Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-34232
7.5 (3.1)
Firebird: DoS via `op_response` packet from client FirebirdSQL
 firebird
 2026-04-17T18:52:11.693Z 2026-04-20T13:46:08.507Z
CVE-2026-1559
6.4 (3.1)
Youzify <= 1.3.6 - Authenticated (Subscriber+) Stored … youzify
 Youzify – BuddyPress Community, User Profile, Social Network & Membership Plugin for WordPress
 2026-04-18T01:26:05.210Z 2026-04-20T13:46:08.353Z
CVE-2026-6518
8.8 (3.1)
CMP – Coming Soon & Maintenance Plugin by NiteoThemes … niteo
 CMP – Coming Soon & Maintenance Plugin by NiteoThemes
 2026-04-18T03:37:04.707Z 2026-04-20T13:46:08.222Z
CVE-2026-6048
6.4 (3.1)
Flipbox Addon for Elementor <= 2.1.1 - Authenticated (… dragwyb
 Flipbox Addon for Elementor
 2026-04-18T03:37:05.751Z 2026-04-20T13:46:08.081Z
CVE-2026-2505
5.4 (3.1)
Categories Images <= 3.3.1 - Authenticated (Contributo… elzahlan
 Categories Images
 2026-04-18T09:26:52.654Z 2026-04-20T13:46:07.918Z
CVE-2026-6643
8.6 (4.0)
A stack-based buffer overflow vulnerability in the VPN… ASUSTOR Inc.
 ADM
 2026-04-20T06:34:27.511Z 2026-04-20T13:46:07.764Z
CVE-2026-4424
7.5 (3.1)
Libarchive: libarchive: information disclosure via hea… Red Hat
 Red Hat Enterprise Linux 10
 2026-03-19T13:50:27.294Z 2026-04-20T13:43:56.734Z
CVE-2026-5963
9.3 (4.0)
9.8 (3.1)
Digiwin|EasyFlow .NET - SQL Injection Digiwin
 EasyFlow .NET
 2026-04-20T07:32:20.443Z 2026-04-20T13:42:03.062Z
CVE-2026-5964
9.3 (4.0)
9.8 (3.1)
Digiwin|EasyFlow .NET - SQL Injection Digiwin
 EasyFlow .NET
 2026-04-20T07:36:58.476Z 2026-04-20T13:38:08.600Z
CVE-2026-40196
8.1 (3.1)
HomeBox has Unauthorized API Access via Retained defau… sysadminsmedia
 homebox
 2026-04-17T21:01:18.530Z 2026-04-20T13:36:06.776Z
CVE-2026-40305
4.3 (3.1)
DNN has Force Friend Request Acceptance dnnsoftware
 Dnn.Platform
 2026-04-17T21:06:09.237Z 2026-04-20T13:36:06.644Z
CVE-2026-40352
8.8 (3.1)
FastGPT: NoSQL Injection in updatePasswordByOld Leads … labring
 FastGPT
 2026-04-17T21:09:32.913Z 2026-04-20T13:36:06.464Z
CVE-2026-40477
9.1 (3.1)
Improper restriction of the scope of accessible object… thymeleaf
 thymeleaf
 2026-04-17T21:53:47.271Z 2026-04-20T13:36:06.261Z
CVE-2026-2434
6.4 (3.1)
Pz-LinkCard <= 2.5.8.1 - Authenticated (Contributor+) … poporon
 Pz-LinkCard
 2026-04-17T22:27:13.525Z 2026-04-20T13:36:06.124Z
CVE-2026-40481
8.2 (4.0)
monetr: Unauthenticated Stripe webhook reads attacker-… monetr
 monetr
 2026-04-17T22:54:57.545Z 2026-04-20T13:36:05.862Z
CVE-2026-40334
3.5 (3.1)
libgphoto2 missing null termination in ptp_unpack_Cano… gphoto
 libgphoto2
 2026-04-17T23:16:38.751Z 2026-04-20T13:36:05.703Z
CVE-2026-40335
5.2 (3.1)
libgphoto2 has OOB read in ptp_unpack_DPV() UINT128/IN… gphoto
 libgphoto2
 2026-04-17T23:19:16.935Z 2026-04-20T13:36:05.542Z
CVE-2026-40485
5.3 (3.1)
ChurchCRM: Username Enumeration via Differential Respo… ChurchCRM
 CRM
 2026-04-17T23:29:35.884Z 2026-04-20T13:36:05.319Z
CVE-2026-40340
6.1 (3.1)
libgphoto2 has OOB read in ptp_unpack_OI() in ptp-pack… gphoto
 libgphoto2
 2026-04-17T23:45:17.467Z 2026-04-20T13:36:05.149Z
CVE-2026-32957
5.3 (3.1)
6.9 (4.0)
SD-330AC and AMC Manager provided by silex techno… silex technology, Inc.
 SD-330AC
 2026-04-20T03:19:35.581Z 2026-04-20T13:36:04.975Z
CVE-2026-32955
8.8 (3.1)
8.7 (4.0)
SD-330AC and AMC Manager provided by silex techno… silex technology, Inc.
 SD-330AC
 2026-04-20T03:19:47.937Z 2026-04-20T13:36:04.747Z
CVE-2026-32956
9.8 (3.1)
9.3 (4.0)
SD-330AC and AMC Manager provided by silex techno… silex technology, Inc.
 SD-330AC
 2026-04-20T03:20:01.225Z 2026-04-20T13:36:04.476Z
CVE-2026-5966
7.2 (4.0)
8.1 (3.1)
TeamT5|ThreatSonar Anti-Ransomware - Arbitrary File Deletion TeamT5
 ThreatSonar Anti-Ransomware
 2026-04-20T07:40:33.323Z 2026-04-20T13:30:25.604Z
CVE-2026-5967
8.7 (4.0)
8.8 (3.1)
TeamT5|ThreatSonar Anti-Ransomware - Privilege Escalation TeamT5
 ThreatSonar Anti-Ransomware
 2026-04-20T07:44:19.754Z 2026-04-20T13:29:59.132Z
CVE-2026-6619
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
langgenius dify ImagePreview image-preview.tsx openInN… langgenius
 dify
 2026-04-20T08:00:17.267Z 2026-04-20T13:29:29.634Z
CVE-2026-39454
7.8 (3.0)
8.5 (4.0)
SKYSEA Client View and SKYMEC IT Manager provided… Sky Co.,LTD.
 SKYSEA Client View
 2026-04-20T08:04:56.595Z 2026-04-20T13:28:56.536Z
CVE-2025-13480
5.1 (4.0)
Incorrect authorization in Fudo Enterprise Fudo Security
 Fudo Enterprise
 2026-04-20T09:00:16.259Z 2026-04-20T13:28:18.280Z
CVE-2026-6624
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
BichitroGan ISP Billing Software Pool List add cross s… BichitroGan
 ISP Billing Software
 2026-04-20T09:15:17.533Z 2026-04-20T13:27:39.595Z
CVE-2026-6630
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda F451 httpd GstDhcpSetSer fromGstDhcpSetSer buffe… Tenda
 F451
 2026-04-20T10:30:15.493Z 2026-04-20T13:27:03.711Z
CVE-2026-6635
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
rowboatlabs rowboat tools_webhook app.py tool_call imp… rowboatlabs
 rowboat
 2026-04-20T11:45:12.769Z 2026-04-20T13:26:31.802Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-34540
6.2 (3.1)
iccDEV: HBO in icMemDump() InternationalColorConsortium
 iccDEV
 2026-03-31T22:03:24.212Z 2026-04-01T13:31:29.126Z
CVE-2026-34539
6.2 (3.1)
iccDEV: HBO in CTiffImg::WriteLine() InternationalColorConsortium
 iccDEV
 2026-03-31T22:01:38.873Z 2026-04-01T15:52:45.775Z
CVE-2026-34537
6.2 (3.1)
iccDEV: UB in CIccOpDefEnvVar::Exec() InternationalColorConsortium
 iccDEV
 2026-03-31T22:00:16.467Z 2026-04-03T16:39:51.008Z
CVE-2026-34536
6.2 (3.1)
iccDEV: SO in SIccCalcOp::ArgsUsed() InternationalColorConsortium
 iccDEV
 2026-03-31T21:59:14.320Z 2026-04-01T18:58:47.938Z
CVE-2026-32019
2.3 (4.0)
7.4 (3.1)
OpenClaw < 2026.2.22 - Incomplete IPv4 Special-Use Ran… OpenClaw
 OpenClaw
 2026-03-19T22:06:56.400Z 2026-03-25T14:27:49.829Z
CVE-2026-34535
6.2 (3.1)
iccDEV: SEGV in CIccTagArray::Cleanup() InternationalColorConsortium
 iccDEV
 2026-03-31T21:58:17.535Z 2026-04-01T13:33:37.621Z
CVE-2026-34533
6.2 (3.1)
iccDEV: UB in CIccCalculatorFunc::ApplySequence() InternationalColorConsortium
 iccDEV
 2026-03-31T21:56:28.390Z 2026-04-03T16:38:58.635Z
CVE-2026-4747
8.8 (3.1)
Remote code execution via RPCSEC_GSS packet validation FreeBSD
 FreeBSD
 2026-03-26T06:21:12.735Z 2026-04-02T03:55:35.253Z
CVE-2026-32035
5.8 (4.0)
5.9 (3.1)
OpenClaw < 2026.3.2 - Missing Owner Flag Validation in… OpenClaw
 OpenClaw
 2026-03-19T22:07:10.096Z 2026-03-20T17:56:13.671Z
CVE-2026-34534
6.2 (3.1)
iccDEV: HBO in CIccMpeSpectralMatrix::Describe() InternationalColorConsortium
 iccDEV
 2026-03-31T21:57:17.173Z 2026-04-01T15:52:51.235Z
CVE-2026-34452
5.8 (4.0)
Claude SDK for Python: Memory Tool Path Validation Rac… anthropics
 anthropic-sdk-python
 2026-03-31T21:32:37.537Z 2026-04-03T16:08:25.309Z
CVE-2025-15552
6 (4.0)
Long Session Lifetime in Truesec LAPSWebUI Truesec
 LAPSWebUI
 2026-03-16T10:44:02.659Z 2026-03-16T18:14:07.403Z
CVE-2025-15553
6 (4.0)
Insecure Logout Functionality in Truesec LAPSWebUI Truesec
 LAPSWebUI
 2026-03-16T10:45:04.206Z 2026-03-16T18:01:00.996Z
CVE-2026-6648
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
Qibo CMS Internal Message cross site scripting Qibo
 CMS
 2026-04-20T13:00:44.627Z 2026-04-20T14:51:00.368Z
CVE-2025-13947
7.4 (3.1)
Webkit: webkitgtk: remote user-assisted information di… The WebKitGTK Team
 webkitgtk
 2025-12-03T09:45:59.939Z 2026-04-20T12:58:10.411Z
CVE-2025-27363
8.1 (3.1)
An out of bounds write exists in FreeType version… FreeType
 FreeType
 2025-03-11T13:28:31.705Z 2026-04-19T22:08:52.695Z
CVE-2026-4887
6.1 (3.1)
Gimp: gimp:memory disclosure and denial of service via… Red Hat
 Red Hat Enterprise Linux 6
 2026-03-26T12:08:47.354Z 2026-04-20T13:50:22.874Z
CVE-2026-5026
7 (4.0)
Langflow - Stored XSS via Malicious SVG Upload langflow-ai
 langflow
 2026-03-27T14:50:36.603Z 2026-03-27T15:35:23.336Z
CVE-2026-5025
6.5 (3.1)
Langflow - Application Logs Exposed to All Authenticat… langflow-ai
 langflow
 2026-03-27T14:43:00.533Z 2026-03-27T15:38:54.925Z
CVE-2026-5022
6.3 (4.0)
Langflow - Missing Authorization on download_image Endpoint langflow-ai
 langflow
 2026-03-27T14:34:14.046Z 2026-03-27T15:10:20.925Z
CVE-2026-28428
5.3 (3.1)
Talishar: Authentication Bypass via Empty authKey Para… Talishar
 Talishar
 2026-03-06T04:59:52.271Z 2026-03-09T19:54:28.169Z
CVE-2026-28429
7.5 (3.1)
Talishar: Critical Path Traversal in gameName Parameter Talishar
 Talishar
 2026-03-06T04:59:49.629Z 2026-03-09T19:45:39.377Z
CVE-2026-0995
3.6 (3.1)
An issue has been identified in Arm C1-Pro before… Arm
 C1 Pro
 2026-03-02T14:52:55.859Z 2026-03-02T16:16:02.649Z
CVE-2026-33748
8.2 (4.0)
BuildKit Git URL subdir component can cause access to … moby
 buildkit
 2026-03-27T14:00:21.200Z 2026-03-27T19:58:28.764Z
CVE-2026-33755
8.8 (3.1)
Authenticated SQL Injection in Contact/query addressBo… Intermesh
 groupoffice
 2026-03-27T14:08:38.685Z 2026-03-27T17:23:30.752Z
CVE-2026-33906
7.2 (3.1)
Ella Core has Privilege Escalation via Database Restor… ellanetworks
 core
 2026-03-27T20:56:35.079Z 2026-03-31T18:53:56.905Z
CVE-2026-33904
6.5 (3.1)
Ella Core has a Denial of Service via SCTP connection … ellanetworks
 core
 2026-03-27T20:55:18.506Z 2026-03-31T14:06:35.855Z
CVE-2026-33907
6.5 (3.1)
Ella Core Panics during NAS Authentication Response/Fa… ellanetworks
 core
 2026-03-27T20:58:06.768Z 2026-03-30T18:53:12.138Z
CVE-2026-33903
6.5 (3.1)
Ella Core panics when processing a crafted NGAP Locati… ellanetworks
 core
 2026-03-27T20:52:37.157Z 2026-03-30T15:42:36.950Z
CVE-2025-32453
6.7 (3.1)
Incorrect default permissions for some Intel(R) G… n/a
 Intel(R) Graphics Driver software
 2026-02-10T16:25:50.100Z 2026-02-26T15:04:09.059Z
ID Description Published Updated
fkie_cve-2026-34452 The Claude SDK for Python provides access to the Claude API from Python applications. From version … 2026-03-31T22:16:20.320 2026-04-20T13:34:05.023
fkie_cve-2025-15552 Insufficient Session Expiration in Truesec’s LAPSWebUI before version 2.4 allows an attacker with a… 2026-03-16T14:17:56.130 2026-04-20T13:29:24.317
fkie_cve-2025-15553 Non-working logout functionality in Truesec’s LAPSWebUI before version 2.4 allows an attacker with … 2026-03-16T14:17:56.280 2026-04-20T13:18:41.677
fkie_cve-2026-6648 A vulnerability was found in Qibo CMS 1.0. Affected by this vulnerability is an unknown functionali… 2026-04-20T13:16:11.647 2026-04-20T13:16:11.647
fkie_cve-2025-13947 A flaw was found in WebKitGTK. This vulnerability allows remote, user-assisted information disclosu… 2025-12-03T10:15:47.710 2026-04-20T13:16:10.257
fkie_cve-2025-27363 An out of bounds write exists in FreeType versions 2.13.0 and below (newer versions of FreeType are… 2025-03-11T14:15:25.427 2026-04-20T13:15:39.743
fkie_cve-2026-4887 A flaw was found in GIMP. This issue is a heap buffer over-read in GIMP PCX file loader due to an o… 2026-03-26T13:16:30.780 2026-04-20T13:11:24.617
fkie_cve-2026-5026 The '/api/v1/files/images/{flow_id}/{file_name}' endpoint serves SVG files with the 'image/svg+xml'… 2026-03-27T15:17:04.597 2026-04-20T13:04:44.883
fkie_cve-2026-5025 The '/logs' and '/logs-stream' endpoints in the log router allow any authenticated user to read the… 2026-03-27T15:17:04.447 2026-04-20T13:04:35.533
fkie_cve-2026-5022 The '/api/v1/files/images/{flow_id}/{file_name}' endpoint does not enforce any authentication or au… 2026-03-27T15:17:04.293 2026-04-20T13:00:38.590
fkie_cve-2026-28428 Talishar is a fan-made Flesh and Blood project. Prior to commit a9c218e, an authentication bypass v… 2026-03-06T05:16:31.607 2026-04-20T12:57:06.860
fkie_cve-2026-28429 Talishar is a fan-made Flesh and Blood project. Prior to commit 6be3871, a Path Traversal vulnerabi… 2026-03-06T05:16:31.890 2026-04-20T12:54:48.993
fkie_cve-2026-0995 An issue has been identified in Arm C1-Pro before r1p2-50eac0, where, under certain conditions, a T… 2026-03-02T15:16:31.910 2026-04-20T12:53:59.197
fkie_cve-2026-33748 BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and… 2026-03-27T15:16:57.127 2026-04-20T12:37:46.220
fkie_cve-2026-33755 Group-Office is an enterprise customer relationship management and groupware tool. Prior to version… 2026-03-27T15:16:57.527 2026-04-20T12:35:02.850
fkie_cve-2026-33906 Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, the NetworkManager ro… 2026-03-27T21:17:26.800 2026-04-20T12:33:13.623
fkie_cve-2026-33904 Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, a deadlock in the AMF… 2026-03-27T21:17:26.640 2026-04-20T12:32:55.933
fkie_cve-2026-33907 Ella Core is a 5G core designed for private networks. Versions prior to 1.7.0 panic when processing… 2026-03-27T21:17:27.003 2026-04-20T12:32:36.940
fkie_cve-2026-33903 Ella Core is a 5G core designed for private networks. Versions prior to 1.7.0 panic when processing… 2026-03-27T21:17:26.477 2026-04-20T12:29:28.713
fkie_cve-2025-32453 Incorrect default permissions for some Intel(R) Graphics Driver software within Ring 2: Privileged … 2026-02-10T17:16:16.877 2026-04-20T12:28:07.670
fkie_cve-2025-32739 Improper conditions check in some firmware for some Intel(R) Graphics Drivers and Intel LTS kernels… 2026-02-10T17:16:17.360 2026-04-20T12:27:29.840
fkie_cve-2025-32092 Insecure inherited permissions for some Intel(R) Graphics Software before version 25.30.1702.0 with… 2026-02-10T17:16:16.553 2026-04-20T12:25:40.723
fkie_cve-2026-6636 A vulnerability was detected in p2r3 convert up to 6998584ace3e11db66dff0b423612a5cf91de75b. Affect… 2026-04-20T12:16:09.943 2026-04-20T12:16:09.943
fkie_cve-2026-6635 A security vulnerability has been detected in rowboatlabs rowboat up to 0.1.67. This impacts the fu… 2026-04-20T12:16:09.673 2026-04-20T12:16:09.673
fkie_cve-2026-6634 A weakness has been identified in usememos memos up to 0.22.1. This affects the function memos_acce… 2026-04-20T12:16:09.490 2026-04-20T12:16:09.490
fkie_cve-2026-6633 A security flaw has been discovered in Yifang CMS up to 2.0.5. The impacted element is the function… 2026-04-20T12:16:09.303 2026-04-20T12:16:09.303
fkie_cve-2026-6632 A vulnerability was identified in Tenda F451 1.0.0.7_cn_svn7958. The affected element is the functi… 2026-04-20T11:16:19.760 2026-04-20T11:16:19.760
fkie_cve-2026-6631 A vulnerability was determined in Tenda F451 1.0.0.7_cn_svn7958. Impacted is the function fromwebEx… 2026-04-20T11:16:19.583 2026-04-20T11:16:19.583
fkie_cve-2026-6630 A vulnerability was found in Tenda F451 1.0.0.7_cn_svn7958. This issue affects the function fromGst… 2026-04-20T11:16:19.407 2026-04-20T11:16:19.407
fkie_cve-2026-6629 A vulnerability has been found in Metasoft 美特软件 MetaCRM up to 6.4.0. This vulnerability affects the… 2026-04-20T11:16:18.927 2026-04-20T11:16:18.927
ID Severity Description Published Updated
ghsa-qg37-cwrh-945r
8.1 (3.1)
Anviz CrossChex Standard lacks source verification in the client/server channel, enabling TCP pack… 2026-04-17T21:31:47Z 2026-04-17T21:31:47Z
ghsa-pxw3-r2m4-c5m3
6.5 (3.1)
Anviz CX2 Lite and CX7 administrative sessions occur over HTTP, enabling on‑path attackers to snif… 2026-04-17T21:31:47Z 2026-04-17T21:31:47Z
ghsa-9q53-p4m8-gm9v
5.3 (3.1)
Anviz CX7 Firmware is vulnerable to the most recently captured test photo that can be retrieved wi… 2026-04-17T21:31:47Z 2026-04-17T21:31:47Z
ghsa-98hc-x583-4p47
9.8 (3.1)
Anviz CX2 Lite and CX7 are vulnerable to unauthenticated firmware uploads. This causes crafted arc… 2026-04-17T21:31:47Z 2026-04-17T21:31:47Z
ghsa-5j27-2fpm-q949
8.8 (3.1)
Anviz CX2 Lite is vulnerable to an authenticated command injection via a filename parameter that e… 2026-04-17T21:31:47Z 2026-04-17T21:31:47Z
ghsa-q6pr-mghj-3fjx
7.5 (3.1)
Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable e… 2026-04-17T21:31:46Z 2026-04-17T21:31:46Z
ghsa-p7jp-59qp-fjf3
5.3 (3.1)
Anviz CX2 Lite and CX7 are vulnerable to unauthenticated access that discloses debug configuration… 2026-04-17T21:31:46Z 2026-04-17T21:31:46Z
ghsa-jgq2-vq69-gr6h
9.1 (3.1)
9.1 (4.0)
OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot… 2026-04-17T21:31:46Z 2026-04-17T21:31:46Z
ghsa-fwx6-6883-xr45
4.9 (3.1)
Anviz CX7 Firmware is vulnerable to an authenticated CSV upload which allows path traversal to ove… 2026-04-17T21:31:46Z 2026-04-17T21:31:46Z
ghsa-6625-m396-m7cp
7.7 (3.1)
Anviz CX7 Firmware is  vulnerable because the application embeds reusable certificate/key material… 2026-04-17T21:31:46Z 2026-04-17T21:31:46Z
ghsa-f3fr-gvgx-x9gh
9.1 (3.1)
10.0 (4.0)
Out-of-bounds write vulnerability in the WEB module.Impact: Successful exploitation of this vulnera… 2026-04-13T09:31:33Z 2026-04-17T21:31:43Z
ghsa-5p47-92qw-3767
8.1 (3.1)
2.7 (4.0)
In Ubuntu, Subiquity version 24.04.4 could leak sensitive user credentials during crash reporting. … 2026-04-09T18:31:26Z 2026-04-17T21:31:42Z
ghsa-24q9-g4p7-45qp
9.1 (3.1)
2.7 (4.0)
In Ubuntu, ubuntu-desktop-provision version 24.04.4 could leak sensitive user credentials during cr… 2026-04-09T18:31:26Z 2026-04-17T21:31:42Z
ghsa-x3cv-r3g3-fpg9
2.3 (4.0)
Neo4j Labs MCP Servers: SSRF and Data Modification via read_only Mode Bypass Through CALL Procedures 2026-04-17T21:30:50Z 2026-04-17T21:30:50Z
ghsa-ggmg-cqg6-j45g
9.1 (3.1)
Sentry: Improper authentication on SAML SSO process allows user identity linking 2026-04-17T21:25:37Z 2026-04-17T21:25:37Z
ghsa-w5j3-8fcr-h87w
9.4 (4.0)
Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration 2026-04-17T21:24:48Z 2026-04-17T21:24:48Z
ghsa-92jp-89mq-4374
6.9 (4.0)
OpenClaw: Sandbox noVNC helper route exposed interactive browser session credentials 2026-04-17T20:08:01Z 2026-04-17T20:08:01Z
ghsa-6wpv-cj6x-v3jw
5.9 (3.1)
http vulnerable to Exposure of Sensitive Information to an Unauthorized Actor 2018-03-13T16:15:57Z 2026-04-17T19:00:58Z
ghsa-xj7v-jqv6-v48w
8.1 (3.1)
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arb… 2026-04-17T18:31:54Z 2026-04-17T18:31:54Z
ghsa-j54c-rr2x-ff86
7.5 (3.1)
The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Pat… 2026-04-17T18:31:53Z 2026-04-17T18:31:53Z
ghsa-785m-9q28-jp3m
8.3 (3.1)
7.8 (4.0)
OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_f… 2026-04-17T18:31:53Z 2026-04-17T18:31:53Z
ghsa-54pv-34f9-m4mq
7.1 (3.1)
7.1 (4.0)
ByteDance DeerFlow before commit 2176b2b contains a path traversal and arbitrary file write vulnera… 2026-04-17T18:31:53Z 2026-04-17T18:31:53Z
ghsa-cx3p-49rf-9534
6.3 (3.1)
2.1 (4.0)
A vulnerability was determined in prasathmani TinyFileManager up to 2.6. Affected by this vulnerabi… 2026-04-17T18:31:51Z 2026-04-17T18:31:52Z
ghsa-9gpm-2v37-f3mp
7.5 (3.1)
8.7 (4.0)
OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers … 2026-04-17T18:31:52Z 2026-04-17T18:31:52Z
ghsa-9859-fqhx-279v
8.8 (3.1)
The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to … 2026-04-17T18:31:52Z 2026-04-17T18:31:52Z
ghsa-4h67-fm2h-4qrp
7.3 (3.1)
Software installed and run as a non-privileged user may conduct improper GPU system calls to gain w… 2026-04-17T18:31:52Z 2026-04-17T18:31:52Z
ghsa-r9f4-h79v-5p47
9.1 (3.1)
9.3 (4.0)
An attacker with network access to the PLC is able to brute force discover passwords to gain unauth… 2026-04-17T18:31:51Z 2026-04-17T18:31:51Z
ghsa-h6m6-2qjp-9v82
9.8 (3.1)
A SQL injection vulnerability in CodeAstro Simple Attendance Management System v1.0 allows remote u… 2026-04-17T15:31:18Z 2026-04-17T18:31:51Z
ghsa-w2qc-5jvx-3g3v
5.4 (3.1)
4.8 (4.0)
Stored cross-site scripting vulnerability exists in GROWI v7.4.6 and earlier. If this vulnerability… 2026-04-17T18:31:50Z 2026-04-17T18:31:50Z
ghsa-p93r-85wp-75v3
10.0 (4.0)
Covert timing channel vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA core on all (core m… 2026-04-17T18:31:50Z 2026-04-17T18:31:50Z
ID Severity Description Package Published Updated
pysec-2022-43102
9.8 (3.1)
The d8s-urls for python 0.1.0, as distributed on PyPI, included a potential code-executio… democritus-hypothesis 2022-09-19T15:15:00Z 2024-11-21T14:22:43.766564Z
pysec-2022-43101
9.8 (3.1)
The d8s-strings for python, as distributed on PyPI, included a potential code-execution b… democritus-hypothesis 2022-09-19T16:15:00Z 2024-11-21T14:22:43.716069Z
pysec-2022-43100
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… democritus-grammars 2022-11-07T15:15:00Z 2024-11-21T14:22:43.665816Z
pysec-2022-43099
9.8 (3.1)
The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back… democritus-file-system 2022-09-19T16:15:00Z 2024-11-21T14:22:43.616362Z
pysec-2022-43098
9.8 (3.1)
The d8s-urls for python, as distributed on PyPI, included a potential code-execution back… democritus-file-system 2022-09-19T15:15:00Z 2024-11-21T14:22:43.564135Z
pysec-2022-43097
9.8 (3.1)
The d8s-urls for python, as distributed on PyPI, included a potential code-execution back… democritus-domains 2022-11-07T15:15:00Z 2024-11-21T14:22:43.511664Z
pysec-2022-43096
8.8 (3.1)
The d8s-timer for python, as distributed on PyPI, included a potential code-execution bac… democritus-dates 2022-11-07T15:15:00Z 2024-11-21T14:22:43.46136Z
pysec-2022-43095
9.8 (3.1)
The d8s-ip-addresses package for Python, as distributed on PyPI, included a potential cod… democritus-csv 2022-10-11T22:15:00Z 2024-11-21T14:22:43.41112Z
pysec-2022-43094
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… democritus-algorithms 2022-11-07T15:15:00Z 2024-11-21T14:22:43.361191Z
pysec-2022-43093
9.8 (3.1)
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd… d8s-xml 2022-11-07T15:15:00Z 2024-11-21T14:22:43.253271Z
pysec-2022-43092
9.8 (3.1)
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd… d8s-xml 2022-09-19T16:15:00Z 2024-11-21T14:22:43.200942Z
pysec-2022-43091
9.8 (3.1)
The d8s-urls for python, as distributed on PyPI, included a potential code-execution back… d8s-urls 2022-11-07T15:15:00Z 2024-11-21T14:22:43.149086Z
pysec-2022-43090
8.8 (3.1)
The d8s-timer for python, as distributed on PyPI, included a potential code-execution bac… d8s-timer 2022-11-07T15:15:00Z 2024-11-21T14:22:43.097689Z
pysec-2022-43089
9.8 (3.1)
The d8s-timer for python, as distributed on PyPI, included a potential code-execution bac… d8s-timer 2022-11-07T15:15:00Z 2024-11-21T14:22:43.045759Z
pysec-2022-43088
9.8 (3.1)
The d8s-strings for python, as distributed on PyPI, included a potential code-execution b… d8s-strings 2022-11-07T15:15:00Z 2024-11-21T14:22:42.994084Z
pysec-2022-43087
9.8 (3.1)
The d8s-strings for python, as distributed on PyPI, included a potential code-execution b… d8s-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:42.944804Z
pysec-2022-43086
9.8 (3.1)
The d8s-stats for python, as distributed on PyPI, included a potential code-execution bac… d8s-stats 2022-11-07T15:15:00Z 2024-11-21T14:22:42.892924Z
pysec-2022-43085
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… d8s-python 2022-11-07T15:15:00Z 2024-11-21T14:22:42.829791Z
pysec-2022-43084
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… d8s-python 2022-11-07T15:15:00Z 2024-11-21T14:22:42.776996Z
pysec-2022-43083
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… d8s-python 2022-09-19T16:15:00Z 2024-11-21T14:22:42.723606Z
pysec-2022-43082
9.8 (3.1)
The d8s-networking for python, as distributed on PyPI, included a potential code-executio… d8s-networking 2022-11-07T15:15:00Z 2024-11-21T14:22:42.668916Z
pysec-2022-43081
9.8 (3.1)
The d8s-networking for python, as distributed on PyPI, included a potential code-executio… d8s-networking 2022-11-07T15:15:00Z 2024-11-21T14:22:42.613124Z
pysec-2022-43080
9.8 (3.1)
The d8s-netstrings for python, as distributed on PyPI, included a potential code-executio… d8s-netstrings 2022-09-19T16:15:00Z 2024-11-21T14:22:42.556543Z
pysec-2022-43079
9.8 (3.1)
The d8s-math for python, as distributed on PyPI, included a potential code-execution back… d8s-math 2022-09-19T16:15:00Z 2024-11-21T14:22:42.499117Z
pysec-2022-43078
9.8 (3.1)
The d8s-json for python, as distributed on PyPI, included a potential code-execution back… d8s-json 2022-09-19T16:15:00Z 2024-11-21T14:22:42.439723Z
pysec-2022-43077
9.8 (3.1)
The d8s-ip-addresses package for Python, as distributed on PyPI, included a potential cod… d8s-ip-addresses 2022-10-11T22:15:00Z 2024-11-21T14:22:42.385746Z
pysec-2022-43076
9.8 (3.1)
The d8s-grammars for python, as distributed on PyPI, included a potential code-execution … d8s-grammars 2022-09-19T16:15:00Z 2024-11-21T14:22:42.333517Z
pysec-2022-43075
9.8 (3.1)
The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac… d8s-dates 2022-11-07T15:15:00Z 2024-11-21T14:22:42.280201Z
pysec-2022-43074
9.8 (3.1)
The d8s-archives for python, as distributed on PyPI, included a potential code-execution … d8s-archives 2022-09-19T16:15:00Z 2024-11-21T14:22:42.229096Z
pysec-2022-43073
9.8 (3.1)
The cloudlabeling package in PyPI v0.0.1 was discovered to contain a code execution backd… cloudlabeling 2022-06-24T21:15:00Z 2024-11-21T14:22:42.118573Z
ID Description Updated
gsd-2024-33525 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.645678Z
gsd-2024-25560 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.926102Z
gsd-2024-31156 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:09.611319Z
gsd-2024-4163 The Skylab IGX IIoT Gateway allowed users to connect to it via a limited shell terminal (… 2024-04-25T05:02:08.576986Z
gsd-2024-4162 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.583385Z
gsd-2024-4161 In Brocade SANnav, before Brocade SANnav v2.3.0, syslog traffic received clear text. Thi… 2024-04-25T05:02:08.597600Z
gsd-2024-4160 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.580915Z
gsd-2024-4159 Brocade SANnav before Brocade SANnav v2.3.1 lacks protection mechanisms on port 2377/TCP… 2024-04-25T05:02:08.603616Z
gsd-2024-4158 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.563038Z
gsd-2024-4157 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.593416Z
gsd-2024-4156 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.562256Z
gsd-2024-4155 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.601522Z
gsd-2024-4154 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.584972Z
gsd-2024-4153 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.546102Z
gsd-2024-4152 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.553366Z
gsd-2024-4151 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.570377Z
gsd-2024-4150 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.563239Z
gsd-2024-4149 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.587714Z
gsd-2024-4148 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.554457Z
gsd-2024-4147 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.547111Z
gsd-2024-4146 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.545881Z
gsd-2024-4145 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.595097Z
gsd-2024-4144 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.557398Z
gsd-2024-4143 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.577665Z
gsd-2024-4142 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.547368Z
gsd-2024-4141 Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid character cod… 2024-04-25T05:02:08.599260Z
gsd-2024-4140 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.598688Z
gsd-2024-4139 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.586673Z
gsd-2024-4138 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.556926Z
gsd-2024-4137 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:08.577471Z
ID Description Published Updated
mal-2026-2545 Malicious code in @sap-px/pxapi (npm) 2026-04-11T04:45:40Z 2026-04-13T15:48:02Z
mal-2026-2537 Malicious code in @b2b-portal/form (npm) 2026-04-10T16:43:07Z 2026-04-13T15:48:02Z
mal-2026-2621 Malicious code in walmart-internal (npm) 2026-04-13T15:33:47Z 2026-04-13T15:33:47Z
mal-2026-2597 Malicious code in @zgny/onboarding-consumer (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2596 Malicious code in @spreadjs/js-calc (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2594 Malicious code in @spoonflower/ui (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2592 Malicious code in @relxui/react (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2589 Malicious code in @mx-shared/utils (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2587 Malicious code in @kucoin-gbiz-next/tools (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:30Z
mal-2026-2585 Malicious code in @hrb-web/nuxt (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:29Z
mal-2026-2584 Malicious code in @hpcc/js-api (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:29Z
mal-2026-2583 Malicious code in @hmm-app/api (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:29Z
mal-2026-2580 Malicious code in @cash-web/no-hardcoded-font-styles (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:29Z
mal-2026-2579 Malicious code in @bookiply/core (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:29Z
mal-2026-2609 Malicious code in trade-in-lib (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:24Z
mal-2026-2605 Malicious code in kaltura-ngx-client (npm) 2026-04-13T15:25:19Z 2026-04-13T15:25:24Z
mal-2026-2622 Malicious code in wm-plugin-wm-smart-tip-dont-embed-tooltip (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:22Z
mal-2026-2586 Malicious code in @ids-alpha/theme (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:22Z
mal-2026-2581 Malicious code in @dtc-campaign-wizard/campaign-wizard (npm) 2026-04-13T15:25:22Z 2026-04-13T15:25:22Z
mal-2026-2578 Malicious code in @bokehjs/core (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:22Z
mal-2026-2573 Malicious code in @aircall-ecosystem/integrations-msteams-frontend (npm) 2026-04-13T15:25:21Z 2026-04-13T15:25:22Z
mal-2026-2607 Malicious code in stats-api-js-client (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:21Z
mal-2026-2602 Malicious code in etsy-advocacy (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:21Z
mal-2026-2600 Malicious code in cms-site-api-js-client (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:21Z
mal-2026-2598 Malicious code in babel-plugin-fbtee (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:21Z
mal-2026-2610 Malicious code in twilio-video.js (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:20Z
mal-2026-2608 Malicious code in symphony-core (npm) 2026-04-13T15:25:19Z 2026-04-13T15:25:20Z
mal-2026-2604 Malicious code in ih-icon (npm) 2026-04-13T15:25:20Z 2026-04-13T15:25:20Z
mal-2026-2603 Malicious code in experian-design-system-themes (npm) 2026-04-13T15:25:19Z 2026-04-13T15:25:20Z
mal-2026-2601 Malicious code in dwaiter-company-web (npm) 2026-04-13T15:25:19Z 2026-04-13T15:25:20Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-1460 PHP: Mehrere Schwachstellen 2025-07-03T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-0879 BusyBox: Mehrere Schwachstellen 2025-04-23T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-0635 RabbitMQ: Schwachstelle ermöglicht Cross-Site Scripting 2025-03-25T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-0633 Gitea: Mehrere Schwachstellen 2025-03-25T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2024-3176 Eclipse Jetty: Mehrere Schwachstellen 2024-10-14T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2024-2044 Django: Mehrere Schwachstellen 2024-09-03T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2024-1775 Django: Mehrere Schwachstellen 2024-08-06T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2024-1569 Django: Mehrere Schwachstellen 2024-07-09T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2024-1530 OpenJPEG: Mehrere Schwachstellen ermöglichen Denial of Service 2024-07-04T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2023-2386 Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen 2023-09-18T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2023-2001 AMD Prozessoren: Mehrere Schwachstellen 2023-08-08T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2023-1957 Linux Kernel: Mehrere Schwachstellen 2023-08-03T22:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2023-0183 Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff 2023-01-23T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2026-0222 PyTorch: Schwachstelle ermöglicht Codeausführung 2026-01-26T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2026-0219 Vercel Next.js: Mehrere Schwachstellen ermöglichen Denial of Service 2026-01-26T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2026-0214 dormakaba Access Manager: Mehrere Schwachstellen 2026-01-25T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2025-2740 ffmpeg: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-12-03T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2025-2693 CUPS: Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-27T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2026-0176 Google Chrome/Microsoft Edge: Schwachstelle ermöglicht Codeausführung 2026-01-20T23:00:00.000+00:00 2026-01-25T23:00:00.000+00:00
wid-sec-w-2026-0190 vllm: Mehrere Schwachstellen 2026-01-21T23:00:00.000+00:00 2026-01-22T23:00:00.000+00:00
wid-sec-w-2026-0133 SmarterTools SmarterMail: Mehrere Schwachstellen 2026-01-15T23:00:00.000+00:00 2026-01-22T23:00:00.000+00:00
wid-sec-w-2026-0185 M-Files M-Files Server: Schwachstelle ermöglicht Denial of Service 2026-01-20T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0182 Apache Solr: Mehrere Schwachstellen 2026-01-20T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0174 Oracle Systems: Mehrere Schwachstellen 2026-01-20T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0172 Oracle Virtualization: Mehrere Schwachstellen 2026-01-20T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0159 Oracle E-Business Suite: Mehrere Schwachstellen 2026-01-20T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2934 ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-29T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2927 NetApp ActiveIQ Unified Manager: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-28T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2891 WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS 2025-12-18T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2888 ImageMagick: Schwachstelle ermöglicht Denial of Service 2025-12-18T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
ID Description Published Updated
icsa-25-191-09 KUNBUS RevPi Webstatus 2025-07-10T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-191-08 Advantech iView 2025-07-10T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-191-07 Delta Electronics DTM Soft 2025-07-10T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-135-19 ECOVACS DEEBOT Vacuum and Base Station (Update A) 2025-05-15T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-121-01 KUNBUS GmbH Revolution Pi (Update A) 2025-05-01T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-105-03 Siemens SIMOCODE, SIMATIC, SIPLUS, SIDOOR, SIWAREX 2025-04-08T00:00:00.000000Z 2025-07-10T00:00:00.000000Z
icsa-25-189-01 Emerson ValveLink Products 2025-07-08T06:00:00.000000Z 2025-07-08T06:00:00.000000Z
icsa-25-203-06 Schneider Electric EcoStruxture IT Data Center Expert 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-203-05 Schneider Electric System Monitor Application 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-203-03 Schneider Electric EcoStruxure 2025-07-08T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-175-04 Schneider Electric EVLink WallBox (Update A) 2025-06-10T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-175-03 Schneider Electric Modicon Controllers (Update A) 2025-06-10T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-014-02 Schneider Electric Vijeo Designer and EcoStruxureâ„¢ Machine Expert (Update A) 2024-09-10T00:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-191-06 Siemens SIPROTEC 5 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-04 Siemens SIMATIC CN 4100 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-03 Siemens TIA Administrator 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-02 Siemens Solid Edge 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-191-01 Siemens SINEC NMS 2025-07-08T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-168-01 Siemens Mendix Studio Pro 2025-06-12T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-24-256-15 Siemens Industrial Products 2024-09-10T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-20-105-08 Siemens KTK, SIDOOR, SIMATIC, and SINAMICS (Update D) 2020-04-14T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-15-335-03 Siemens SIMATIC Communication Processor Vulnerability (Update C) 2015-11-27T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsa-25-184-04 Mitsubishi Electric MELSEC iQ-F Series 2025-07-03T06:00:00.000000Z 2025-07-03T06:00:00.000000Z
icsa-25-184-02 Hitachi Energy MicroSCADA X SYS600 2025-07-03T06:00:00.000000Z 2025-07-03T06:00:00.000000Z
va-25-169-01 Versa Networks Versa Director multiple vulnerabilities 2025-07-02T20:57:00Z 2025-07-02T20:57:00Z
icsa-25-182-05 Voltronic Power and PowerShield UPS monitoring software 2025-07-01T06:00:00.000000Z 2025-07-01T06:00:00.000000Z
icsa-16-306-02 IBHsoftec S7-SoftPLC CPX43 Heap-based Buffer Overflow Vulnerability 2016-08-05T06:00:00.000000Z 2025-06-26T14:48:20.911473Z
icsa-16-287-07a Kabona AB WDC Vulnerabilities (Update A) 2016-07-17T06:00:00.000000Z 2025-06-26T14:47:55.479923Z
icsa-25-177-02 TrendMakers Sight Bulb Pro 2025-06-26T05:00:00.000000Z 2025-06-26T05:00:00.000000Z
icsa-15-202-02 Siemens Sm@rtClient Password Storage Vulnerability 2015-04-23T06:00:00.000000Z 2025-06-25T22:54:14.268360Z
ID Description Published Updated
cisco-sa-sb-rv34x-rce-7pqFU2e Cisco RV340 and RV345 Dual WAN Gigabit VPN Routers Authenticated Remote Code Execution Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-ise-file-upload-krw2txa9 Cisco Identity Services Engine Arbitrary File Upload Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-ise-file-upload-krW2TxA9 Cisco Identity Services Engine Arbitrary File Upload Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-inode-static-key-vuvceynn Cisco Intelligent Node Software Static Key Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-inode-static-key-VUVCeynn Cisco Intelligent Node Software Static Key Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-expressway-redirect-kjsfuxgj Cisco Expressway Series Open Redirect Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-expressway-redirect-KJsFuXgj Cisco Expressway Series Open Redirect Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-esa-priv-esc-ssti-xno2eogz Cisco Secure Email Gateway Server-Side Template Injection Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-esa-priv-esc-ssti-xNO2EOGZ Cisco Secure Email Gateway Server-Side Template Injection Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-esa-afw-bgg2usjh Cisco Secure Email Gateway Arbitrary File Write Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-esa-afw-bGG2UsjH Cisco Secure Email Gateway Arbitrary File Write Vulnerability 2024-07-17T16:00:00+00:00 2024-07-17T16:00:00+00:00
cisco-sa-cssm-auth-sLw3uhUy Cisco Smart Software Manager On-Prem Password Change Vulnerability 2024-07-17T16:00:00+00:00 2024-08-07T14:54:52+00:00
cisco-sa-xr-secure-boot-qud5g8ap Cisco IOS XR Software Secure Boot Bypass Vulnerability 2024-07-10T16:00:00+00:00 2024-07-10T16:00:00+00:00
cisco-sa-xr-secure-boot-quD5g8Ap Cisco IOS XR Software Secure Boot Bypass Vulnerability 2024-07-10T16:00:00+00:00 2024-07-10T16:00:00+00:00
cisco-sa-cimc-cmd-inj-blupcb Cisco Integrated Management Controller Web-Based Management Interface Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:37+00:00
cisco-sa-cimc-cmd-inj-bLuPcb Cisco Integrated Management Controller Web-Based Management Interface Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:37+00:00
cisco-sa-cimc-cmd-inj-mux4c5aj Cisco Integrated Management Controller CLI Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:08+00:00
cisco-sa-cimc-cmd-inj-mUx4c5AJ Cisco Integrated Management Controller CLI Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:08+00:00
cisco-sa-finesse-ssrf-rfi-um7wt8ew Cisco Finesse Web-Based Management Interface Vulnerabilities 2024-06-05T16:00:00+00:00 2024-06-14T21:44:14+00:00
cisco-sa-finesse-ssrf-rfi-Um7wT8Ew Cisco Finesse Web-Based Management Interface Vulnerabilities 2024-06-05T16:00:00+00:00 2024-06-14T21:44:14+00:00
cisco-sa-esa-sma-wsa-xss-bgg5whod Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Cross-Site Scripting Vulnerabilities 2024-05-15T16:00:00+00:00 2024-06-12T15:37:50+00:00
cisco-sa-esa-sma-wsa-xss-bgG5WHOD Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Cross-Site Scripting Vulnerabilities 2024-05-15T16:00:00+00:00 2024-06-12T15:37:50+00:00
cisco-sa-esa-http-split-glrnnows Cisco Secure Email Gateway HTTP Response Splitting Vulnerability 2024-05-15T16:00:00+00:00 2024-06-12T15:14:33+00:00
cisco-sa-esa-http-split-GLrnnOwS Cisco Secure Email Gateway HTTP Response Splitting Vulnerability 2024-05-15T16:00:00+00:00 2024-06-12T15:14:33+00:00
cisco-sa-webex-june-2024 Cisco Webex Meetings Meeting Information and Metadata Issue June 2024 2024-06-04T21:00:00+00:00 2024-06-11T19:41:36+00:00
cisco-sa-opendns-pulse-dos-dd8l3szq Cisco OpenDNS Pulsing DNS Denial of Service Attack 2024-05-20T16:00:00+00:00 2024-05-23T16:28:32+00:00
cisco-sa-fmc-sqli-wffdnnos Cisco Firepower Management Center Software SQL Injection Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T17:39:28+00:00
cisco-sa-asaftd-ssl-dos-uu7mv5p6 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software for Firepower 2100 Series Appliances SSL/TLS Denial of Service Vulnerability 2023-06-07T16:00:00+00:00 2024-05-22T16:37:00+00:00
cisco-sa-asaftd-ssl-dos-uu7mV5p6 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software for Firepower 2100 Series Appliances SSL/TLS Denial of Service Vulnerability 2023-06-07T16:00:00+00:00 2024-05-22T16:37:00+00:00
cisco-sa-snort3-ips-bypass-ue69kbmd Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
ID Description Published Updated
msrc_cve-2024-26830 i40e: Do not allow untrusted VF to remove administratively set MAC 2024-04-02T07:00:00.000Z 2026-03-31T15:15:26.000Z
msrc_cve-2025-40339 drm/amdgpu: fix nullptr err of vm_handle_moved 2025-12-02T00:00:00.000Z 2026-03-31T15:15:25.000Z
msrc_cve-2024-36909 Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted 2024-05-02T07:00:00.000Z 2026-03-31T15:15:25.000Z
msrc_cve-2023-53543 vdpa: Add max vqp attr to vdpa_nl_policy for nlattr length check 2025-10-02T00:00:00.000Z 2026-03-31T15:15:22.000Z
msrc_cve-2024-46728 drm/amd/display: Check index for aux_rd_interval before using 2024-09-01T07:00:00.000Z 2026-03-31T15:15:18.000Z
msrc_cve-2026-3229 Integer Overflow in Certificate Chain Allocation 2026-03-02T00:00:00.000Z 2026-03-31T15:15:17.000Z
msrc_cve-2025-37807 bpf: Fix kmemleak warning for percpu hashmap 2025-05-02T00:00:00.000Z 2026-03-31T15:15:15.000Z
msrc_cve-2024-26837 net: bridge: switchdev: Skip MDB replays of deferred events on offload 2024-04-02T07:00:00.000Z 2026-03-31T15:15:07.000Z
msrc_cve-2022-48744 net/mlx5e: Avoid field-overflowing memcpy() 2024-06-02T07:00:00.000Z 2026-03-31T15:15:06.000Z
msrc_cve-2025-40289 drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM 2025-12-02T00:00:00.000Z 2026-03-31T15:15:05.000Z
msrc_cve-2024-53210 s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() 2024-12-02T00:00:00.000Z 2026-03-31T15:15:02.000Z
msrc_cve-2026-1005 Integer underflow leads to out-of-bounds access in sniffer AES-GCM/CCM/ARIA-GCM decrypt path 2026-03-02T00:00:00.000Z 2026-03-31T15:14:58.000Z
msrc_cve-2024-46765 ice: protect XDP configuration with a mutex 2024-09-01T07:00:00.000Z 2026-03-31T15:14:57.000Z
msrc_cve-2021-47432 lib/generic-radix-tree.c: Don't overflow in peek() 2024-05-02T07:00:00.000Z 2026-03-31T15:14:48.000Z
msrc_cve-2024-42317 mm/huge_memory: avoid PMD-size page cache if needed 2024-08-02T00:00:00.000Z 2026-03-31T15:14:47.000Z
msrc_cve-2024-57945 riscv: mm: Fix the out of bound issue of vmemmap address 2025-01-02T00:00:00.000Z 2026-03-31T15:14:46.000Z
msrc_cve-2024-56604 Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcomm_sock_alloc() 2024-12-02T00:00:00.000Z 2026-03-31T15:14:42.000Z
msrc_cve-2026-1703 Limited path traversal when installing wheel archives 2026-02-02T00:00:00.000Z 2026-03-31T15:14:40.000Z
msrc_cve-2024-46772 drm/amd/display: Check denominator crb_pipes before used 2024-09-01T07:00:00.000Z 2026-03-31T15:14:38.000Z
msrc_cve-2025-2915 HDF5 H5Faccum.c H5F__accum_free heap-based overflow 2025-03-02T00:00:00.000Z 2026-03-31T15:14:30.000Z
msrc_cve-2024-57924 fs: relax assertions on failure to encode file handles 2025-01-02T00:00:00.000Z 2026-03-31T15:14:28.000Z
msrc_cve-2024-47794 bpf: Prevent tailcall infinite loop caused by freplace 2025-01-02T00:00:00.000Z 2026-03-31T15:14:28.000Z
msrc_cve-2026-2443 Libsoup: out-of-bounds read in libsoup handle_partial_get() leading to heap information disclosure 2026-02-02T00:00:00.000Z 2026-03-31T15:14:17.000Z
msrc_cve-2024-46678 bonding: change ipsec_lock from spin lock to mutex 2024-09-01T07:00:00.000Z 2026-03-31T15:14:17.000Z
msrc_cve-2023-53209 wifi: mac80211_hwsim: Fix possible NULL dereference 2025-09-02T00:00:00.000Z 2026-03-31T15:14:13.000Z
msrc_cve-2024-57893 ALSA: seq: oss: Fix races at processing SysEx messages 2025-01-02T00:00:00.000Z 2026-03-31T15:14:09.000Z
msrc_cve-2024-50098 scsi: ufs: core: Set SDEV_OFFLINE when UFS is shut down 2024-11-02T00:00:00.000Z 2026-03-31T15:14:04.000Z
msrc_cve-2026-4395 Heap-based buffer overflow in wc_ecc_import_x963_ex KCAPI path 2026-03-02T00:00:00.000Z 2026-03-31T15:14:03.000Z
msrc_cve-2024-24856 NULL pointer deference in acpi_db_convert_to_package of Linux acpi module 2024-04-02T07:00:00.000Z 2026-03-31T15:14:00.000Z
msrc_cve-2025-40158 ipv6: use RCU in ip6_output() 2025-11-02T00:00:00.000Z 2026-03-31T15:13:57.000Z
ID Description Published Updated
ncsc-2025-0005 Kwetsbaarheden verholpen in Ivanti Connect Secure en Policy Secure 2025-01-08T18:55:33.983262Z 2025-01-17T08:54:45.356129Z
ncsc-2025-0019 Kwetsbaarheden verholpen in Schneider Electric Modicon 2025-01-16T11:46:16.661689Z 2025-01-16T11:46:16.661689Z
ncsc-2025-0018 Kwetsbaarheden verholpen in Fortinet FortiSwitch, FortiManager, FortiAnalyzer, FortiOS en FortiProxy 2025-01-15T13:25:32.904961Z 2025-01-15T13:25:32.904961Z
ncsc-2025-0017 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2025-01-15T11:59:32.488132Z 2025-01-15T11:59:32.488132Z
ncsc-2025-0016 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2025-01-15T11:47:27.276959Z 2025-01-15T11:47:27.276959Z
ncsc-2025-0015 Kwetsbaarheden verholpen in Rsync 2025-01-15T07:42:19.351539Z 2025-01-15T07:42:19.351539Z
ncsc-2025-0014 Kwetsbaarheid verholpen in Microsoft Dynamics Power Automate 2025-01-14T19:20:14.753491Z 2025-01-14T19:20:14.753491Z
ncsc-2025-0013 Kwetsbaarheden verholpen in Microsoft Azure 2025-01-14T19:18:00.798473Z 2025-01-14T19:18:00.798473Z
ncsc-2025-0012 Kwetsbaarheden verholpen in Microsoft Office 2025-01-14T19:15:33.729625Z 2025-01-14T19:15:33.729625Z
ncsc-2025-0011 Kwetsbaarheden verholpen in Microsoft Developer Tools 2025-01-14T19:10:44.895101Z 2025-01-14T19:10:44.895101Z
ncsc-2025-0010 Kwetsbaarheden verholpen in Microsoft Windows 2025-01-14T19:09:24.429168Z 2025-01-14T19:09:24.429168Z
ncsc-2025-0008 Kwetsbaarheden verholpen in Siemens producten 2025-01-14T11:54:04.658073Z 2025-01-14T11:54:04.658073Z
ncsc-2025-0007 Kwetsbaarheden verholpen in SAP producten 2025-01-14T11:50:16.988268Z 2025-01-14T11:50:16.988268Z
ncsc-2025-0006 Kwetsbaarheden verholpen in Juniper JunOS 2025-01-10T12:14:00.841636Z 2025-01-10T12:14:00.841636Z
ncsc-2024-0484 Kwetsbaarheden verholpen in Ivanti Connect Secure en Policy Secure 2024-12-11T08:50:15.463062Z 2025-01-08T11:00:21.273985Z
ncsc-2025-0003 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-01-07T12:54:49.261777Z 2025-01-07T12:54:49.261777Z
ncsc-2025-0002 Kwetsbaarheden verholpen in Moxa's cellulaire routers en netwerkbeveiligingsapparaten 2025-01-06T07:49:21.319255Z 2025-01-06T07:49:21.319255Z
ncsc-2024-0470 Kwetsbaarheden verholpen in Microsoft Windows 2024-12-10T19:32:38.846024Z 2025-01-06T07:30:29.655717Z
ncsc-2025-0001 Kwetsbaarheden verholpen in Ipswitch WhatsUp Gold 2025-01-03T12:01:12.344285Z 2025-01-03T12:01:12.344285Z
ncsc-2024-0500 Kwetsbaarheden verholpen in Foxit PDF Reader en PDF Editor 2024-12-31T09:22:24.145718Z 2024-12-31T09:22:24.145718Z
ncsc-2024-0499 Kwetsbaarheid verholpen in Palo Alto Networks PAN-OS 2024-12-27T13:26:43.003788Z 2024-12-27T13:26:43.003788Z
ncsc-2024-0498 Kwetsbaarheid verholpen in Adobe ColdFusion 2024-12-24T10:17:54.620060Z 2024-12-24T10:17:54.620060Z
ncsc-2024-0497 Kwetsbaarheden verholpen in IBM Cognos Analytics 2024-12-23T11:43:39.921631Z 2024-12-23T11:43:39.921631Z
ncsc-2024-0492 Kwetsbaarheid verholpen in Apache Struts 2024-12-13T10:05:07.992077Z 2024-12-22T18:38:46.211336Z
ncsc-2024-0496 Kwetsbaarheid verholpen in FortiManager 2024-12-19T15:22:59.271730Z 2024-12-19T15:22:59.271730Z
ncsc-2024-0495 Kwetsbaarheden verholpen in Rockwell Automation Power Monitor 1000 2024-12-19T14:54:38.668612Z 2024-12-19T14:54:38.668612Z
ncsc-2024-0494 Kwetsbaarheid verholpen in Fortinet FortiWLM 2024-12-19T14:53:01.724784Z 2024-12-19T14:53:01.724784Z
ncsc-2024-0493 Kwetsbaarheid verholpen in BeyondTrust Privileged Remote Access 2024-12-18T10:42:27.324531Z 2024-12-18T10:42:27.324531Z
ncsc-2024-0491 Kwetsbaarheden verholpen in XWiki Platform 2024-12-13T10:04:20.533908Z 2024-12-13T10:04:20.533908Z
ncsc-2024-0490 Kwetsbaarheden verholpen in GitLab 2024-12-13T10:03:05.321565Z 2024-12-13T10:03:05.321565Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2026:10194-1 cargo-audit-advisory-db-20260213-1.1 on GA media 2026-02-13T00:00:00Z 2026-02-13T00:00:00Z
opensuse-su-2026:20205-1 Security update for rust1.93 2026-02-12T15:13:26Z 2026-02-12T15:13:26Z
opensuse-su-2026:20204-1 Security update for python-aiohttp, python-Brotli 2026-02-12T14:01:04Z 2026-02-12T14:01:04Z
opensuse-su-2026:10193-1 postgresql17-17.8-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10192-1 postgresql16-16.12-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10191-1 postgresql15-15.16-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10190-1 postgresql14-14.21-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10189-1 libowncloudsync-devel-6.0.3-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10188-1 libpng16-16-1.6.55-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10187-1 haproxy-3.3.3+git0.465d8e2fc-1.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10186-1 gnome-remote-desktop-49.2-2.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10185-1 cargo-c-0.10.15-2.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10184-1 cargo-auditable-0.7.2~0-2.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:10183-1 build-20260202-2.1 on GA media 2026-02-12T00:00:00Z 2026-02-12T00:00:00Z
opensuse-su-2026:20202-1 Security update for python-pip 2026-02-11T19:17:08Z 2026-02-11T19:17:08Z
opensuse-su-2026:20203-1 Security update for openjpeg2 2026-02-11T19:15:23Z 2026-02-11T19:15:23Z
opensuse-su-2026:20199-1 Security update for micropython 2026-02-11T16:38:19Z 2026-02-11T16:38:19Z
opensuse-su-2026:20198-1 Security update for xorg-x11-server 2026-02-11T11:25:45Z 2026-02-11T11:25:45Z
opensuse-su-2026:10182-1 snpguest-0.10.0-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10181-1 sccache-0.13.0~1-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10180-1 rustup-1.28.2~0-3.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10179-1 python311-maturin-1.11.5-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10178-1 libmunge2-0.5.18-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10177-1 gnutls-3.8.12-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10176-1 freerdp2-2.11.7-4.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10175-1 cargo-audit-0.22.1~git0.efcde93-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10174-1 assimp-devel-6.0.4-1.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:10173-1 apptainer-1.4.5-2.1 on GA media 2026-02-11T00:00:00Z 2026-02-11T00:00:00Z
opensuse-su-2026:20193-1 Security update for orthanc, gdcm, orthanc-authorization, orthanc-dicomweb, orthanc-gdcm, orthanc-indexer, orthanc-mysql, orthanc-neuro, orthanc-postgresql, orthanc-python, orthanc-stl, orthanc-tcia, orthanc-wsi, python-pyorthanc 2026-02-10T22:29:40Z 2026-02-10T22:29:40Z
opensuse-su-2026:20191-1 Security update for trivy 2026-02-10T21:52:10Z 2026-02-10T21:52:10Z
ID Description Published Updated
ID Description Published Updated
rhsa-2025:3685 Red Hat Security Advisory: Red Hat Edge Manager Version 0.5.1 (Technology Preview) security fixes 2025-04-08T13:01:54+00:00 2026-04-21T02:51:45+00:00
rhsa-2025:3618 Red Hat Security Advisory: grafana security update 2025-04-07T02:07:30+00:00 2026-04-21T02:51:45+00:00
rhsa-2025:3616 Red Hat Security Advisory: grafana security update 2025-04-07T01:59:15+00:00 2026-04-21T02:51:45+00:00
rhsa-2025:3607 Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.5.1 release 2025-04-04T13:38:55+00:00 2026-04-21T02:51:45+00:00
rhsa-2025:3593 Red Hat Security Advisory: opentelemetry-collector security update 2025-04-03T13:38:52+00:00 2026-04-21T02:51:44+00:00
rhsa-2025:3577 Red Hat Security Advisory: OpenShift Container Platform 4.18.8 bug fix and security update 2025-04-10T11:37:31+00:00 2026-04-21T02:51:44+00:00
rhsa-2025:3569 Red Hat Security Advisory: OpenShift Container Platform 4.14.50 bug fix and security update 2025-04-09T20:55:32+00:00 2026-04-21T02:51:44+00:00
rhsa-2025:3565 Red Hat Security Advisory: OpenShift Container Platform 4.17.24 bug fix and security update 2025-04-09T04:47:09+00:00 2026-04-21T02:51:44+00:00
rhsa-2025:3501 Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.15.1-4 Update 2025-04-01T20:50:35+00:00 2026-04-21T02:51:44+00:00
rhsa-2025:3503 Red Hat Security Advisory: Red Hat build of Cryostat security update 2025-04-02T04:03:14+00:00 2026-04-21T02:51:43+00:00
rhsa-2025:3498 Red Hat Security Advisory: Red Hat multicluster global hub 1.2.2 bug fixes and container update 2025-04-01T21:01:14+00:00 2026-04-21T02:51:42+00:00
rhsa-2025:3439 Red Hat Security Advisory: ACS 4.6 enhancement and security update 2025-04-01T04:55:49+00:00 2026-04-21T02:51:42+00:00
rhsa-2025:3438 Red Hat Security Advisory: ACS 4.7 enhancement and security update 2025-04-01T04:50:23+00:00 2026-04-21T02:51:42+00:00
rhsa-2025:3437 Red Hat Security Advisory: ACS 4.5 enhancement and security update 2025-04-01T04:50:24+00:00 2026-04-21T02:51:41+00:00
rhsa-2025:3411 Red Hat Security Advisory: opentelemetry-collector security update 2025-03-31T14:36:15+00:00 2026-04-21T02:51:41+00:00
rhsa-2025:3266 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T14:25:08+00:00 2026-04-21T02:51:41+00:00
rhsa-2025:3344 Red Hat Security Advisory: grafana security update 2025-03-27T15:46:43+00:00 2026-04-21T02:51:40+00:00
rhsa-2025:3336 Red Hat Security Advisory: podman security update 2025-03-27T15:01:22+00:00 2026-04-21T02:51:40+00:00
rhsa-2025:3335 Red Hat Security Advisory: opentelemetry-collector security update 2025-03-27T15:00:22+00:00 2026-04-21T02:51:40+00:00
rhsa-2025:3268 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T14:31:13+00:00 2026-04-21T02:51:40+00:00
rhsa-2025:3210 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T02:19:46+00:00 2026-04-21T02:51:39+00:00
rhsa-2025:3186 Red Hat Security Advisory: podman security update 2025-03-25T20:42:41+00:00 2026-04-21T02:51:39+00:00
rhsa-2025:3185 Red Hat Security Advisory: gvisor-tap-vsock security update 2025-03-25T20:37:10+00:00 2026-04-21T02:51:39+00:00
rhsa-2025:3184 Red Hat Security Advisory: podman security update 2025-03-25T20:36:10+00:00 2026-04-21T02:51:38+00:00
rhsa-2025:3175 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-25T18:12:58+00:00 2026-04-21T02:51:38+00:00
rhsa-2025:3172 Red Hat Security Advisory: VolSync 0.12.1 security fixes and enhancements for RHEL 9 2025-03-25T19:58:29+00:00 2026-04-21T02:51:38+00:00
rhsa-2025:3051 Red Hat Security Advisory: Gatekeeper v3.17.2 2025-03-20T04:38:00+00:00 2026-04-21T02:51:38+00:00
rhsa-2025:3165 Red Hat Security Advisory: podman security update 2025-03-25T14:24:49+00:00 2026-04-21T02:51:37+00:00
rhsa-2025:3053 Red Hat Security Advisory: Gatekeeper v3.15.4 2025-03-20T04:55:47+00:00 2026-04-21T02:51:37+00:00
rhsa-2025:3052 Red Hat Security Advisory: Gatekeeper v3.18.0 2025-03-20T04:53:19+00:00 2026-04-21T02:51:37+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
SSA-761844 SSA-761844: Multiple Vulnerabilities in Control Center Server (CCS) 2021-04-13T00:00:00Z 2024-01-09T00:00:00Z
SSA-761617 SSA-761617: Authentication Bypass and Information Disclosure Vulnerabilities in SiNVR/SiVMS Video Server 2019-12-10T00:00:00Z 2024-01-09T00:00:00Z
SSA-702935 SSA-702935: Redfish Server Vulnerability in maxView Storage Manager 2024-01-09T00:00:00Z 2024-01-09T00:00:00Z
SSA-589891 SSA-589891: Multiple PAR File Parsing Vulnerabilities in Solid Edge 2024-01-09T00:00:00Z 2024-01-09T00:00:00Z
SSA-583634 SSA-583634: Command Injection Vulnerability in the CPCI85 Firmware of SICAM A8000 Devices 2024-01-09T00:00:00Z 2024-01-09T00:00:00Z
SSA-570294 SSA-570294: Multiple Vulnerabilities in SICAM Q100 Before V2.50 2022-11-08T00:00:00Z 2024-01-09T00:00:00Z
SSA-480095 SSA-480095: Vulnerabilities in the Web Interface of SICAM Q100 Devices before V2.60 2023-12-12T00:00:00Z 2024-01-09T00:00:00Z
ssa-983300 SSA-983300: Vulnerabilities in LOGO! Soft Comfort 2021-04-13T00:00:00Z 2023-12-12T00:00:00Z
ssa-892915 SSA-892915: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
ssa-887801 SSA-887801: Information Disclosure Vulnerability in SIMATIC STEP 7 (TIA Portal) 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
ssa-618620 SSA-618620: Vulnerabilities in Boot Loader (U-Boot) of RUGGEDCOM ROS Devices 2019-12-10T00:00:00Z 2023-12-12T00:00:00Z
ssa-118850 SSA-118850: Denial of Service Vulnerability in the OPC UA Implementation in SINUMERIK ONE and SINUMERIK MC 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
ssa-077170 SSA-077170: Multiple Vulnerabilities in SINEC INS before V1.0 SP2 Update 2 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
SSA-887801 SSA-887801: Information Disclosure Vulnerability in SIMATIC STEP 7 (TIA Portal) 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
SSA-844582 SSA-844582: Electromagnetic Fault Injection in LOGO! V8.3 BM Devices Results in Broken LOGO! V8.3 Product CA 2023-12-12T00:00:00Z 2024-10-08T00:00:00Z
SSA-783481 SSA-783481: Denial-of-Service Vulnerability in LOGO! 8 BM 2021-03-09T00:00:00Z 2024-10-08T00:00:00Z
SSA-618620 SSA-618620: Vulnerabilities in Boot Loader (U-Boot) of RUGGEDCOM ROS Devices 2019-12-10T00:00:00Z 2023-12-12T00:00:00Z
SSA-280603 SSA-280603: Denial of Service Vulnerability in SINUMERIK ONE and SINUMERIK MC 2023-12-12T00:00:00Z 2024-09-10T00:00:00Z
SSA-264815 SSA-264815: Type Confusion Vulnerability in OpenSSL X.400 Address Processing in SIMATIC Products 2023-08-08T00:00:00Z 2024-12-10T00:00:00Z
SSA-264814 SSA-264814: Timing Based Side Channel Vulnerability in the OpenSSL RSA Decryption in SIMATIC Products 2023-08-08T00:00:00Z 2024-12-10T00:00:00Z
SSA-256353 SSA-256353: Third-Party Component Vulnerabilities in RUGGEDCOM ROS 2022-03-08T00:00:00Z 2025-08-12T00:00:00Z
SSA-180704 SSA-180704: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.0 2023-12-12T00:00:00Z 2024-08-13T00:00:00Z
SSA-118850 SSA-118850: Denial of Service Vulnerability in the OPC UA Implementation in SINUMERIK ONE and SINUMERIK MC 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
SSA-077170 SSA-077170: Multiple Vulnerabilities in SINEC INS before V1.0 SP2 Update 2 2023-12-12T00:00:00Z 2023-12-12T00:00:00Z
SSA-068047 SSA-068047: Multiple Vulnerabilities in SCALANCE M-800 Family Before V7.2.2 2023-12-12T00:00:00Z 2024-08-13T00:00:00Z
SSA-042050 SSA-042050: Know-How Protection Mechanism Failure in TIA Portal 2023-06-13T00:00:00Z 2024-12-10T00:00:00Z
ssa-975766 SSA-975766: Open Design Alliance Drawings SDK Vulnerability in Solid Edge 2023-06-13T00:00:00Z 2023-11-14T00:00:00Z
ssa-887122 SSA-887122: X_T File Parsing Vulnerabilities in Simcenter Femap 2023-11-14T00:00:00Z 2023-11-14T00:00:00Z
ssa-617233 SSA-617233: Urgent/11 TCP/IP Stack Vulnerabilities in SIPROTEC 4 7SJ66 Devices 2023-11-14T00:00:00Z 2023-11-14T00:00:00Z
ssa-478780 SSA-478780: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation 2023-11-14T00:00:00Z 2023-11-14T00:00:00Z
ID Description Published Updated
suse-su-2026:20828-1 Security update for the Linux Kernel RT (Live Patch 3 for SUSE Linux Enterprise 16) 2026-03-24T03:38:51Z 2026-03-24T03:38:51Z
suse-su-2026:0987-1 Security update for util-linux 2026-03-24T03:11:26Z 2026-03-24T03:11:26Z
suse-su-2026:0985-1 Security update for the Linux Kernel (Live Patch 38 for SUSE Linux Enterprise 15 SP4) 2026-03-23T23:24:41Z 2026-03-23T23:24:41Z
suse-su-2026:0984-1 Security update for the Linux Kernel 2026-03-23T22:20:47Z 2026-03-23T22:20:47Z
suse-su-2026:0983-1 Security update for the Linux Kernel (Live Patch 37 for SUSE Linux Enterprise 15 SP4) 2026-03-23T17:08:57Z 2026-03-23T17:08:57Z
suse-su-2026:0982-1 Security update for util-linux 2026-03-23T16:48:30Z 2026-03-23T16:48:30Z
suse-su-2026:0981-1 Security update for strongswan 2026-03-23T16:47:22Z 2026-03-23T16:47:22Z
suse-su-2026:0980-1 Security update for strongswan 2026-03-23T16:46:54Z 2026-03-23T16:46:54Z
suse-su-2026:0979-1 Security update for strongswan 2026-03-23T16:46:31Z 2026-03-23T16:46:31Z
suse-su-2026:0978-1 Security update for strongswan 2026-03-23T16:46:24Z 2026-03-23T16:46:24Z
suse-su-2026:0977-1 Security update for go1.25-openssl 2026-03-23T16:35:10Z 2026-03-23T16:35:10Z
suse-su-2026:0976-1 Security update for go1.26-openssl 2026-03-23T16:34:53Z 2026-03-23T16:34:53Z
suse-su-2026:0975-1 Security update for python-Authlib 2026-03-23T16:34:37Z 2026-03-23T16:34:37Z
suse-su-2026:0972-1 Security update for docker-stable 2026-03-23T15:21:42Z 2026-03-23T15:21:42Z
suse-su-2026:0971-1 Security update for python39 2026-03-23T14:35:04Z 2026-03-23T14:35:04Z
suse-su-2026:0970-1 Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5) 2026-03-23T14:34:54Z 2026-03-23T14:34:54Z
suse-su-2026:0969-1 Security update for freerdp 2026-03-23T14:18:11Z 2026-03-23T14:18:11Z
suse-su-2026:0968-1 Security update for freerdp2 2026-03-23T14:18:05Z 2026-03-23T14:18:05Z
suse-su-2026:0967-1 Security update for the Linux Kernel (Live Patch 76 for SUSE Linux Enterprise 12 SP5) 2026-03-23T14:04:34Z 2026-03-23T14:04:34Z
suse-su-2026:0964-1 Security update for the Linux Kernel (Live Patch 75 for SUSE Linux Enterprise 12 SP5) 2026-03-23T13:05:59Z 2026-03-23T13:05:59Z
suse-su-2026:20771-1 Security update for sqlite3 2026-03-23T09:46:42Z 2026-03-23T09:46:42Z
suse-su-2026:20923-1 Security update for exiv2 2026-03-23T09:43:19Z 2026-03-23T09:43:19Z
suse-su-2026:20770-1 Security update for python-tornado6 2026-03-23T09:36:33Z 2026-03-23T09:36:33Z
suse-su-2026:20797-1 Security update for python-tornado6 2026-03-23T09:16:44Z 2026-03-23T09:16:44Z
suse-su-2026:0962-1 Security update for the Linux Kernel 2026-03-23T09:09:02Z 2026-03-23T09:09:02Z
suse-su-2026:0961-1 Security update for the Linux Kernel 2026-03-23T09:08:52Z 2026-03-23T09:08:52Z
suse-su-2026:0960-1 Security update for gvfs 2026-03-23T08:50:48Z 2026-03-23T08:50:48Z
suse-su-2026:0958-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5) 2026-03-23T08:06:02Z 2026-03-23T08:06:02Z
suse-su-2026:0955-1 Security update for sqlite3 2026-03-23T02:34:14Z 2026-03-23T02:34:14Z
suse-su-2026:0954-1 Security update for the Linux Kernel (Live Patch 68 for SUSE Linux Enterprise 12 SP5) 2026-03-22T23:04:26Z 2026-03-22T23:04:26Z
ID Description Published Updated
alsa-2025:21931 Moderate: kernel security update 2025-11-24T00:00:00Z 2025-12-05T08:40:44Z
alsa-2025:21036 Important: pcs security update 2025-11-11T00:00:00Z 2025-12-05T08:31:28Z
alsa-2025:21038 Important: kea security update 2025-11-11T00:00:00Z 2025-12-05T08:28:57Z
alsa-2025:21936 Important: valkey security update 2025-11-24T00:00:00Z 2025-12-05T08:20:47Z
alsa-2025:22668 Moderate: go-toolset:rhel8 security update 2025-12-03T00:00:00Z 2025-12-05T08:01:54Z
alsa-2025:22012 Important: buildah security update 2025-11-25T00:00:00Z 2025-12-05T07:44:58Z
alsa-2025:22361 Moderate: qt6-qtquick3d security update 2025-12-01T00:00:00Z 2025-12-05T07:43:58Z
alsa-2025:22394 Moderate: qt6-qtsvg security update 2025-12-01T00:00:00Z 2025-12-05T07:42:49Z
alsa-2025:22417 Important: gimp:2.8 security update 2025-12-01T00:00:00Z 2025-12-04T13:28:20Z
alsa-2025:22660 Moderate: systemd security update 2025-12-03T00:00:00Z 2025-12-04T13:25:23Z
alsa-2025:22175 Important: expat security update 2025-11-26T00:00:00Z 2025-12-03T12:07:34Z
alsa-2025:22363 Important: firefox security update 2025-12-01T00:00:00Z 2025-12-03T12:05:25Z
alsa-2025:22376 Moderate: libxml2 security update 2025-12-01T00:00:00Z 2025-12-03T12:03:31Z
alsa-2025:22387 Moderate: kernel-rt security update 2025-12-01T00:00:00Z 2025-12-03T12:01:56Z
alsa-2025:22388 Moderate: kernel security update 2025-12-01T00:00:00Z 2025-12-03T11:59:02Z
alsa-2025:20928 Important: ipa security update 2025-11-11T00:00:00Z 2025-12-01T08:16:32Z
alsa-2025:20954 Important: sssd security update 2025-11-11T00:00:00Z 2025-12-01T08:13:09Z
alsa-2025:20958 Important: tigervnc security update 2025-11-11T00:00:00Z 2025-12-01T08:10:34Z
alsa-2025:20962 Important: pcs security update 2025-11-11T00:00:00Z 2025-12-01T08:09:09Z
alsa-2025:21111 Important: bind9.18 security update 2025-11-12T00:00:00Z 2025-12-01T08:06:30Z
alsa-2025:21255 Moderate: openssl security update 2025-11-13T00:00:00Z 2025-12-01T08:04:03Z
alsa-2025:21916 Important: valkey security update 2025-11-24T00:00:00Z 2025-12-01T08:02:48Z
alsa-2025:21926 Moderate: kernel security update 2025-11-24T00:00:00Z 2025-12-01T08:01:07Z
alsa-2025:21968 Important: gimp security update 2025-11-24T00:00:00Z 2025-12-01T07:58:09Z
alsa-2025:21974 Important: mingw-expat security update 2025-11-24T00:00:00Z 2025-12-01T07:55:50Z
alsa-2025:22063 Moderate: cups security update 2025-11-25T00:00:00Z 2025-11-28T13:48:35Z
alsa-2025:22011 Important: buildah security update 2025-11-25T00:00:00Z 2025-11-25T12:06:57Z
alsa-2025:21977 Moderate: libssh security update 2025-11-24T00:00:00Z 2025-11-25T12:04:18Z
alsa-2025:20983 Important: podman security update 2025-11-11T00:00:00Z 2025-11-25T10:54:40Z
alsa-2025:22005 Moderate: go-rpm-macros security update 2025-11-25T00:00:00Z 2025-11-25T10:51:18Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2025-154 UNKNOWN READ in ndpi_strdup 2025-02-23T00:13:05.487818Z 2025-02-23T00:13:05.488183Z
osv-2025-149 UNKNOWN READ in processClientServerHello 2025-02-23T00:00:50.236281Z 2025-02-23T00:00:50.236700Z
osv-2025-147 UNKNOWN WRITE in ndpi_free_flow_data 2025-02-22T00:18:07.814416Z 2025-02-22T00:18:07.814726Z
osv-2025-145 Heap-buffer-overflow in ___interceptor_strncat 2025-02-22T00:14:15.620085Z 2025-02-22T00:14:15.620535Z
osv-2023-51 Heap-use-after-free in ZSTD_freeDDict 2023-02-05T13:00:54.245269Z 2025-02-19T14:14:00.172684Z
osv-2022-1242 Heap-buffer-overflow in ZSTD_createDDict 2022-12-05T13:00:52.919257Z 2025-02-19T14:09:48.094157Z
osv-2023-1329 Stack-buffer-overflow in decNaNs 2023-12-18T00:13:42.545765Z 2025-02-17T14:14:20.492923Z
osv-2025-127 Object-size in unpack_dsd_samples 2025-02-15T00:16:56.314634Z 2025-02-15T00:16:56.315060Z
osv-2025-124 Use-of-uninitialized-value in get_word 2025-02-15T00:09:23.967012Z 2025-02-15T00:09:23.967345Z
osv-2025-114 Index-out-of-bounds in ada_fuzz_header.h 2025-02-14T00:11:24.754671Z 2025-02-14T00:11:24.755045Z
osv-2025-111 Stack-buffer-overflow in absl::debugging_internal::ParseLocalNameSuffix 2025-02-13T00:15:36.403252Z 2025-02-13T00:15:36.403744Z
osv-2024-678 Use-of-uninitialized-value in FLAC__replaygain_synthesis__apply_gain 2024-07-25T00:09:08.389428Z 2025-02-11T14:21:01.793416Z
osv-2022-1292 Heap-buffer-overflow in LibRaw::phase_one_correct 2025-02-10T00:13:32.671074Z 2025-02-10T00:13:32.671487Z
osv-2025-108 Use-of-uninitialized-value in decimate_dsd_run 2025-02-10T00:12:35.140061Z 2025-02-10T00:12:35.140400Z
osv-2025-107 Use-of-uninitialized-value in get_words_lossless 2025-02-10T00:06:27.370789Z 2025-02-10T00:06:27.371196Z
osv-2025-105 Heap-use-after-free in unpack_dsd_samples 2025-02-10T00:00:59.046535Z 2025-02-10T00:00:59.047010Z
osv-2022-1141 Heap-buffer-overflow in LibRaw::phase_one_correct 2022-11-06T00:00:12.813664Z 2025-02-08T14:21:03.512078Z
osv-2025-68 UNKNOWN READ in std::__1::__function::__func<cv::PngDecoder::compose_frame 2025-01-28T00:00:46.845996Z 2025-02-05T14:25:02.989469Z
osv-2025-88 Segv on unknown address in ___interceptor_free 2025-02-02T00:16:16.201801Z 2025-02-02T00:16:16.202130Z
osv-2025-85 Segv on unknown address in ndpi_free_flow_data 2025-02-02T00:13:42.076001Z 2025-02-02T00:13:42.076373Z
osv-2025-84 Segv on unknown address in Flow::processExtraDissectedInformation 2025-02-02T00:12:09.563391Z 2025-02-02T00:12:09.563778Z
osv-2025-81 Segv on unknown address in ndpi_serialize_string_string 2025-02-02T00:02:52.946833Z 2025-02-02T00:02:52.947083Z
osv-2025-80 Segv on unknown address in ndpi_snprintf 2025-02-02T00:00:58.798346Z 2025-02-02T00:00:58.798951Z
osv-2024-847 Null-dereference READ in _libssh2_packet_add 2024-08-16T00:04:07.189033Z 2025-02-01T14:27:03.602163Z
osv-2022-24 Null-dereference READ in session_startup 2022-01-09T00:01:35.903934Z 2025-02-01T14:16:58.476563Z
osv-2024-1124 Heap-buffer-overflow in ih264d_read_coeff4x4_cabac 2024-09-21T00:14:26.784483Z 2025-01-31T14:23:52.455197Z
osv-2025-74 Stack-buffer-overflow in xmlValidateElementContent 2025-01-29T00:13:55.386256Z 2025-01-29T00:13:55.386629Z
osv-2025-63 Stack-buffer-underflow in gs_type1_interpret 2025-01-27T00:10:00.833706Z 2025-01-27T00:10:00.834151Z
osv-2025-61 Heap-buffer-overflow in oatpp::json::Utils::escapeString 2025-01-27T00:00:09.905879Z 2025-01-27T00:00:09.906561Z
osv-2024-1424 Heap-buffer-overflow in extract_candidate 2025-01-25T00:17:13.787335Z 2025-01-25T14:25:05.188301Z
ID Description Published Updated
rustsec-2023-0053 rustls-webpki: CPU denial of service in certificate path building 2023-08-22T12:00:00Z 2023-08-27T15:52:52Z
rustsec-2022-0081 json is unmaintained 2022-02-01T12:00:00Z 2023-08-25T17:52:15Z
rustsec-2023-0040 `users` crate is unmaintained 2023-06-01T12:00:00Z 2023-08-21T10:35:45Z
rustsec-2023-0051 `dlopen_derive` is unmaintained 2023-07-30T12:00:00Z 2023-08-19T10:29:52Z
rustsec-2023-0050 multipart is Unmaintained 2023-04-11T12:00:00Z 2023-08-18T20:38:40Z
rustsec-2023-0049 `tui` is unmaintained; use `ratatui` instead 2023-08-07T12:00:00Z 2023-08-07T13:27:47Z
rustsec-2023-0048 Unsoundness in `intern` methods on `intaglio` symbol interners 2023-07-26T12:00:00Z 2023-07-29T17:20:00Z
rustsec-2023-0047 impl `FromMdbValue` for bool is unsound 2023-06-26T12:00:00Z 2023-07-29T17:20:00Z
rustsec-2023-0021 NULL pointer dereference in `stb_image` 2023-03-19T12:00:00Z 2023-07-15T15:07:13Z
rustsec-2023-0046 Misaligned pointer dereference in `ChunkId::new` 2023-06-15T12:00:00Z 2023-07-08T12:30:19Z
rustsec-2023-0045 memoffset allows reading uninitialized memory 2023-06-21T12:00:00Z 2023-07-08T12:30:19Z
rustsec-2023-0042 Ouroboros is Unsound 2023-06-11T12:00:00Z 2023-07-08T12:30:19Z
rustsec-2021-0145 Potential unaligned read 2021-07-04T12:00:00Z 2023-07-08T12:30:19Z
rustsec-2020-0078 `net2` invalidly assumes the memory layout of std::net::SocketAddr 2020-11-07T12:00:00Z 2023-07-08T12:30:19Z
rustsec-2023-0043 ftp is unmaintained, use suppaftp instead 2023-02-20T12:00:00Z 2023-06-14T13:23:36Z
rustsec-2023-0041 Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets 2023-06-01T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0035 Adverserial use of `make_bitflags!` macro can cause undefined behavior 2023-04-17T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0032 Unsound FFI: Wrong API usage causes write past allocated area 2023-03-22T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0031 Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers 2023-03-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0030 `Versionize::deserialize` implementation for `FamStructWrapper<T>` is lacking bound checks, potentially leading to out of bounds memory accesses 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0027 TLS certificate common name validation bypass 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0024 `openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0023 `openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0022 `openssl` `X509NameBuilder::build` returned object is not thread safe 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0017 `maligned::align_first` causes incorrect deallocation 2023-03-04T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0016 Possible out-of-bounds read in release mode 2023-02-20T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0015 Ascii allows out-of-bounds array indexing in safe code 2023-02-25T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0014 Miscompilation in cortex-m-rt 0.7.1 and 0.7.2 2023-02-13T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0013 `NULL` dereference during PKCS7 data verification 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0012 `NULL` dereference validating DSA public key 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
ID Description Published Updated
bit-ghost-2025-9862 Ghost 6.0.6 - SSRF via oEmbed Bookmark 2026-01-29T20:40:02.993Z 2026-03-09T12:11:07.851Z
bit-python-2026-2297 SourcelessFileLoader does not use io.open_code() 2026-03-06T08:50:18.397Z 2026-03-06T09:10:26.160Z
bit-moodle-2025-67847 Moodle: moodle: remote code execution via insufficient restore input validation 2026-03-06T08:50:20.446Z 2026-03-06T09:10:26.160Z
bit-moodle-2021-47857 Moodle 3.10.3 - 'label' Persistent Cross Site Scripting 2026-03-06T08:46:28.845Z 2026-03-06T09:10:26.160Z
bit-libpython-2026-2297 SourcelessFileLoader does not use io.open_code() 2026-03-06T08:43:26.501Z 2026-03-06T09:10:26.160Z
bit-django-2026-25674 Potential incorrect permissions on newly created file system objects 2026-03-06T08:38:51.644Z 2026-03-06T09:10:26.160Z
bit-django-2026-25673 Potential denial-of-service vulnerability in URLField via Unicode normalization on Windows 2026-03-06T08:38:49.880Z 2026-03-06T09:10:26.160Z
bit-python-2025-13837 Out-of-memory when loading Plist 2025-12-05T11:13:08.742Z 2026-03-04T14:21:20.421Z
bit-libpython-2025-13837 Out-of-memory when loading Plist 2025-12-05T11:07:43.325Z 2026-03-04T14:21:20.421Z
bit-moodle-2024-48901 Moodle: idor when fetching report schedules 2024-11-21T07:13:17.796Z 2026-03-03T21:13:17.555Z
bit-moodle-2024-48898 Moodle: some users can delete audiences of other reports 2024-11-21T07:13:24.286Z 2026-03-03T21:13:17.555Z
bit-moodle-2024-48897 Moodle: idor in edit/delete rss feed 2024-11-21T07:13:31.891Z 2026-03-03T21:13:17.555Z
bit-moodle-2024-48896 Moodle: users' names returned in messaging error message 2024-11-21T07:13:38.787Z 2026-03-03T21:13:17.555Z
bit-discourse-2026-28227 Discourse Vulnerable to Unauthorized Topic Creation in Staff-Only Categories via Topic Timer publish_to_category 2026-03-03T13:29:32.408Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-28219 Privilege Escalation via Mass Assignment Allows Regular Users to Set Topics as Global Banners 2026-03-03T13:29:30.555Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-28218 Discourse's Fail-Open Access Control in Data Explorer Plugin Allows Unauthorized SQL Query Execution 2026-03-03T13:29:28.795Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27162 DIscourse doesn't prevent whispers to leak in excerpts 2026-03-03T13:29:27.139Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27154 Discourse has XSS when editing a malicious post 2026-03-03T13:29:25.328Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27153 Discourse doesn't prevent moderators from exporting user Chat DMs 2026-03-03T13:29:23.447Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27152 DIscourse has DM communication-preference bypass when adding members 2026-03-03T13:29:21.569Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27151 Discourse doesn't validate destination topic when moving posts 2026-03-03T13:29:19.608Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27150 Discourse doesn't ensure guardian check when creating QueryGroupBookmark 2026-03-03T13:29:17.871Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27149 Discourse has SQL injection in PM tag filtering 2026-03-03T13:29:16.239Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-27021 Discourse: Poll voters endpoint lacked post visibility checks 2026-03-03T13:29:14.621Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26979 Discourse: TL4 users are able to change status of restricted topics 2026-03-03T13:29:12.870Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26973 Discourse doesn't scope reviewable notes to user-visible reviewables 2026-03-03T13:29:10.861Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26265 Discourse has IDOR vulnerability in the directory items endpoint 2026-03-03T13:29:08.511Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26207 DIscourse's discourse-policy plugin lacks post access check 2026-03-03T13:29:06.818Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26078 Discourse has authentication bypass vulnerability in the Patreon plugin webhook endpoint 2026-03-03T13:29:04.991Z 2026-03-03T13:59:21.562Z
bit-discourse-2026-26077 Discourse doesn't ensure webhooks require a token 2026-03-03T13:29:03.296Z 2026-03-03T13:59:21.562Z
ID Description Published Updated
cleanstart-2026-uz73015 Cancelling a query (e 2026-01-30T16:09:25.315533Z 2026-01-29T18:58:54Z
cleanstart-2026-uy85485 Within HostnameError 2026-01-30T14:45:52.628542Z 2026-01-29T18:58:54Z
cleanstart-2026-uy81473 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-01-30T15:44:54.187987Z 2026-01-29T18:58:54Z
cleanstart-2026-uu56048 Within HostnameError 2026-01-30T15:16:53.077326Z 2026-01-29T18:58:54Z
cleanstart-2026-uu20906 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:48:52.774829Z 2026-01-29T18:58:54Z
cleanstart-2026-ur80185 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:30:24.609590Z 2026-01-29T18:58:54Z
cleanstart-2026-um63521 Within HostnameError 2026-01-30T16:12:25.029065Z 2026-01-29T18:58:54Z
cleanstart-2026-ul17352 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T16:29:25.464127Z 2026-01-29T18:58:54Z
cleanstart-2026-uj17204 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:03:52.998379Z 2026-01-29T18:58:54Z
cleanstart-2026-ui65993 Within HostnameError 2026-01-30T16:21:25.457624Z 2026-01-29T18:58:54Z
cleanstart-2026-ty78539 ParseAddress function constructs domain-literal address components through repeated string concatenation 2026-01-30T16:35:55.295657Z 2026-01-29T18:58:54Z
cleanstart-2026-ts42581 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-01-30T15:29:23.600518Z 2026-01-29T18:58:54Z
cleanstart-2026-ts12850 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:17:53.937628Z 2026-01-29T18:58:54Z
cleanstart-2026-tr11635 Cancelling a query (e 2026-01-30T15:46:54.229170Z 2026-01-29T18:58:54Z
cleanstart-2026-tl71584 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:23:53.438748Z 2026-01-29T18:58:54Z
cleanstart-2026-tk38210 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-01-30T16:46:25.995358Z 2026-01-29T18:58:54Z
cleanstart-2026-ti76190 Cancelling a query (e 2026-01-30T15:02:23.296683Z 2026-01-29T18:58:54Z
cleanstart-2026-th00404 Within HostnameError 2026-01-30T14:04:20.735662Z 2026-01-29T18:58:54Z
cleanstart-2026-tf52804 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:08:23.107112Z 2026-01-29T18:58:54Z
cleanstart-2026-tf33105 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-01-30T16:29:25.639055Z 2026-01-29T18:58:54Z
cleanstart-2026-sy95837 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-01-30T15:28:53.594094Z 2026-01-29T18:58:54Z
cleanstart-2026-sw55801 Within HostnameError 2026-01-30T16:24:55.642434Z 2026-01-29T18:58:54Z
cleanstart-2026-sv79070 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-01-30T15:47:54.520743Z 2026-01-29T18:58:54Z
cleanstart-2026-su64392 Cancelling a query (e 2026-01-30T15:07:22.975031Z 2026-01-29T18:58:54Z
cleanstart-2026-sq13072 Moby is an open source container framework developed by Docker Inc 2026-01-30T15:02:22.907312Z 2026-01-29T18:58:54Z
cleanstart-2026-so95938 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption 2026-01-30T16:11:25.480356Z 2026-01-29T18:58:54Z
cleanstart-2026-so17846 Within HostnameError 2026-01-30T16:30:25.764771Z 2026-01-29T18:58:54Z
cleanstart-2026-so16176 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T15:39:24.255623Z 2026-01-29T18:58:54Z
cleanstart-2026-sj80413 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11 2026-01-30T16:16:55.110567Z 2026-01-29T18:58:54Z
cleanstart-2026-sh75345 Cancelling a query (e 2026-01-30T15:05:23.442396Z 2026-01-29T18:58:54Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
CERTA-2009-ALE-012 Vulnérabilité dans Mozilla Firefox 2009-07-15T00:00:00.000000 2009-07-17T00:00:00.000000
certa-2009-ale-010 Vulnérabilité dans le contrôle ActiveX Microsoft Video 2009-07-07T00:00:00.000000 2009-07-15T00:00:00.000000
CERTA-2009-ALE-010 Vulnérabilité dans le contrôle ActiveX Microsoft Video 2009-07-07T00:00:00.000000 2009-07-15T00:00:00.000000
certa-2009-ale-009 Vulnérabilité dans Microsoft DirectShow 2009-05-29T00:00:00.000000 2009-07-14T00:00:00.000000
CERTA-2009-ALE-009 Vulnérabilité dans Microsoft DirectShow 2009-05-29T00:00:00.000000 2009-07-14T00:00:00.000000
certa-2009-ale-008 Vulnérabilité Java de Mac OS X 2009-05-20T00:00:00.000000 2009-06-17T00:00:00.000000
CERTA-2009-ALE-008 Vulnérabilité Java de Mac OS X 2009-05-20T00:00:00.000000 2009-06-17T00:00:00.000000
certa-2009-ale-007 Vulnérabilité WebDAV sous Microsoft IIS 2009-05-18T00:00:00.000000 2009-06-10T00:00:00.000000
CERTA-2009-ALE-007 Vulnérabilité WebDAV sous Microsoft IIS 2009-05-18T00:00:00.000000 2009-06-10T00:00:00.000000
certa-2009-ale-003 Vulnérabilité dans Apple Mac OS X 2009-03-24T00:00:00.000000 2009-06-02T00:00:00.000000
CERTA-2009-ALE-003 Vulnérabilité dans Apple Mac OS X 2009-03-24T00:00:00.000000 2009-06-02T00:00:00.000000
certa-2009-ale-006 Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat 2009-04-28T00:00:00.000000 2009-05-13T00:00:00.000000
certa-2009-ale-005 Vulnérabilité de PowerPoint 2009-04-03T00:00:00.000000 2009-05-13T00:00:00.000000
CERTA-2009-ALE-006 Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat 2009-04-28T00:00:00.000000 2009-05-13T00:00:00.000000
CERTA-2009-ALE-005 Vulnérabilité de PowerPoint 2009-04-03T00:00:00.000000 2009-05-13T00:00:00.000000
certa-2009-ale-002 Vulnérabilité dans Microsoft Excel 2009-02-25T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2008-ale-015 Vulnérabilité dans le convertisseur de texte de WordPad 2008-12-10T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2008-ale-012 Vulnérabilité dans Microsoft Windows 2008-10-10T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2009-ALE-002 Vulnérabilité dans Microsoft Excel 2009-02-25T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2008-ALE-015 Vulnérabilité dans le convertisseur de texte de WordPad 2008-12-10T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2008-ALE-012 Vulnérabilité dans Microsoft Windows 2008-10-10T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2009-ale-004 Vulnérabilité dans Mozilla Firefox 2009-03-27T00:00:00.000000 2009-03-30T00:00:00.000000
CERTA-2009-ALE-004 Vulnérabilité dans Mozilla Firefox 2009-03-27T00:00:00.000000 2009-03-30T00:00:00.000000
certa-2009-ale-001 Vulnérabilité dans l'interprétation JBIG2 des produits Adobe 2009-02-20T00:00:00.000000 2009-03-20T00:00:00.000000
CERTA-2009-ALE-001 Vulnérabilité dans l'interprétation JBIG2 des produits Adobe 2009-02-20T00:00:00.000000 2009-03-20T00:00:00.000000
certa-2008-ale-017 Vulnérabilité dans Microsoft SQL Server 2008-12-12T00:00:00.000000 2009-02-11T00:00:00.000000
CERTA-2008-ALE-017 Vulnérabilité dans Microsoft SQL Server 2008-12-12T00:00:00.000000 2009-02-11T00:00:00.000000
certa-2008-ale-014 Vulnérabilité dans Opera 2008-11-20T00:00:00.000000 2009-01-06T00:00:00.000000
CERTA-2008-ALE-014 Vulnérabilité dans Opera 2008-11-20T00:00:00.000000 2009-01-06T00:00:00.000000
certa-2008-ale-016 Vulnérabilité dans Microsoft Internet Explorer 2008-12-10T00:00:00.000000 2008-12-17T00:00:00.000000
ID Description Published Updated
CERTFR-2026-AVI-0070 Multiples vulnérabilités dans Oracle MySQL 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
CERTFR-2026-AVI-0069 Multiples vulnérabilités dans Oracle Java SE 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
CERTFR-2026-AVI-0068 Multiples vulnérabilités dans Oracle Database Server 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
CERTFR-2026-AVI-0067 Multiples vulnérabilités dans Python 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
CERTFR-2026-AVI-0066 Vulnérabilité dans Google Chrome 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
CERTFR-2026-AVI-0065 Multiples vulnérabilités dans les produits Atlassian 2026-01-21T00:00:00.000000 2026-01-21T00:00:00.000000
certfr-2026-avi-0064 Vulnérabilité Microsoft Power Apps 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
certfr-2026-avi-0063 Multiples vulnérabilités dans Microsoft Edge 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
certfr-2026-avi-0062 Vulnérabilité dans Mattermost Desktop App 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
CERTFR-2026-AVI-0064 Vulnérabilité Microsoft Power Apps 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
CERTFR-2026-AVI-0063 Multiples vulnérabilités dans Microsoft Edge 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
CERTFR-2026-AVI-0062 Vulnérabilité dans Mattermost Desktop App 2026-01-19T00:00:00.000000 2026-01-19T00:00:00.000000
certfr-2026-avi-0061 Multiples vulnérabilités dans les produits IBM 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0060 Vulnérabilité dans Apache Struts 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0059 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0058 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0057 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0056 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0055 Multiples vulnérabilités dans GLPI 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0054 Multiples vulnérabilités dans Centreon Infra Monitoring 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2026-avi-0053 Vulnérabilité dans Traefik 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
certfr-2025-avi-1122 Multiples vulnérabilités dans Mattermost Server 2025-12-18T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0061 Multiples vulnérabilités dans les produits IBM 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0060 Vulnérabilité dans Apache Struts 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0059 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0058 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0057 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0056 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0055 Multiples vulnérabilités dans GLPI 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
CERTFR-2026-AVI-0054 Multiples vulnérabilités dans Centreon Infra Monitoring 2026-01-16T00:00:00.000000 2026-01-16T00:00:00.000000
ID Description Published Updated
jvndb-2022-000086 Aiphone Video Multi-Tenant System Entrance Stations vulnerable to information disclosure 2022-11-10T13:40+09:00 2024-06-06T17:37+09:00
jvndb-2023-000028 baserCMS vulnerable to arbitrary file uploads 2023-03-27T13:39+09:00 2024-06-06T17:31+09:00
jvndb-2022-000079 Multiple vulnerabilities in the web interfaces of Kyocera Document Solutions MFPs and printers 2022-11-01T14:51+09:00 2024-06-06T17:01+09:00
jvndb-2022-000084 Multiple vulnerabilities in FUJI SOFT network devices 2022-10-28T15:12+09:00 2024-06-06T16:48+09:00
jvndb-2022-000087 Multiple vulnerabilities in WordPress 2022-11-08T14:59+09:00 2024-06-06T16:27+09:00
jvndb-2022-000088 TERASOLUNA Global Framework and TERASOLUNA Server Framework for Java (Rich) vulnerable to ClassLoader manipulation 2022-11-14T16:45+09:00 2024-06-06T16:11+09:00
jvndb-2022-000085 WordPress Plugin "Salon booking system" vulnerable to cross-site scripting 2022-11-08T15:07+09:00 2024-06-05T18:07+09:00
jvndb-2022-000082 Multiple vulnerabilities in nadesiko3 2022-10-20T16:58+09:00 2024-06-05T17:28+09:00
jvndb-2023-000010 pgAdmin 4 vulnerable to directory traversal 2023-01-24T16:00+09:00 2024-06-05T16:22+09:00
jvndb-2022-000083 Multiple vulnerabilities in SHIRASAGI 2022-10-25T15:10+09:00 2024-06-05T16:06+09:00
jvndb-2023-001402 JTEKT ELECTRONIC Screen Creator Advance 2 vulnerable to improper restriction of operations within the bounds of a memory buffer 2023-04-03T16:24+09:00 2024-06-04T17:15+09:00
jvndb-2022-002770 Contec SolarView Compact vulnerable to cross-site scripting 2022-12-06T15:08+09:00 2024-06-04T17:13+09:00
jvndb-2023-001320 Multiple vulnerabilities in Contec CONPROSYS IoT Gateway products 2023-03-22T13:41+09:00 2024-06-04T17:00+09:00
jvndb-2023-000025 TP-Link T2600G-28SQ uses vulnerable SSH host keys 2023-03-17T12:27+09:00 2024-06-04T16:58+09:00
jvndb-2023-001308 Multiple vulnerabilities in Buffalo network devices 2023-03-08T15:12+09:00 2024-06-04T16:42+09:00
jvndb-2023-000030 HAProxy vulnerable to HTTP request/response smuggling 2023-03-31T15:54+09:00 2024-06-04T16:17+09:00
jvndb-2023-000032 Improper restriction of XML external entity references (XXE) in National land numerical information data conversion tool 2023-04-04T15:22+09:00 2024-06-04T15:56+09:00
jvndb-2023-000027 ELECOM WAB-MAT registers its windows service executable with an unquoted file path 2023-03-24T14:35+09:00 2024-06-03T17:36+09:00
jvndb-2023-000022 Multiple vulnerabilities in SEIKO EPSON printers/network interface Web Config 2023-03-08T15:09+09:00 2024-06-03T17:36+09:00
jvndb-2023-000024 Android App "Wolt Delivery: Food and more" uses a hard-coded API key for an external service 2023-03-13T12:28+09:00 2024-06-03T17:15+09:00
jvndb-2022-002768 Multiple vulnerabilities in UNIMO Technology digital video recorders 2022-12-02T14:57+09:00 2024-06-03T16:55+09:00
jvndb-2022-000096 Redmine vulnerable to cross-site scripting 2022-12-13T14:05+09:00 2024-06-03T16:47+09:00
jvndb-2022-000093 TP-Link RE300 V1 tdpServer vulnerable to improper processing of its input 2022-11-24T14:46+09:00 2024-06-03T16:41+09:00
jvndb-2022-000095 Cybozu Remote Service vulnerable to Uncontrolled Resource Consumption 2022-11-25T14:15+09:00 2024-06-03T16:08+09:00
jvndb-2024-000057 Multiple vulnerabilities in UNIVERSAL PASSPORT RX 2024-06-03T15:32+09:00 2024-06-03T15:32+09:00
jvndb-2022-000090 Multiple vulnerabilities in Movable Type 2022-11-16T17:07+09:00 2024-06-03T15:31+09:00
jvndb-2022-000092 Typora fails to properly neutralize JavaScript code. 2022-11-21T15:31+09:00 2024-06-03T15:13+09:00
jvndb-2024-003254 Seiko Solutions SkyBridge MB-A100/MB-A110 and SkyBridge BASIC MB-A130 vulnerable to OS command injection 2024-06-03T14:53+09:00 2024-06-03T14:53+09:00
jvndb-2024-003253 Multiple vulnerabilities in Sharp and Toshiba Tec MFPs 2024-06-03T14:36+09:00 2024-06-03T14:36+09:00
jvndb-2022-000094 Multiple cross-site scripting vulnerabilities in baserCMS 2022-11-25T13:42+09:00 2024-05-31T18:17+09:00
ID Description Published Updated
cnvd-2026-14593 Google Chrome MediaStream内存错误引用漏洞 2026-03-17 2026-03-18
cnvd-2026-14592 Google Chrome WebMIDI内存错误引用漏洞 2026-03-17 2026-03-18
cnvd-2026-14146 WordPress插件Permalink Manager Lite信息泄露漏洞 2025-09-29 2026-03-18
cnvd-2026-14145 WordPress插件Document Pro Elementor信息泄露漏洞 2025-11-14 2026-03-18
cnvd-2026-14144 WordPress插件Comment Edit Core – Simple Comment Editing信息泄露漏洞 2025-11-18 2026-03-18
cnvd-2026-14143 WordPress插件wpForo Forum信息泄露漏洞 2026-03-11 2026-03-18
cnvd-2026-14142 WordPress插件My Tickets信息泄露漏洞 2026-03-17 2026-03-18
cnvd-2026-14141 WordPress插件Greenshift – animation and page builder blocks信息泄露漏洞 2026-03-17 2026-03-18
cnvd-2026-14140 WordPress插件Classified Listing信息泄露漏洞 2026-03-17 2026-03-18
cnvd-2026-14139 WordPress插件Chaty信息泄露漏洞 2026-03-17 2026-03-18
cnvd-2026-14138 WordPress插件WP Booking System信息泄露漏洞 2026-03-17 2026-03-18
cnvd-2026-14137 WordPress插件NextScripts: Social Networks Auto-Poster跨站脚本漏洞 2026-03-17 2026-03-18
cnvd-2026-14007 Huawei HarmonyOS资源调度模块权限控制漏洞 2026-03-17 2026-03-18
cnvd-2026-14000 Huawei EMUI和Huawei HarmonyOS IMS模块越界写入漏洞 2026-03-17 2026-03-18
cnvd-2026-13998 Huawei EMUI和Huawei HarmonyOS电子邮件应用校验不当漏洞 2026-03-17 2026-03-18
cnvd-2026-13997 Huawei EMUI和Huawei HarmonyOS系统服务框架权限绕过漏洞 2026-03-17 2026-03-18
cnvd-2026-13996 Huawei HarmonyOS备忘录模块权限控制漏洞(CNVD-2026-13996) 2026-01-19 2026-03-18
cnvd-2026-13994 Huawei HarmonyOS多模输入模块双重释放漏洞 2026-01-19 2026-03-18
cnvd-2026-13993 Huawei HarmonyOS视频框架模块多线程条件竞争漏洞 2026-01-19 2026-03-18
cnvd-2026-13992 Huawei HarmonyOS相机框架模块多线程条件竞争漏洞(CNVD-2026-13992) 2026-01-19 2026-03-18
cnvd-2026-13991 Huawei HarmonyOS打印模块权限控制不当漏洞 2026-01-19 2026-03-18
cnvd-2026-13990 Huawei HarmonyOS相机框架模块多线程条件竞争漏洞 2026-01-19 2026-03-18
cnvd-2026-13989 Huawei HarmonyOS备忘录模块权限控制漏洞 2026-01-19 2026-03-18
cnvd-2026-13988 Huawei HarmonyOS热管理模块多线程条件竞争漏洞 2026-01-19 2026-03-18
cnvd-2026-13987 Huawei HarmonyOS卡片框架模块多线程条件竞争漏洞(CNVD-2026-13987) 2026-01-19 2026-03-18
cnvd-2026-13985 Huawei HarmonyOS hiview模块缺少数据校验漏洞 2026-01-19 2026-03-18
cnvd-2026-13984 Huawei HarmonyOS卡片框架模块多线程条件竞争漏洞(CNVD-2026-13984) 2026-01-19 2026-03-18
cnvd-2026-13982 Huawei HarmonyOS卡片框架模块多线程条件竞争漏洞 2026-01-19 2026-03-18
cnvd-2026-14602 Fortinet FortiWeb操作系统命令注入漏洞(CNVD-2026-14602) 2026-03-17 2026-03-17
cnvd-2026-14601 Fortinet FortiSandbox跨站脚本漏洞(CNVD-2026-14601) 2026-03-17 2026-03-17
ID Description Published Updated
bdu:2025-11988 Уязвимость компонента netfilter ядра операционной системы Linux, позволяющая нарушителю п… 28.09.2025 16.02.2026
bdu:2025-11984 Уязвимость утилиты для обработки логов Syslog-ng, связанная с ошибками процедуры подтверж… 28.09.2025 16.02.2026
bdu:2025-11982 Уязвимость компонента KVM ядра операционной системы Linux, позволяющая нарушителю вызвать… 28.09.2025 16.02.2026
bdu:2025-11981 Уязвимость компонента proton-pack.c ядра операционной системы Linux, позволяющая нарушите… 28.09.2025 16.02.2026
bdu:2025-11978 Уязвимость компонента virtiofs ядра операционной системы Linux, позволяющая нарушителю вы… 28.09.2025 16.02.2026
bdu:2025-11973 Уязвимость компонента inftlcore.c ядра операционной системы Linux, позволяющая нарушителю… 28.09.2025 16.02.2026
bdu:2025-11972 Уязвимость компонента x86/mm ядра операционной системы Linux, позволяющая нарушителю вызв… 28.09.2025 16.02.2026
bdu:2025-11970 Уязвимость функции output_userspace() компонента net/openvswitch/actions.c ядра операцион… 28.09.2025 16.02.2026
bdu:2025-11968 Уязвимость сервера службы каталогов 389 Directory Server, позволяющая нарушителю вызвать … 28.09.2025 16.02.2026
bdu:2025-11960 Уязвимость компонента fs/read_write.c ядра операционной системы Linux, позволяющая наруши… 28.09.2025 16.02.2026
bdu:2025-11959 Уязвимость расширения XFIXES реализации протокола Wayland для X.Org XWaylan и реализации … 28.09.2025 16.02.2026
bdu:2025-11957 Уязвимость сервера службы каталогов 389 Directory Server, позволяющая нарушителю вызвать … 28.09.2025 16.02.2026
bdu:2025-11956 Уязвимость компонента mediatek ядра операционной системы Linux, позволяющая нарушителю вы… 28.09.2025 16.02.2026
bdu:2025-11952 Уязвимость компонента platform/x86/amd/pmc ядра операционной системы Linux, позволяющая н… 28.09.2025 16.02.2026
bdu:2025-11948 Уязвимость компонента md/md-bitmap ядра операционной системы Linux, позволяющая нарушител… 28.09.2025 16.02.2026
bdu:2025-11940 Уязвимость компонента netfilter ядра операционной системы Linux, позволяющая нарушителю в… 28.09.2025 16.02.2026
bdu:2025-11935 Уязвимость компонента tls_main.c ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-11934 Уязвимость компонента openvswitch ядра операционной системы Linux, позволяющая нарушителю… 28.09.2025 16.02.2026
bdu:2025-11933 Уязвимость компонента sch_codel.c ядра операционной системы Linux, позволяющая нарушителю… 28.09.2025 16.02.2026
bdu:2025-11932 Уязвимость компонента jfs_dmap.c ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-11929 Уязвимость компонентов arm64 ядра операционной системы Linux, позволяющая нарушителю нару… 28.09.2025 16.02.2026
bdu:2025-11928 Уязвимость компонента bpf_jit_comp.c ядра операционной системы Linux, позволяющая нарушит… 28.09.2025 16.02.2026
bdu:2025-11927 Уязвимость компонента fs/orangefs/inode.c ядра операционной системы Linux, позволяющая на… 28.09.2025 16.02.2026
bdu:2025-11925 Уязвимость ядра операционной системы Linux, связанная с целочисленной потерей значимости,… 28.09.2025 16.02.2026
bdu:2025-11924 Уязвимость компонента init.c ядра операционной системы Linux, позволяющая нарушителю оказ… 28.09.2025 16.02.2026
bdu:2025-11911 Уязвимость ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании 28.09.2025 16.02.2026
bdu:2025-11908 Уязвимость компонента index.c ядра операционной системы Linux, позволяющая нарушителю выз… 28.09.2025 16.02.2026
bdu:2025-11906 Уязвимость компонента sclp_con.c ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-11905 Уязвимость функции makeRoom() компонента stream.c библиотеки для кодирования и декодирова… 28.09.2025 16.02.2026
bdu:2025-11904 Уязвимость функции avifImageRGBToYUV компонента reformat.c библиотеки для кодирования и д… 28.09.2025 16.02.2026
ID Description Updated
var-200810-0010 The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windo… 2024-07-23T21:21:00.936000Z
var-200608-0041 Buffer overflow in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial… 2024-07-23T21:21:00.588000Z
var-202006-0391 The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the… 2024-07-23T21:20:57.987000Z
var-201804-1202 An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS b… 2024-07-23T21:20:49.328000Z
var-201306-0245 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:20:49.038000Z
var-201009-0241 Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10… 2024-07-23T21:20:47.492000Z
var-201903-0388 An integer overflow flaw which could lead to an out of bounds write was discovered in lib… 2024-07-23T21:20:42.429000Z
var-201404-0592 The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly h… 2024-07-23T21:20:07.305000Z
var-201401-0579 expat 2.1.0 and earlier does not properly handle entities expansion unless an application… 2024-07-23T21:20:07.746000Z
var-202204-0855 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, … 2024-07-23T21:20:06.909000Z
var-200701-0320 The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other … 2024-07-23T21:20:06.280000Z
var-201605-0466 The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2,… 2024-07-23T21:20:02.442000Z
var-201912-0501 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2024-07-23T21:18:18.853000Z
var-202006-1636 An input validation issue was addressed with improved input validation. This issue is fix… 2024-07-23T21:17:58.689000Z
var-201302-0332 The TLS implementation in Mozilla Network Security Services (NSS) does not properly consi… 2024-07-23T21:17:58.592000Z
var-201110-0352 Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… 2024-07-23T21:17:55.274000Z
var-202201-0349 node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. n… 2024-07-23T21:17:54.278000Z
var-201302-0403 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:17:54.186000Z
var-202101-0222 A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not… 2024-07-23T21:17:22.779000Z
var-201806-1485 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2024-07-23T21:16:48.620000Z
var-201407-0138 The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitra… 2024-07-23T21:16:45.502000Z
var-201211-0356 Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml… 2024-07-23T21:16:44.704000Z
var-201806-1482 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… 2024-07-23T21:16:40.066000Z
var-201201-0030 The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not proper… 2024-07-23T21:16:40.308000Z
var-201203-0190 Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … 2024-07-23T21:16:39.242000Z
var-200904-0291 udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space,… 2024-07-23T21:16:32.784000Z
var-201904-1341 A memory corruption issue was addressed with improved memory handling. This issue affecte… 2024-07-23T21:16:30.316000Z
var-201912-0122 A logic issue was addressed with improved state management. This issue is fixed in iOS 13… 2024-07-23T21:16:26.258000Z
var-202208-0404 zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in in… 2024-07-23T21:15:51.322000Z
var-201801-0036 jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-doma… 2024-07-23T21:15:42.081000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated