Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-47870 |
5.4 (4.0)
|
GetSimple CMS My SMTP Contact Plugin 1.1.2 - Stored XSS |
GetSimple CMS |
My SMTP Contact Plugin |
2026-01-21T17:32:09.385Z | 2026-01-22T16:51:05.377Z |
| CVE-2025-68139 |
4.3 (3.1)
|
In EVerest, by default, the EV is responsible for clos… |
EVerest |
everest-core |
2026-01-21T19:36:36.127Z | 2026-01-22T16:50:50.152Z |
| CVE-2025-68140 |
4.3 (3.1)
|
EVerest allows null session ID to bypass session ID ve… |
EVerest |
everest-core |
2026-01-21T19:54:51.285Z | 2026-01-22T16:50:45.344Z |
| CVE-2025-68141 |
7.4 (3.1)
|
EVerest vulnerable to null pointer dereference during … |
EVerest |
everest-core |
2026-01-21T19:56:14.482Z | 2026-01-22T16:50:38.843Z |
| CVE-2026-22807 |
8.8 (3.1)
|
vLLM affected by RCE via auto_map dynamic module loadi… |
vllm-project |
vllm |
2026-01-21T21:13:11.894Z | 2026-01-22T16:50:33.696Z |
| CVE-2026-22808 |
5.5 (4.0)
|
Fleet Windows MDM endpoint has a Cross-site Scripting … |
fleetdm |
fleet |
2026-01-21T21:18:26.283Z | 2026-01-22T16:50:28.717Z |
| CVE-2026-22822 |
9.3 (4.0)
|
External Secrets Operator insecurely retrieves secrets… |
external-secrets |
external-secrets |
2026-01-21T21:22:05.249Z | 2026-01-22T16:50:23.708Z |
| CVE-2026-22849 |
7.2 (4.0)
|
Saleor lacks proper HTML sanitization in rich text fields |
saleor |
saleor |
2026-01-21T21:31:14.664Z | 2026-01-22T16:50:18.828Z |
| CVE-2026-23499 |
8.5 (4.0)
|
Saleor vulnerable to stored XSS via Unrestricted File Upload |
saleor |
saleor |
2026-01-21T21:36:19.702Z | 2026-01-22T16:50:13.686Z |
| CVE-2026-23517 |
6.3 (4.0)
|
Fleet has an Access Control vulnerability in debug/ppr… |
fleetdm |
fleet |
2026-01-21T21:45:34.561Z | 2026-01-22T16:49:56.246Z |
| CVE-2026-23518 |
9.3 (4.0)
|
Fleet has a JWT signature bypass vulnerability in Azur… |
fleetdm |
fleet |
2026-01-21T21:50:47.998Z | 2026-01-22T16:49:50.477Z |
| CVE-2026-23960 |
7.3 (4.0)
|
Argo Workflows affected by stored XSS in the artifact … |
argoproj |
argo-workflows |
2026-01-21T22:02:50.491Z | 2026-01-22T16:49:43.075Z |
| CVE-2026-23524 |
9.8 (3.1)
|
Laravel Redis Horizontal Scaling Insecure Deserialization |
laravel |
reverb |
2026-01-21T22:07:55.682Z | 2026-01-22T16:49:37.182Z |
| CVE-2026-23968 |
6.8 (4.0)
|
Copier safe template has arbitrary filesystem read acc… |
copier-org |
copier |
2026-01-21T22:13:25.377Z | 2026-01-22T16:49:32.054Z |
| CVE-2026-23986 |
6.9 (4.0)
|
Copier safe template has arbitrary filesystem write ac… |
copier-org |
copier |
2026-01-21T22:20:37.720Z | 2026-01-22T16:49:26.426Z |
| CVE-2026-23990 |
5.3 (3.1)
|
Flux Operator Web UI Impersonation Bypass via Empty OI… |
controlplaneio-fluxcd |
flux-operator |
2026-01-21T22:25:57.025Z | 2026-01-22T16:49:21.454Z |
| CVE-2026-23996 |
3.7 (3.1)
|
FastAPI Api Key has a timing side-channel in verify_ke… |
Athroniaeth |
fastapi-api-key |
2026-01-21T22:29:24.107Z | 2026-01-22T16:49:16.733Z |
| CVE-2026-24046 |
7.1 (3.1)
|
Backstage has a Possible Symlink Path Traversal in Sca… |
backstage |
backstage |
2026-01-21T22:36:30.794Z | 2026-01-22T16:49:11.684Z |
| CVE-2026-24047 |
6.3 (3.1)
|
@backstage/cli-common has a possible `resolveSafeChild… |
backstage |
backstage |
2026-01-21T22:45:06.956Z | 2026-01-22T16:49:06.720Z |
| CVE-2026-23630 |
6.3 (4.0)
|
Docmost is vulnerable to stored Cross-Site Scripting (… |
docmost |
docmost |
2026-01-21T22:51:27.158Z | 2026-01-22T16:49:01.024Z |
| CVE-2026-24048 |
3.5 (3.1)
|
Backstage has a Possible SSRF when reading from allowe… |
backstage |
backstage |
2026-01-21T22:51:44.015Z | 2026-01-22T16:48:55.954Z |
| CVE-2026-22200 |
8.7 (4.0)
|
osTicket (1.18.x < 1.18.3, 1.17.x < 1.17.7) PDF Export… |
Enhancesoft |
osTicket |
2026-01-12T18:34:12.781Z | 2026-01-22T16:36:11.800Z |
| CVE-2026-23959 |
6.9 (4.0)
|
CoreShop Vulnerable to SQL Injection via Admin custome… |
coreshop |
CoreShop |
2026-01-22T01:57:58.566Z | 2026-01-22T16:28:21.076Z |
| CVE-2025-9900 |
8.8 (3.1)
|
Libtiff: libtiff write-what-where |
|
|
2025-09-23T16:26:22.846Z | 2026-01-22T16:27:07.093Z |
| CVE-2025-65098 |
7.4 (3.1)
|
Typebot Vulnerable to Credential Theft via Client-Side… |
baptisteArno |
typebot.io |
2026-01-22T14:59:20.488Z | 2026-01-22T16:25:45.772Z |
| CVE-2021-47770 |
8.6 (4.0)
8.8 (3.1)
|
OpenPLC 3 - Remote Code Execution |
Autonomy |
OpenPLC |
2026-01-21T17:27:32.000Z | 2026-01-22T16:23:03.426Z |
| CVE-2021-47748 |
9.3 (4.0)
9.8 (3.1)
|
Hasura GraphQL 1.3.3 - Remote Code Execution |
Hasura |
GraphQL |
2026-01-21T17:27:31.545Z | 2026-01-22T16:22:23.413Z |
| CVE-2021-47746 |
8.6 (4.0)
7.5 (3.1)
|
NodeBB Plugin Emoji 3.2.1 - Arbitrary File Write |
NodeBB |
NodeBB Plugin Emoji |
2026-01-21T17:27:31.014Z | 2026-01-22T16:21:42.322Z |
| CVE-2025-64097 |
9.5 (4.0)
|
NervesHub has Insufficient Token Entropy that Allows A… |
nerves-hub |
nerves_hub_web |
2026-01-22T14:57:00.362Z | 2026-01-22T16:16:06.007Z |
| CVE-2026-1328 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Totolink NR1800X POST Request cstecgi.cgi setWizardCfg… |
Totolink |
NR1800X |
2026-01-22T14:32:13.191Z | 2026-01-22T16:14:48.638Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-24804 |
9.2 (4.0)
|
A infinite loop vulnerability in coolsnowwolf/lede |
coolsnowwolf |
lede |
2026-01-27T08:40:19.319Z | 2026-01-27T17:05:12.071Z |
| CVE-2026-24803 |
9.2 (4.0)
|
A possible infinite loop vulnerability in coolsnowwolf/lede |
coolsnowwolf |
lede |
2026-01-27T08:39:39.043Z | 2026-01-27T17:04:27.974Z |
| CVE-2026-24802 |
5.3 (4.0)
|
Buffer Overflow Vulnerability in briandilley/jsonrpc4j |
briandilley |
jsonrpc4j |
2026-01-27T08:38:34.944Z | 2026-01-27T17:03:30.291Z |
| CVE-2026-24801 |
6.9 (4.0)
|
A Potential SPA-vulnerability in Ralim/IronOS |
Ralim |
IronOS |
2026-01-27T08:36:25.407Z | 2026-01-27T17:02:56.206Z |
| CVE-2026-24800 |
10 (4.0)
|
A heap-based buffer over-read or buffer overflow in ti… |
tildearrow |
furnace |
2026-01-27T08:33:16.882Z | 2026-01-27T17:02:21.459Z |
| CVE-2026-24799 |
5.2 (4.0)
|
A heap-based buffer over-read or buffer overflow in da… |
davisking |
dlib |
2026-01-27T08:31:36.371Z | 2026-01-27T15:29:38.861Z |
| CVE-2026-24798 |
9.3 (4.0)
|
An Uninitialized stack variable vulnerability in Gaiji… |
GaijinEntertainment |
DagorEngine |
2026-01-27T08:27:10.291Z | 2026-01-27T21:38:23.168Z |
| CVE-2026-24797 |
6.9 (4.0)
|
An out of bounds write due to a missing bounds check i… |
neka-nat |
cupoch |
2026-01-27T08:25:17.496Z | 2026-01-27T21:38:37.425Z |
| CVE-2026-24796 |
6.9 (4.0)
|
A Out-of-bounds Read vulnerability in CloverHackyColor… |
CloverHackyColor |
CloverBootloader |
2026-01-27T08:22:20.758Z | 2026-01-27T21:39:06.965Z |
| CVE-2026-24795 |
5.1 (4.0)
|
An Out-of-bounds Write in CloverHackyColor/CloverBootloader |
CloverHackyColor |
CloverBootloader |
2026-01-27T08:23:47.447Z | 2026-01-27T21:38:51.796Z |
| CVE-2026-24794 |
9.2 (4.0)
|
Chunk Unloading Security Vulnerability in CardboardPow… |
CardboardPowered |
cardboard |
2026-01-27T08:21:22.643Z | 2026-01-27T21:39:21.583Z |
| CVE-2026-24686 |
4.7 (3.1)
|
go-tuf Path Traversal in TAP 4 Multirepo Client Allows… |
theupdateframework |
go-tuf |
2026-01-27T00:45:43.422Z | 2026-01-27T14:40:01.511Z |
| CVE-2026-24490 |
8.1 (3.1)
|
MobSF has Stored XSS via Manifest Analysis - Dialer Co… |
MobSF |
Mobile-Security-Framework-MobSF |
2026-01-27T00:40:36.483Z | 2026-01-27T14:43:35.345Z |
| CVE-2026-24489 |
5.3 (3.1)
|
Gakido vulnerable to HTTP Header Injection (CRLF Injection) |
HappyHackingSpace |
gakido |
2026-01-27T00:36:34.230Z | 2026-01-27T14:46:42.530Z |
| CVE-2026-24486 |
8.6 (3.1)
|
Python-Multipart has Arbitrary File Write via Non-Defa… |
Kludex |
python-multipart |
2026-01-27T00:34:06.229Z | 2026-01-27T20:51:06.407Z |
| CVE-2026-24480 |
8.7 (4.0)
|
QGIS had validated RCE and Repository Takeover via Git… |
qgis |
QGIS |
2026-01-27T00:32:04.725Z | 2026-01-27T20:54:42.308Z |
| CVE-2026-24479 |
9.3 (4.0)
|
HUSTOJ has Arbitrary File Write (Zip Slip) in Problem … |
zhblue |
hustoj |
2026-01-27T00:43:42.799Z | 2026-01-27T14:42:04.040Z |
| CVE-2026-24476 |
5.3 (4.0)
|
Shaarli vulnerable to stored XSS via Suggested Tags |
shaarli |
Shaarli |
2026-01-26T22:26:59.886Z | 2026-01-27T15:20:27.830Z |
| CVE-2026-24470 |
8.1 (3.1)
|
Skipper Ingress Controller Allows Unauthorized Access … |
zalando |
skipper |
2026-01-26T22:23:43.325Z | 2026-01-27T14:51:35.229Z |
| CVE-2026-24408 |
0 (3.1)
|
sigstore has CSRF possibility in OIDC authentication d… |
sigstore |
sigstore-python |
2026-01-26T22:21:35.047Z | 2026-01-27T21:35:14.119Z |
| CVE-2026-24400 |
8.2 (4.0)
|
AssertJ has XML External Entity (XXE) vulnerability wh… |
assertj |
assertj |
2026-01-26T22:19:02.161Z | 2026-01-27T21:36:26.716Z |
| CVE-2026-24344 |
7.3 (4.0)
|
Multiple Buffer Overflows in EZCast Pro II Dongle |
EZCast |
EZCast Pro II |
2026-01-27T09:04:34.750Z | 2026-01-27T14:25:06.534Z |
| CVE-2026-24003 |
4.3 (3.1)
|
EvseV2G has sequence state validation bypass |
EVerest |
everest-core |
2026-01-26T22:12:47.914Z | 2026-01-27T21:37:27.245Z |
| CVE-2026-23864 |
7.5 (3.1)
|
Multiple denial of service vulnerabilities exist … |
Meta |
react-server-dom-webpack |
2026-01-26T19:16:38.250Z | 2026-01-26T20:26:45.709Z |
| CVE-2026-23683 |
4.3 (3.1)
|
Missing Authorization check in SAP Fiori App (Intercom… |
SAP_SE |
SAP Fiori App (Intercompany Balance Reconciliation) |
2026-01-27T00:22:13.153Z | 2026-01-28T04:55:17.259Z |
| CVE-2026-22709 |
9.8 (3.1)
|
vm2 has a Sandbox Escape |
patriksimek |
vm2 |
2026-01-26T21:32:00.215Z | 2026-01-27T21:42:27.920Z |
| CVE-2026-22696 |
9.3 (4.0)
|
dcap-qvl has Missing Verification for QE Identity |
Phala-Network |
dcap-qvl |
2026-01-26T21:28:41.284Z | 2026-01-27T21:43:00.366Z |
| CVE-2026-21721 |
8.1 (3.1)
|
Dashboard Permissions Scope Bypass Enables Cross‑Dashb… |
Grafana |
grafana/grafana |
2026-01-27T09:07:55.160Z | 2026-02-07T23:18:39.807Z |
| CVE-2026-21408 |
7.3 (3.0)
5.4 (4.0)
|
beat-access for Windows version 3.0.3 and prior c… |
FUJIFILM Business Innovation Corp. |
beat-access for Windows |
2026-01-27T05:08:20.229Z | 2026-01-27T20:50:14.682Z |
| CVE-2026-1484 |
4.2 (3.1)
|
Glib: integer overflow leading to buffer underflow and… |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-01-27T13:41:54.223Z | 2026-02-03T20:02:21.846Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-24801 | Vulnerability in Ralim IronOS (source/Core/BSP/Pinecilv2/bl_mcu_sdk/components/ble/ble_stack/common… | 2026-01-27T09:15:50.057 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24800 | Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… | 2026-01-27T09:15:49.920 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24799 | Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… | 2026-01-27T09:15:49.787 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24798 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GaijinEnte… | 2026-01-27T09:15:49.643 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24797 | Out-of-bounds Write vulnerability in neka-nat cupoch (third_party/libjpeg-turbo/libjpeg-turbo modul… | 2026-01-27T09:15:49.510 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24796 | Out-of-bounds Read vulnerability in CloverHackyColor CloverBootloader (MdeModulePkg/Universal/Regul… | 2026-01-27T09:15:49.370 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24795 | Out-of-bounds Write vulnerability in CloverHackyColor CloverBootloader (MdeModulePkg/Universal/Regu… | 2026-01-27T09:15:49.233 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24794 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in CardboardP… | 2026-01-27T09:15:49.090 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24686 | go-tuf is a Go implementation of The Update Framework (TUF). go-tuf's TAP 4 Multirepo Client uses t… | 2026-01-27T01:16:02.790 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24490 | MobSF is a mobile application security testing tool used. Prior to version 4.4.5, a Stored Cross-si… | 2026-01-27T01:16:02.610 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24489 | Gakido is a Python HTTP client focused on browser impersonation and anti-bot evasion. A vulnerabili… | 2026-01-27T01:16:02.453 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24486 | Python-Multipart is a streaming multipart parser for Python. Prior to version 0.0.22, a Path Traver… | 2026-01-27T01:16:02.303 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24480 | QGIS is a free, open source, cross platform geographical information system (GIS) The repository co… | 2026-01-27T01:16:02.160 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24479 | HUSTOF is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. … | 2026-01-27T01:16:02.017 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24476 | Shaarli is a personal bookmarking service. Prior to version 0.16.0, crafting a malicious tag which … | 2026-01-26T23:16:09.283 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24470 | Skipper is an HTTP router and reverse proxy for service composition. Prior to version 0.24.0, when … | 2026-01-26T23:16:09.123 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24408 | sigstore-python is a Python tool for generating and verifying Sigstore signatures. Prior to version… | 2026-01-26T23:16:08.973 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24400 | AssertJ provides Fluent testing assertions for Java and the Java Virtual Machine (JVM). Starting in… | 2026-01-26T23:16:08.803 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24344 | Multiple Buffer Overflows in Admin UI of EZCast Pro II version 1.17478.146 allow attackers to cause… | 2026-01-27T09:15:48.767 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-24003 | EVerest is an EV charging software stack. In versions up to and including 2025.12.1, it is possible… | 2026-01-26T22:15:56.513 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-23864 | Multiple denial of service vulnerabilities exist in React Server Components, affecting the followin… | 2026-01-26T20:16:16.773 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-23683 | SAP Fiori App Intercompany Balance Reconciliation does not perform necessary authorization checks f… | 2026-01-27T01:16:01.813 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-22709 | vm2 is an open source vm/sandbox for Node.js. In vm2 prior to version 3.10.2, `Promise.prototype.th… | 2026-01-26T22:15:55.890 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-22696 | dcap-qvl implements the quote verification logic for DCAP (Data Center Attestation Primitives). A v… | 2026-01-26T22:15:55.733 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-21721 | The dashboard permissions API does not verify the target dashboard scope and only checks the dashbo… | 2026-01-27T09:15:48.640 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-21408 | beat-access for Windows version 3.0.3 and prior contains an issue with the DLL search path, which m… | 2026-01-27T06:15:59.583 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-1484 | A flaw was found in the GLib Base64 encoding routine when processing very large input data. Due to … | 2026-01-27T14:15:56.050 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-1465 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-C… | 2026-01-27T09:15:48.330 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-1464 | Integer Overflow or Wraparound vulnerability in MuntashirAkon AppManager (app/src/main/java/org/apa… | 2026-01-27T09:15:48.080 | 2026-01-27T14:59:34.073 |
| fkie_cve-2026-1449 | A flaw has been found in Hisense TransTech Smart Bus Management System up to 20260113. Affected is … | 2026-01-27T00:15:50.790 | 2026-01-27T14:59:34.073 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-mc3v-qmvf-v5gr |
7.5 (3.1)
|
Vulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: User and User Grou… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-jp6j-38xx-x6v3 |
6.1 (3.1)
|
Vulnerability in the Oracle Scripting product of Oracle E-Business Suite (component: Scripting Admi… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-jm72-q689-gvmx |
5.4 (3.1)
|
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Pus… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-jhg6-g5fp-536p |
4.8 (3.1)
|
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition prod… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-g82h-mgfp-jx8g |
5.9 (4.0)
|
The poplib module, when passed a user-controlled command, can have additional commands injected usi… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-g3rf-97c9-wqv8 |
4.2 (3.1)
|
Vulnerability in the Oracle Planning and Budgeting Cloud Service product of Oracle Hyperion (compon… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-frv5-jjr8-238f |
5.8 (3.1)
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Driver). The supported … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-fj76-ww29-89p7 |
6.5 (3.1)
|
Vulnerability in the Oracle Life Sciences Central Designer product of Oracle Health Sciences Applic… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-f8c6-q94w-2f64 |
6.1 (3.1)
|
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Por… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-f4hj-p58g-9m5p |
5.8 (3.1)
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Driver). The supported … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-9v9c-vvj8-53qg |
8.5 (4.0)
|
Insufficiently Protected Credentials, Improper Restriction of Communication Channel to Intended End… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-9fv6-v649-fp9h |
5.4 (3.1)
|
Vulnerability in the Oracle Utilities Application Framework product of Oracle Utilities Application… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-9259-996q-pvq8 |
6.9 (4.0)
|
Use of Default Credentials, Hard-coded Credentials vulnerability in C2SGlobalSettings.dll in Mil… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-8rqc-9qph-j7v9 |
4.9 (3.1)
|
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported vers… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-8prm-7g9f-q54x |
7.2 (4.0)
|
Use of a Broken or Risky Cryptographic Algorithm (DES) vulnerability in the Password class in C2S… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-833x-x4qj-r9cv |
4.9 (3.1)
|
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supporte… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-6hm3-9gpx-9f63 |
5.3 (3.1)
|
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported v… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-6684-47x9-759j |
5.0 (3.1)
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Filesystems). Supported … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-5rm3-299f-6m9v |
6.1 (3.1)
|
Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition prod… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-5mc7-p6pj-r3f5 |
5.9 (4.0)
|
User-controlled header names and values containing newlines can allow injecting HTTP headers. | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-4f9w-qx2j-3j6q |
5.4 (3.1)
|
Vulnerability in the Oracle APEX Sample Applications product of Oracle APEX (component: Brookstrut … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-4c67-8q63-xrxq |
5.9 (4.0)
|
The imaplib module, when passed a user-controlled command, can have additional commands injected us… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-34rv-96cq-9vvh |
7.0 (3.1)
|
Vulnerability in the SQLcl component of Oracle Database Server. Supported versions that are affect… | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-242j-c957-58gr |
5.3 (3.1)
|
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The supported … | 2026-01-21T00:31:42Z | 2026-01-21T00:31:42Z |
| ghsa-jq9g-gj4g-q8w7 |
9.8 (3.1)
|
Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attac… | 2026-01-20T06:30:26Z | 2026-01-21T00:31:41Z |
| ghsa-w2pg-hw7v-f7m9 |
7.5 (3.1)
|
A malformed `HTTP/2 HEADERS` frame with oversized, invalid `HPACK` data can cause Node.js to crash … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-q3r6-8php-frm2 |
6.1 (3.1)
|
HackerOne community member Patrick Lang (7yr) has reported a reflected XSS vulnerability in the `ba… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-pm9v-wcw9-xgpv |
2.8 (3.1)
|
A flaw in Node.js's permission model allows a file's access and modification timestamps to be chang… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-ggxc-26fx-987r |
5.9 (3.1)
|
A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS… | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ghsa-cr56-64wj-q2r7 |
2.7 (3.1)
|
HackerOne community member Faraz Ahmed (PakCyberbot) has reported a format string injection in the … | 2026-01-20T21:31:35Z | 2026-01-20T21:31:35Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3100 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.882465Z |
| gsd-2024-30999 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.128700Z |
| gsd-2024-30998 | SQL Injection vulnerability in PHPGurukul Men Salon Management System v.2.0, allows remot… | 2024-04-03T05:02:29.305389Z |
| gsd-2024-30997 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.359887Z |
| gsd-2024-30996 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.266104Z |
| gsd-2024-30995 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.320425Z |
| gsd-2024-30994 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.246540Z |
| gsd-2024-30993 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.351833Z |
| gsd-2024-30992 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.251350Z |
| gsd-2024-30991 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.320009Z |
| gsd-2024-30990 | SQL Injection vulnerability in the "Invoices" page in phpgurukul Client Management System… | 2024-04-03T05:02:29.204297Z |
| gsd-2024-3099 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.885505Z |
| gsd-2024-30989 | Cross Site Scripting vulnerability in /edit-client-details.php of phpgurukul Client Manag… | 2024-04-03T05:02:29.307678Z |
| gsd-2024-30988 | Cross Site Scripting vulnerability in /search-invoices.php of phpgurukul Client Managemen… | 2024-04-03T05:02:29.333619Z |
| gsd-2024-30987 | Cross Site Scripting vulnerability in /bwdates-reports-ds.php of phpgurukul Client Manage… | 2024-04-03T05:02:29.174002Z |
| gsd-2024-30986 | Cross Site Scripting vulnerability in /edit-services-details.php of phpgurukul Client Man… | 2024-04-03T05:02:29.251148Z |
| gsd-2024-30985 | SQL Injection vulnerability in "B/W Dates Reports" page in phpgurukul Client Management S… | 2024-04-03T05:02:29.047227Z |
| gsd-2024-30984 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.080833Z |
| gsd-2024-30983 | SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL … | 2024-04-03T05:02:29.213530Z |
| gsd-2024-30982 | SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL … | 2024-04-03T05:02:29.098591Z |
| gsd-2024-30981 | SQL Injection vulnerability in /edit-computer-detail.php in phpgurukul Cyber Cafe Managem… | 2024-04-03T05:02:29.044637Z |
| gsd-2024-30980 | SQL Injection vulnerability in phpgurukul Cyber Cafe Management System Using PHP & MySQL … | 2024-04-03T05:02:29.056375Z |
| gsd-2024-3098 | A vulnerability was identified in the `exec_utils` class of the `llama_index` package, sp… | 2024-04-03T05:02:29.878426Z |
| gsd-2024-30979 | Cross Site Scripting vulnerability in Cyber Cafe Management System 1.0 allows a remote at… | 2024-04-03T05:02:29.320705Z |
| gsd-2024-30978 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.062131Z |
| gsd-2024-30977 | An issue in Secnet Security Network Intelligent AC Management System v.1.02.040 allows a … | 2024-04-03T05:02:29.280774Z |
| gsd-2024-30976 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.130299Z |
