Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-47851 |
9.3 (4.0)
9.8 (3.1)
|
Mini Mouse 9.2.0 - Remote Code Execution |
Yodinfo |
Mini Mouse |
2026-01-21T17:27:36.666Z | 2026-01-22T15:42:13.487Z |
| CVE-2023-3576 |
5.5 (3.1)
|
Libtiff: memory leak in tiffcrop.c |
Red Hat |
Red Hat Enterprise Linux 9 |
2023-10-04T18:02:23.926Z | 2026-01-22T15:42:09.746Z |
| CVE-2025-70644 |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain … |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T15:40:00.719Z |
| CVE-2025-70646 |
7.5 (3.1)
|
Tenda AX1803 v1.0.0.1 was discovered to contain a… |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T15:36:16.326Z |
| CVE-2026-23991 |
5.9 (3.1)
|
go-tuf affected by client DoS via malformed server response |
theupdateframework |
go-tuf |
2026-01-22T02:16:37.294Z | 2026-01-22T15:35:31.770Z |
| CVE-2026-1102 |
5.3 (3.1)
|
Allocation of Resources Without Limits or Throttling i… |
GitLab |
GitLab |
2026-01-22T13:33:53.530Z | 2026-01-22T15:29:45.284Z |
| CVE-2025-13927 |
7.5 (3.1)
|
Allocation of Resources Without Limits or Throttling i… |
GitLab |
GitLab |
2026-01-22T13:34:13.359Z | 2026-01-22T15:27:56.204Z |
| CVE-2025-13928 |
7.5 (3.1)
|
Incorrect Authorization in GitLab |
GitLab |
GitLab |
2026-01-22T13:34:18.349Z | 2026-01-22T15:26:44.128Z |
| CVE-2026-23992 |
5.9 (3.1)
|
go-tuf improperly validates the configured threshold f… |
theupdateframework |
go-tuf |
2026-01-22T02:20:06.845Z | 2026-01-22T15:21:21.301Z |
| CVE-2026-0920 |
9.8 (3.1)
|
LA-Studio Element Kit for Elementor <= 1.5.6.3 - Unaut… |
choijun |
LA-Studio Element Kit for Elementor |
2026-01-22T06:47:19.614Z | 2026-01-22T15:20:27.030Z |
| CVE-2021-47852 |
8.5 (4.0)
8.8 (3.1)
|
Rockstar Service - Insecure File Permissions |
Rockstar Games |
Rockstar Games Launcher |
2026-01-21T17:27:37.263Z | 2026-01-22T15:19:21.783Z |
| CVE-2021-47854 |
8.7 (4.0)
9.8 (3.1)
|
DD-WRT 45723 - UPNP Buffer Overflow |
embeDD GmbH |
DD-WRT |
2026-01-21T17:27:38.228Z | 2026-01-22T15:11:53.533Z |
| CVE-2026-24332 |
4.3 (3.1)
|
Discord through 2026-01-16 allows gathering infor… |
Discord |
WebSocket API service |
2026-01-22T08:10:44.462Z | 2026-01-22T15:11:05.705Z |
| CVE-2026-1329 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AX1803 WifiGuestSet fromGetWifiGuestBasic stack-… |
Tenda |
AX1803 |
2026-01-22T14:32:18.996Z | 2026-01-22T15:08:03.723Z |
| CVE-2025-15523 |
4.8 (4.0)
|
TCC Bypass via Inherited Permissions in Bundled Interp… |
Inkscape |
Inkscape |
2026-01-22T14:45:26.404Z | 2026-01-22T15:05:37.135Z |
| CVE-2026-1330 |
8.7 (4.0)
7.5 (3.1)
|
HAMASTAR Technology|MeetingHub - Arbitrary File Read |
HAMASTAR Technology |
MeetingHub |
2026-01-22T08:29:25.677Z | 2026-01-22T15:04:55.209Z |
| CVE-2026-1331 |
9.3 (4.0)
9.8 (3.1)
|
AMASTAR Technology|MeetingHub - Arbitrary File Upload |
AMASTAR Technology |
MeetingHub |
2026-01-22T08:57:22.920Z | 2026-01-22T15:01:37.784Z |
| CVE-2025-69766 |
9.8 (3.1)
|
Tenda AX3 firmware v16.03.12.11 contains a stack-… |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T14:59:23.499Z |
| CVE-2021-47855 |
5.1 (4.0)
7.2 (3.1)
|
Openlitespeed 1.7.9 - 'Notes' Stored Cross-Site Scripting |
LiteSpeed Technologies |
OpenLiteSpeed |
2026-01-21T17:27:38.854Z | 2026-01-22T14:58:45.361Z |
| CVE-2025-70648 |
7.5 (3.1)
|
Tenda AX1803 v1.0.0.1 was discovered to contain a… |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T14:48:54.824Z |
| CVE-2026-23736 |
7.3 (3.1)
|
seroval Affected by Prototype Pollution via JSON Deser… |
lxsmnsyc |
seroval |
2026-01-21T23:01:10.114Z | 2026-01-22T14:45:53.950Z |
| CVE-2026-1036 |
5.3 (3.1)
|
Photo Gallery by 10Web – Mobile-Friendly Image Gallery… |
10web |
Photo Gallery by 10Web – Mobile-Friendly Image Gallery |
2026-01-21T23:23:27.600Z | 2026-01-22T14:45:03.975Z |
| CVE-2025-66959 |
7.5 (3.1)
|
An issue in ollama v.0.12.10 allows a remote atta… |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T14:41:22.418Z |
| CVE-2025-27377 |
5.3 (3.1)
|
Missing Validation of Self-Signed Certificates in Alti… |
Altium |
Altium Designer |
2026-01-22T00:16:04.634Z | 2026-01-22T14:41:16.446Z |
| CVE-2025-4763 |
5.5 (3.1)
|
XSS in Aida Computer's Hotspot |
Aida Computer Information Technology Inc. |
Hotel Guest Hotspot |
2026-01-22T09:10:16.989Z | 2026-01-22T14:37:21.871Z |
| CVE-2025-66960 |
7.5 (3.1)
|
An issue in ollama v.0.12.10 allows a remote atta… |
n/a |
n/a |
2026-01-21T00:00:00.000Z | 2026-01-22T14:37:01.250Z |
| CVE-2026-1327 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Totolink NR1800X POST Request cstecgi.cgi setTracerout… |
Totolink |
NR1800X |
2026-01-22T14:02:10.294Z | 2026-01-22T14:31:46.097Z |
| CVE-2025-4764 |
8 (3.1)
|
SQLi in Aida Computer's Hotspot |
Aida Computer Information Technology Inc. |
Hotel Guest Hotspot |
2026-01-22T09:13:49.308Z | 2026-01-22T14:31:08.880Z |
| CVE-2024-12178 |
7.8 (3.1)
|
DWFX File Parsing Vulnerabilities in Autodesk Naviswor… |
Autodesk |
Navisworks Freedom |
2024-12-17T15:16:31.988Z | 2026-01-22T14:21:21.091Z |
| CVE-2024-23147 |
7.8 (3.1)
|
Multiple Vulnerabilities in the Autodesk AutoCAD Deskt… |
Autodesk |
AutoCAD |
2024-06-25T02:32:13.779Z | 2026-01-22T14:20:18.924Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67274 |
7.5 (3.1)
|
An issue in continuous.software aangine v.2025.2 … |
n/a |
n/a |
2026-01-26T00:00:00.000Z | 2026-01-26T17:01:06.328Z |
| CVE-2025-57785 |
6.5 (3.1)
|
Double free in XSLT in 'show_index' |
Hiawatha |
Hiawatha Web server |
2026-01-26T17:46:09.707Z | 2026-01-26T20:54:04.714Z |
| CVE-2025-57784 |
4 (3.1)
|
Tomahawk authentication timing attack due to usage of … |
Hiawatha |
Hiawatha Web server |
2026-01-26T17:47:19.382Z | 2026-01-26T20:52:06.748Z |
| CVE-2025-57783 |
5.3 (3.1)
|
Improper header parsing may lead to request smuggling |
Hiawatha |
Hiawatha Web server |
2026-01-26T17:45:36.947Z | 2026-01-26T20:55:04.568Z |
| CVE-2025-41728 |
5.3 (3.1)
|
Beckhoff: Information leak via Beckhoff Device Manager |
Beckhoff Automation |
Beckhoff.Device.Manager.XAR |
2026-01-27T11:37:55.689Z | 2026-01-27T13:49:51.297Z |
| CVE-2025-41727 |
7.8 (3.1)
|
Beckhoff: Performing privileged operations and gainin… |
Beckhoff Automation |
Beckhoff.Device.Manager.XAR |
2026-01-27T11:36:54.619Z | 2026-01-27T13:53:55.876Z |
| CVE-2025-41726 |
8.8 (3.1)
|
Beckhoff: Arbitrary code execution within privileged p… |
Beckhoff Automation |
Beckhoff.Device.Manager.XAR |
2026-01-27T11:35:37.391Z | 2026-01-27T14:08:37.385Z |
| CVE-2025-30248 |
8.9 (4.0)
|
DLL hijacking in the WD Discovery Installer in We… |
Western Digital |
WD Discovery |
2026-01-26T22:47:58.624Z | 2026-01-27T21:33:27.911Z |
| CVE-2025-14971 |
5.3 (3.1)
|
Link Invoice Payment for WooCommerce <= 2.8.0 - Missin… |
linknacional |
Link Invoice Payment for WooCommerce |
2026-01-27T06:44:13.511Z | 2026-01-27T20:49:11.856Z |
| CVE-2025-14756 |
8.5 (4.0)
|
Authenticated Command Injection Vulnerability in Arche… |
TP-Link Systems Inc. |
Archer MR600 v5.0 |
2026-01-26T18:17:09.220Z | 2026-01-27T04:55:38.502Z |
| CVE-2025-14525 |
6.4 (3.1)
|
Kubevirt: kubevirt: vm administration denial of servic… |
Red Hat |
Red Hat OpenShift Virtualization 4 |
2026-01-26T19:36:43.721Z | 2026-01-26T20:59:41.777Z |
| CVE-2025-14459 |
8.5 (3.1)
|
Virt-cdi-controller: unauthorized pvc cloning via data… |
Red Hat |
RHEL-9-CNV-4.19 |
2026-01-26T19:36:29.709Z | 2026-01-26T21:01:36.393Z |
| CVE-2025-12387 |
6.9 (4.0)
|
Denial of Service in Pix-Link LV-WR21Q |
Pix-Link |
LV-WR21Q |
2026-01-27T11:57:55.609Z | 2026-01-27T13:37:05.698Z |
| CVE-2025-12386 |
6.9 (4.0)
|
Missing Authentication for Critical Endpoint in Pix-Li… |
Pix-Link |
LV-WR21Q |
2026-01-27T11:57:50.084Z | 2026-01-27T13:37:44.492Z |
| CVE-2025-11687 |
6.1 (3.1)
|
Gi-docgen: reflected dom xss in gi-docgen |
|
|
2026-01-26T19:36:28.947Z | 2026-01-26T21:02:29.343Z |
| CVE-2020-36960 |
5.1 (4.0)
6.4 (3.1)
|
Forma LMS 2.3 - 'First & Last Name' Stored Cross-Site … |
Formalms |
Forma LMS |
2026-01-26T17:43:22.174Z | 2026-01-26T20:55:45.410Z |
| CVE-2020-36959 |
8.5 (4.0)
7.8 (3.1)
|
IDT PC Audio 1.0.6499.0 - 'STacSV' Unquoted Service Path |
IDT |
IDT PC Audio |
2026-01-26T17:43:15.414Z | 2026-01-26T20:56:20.051Z |
| CVE-2020-36958 |
8.5 (4.0)
7.8 (3.1)
|
Kite 1.2020.1119.0 - 'KiteService' Unquoted Service Path |
Kite |
Kite |
2026-01-26T17:43:08.629Z | 2026-01-26T20:56:49.664Z |
| CVE-2020-36957 |
8.5 (4.0)
7.8 (3.1)
|
PDF Complete 3.5.310.2002 - 'pdfsvc.exe' Unquoted Serv… |
Pdf-Complete |
PDF Complete |
2026-01-26T17:43:02.175Z | 2026-01-26T20:59:14.719Z |
| CVE-2020-36956 |
5.1 (4.0)
6.4 (3.1)
|
Openfire 4.6.0 - 'path' Stored XSS |
igniterealtime |
Openfire |
2026-01-26T17:42:53.294Z | 2026-01-26T20:59:44.016Z |
| CVE-2020-36955 |
5.1 (4.0)
6.4 (3.1)
|
Grav CMS 1.6.30 Admin Plugin 1.9.18 - 'Page Title' Per… |
Getgrav |
Grav CMS Admin Plugin |
2026-01-26T17:42:45.496Z | 2026-01-26T21:09:56.648Z |
| CVE-2020-36954 |
5.1 (4.0)
6.4 (3.1)
|
Xeroneit Library Management System 3.1 - "Add Book Cat… |
Xeroneit |
Xeroneit Library Management System |
2026-01-26T17:42:35.992Z | 2026-01-26T21:09:31.203Z |
| CVE-2020-36953 |
8.5 (4.0)
7.8 (3.1)
|
MiniTool ShadowMaker 3.2 - 'MTAgentService' Unquoted S… |
Minitool |
MiniTool ShadowMaker |
2026-01-26T17:42:27.907Z | 2026-01-26T21:08:59.875Z |
| CVE-2020-36952 |
8.5 (4.0)
7.8 (3.1)
|
IObit Uninstaller 10 Pro - Unquoted Service Path |
Iobit |
IObit Uninstaller |
2026-01-26T16:00:24.625Z | 2026-01-26T17:00:17.436Z |
| CVE-2025-62056 |
9.9 (3.1)
|
WordPress News Event theme <= 1.0.1 - Arbitrary File U… |
blazethemes |
News Event |
2026-01-22T16:51:46.647Z | 2026-01-27T15:28:24.124Z |
| CVE-2023-29240 |
5.4 (3.1)
|
BIG-IQ iControl REST Vulnerability |
F5 |
BIG-IQ |
2023-05-03T14:35:03.436Z | 2025-09-18T19:48:26.259Z |
| CVE-2025-23419 |
4.3 (3.1)
5.3 (4.0)
|
TLS Session Resumption Vulnerability |
F5 |
NGINX Open Source |
2025-02-05T17:31:07.316Z | 2026-01-23T20:09:28.384Z |
| CVE-2025-54755 |
4.9 (3.1)
6.9 (4.0)
|
BIG-IP Configuration utility vulnerability |
F5 |
BIG-IP |
2025-10-15T13:55:55.936Z | 2026-01-23T20:10:19.332Z |
| CVE-2026-0696 |
6.5 (3.1)
|
Session Cookies Missing HttpOnly Attribute |
ConnectWise |
PSA |
2026-01-16T13:34:49.042Z | 2026-01-27T12:14:05.158Z |
| CVE-2026-0695 |
8.7 (3.1)
|
Stored XSS in Time Entry Audit Trail |
ConnectWise |
PSA |
2026-01-16T13:34:42.833Z | 2026-01-27T12:14:38.371Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-57785 | A Double Free in XSLT `show_index` has been identified in Hiawatha webserver version 11.7 which all… | 2026-01-26T18:16:27.570 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-57784 | Tomahawk auth timing attack due to usage of `strcmp` has been identified in Hiawatha webserver vers… | 2026-01-26T18:16:27.467 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-57783 | Improper header parsing may lead to request smuggling has been identified in Hiawatha webserver ver… | 2026-01-26T18:16:27.350 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-41728 | A low privileged remote attacker may be able to disclose confidential information from the memory o… | 2026-01-27T12:15:57.717 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-41727 | A local low privileged attacker can bypass the authentication of the Device Manager user interface,… | 2026-01-27T12:15:57.573 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-41726 | A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to t… | 2026-01-27T12:15:57.400 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-30248 | DLL hijacking in the WD Discovery Installer in Western Digital WD Discovery 5.2.730 on Windows allo… | 2026-01-26T23:15:54.373 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-14971 | The Link Invoice Payment for WooCommerce plugin for WordPress is vulnerable to unauthorized modific… | 2026-01-27T07:16:05.880 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-14756 | Command injection vulnerability was found in the admin interface component of TP-Link Archer MR600 … | 2026-01-26T19:16:08.573 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-14525 | A flaw was found in kubevirt. A user within a virtual machine (VM), if the guest agent is active, c… | 2026-01-26T20:16:08.163 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-14459 | A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to… | 2026-01-26T20:16:07.983 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-12387 | A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigge… | 2026-01-27T12:15:57.243 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-12386 | Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo.… | 2026-01-27T12:15:56.473 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-11687 | A flaw was found in the gi-docgen. This vulnerability allows arbitrary JavaScript execution in the … | 2026-01-26T20:16:07.817 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36960 | Forma LMS 2.3 contains a stored cross-site scripting vulnerability that allows attackers to inject … | 2026-01-26T18:16:27.020 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36959 | IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to … | 2026-01-26T18:16:26.840 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36958 | Kite 1.2020.1119.0 contains an unquoted service path vulnerability in the KiteService Windows servi… | 2026-01-26T18:16:26.663 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36957 | PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service… | 2026-01-26T18:16:26.490 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36956 | Openfire 4.6.0 contains a stored cross-site scripting vulnerability in the nodejs plugin that allow… | 2026-01-26T18:16:26.313 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36955 | Grav CMS 1.6.30 with Admin Plugin 1.9.18 contains a persistent cross-site scripting vulnerability t… | 2026-01-26T18:16:26.137 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36954 | Xeroneit Library Management System 3.1 contains a stored cross-site scripting vulnerability in the … | 2026-01-26T18:16:25.957 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36953 | MiniTool ShadowMaker 3.2 contains an unquoted service path vulnerability in the MTAgentService that… | 2026-01-26T18:16:25.580 | 2026-01-27T14:59:34.073 |
| fkie_cve-2020-36952 | IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to… | 2026-01-26T16:15:54.690 | 2026-01-27T14:59:34.073 |
| fkie_cve-2025-62056 | Unrestricted Upload of File with Dangerous Type vulnerability in blazethemes News Event news-event.… | 2026-01-22T17:15:58.757 | 2026-01-27T14:15:55.037 |
