03-20T09:47:33.381Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cleanstart-2026-vc01496 | Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.8.4-r0 | 2026-03-04T00:39:30.734261Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-sm37781 | Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic | 2026-03-04T00:45:05.719125Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-na21773 | GNU patch through 2 | 2026-03-04T00:42:01.122309Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-ew93264 | Security fixes for GHSA-4CX2-FC23-5WG6, GHSA-6XW4-3V39-52MM, GHSA-72QJ-48G4-5XGX, GHSA-MR3Q-G2MV-MR4Q, GHSA-P543-XPFM-54CP, GHSA-VC5P-V9HR-52MJ, GHSA-VQG5-3255-V292 applied in versions: 9.0.8-r2, 9.0.8-r3, 9.0.8-r4, 9.3.0-r1, 9.3.0-r2 | 2026-03-04T00:39:32.590174Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-cq83284 | Redis is an open source, in-memory database that persists on disk | 2026-03-04T00:43:01.818359Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-bz70876 | Redis is an open source, in-memory database that persists on disk | 2026-03-04T00:42:00.996564Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-ay29369 | Redis is an open source, in-memory database that persists on disk | 2026-03-04T00:43:31.868035Z | 2026-03-03T12:59:01Z |
| cleanstart-2026-pm79547 | Security fixes for CVE-2018-20969, CVE-2018-6952, CVE-2019-13636, CVE-2019-13638, CVE-2019-20633 applied in versions: 2.7.6-r2, 2.7.6-r4, 2.7.6-r5, 2.7.6-r6, 2.7.6-r7 | 2026-04-01T10:07:37.644781Z | 2026-03-03T12:11:07Z |
| cleanstart-2026-ja70776 | Security fixes for CVE-2023-5870, CVE-2024-7348, CVE-2025-8713, CVE-2025-8714, CVE-2025-8715 applied in versions: 16.1-r0, 16.2-r0, 16.4-r0, 17.6-r0 | 2026-04-01T10:07:46.020645Z | 2026-03-03T12:09:34Z |
| cleanstart-2026-eq51133 | Security fixes for CVE-2023-5870, CVE-2024-7348, CVE-2025-8713, CVE-2025-8714, CVE-2025-8715 applied in versions: 16.1-r0, 16.2-r0, 16.4-r0, 17.6-r0 | 2026-04-01T10:07:46.021346Z | 2026-03-03T12:09:34Z |
| cleanstart-2026-mw73882 | filippo | 2026-03-03T00:39:03.237072Z | 2026-03-02T17:13:50Z |
| cleanstart-2026-by85815 | OpenTelemetry-Go is the Go implementation of OpenTelemetry | 2026-03-03T00:39:03.275022Z | 2026-03-02T17:13:50Z |
| cleanstart-2026-qf85840 | Security fixes for CVE-2025-55190, CVE-2025-55191, CVE-2025-58183, CVE-2025-58185, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-59537, CVE-2025-59538, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61732, CVE-2025-68121, CVE-2026-1229, CVE-2026-25934, ghsa-2v5j-vhc3-9cwm, ghsa-2vgg-9h3w-qbr4, ghsa-2x5j-vhc8-9cwm, ghsa-2xsj-vh29-9cwm, ghsa-3wgm-2mw2-vh5m, ghsa-4x4m-3c2p-qppc, ghsa-6v2p-p543-phr9, ghsa-92cp-5422-2m47, ghsa-93mq-9ffx-83m2, ghsa-f6x5-jh6r-wrfv, ghsa-hj2p-8wj8-pfq4, ghsa-j5w8-q4qc-rx2x, ghsa-mh63-6h87-95cp, ghsa-mw99-9chc-xw7r, ghsa-r6j8-c6r2-37rr applied in versions: 2.13.9-r0, 2.14.20-r0, 3.0.16-r0, 3.0.19-r0, 3.0.22-r0, 3.0.22-r1, 3.1.4-r0, 3.1.8.-r0, 3.1.9-r4 | 2026-04-01T10:09:04.049698Z | 2026-03-02T11:48:00Z |
| cleanstart-2026-nr51277 | Security fixes for ghsa-f6x5-jh6r-wrfv, ghsa-j5w8-q4qc-rx2x applied in versions: 0.8.4-r0 | 2026-04-01T10:07:57.467759Z | 2026-03-02T11:41:08Z |
| cleanstart-2026-zn32454 | When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers | 2026-02-27T00:50:08.716833Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-zg64300 | Within HostnameError | 2026-02-27T01:05:11.090007Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-yw12690 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T01:01:12.144914Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-xz04425 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-02-27T00:43:38.553069Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-wp10148 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-02-27T00:57:40.231450Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-qc30410 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-02-27T01:01:12.325618Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-ny12442 | node-tar is a full-featured Tar for Node | 2026-02-27T00:41:38.733387Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-ls98939 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T01:04:10.463954Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-jy06700 | vulnerability has been identified in Node | 2026-02-27T01:09:46.914639Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-id51598 | Cancelling a query (e | 2026-02-27T01:01:11.850782Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-hf45264 | filippo | 2026-02-27T01:03:40.135210Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-ff98917 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T00:51:38.790691Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-er93728 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T00:46:38.846728Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-dz05206 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T01:00:40.158214Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-aj16639 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-02-27T00:53:09.299313Z | 2026-02-26T12:09:56Z |
| cleanstart-2026-ac12204 | go-git is a highly extensible git implementation library written in pure Go | 2026-02-27T00:54:09.647466Z | 2026-02-26T12:09:56Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2017-ALE-004 | Vulnérabilité dans Apache Struts | 2017-03-10T00:00:00.000000 | 2017-05-10T00:00:00.000000 |
| certfr-2017-ale-007 | Vulnérabilité dans Microsoft Office | 2017-04-10T00:00:00.000000 | 2017-04-12T00:00:00.000000 |
| CERTFR-2017-ALE-007 | Vulnérabilité dans Microsoft Office | 2017-04-10T00:00:00.000000 | 2017-04-12T00:00:00.000000 |
| certfr-2017-ale-006 | Multiples vulnérabilités dans SCADA Siemens RUGGEDCOM ROX I | 2017-03-29T00:00:00.000000 | 2017-03-29T00:00:00.000000 |
| CERTFR-2017-ALE-006 | Multiples vulnérabilités dans SCADA Siemens RUGGEDCOM ROX I | 2017-03-29T00:00:00.000000 | 2017-03-29T00:00:00.000000 |
| certfr-2017-ale-003 | Vulnérabilité dans les navigateurs Microsoft | 2017-02-27T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| certfr-2017-ale-002 | Vulnérabilité dans Microsoft Windows | 2017-02-20T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| CERTFR-2017-ALE-003 | Vulnérabilité dans les navigateurs Microsoft | 2017-02-27T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| CERTFR-2017-ALE-002 | Vulnérabilité dans Microsoft Windows | 2017-02-20T00:00:00.000000 | 2017-03-15T00:00:00.000000 |
| certfr-2017-ale-001 | Vulnérabilité dans Cisco WebEx | 2017-01-25T00:00:00.000000 | 2017-01-31T00:00:00.000000 |
| CERTFR-2017-ALE-001 | Vulnérabilité dans Cisco WebEx | 2017-01-25T00:00:00.000000 | 2017-01-31T00:00:00.000000 |
| certfr-2016-ale-009 | Campagne d'attaque contre des routeurs DSL | 2016-12-01T00:00:00.000000 | 2017-01-26T00:00:00.000000 |
| CERTFR-2016-ALE-009 | Campagne d'attaque contre des routeurs DSL | 2016-12-01T00:00:00.000000 | 2017-01-26T00:00:00.000000 |
| certfr-2016-ale-010 | Vulnérabilité dans les routeurs Netgear | 2016-12-13T00:00:00.000000 | 2016-12-26T00:00:00.000000 |
| CERTFR-2016-ALE-010 | Vulnérabilité dans les routeurs Netgear | 2016-12-13T00:00:00.000000 | 2016-12-26T00:00:00.000000 |
| certfr-2016-ale-006 | Campagne de messages électroniques non sollicités de type Zepto/Odin | 2016-09-05T00:00:00.000000 | 2016-11-17T00:00:00.000000 |
| CERTFR-2016-ALE-006 | Campagne de messages électroniques non sollicités de type Zepto/Odin | 2016-09-05T00:00:00.000000 | 2016-11-17T00:00:00.000000 |
| certfr-2016-ale-008 | Vulnérabilité dans Microsoft Windows | 2016-11-02T00:00:00.000000 | 2016-11-09T00:00:00.000000 |
| CERTFR-2016-ALE-008 | Vulnérabilité dans Microsoft Windows | 2016-11-02T00:00:00.000000 | 2016-11-09T00:00:00.000000 |
| certfr-2016-ale-007 | Vulnérabilité dans Cisco IOS, IOS XE et IOS XR | 2016-09-19T00:00:00.000000 | 2016-09-19T00:00:00.000000 |
| CERTFR-2016-ALE-007 | Vulnérabilité dans Cisco IOS, IOS XE et IOS XR | 2016-09-19T00:00:00.000000 | 2016-09-19T00:00:00.000000 |
| certfr-2016-ale-005 | Multiples vulnérabilités dans les pare-feux Cisco | 2016-08-18T00:00:00.000000 | 2016-09-05T00:00:00.000000 |
| CERTFR-2016-ALE-005 | Multiples vulnérabilités dans les pare-feux Cisco | 2016-08-18T00:00:00.000000 | 2016-09-05T00:00:00.000000 |
| certfr-2015-ale-013 | Vulnérabilité dans Joomla! | 2015-12-14T00:00:00.000000 | 2016-08-01T00:00:00.000000 |
| CERTFR-2015-ALE-013 | Vulnérabilité dans Joomla! | 2015-12-14T00:00:00.000000 | 2016-08-01T00:00:00.000000 |
| certfr-2016-ale-004 | Vulnérabilité dans Adobe Flash Player | 2016-06-15T00:00:00.000000 | 2016-06-16T00:00:00.000000 |
| CERTFR-2016-ALE-004 | Vulnérabilité dans Adobe Flash Player | 2016-06-15T00:00:00.000000 | 2016-06-16T00:00:00.000000 |
| certfr-2016-ale-003 | Vulnérabilité dans Adobe Flash Player | 2016-05-11T00:00:00.000000 | 2016-05-12T00:00:00.000000 |
| CERTFR-2016-ALE-003 | Vulnérabilité dans Adobe Flash Player | 2016-05-11T00:00:00.000000 | 2016-05-12T00:00:00.000000 |
| certfr-2015-ale-014 | Vulnérabilité dans Juniper ScreenOS | 2015-12-18T00:00:00.000000 | 2016-04-11T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2026-avi-0156 | Multiples vulnérabilités dans Google Chrome | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0154 | Vulnérabilité dans Traefik | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0160 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0159 | Multiples vulnérabilités dans Keycloak | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0158 | Multiples vulnérabilités dans les produits Apple | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0157 | Multiples vulnérabilités dans les produits Qnap | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0156 | Multiples vulnérabilités dans Google Chrome | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| CERTFR-2026-AVI-0155 | Multiples vulnérabilités dans SPIP | 2026-02-12T00:00:00.000000 | 2026-02-25T00:00:00.000000 |
| CERTFR-2026-AVI-0154 | Vulnérabilité dans Traefik | 2026-02-12T00:00:00.000000 | 2026-02-12T00:00:00.000000 |
| certfr-2026-avi-0153 | Multiples vulnérabilités dans les produits Microsoft | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0152 | Multiples vulnérabilités dans Microsoft Azure | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0151 | Vulnérabilité dans Microsoft .Net | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0150 | Multiples vulnérabilités dans Microsoft Windows | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0149 | Multiples vulnérabilités dans Microsoft Office | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0148 | Multiples vulnérabilités dans les produits Intel | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0147 | Multiples vulnérabilités dans les produits Fortinet | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0146 | Multiples vulnérabilités dans GitLab | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0145 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0143 | Multiples vulnérabilités dans Synology Storage Manager | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| certfr-2026-avi-0142 | Multiples vulnérabilités dans MongoDB | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0153 | Multiples vulnérabilités dans les produits Microsoft | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0152 | Multiples vulnérabilités dans Microsoft Azure | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0151 | Vulnérabilité dans Microsoft .Net | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0150 | Multiples vulnérabilités dans Microsoft Windows | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0149 | Multiples vulnérabilités dans Microsoft Office | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0148 | Multiples vulnérabilités dans les produits Intel | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0147 | Multiples vulnérabilités dans les produits Fortinet | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0146 | Multiples vulnérabilités dans GitLab | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0145 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| CERTFR-2026-AVI-0143 | Multiples vulnérabilités dans Synology Storage Manager | 2026-02-11T00:00:00.000000 | 2026-02-11T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000121 | WordPress Plugin "WP Admin UI Customize" vulnerable to cross-site scripting | 2024-11-26T13:57+09:00 | 2024-11-26T13:57+09:00 |
| jvndb-2024-000106 | Multiple vulnerabilities in AIPHONE IX SYSTEM, IXG SYSTEM, and System Support Software | 2024-10-21T11:58+09:00 | 2024-11-21T11:37+09:00 |
| jvndb-2024-000120 | "Kura Sushi Official App Produced by EPARK" for Android uses a hard-coded cryptographic key | 2024-11-20T13:56+09:00 | 2024-11-20T13:56+09:00 |
| jvndb-2024-000119 | Multiple vulnerabilities in FitNesse | 2024-11-15T13:37+09:00 | 2024-11-20T11:18+09:00 |
| jvndb-2024-012941 | Multiple vulnerabilities in Rakuten Turbo 5G | 2024-11-19T10:41+09:00 | 2024-11-19T10:41+09:00 |
| jvndb-2024-000118 | WordPress Plugin "VK All in One Expansion Unit" vulnerable to cross-site scripting | 2024-11-13T13:50+09:00 | 2024-11-13T13:50+09:00 |
| jvndb-2024-009481 | Insecure initial password configuration issue in SEIKO EPSON Web Config | 2024-10-01T14:14+09:00 | 2024-11-12T10:25+09:00 |
| jvndb-2024-000109 | baserCMS plugin "BurgerEditor" vulnerable to directory listing | 2024-10-10T14:57+09:00 | 2024-11-06T14:45+09:00 |
| jvndb-2024-012017 | Trend Micro Deep Security 20 Agent for Windows vulnerable to improper access control | 2024-11-06T11:00+09:00 | 2024-11-06T11:00+09:00 |
| jvndb-2024-011833 | Incorrect authorization vulnerability in OMRON Sysmac Studio | 2024-11-05T15:29+09:00 | 2024-11-05T15:29+09:00 |
| jvndb-2024-011747 | Command injection vulnerability in Trend Micro Cloud Edge | 2024-11-01T14:28+09:00 | 2024-11-01T14:28+09:00 |
| jvndb-2024-011744 | REST-APIs unintentionally enabled in Century Systems FutureNet NXR series routers | 2024-11-01T13:49+09:00 | 2024-11-01T13:49+09:00 |
| jvndb-2024-000116 | Hikvision network camera security enhancement to prevent cleartext transmission of Dynamic DNS credentials | 2024-10-30T15:07+09:00 | 2024-10-30T15:07+09:00 |
| jvndb-2024-011256 | Multiple vulnerabilities in Sharp and Toshiba Tec MFPs | 2024-10-28T17:33+09:00 | 2024-10-28T17:33+09:00 |
| jvndb-2024-000115 | Chatwork Desktop Application (Windows) uses a potentially dangerous function | 2024-10-28T14:29+09:00 | 2024-10-28T14:29+09:00 |
| jvndb-2024-000112 | MUSASI version 3 performing authentication on client-side | 2024-10-18T14:40+09:00 | 2024-10-25T16:55+09:00 |
| jvndb-2024-000113 | N-LINE vulnerable to HTML injection | 2024-10-18T14:48+09:00 | 2024-10-25T16:48+09:00 |
| jvndb-2024-004623 | Multiple products from Check Point Software Technologies vulnerable to information disclosure | 2024-07-29T10:23+09:00 | 2024-10-24T16:37+09:00 |
| jvndb-2024-000111 | SHIRASAGI vulnerable to path traversal | 2024-10-16T14:12+09:00 | 2024-10-23T17:35+09:00 |
| jvndb-2024-010802 | Multiple SQL injection vulnerabilities in Trend Micro Deep Discovery Inspector | 2024-10-22T13:02+09:00 | 2024-10-22T13:02+09:00 |
| jvndb-2024-000102 | Multiple NTT EAST Home GateWay/Hikari Denwa routers fail to restrict access permissions | 2024-09-24T16:00+09:00 | 2024-10-18T11:02+09:00 |
| jvndb-2024-000110 | Multiple vulnerabilities in Exment | 2024-10-11T14:13+09:00 | 2024-10-11T14:13+09:00 |
| jvndb-2024-000104 | MF Teacher Performance Management System vulnerable to cross-site scripting | 2024-09-27T15:00+09:00 | 2024-10-10T11:14+09:00 |
| jvndb-2024-009667 | Multiple vulnerabilities in JTEKT ELECTRONICS Kostac PLC Programming Software | 2024-10-03T13:42+09:00 | 2024-10-03T13:42+09:00 |
| jvndb-2024-000108 | Apache Tomcat improper handling of TLS handshake process data | 2024-10-01T17:51+09:00 | 2024-10-01T17:51+09:00 |
| jvndb-2024-009498 | Vulnerability in Cosminexus | 2024-10-01T16:01+09:00 | 2024-10-01T16:01+09:00 |
| jvndb-2024-000107 | RevoWorks Cloud vulnerable to unintended process execution | 2024-09-30T15:17+09:00 | 2024-09-30T15:17+09:00 |
| jvndb-2024-003932 | File Permissions Vulnerability in Hitachi Ops Center Common Services | 2024-09-30T14:15+09:00 | 2024-09-30T14:15+09:00 |
| jvndb-2024-000105 | Multiple vulnerabilities in Smart-tab | 2024-09-30T14:14+09:00 | 2024-09-30T14:14+09:00 |
| jvndb-2024-009396 | SNMP service is enabled by default in Sharp NEC Display Solutions projectors | 2024-09-30T12:46+09:00 | 2024-09-30T12:46+09:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-14385 | WordPress插件Astra Bulk Edit跨站脚本漏洞 | 2026-03-19 | 2026-03-20 |
| cnvd-2026-14384 | WordPress插件Active Products Tables for WooCommerce跨站脚本漏洞 | 2026-03-19 | 2026-03-20 |
| cnvd-2026-14383 | WordPress插件Aardvark跨站脚本漏洞 | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14380 | WordPress插件Aardvark跨站脚本漏洞 | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14374 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14374) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14367 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14367) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14354 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14354) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14349 | Smoothwall Express跨站脚本漏洞( CNVD-2026-14349) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14345 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14345) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14338 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14338) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14290 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14290) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14289 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14289) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14288 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14288) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14287 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14287) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14286 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14286) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14285 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14285) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14284 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14284) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14283 | Smoothwall Express跨站脚本漏洞(CNVD-2026-14283) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14282 | Smoothwall Express跨站脚本漏洞 | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14281 | Smoothwall Express proxy.cgi端点跨站脚本漏洞 | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14280 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14280) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14279 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14279) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14278 | 多款Apple产品安全绕过漏洞 | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14277 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14277) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-14276 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14276) | 2026-03-02 | 2026-03-20 |
| cnvd-2026-11482 | 上海百胜软件股份有限公司E3全渠道中台存在信息泄露漏洞 | 2026-02-03 | 2026-03-20 |
| cnvd-2026-11388 | 用友网络科技股份有限公司U8 Cloud存在SQL注入漏洞(CNVD-C-2026-69427) | 2026-02-03 | 2026-03-20 |
| cnvd-2026-11387 | 用友网络科技股份有限公司U8 Cloud存在SQL注入漏洞(CNVD-C-2026-69425) | 2026-02-03 | 2026-03-20 |
| cnvd-2026-11363 | 杭州飞致云信息科技有限公司SQLBot存在SQL注入漏洞 | 2026-02-03 | 2026-03-20 |
| cnvd-2026-14598 | Google Chrome Web Speech越界读漏洞 | 2026-03-17 | 2026-03-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2025-13477 | Уязвимость функции build_sit_entries операционной системы Linux, позволяющая нарушителю в… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13475 | Уязвимость функции jffs2_link_node_ref операционной системы Linux, позволяющая нарушителю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13471 | Уязвимость функции qlen_notify() компонента sched ядра операционных систем Linux, позволя… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13467 | Уязвимость функции uart_register_driver ядра операционной системы Linux, позволяющая нару… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13466 | Уязвимость функции load_global_roots_objectid ядра операционной системы Linux, позволяюща… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13465 | Уязвимость функции wcd9335_parse_dt ядра операционной системы Linux, позволяющая нарушите… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13463 | Уязвимость функции jffs2_prealloc_raw_node_refs ядра операционной системы Linux, позволяю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13459 | Уязвимость компонента net ядра операционной системы Linux, позволяющая нарушителю вызвать… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13456 | Уязвимость функции aoedev_downdev ядра операционной системы Linux, позволяющая нарушителю… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13454 | Уязвимость функции adxl_put ядра операционной системы Linux, позволяющая нарушителю оказ… | 28.10.2025 | 16.02.2026 |
| bdu:2025-13449 | Уязвимость функции smc_ib_is_sg_need_sync() ядра операционной системы Linux, позволяющая … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13446 | Уязвимость функции tee_shm_put() ядра операционной системы Linux, позволяющая нарушителю … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13413 | Уязвимость функции setupLookaside() системы управления базами данных SQLite, позволяющая … | 28.10.2025 | 16.02.2026 |
| bdu:2025-13243 | Уязвимость функции _bfd_elf_parse_eh_frame() программного средства разработки GNU Binutil… | 22.10.2025 | 16.02.2026 |
| bdu:2025-13169 | Уязвимость серверного программного обеспечения HAProxy, связанная с алгоритмической сложн… | 21.10.2025 | 16.02.2026 |
| bdu:2025-13037 | Уязвимость реализации сервера разрешения имён WINS пакета программ сетевого взаимодействи… | 17.10.2025 | 16.02.2026 |
| bdu:2025-12988 | Уязвимость функции recvmsg() ядра операционной системы Linux, позволяющая нарушителю вызв… | 16.10.2025 | 16.02.2026 |
| bdu:2025-12912 | Уязвимость файлового архиватора 7-Zip, связанная с неверным определением символических сс… | 15.10.2025 | 16.02.2026 |
| bdu:2025-12910 | Уязвимость файлового архиватора 7-Zip, связанная с неверным определением символических сс… | 15.10.2025 | 16.02.2026 |
| bdu:2025-12887 | Уязвимость компонента HTTP Client API криптографической библиотеки OpenSSL, позволяющая н… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12885 | Уязвимость компонента FIPS Module криптографической библиотеки OpenSSL, позволяющая наруш… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12884 | Уязвимость компонента ssh средства криптографической защиты OpenSSH, позволяющая нарушите… | 14.10.2025 | 16.02.2026 |
| bdu:2025-12705 | Уязвимость функции l2cap_connect() модуля net/bluetooth/l2cap_core.c ядра операционной си… | 10.10.2025 | 16.02.2026 |
| bdu:2025-12599 | Уязвимость утилиты командной строки cURL, связанная с чтением данных за границами буфера … | 08.10.2025 | 16.02.2026 |
| bdu:2025-12566 | Уязвимость компонента ProxyCommand средства криптографической защиты OpenSSH, позволяющая… | 08.10.2025 | 16.02.2026 |
| bdu:2025-12556 | Уязвимость функции tls_rx_msg_size() компонента tls ядра операционной системы Linux, позв… | 07.10.2025 | 16.02.2026 |
| bdu:2025-12484 | Уязвимость компонента t2.c библиотеки для кодирования и декодирования изображений OpenJPE… | 06.10.2025 | 16.02.2026 |
| bdu:2025-12482 | Уязвимость функции pci_bus_release_domain_nr() ядра операционной системы Linux, позволяющ… | 06.10.2025 | 16.02.2026 |
| bdu:2025-12470 | Уязвимость компонента tiffcmp библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в … | 06.10.2025 | 16.02.2026 |
| bdu:2025-12374 | Уязвимость функций urllib.parse.urlsplit() и urlparse() интерпретатора языка программиров… | 29.09.2025 | 16.02.2026 |
| ID | Description | Updated |
|---|---|---|
| var-201804-1225 | An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… | 2024-07-23T21:48:34.131000Z |
| var-200906-0603 | Apache Tomcat 4.1.0 through 4.1.39, 5.5.0 through 5.5.27, 6.0.0 through 6.0.18, and possi… | 2024-07-23T21:48:33.753000Z |
| var-202204-0596 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle … | 2024-07-23T21:48:32.252000Z |
| var-202109-1789 | When curl >= 7.20.0 and <= 7.78.0 connects to an IMAP or POP3 server to retrieve data usi… | 2024-07-23T21:48:32.869000Z |
| var-200102-0075 | IPSwitch IMail 6.0.5 allows remote attackers to cause a denial of service using the SMTP … | 2024-07-23T21:48:08.812000Z |
| var-201211-0367 | Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on … | 2024-07-23T21:48:07.636000Z |
| var-201108-0285 | Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allow… | 2024-07-23T21:47:36.928000Z |
| var-200505-0193 | Buffer overflow in the Netinfo Setup Tool (NeST) allows local users to execute arbitrary … | 2024-07-23T21:47:36.724000Z |
| var-202110-1705 | The Snappy frame decoder function doesn't restrict the chunk length which may lead to exc… | 2024-07-23T21:46:59.236000Z |
| var-201506-0265 | Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x… | 2024-07-23T21:46:59.847000Z |
| var-202203-0111 | A use after free issue was addressed with improved memory management. This issue is fixed… | 2024-07-23T21:46:58.879000Z |
| var-201201-0170 | Double free vulnerability in OpenSSL 0.9.8 before 0.9.8s, when X509_V_FLAG_POLICY_CHECK i… | 2024-07-23T21:46:58.960000Z |
| var-201611-0348 | named in ISC BIND 9.x before 9.9.9-P4, 9.10.x before 9.10.4-P4, and 9.11.x before 9.11.0-… | 2024-07-23T21:46:27.318000Z |
| var-200609-1376 | The Security Framework in Apple Mac OS X 10.3.x up to 10.3.9 does not properly prioritize… | 2024-07-23T21:46:26.250000Z |
| var-201903-0441 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T21:46:20.783000Z |
| var-202210-1526 | The issue was addressed with improved UI handling. This issue is fixed in tvOS 16.1, macO… | 2024-07-23T21:46:13.464000Z |
| var-201606-0135 | The XML parser in Expat does not use sufficient entropy for hash initialization, which al… | 2024-07-23T21:46:12.300000Z |
| var-201210-0053 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2024-07-23T21:46:11.539000Z |
| var-201605-0464 | Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlPars… | 2024-07-23T21:45:39.491000Z |
| var-201006-1131 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4… | 2024-07-23T21:45:38.565000Z |
| var-200804-0039 | Integer overflow in the PCRE regular expression compiler (JavaScriptCore/pcre/pcre_compil… | 2024-07-23T21:45:07.043000Z |
| var-201204-0084 | Use-after-free vulnerability in the HTMLMediaElement implementation in Google Chrome befo… | 2024-07-23T21:45:06.885000Z |
| var-200102-0028 | The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log… | 2024-07-23T21:45:05.204000Z |
| var-201504-0060 | The mod_dav_svn server in Subversion 1.5.0 through 1.7.19 and 1.8.0 through 1.8.11 allows… | 2024-07-23T21:45:04.448000Z |
| var-202203-0043 | A flaw was found in the way the "flags" member of the new pipe buffer structure was lacki… | 2024-07-23T21:45:03.589000Z |
| var-201111-0222 | FreeType in CoreGraphics in Apple iOS before 5.0.1 allows remote attackers to execute arb… | 2024-07-23T21:45:03.152000Z |
| var-201904-0981 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow … | 2024-07-23T21:45:01.742000Z |
| var-201808-1004 | Bluetooth firmware or operating system software drivers in macOS versions before 10.13, H… | 2024-07-23T21:45:01.058000Z |
| var-200512-0633 | passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 al… | 2024-07-23T21:45:01.566000Z |
| var-202208-2263 | When curl is used to retrieve and parse cookies from a HTTP(S) server, itaccepts cookies … | 2024-07-23T21:44:51.339000Z |