Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0877 |
N/A
|
Internet Explorer 5 allows remote attackers to re… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.747Z |
| CVE-1999-0878 |
N/A
|
Buffer overflow in WU-FTPD and related FTP server… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.843Z |
| CVE-1999-0879 |
N/A
|
Buffer overflow in WU-FTPD and related FTP server… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.803Z |
| CVE-1999-0880 |
N/A
|
Denial of service in WU-FTPD via the SITE NEWER c… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.924Z |
| CVE-1999-0883 |
N/A
|
Zeus web server allows remote attackers to read a… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.740Z |
| CVE-1999-0884 |
N/A
|
The Zeus web server administrative interface uses… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.808Z |
| CVE-1999-0886 |
N/A
|
The security descriptor for RASMAN allows users t… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.954Z |
| CVE-1999-0887 |
N/A
|
FTGate web interface server allows remote attacke… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.671Z |
| CVE-1999-0891 |
N/A
|
The "download behavior" in Internet Explorer 5 al… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.024Z |
| CVE-1999-0892 |
N/A
|
Buffer overflow in Netscape Communicator before 4… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.464Z |
| CVE-1999-0894 |
N/A
|
Red Hat Linux screen program does not use Unix98 … |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.253Z |
| CVE-1999-0900 |
N/A
|
Buffer overflow in rpc.yppasswdd allows a local u… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.084Z |
| CVE-1999-0901 |
N/A
|
ypserv allows a local user to modify the GECOS an… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.109Z |
| CVE-1999-0902 |
N/A
|
ypserv allows local administrators to modify pass… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.713Z |
| CVE-1999-0907 |
N/A
|
sccw allows local users to read arbitrary files. |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.347Z |
| CVE-1999-0909 |
N/A
|
Multihomed Windows systems allow a remote attacke… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.379Z |
| CVE-1999-0914 |
N/A
|
Buffer overflow in the FTP client in the Debian G… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.965Z |
| CVE-1999-0915 |
N/A
|
URL Live! web server allows remote attackers to r… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.286Z |
| CVE-1999-0917 |
N/A
|
The Preloader ActiveX control used by Internet Ex… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.204Z |
| CVE-1999-0918 |
N/A
|
Denial of service in various Windows systems via … |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.145Z |
| CVE-1999-0933 |
N/A
|
TeamTrack web server allows remote attackers to r… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.362Z |
| CVE-1999-0934 |
N/A
|
classifieds.cgi allows remote attackers to read a… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.321Z |
| CVE-1999-0935 |
N/A
|
classifieds.cgi allows remote attackers to execut… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.310Z |
| CVE-1999-0936 |
N/A
|
BNBSurvey survey.cgi program allows remote attack… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.146Z |
| CVE-1999-0937 |
N/A
|
BNBForm allows remote attackers to read arbitrary… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.356Z |
| CVE-1999-0938 |
N/A
|
MBone SDR Package allows remote attackers to exec… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.405Z |
| CVE-1999-0939 |
N/A
|
Denial of service in Debian IRC Epic/epic4 client… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.325Z |
| CVE-1999-0940 |
N/A
|
Buffer overflow in mutt mail client allows remote… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.400Z |
| CVE-1999-0943 |
N/A
|
Buffer overflow in OpenLink 3.2 allows remote att… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.372Z |
| CVE-1999-0947 |
N/A
|
AN-HTTPd provides example CGI scripts test.bat, i… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.357Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0877 |
N/A
|
Internet Explorer 5 allows remote attackers to re… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.747Z |
| CVE-1999-0878 |
N/A
|
Buffer overflow in WU-FTPD and related FTP server… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.843Z |
| CVE-1999-0879 |
N/A
|
Buffer overflow in WU-FTPD and related FTP server… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.803Z |
| CVE-1999-0880 |
N/A
|
Denial of service in WU-FTPD via the SITE NEWER c… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.924Z |
| CVE-1999-0883 |
N/A
|
Zeus web server allows remote attackers to read a… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.740Z |
| CVE-1999-0884 |
N/A
|
The Zeus web server administrative interface uses… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.808Z |
| CVE-1999-0886 |
N/A
|
The security descriptor for RASMAN allows users t… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.954Z |
| CVE-1999-0887 |
N/A
|
FTGate web interface server allows remote attacke… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.671Z |
| CVE-1999-0891 |
N/A
|
The "download behavior" in Internet Explorer 5 al… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.024Z |
| CVE-1999-0892 |
N/A
|
Buffer overflow in Netscape Communicator before 4… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.464Z |
| CVE-1999-0894 |
N/A
|
Red Hat Linux screen program does not use Unix98 … |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.253Z |
| CVE-1999-0900 |
N/A
|
Buffer overflow in rpc.yppasswdd allows a local u… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.084Z |
| CVE-1999-0901 |
N/A
|
ypserv allows a local user to modify the GECOS an… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.109Z |
| CVE-1999-0902 |
N/A
|
ypserv allows local administrators to modify pass… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.713Z |
| CVE-1999-0907 |
N/A
|
sccw allows local users to read arbitrary files. |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.347Z |
| CVE-1999-0909 |
N/A
|
Multihomed Windows systems allow a remote attacke… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.379Z |
| CVE-1999-0914 |
N/A
|
Buffer overflow in the FTP client in the Debian G… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:28.965Z |
| CVE-1999-0915 |
N/A
|
URL Live! web server allows remote attackers to r… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.286Z |
| CVE-1999-0917 |
N/A
|
The Preloader ActiveX control used by Internet Ex… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.204Z |
| CVE-1999-0918 |
N/A
|
Denial of service in various Windows systems via … |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.145Z |
| CVE-1999-0933 |
N/A
|
TeamTrack web server allows remote attackers to r… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.362Z |
| CVE-1999-0934 |
N/A
|
classifieds.cgi allows remote attackers to read a… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.321Z |
| CVE-1999-0935 |
N/A
|
classifieds.cgi allows remote attackers to execut… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.310Z |
| CVE-1999-0936 |
N/A
|
BNBSurvey survey.cgi program allows remote attack… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.146Z |
| CVE-1999-0937 |
N/A
|
BNBForm allows remote attackers to read arbitrary… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.356Z |
| CVE-1999-0938 |
N/A
|
MBone SDR Package allows remote attackers to exec… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.405Z |
| CVE-1999-0939 |
N/A
|
Denial of service in Debian IRC Epic/epic4 client… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.325Z |
| CVE-1999-0940 |
N/A
|
Buffer overflow in mutt mail client allows remote… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.400Z |
| CVE-1999-0943 |
N/A
|
Buffer overflow in OpenLink 3.2 allows remote att… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.372Z |
| CVE-1999-0947 |
N/A
|
AN-HTTPd provides example CGI scripts test.bat, i… |
n/a |
n/a |
2000-01-04T05:00:00 | 2024-08-01T16:55:29.357Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-1999-0210 | Automount daemon automountd allows local or remote users to gain privileges via shell metacharacters. | 1997-11-26T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1257 | Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the … | 1997-11-26T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0016 | Land IP denial of service. | 1997-12-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0193 | Denial of service in Ascend and 3com routers, which can be rebooted by sending a zero length TCP option. | 1997-12-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0244 | Livingston RADIUS code has a buffer overflow which can allow remote execution of commands as root. | 1997-12-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0340 | Buffer overflow in Linux Slackware crond program allows local users to gain root access. | 1997-12-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0018 | Buffer overflow in statd allows root privileges. | 1997-12-05T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0017 | FTP servers can allow an attacker to connect to arbitrary ports on machines other than the FTP clie… | 1997-12-10T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1140 | Buffer overflow in CrackLib 2.5 may allow local users to gain root privileges via a long GECOS field. | 1997-12-14T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0230 | Buffer overflow in Cisco 7xx routers through the telnet service. | 1997-12-15T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0004 | MIME buffer overflow in email clients, e.g. Solaris mailtool and Outlook. | 1997-12-16T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0015 | Teardrop IP denial of service. | 1997-12-16T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0104 | A later variation on the Teardrop IP denial of service attack, a.k.a. Teardrop-2. | 1997-12-16T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1581 | Memory leak in Simple Network Management Protocol (SNMP) agent (snmp.exe) for Windows NT 4.0 before… | 1997-12-23T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1230 | Quake 2 server allows remote attackers to cause a denial of service via a spoofed UDP packet with a… | 1997-12-24T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1274 | iPass RoamServer 3.1 creates temporary files with world-writable permissions. | 1997-12-29T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0107 | Buffer overflow in Apache 1.2.5 and earlier allows a remote attacker to cause a denial of service w… | 1997-12-30T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0114 | Local users can execute commands as other users, and read other users' files, through the filter co… | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0239 | Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppe… | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0273 | Denial of service through Solaris 2.5.1 telnet by sending ^D characters. | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0279 | Excite for Web Servers (EWS) allows remote command execution via shell metacharacters. | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0284 | Denial of service to NT mail servers including Ipswitch, Mdaemon, and Exchange through a buffer ove… | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0293 | AAA authentication on Cisco systems allows attackers to execute commands without authorization. | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0331 | Buffer overflow in Internet Explorer 4.0(1). | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0341 | Buffer overflow in the Linux mail program "deliver" allows local users to gain root access. | 1998-01-01T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1439 | gcc 2.7.2 allows local users to overwrite arbitrary files via a symlink attack on temporary .i, .s,… | 1998-01-02T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0513 | ICMP messages to broadcast addresses are allowed, allowing for a Smurf attack that can cause a deni… | 1998-01-05T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1429 | DIT TransferPro installs devices with world-readable and world-writable permissions, which could al… | 1998-01-05T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0086 | AIX routed allows remote users to modify sensitive files. | 1998-01-08T05:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1176 | Buffer overflow in cidentd ident daemon allows local users to gain root privileges via a long line … | 1998-01-10T05:00:00.000 | 2025-04-03T01:03:51.193 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-fx46-whrj-73v5 |
6.1 (3.1)
|
Bypassing Sanitization using DOM clobbering in html-janitor | 2018-07-24T20:06:17Z | 2023-09-12T20:47:14Z |
| ghsa-3pwh-5mmc-mwrx |
|
Denial of Service in nes | 2018-07-24T20:06:33Z | 2020-08-31T18:19:35Z |
| ghsa-jxqq-cqm6-pfq9 |
|
Regular Expression Denial of Service in slug | 2018-07-24T20:06:45Z | 2020-08-31T18:26:54Z |
| ghsa-rwr3-c2q8-gm56 |
5.5 (3.1)
6.9 (4.0)
|
Pillow Integer overflow in Map.c | 2018-07-24T20:08:27Z | 2024-10-08T13:06:30Z |
| ghsa-x5pg-88wf-qq4p |
7.5 (3.1)
|
Regular Expression Denial of Service in marked | 2018-07-24T20:10:52Z | 2023-09-07T22:11:27Z |
| ghsa-q75g-2496-mxpp |
|
Regular Expression Denial of Service in parsejson | 2018-07-24T20:11:13Z | 2020-08-31T18:26:32Z |
| ghsa-g7q5-pjjr-gqvp |
7.5 (3.1)
|
Regular Expression Denial of Service in tough-cookie | 2018-07-24T20:14:39Z | 2021-09-10T20:28:19Z |
| ghsa-3c5c-7235-994j |
6.5 (3.1)
7.1 (4.0)
|
Pillow buffer overflow in ImagingPcdDecode | 2018-07-24T20:15:13Z | 2024-10-08T13:09:01Z |
| ghsa-8xjv-v9xq-m5h9 |
6.5 (3.1)
7.1 (4.0)
|
Pillow Buffer overflow in ImagingFliDecode | 2018-07-24T20:15:36Z | 2024-10-09T20:08:11Z |
| ghsa-hvr8-466p-75rh |
9.8 (3.1)
9.3 (4.0)
|
Pillow Integer overflow in ImagingResampleHorizontal | 2018-07-24T20:15:48Z | 2024-10-08T13:06:58Z |
| ghsa-g36h-6r4f-3mqp |
7.5 (3.1)
|
Regular Expression Denial of Service in string package | 2018-07-24T20:16:11Z | 2023-09-12T20:48:10Z |
| ghsa-mpcf-4gmh-23w8 |
7.5 (3.1)
|
Regular Expression Denial of Service in forwarded | 2018-07-24T20:16:30Z | 2023-09-11T22:05:14Z |
| ghsa-9qj9-36jm-prpv |
7.5 (3.1)
|
Regular Expression Denial of Service in fresh | 2018-07-24T20:16:57Z | 2023-09-08T21:32:03Z |
| ghsa-2gjg-5x33-mmp2 |
7.5 (3.1)
|
Path Traversal in localhost-now | 2018-07-25T22:44:05Z | 2023-03-01T01:47:01Z |
| ghsa-4rvg-955w-h68q |
6.5 (3.1)
|
Path Traversal in angular-http-server | 2018-07-26T14:47:40Z | 2023-03-01T01:19:07Z |
| ghsa-52r9-g5g6-2hjp |
6.5 (3.1)
|
Path Traversal in node-srv | 2018-07-26T14:50:41Z | 2023-03-01T01:19:48Z |
| ghsa-2x4q-6jfv-8h9h |
6.5 (3.1)
|
Path Traversal in glance | 2018-07-26T14:53:14Z | 2023-01-31T01:45:02Z |
| ghsa-jrhj-2j3q-xf3v |
5.4 (3.1)
|
Stored Cross-Site Scripting in simplehttpserver | 2018-07-26T15:03:30Z | 2023-01-31T01:51:10Z |
| ghsa-rch9-xh7r-mqgw |
5.4 (3.1)
|
Cross-Site Scripting in connect | 2018-07-26T15:08:05Z | 2023-05-30T19:26:12Z |
| ghsa-3mpr-hq3p-49h9 |
8.8 (3.1)
|
Prototype Pollution in mixin-deep | 2018-07-26T15:10:54Z | 2023-03-01T01:32:37Z |
| ghsa-xcvv-84j5-jw9h |
8.8 (3.1)
|
Prototype Pollution in assign-deep | 2018-07-26T15:12:31Z | 2023-03-01T01:46:49Z |
| ghsa-fvqr-27wr-82fm |
6.5 (3.1)
|
Prototype Pollution in lodash | 2018-07-26T15:14:52Z | 2025-08-12T21:37:06Z |
| ghsa-9g9w-hmvj-5h57 |
8.8 (3.1)
|
Prototype Pollution in merge-deep | 2018-07-26T15:17:15Z | 2023-09-07T18:19:34Z |
| ghsa-cqp5-m4pq-gfgp |
8.8 (3.1)
|
Prototype Pollution in defaults-deep | 2018-07-26T15:18:43Z | 2023-09-12T20:44:17Z |
| ghsa-wv2f-3rxv-jqhp |
7.5 (3.1)
|
Path Traversal in general-file-server | 2018-07-26T15:21:04Z | 2023-09-07T22:28:13Z |
| ghsa-x26f-26qw-hhhx |
7.5 (3.1)
|
Path Traversal in hekto | 2018-07-26T15:22:00Z | 2023-01-31T01:37:40Z |
| ghsa-73jp-3c67-hjfv |
8.1 (3.1)
|
Authentication Bypass in passport-azure-ad | 2018-07-26T15:53:31Z | 2021-09-02T19:18:46Z |
| ghsa-r38r-qp28-2m63 |
9.8 (3.1)
|
Code injection in rope | 2018-07-26T16:08:49Z | 2024-10-21T21:29:55Z |
| ghsa-cgqv-x5cx-xvqh |
|
Arbitrary Code Injection in pouchdb | 2018-07-26T16:22:08Z | 2020-08-31T18:12:18Z |
| ghsa-wxvm-fh75-mpgr |
|
Critical severity vulnerability that affects dns-sync | 2018-07-26T16:24:34Z | 2020-06-17T15:15:19Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2017-10 |
|
A maliciously crafted URL to a Django (1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 bef… | django | 2017-04-04T17:59:00Z | 2021-07-05T00:01:20.782735Z |
| pysec-2017-9 |
|
Django 1.10 before 1.10.7, 1.9 before 1.9.13, and 1.8 before 1.8.18 relies on user input … | django | 2017-04-04T17:59:00Z | 2021-07-05T00:01:20.658989Z |
| pysec-2017-97 |
|
file_open in Tryton 3.x and 4.x through 4.2.2 allows remote authenticated users with cert… | trytond | 2017-04-04T17:59:00Z | 2021-08-27T03:22:48.689499Z |
| pysec-2017-21 |
|
OpenStack Nova-LXD before 13.1.1 uses the wrong name for the veth pairs when applying Neu… | nova-lxd | 2017-04-12T22:59:00Z | 2021-07-05T00:01:23.183236Z |
| pysec-2017-29 |
|
modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle fil… | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.175371Z |
| pysec-2017-30 |
|
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp. | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.213768Z |
| pysec-2017-92 |
|
Heap-based buffer overflow in the j2k_encode_entry function in Pillow 2.5.0 through 3.1.1… | pillow | 2017-04-24T18:59:00Z | 2021-08-27T03:22:10.292415Z |
| pysec-2017-82 |
|
The salt-ssh minion code in SaltStack Salt 2016.11 before 2016.11.4 copied over configura… | salt | 2017-04-25T17:59:00Z | 2021-08-25T04:30:30.228761Z |
| pysec-2017-102 |
|
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute… | radicale | 2017-04-30T15:59:00Z | 2021-12-14T08:18:58.722697Z |
| pysec-2017-101 |
|
Google gRPC before 2017-03-29 has an out-of-bounds write caused by a heap-based use-after… | grpcio | 2017-04-30T17:59:00Z | 2021-12-14T08:16:23.996016Z |
| pysec-2017-112 |
6.5 (3.1)
|
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is in… | exiv2 | 2017-05-26T10:29:00Z | 2024-01-02T15:20:59.086141Z |
| pysec-2017-91 |
|
In Mercurial before 4.1.3, "hg serve --stdio" allows remote authenticated users to launch… | mercurial | 2017-06-06T21:29:00Z | 2021-08-27T03:22:07.149994Z |
| pysec-2017-3 |
|
The chroot, jail, and zone connection plugins in ansible before 1.9.2 allow local users t… | ansible | 2017-06-07T20:29:00Z | 2021-07-02T02:41:33.471109Z |
| pysec-2017-2 |
|
The user module in ansible before 1.6.6 allows remote authenticated users to execute arbi… | ansible | 2017-06-08T18:29:00Z | 2021-07-02T02:41:33.064199Z |
| pysec-2017-96 |
|
The tlslite library before 0.4.9 for Python allows remote attackers to trigger a denial o… | tlslite | 2017-06-13T16:29:00Z | 2021-08-27T03:22:47.903181Z |
| pysec-2017-95 |
|
An exploitable vulnerability exists in the Databook loading functionality of Tablib 0.11.… | tablib | 2017-06-14T13:29:00Z | 2021-08-27T03:22:22.103496Z |
| pysec-2017-142 |
7.5 (3.1)
|
There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault i… | exiv2 | 2017-06-26T23:29:00Z | 2024-11-21T14:22:47.877232Z |
| pysec-2017-146 |
7.5 (3.1)
|
Apache Ignite 1.0.0-RC3 to 2.0 uses an update notifier component to update the users abou… | pyignite | 2017-06-28T13:29:00Z | 2024-11-21T14:22:59.736776Z |
| pysec-2017-118 |
6.5 (3.1)
|
There is a heap-based buffer over-read in the Image::printIFDStructure function in image.… | exiv2 | 2017-07-17T13:18:00Z | 2024-11-21T14:22:46.174866Z |
| pysec-2017-119 |
6.5 (3.1)
|
There is an invalid free in the Action::TaskFactory::cleanup function of actions.cpp in E… | exiv2 | 2017-07-17T13:18:00Z | 2024-11-21T14:22:46.232444Z |
| pysec-2017-120 |
6.5 (3.1)
|
There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in… | exiv2 | 2017-07-17T13:18:00Z | 2024-11-21T14:22:46.291386Z |
| pysec-2017-121 |
6.5 (3.1)
|
There is a heap-based buffer overflow in the Image::printIFDStructure function of image.c… | exiv2 | 2017-07-17T13:18:00Z | 2024-11-21T14:22:46.352202Z |
| pysec-2017-122 |
6.5 (3.1)
|
There is a Segmentation fault in the XmpParser::terminate() function in Exiv2 0.26, relat… | exiv2 | 2017-07-17T13:18:00Z | 2024-11-21T14:22:46.411851Z |
| pysec-2017-13 |
|
FedMsg 0.18.1 and older is vulnerable to a message validation flaw resulting in message v… | fedmsg | 2017-07-17T13:18:00Z | 2021-07-05T00:01:21.573658Z |
| pysec-2017-85 |
|
txAWS (all current versions) fail to perform complete certificate verification resulting … | txaws | 2017-07-17T13:18:00Z | 2021-08-25T04:30:35.998894Z |
| pysec-2017-123 |
7.5 (3.1)
|
There is an illegal address access in the extend_alias_table function in localealias.c of… | exiv2 | 2017-07-23T03:29:00Z | 2024-11-21T14:22:46.480449Z |
| pysec-2017-124 |
7.5 (3.1)
|
There is a Floating point exception in the Exiv2::ValueType function in Exiv2 0.26 that w… | exiv2 | 2017-07-24T01:29:00Z | 2024-11-21T14:22:46.539614Z |
| pysec-2017-125 |
7.5 (3.1)
|
There is a Mismatched Memory Management Routines vulnerability in the Exiv2::FileIo::seek… | exiv2 | 2017-07-24T01:29:00Z | 2024-11-21T14:22:46.598979Z |
| pysec-2017-72 |
|
sosreport 3.2 uses weak permissions for generated sosreport archives, which allows local … | sosreport | 2017-07-25T18:29:00Z | 2021-07-25T23:34:55.539428Z |
| pysec-2017-126 |
6.5 (3.1)
|
There is a reachable assertion in the Internal::TiffReader::visitDirectory function in ti… | exiv2 | 2017-07-27T06:29:00Z | 2024-11-21T14:22:46.672784Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2022-367 | Malicious code in @iwcp/nebula-ui (npm) | 2022-05-31T13:38:50Z | 2022-05-31T13:38:51Z |
| mal-2022-367 | Malicious code in @iwcp/nebula-ui (npm) | 2022-05-31T13:38:50Z | 2022-05-31T13:38:51Z |
| MAL-2022-3280 | Malicious code in gatsby-plugin-conecad (npm) | 2022-05-31T13:41:09Z | 2022-05-31T13:41:09Z |
| mal-2022-3280 | Malicious code in gatsby-plugin-conecad (npm) | 2022-05-31T13:41:09Z | 2022-05-31T13:41:09Z |
| MAL-2022-6360 | Malicious code in support-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| MAL-2022-6388 | Malicious code in sync-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:24Z |
| MAL-2022-6587 | Malicious code in titles (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| mal-2022-6360 | Malicious code in support-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| mal-2022-6388 | Malicious code in sync-colors (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:24Z |
| mal-2022-6587 | Malicious code in titles (npm) | 2022-06-01T09:02:23Z | 2022-06-01T09:02:29Z |
| MAL-2022-2018 | Malicious code in colors-support (npm) | 2022-06-01T09:02:24Z | 2022-06-01T09:02:25Z |
| mal-2022-2018 | Malicious code in colors-support (npm) | 2022-06-01T09:02:24Z | 2022-06-01T09:02:25Z |
| MAL-2022-3549 | Malicious code in hach-package-manager-bounty-hunter (npm) | 2022-06-01T09:02:55Z | 2022-06-01T09:02:56Z |
| mal-2022-3549 | Malicious code in hach-package-manager-bounty-hunter (npm) | 2022-06-01T09:02:55Z | 2022-06-01T09:02:56Z |
| MAL-2022-5389 | Malicious code in pocjenkircetest (npm) | 2022-06-01T09:07:44Z | 2022-06-01T09:07:45Z |
| mal-2022-5389 | Malicious code in pocjenkircetest (npm) | 2022-06-01T09:07:44Z | 2022-06-01T09:07:45Z |
| MAL-2022-94 | Malicious code in @azure-test2/test2 (npm) | 2022-06-01T09:08:19Z | 2022-06-01T09:08:20Z |
| mal-2022-94 | Malicious code in @azure-test2/test2 (npm) | 2022-06-01T09:08:19Z | 2022-06-01T09:08:20Z |
| MAL-2022-2429 | Malicious code in depedence-confusion (npm) | 2022-06-01T09:10:16Z | 2022-06-01T09:10:16Z |
| mal-2022-2429 | Malicious code in depedence-confusion (npm) | 2022-06-01T09:10:16Z | 2022-06-01T09:10:16Z |
| MAL-2022-4205 | Malicious code in kntl-digital3 (npm) | 2022-06-01T09:11:57Z | 2022-06-01T09:11:57Z |
| mal-2022-4205 | Malicious code in kntl-digital3 (npm) | 2022-06-01T09:11:57Z | 2022-06-01T09:11:57Z |
| MAL-2022-72 | Malicious code in @amcdc/backend-api-swagger (npm) | 2022-06-01T09:12:30Z | 2022-06-01T09:12:38Z |
| mal-2022-72 | Malicious code in @amcdc/backend-api-swagger (npm) | 2022-06-01T09:12:30Z | 2022-06-01T09:12:38Z |
| MAL-2022-569 | Malicious code in @s3p-js-deep-purple/utils (npm) | 2022-06-01T09:14:30Z | 2022-06-01T09:14:30Z |
| mal-2022-569 | Malicious code in @s3p-js-deep-purple/utils (npm) | 2022-06-01T09:14:30Z | 2022-06-01T09:14:30Z |
| MAL-2022-5678 | Malicious code in react-transition-group-community-version (npm) | 2022-06-01T09:15:36Z | 2022-06-01T09:15:37Z |
| mal-2022-5678 | Malicious code in react-transition-group-community-version (npm) | 2022-06-01T09:15:36Z | 2022-06-01T09:15:37Z |
| MAL-2022-705 | Malicious code in @visiology-public-utilities/language-utils (npm) | 2022-06-01T09:16:27Z | 2022-06-01T09:16:27Z |
| mal-2022-705 | Malicious code in @visiology-public-utilities/language-utils (npm) | 2022-06-01T09:16:27Z | 2022-06-01T09:16:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1691 | libvirt: Schwachstelle ermöglicht Privilegieneskalation | 2019-05-21T22:00:00.000+00:00 | 2023-07-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1639 | cURL: Mehrere Schwachstellen | 2019-05-22T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2024-1986 | QEMU: Schwachstellen ermöglichen Denial of Service | 2019-05-22T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-1758 | poppler: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2019-05-23T22:00:00.000+00:00 | 2023-07-20T22:00:00.000+00:00 |
| wid-sec-w-2025-1455 | F5 BIG-IP: Mehrere Schwachstellen | 2019-05-23T22:00:00.000+00:00 | 2025-07-03T22:00:00.000+00:00 |
| wid-sec-w-2023-2519 | Red Hat Pacemaker: Mehrere Schwachstellen | 2019-05-27T22:00:00.000+00:00 | 2023-09-28T22:00:00.000+00:00 |
| wid-sec-w-2023-1156 | GNOME: Mehrere Schwachstellen | 2019-05-30T22:00:00.000+00:00 | 2023-05-04T22:00:00.000+00:00 |
| wid-sec-w-2023-2228 | OTRS: Mehrere Schwachstellen | 2019-06-02T22:00:00.000+00:00 | 2023-08-30T22:00:00.000+00:00 |
| wid-sec-w-2022-1947 | Red Hat Single Sign On: Mehrere Schwachstellen | 2019-06-11T22:00:00.000+00:00 | 2023-10-15T22:00:00.000+00:00 |
| wid-sec-w-2024-1598 | Python: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2019-06-11T22:00:00.000+00:00 | 2024-07-11T22:00:00.000+00:00 |
| wid-sec-w-2022-2399 | IBM Notes: Mehrere Schwachstellen ermöglichen Denial of Service | 2019-06-16T22:00:00.000+00:00 | 2022-12-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0507 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2019-06-17T22:00:00.000+00:00 | 2023-04-10T22:00:00.000+00:00 |
| wid-sec-w-2024-3595 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2019-06-17T22:00:00.000+00:00 | 2024-12-03T23:00:00.000+00:00 |
| wid-sec-w-2023-1690 | libvirt: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2019-06-20T22:00:00.000+00:00 | 2023-07-09T22:00:00.000+00:00 |
| wid-sec-w-2025-1197 | Internet Systems Consortium BIND: Schwachstelle ermöglicht Denial of Service | 2019-06-20T22:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1638 | cURL: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2019-06-23T22:00:00.000+00:00 | 2023-07-04T22:00:00.000+00:00 |
| wid-sec-w-2023-3141 | bzip2: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2019-06-23T22:00:00.000+00:00 | 2025-05-14T22:00:00.000+00:00 |
| wid-sec-w-2023-2138 | ImageMagick: Mehrere Schwachstellen | 2019-06-26T22:00:00.000+00:00 | 2024-09-04T22:00:00.000+00:00 |
| wid-sec-w-2024-1735 | expat: Schwachstelle ermöglicht Denial of Service | 2019-06-26T22:00:00.000+00:00 | 2025-01-12T23:00:00.000+00:00 |
| wid-sec-w-2023-1155 | GNOME: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2019-06-30T22:00:00.000+00:00 | 2023-05-04T22:00:00.000+00:00 |
| wid-sec-w-2023-2137 | ImageMagick: Mehrere Schwachstellen | 2019-07-01T22:00:00.000+00:00 | 2024-10-03T22:00:00.000+00:00 |
| wid-sec-w-2023-0473 | xpdf: Mehrere Schwachstellen | 2019-07-04T22:00:00.000+00:00 | 2023-02-23T23:00:00.000+00:00 |
| wid-sec-w-2023-2136 | ImageMagick: Mehrere Schwachstellen | 2019-07-04T22:00:00.000+00:00 | 2024-10-03T22:00:00.000+00:00 |
| wid-sec-w-2023-0219 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2019-07-07T22:00:00.000+00:00 | 2023-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-0459 | Mozilla Firefox/Firefox ESR: Mehrere Schwachstellen | 2019-07-09T22:00:00.000+00:00 | 2025-06-02T22:00:00.000+00:00 |
| wid-sec-w-2023-2135 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2019-07-09T22:00:00.000+00:00 | 2024-10-03T22:00:00.000+00:00 |
| wid-sec-w-2023-2227 | OTRS: Mehrere Schwachstellen | 2019-07-11T22:00:00.000+00:00 | 2023-08-30T22:00:00.000+00:00 |
| wid-sec-w-2023-2486 | Squid: Mehrere Schwachstellen | 2019-07-14T22:00:00.000+00:00 | 2023-10-26T22:00:00.000+00:00 |
| wid-sec-w-2024-1597 | Python: Schwachstelle ermöglicht Offenlegung von Informationen | 2019-07-14T22:00:00.000+00:00 | 2024-07-11T22:00:00.000+00:00 |
| wid-sec-w-2023-2485 | LibreOffice: Mehrere Schwachstellen | 2019-07-16T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0137 | Kwetsbaarheid verholpen in Erlang/OTP SSH-server | 2025-04-18T05:33:40.823978Z | 2025-04-18T05:33:40.823978Z |
| ncsc-2025-0138 | Kwetsbaarheid verholpen in Commvault Command Center | 2025-04-24T13:09:08.399556Z | 2025-05-06T06:55:31.232567Z |
| ncsc-2025-0139 | Kwetsbaarheid verholpen in SonicWall SonicOS | 2025-04-25T09:35:24.276801Z | 2025-04-25T09:35:24.276801Z |
| ncsc-2025-0140 | Kwetsbaarheden verholpen in Apple AirPlay zoals gebruikt door macOS, iOS en iPadOS | 2025-04-30T08:45:31.426155Z | 2025-04-30T08:45:31.426155Z |
| ncsc-2025-0141 | Kwetsbaarheden verholpen in Keycloak | 2025-05-06T07:12:42.075830Z | 2025-05-06T07:12:42.075830Z |
| ncsc-2025-0142 | Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird | 2025-05-06T08:01:05.582708Z | 2025-05-06T08:01:05.582708Z |
| ncsc-2025-0143 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-05-07T11:19:50.517092Z | 2025-05-07T11:19:50.517092Z |
| ncsc-2025-0144 | Kwetsbaarheden verholpen in SysAid On-Prem | 2025-05-08T06:56:21.378830Z | 2025-05-08T06:56:21.378830Z |
| ncsc-2025-0145 | Kwetsbaarheden verholpen in SonicWall SMA100 | 2025-05-08T08:40:26.301646Z | 2025-05-08T08:40:26.301646Z |
| ncsc-2025-0146 | Kwetsbaarheden verholpen in Cisco IOS XE Software | 2025-05-08T08:43:57.415709Z | 2025-05-08T08:43:57.415709Z |
| ncsc-2025-0147 | Kwetsbaarheden verholpen in F5 BIG-IP | 2025-05-09T08:07:32.002935Z | 2025-05-09T08:07:32.002935Z |
| ncsc-2025-0148 | Kwetsbaarheden verholpen in ASUS DriverHub | 2025-05-12T13:22:18.034442Z | 2025-05-12T13:22:18.034442Z |
| ncsc-2025-0149 | Kwetsbaarheden verholpen in SAP producten | 2025-05-13T09:05:38.110295Z | 2025-05-13T09:05:38.110295Z |
| ncsc-2025-0150 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2025-05-13T09:14:44.606584Z | 2025-05-13T09:14:44.606584Z |
| ncsc-2025-0151 | Kwetsbaarheden verholpen in Apple macOS | 2025-05-13T09:19:37.094950Z | 2025-05-13T09:19:37.094950Z |
| ncsc-2025-0152 | Kwetsbaarheden verholpen in Ivanti Endpoint Manager Mobile (EPMM, voormalig MobileIron) | 2025-05-13T15:35:45.784542Z | 2025-05-16T09:42:15.822544Z |
| ncsc-2025-0153 | Kwetsbaarheden verholpen in Microsoft Developer Tools | 2025-05-13T18:35:28.760017Z | 2025-05-13T18:35:28.760017Z |
| ncsc-2025-0154 | Kwetsbaarheden verholpen in Microsoft Dynamics Dataverse | 2025-05-13T18:44:03.290810Z | 2025-05-13T18:44:03.290810Z |
| ncsc-2025-0155 | Kwetsbaarheden verholpen in Microsoft Office | 2025-05-13T18:58:56.989073Z | 2025-05-13T18:58:56.989073Z |
| ncsc-2025-0156 | Kwetsbaarheden verholpen in Microsoft Azure | 2025-05-13T19:10:10.012472Z | 2025-05-13T19:10:10.012472Z |
| ncsc-2025-0157 | Kwetsbaarheden verholpen in Microsoft Defender | 2025-05-13T19:14:25.545635Z | 2025-05-13T19:14:25.545635Z |
| ncsc-2025-0158 | Kwetsbaarheden verholpen in Microsoft Edge | 2025-05-13T19:17:52.478234Z | 2025-05-13T19:17:52.478234Z |
| ncsc-2025-0159 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-05-13T19:47:12.555983Z | 2025-05-13T19:47:12.555983Z |
| ncsc-2025-0160 | Kwetsbaarheden verholpen in Siemens producten | 2025-05-14T07:13:32.957900Z | 2025-05-14T07:13:32.957900Z |
| ncsc-2025-0161 | Kwetsbaarheid verholpen in Ivanti Neurons for ITSM | 2025-05-14T08:16:04.867590Z | 2025-05-14T08:16:04.867590Z |
| ncsc-2025-0162 | Kwetsbaarheden verholpen in Adobe ColdFusion | 2025-05-14T08:18:54.775740Z | 2025-05-14T08:18:54.775740Z |
| ncsc-2025-0163 | Kwetsbaarheden verholpen in Adobe Animate | 2025-05-14T08:21:49.917725Z | 2025-05-14T08:21:49.917725Z |
| ncsc-2025-0164 | Kwetsbaarheden verholpen in Adobe Photoshop | 2025-05-14T08:24:02.186984Z | 2025-05-14T08:24:02.186984Z |
| ncsc-2025-0165 | Kwetsbaarheid verholpen in Adobe Illustrator | 2025-05-14T08:25:17.869407Z | 2025-05-14T08:25:17.869407Z |
| ncsc-2025-0166 | Kwetsbaarheden verholpen in Fortinet producten | 2025-05-14T08:41:08.980708Z | 2025-05-14T08:41:08.980708Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-647455 | SSA-647455: Multiple Vulnerabilities in Nozomi Guardian/CMC before 22.6.2 on RUGGEDCOM APE1808 devices | 2023-10-10T00:00:00Z | 2024-05-14T00:00:00Z |
| ssa-770890 | SSA-770890: Path Traversal Vulnerability in the Web Server of CPCI85 Firmware of SICAM A8000 Devices | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-784849 | SSA-784849: Direct Memory Access Vulnerabilities in SIMATIC CP Devices | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-829656 | SSA-829656: Stack Overflow Vulnerability in Xpedition Layout Browser | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-843070 | SSA-843070: Multiple Vulnerabilities in SCALANCE W1750D | 2023-10-10T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-084182 | SSA-084182: Privilege Escalation Vulnerability in Mendix Runtime | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-099606 | SSA-099606: Multiple Vulnerabilities in SIMATIC MV500 before V3.3.5 | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-137900 | SSA-137900: Multiple Vulnerabilities in COMOS | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-150063 | SSA-150063: Multiple Vulnerabilities in SINEC PNI before V2.0 | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-197270 | SSA-197270: Information Disclosure Vulnerability in Siemens OPC UA Modeling Editor (SiOME) | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-268517 | SSA-268517: Code Execution Vulnerability (libwebp CVE-2023-4863) in Mendix Studio Pro | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-292063 | SSA-292063: Multiple Vulnerabilities in Nozomi Guardian/CMC before 22.6.3 and 23.1.0 on RUGGEDCOM APE1808 devices | 2023-11-14T00:00:00Z | 2024-05-14T00:00:00Z |
| ssa-456933 | SSA-456933: Multiple Vulnerabilities in SIMATIC PCS neo before V4.1 | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-457702 | SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family | 2023-11-14T00:00:00Z | 2024-04-09T00:00:00Z |
| ssa-478780 | SSA-478780: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-617233 | SSA-617233: Urgent/11 TCP/IP Stack Vulnerabilities in SIPROTEC 4 7SJ66 Devices | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-625850 | SSA-625850: Multiple WIBU Systems CodeMeter Vulnerabilities Affecting the Desigo CC Product Family and SENTRON powermanager | 2023-11-14T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-699386 | SSA-699386: Multiple Vulnerabilities in SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family before V4.5 | 2023-11-14T00:00:00Z | 2024-03-12T00:00:00Z |
| ssa-887122 | SSA-887122: X_T File Parsing Vulnerabilities in Simcenter Femap | 2023-11-14T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-068047 | SSA-068047: Multiple Vulnerabilities in SCALANCE M-800 Family Before V7.2.2 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-077170 | SSA-077170: Multiple Vulnerabilities in SINEC INS before V1.0 SP2 Update 2 | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-118850 | SSA-118850: Denial of Service Vulnerability in the OPC UA Implementation in SINUMERIK ONE and SINUMERIK MC | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ssa-180704 | SSA-180704: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0 | 2023-12-12T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-280603 | SSA-280603: Denial of Service Vulnerability in SINUMERIK ONE and SINUMERIK MC | 2023-12-12T00:00:00Z | 2024-09-10T00:00:00Z |
| ssa-398330 | SSA-398330: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP >= V3.1.0 and < V3.1.5 | 2023-12-12T00:00:00Z | 2025-08-12T00:00:00Z |
| ssa-480095 | SSA-480095: Vulnerabilities in the Web Interface of SICAM Q100 Devices before V2.60 | 2023-12-12T00:00:00Z | 2024-01-09T00:00:00Z |
| ssa-592380 | SSA-592380: Denial of Service Vulnerability in SIMATIC S7-1500 CPUs and related products | 2023-12-12T00:00:00Z | 2024-05-14T00:00:00Z |
| ssa-693975 | SSA-693975: Denial-of-Service Vulnerability in the Web Server of Industrial Products | 2023-12-12T00:00:00Z | 2024-03-12T00:00:00Z |
| ssa-844582 | SSA-844582: Electromagnetic Fault Injection in LOGO! V8.3 BM Devices Results in Broken LOGO! V8.3 Product CA | 2023-12-12T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-887801 | SSA-887801: Information Disclosure Vulnerability in SIMATIC STEP 7 (TIA Portal) | 2023-12-12T00:00:00Z | 2023-12-12T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2003:146 | Red Hat Security Advisory: kdebase security update | 2003-05-22T16:50:00+00:00 | 2025-11-21T17:25:59+00:00 |
| rhsa-2003_146 | Red Hat Security Advisory: kdebase security update | 2003-05-22T16:50:00+00:00 | 2024-11-21T22:35:59+00:00 |
| rhsa-2003:081 | Red Hat Security Advisory: zlib security update | 2003-05-22T17:13:00+00:00 | 2025-11-21T17:25:43+00:00 |
| rhsa-2003_081 | Red Hat Security Advisory: zlib security update | 2003-05-22T17:13:00+00:00 | 2024-11-21T22:41:23+00:00 |
| rhsa-2003:161 | Red Hat Security Advisory: xinetd security update | 2003-05-22T17:29:00+00:00 | 2025-11-21T17:26:03+00:00 |
| rhsa-2003_161 | Red Hat Security Advisory: xinetd security update | 2003-05-22T17:29:00+00:00 | 2024-11-21T22:45:13+00:00 |
| rhsa-2003:150 | Red Hat Security Advisory: LPRng security update | 2003-05-22T17:32:00+00:00 | 2025-11-21T17:25:59+00:00 |
| rhsa-2003_150 | Red Hat Security Advisory: LPRng security update | 2003-05-22T17:32:00+00:00 | 2024-11-21T22:44:34+00:00 |
| rhsa-2003:180 | Red Hat Security Advisory: sharutils security update | 2003-05-23T14:48:00+00:00 | 2025-11-21T17:26:06+00:00 |
| rhsa-2003_180 | Red Hat Security Advisory: sharutils security update | 2003-05-23T14:48:00+00:00 | 2024-11-21T22:21:00+00:00 |
| rhsa-2003:145 | Red Hat Security Advisory: Updated kernel fixes security vulnerabilities and updates drivers | 2003-05-27T18:52:00+00:00 | 2025-11-21T17:26:02+00:00 |
| rhsa-2003_145 | Red Hat Security Advisory: Updated kernel fixes security vulnerabilities and updates drivers | 2003-05-27T18:52:00+00:00 | 2024-11-21T22:44:49+00:00 |
| rhsa-2003:187 | Red Hat Security Advisory: : Updated 2.4 kernel fixes vulnerabilities and driver bugs | 2003-06-03T10:40:00+00:00 | 2025-11-21T17:26:07+00:00 |
| rhsa-2003_187 | Red Hat Security Advisory: : Updated 2.4 kernel fixes vulnerabilities and driver bugs | 2003-06-03T10:40:00+00:00 | 2024-11-21T22:47:08+00:00 |
| rhsa-2003:047 | Red Hat Security Advisory: : Updated kon2 packages fix buffer overflow | 2003-06-03T13:17:00+00:00 | 2025-11-21T17:25:33+00:00 |
| rhsa-2003_047 | Red Hat Security Advisory: : Updated kon2 packages fix buffer overflow | 2003-06-03T13:17:00+00:00 | 2024-11-21T22:31:08+00:00 |
| rhsa-2003:192 | Red Hat Security Advisory: : Updated KDE packages fix security issue | 2003-06-05T08:59:00+00:00 | 2025-11-21T17:26:08+00:00 |
| rhsa-2003_192 | Red Hat Security Advisory: : Updated KDE packages fix security issue | 2003-06-05T08:59:00+00:00 | 2024-11-21T22:46:22+00:00 |
| rhsa-2003:070 | Red Hat Security Advisory: : : : Updated hanterm packages provide security fixes | 2003-06-06T07:45:00+00:00 | 2025-11-21T17:25:40+00:00 |
| rhsa-2003_070 | Red Hat Security Advisory: : : : Updated hanterm packages provide security fixes | 2003-06-06T07:45:00+00:00 | 2024-11-21T22:40:07+00:00 |
| rhsa-2003:151 | Red Hat Security Advisory: tcpdump security update | 2003-06-09T13:44:00+00:00 | 2025-11-21T17:25:59+00:00 |
| rhsa-2003_151 | Red Hat Security Advisory: tcpdump security update | 2003-06-09T13:44:00+00:00 | 2024-11-21T22:44:56+00:00 |
| rhsa-2003:050 | Red Hat Security Advisory: kon2 security update | 2003-06-09T13:46:00+00:00 | 2025-11-21T17:25:34+00:00 |
| rhsa-2003_050 | Red Hat Security Advisory: kon2 security update | 2003-06-09T13:46:00+00:00 | 2024-11-21T22:31:11+00:00 |
| rhsa-2003:167 | Red Hat Security Advisory: lv security update | 2003-06-13T13:39:00+00:00 | 2025-11-21T17:26:05+00:00 |
| rhsa-2003_167 | Red Hat Security Advisory: lv security update | 2003-06-13T13:39:00+00:00 | 2024-11-21T22:45:20+00:00 |
| rhsa-2003:193 | Red Hat Security Advisory: kdelibs security update | 2003-06-17T19:38:00+00:00 | 2025-11-21T17:26:08+00:00 |
| rhsa-2003_193 | Red Hat Security Advisory: kdelibs security update | 2003-06-17T19:38:00+00:00 | 2024-11-21T22:46:26+00:00 |
| rhsa-2003:182 | Red Hat Security Advisory: ghostscript security update | 2003-06-17T19:47:00+00:00 | 2025-11-21T17:26:08+00:00 |
| rhsa-2003_182 | Red Hat Security Advisory: ghostscript security update | 2003-06-17T19:47:00+00:00 | 2024-11-21T22:45:46+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-15-050-01a | Siemens SIMATIC STEP 7 TIA Portal Vulnerabilities (Update A) | 2015-11-22T07:00:00.000000Z | 2025-06-06T22:35:07.394617Z |
| icsa-15-335-03 | Siemens SIMATIC Communication Processor Vulnerability (Update C) | 2015-11-27T00:00:00.000000Z | 2025-07-08T00:00:00.000000Z |
| icsa-15-055-01 | Software Toolbox Top Server Resource Exhaustion Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:20.530492Z |
| icsa-15-055-02 | Kepware Resource Exhaustion Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:27.000975Z |
| icsa-15-055-03 | Schneider Electric Invensys Positioner Buffer Overflow Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:33.492544Z |
| icsa-15-057-01 | Network Vision IntraVue Code Injection Vulnerability | 2015-11-29T07:00:00.000000Z | 2025-06-06T22:35:40.053299Z |
| icsa-15-062-01 | MICROSYS PROMOTIC Stack Buffer Overflow | 2015-12-04T07:00:00.000000Z | 2025-06-06T22:35:46.482417Z |
| icsa-15-062-02 | Rockwell Automation FactoryTalk DLL Hijacking Vulnerabilities | 2015-12-04T07:00:00.000000Z | 2025-06-25T22:54:01.269590Z |
| icsa-15-064-01 | Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:35:59.487016Z |
| icsa-15-064-01a | Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability (Update A) | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:06.004237Z |
| icsa-15-064-02 | Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:12.657259Z |
| icsa-15-064-02a | Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths (Update A) | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:19.130527Z |
| icsa-15-064-03 | Siemens SPC Controller Series Denial-of-Service Vulnerability | 2015-12-06T07:00:00.000000Z | 2025-06-05T22:05:58.585431Z |
| icsa-15-064-04 | Siemens SIMATIC S7-300 CPU Denial-of-Service Vulnerability | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:32.046323Z |
| icsa-15-069-01 | Cimon CmnView DLL Hijacking Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:38.524138Z |
| icsa-15-069-02 | ABB HART Device DTM Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:45.007018Z |
| icsa-15-069-03 | SCADA Engine BACnet OPC Server Vulnerabilities | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:51.449296Z |
| icsa-15-069-04 | Elipse E3 Process Control Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:37:11.175255Z |
| icsa-15-069-04a | Elipse E3 Process Control Vulnerability (Update A) | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:37:18.082701Z |
| icsa-15-071-01 | Schneider Electric Pelco DS-NVs Buffer Overflow Vulnerability | 2015-12-13T07:00:00.000000Z | 2025-06-06T21:39:48.399594Z |
| icsa-15-076-01 | XZERES 442SR Wind Turbine Vulnerability | 2015-12-18T07:00:00.000000Z | 2025-06-06T21:39:55.283613Z |
| icsa-15-076-02 | Honeywell XL Web Controller Directory Traversal Vulnerability | 2015-12-18T07:00:00.000000Z | 2025-06-06T21:40:01.723578Z |
| icsa-15-085-01 | Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2014 Vulnerabilities | 2015-12-27T07:00:00.000000Z | 2025-06-05T22:06:04.803381Z |
| icsa-15-085-01a | Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2014 Vulnerabilities (Update A) | 2015-12-27T07:00:00.000000Z | 2025-06-06T21:40:08.191186Z |
| icsa-16-091-01 | ICONICS WebHMI Directory Traversal Vulnerability | 2016-01-02T07:00:00.000000Z | 2025-06-05T21:38:53.967020Z |
| icsa-16-096-01 | Pro-face GP-Pro EX HMI Vulnerabilities | 2016-01-07T07:00:00.000000Z | 2025-06-05T21:39:00.224867Z |
| icsa-16-103-01c | Siemens Industrial Products glibc Library Vulnerability (Update C) | 2016-01-14T07:00:00.000000Z | 2025-06-05T21:39:25.169040Z |
| icsa-16-103-02 | Siemens SCALANCE S613 Denial-of-Service Vulnerability | 2016-01-14T07:00:00.000000Z | 2025-06-05T21:39:31.467405Z |
| icsa-16-103-03c | Siemens Industrial Products DROWN Vulnerability (Update C) | 2016-01-14T07:00:00.000000Z | 2025-06-05T21:39:37.691594Z |
| icsa-16-105-01 | Sierra Wireless ACEmanager Information Exposure Vulnerability | 2016-01-16T07:00:00.000000Z | 2025-06-05T21:39:44.005014Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20181003-iosxr-dos | Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-ise-mult-vulns | Multiple Vulnerabilities in Cisco Identity Services Engine | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-phy-ipv4-dos | Cisco Remote PHY IPv4 Fragment Denial of Service Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T21:00:00+00:00 |
| cisco-sa-20181003-pi-id | Cisco Prime Infrastructure Information Disclosure Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-pi-tftp | Cisco Prime Infrastructure Arbitrary File Upload and Command Execution Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-prime-id | Cisco Prime Infrastructure Information Disclosure Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-sd-wan-bypass | Cisco SD-WAN Solution Certificate Validation Bypass Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-uc-xss | Cisco Unity Connection Stored Cross-Site Scripting Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-ucsd-xss | Cisco UCS Director Stored Cross-Site Scripting Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-uipp-7900-xss | Cisco Unified IP Phone 7900 Series Cross-Site Scripting Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-unity-dos | Cisco Unity Connection File Upload Denial of Service Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181003-webex-rce | Cisco Webex Network Recording Player and Cisco Webex Player Remote Code Execution Vulnerabilities | 2018-10-03T16:00:00+00:00 | 2018-10-10T15:16:00+00:00 |
| cisco-sa-20181003-webex-xss | Cisco Webex Centers Cross-Site Scripting Vulnerability | 2018-10-03T16:00:00+00:00 | 2018-10-03T16:00:00+00:00 |
| cisco-sa-20181017-aironet-dos | Cisco Aironet 1560, 1800, 2800, and 3800 Series Access Points Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-ap-ft-dos | Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-cpca-csrf | Cisco Prime Collaboration Assurance Cross-Site Request Forgery Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-fxnx-os-dos | Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-nexus-ptp-dos | Cisco NX-OS Software for Nexus 5500, 5600, and 6000 Series Switches Precision Time Protocol Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-nfvis-csrf | Cisco Enterprise NFV Infrastructure Software Cross-Site Request Forgery Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-nxos-snmp | Cisco NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-sm-xss | Cisco SocialMiner Cross-Site Scripting Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlan-escalation | Cisco Wireless LAN Controller Software Privilege Escalation Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlan-xss | Cisco Wireless LAN Controller Software Cross-Site Scripting Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlc-capwap-dos | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points Protocol Denial of Service Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-22T12:53:00+00:00 |
| cisco-sa-20181017-wlc-capwap-memory-leak | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points Protocol Information Disclosure Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlc-gui-privesc | Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlc-id | Cisco Wireless LAN Controller Software Information Disclosure Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181017-wlc-traversal | Cisco Wireless LAN Controller Software Directory Traversal Vulnerability | 2018-10-17T16:00:00+00:00 | 2018-10-17T16:00:00+00:00 |
| cisco-sa-20181019-libssh | libssh Authentication Bypass Vulnerability Affecting Cisco Products: October 2018 | 2018-10-19T16:00:00+00:00 | 2018-11-05T20:29:00+00:00 |
| cisco-sa-20181024-webex-injection | Cisco Webex Meetings Desktop App Update Service Command Injection Vulnerability | 2018-10-24T16:00:00+00:00 | 2018-11-27T16:01:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2019-17450 | find_abstract_instance in dwarf2.c in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32 allows remote attackers to cause a denial of service (infinite recursion and application crash) via a crafted ELF file. | 2019-10-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-17451 | An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd) as distributed in GNU Binutils 2.32. It is an integer overflow leading to a SEGV in _bfd_dwarf2_find_nearest_line in dwarf2.c as demonstrated by nm. | 2019-10-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-17455 | Libntlm through 1.5 relies on a fixed buffer size for tSmbNtlmAuthRequest tSmbNtlmAuthChallenge and tSmbNtlmAuthResponse read and write operations as demonstrated by a stack-based buffer over-read in buildSmbNtlmAuthRequest in smbutil.c for a crafted NTLM request. | 2019-10-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2019-17498 | In libssh2 v1.9.0 and earlier versions the SSH_MSG_DISCONNECT logic in packet.c has an integer overflow in a bounds check enabling an attacker to specify an arbitrary (out-of-bounds) offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on the client system when a user connects to the server. | 2019-10-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-17596 | Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios such as traffic from a client to a server that verifies client certificates. | 2019-10-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2019-18348 | An issue was discovered in urllib2 in Python 2.x through 2.7.17 and urllib in Python 3.x through 3.8.0. CRLF injection is possible if the attacker controls a url parameter as demonstrated by the first argument to urllib.request.urlopen with \r\n (specifically in the host component of a URL) followed by an HTTP header. This is similar to the CVE-2019-9740 query string issue and the CVE-2019-9947 path string issue. (This is not exploitable when glibc has CVE-2016-10739 fixed.). This is fixed in: v2.7.18 v2.7.18rc1; v3.5.10 v3.5.10rc1; v3.6.11 v3.6.11rc1 v3.6.12; v3.7.8 v3.7.8rc1 v3.7.9; v3.8.3 v3.8.3rc1 v3.8.4 v3.8.4rc1 v3.8.5 v3.8.6 v3.8.6rc1. | 2019-10-02T00:00:00.000Z | 2020-11-10T00:00:00.000Z |
| msrc_cve-2019-18368 | In JetBrains Toolbox App before 1.15.5666 for Windows, privilege escalation was possible. | 2019-10-02T00:00:00.000Z | 2025-10-01T23:11:03.000Z |
| msrc_cve-2012-6655 | An issue exists AccountService 0.6.37 in the user_change_password_authorized_cb() function in user.c which could let a local users obtain encrypted passwords. | 2019-11-02T00:00:00.000Z | 2025-02-11T00:00:00.000Z |
| msrc_cve-2019-12625 | ClamAV Zip Bomb Vulnerability | 2019-11-02T00:00:00.000Z | 2020-10-25T00:00:00.000Z |
| msrc_cve-2019-15845 | Ruby through 2.4.7 2.5.x through 2.5.6 and 2.6.x through 2.6.4 mishandles path checking within File.fnmatch functions. | 2019-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-16201 | WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7 2.5.x through 2.5.6 and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by looping/backtracking. A victim must expose a WEBrick server that uses DigestAuth to the Internet or a untrusted network. | 2019-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-16254 | Ruby through 2.4.7 2.5.x through 2.5.6 and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header an attacker can exploit it to insert a newline character to split a header and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742 which addressed the CRLF vector but did not address an isolated CR or an isolated LF. | 2019-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-16255 | Ruby through 2.4.7 2.5.x through 2.5.6 and 2.6.x through 2.6.4 allows code injection if the first argument (aka the "command" argument) to Shell#[] or Shell#test in lib/shell.rb is untrusted data. An attacker can exploit this to call an arbitrary Ruby method. | 2019-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-18276 | An issue was discovered in disable_priv_mode in shell.c in GNU Bash through 5.0 patch 11. By default if Bash is run with its effective UID not equal to its real UID it will drop privileges by setting its effective UID to its real UID. However it does so incorrectly. On Linux and other systems that support "saved UID" functionality the saved UID is not dropped. An attacker with command execution in the shell can use "enable -f" for runtime loading of a new builtin which can be a shared object that calls setuid() and therefore regains privileges. However binaries running with an effective UID of 0 are unaffected. | 2019-11-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-18874 | psutil (aka python-psutil) through 5.6.5 can have a double free. This occurs because of refcount mishandling within a while or for loop that converts system data into a Python object. | 2019-11-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2019-19076 | A memory leak in the nfp_abm_u32_knode_replace() function in drivers/net/ethernet/netronome/nfp/abm/cls.c in the Linux kernel before 5.3.6 allows attackers to cause a denial of service (memory consumption) aka CID-78beef629fd9. NOTE: This has been argued as not a valid vulnerability. The upstream commit 78beef629fd9 was reverted | 2019-11-02T00:00:00.000Z | 2024-08-15T00:00:00.000Z |
| msrc_cve-2019-19126 | On the x86-64 architecture the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR for a setuid program. | 2019-11-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-19391 | In LuaJIT through 2.0.5 as used in Moonjit before 2.1.2 and other products debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations because certain cases involving valid stack levels and > options are mishandled. NOTE: The LuaJIT project owner states that the debug libary is unsafe by definition and that this is not a vulnerability. When LuaJIT was originally developed the expectation was that the entire debug library had no security guarantees and thus it made no sense to assign CVEs. However not all users of later LuaJIT derivatives share this perspective | 2019-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-6470 | dhcpd: use-after-free error leads crash in IPv6 mode when using mismatched BIND libraries | 2019-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-8178 | Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 do not use a globally unique identifier to store image layers which makes it easier for attackers to poison the image cache via a crafted image in pull or push commands. | 2019-12-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2014-8179 | Docker Engine before 1.8.3 and CS Docker Engine before 1.6.2-CS7 does not properly validate and extract the manifest object from its JSON representation during a pull which allows attackers to inject new attributes in a JSON object and bypass pull-by-digest validation. | 2019-12-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2014-9356 | Path traversal vulnerability in Docker before 1.3.3 allows remote attackers to write to arbitrary files and bypass a container protection mechanism via a full pathname in a symlink in an (1) image or (2) build in a Dockerfile. | 2019-12-02T00:00:00.000Z | 2021-07-16T00:00:00.000Z |
| msrc_cve-2016-1000104 | A security Bypass vulnerability exists in the FcgidPassHeader Proxy in mod_fcgid through 2016-07-07. | 2019-12-02T00:00:00.000Z | 2025-10-01T23:10:54.000Z |
| msrc_cve-2017-18640 | The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564. | 2019-12-02T00:00:00.000Z | 2025-10-01T23:10:55.000Z |
| msrc_cve-2018-1311 | The Apache Xerces-C 3.0.0 to 3.2.3 XML parser contains a use-after-free error triggered during the scanning of external DTDs. This flaw has not been addressed in the maintained version of the library and has no current mitigation other than to disable DTD processing. This can be accomplished via the DOM using a standard parser feature or via SAX using the XERCES_DISABLE_DTD environment variable. | 2019-12-02T00:00:00.000Z | 2022-04-06T00:00:00.000Z |
| msrc_cve-2019-19317 | lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact. | 2019-12-02T00:00:00.000Z | 2025-09-03T21:25:50.000Z |
| msrc_cve-2019-19645 | alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements. | 2019-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-19646 | pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns. | 2019-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2019-19847 | Libspiro through 20190731 has a stack-based buffer overflow in the spiro_to_bpath0() function in spiro.c. | 2019-12-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2019-19906 | cyrus-sasl (aka Cyrus SASL) 2.1.27 has an out-of-bounds write leading to unauthenticated remote denial-of-service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash is ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl. | 2019-12-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202107-1809 | RG-UAC 6000-ISG series video surveillance security gateway is a video surveillance networ… | 2022-05-04T09:02:07.637000Z |
| var-202107-1830 | General Mobile is a Turkish smartphone manufacturer. General Mobile GM8 has an inform… | 2022-05-04T09:02:07.628000Z |
| var-202107-1851 | Axis is an IT company that specializes in providing network video solutions. Axis 221… | 2022-05-04T09:02:07.617000Z |
| var-202107-1872 | Axis is an IT company that specializes in providing network video solutions. AXIS M50… | 2022-05-04T09:02:07.607000Z |
| var-202107-1893 | Axis is an IT company that specializes in providing network video solutions. AXIS M11… | 2022-05-04T09:02:07.596000Z |
| var-202107-1914 | New H3C Technology Co., Ltd. is a new IT solution provider, committed to becoming the mos… | 2022-05-04T09:02:07.580000Z |
| var-202106-2014 | Teledyne FLIR focuses on the design, development, production, marketing and promotion of … | 2022-05-04T09:02:08.760000Z |
| var-202106-2035 | NBG-418N is a wireless router device launched by Zhongqin Communication Equipment Trading… | 2022-05-04T09:02:08.748000Z |
| var-202106-2056 | Ruijie Networks Co., Ltd. is a company mainly engaged in information system integration s… | 2022-05-04T09:02:08.734000Z |
| var-202106-2077 | Sapido specializes in the design and development of smart full wireless security systems … | 2022-05-04T09:02:08.723000Z |
| var-202106-2098 | Axis is an IT company that specializes in providing network video solutions. AXIS V59… | 2022-05-04T09:02:08.712000Z |
| var-202106-2119 | Ruckus 2811 is a wireless router product of Ruckus Wireless. Ruckus Wireless Ruckus 2… | 2022-05-04T09:02:08.702000Z |
| var-202106-2140 | D-Link DIR-809 is a wireless router using RTOS. D-Link DIR-809 has a denial of servic… | 2022-05-04T09:02:08.690000Z |
| var-202106-2161 | NETGEAR WGR614v7 router is a wireless router device. The NETGEAR WGR614v7 router has … | 2022-05-04T09:02:08.678000Z |
| var-202106-2182 | Tianrongxin Technology Group (abbreviated as Tianrongxin) is a provider of network securi… | 2022-05-04T09:02:08.661000Z |
| var-202106-2203 | Tenda AC11 is a wireless router that uses RTOS operating system. Shenzhen Jixiang Ten… | 2022-05-04T09:02:08.649000Z |
| var-202106-2224 | RG-RAC200b is a wireless controller. RG-RAC200b has a command execution vulnerability… | 2022-05-04T09:02:08.638000Z |
| var-202106-2245 | H3C ER G2 series is a new generation of enterprise-level Gigabit high-performance routers… | 2022-05-04T09:02:08.628000Z |
| var-202106-2266 | HP DeskJet 2600 All-in-One Printer series is an all-in-one printer from HP Trading (Shang… | 2022-05-04T09:02:08.612000Z |
| var-202106-2287 | D-Link DIR-600 is a wireless router produced by D-Link in Taiwan. D-Link DIR-600 has … | 2022-05-04T09:02:08.600000Z |
| var-202106-2308 | Based on Taiwan, BRICS Communication Technology is committed to developing a full range o… | 2022-05-04T09:02:08.587000Z |
| var-202106-2329 | China Consumer Online Co., Ltd., former name/alias: Shanghai China Consumer Network Techn… | 2022-05-04T09:02:08.575000Z |
| var-202105-1561 | WebAccess/HMI Designer is a man-machine interface integrated development tool. WebAcc… | 2022-05-04T09:02:09.295000Z |
| var-202105-1582 | Shenzhen Tenghu IOT Technology Co., Ltd. was established in August 2013. It is an Interne… | 2022-05-04T09:02:09.285000Z |
| var-202105-1603 | Shenzhen Jixiang Tengda Technology Co., Ltd. (hereinafter referred to as "Tengda") was fo… | 2022-05-04T09:02:09.274000Z |
| var-202105-1624 | MikroTik was founded in 1995 and is headquartered in Riga, Latvia. It is mainly engaged i… | 2022-05-04T09:02:09.264000Z |
| var-202105-1645 | NR218 is a router of Shenzhen Leike Industrial Co., Ltd. Shenzhen Leike Industrial Co… | 2022-05-04T09:02:09.255000Z |
| var-202105-1666 | ER5100 is a high-performance gigabit router tailored for small and medium-sized enterpris… | 2022-05-04T09:02:09.245000Z |
| var-202105-1687 | Vigor2960 is a product of DrayTek in Taiwan, China. It is a load balancing router and VPN… | 2022-05-04T09:02:09.235000Z |
| var-202105-1708 | Xiamen Sixin Communication Technology Co., Ltd., a national high-tech enterprise, a leadi… | 2022-05-04T09:02:09.220000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-000012 | Buffer overflow vulnerability in ActiveX Control for Sony SNC series network cameras | 2009-03-09T16:27+09:00 | 2009-03-09T16:27+09:00 |
| jvndb-2009-000014 | MP Form Mail CGI vulnerability allows third party to gain administrative privileges | 2009-03-13T16:25+09:00 | 2009-03-13T16:25+09:00 |
| jvndb-2009-000015 | Cross-site scripting vulnerability in Access Analyzer CGI Standard Version (Ver. 3.x) | 2009-03-16T17:07+09:00 | 2009-03-16T17:07+09:00 |
| jvndb-2009-001087 | Fujitsu Enhanced Support Facility HRM-S Hardware/Software Information Disclosure Vulnerability | 2009-03-24T17:35+09:00 | 2009-03-24T17:35+09:00 |
| jvndb-2009-000016 | Access Analyzer CGI Professional Version vulnerability allows third party to gain administrative privileges | 2009-03-31T16:08+09:00 | 2009-03-31T16:08+09:00 |
| jvndb-2009-000017 | XOOPS Cube Legacy cross-site scripting vulnerability | 2009-04-07T17:06+09:00 | 2009-04-07T17:06+09:00 |
| jvndb-2009-001135 | Fujitsu Jasmine HTTP Response Splitting Vulnerability When Executing WebLink Template | 2009-04-17T14:13+09:00 | 2009-04-17T14:13+09:00 |
| jvndb-2009-000019 | Cross-site scripting vulnerability in apricot.php from LovPop.net | 2009-04-17T14:40+09:00 | 2009-04-17T14:40+09:00 |
| jvndb-2009-000020 | Movable Type cross-site scripting vulnerability | 2009-04-28T16:18+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000021 | MiniBBS22 from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000022 | Cross-site scripting vulnerability in MiniBBS from CGI RESCUE | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000023 | FORM2MAIL from CGI RESCUE allows unauthorized email transmission | 2009-04-28T16:35+09:00 | 2009-04-28T16:35+09:00 |
| jvndb-2009-000024 | Web Mailer from CGI RESCUE vulnerable to HTTP header injection | 2009-04-28T16:36+09:00 | 2009-04-28T16:36+09:00 |
| jvndb-2009-000025 | Cross-site scripting vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000026 | SQL injection vulnerability in SKIP from SKIP User Group | 2009-05-12T17:50+09:00 | 2009-05-12T17:50+09:00 |
| jvndb-2009-000027 | Sun GlassFish Enterprise Server and Sun Java System Application Server vulnerable to cross-site scripting | 2009-05-13T15:37+09:00 | 2009-05-13T15:37+09:00 |
| jvndb-2009-000028 | Trees from CGI RESCUE vulnerable to cross-site scripting | 2009-05-19T13:41+09:00 | 2009-05-19T13:41+09:00 |
| jvndb-2009-000029 | HP System Management Homepage vulnerable to cross-site scripting | 2009-05-20T16:01+09:00 | 2009-05-20T16:01+09:00 |
| jvndb-2009-000030 | a-News from Appleple vulnerable to cross-site scripting | 2009-05-22T14:31+09:00 | 2009-05-22T14:31+09:00 |
| jvndb-2009-000031 | Cross-site scripting vulnerability in leger (free edition) | 2009-05-27T18:28+09:00 | 2009-05-27T18:28+09:00 |
| jvndb-2009-000032 | Directory traversal vulnerability in multiple Cisco Systems products | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000033 | REP-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000034 | IMG-BBS from MT312 vulnerable to cross-site scripting | 2009-05-29T16:19+09:00 | 2009-05-29T16:19+09:00 |
| jvndb-2009-000035 | Predictable session ID vulnerability in Serene Bach | 2009-06-18T17:53+09:00 | 2009-06-18T17:53+09:00 |
| jvndb-2009-000036 | Apache Tomcat information disclosure vulnerability | 2009-06-18T17:53+09:00 | 2012-09-28T13:35+09:00 |
| jvndb-2009-000037 | Apache Tomcat denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2012-09-28T13:40+09:00 |
| jvndb-2009-000038 | Cross-site scripting vulnerability in activeCollab | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000039 | Buffer overflow vulnerability in Microsoft Works converters | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000040 | iPhone OS denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000041 | Cross-site scripting vulnerability in PukiWikiMod from XOOPS Maniac | 2009-06-19T16:35+09:00 | 2009-06-19T16:35+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:03586-1 | Security update for openssl-3-livepatches | 2025-10-13T07:02:35Z | 2025-10-13T07:02:35Z |
| suse-su-2025:03587-1 | Security update for haproxy | 2025-10-13T07:03:55Z | 2025-10-13T07:03:55Z |
| suse-su-2025:03578-1 | Security update for the Linux Kernel (Live Patch 39 for SLE 15 SP4) | 2025-10-13T07:04:11Z | 2025-10-13T07:04:11Z |
| suse-su-2025:03589-1 | Security update for haproxy | 2025-10-13T07:04:38Z | 2025-10-13T07:04:38Z |
| suse-su-2025:03590-1 | Security update for bluez | 2025-10-13T12:59:07Z | 2025-10-13T12:59:07Z |
| suse-su-2025:03019-2 | Security update for postgresql14 | 2025-10-13T14:33:39Z | 2025-10-13T14:33:39Z |
| suse-su-2025:20856-1 | Security update for python-urllib3 | 2025-10-14T13:15:37Z | 2025-10-14T13:15:37Z |
| suse-su-2025:20857-1 | Security update for vim | 2025-10-14T13:18:43Z | 2025-10-14T13:18:43Z |
| suse-su-2025:20858-1 | Security update for rust-keylime | 2025-10-14T13:18:43Z | 2025-10-14T13:18:43Z |
| suse-su-2025:20846-1 | Security update for chrony | 2025-10-14T15:17:45Z | 2025-10-14T15:17:45Z |
| suse-su-2025:20847-1 | Security update for libssh | 2025-10-14T15:20:28Z | 2025-10-14T15:20:28Z |
| suse-su-2025:03595-1 | Security update for libxslt | 2025-10-14T21:07:48Z | 2025-10-14T21:07:48Z |
| suse-su-2025:20921-1 | Recommended update of flake-pilot | 2025-10-15T12:00:25Z | 2025-10-15T12:00:25Z |
| suse-su-2025:03599-1 | Security update for qt6-base | 2025-10-15T12:17:03Z | 2025-10-15T12:17:03Z |
| suse-su-2025:03600-1 | Security update for the Linux Kernel | 2025-10-15T12:54:53Z | 2025-10-15T12:54:53Z |
| suse-su-2025:03601-1 | Security update for the Linux Kernel | 2025-10-15T12:57:01Z | 2025-10-15T12:57:01Z |
| suse-su-2025:03602-1 | Security update for the Linux Kernel | 2025-10-15T12:57:25Z | 2025-10-15T12:57:25Z |
| suse-su-2025:03603-1 | Security update for samba | 2025-10-15T13:37:44Z | 2025-10-15T13:37:44Z |
| suse-su-2025:03604-1 | Security update for samba | 2025-10-15T13:37:54Z | 2025-10-15T13:37:54Z |
| suse-su-2025:03606-1 | Security update for squid | 2025-10-15T13:38:21Z | 2025-10-15T13:38:21Z |
| suse-su-2025:03607-1 | Security update for squid | 2025-10-15T13:38:36Z | 2025-10-15T13:38:36Z |
| suse-su-2025:20850-1 | Security update for kernel-livepatch-MICRO-6-0_Update_12 | 2025-10-15T15:02:36Z | 2025-10-15T15:02:36Z |
| suse-su-2025:20864-1 | Security update for kernel-livepatch-MICRO-6-0_Update_12 | 2025-10-15T15:02:36Z | 2025-10-15T15:02:36Z |
| suse-su-2025:20861-1 | Security update for the Linux Kernel | 2025-10-15T15:17:40Z | 2025-10-15T15:17:40Z |
| suse-su-2025:20851-1 | Security update for the Linux Kernel | 2025-10-15T16:17:22Z | 2025-10-15T16:17:22Z |
| suse-su-2025:03612-1 | Security update for samba | 2025-10-16T04:04:19Z | 2025-10-16T04:04:19Z |
| suse-su-2025:03613-1 | Security update for the Linux Kernel | 2025-10-16T05:47:42Z | 2025-10-16T05:47:42Z |
| suse-su-2025:03614-1 | Security update for the Linux Kernel | 2025-10-16T05:48:12Z | 2025-10-16T05:48:12Z |
| suse-su-2025:03615-1 | Security update for the Linux Kernel | 2025-10-16T05:49:13Z | 2025-10-16T05:49:13Z |
| suse-su-2025:03616-1 | Security update for ImageMagick | 2025-10-16T05:49:33Z | 2025-10-16T05:49:33Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15839-1 | python310-3.10.19-3.1 on GA media | 2025-12-22T00:00:00Z | 2025-12-22T00:00:00Z |
| opensuse-su-2025:15840-1 | python315-3.15.0~a3-1.1 on GA media | 2025-12-22T00:00:00Z | 2025-12-22T00:00:00Z |
| opensuse-su-2025:15841-1 | zk-0.15.2-1.1 on GA media | 2025-12-22T00:00:00Z | 2025-12-22T00:00:00Z |
| opensuse-su-2025:15843-1 | buildah-1.42.2-1.1 on GA media | 2025-12-24T00:00:00Z | 2025-12-24T00:00:00Z |
| opensuse-su-2025:15844-1 | cpp-httplib-devel-0.28.0-1.1 on GA media | 2025-12-24T00:00:00Z | 2025-12-24T00:00:00Z |
| opensuse-su-2025:15845-1 | podman-5.7.1-1.1 on GA media | 2025-12-24T00:00:00Z | 2025-12-24T00:00:00Z |
| opensuse-su-2025:15846-1 | python39-3.9.25-2.1 on GA media | 2025-12-24T00:00:00Z | 2025-12-24T00:00:00Z |
| opensuse-su-2025:15847-1 | anubis-1.24.0-1.1 on GA media | 2025-12-28T00:00:00Z | 2025-12-28T00:00:00Z |
| opensuse-su-2025:15848-1 | python311-openapi-core-0.22.0-1.1 on GA media | 2025-12-28T00:00:00Z | 2025-12-28T00:00:00Z |
| opensuse-su-2025:15853-1 | weblate-5.14.3-2.1 on GA media | 2025-12-30T00:00:00Z | 2025-12-30T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00373 | Sefrengo存在多个SQL注入漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00374 | Wordpress插件Joomlaskin JS Multi Hotel跨站脚本漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00375 | Sefrengo跨站脚本漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00376 | Kajona跨站脚本漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00377 | VDG Security SENSE验证绕过漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00378 | VDG Security SENSE信息泄露漏洞(CNVD-2015-00378) | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00379 | VDG Security SENSE信息泄露漏洞(CNVD-2015-00379) | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00380 | VDG Security SENSE设计漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00381 | VDG Security SENSE信息泄露漏洞(CNVD-2015-00381) | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00382 | ProjectSend任意文件上传漏洞 | 2015-01-15 | 2015-01-16 |
| cnvd-2015-00411 | Cisco TelePresence Video Communication Server/Expressway拒绝服务漏洞 | 2015-01-15 | 2015-01-19 |
| cnvd-2015-00419 | McAfee ePolicy Orchestrator信息泄露漏洞(CNVD-2015-00419) | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00421 | Linux kernel 'fs/isofs/rock.c'本地信息泄露漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00422 | WordPress插件GD Star Rating SQL注入漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00423 | Hancom Office缓冲区溢出漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00424 | Siemens SIMATIC WinCC Sm@rtClient app信息泄露漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00425 | Siemens SIMATIC WinCC Sm@rtClient app本地安全绕过漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00426 | Siemens SIMATIC WinCC Sm@rtClient app信息泄露漏洞(CNVD-2015-00426) | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00427 | Cisco AnyConnect Secure Mobility Client身份欺骗漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00429 | Cisco AsyncOS存在多个跨站脚本漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00430 | Cisco Adaptive Security Appliance Software拒绝服务漏洞(CNVD-2015-00430) | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00431 | IBM Curam Social Program Management 跨站脚本漏洞 | 2015-01-15 | 2015-01-20 |
| cnvd-2015-00460 | McAfee ePolicy Orchestrator XML外部实体漏洞 | 2015-01-15 | 2015-01-21 |
| cnvd-2015-00383 | Juniper Junos远程拒绝服务漏洞(CNVD-2015-00383) | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00384 | Juniper Junos安全绕过漏洞(CNVD-2015-00384) | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00385 | Juniper Junos拒绝服务漏洞(CNVD-2015-00385) | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00386 | Juniper Junos本地权限提升漏洞 | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00387 | Juniper Junos JPPP Daemon远程拒绝服务漏洞 | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00388 | Django 'django.views.static.serve()'函数拒绝服务漏洞 | 2015-01-16 | 2015-01-19 |
| cnvd-2015-00389 | Django 'django.util.http.is_safe_url()'跨站脚本漏洞 | 2015-01-16 | 2015-01-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTA-2001-AVI-118 | Vulnérabilité dans login sous Linux | 2001-10-19T00:00:00.000000 | 2001-11-02T00:00:00.000000 |
| CERTA-2001-AVI-119 | Vulnérabilité de l'interface Web du serveur Novell GroupWise | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| CERTA-2001-AVI-120 | Vulnérabilité dans Xlock sous Solaris | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| CERTA-2001-AVI-121 | Vulnérabilité des Cisco IOS et CatOS sous le protocole CDP | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| CERTA-2001-AVI-122 | Déni de service sur Citrix MetaFrame | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-118 | Vulnérabilité dans login sous Linux | 2001-10-19T00:00:00.000000 | 2001-11-02T00:00:00.000000 |
| certa-2001-avi-119 | Vulnérabilité de l'interface Web du serveur Novell GroupWise | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-120 | Vulnérabilité dans Xlock sous Solaris | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-121 | Vulnérabilité des Cisco IOS et CatOS sous le protocole CDP | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| certa-2001-avi-122 | Déni de service sur Citrix MetaFrame | 2001-10-19T00:00:00.000000 | 2001-10-19T00:00:00.000000 |
| CERTA-2001-AVI-123 | Vulnérabilités dans procmail | 2001-10-22T00:00:00.000000 | 2001-10-22T00:00:00.000000 |
| certa-2001-avi-123 | Vulnérabilités dans procmail | 2001-10-22T00:00:00.000000 | 2001-10-22T00:00:00.000000 |
| CERTA-2001-AVI-124 | Vulnérabilités dans le noyau linux (2.2.x et 2.4.x) | 2001-10-23T00:00:00.000000 | 2001-11-22T00:00:00.000000 |
| certa-2001-avi-124 | Vulnérabilités dans le noyau linux (2.2.x et 2.4.x) | 2001-10-23T00:00:00.000000 | 2001-11-22T00:00:00.000000 |
| CERTA-2001-AVI-125 | Débordement de mémoire de Oracle 9iAS Web Cache | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| CERTA-2001-AVI-126 | Vulnérabilité dans le protocole RDP sous Windows 2000 et NT Server | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| CERTA-2001-AVI-127 | Vulnérabilité sous Mac OS X | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-125 | Débordement de mémoire de Oracle 9iAS Web Cache | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-126 | Vulnérabilité dans le protocole RDP sous Windows 2000 et NT Server | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| certa-2001-avi-127 | Vulnérabilité sous Mac OS X | 2001-10-24T00:00:00.000000 | 2001-10-24T00:00:00.000000 |
| CERTA-2001-AVI-128 | Vulnérabilité d'Internet Explorer 5.1 sous Mac OS X | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| CERTA-2001-AVI-129 | Vulnérabilité dans la machine virtuelle java (JRE) de SUN. | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| CERTA-2001-AVI-130 | Vulnérabilité d'IGMP sous SGI Irix | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| CERTA-2001-AVI-131 | Vulnérabilités du serveur Apache | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| CERTA-2001-AVI-132 | Vulnérabilités de webalizer | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-128 | Vulnérabilité d'Internet Explorer 5.1 sous Mac OS X | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-129 | Vulnérabilité dans la machine virtuelle java (JRE) de SUN. | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-130 | Vulnérabilité d'IGMP sous SGI Irix | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-131 | Vulnérabilités du serveur Apache | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| certa-2001-avi-132 | Vulnérabilités de webalizer | 2001-10-26T00:00:00.000000 | 2001-10-26T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2015-ALE-005 | Vulnérabilité dans Adobe Flash Player | 2015-07-08T00:00:00.000000 | 2015-07-10T00:00:00.000000 |
| certfr-2015-ale-005 | Vulnérabilité dans Adobe Flash Player | 2015-07-08T00:00:00.000000 | 2015-07-10T00:00:00.000000 |
| CERTFR-2015-ALE-006 | Vulnérabilité dans Adobe Flash Player | 2015-07-11T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| certfr-2015-ale-006 | Vulnérabilité dans Adobe Flash Player | 2015-07-11T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| CERTFR-2015-ALE-007 | Vulnérabilité dans Oracle Java SE | 2015-07-13T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| certfr-2015-ale-007 | Vulnérabilité dans Oracle Java SE | 2015-07-13T00:00:00.000000 | 2015-07-20T00:00:00.000000 |
| CERTFR-2015-ALE-008 | Vulnérabilité dans le pilote de gestion des polices de caractères de Microsoft Windows | 2015-07-20T00:00:00.000000 | 2015-07-30T00:00:00.000000 |
| certfr-2015-ale-008 | Vulnérabilité dans le pilote de gestion des polices de caractères de Microsoft Windows | 2015-07-20T00:00:00.000000 | 2015-07-30T00:00:00.000000 |
| CERTFR-2015-ALE-009 | Vulnérabilité dans Apple Mac OS X | 2015-07-24T00:00:00.000000 | 2015-12-22T00:00:00.000000 |
| certfr-2015-ale-009 | Vulnérabilité dans Apple Mac OS X | 2015-07-24T00:00:00.000000 | 2015-12-22T00:00:00.000000 |
| CERTFR-2015-ALE-010 | Multiples vulnérabilités dans Google Android | 2015-07-28T00:00:00.000000 | 2015-10-06T00:00:00.000000 |
| certfr-2015-ale-010 | Multiples vulnérabilités dans Google Android | 2015-07-28T00:00:00.000000 | 2015-10-06T00:00:00.000000 |
| CERTFR-2015-ALE-011 | Vulnérabilité dans Adobe Flash Player | 2015-10-14T00:00:00.000000 | 2015-10-19T00:00:00.000000 |
| certfr-2015-ale-011 | Vulnérabilité dans Adobe Flash Player | 2015-10-14T00:00:00.000000 | 2015-10-19T00:00:00.000000 |
| CERTFR-2015-ALE-012 | Campagne de messages électroniques non sollicités de type Dridex | 2015-10-23T00:00:00.000000 | 2015-11-26T00:00:00.000000 |
| certfr-2015-ale-012 | Campagne de messages électroniques non sollicités de type Dridex | 2015-10-23T00:00:00.000000 | 2015-11-26T00:00:00.000000 |
| CERTFR-2015-ALE-013 | Vulnérabilité dans Joomla! | 2015-12-14T00:00:00.000000 | 2016-08-01T00:00:00.000000 |
| certfr-2015-ale-013 | Vulnérabilité dans Joomla! | 2015-12-14T00:00:00.000000 | 2016-08-01T00:00:00.000000 |
| CERTFR-2015-ALE-014 | Vulnérabilité dans Juniper ScreenOS | 2015-12-18T00:00:00.000000 | 2016-04-11T00:00:00.000000 |
| certfr-2015-ale-014 | Vulnérabilité dans Juniper ScreenOS | 2015-12-18T00:00:00.000000 | 2016-04-11T00:00:00.000000 |
| CERTFR-2015-ALE-015 | Campagne de messages électroniques non sollicités de type TeslaCrypt | 2015-12-21T00:00:00.000000 | 2016-03-10T00:00:00.000000 |
| certfr-2015-ale-015 | Campagne de messages électroniques non sollicités de type TeslaCrypt | 2015-12-21T00:00:00.000000 | 2016-03-10T00:00:00.000000 |
| CERTFR-2016-ALE-001 | Campagne de messages électroniques non sollicités de type Locky | 2016-02-19T00:00:00.000000 | 2016-04-07T00:00:00.000000 |
| certfr-2016-ale-001 | Campagne de messages électroniques non sollicités de type Locky | 2016-02-19T00:00:00.000000 | 2016-04-07T00:00:00.000000 |
| CERTFR-2016-ALE-002 | Vulnérabilité dans Adobe Flash Player | 2016-04-06T00:00:00.000000 | 2016-04-08T00:00:00.000000 |
| certfr-2016-ale-002 | Vulnérabilité dans Adobe Flash Player | 2016-04-06T00:00:00.000000 | 2016-04-08T00:00:00.000000 |
| CERTFR-2016-ALE-003 | Vulnérabilité dans Adobe Flash Player | 2016-05-11T00:00:00.000000 | 2016-05-12T00:00:00.000000 |
| certfr-2016-ale-003 | Vulnérabilité dans Adobe Flash Player | 2016-05-11T00:00:00.000000 | 2016-05-12T00:00:00.000000 |
| CERTFR-2016-ALE-004 | Vulnérabilité dans Adobe Flash Player | 2016-06-15T00:00:00.000000 | 2016-06-16T00:00:00.000000 |
| certfr-2016-ale-004 | Vulnérabilité dans Adobe Flash Player | 2016-06-15T00:00:00.000000 | 2016-06-16T00:00:00.000000 |