| fkie_cve-2023-29240 | An authenticated attacker granted a Viewer or Auditor role on a BIG-IQ can upload arbitrary files u… | 2023-05-03T15:15:13.423 | 2026-01-27T13:50:53.093 |
| fkie_cve-2025-23419 | When multiple server blocks are configured to share the same IP address and port, an attacker can u… | 2025-02-05T18:15:33.347 | 2026-01-27T13:30:41.190 |
| fkie_cve-2025-54755 | A directory traversal vulnerability exists in TMUI that allows a highly privileged authenticated at… | 2025-10-15T14:15:49.573 | 2026-01-27T13:30:32.340 |
| fkie_cve-2026-0696 | In ConnectWise PSA versions older than 2026.1, certain session cookies were not set with the HttpOn… | 2026-01-16T14:15:54.940 | 2026-01-27T13:15:54.403 |
| fkie_cve-2026-0695 | In ConnectWise PSA versions older than 2026.1, Time Entry notes stored in the Time Entry Audit Trai… | 2026-01-16T14:15:54.793 | 2026-01-27T13:15:54.260 |
| fkie_cve-2025-59109 | The dormakaba registration units 9002 (PIN Pad Units) have an exposed UART header on the backside. … | 2026-01-26T10:16:08.890 | 2026-01-27T07:16:06.670 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-242j-c957-58gr |
5.3 (3.1)
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The supported … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-jq9g-gj4g-q8w7 |
9.8 (3.1)
|
Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attac… | 2026-01-20T06:30:26Z | 2026-01-21T00:31:41Z |
| ghsa-w2pg-hw7v-f7m9 |
7.5 (3.1)
|
A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` data can cause Node.js to crash … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-q3r6-8php-frm2 |
6.1 (3.1)
|
HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the `ba… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-pm9v-wcw9-xgpv |
2.8 (3.1)
|
A flaw in Node.js's permission model allows a file's access and modification timestamps to be chang… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-ggxc-26fx-987r |
5.9 (3.1)
|
A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-cr56-64wj-q2r7 |
2.7 (3.1)
|
HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-c9rv-m5vg-q72h |
6.1 (3.1)
|
HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the ban… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-9jwr-p39p-hwg2 |
7.1 (3.1)
|
A flaw in Node.js's buffer allocation logic can expose uninitialized memory when allocations are in… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-982f-qxrw-6prp |
6.1 (3.1)
|
HackerOne community member Huynh Pham Thanh Luc (nigh7c0r3) has reported a reflected XSS vulnerabil… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-7xhv-hcmf-4rfv |
5.8 (3.1)
|
A flaw in Node.js's permission model allows Unix Domain Socket (UDS) connections to bypass network … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-52xj-vx8w-46qj |
5.9 (3.1)
|
We have identified a bug in Node.js error handling where "Maximum call stack size exceeded" errors … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-2prx-vw7r-hjgr |
7.1 (3.1)
|
HackerOne community member Jad Ghamloush (0xjad) has reported an authorization bypass vulnerability… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-47vw-q2cv-jhr7 |
6.1 (3.1)
|
Abacre Retail Point of Sale 14.0.0.396 is affected by a stored cross-site scripting (XSS) vulnerabi… | 2026-01-20T18:31:57Z | 2026-01-20T21:31:34Z |
| ghsa-r89r-9rx7-mx5c |
9.3 (4.0)
|
Improper Neutralization of Special Elements used in a Command ('Command Injection') vulnerability i… | 2026-01-13T15:37:05Z | 2026-01-20T21:31:33Z |
| ghsa-4qcj-q7xx-whc4 |
8.0 (3.1)
7.1 (4.0)
|
Command Injection vulnerability in TP-Link WA850RE (httpd modules) allows authenticated adjacent at… | 2025-12-18T18:30:31Z | 2026-01-20T21:31:31Z |
| ghsa-x8ff-m84r-p2gr |
7.8 (3.1)
7.0 (4.0)
|
DLL search path hijacking vulnerability in the UPDF.exe executable for Windows version 1.8.5.0 allo… | 2025-09-10T12:30:20Z | 2026-01-20T21:31:30Z |
| ghsa-w4mq-qvfm-cqjm |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_dsp_rproc: Add… | 2025-10-01T12:30:27Z | 2026-01-20T21:31:30Z |
| ghsa-rx53-49wx-mxjw |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: net/smc: fix one NULL pointer … | 2025-09-22T21:30:18Z | 2026-01-20T21:31:30Z |
| ghsa-rw8m-hvvr-gqpp |
8.1 (3.1)
6.9 (4.0)
|
In the Eclipse OMR compiler component, since release 0.7.0, an optimization enabled for Eclipse Ope… | 2025-12-15T06:31:16Z | 2026-01-20T21:31:30Z |
| ghsa-mwhg-gwrr-ff82 |
7.1 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: edma: Fix memor… | 2025-09-23T06:30:27Z | 2026-01-20T21:31:30Z |
| ghsa-mrpv-wrf5-7wr6 |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix use-after-… | 2025-09-22T21:30:18Z | 2026-01-20T21:31:30Z |
| ghsa-jgc8-85r3-j7pm |
6.3 (3.1)
2.1 (4.0)
|
A weakness has been identified in MiczFlor RPi-Jukebox-RFID up to 2.8.0. Affected by this vulnerabi… | 2025-09-12T21:32:15Z | 2026-01-20T21:31:30Z |
| ghsa-f84f-657f-x94w |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: libceph: fix invalid accesses … | 2025-09-23T06:30:27Z | 2026-01-20T21:31:30Z |
| ghsa-cw3g-mjrp-g48q |
8.2 (3.1)
|
MapTiler Tileserver-php v2.0 is vulnerable to Directory Traversal. The renderTile function within t… | 2025-07-29T18:30:34Z | 2026-01-20T21:31:30Z |
| ghsa-cfcx-rgr2-rqqq |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Fix copy_xstate_to_ua… | 2025-10-01T12:30:27Z | 2026-01-20T21:31:30Z |
| ghsa-c9mq-3m6j-gvhw |
8.8 (3.1)
8.7 (4.0)
|
reNgine 2.2.0 contains a command injection vulnerability in the nmap_cmd parameter of scan engine c… | 2025-12-12T00:30:20Z | 2026-01-20T21:31:30Z |
| ghsa-c684-q9wg-vhh9 |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free … | 2025-09-22T21:30:18Z | 2026-01-20T21:31:30Z |
| ghsa-c3f5-89cx-rxg5 |
7.8 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix double fr… | 2025-09-23T06:30:27Z | 2026-01-20T21:31:30Z |
| ghsa-9xqw-2922-vh7m |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: tee: fix NULL pointer derefere… | 2025-09-22T21:30:18Z | 2026-01-20T21:31:30Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3130 | Hard-coded Credentials in CoolKit eWeLlink app are before 5.4.x on Android and IOS allows… | 2024-04-03T05:02:29.911970Z |
| gsd-2024-3129 | A vulnerability was found in SourceCodester Image Accordion Gallery App 1.0. It has been … | 2024-04-03T05:02:29.947041Z |
| gsd-2024-3128 | ** UNSUPPPORTED WHEN ASSIGNED ** ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which w… | 2024-04-03T05:02:29.953309Z |
| gsd-2024-3127 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.906317Z |
| gsd-2024-3126 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.876234Z |
| gsd-2024-3125 | A vulnerability classified as problematic was found in Zebra ZTC GK420d 1.0. This vulnera… | 2024-04-03T05:02:29.880810Z |
| gsd-2024-3124 | A vulnerability classified as problematic has been found in fridgecow smartalarm 1.8.1 on… | 2024-04-03T05:02:29.963030Z |
| gsd-2024-3123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.951246Z |
| gsd-2024-3122 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.876665Z |
| gsd-2024-3121 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.892472Z |
| gsd-2024-3120 | A stack-buffer overflow vulnerability exists in all versions of sngrep since v1.4.1. The … | 2024-04-03T05:02:29.925057Z |
| gsd-2024-3119 | A buffer overflow vulnerability exists in all versions of sngrep since v0.4.2, due to imp… | 2024-04-03T05:02:29.897560Z |
| gsd-2024-3118 | A vulnerability, which was classified as critical, has been found in Dreamer CMS up to 4.… | 2024-04-03T05:02:29.956962Z |
| gsd-2024-3117 | A vulnerability classified as critical was found in YouDianCMS up to 9.5.12. This vulnera… | 2024-04-03T05:02:29.943316Z |
| gsd-2024-3116 | pgAdmin <= 8.4 is affected by a Remote Code Execution (RCE) vulnerability through the va… | 2024-04-03T05:02:29.948684Z |
| gsd-2024-3115 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.965449Z |
| gsd-2024-3114 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.873358Z |
| gsd-2024-3113 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.898621Z |
| gsd-2024-3112 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.900113Z |
| gsd-2024-3111 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.962624Z |
| gsd-2024-3110 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.875641Z |
| gsd-2024-3109 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.883513Z |
| gsd-2024-3108 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.957880Z |
| gsd-2024-3107 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.958087Z |
| gsd-2024-3106 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.942124Z |
| gsd-2024-3105 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.927265Z |
| gsd-2024-3104 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.885712Z |
| gsd-2024-3103 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.935273Z |
| gsd-2024-3102 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.949971Z |
| gsd-2024-3101 | In mintplex-labs/anything-llm, an improper input validation vulnerability allows attacker… | 2024-04-03T05:02:29.952819Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-192665 | Malicious code in baidu-tester (npm) | 2025-12-19T16:08:18Z | 2025-12-22T21:38:09Z |
| MAL-2025-192664 | Malicious code in asdfgh33 (npm) | 2025-12-19T16:17:02Z | 2025-12-22T21:38:09Z |
| MAL-2025-192663 | Malicious code in ahmed_salem_o (npm) | 2025-12-19T16:15:38Z | 2025-12-22T21:38:09Z |
| MAL-2025-192662 | Malicious code in adeliana-xnetgpt (npm) | 2025-12-19T16:20:59Z | 2025-12-22T21:38:09Z |
| MAL-2025-192661 | Malicious code in adel-xnetgpt (npm) | 2025-12-19T16:20:59Z | 2025-12-22T21:38:09Z |
| MAL-2025-192660 | Malicious code in @sodexo-connect/sap-cdc-client (npm) | 2025-12-19T16:20:43Z | 2025-12-22T21:38:09Z |
| MAL-2025-192621 | Malicious code in azaza (npm) | 2025-12-19T08:40:34Z | 2025-12-22T21:38:09Z |
| MAL-2025-192620 | Malicious code in android_teminator_x (npm) | 2025-12-19T08:25:42Z | 2025-12-22T21:38:09Z |
| MAL-2025-192619 | Malicious code in adk-github (npm) | 2025-12-19T08:38:03Z | 2025-12-22T21:38:09Z |
| MAL-2025-192618 | Malicious code in adk-cli (npm) | 2025-12-19T08:38:03Z | 2025-12-22T21:38:09Z |
| MAL-2025-192617 | Malicious code in @xyuxu/i18never (npm) | 2025-12-19T08:34:43Z | 2025-12-22T21:38:09Z |
| MAL-2025-192616 | Malicious code in @pluxee-design-system/core (npm) | 2025-12-19T08:24:02Z | 2025-12-22T21:38:09Z |
| MAL-2025-192598 | Malicious code in bigmathlib (npm) | 2025-12-16T07:25:20Z | 2025-12-22T21:38:09Z |
| MAL-2025-192585 | Malicious code in betterjsloggin (npm) | 2025-12-16T06:25:18Z | 2025-12-22T21:38:09Z |
| MAL-2025-192570 | Malicious code in @mohamed1687/iut-encrypt (npm) | 2025-12-15T04:50:36Z | 2025-12-22T21:38:09Z |
| MAL-2025-192545 | Malicious code in bfruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:09Z |
| MAL-2025-192544 | Malicious code in afruitmaliciousxmlparser (npm) | 2025-12-12T02:25:26Z | 2025-12-22T21:38:09Z |
| mal-0000-kam193-9d85a36c2c00ecd5 | Malicious code in smtrlib (PyPI) | 2025-12-22T17:15:11Z | 2025-12-22T17:15:11Z |
| MAL-0000-KAM193-9D85A36C2C00ECD5 | Malicious code in smtrlib (PyPI) | 2025-12-22T17:15:11Z | 2025-12-22T17:15:11Z |
| mal-2025-192689 | Malicious code in unizip (PyPI) | 2025-12-22T14:02:40Z | 2025-12-22T14:02:40Z |
| MAL-2025-192689 | Malicious code in unizip (PyPI) | 2025-12-22T14:02:40Z | 2025-12-22T14:02:40Z |
| mal-2025-192683 | Malicious code in ai-cypher (PyPI) | 2025-12-21T01:10:53Z | 2025-12-21T19:36:49Z |
| MAL-2025-192683 | Malicious code in ai-cypher (PyPI) | 2025-12-21T01:10:53Z | 2025-12-21T19:36:49Z |
| mal-2025-192685 | Malicious code in hooktest-fin (PyPI) | 2025-12-21T14:09:21Z | 2025-12-21T14:09:21Z |
| MAL-2025-192685 | Malicious code in hooktest-fin (PyPI) | 2025-12-21T14:09:21Z | 2025-12-21T14:09:21Z |
| mal-0000-kam193-c0aa179cbb808337 | Malicious code in runtimeutils (PyPI) | 2025-12-21T14:03:13Z | 2025-12-21T14:03:30Z |
| MAL-0000-KAM193-C0AA179CBB808337 | Malicious code in runtimeutils (PyPI) | 2025-12-21T14:03:13Z | 2025-12-21T14:03:30Z |
| mal-2025-192684 | Malicious code in colorfulpacket (PyPI) | 2025-12-21T11:09:13Z | 2025-12-21T11:09:13Z |
| MAL-2025-192684 | Malicious code in colorfulpacket (PyPI) | 2025-12-21T11:09:13Z | 2025-12-21T11:09:13Z |
| mal-0000-kam193-5ea3f538083de70d | Malicious code in system-health-check-test-unique (PyPI) | 2025-12-19T20:42:35Z | 2025-12-19T20:55:40Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-2193 | libTIFF: Mehrere Schwachstellen | 2023-08-28T22:00:00.000+00:00 | 2024-10-16T22:00:00.000+00:00 |
| wid-sec-w-2024-3222 | Oracle PeopleSoft: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3221 | Oracle Retail Applications: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3220 | Oracle Siebel CRM: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3219 | Oracle Supply Chain: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3218 | Oracle Systems: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3217 | Oracle Utilities Applications: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3214 | Xerox WorkCentre: Schwachstelle ermöglicht Codeausführung | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3213 | Mozilla Firefox für iOS: Schwachstelle ermöglicht Darstellen falscher Informationen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3209 | Trend Micro Deep Security Agent: Schwachstelle ermöglicht Privilegieneskalation | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3208 | SolarWinds Platform: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3204 | Apache CloudStack: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3203 | Pixel Patchday Oktober 2024: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3202 | SolarWinds Serv-U Managed File Transfer Server: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3200 | Oracle NoSQL Database: Schwachstelle gefährdet Verfügbarkeit | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3199 | Oracle Secure Backup: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3198 | Oracle SQL Developer: Schwachstelle gefährdet Integrität | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3197 | Oracle Commerce: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3196 | Oracle Communications Applications: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3195 | Oracle Communications: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3194 | Oracle E-Business Suite: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3193 | Oracle Enterprise Manager: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3192 | Oracle Financial Services Applications: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3190 | Oracle Hyperion: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3187 | Microsoft Azure Functions: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3185 | Microsoft Dynamics 365: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3184 | Elasticsearch/Kibana: Mehrere Schwachstellen | 2019-07-30T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3167 | Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-10-14T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-1726 | Apple Safari: Mehrere Schwachstellen | 2024-07-29T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-1696 | SolarWinds Platform: Mehrere Schwachstellen | 2024-07-23T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2013:0644 | Red Hat Security Advisory: apache-cxf security update | 2013-03-13T18:45:00+00:00 | 2026-01-28T22:54:20+00:00 |
| rhsa-2013:0642 | Red Hat Security Advisory: tomcat5 security update | 2013-03-12T17:56:00+00:00 | 2026-01-28T22:54:20+00:00 |
| rhsa-2013:0531 | Red Hat Security Advisory: java-1.6.0-sun security update | 2013-02-20T21:40:00+00:00 | 2026-01-28T22:54:20+00:00 |
| rhsa-2013:0641 | Red Hat Security Advisory: tomcat5 security update | 2013-03-12T17:55:00+00:00 | 2026-01-28T22:54:19+00:00 |
| rhsa-2013:0638 | Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1.2 update | 2013-03-12T17:52:00+00:00 | 2026-01-28T22:54:19+00:00 |
| rhsa-2013:0548 | Red Hat Security Advisory: CloudForms Common 1.1.2 update | 2013-02-21T18:56:00+00:00 | 2026-01-28T22:54:19+00:00 |
| rhsa-2013:0623 | Red Hat Security Advisory: tomcat6 security update | 2013-03-11T18:14:00+00:00 | 2026-01-28T22:54:18+00:00 |
| rhsa-2013:0611 | Red Hat Security Advisory: ruby security update | 2013-03-07T18:50:00+00:00 | 2026-01-28T22:54:18+00:00 |
| rhsa-2013:0582 | Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1.1 update | 2013-02-28T18:53:00+00:00 | 2026-01-28T22:54:18+00:00 |
| rhsa-2013:0266 | Red Hat Security Advisory: tomcat6 security update | 2013-02-19T20:31:00+00:00 | 2026-01-28T22:54:18+00:00 |
| rhsa-2013:0544 | Red Hat Security Advisory: Subscription Asset Manager 1.2 update | 2013-02-21T19:04:00+00:00 | 2026-01-28T22:54:17+00:00 |
| rhsa-2013:0533 | Red Hat Security Advisory: JBoss Enterprise SOA Platform 5.3.1 update | 2013-02-20T21:33:00+00:00 | 2026-01-28T22:54:17+00:00 |
| rhsa-2013:0532 | Red Hat Security Advisory: java-1.7.0-oracle security update | 2013-02-20T21:41:00+00:00 | 2026-01-28T22:54:16+00:00 |
| rhsa-2013:0275 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2013-02-20T11:24:00+00:00 | 2026-01-28T22:54:16+00:00 |
| rhsa-2013:0274 | Red Hat Security Advisory: java-1.6.0-openjdk security update | 2013-02-20T11:06:00+00:00 | 2026-01-28T22:54:16+00:00 |
| rhsa-2013:0267 | Red Hat Security Advisory: tomcat7 security update | 2013-02-19T20:30:00+00:00 | 2026-01-28T22:54:16+00:00 |
| rhsa-2013:0273 | Red Hat Security Advisory: java-1.6.0-openjdk security update | 2013-02-20T10:45:00+00:00 | 2026-01-28T22:54:15+00:00 |
| rhsa-2013:0268 | Red Hat Security Advisory: tomcat7 security update | 2013-02-19T20:32:00+00:00 | 2026-01-28T22:54:15+00:00 |
| rhsa-2013:0265 | Red Hat Security Advisory: tomcat6 security update | 2013-02-19T20:29:00+00:00 | 2026-01-28T22:54:15+00:00 |
| rhsa-2013:0235 | Red Hat Security Advisory: jbossweb security update | 2013-02-04T23:36:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0221 | Red Hat Security Advisory: JBoss Enterprise BRMS Platform 5.3.1 update | 2013-01-31T19:31:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0220 | Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1 update | 2013-01-31T19:41:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0207 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 security update | 2013-01-30T20:57:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0206 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 security update | 2013-01-30T20:56:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0193 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update | 2013-01-24T18:31:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0203 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-29T05:00:00+00:00 | 2026-01-28T22:54:13+00:00 |
| rhsa-2013:0202 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-28T23:10:00+00:00 | 2026-01-28T22:54:13+00:00 |
| rhsa-2013:0201 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-28T23:07:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0198 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T19:06:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0197 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T18:52:00+00:00 | 2026-01-28T22:54:11+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20180307-val | Cisco Videoscape AnyRes Live Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ucs | Cisco UCS Director Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-staros1 | Cisco StarOS CLI Command Injection Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-staros | Cisco StarOS CLI Command Injection Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-sm | Cisco Security Manager DesktopServlet Reflected Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-res | Cisco Registered Envelope Service Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-pdcnm | Cisco Prime Data Center Network Manager Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise6 | Cisco Identity Services Engine Command Injection to Underlying Operating System Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise5 | Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise4 | Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise3 | Cisco Identity Services Engine Local Command Injection Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise2 | Cisco Identity Services Engine Authenticated Privilege Escalation Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise1 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-ise | Cisco Identity Services Engine Authenticated CLI Denial of Service Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-dcnm | Cisco Data Center Network Manager Cross-Site Request Forgery Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-cpcp | Cisco Prime Collaboration Provisioning Hard-Coded Password Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180307-550x | Cisco 550X Series Stackable Managed Switches SNMP Denial of Service Vulnerability | 2018-03-07T16:00:00+00:00 | 2018-03-07T16:00:00+00:00 |
| cisco-sa-20180221-ucsd | Cisco UCS Director and Cisco Integrated Management Controller Supervisor Cross-Site Request Forgery Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-psc | Cisco Prime Service Catalog Cross-Site Scripting Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-pcpt1 | Cisco Prime Collaboration Provisioning Tool User Provisioning Tab Cross-Site Scripting Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-pcpt | Cisco Prime Collaboration Provisioning Tool Web Portal Repeated Bad Login Attempts Denial of Service Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-jcf1 | Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-jcf | Cisco Jabber Client Framework for Windows and Mac Cross-Site Scripting Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-dcaf1 | Cisco Data Center Analytics Framework Cross-Site Request Forgery Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-dcaf | Cisco Data Center Analytics Framework Cross-Site Scripting Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-cvp | Cisco Unified Customer Voice Portal Interactive Voice Response Connection Denial of Service Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180221-cuc | Cisco Unity Connection Mail Relay Vulnerability | 2018-02-21T16:00:00+00:00 | 2018-02-21T16:00:00+00:00 |