| gsd-2024-30975 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.114727Z |
| gsd-2024-30974 | SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL … | 2024-04-03T05:02:29.210428Z |
| gsd-2024-30973 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-03T05:02:29.071973Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-0000-kam193-c0aa179cbb808337 | Malicious code in runtimeutils (PyPI) | 2025-12-21T14:03:13Z | 2025-12-21T14:03:30Z |
| MAL-0000-KAM193-C0AA179CBB808337 | Malicious code in runtimeutils (PyPI) | 2025-12-21T14:03:13Z | 2025-12-21T14:03:30Z |
| mal-2025-192684 | Malicious code in colorfulpacket (PyPI) | 2025-12-21T11:09:13Z | 2025-12-21T11:09:13Z |
| MAL-2025-192684 | Malicious code in colorfulpacket (PyPI) | 2025-12-21T11:09:13Z | 2025-12-21T11:09:13Z |
| mal-0000-kam193-5ea3f538083de70d | Malicious code in system-health-check-test-unique (PyPI) | 2025-12-19T20:42:35Z | 2025-12-19T20:55:40Z |
| MAL-0000-KAM193-5EA3F538083DE70D | Malicious code in system-health-check-test-unique (PyPI) | 2025-12-19T20:42:35Z | 2025-12-19T20:55:40Z |
| mal-2025-192390 | Malicious code in libxmljs2woter (npm) | 2025-12-09T14:46:17Z | 2025-12-19T16:25:56Z |
| MAL-2025-192390 | Malicious code in libxmljs2woter (npm) | 2025-12-09T14:46:17Z | 2025-12-19T16:25:56Z |
| mal-2025-192450 | Malicious code in fadafas3 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T16:25:55Z |
| MAL-2025-192450 | Malicious code in fadafas3 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T16:25:55Z |
| mal-2025-192381 | Malicious code in configurator-framework (npm) | 2025-12-09T04:40:47Z | 2025-12-19T16:25:54Z |
| MAL-2025-192381 | Malicious code in configurator-framework (npm) | 2025-12-09T04:40:47Z | 2025-12-19T16:25:54Z |
| mal-2025-192439 | Malicious code in asdfgh3 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T16:25:53Z |
| MAL-2025-192439 | Malicious code in asdfgh3 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T16:25:53Z |
| mal-2025-192465 | Malicious code in tnaparserxml (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:46Z |
| MAL-2025-192465 | Malicious code in tnaparserxml (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:46Z |
| mal-2025-192464 | Malicious code in ofjaaah12 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:45Z |
| MAL-2025-192464 | Malicious code in ofjaaah12 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:45Z |
| mal-2025-192469 | Malicious code in elf-stats (npm) | 2025-12-11T19:46:09Z | 2025-12-19T09:25:43Z |
| mal-2025-192449 | Malicious code in elf-stats-sugarplum-mitten-141 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192448 | Malicious code in elf-stats-sparkly-snowglobe-243 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192447 | Malicious code in elf-stats-snowy-toolkit-186 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192446 | Malicious code in elf-stats-silvered-wishlist-243 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192445 | Malicious code in elf-stats-silvered-mailbag-755 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192444 | Malicious code in elf-stats-merry-icicle-449 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192443 | Malicious code in elf-stats-jolly-hammer-980 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192442 | Malicious code in elf-stats-ember-stockpile-448 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192441 | Malicious code in elf-stats-cosy-garland-592 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| mal-2025-192440 | Malicious code in elf-stats-candystriped-snowglobe-426 (npm) | 2025-12-11T01:47:51Z | 2025-12-19T09:25:43Z |
| MAL-2025-192469 | Malicious code in elf-stats (npm) | 2025-12-11T19:46:09Z | 2025-12-19T09:25:43Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-1046 | Google Android Patchday Mai 2024: Mehrere Schwachstellen | 2024-05-06T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2023-2782 | Red Hat OpenShift distributed tracing: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-10-30T23:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2023-2761 | RabbitMQ: Schwachstelle ermöglicht Denial of Service | 2023-10-26T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2023-1928 | Hashicorp Vault: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-07-31T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2022-0944 | Red Hat OpenShift Service Mesh: Schwachstelle ermöglicht Denial of Service | 2022-08-08T22:00:00.000+00:00 | 2024-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-3183 | HP DesignJet: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3181 | Acronis Cyber Protect: Mehrere Schwachstellen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3179 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Manipulation von Dateien | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3178 | Apache ActiveMQ: Schwachstelle ermöglicht Codeausführung | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3177 | Moodle: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen und die Offenlegung von Informationen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3172 | Keycloak: Mehrere Schwachstellen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3171 | HCL BigFix: Schwachstelle ermöglicht Manipulation von Dateien | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3170 | Microsoft GitHub Enterprise: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3168 | Splunk Enterprise: Mehrere Schwachstellen | 2024-10-14T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3166 | OpenLDAP: Schwachstelle ermöglicht Manipulation von Daten | 2015-11-19T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3165 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2017-09-05T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3164 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2018-12-17T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3163 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2020-04-29T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3162 | OpenLDAP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-09-09T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3161 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2020-11-03T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-3133 | Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-10-09T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-2131 | Red Hat Enterprise Linux (Migration Toolkit): Schwachstelle ermöglicht Cross-Site Scripting | 2024-09-12T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-1549 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service | 2024-07-08T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-1067 | Broadcom Brocade SANnav: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-05-07T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0972 | Broadcom Brocade SANnav: Mehrere Schwachstellen | 2024-04-24T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0934 | Broadcom Brocade SANnav: Mehrere Schwachstellen | 2024-04-18T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0918 | Broadcom Brocade SANnav: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2024-04-17T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0915 | Broadcom Brocade SANnav: Mehrere Schwachstellen | 2024-04-16T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0863 | Broadcom Brocade SANnav: Schwachstelle ermöglicht Codeausführung mit den Rechten des Systems | 2024-04-15T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0862 | Broadcom Brocade SANnav: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-04-15T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2013:0206 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 security update | 2013-01-30T20:56:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0193 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update | 2013-01-24T18:31:00+00:00 | 2026-01-28T22:54:14+00:00 |
| rhsa-2013:0203 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-29T05:00:00+00:00 | 2026-01-28T22:54:13+00:00 |
| rhsa-2013:0202 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-28T23:10:00+00:00 | 2026-01-28T22:54:13+00:00 |
| rhsa-2013:0201 | Red Hat Security Advisory: rubygem-activesupport security update | 2013-01-28T23:07:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0198 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T19:06:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0197 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T18:52:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0196 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T18:44:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0195 | Red Hat Security Advisory: JBoss Enterprise Web Platform 5.2.0 update | 2013-01-24T18:41:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0194 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update | 2013-01-24T18:07:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0192 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update | 2013-01-24T18:27:00+00:00 | 2026-01-28T22:54:11+00:00 |
| rhsa-2013:0191 | Red Hat Security Advisory: JBoss Enterprise Application Platform 5.2.0 update | 2013-01-24T18:28:00+00:00 | 2026-01-28T22:54:10+00:00 |
| rhsa-2013:0164 | Red Hat Security Advisory: jbossweb security update | 2013-01-15T19:02:00+00:00 | 2026-01-28T22:54:10+00:00 |
| rhsa-2013:0163 | Red Hat Security Advisory: jbossweb security update | 2013-01-15T18:54:00+00:00 | 2026-01-28T22:54:10+00:00 |
| rhsa-2013:0162 | Red Hat Security Advisory: JBoss Enterprise SOA Platform 4.2.0.CP05 and 4.3.0.CP05 update | 2013-01-15T18:53:00+00:00 | 2026-01-28T22:54:10+00:00 |
| rhsa-2013:0158 | Red Hat Security Advisory: tomcat6 security update | 2013-01-14T20:45:00+00:00 | 2026-01-28T22:54:09+00:00 |
| rhsa-2013:0157 | Red Hat Security Advisory: tomcat6 security update | 2013-01-14T20:43:00+00:00 | 2026-01-28T22:54:09+00:00 |
| rhsa-2013:0155 | Red Hat Security Advisory: Ruby on Rails security update | 2013-01-10T22:32:00+00:00 | 2026-01-28T22:54:09+00:00 |
| rhsa-2013:0154 | Red Hat Security Advisory: Ruby on Rails security update | 2013-01-10T20:39:00+00:00 | 2026-01-28T22:54:09+00:00 |
| rhsa-2013:0153 | Red Hat Security Advisory: Ruby on Rails security update | 2013-01-10T20:36:00+00:00 | 2026-01-28T22:54:09+00:00 |
| rhsa-2013:0151 | Red Hat Security Advisory: JBoss Enterprise Portal Platform 4.3 CP07 security update | 2013-01-10T05:36:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0147 | Red Hat Security Advisory: jbossas security update | 2013-01-08T20:30:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0146 | Red Hat Security Advisory: jbossweb security update | 2013-01-08T20:25:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0128 | Red Hat Security Advisory: conga security, bug fix, and enhancement update | 2013-01-08T04:31:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0005 | Red Hat Security Advisory: tomcat6 security update | 2013-01-03T22:49:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2013:0004 | Red Hat Security Advisory: tomcat6 security update | 2013-01-03T22:47:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2012:1592 | Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update | 2012-12-18T22:23:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2012:1591 | Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update | 2012-12-18T22:17:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2012:1542 | Red Hat Security Advisory: CloudForms Commons 1.1 security update | 2012-12-04T19:24:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2012:1365 | Red Hat Security Advisory: bind security update | 2012-10-12T19:39:00+00:00 | 2026-01-28T22:54:06+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20180207-ucsc | Cisco UCS Central Arbitrary Command Execution Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-ucm1 | Cisco Unified Communications Manager Information Disclosure Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-ucm | Cisco Unified Communications Manager Information Disclosure Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-spark | Cisco Spark Information Disclosure Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-rv13x_2 | Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-iosxr | Cisco IOS XR Software Routing and Forwarding Inconsistency Denial of Service Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-fss | Cisco Firepower System Software BitTorrent File Policy Bypass Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-esacsm | Cisco Email Security Appliance and Cisco Content Security Management Appliance Spam Quarantine Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-dcaf1 | Cisco Data Center Analytics Framework Reflected Cross-Site Scripting Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-dcaf | Cisco Data Center Analytics Framework Stored Cross-Site Scripting Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-cucm | Cisco Unified Communications Manager SQL Injection Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-cps1 | Cisco Policy Suite RADIUS Authentication Information Disclosure Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-cps | Cisco Policy Suite RADIUS Authentication Bypass Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-cpn | Cisco Prime Network TCP Denial of Service Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180207-asr | Cisco StarOS for Cisco ASR 5000 Series Aggregation Services Routers File Overwrite Vulnerability | 2018-02-07T16:00:00+00:00 | 2018-02-07T16:00:00+00:00 |
| cisco-sa-20180131-ipv6 | Cisco Aggregation Services Router 9000 Series IPv6 Fragment Header Denial of Service Vulnerability | 2018-01-31T16:00:00+00:00 | 2018-01-31T16:00:00+00:00 |
| cisco-sa-20170726-anicrl | Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability | 2017-07-26T16:00:00+00:00 | 2018-01-31T14:47:00+00:00 |
| cisco-sa-20180117-esasma | Cisco Email Security and Content Security Management Appliance Privilege Escalation Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-23T16:28:00+00:00 |
| cisco-sa-20180117-nxos | Cisco NX-OS System Software Management Interface Denial of Service Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-19T21:29:00+00:00 |
| cisco-sa-20180117-wsa1 | Cisco Web Security Appliance Reflected Cross-Site Scripting Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-wms3 | Cisco WebEx Meetings Server Information Disclosure Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-wms2 | Cisco WebEx Meetings Server Remote Account Disabling Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-wms1 | Cisco WebEx Meetings Server Information Disclosure Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-wms | Cisco WebEx Meetings Server Information Disclosure Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-wap | Cisco WAP150 Wireless Cross-Site Scripting Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-ucs | Cisco UCS Central Software IPv6 Denial of Service Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-staros | Cisco StarOS CLI Command Injection Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-psc | Cisco Prime Service Catalog Cross-Site Request Forgery Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-prime-infrastructure | Cisco Prime Infrastructure Open Redirect Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| cisco-sa-20180117-nxos1 | Cisco NX-OS System Software Unauthorized User Account Deletion Vulnerability | 2018-01-17T16:00:00+00:00 | 2018-01-17T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-40549 | Shim: out-of-bounds read in verify_buffer_authenticode() malformed pe file | 2024-01-01T08:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2023-40548 | Shim: interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems | 2024-01-01T08:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2023-40546 | Shim: out-of-bounds read printing error messages | 2024-01-01T08:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2023-1393 | A flaw was found in X.Org Server Overlay Window. A Use-After-Free may lead to local privilege escalation. If a client explicitly destroys the compositor overlay window (aka COW) the Xserver would leave a dangling pointer to that window in the CompScreen structure which will trigger a use-after-free later. | 2023-03-10T00:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2022-28737 | There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables | 2023-07-01T07:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2019-14584 | Null pointer dereference in Tianocore EDK2 | 2021-06-02T00:00:00.000Z | 2025-06-02T00:00:00.000Z |
| msrc_cve-2025-30376 | Microsoft Excel Remote Code Execution Vulnerability | 2025-05-13T07:00:00.000Z | 2025-05-30T07:00:00.000Z |
| msrc_cve-2025-21174 | Windows Standards-Based Storage Management Service Denial of Service Vulnerability | 2025-04-08T07:00:00.000Z | 2025-05-30T07:00:00.000Z |
| msrc_cve-2025-30381 | Microsoft Excel Remote Code Execution Vulnerability | 2025-05-13T07:00:00.000Z | 2025-05-28T07:00:00.000Z |
| msrc_cve-2025-3730 | PyTorch LossCTC.cpp torch.nn.functional.ctc_loss denial of service | 2025-04-02T00:00:00.000Z | 2025-05-28T00:00:00.000Z |
| msrc_cve-2025-32434 | PyTorch: `torch.load` with `weights_only=True` leads to remote code execution | 2025-04-02T00:00:00.000Z | 2025-05-28T00:00:00.000Z |
| msrc_cve-2025-29481 | Buffer Overflow vulnerability in libbpf 1.5.0 allows a local attacker to execute arbitrary code via the bpf_object__init_prog` function of libbpf. | 2025-04-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2025-27144 | Go JOSE's Parsing Vulnerable to Denial of Service | 2025-02-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2025-21614 | go-git clients vulnerable to DoS via maliciously crafted Git server replies | 2025-01-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-9676 | Podman: buildah: cri-o: symlink traversal vulnerability in the containers/storage library can cause denial of service (dos) | 2024-10-01T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-7383 | Libnbd: nbd server improper certificate validation | 2024-08-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-6104 | go-retryablehttp can leak basic auth credentials to log files | 2024-06-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-52338 | Apache Arrow R package: Arbitrary code execution when loading a malicious data file | 2024-11-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-52006 | Newline confusion in credential helpers can lead to credential exfiltration in git | 2025-01-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-50349 | Git does not sanitize URLs when asking for credentials interactively | 2025-01-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-4603 | Excessive time spent checking DSA keys and parameters | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-45338 | Non-linear parsing of case-insensitive content in golang.org/x/net/html | 2024-12-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-37535 | GNOME VTE before 0.76.3 allows an attacker to cause a denial of service (memory consumption) via a window resize escape sequence a related issue to CVE-2000-0476. | 2024-06-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-3727 | Containers/image: digest type does not guarantee valid type | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-34062 | tqdm CLI arguments injection attack | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-32465 | Git's protections for cloning untrusted repositories can be bypassed | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-32021 | Local Git clone may hardlink arbitrary user-readable files into the new repository's "objects/" directory | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-32020 | Cloning local Git repository by untrusted user allows the untrusted user to modify objects in the cloned repository at will | 2024-05-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-2905 | Rpm-ostree: world-readable /etc/shadow file | 2024-04-02T07:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2024-26328 | An issue was discovered in QEMU 7.1.0 through 8.2.1. register_vfs in hw/pci/pcie_sriov.c does not set NumVFs to PCI_SRIOV_TOTAL_VF, and thus interaction with hw/nvme/ctrl.c is mishandled. | 2024-02-02T08:00:00.000Z | 2025-05-27T00:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:12316-1 | glibc-2.36-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12315-1 | booth-1.0+20220724.dce51f9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12314-1 | alpine-2.26-27.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12313-1 | LibVNCServer-devel-0.9.13-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12312-1 | nodejs-electron-19.0.14-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12311-1 | log4net-1.2.10-78.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12310-1 | go1.19-1.19.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12309-1 | go1.18-1.18.6-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12308-1 | snakeyaml-1.31-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12307-1 | frr-8.1-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12306-1 | postorius-1.3.6-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12305-1 | kernel-devel-5.19.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12304-1 | phoronix-test-suite-10.8.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12303-1 | ncat-7.93-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12302-1 | ansible-2.9.27-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12301-1 | python39-3.9.13-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12300-1 | python38-3.8.13-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12299-1 | MozillaThunderbird-102.2.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12298-1 | libminizip1-1.2.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12297-1 | python310-3.10.6-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12296-1 | gdk-pixbuf-devel-2.42.9-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12295-1 | element-web-1.11.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12294-1 | element-desktop-1.11.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12293-1 | curl-7.85.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12292-1 | libmad-devel-0.15.1b-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12291-1 | nodejs-electron-19.0.14-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12290-1 | libxml2-2-2.10.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12289-1 | buildah-1.27.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12288-1 | libvmtools-devel-12.1.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12287-1 | MozillaThunderbird-102.2.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2022-2499 | 2024-03-06T11:15:08.348Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2498 | 2024-03-06T11:15:09.598Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2497 | 2024-03-06T11:15:10.838Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2459 | 2024-03-06T11:15:12.064Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2456 | 2024-03-06T11:15:13.342Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2455 | 2024-03-06T11:15:14.602Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2428 | 2024-03-06T11:15:15.841Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2417 | 2024-03-06T11:15:17.089Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2326 | 2024-03-06T11:15:18.365Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2307 | 2024-03-06T11:15:19.640Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2303 | 2024-03-06T11:15:20.903Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2281 | 2024-03-06T11:15:22.192Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2270 | 2024-03-06T11:15:23.501Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2250 | 2024-03-06T11:15:24.759Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2244 | 2024-03-06T11:15:26.018Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2243 | 2024-03-06T11:15:27.331Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2235 | 2024-03-06T11:15:28.576Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2230 | 2024-03-06T11:15:29.938Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2229 | 2024-03-06T11:15:31.242Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2228 | 2024-03-06T11:15:32.493Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2227 | 2024-03-06T11:15:33.769Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2185 | 2024-03-06T11:15:35.058Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-2095 | 2024-03-06T11:15:36.352Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1999 | 2024-03-06T11:15:37.627Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1983 | 2024-03-06T11:15:38.923Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1981 | 2024-03-06T11:15:40.291Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1963 | 2024-03-06T11:15:41.578Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1954 | 2024-03-06T11:15:42.973Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1948 | 2024-03-06T11:15:44.294Z | 2025-04-03T14:40:37.652Z | |
| bit-gitlab-2022-1944 | 2024-03-06T11:15:45.639Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Updated |
|---|---|---|
| var-202307-0870 | Tenda AC1206 V15.03.06.23, F1202 V1.2.0.20(408), and FH1202 V1.2.0.20(408) were discovere… | 2024-01-18T22:57:33.790000Z |
| var-202312-0472 | Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via th… | 2024-01-18T22:57:32.229000Z |
| var-202312-0136 | D-Link Go-RT-AC750 revA_v101b03 was discovered to contain a command injection vulnerabili… | 2024-01-18T22:57:32.358000Z |
| var-202401-0357 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the… | 2024-01-18T22:57:30.743000Z |
| var-202010-0585 | NETGEAR JGS516PE devices before 2.6.0.43 are affected by lack of access control at the fu… | 2024-01-18T22:56:42.711000Z |
| var-202309-2529 | TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability… | 2024-01-18T22:56:38.496000Z |
| var-202312-0481 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'l… | 2024-01-18T22:56:37.431000Z |
| var-202312-0418 | Tenda W30E V16.01.0.12(4843) was discovered to contain a command injection vulnerability … | 2024-01-18T22:56:37.470000Z |
| var-202312-0334 | There is a denial of service vulnerability in some ZTE mobile internet products. Due to … | 2024-01-18T22:56:37.530000Z |
| var-202401-0199 | A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q4). The affec… | 2024-01-18T22:56:36.041000Z |
| var-202401-0722 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the fu… | 2024-01-18T22:56:35.735000Z |
| var-202401-0659 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in… | 2024-01-18T22:56:35.777000Z |
| var-200412-0177 | Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refu… | 2024-01-18T22:56:34.831000Z |
| var-201608-0222 | Buffer overflow in Cisco Adaptive Security Appliance (ASA) Software through 9.4.2.3 on AS… | 2024-01-18T22:56:20.969000Z |
| var-202202-0894 | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Ro… | 2024-01-18T22:56:12.753000Z |
| var-202202-0893 | Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Ro… | 2024-01-18T22:56:12.725000Z |
| var-202003-1435 | The HTTP interface of the Grandstream UCM6200 series is vulnerable to an unauthenticated … | 2024-01-18T22:55:19.159000Z |
| var-202312-0480 | Tenda W30E V16.01.0.12(4843) contains a stack overflow vulnerability via the function for… | 2024-01-18T22:54:54.448000Z |
| var-202312-0062 | An issue in TOTOLINK X6000R V9.4.0cu.652_B20230116 and V9.4.0cu.852_B20230719 allows a re… | 2024-01-18T22:54:54.593000Z |
| var-201711-0414 | A Use of Hard-coded Credentials issue was discovered in Korenix JetNet JetNet5018G versio… | 2024-01-18T22:53:43.658000Z |
| var-201711-0411 | A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G … | 2024-01-18T22:53:43.700000Z |
| var-202307-0353 | An os command injection vulnerability exists in the libzebra.so change_hostname functiona… | 2024-01-18T22:53:34.373000Z |
| var-202312-0444 | Tenda AX9 V22.03.01.46 has been found to contain a stack overflow vulnerability in the 'l… | 2024-01-18T22:53:32.097000Z |
| var-201901-1453 | The admin web interface on Technicolor MediaAccess TG789vac v2 HP devices with firmware v… | 2024-01-18T22:52:40.790000Z |
| var-202203-0287 | Tenda AX12 v22.03.01.21 was discovered to contain a stack buffer overflow in the function… | 2024-01-18T22:52:37.564000Z |
| var-202307-0317 | Two OS command injection vulnerabilities exist in the urvpn_client cmd_name_action functi… | 2024-01-18T22:52:35.535000Z |
| var-202307-0299 | Two OS command injection vulnerability exist in the vtysh_ubus toolsh_excute.constprop.1 … | 2024-01-18T22:52:35.565000Z |
| var-202307-0275 | Two OS command injection vulnerability exist in the vtysh_ubus toolsh_excute.constprop.1 … | 2024-01-18T22:52:35.593000Z |
| var-202307-0254 | An OS command injection vulnerability exists in the vtysh_ubus tcpdump_start_cb functiona… | 2024-01-18T22:52:35.622000Z |
| var-202311-0501 | This external control vulnerability, if exploited, could allow a local OS-authenticated … | 2024-01-18T22:52:34.014000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2024:3853-1 | Security update for uwsgi | 2024-10-31T11:01:17Z | 2024-10-31T11:01:17Z |
| suse-su-2024:3852-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP5) | 2024-10-31T10:34:16Z | 2024-10-31T10:34:16Z |
| suse-su-2024:3851-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4) | 2024-10-31T10:34:06Z | 2024-10-31T10:34:06Z |
| suse-su-2024:3850-1 | Security update for the Linux Kernel (Live Patch 40 for SLE 15 SP3) | 2024-10-31T10:33:57Z | 2024-10-31T10:33:57Z |
| suse-su-2024:3849-1 | Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP2) | 2024-10-31T10:33:47Z | 2024-10-31T10:33:47Z |
| suse-su-2024:3848-1 | Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP2) | 2024-10-31T10:33:38Z | 2024-10-31T10:33:38Z |
| suse-su-2024:3844-1 | Security update for 389-ds | 2024-10-31T08:50:21Z | 2024-10-31T08:50:21Z |
| suse-su-2024:3843-1 | Security update for 389-ds | 2024-10-31T08:50:06Z | 2024-10-31T08:50:06Z |
| suse-su-2024:3842-1 | Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP5) | 2024-10-31T07:33:50Z | 2024-10-31T07:33:50Z |
| suse-su-2024:3840-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5) | 2024-10-30T21:46:09Z | 2024-10-30T21:46:09Z |
| suse-su-2024:3838-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP5) | 2024-10-30T20:03:41Z | 2024-10-30T20:03:41Z |
| suse-su-2024:3837-1 | Security update for the Linux Kernel RT (Live Patch 11 for SLE 15 SP5) | 2024-10-30T19:03:53Z | 2024-10-30T19:03:53Z |
| suse-su-2024:3836-1 | Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4) | 2024-10-30T19:03:43Z | 2024-10-30T19:03:43Z |
| suse-su-2024:3835-1 | Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP6) | 2024-10-30T18:34:29Z | 2024-10-30T18:34:29Z |
| suse-su-2024:3834-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) | 2024-10-30T18:34:25Z | 2024-10-30T18:34:25Z |
| suse-su-2024:3833-1 | Security update for the Linux Kernel RT (Live Patch 16 for SLE 15 SP5) | 2024-10-30T18:34:20Z | 2024-10-30T18:34:20Z |
| suse-su-2024:3831-1 | Security update for the Linux Kernel RT (Live Patch 14 for SLE 15 SP5) | 2024-10-30T18:34:08Z | 2024-10-30T18:34:08Z |
| suse-su-2024:3830-1 | Security update for the Linux Kernel RT (Live Patch 13 for SLE 15 SP5) | 2024-10-30T18:34:02Z | 2024-10-30T18:34:02Z |
| suse-su-2024:3829-1 | Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP5) | 2024-10-30T18:33:57Z | 2024-10-30T18:33:57Z |
| suse-su-2024:3824-1 | Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP5) | 2024-10-30T18:33:36Z | 2024-10-30T18:33:36Z |
| suse-su-2024:3822-1 | Security update for the Linux Kernel (Live Patch 57 for SLE 12 SP5) | 2024-10-30T17:34:42Z | 2024-10-30T17:34:42Z |
| suse-su-2024:3821-1 | Security update for the Linux Kernel (Live Patch 56 for SLE 12 SP5) | 2024-10-30T17:34:33Z | 2024-10-30T17:34:33Z |
| suse-su-2024:3820-1 | Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5) | 2024-10-30T17:34:24Z | 2024-10-30T17:34:24Z |
| suse-su-2024:3816-1 | Security update for the Linux Kernel (Live Patch 49 for SLE 12 SP5) | 2024-10-30T17:33:57Z | 2024-10-30T17:33:57Z |
| suse-su-2024:3815-1 | Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP4) | 2024-10-30T17:03:55Z | 2024-10-30T17:03:55Z |
| suse-su-2024:3814-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) | 2024-10-30T17:03:45Z | 2024-10-30T17:03:45Z |
| suse-su-2024:3811-1 | Security update for govulncheck-vulndb | 2024-10-30T15:34:09Z | 2024-10-30T15:34:09Z |
| suse-su-2024:3810-1 | Security update for python-Werkzeug | 2024-10-30T15:33:52Z | 2024-10-30T15:33:52Z |
| suse-su-2024:3809-1 | Security update for go1.21-openssl | 2024-10-30T15:07:58Z | 2024-10-30T15:07:58Z |
| suse-su-2024:3806-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4) | 2024-10-30T13:34:04Z | 2024-10-30T13:34:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-22324 | D-Link G416 flup lfilename命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22323 | D-Link G416 flpl query_type edit命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22322 | D-Link G416 flup lfilename命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22321 | D-Link G416命令注入远程代码执行漏洞 | 2024-08-13 | 2025-09-23 |
| cnvd-2025-22306 | Huawei HarmonyOS WIFI模块权限控制类漏洞 | 2024-11-07 | 2025-09-23 |
| cnvd-2025-22305 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-22305) | 2024-11-07 | 2025-09-23 |
| cnvd-2025-22296 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-22296) | 2024-11-07 | 2025-09-23 |
| cnvd-2025-22295 | Huawei HarmonyOS Gallery信息管理类漏洞 | 2024-11-07 | 2025-09-23 |
| cnvd-2025-22294 | Huawei HarmonyOS和EMUI account模块launcherAnyWhere漏洞 | 2024-11-07 | 2025-09-23 |
| cnvd-2025-22292 | Huawei HarmonyOS权限管理漏洞 | 2024-12-30 | 2025-09-23 |
| cnvd-2025-22277 | Apple macOS存在未明漏洞(CNVD-2025-22277) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22276 | Apple macOS存在未明漏洞(CNVD-2025-22276) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22275 | Apple macOS存在未明漏洞(CNVD-2025-22275) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22274 | Apple macOS存在未明漏洞(CNVD-2025-22274) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22273 | Apple macOS存在未明漏洞(CNVD-2025-22273) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22272 | Apple macOS存在未明漏洞(CNVD-2025-22272) | 2025-08-01 | 2025-09-23 |
| cnvd-2025-22271 | Huawei HarmonyOS cjwindow模块指针悬垂漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22270 | Huawei HarmonyOS dms_fwk模块堆栈缓冲区溢出漏洞 | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22260 | Huawei HarmonyOS NearLink协议栈SSAP模块越界读取漏洞(CNVD-2025-22260) | 2025-08-18 | 2025-09-23 |
| cnvd-2025-22665 | WordPress插件Ads by WPQuads跨站脚本漏洞 | 2025-09-25 | 2025-09-22 |
| cnvd-2025-22626 | NVIDIA Triton Inference Server操作系统命令注入漏洞 | 2025-09-19 | 2025-09-22 |
| cnvd-2025-22317 | JetBrains Junie命令注入漏洞 | 2025-09-19 | 2025-09-22 |
| cnvd-2025-22293 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-2229335) | 2024-12-20 | 2025-09-22 |
| cnvd-2025-22269 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-22269) | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22268 | Huawei HarmonyOS类型混淆漏洞 | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22267 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-22267) | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22266 | Huawei HarmonyOS home screen模块输入验证类漏洞 | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22265 | Huawei HarmonyOS存在未明漏洞(CNVD-2025-22265) | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22264 | Huawei HarmonyOS堆缓冲区溢出漏洞(CNVD-2025-22264) | 2025-08-18 | 2025-09-22 |
| cnvd-2025-22263 | Huawei HarmonyOS越界读取漏洞(CNVD-2025-22263) | 2025-08-18 | 2025-09-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-0322 | Multiples vulnérabilités dans Oracle Database Server | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0321 | Multiples vulnérabilités dans Oracle Java SE | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0320 | Multiples vulnérabilités dans Oracle VirtualBox | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0319 | Multiples vulnérabilités dans les produits Cisco | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0318 | Multiples vulnérabilités dans les produits Mitel | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0317 | Vulnérabilité dans Cisco ClamAV | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0316 | Vulnérabilité dans les produits Xen | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0312 | Multiples vulnérabilités dans les produits Atlassian | 2024-04-17T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0326 | Multiples vulnérabilités dans Oracle MySQL | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0325 | Multiples vulnérabilités dans Oracle PeopleSoft | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0324 | Multiples vulnérabilités dans Oracle Systems | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0323 | Multiples vulnérabilités dans Oracle Weblogic | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0322 | Multiples vulnérabilités dans Oracle Database Server | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0321 | Multiples vulnérabilités dans Oracle Java SE | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0320 | Multiples vulnérabilités dans Oracle VirtualBox | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0319 | Multiples vulnérabilités dans les produits Cisco | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0318 | Multiples vulnérabilités dans les produits Mitel | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0317 | Vulnérabilité dans Cisco ClamAV | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0316 | Vulnérabilité dans les produits Xen | 2024-04-18T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| CERTFR-2024-AVI-0312 | Multiples vulnérabilités dans les produits Atlassian | 2024-04-17T00:00:00.000000 | 2024-04-18T00:00:00.000000 |
| certfr-2024-avi-0315 | Vulnérabilité dans SolarWinds Serv-U | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0314 | Multiples vulnérabilités dans Ivanti Avalanche | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0313 | Multiples vulnérabilités dans Google Chrome | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0311 | Multiples vulnérabilités dans les produits Mozilla | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| CERTFR-2024-AVI-0315 | Vulnérabilité dans SolarWinds Serv-U | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| CERTFR-2024-AVI-0314 | Multiples vulnérabilités dans Ivanti Avalanche | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| CERTFR-2024-AVI-0313 | Multiples vulnérabilités dans Google Chrome | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| CERTFR-2024-AVI-0311 | Multiples vulnérabilités dans les produits Mozilla | 2024-04-17T00:00:00.000000 | 2024-04-17T00:00:00.000000 |
| certfr-2024-avi-0310 | Vulnérabilité dans les produits Juniper | 2024-04-16T00:00:00.000000 | 2024-04-16T00:00:00.000000 |
| certfr-2024-avi-0309 | Vulnérabilité dans Stormshield Network Security | 2024-04-16T00:00:00.000000 | 2024-04-16T00:00:00.000000 |