| cisco-sa-20180117-cvp | Cisco Unified Customer Voice Portal Denial of Service Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-02-15T20:49:00+00:00 |
| cisco-sa-20180207-ios | Cisco IOS XE Software Diagnostic Shell Path Traversal Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-12T13:57:00+00:00 |
| cisco-sa-20180207-vpcdi | Cisco Virtualized Packet Core-Distributed Instance Denial of Service Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-33059 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33058 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33057 | Windows Local Security Authority (LSA) Denial of Service Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33056 | Windows Local Security Authority (LSA) Denial of Service Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33055 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33052 | Windows DWM Core Library Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-33050 | DHCP Server Service Denial of Service Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32725 | DHCP Server Service Denial of Service Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32724 | Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32722 | Windows Storage Port Driver Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32721 | Windows Recovery Driver Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32720 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32719 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32718 | Windows SMB Client Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32717 | Microsoft Word Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32716 | Windows Media Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32715 | Remote Desktop Protocol Client Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32714 | Windows Installer Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32713 | Windows Common Log File System Driver Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32712 | Win32k Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-32710 | Windows Remote Desktop Services Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-29828 | Windows Schannel Remote Code Execution Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-24069 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-24068 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-24065 | Windows Storage Management Provider Information Disclosure Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-10T07:00:00.000Z |
| msrc_cve-2025-47966 | Power Automate Elevation of Privilege Vulnerability | 2025-06-10T07:00:00.000Z | 2025-06-05T07:00:00.000Z |
| msrc_cve-2025-21204 | Windows Process Activation Elevation of Privilege Vulnerability | 2025-04-08T07:00:00.000Z | 2025-06-04T07:00:00.000Z |
| msrc_cve-2025-30394 | Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability | 2025-05-13T07:00:00.000Z | 2025-06-03T07:00:00.000Z |
| msrc_cve-2024-6119 | Possible denial of service in X.509 name checks | 2024-09-01T07:00:00.000Z | 2025-06-03T00:00:00.000Z |
| msrc_cve-2023-40550 | Shim: out-of-bound read in verify_buffer_sbat() | 2024-01-01T08:00:00.000Z | 2025-06-02T00:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:12344-1 | cargo1.63-1.63.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12343-1 | cargo1.62-1.62.1-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12342-1 | python39-3.9.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12341-1 | python38-3.8.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12340-1 | python310-3.10.7-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12339-1 | python310-oauthlib-3.2.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12338-1 | jasper-3.0.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12337-1 | gvim-9.0.0453-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12336-1 | python311-3.11.0rc2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12335-1 | chkstat-1599_20220912-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12334-1 | nodejs-electron-19.0.17-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12333-1 | chromedriver-105.0.5195.127-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12332-1 | ffmpeg-5-5.1.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12331-1 | cosign-1.12.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12330-1 | cherrytree-0.99.49+3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12329-1 | libwireshark15-3.6.8-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12328-1 | gvim-9.0.0453-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12327-1 | lighttpd-1.4.66-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12326-1 | mupdf-1.20.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12325-1 | libgsasl-devel-1.10.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12324-1 | libconfuse-devel-3.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12323-1 | helm-3.9.4-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12322-1 | deluge-2.1.1-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12321-1 | python-2.7.18-23.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12320-1 | kernel-devel-5.19.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12319-1 | chromedriver-105.0.5195.102-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12318-1 | python310-pydantic-1.10.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12317-1 | nodejs-electron-19.0.15-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12316-1 | glibc-2.36-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12315-1 | booth-1.0+20220724.dce51f9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2022-3265 | 2024-03-06T11:14:33.660Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3067 | 2024-03-06T11:14:34.910Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3066 | 2024-03-06T11:14:36.153Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3060 | 2024-03-06T11:14:37.362Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3031 | 2024-03-06T11:14:38.561Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3030 | 2024-03-06T11:14:39.817Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-3018 | 2024-03-06T11:14:41.065Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2992 | 2024-03-06T11:14:42.307Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2931 | 2024-03-06T11:14:43.555Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2908 | 2024-03-06T11:14:44.777Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2907 | 2024-03-06T11:14:46.032Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2904 | 2024-03-06T11:14:47.266Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2884 | 2024-03-06T11:14:48.492Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2882 | 2024-03-06T11:14:49.711Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2865 | 2024-03-06T11:14:50.955Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2826 | 2024-03-06T11:14:52.190Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2761 | 2024-03-06T11:14:53.452Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2630 | 2024-03-06T11:14:54.721Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2592 | 2024-03-06T11:14:55.959Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2539 | 2024-03-06T11:14:57.192Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2534 | 2024-03-06T11:14:58.406Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2533 | 2024-03-06T11:14:59.631Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2531 | 2024-03-06T11:15:00.852Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2527 | 2024-03-06T11:15:02.115Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2512 | 2024-03-06T11:15:04.491Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2501 | 2024-03-06T11:15:05.739Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2500 | 2024-03-06T11:15:06.992Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2499 | 2024-03-06T11:15:08.348Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2498 | 2024-03-06T11:15:09.598Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2497 | 2024-03-06T11:15:10.838Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Updated |
|---|---|---|
| var-202307-2189 | A stored cross-site scripting (XSS) issue was discovered within the Custom User Icons fun… | 2024-01-19T23:17:43.181000Z |
| var-202307-2191 | ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker c… | 2024-01-19T23:16:24.551000Z |
| var-202308-4277 | Tenda F1203 V2.0.1.6, FH1203 V2.0.1.6 and FH1205 V2.0.0.7(775) was discovered to contain … | 2024-01-19T23:15:13.065000Z |
| var-202312-1940 | A cross-site request forgery (CSRF) in Fortinet FortiVoiceEnterprise version 6.4.x, 6.0.x… | 2024-01-19T23:15:12.513000Z |
| var-202307-2190 | ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker c… | 2024-01-19T23:06:26.321000Z |
| var-201505-0062 | Double free vulnerability in PostgreSQL before 9.0.20, 9.1.x before 9.1.16, 9.2.x before … | 2024-01-19T19:26:48.820000Z |
| var-201404-0551 | Directory traversal vulnerability in NTWebServer in InduSoft Web Studio 7.1 before SP2 Pa… | 2024-01-18T23:02:11.969000Z |
| var-202307-0253 | A misconfiguration vulnerability exists in the urvpn_client functionality of Milesight UR… | 2024-01-18T23:01:36.956000Z |
| var-202307-0171 | A stack-based buffer overflow vulnerability exists in the urvpn_client http_connection_re… | 2024-01-18T23:01:36.987000Z |
| var-202312-0445 | Tenda AX9 V22.03.01.46 was discovered to contain a SQL command injection vulnerability in… | 2024-01-18T23:01:35.056000Z |
| var-202312-0403 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function … | 2024-01-18T23:01:35.077000Z |
| var-202311-1670 | Wago web-based management of multiple products has a vulnerability which allows an local … | 2024-01-18T23:01:35.634000Z |
| var-202312-0659 | An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a re… | 2024-01-18T23:01:34.916000Z |
| var-202312-0594 | An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a re… | 2024-01-18T23:01:34.954000Z |
| var-201504-0534 | Directory traversal vulnerability in TP-LINK Archer C5 (1.2) with firmware before 150317,… | 2024-01-18T23:00:52.960000Z |
| var-202201-1001 | An improper check or handling of exceptional conditions in NPU driver prior to SMR Jan-20… | 2024-01-18T23:00:48.230000Z |
| var-202307-0808 | Tenda AC1206 V15.03.06.23 and AC10 V15.03.06.47 were discovered to contain a stack overfl… | 2024-01-18T23:00:44.192000Z |
| var-202312-0420 | Tenda W30E V16.01.0.12(4843) was discovered to contain a stack overflow via the function … | 2024-01-18T23:00:42.536000Z |
| var-202312-1216 | Dell OS10 Networking Switches running 10.5.2.x and above contain an Uncontrolled Resourc… | 2024-01-18T23:00:38.827000Z |
| var-202401-0658 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.mode parameter in the fu… | 2024-01-18T23:00:37.512000Z |
| var-201810-0564 | A vulnerability in the MACsec Key Agreement (MKA) using Extensible Authentication Protoco… | 2024-01-18T22:59:21.597000Z |
| var-202312-0455 | Tenda AX9 V22.03.01.46 has been discovered to contain a command injection vulnerability i… | 2024-01-18T22:59:11.117000Z |
| var-202312-0392 | Tenda W30E V16.01.0.12(4843) was discovered to contain a Command Execution vulnerability … | 2024-01-18T22:59:11.139000Z |
| var-202312-1066 | Transient DOS while parsing a vender specific IE (Information Element) of reassociation r… | 2024-01-18T22:59:10.816000Z |
| var-202401-0796 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in… | 2024-01-18T22:59:09.334000Z |
| var-202307-0363 | Potential zip path traversal vulnerability in Calendar application prior to version 12.4.… | 2024-01-18T22:58:25.635000Z |
| var-202312-2011 | In Netgear Orbi RBR750 firmware before V7.2.6.21, there is a stack-based buffer overflow … | 2024-01-18T22:58:19.177000Z |
| var-202312-1927 | Transient DOS in Bluetooth Host while rfc slot allocation. APQ8017 firmware, APQ8064AU fi… | 2024-01-18T22:58:19.212000Z |
| var-202401-0265 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the fu… | 2024-01-18T22:58:18.780000Z |
| var-202312-2496 | Improper URL validation from MCSLaunch deeplink in Galaxy Store prior to version 4.5.64.4… | 2024-01-18T22:58:18.952000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:3904-1 | Security update for openssl-1_1 | 2024-11-04T12:38:42Z | 2024-11-04T12:38:42Z |
| suse-su-2024:3899-1 | Security update for MozillaFirefox | 2024-11-04T11:15:55Z | 2024-11-04T11:15:55Z |
| suse-su-2024:3898-1 | Security update for MozillaFirefox | 2024-11-04T11:14:05Z | 2024-11-04T11:14:05Z |
| suse-su-2024:3885-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6) | 2024-11-04T07:03:46Z | 2024-11-04T07:03:46Z |
| suse-su-2024:3884-1 | Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6) | 2024-11-04T07:03:36Z | 2024-11-04T07:03:36Z |
| suse-su-2024:3882-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP6) | 2024-11-04T06:33:40Z | 2024-11-04T06:33:40Z |
| suse-su-2024:3881-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP6) | 2024-11-04T06:33:32Z | 2024-11-04T06:33:32Z |
| suse-su-2024:3880-1 | Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP6) | 2024-11-04T06:33:25Z | 2024-11-04T06:33:25Z |
| suse-su-2024:3879-1 | Security update for python3 | 2024-11-01T16:04:53Z | 2024-11-01T16:04:53Z |
| suse-su-2024:3878-1 | Security update for rubygem-actionmailer-5_1 | 2024-11-01T15:32:27Z | 2024-11-01T15:32:27Z |
| suse-su-2024:3877-1 | Security update for rubygem-actionpack-5_1 | 2024-11-01T15:31:27Z | 2024-11-01T15:31:27Z |
| suse-su-2024:3876-1 | Security update for python-waitress | 2024-11-01T15:29:32Z | 2024-11-01T15:29:32Z |
| suse-su-2024:3875-1 | Security update for java-11-openjdk | 2024-11-01T15:28:08Z | 2024-11-01T15:28:08Z |
| suse-su-2024:3874-1 | Security update for ruby2.5 | 2024-11-01T15:25:48Z | 2024-11-01T15:25:48Z |
| suse-su-2024:3873-1 | Security update for rubygem-bundler | 2024-11-01T15:22:19Z | 2024-11-01T15:22:19Z |
| suse-su-2024:3872-1 | Security update for openssl-1_1 | 2024-11-01T15:20:58Z | 2024-11-01T15:20:58Z |
| suse-su-2024:3871-1 | Security update for openssl-3 | 2024-11-01T15:20:04Z | 2024-11-01T15:20:04Z |
| suse-su-2024:3870-1 | Security update for webkit2gtk3 | 2024-11-01T15:19:11Z | 2024-11-01T15:19:11Z |
| suse-su-2024:3869-1 | Security update for webkit2gtk3 | 2024-11-01T15:18:06Z | 2024-11-01T15:18:06Z |
| suse-su-2024:3867-1 | Security update for xorg-x11-server | 2024-11-01T15:13:48Z | 2024-11-01T15:13:48Z |
| suse-su-2024:3866-1 | Security update for xorg-x11-server | 2024-11-01T15:13:08Z | 2024-11-01T15:13:08Z |
| suse-su-2024:3864-1 | Security update for apache2 | 2024-11-01T15:06:17Z | 2024-11-01T15:06:17Z |
| suse-su-2024:3863-1 | Security update for cups-filters | 2024-11-01T15:04:49Z | 2024-11-01T15:04:49Z |
| suse-su-2024:3861-1 | Security update for uwsgi | 2024-11-01T06:34:00Z | 2024-11-01T06:34:00Z |
| suse-su-2024:3860-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP5) | 2024-10-31T16:33:35Z | 2024-10-31T16:33:35Z |
| suse-su-2024:3859-1 | Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP5) | 2024-10-31T15:34:40Z | 2024-10-31T15:34:40Z |
| suse-su-2024:3857-1 | Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP5) | 2024-10-31T15:04:04Z | 2024-10-31T15:04:04Z |
| suse-su-2024:3856-1 | Security update for the Linux Kernel RT (Live Patch 17 for SLE 15 SP5) | 2024-10-31T14:33:36Z | 2024-10-31T14:33:36Z |
| suse-su-2024:3855-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) | 2024-10-31T11:33:35Z | 2024-10-31T11:33:35Z |
| suse-su-2024:3854-1 | Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) | 2024-10-31T11:03:48Z | 2024-10-31T11:03:48Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-22279 | WeGIA SQL注入漏洞(CNVD-2025-22279) | 2025-04-03 | 2025-09-24 |
| cnvd-2025-22278 | WeGIA SQL注入漏洞(CNVD-2025-22278) | 2025-05-14 | 2025-09-24 |
| cnvd-2025-19856 | 北京北大方正电子有限公司方正全媒体新闻采编系统存在逻辑缺陷漏洞 | 2025-08-10 | 2025-09-24 |
| cnvd-2025-22623 | Huawei HarmonyOS和EMUI输入验证漏洞 | 2024-09-11 | 2025-09-23 |
| cnvd-2025-22613 | Huawei HarmonyOS越界访问漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22612 | Huawei HarmonyOS和EMUI缓冲区溢出漏洞(CNVD-2025-22612) | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22611 | Huawei HarmonyOS和EMUI缓冲区溢出漏洞(CNVD-2025-22611) | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22610 | Huawei HarmonyOS和EMUI资源读取漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22609 | Huawei HarmonyOS和EMUI验证信息不完整漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22608 | Huawei HarmonyOS和EMUI越界访问漏洞(CNVD-2025-22608) | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22607 | Huawei HarmonyOS和EMUI缓冲区溢出漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22606 | Huawei HarmonyOS和EMUI越界访问漏洞(CNVD-2025-22606) | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22605 | Huawei HarmonyOS和EMUI越界访问漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22589 | WordPress StoreEngine plugin路径遍历漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22588 | WordPress Social Media Shortcodes plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22587 | WordPress Quiz Maker plugin SQL注入漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22586 | WordPress Productive Style plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22585 | WordPress Memberlite Shortcodes plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22584 | WordPress Media Player Addons for Elementor plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22583 | WordPress Developer Loggers for Simple History plugin文件包含漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22582 | WordPress Catch Dark Mode plugin文件包含漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22581 | WordPress Blocksy Companion Plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22580 | WordPress Appointmind plugin跨站脚本漏洞 | 2025-09-19 | 2025-09-23 |
| cnvd-2025-22331 | Huawei HarmonyOS和EMUI数据包长度检查不足漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22330 | D-Link DIR-X3260缓冲区溢出漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22329 | D-Link G416 cfgsave backusb命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22328 | D-Link G416 cfgsave upusb命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22327 | D-Link G416 flpl pythonmodules命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22326 | D-Link G416 nodered chmod命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22325 | D-Link G416 flpl pythonapp命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0337 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0336 | Multiples vulnérabilités dans les produits OwnCloud | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0335 | Vulnérabilité dans SolarWinds Platform | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0341 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0340 | Multiples vulnérabilités dans les produits Moxa | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0339 | Vulnérabilité dans Microsoft Edge | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0338 | Vulnérabilité dans Siemens RUGGEDCOM APE1808 | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0337 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0336 | Multiples vulnérabilités dans les produits OwnCloud | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| CERTFR-2024-AVI-0335 | Vulnérabilité dans SolarWinds Platform | 2024-04-22T00:00:00.000000 | 2024-04-22T00:00:00.000000 |
| certfr-2024-avi-0334 | Multiples vulnérabilités dans le noyau Linux de Debian | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0333 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0332 | Multiples vulnérabilités dans les produits Red Hat | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0331 | Multiples vulnérabilités dans SolarWinds Platform | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0330 | Multiples vulnérabilités dans les produits IBM | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0329 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0328 | Vulnérabilité dans Citrix uberAgent | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0327 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0334 | Multiples vulnérabilités dans le noyau Linux de Debian | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0333 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0332 | Multiples vulnérabilités dans les produits Red Hat | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0331 | Multiples vulnérabilités dans SolarWinds Platform | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0330 | Multiples vulnérabilités dans les produits IBM | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0329 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0328 | Vulnérabilité dans Citrix uberAgent | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| CERTFR-2024-AVI-0327 | Multiples vulnérabilités dans Microsoft Edge | 2024-04-19T00:00:00.000000 | 2024-04-19T00:00:00.000000 |
| certfr-2024-avi-0326 | Multiples vulnérabilités dans Oracle MySQL | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0325 | Multiples vulnérabilités dans Oracle PeopleSoft | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0324 | Multiples vulnérabilités dans Oracle Systems | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0323 | Multiples vulnérabilités dans Oracle Weblogic | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |