Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-67507	8.1 (3.1)	Filament's multi-factor authentication (app) recovery …	filamentphp	filament	2025-12-10T00:43:06.855Z	2025-12-10T00:43:06.855Z
CVE-2025-67506	9.8 (3.1)	PipesHub Vulnerable to Path Traversal through Unauthen…	pipeshub-ai	pipeshub-ai	2025-12-10T00:36:16.730Z	2025-12-10T00:36:16.730Z
CVE-2025-67485	5.3 (3.1)	HTTP/HTTPS Traffic Interception Bypass in mad-proxy	machphy	mad-proxy	2025-12-10T00:08:39.475Z	2025-12-10T00:08:39.475Z
CVE-2025-67502	5.4 (3.1)	Taguette does not safeguard against Open Redirect	remram44	taguette	2025-12-09T23:53:39.474Z	2025-12-09T23:53:39.474Z
CVE-2025-67501	9.4 (4.0)	WeGIA is vulnerable to SQL Injection via editar_catego…	LabRedesCefetRJ	WeGIA	2025-12-09T23:49:41.895Z	2025-12-09T23:49:41.895Z
CVE-2025-67500	3.7 (3.1)	Mastodon Error Handling Discrepancy Enables Private St…	mastodon	mastodon	2025-12-09T23:44:04.501Z	2025-12-09T23:44:04.501Z
CVE-2025-61808	9.1 (3.1)	ColdFusion \| Unrestricted Upload of File with Dangerou…	Adobe	ColdFusion	2025-12-09T23:41:13.755Z	2025-12-09T23:41:13.755Z
CVE-2025-61813	8.2 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:12.929Z	2025-12-09T23:41:12.929Z
CVE-2025-61812	8.4 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:12.133Z	2025-12-09T23:41:12.133Z
CVE-2025-61821	6.8 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:11.355Z	2025-12-09T23:41:11.355Z
CVE-2025-64898	4.3 (3.1)	ColdFusion \| Insufficiently Protected Credentials (CWE-522)	Adobe	ColdFusion	2025-12-09T23:41:10.587Z	2025-12-09T23:41:10.587Z
CVE-2025-61810	8.4 (3.1)	ColdFusion \| Deserialization of Untrusted Data (CWE-502)	Adobe	ColdFusion	2025-12-09T23:41:09.815Z	2025-12-09T23:41:09.815Z
CVE-2025-61809	9.1 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:08.641Z	2025-12-09T23:41:08.641Z
CVE-2025-64897	5.6 (3.1)	ColdFusion \| Improper Access Control (CWE-284)	Adobe	ColdFusion	2025-12-09T23:41:07.028Z	2025-12-09T23:41:07.028Z
CVE-2025-61822	6.2 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:07.797Z	2025-12-09T23:41:07.797Z
CVE-2025-61823	6.2 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:06.229Z	2025-12-09T23:41:06.229Z
CVE-2025-61811	8.4 (3.1)	ColdFusion \| Improper Access Control (CWE-284)	Adobe	ColdFusion	2025-12-09T23:41:05.394Z	2025-12-09T23:41:05.394Z
CVE-2025-67499	6.6 (3.1)	CNI Plugins Portmap nftables backend intercepts non-lo…	containernetworking	plugins	2025-12-09T23:13:22.398Z	2025-12-09T23:13:22.398Z
CVE-2025-67496	4.3 (3.1)	WeGia is Vulnerable to XSS through id_pessoa Parameter…	LabRedesCefetRJ	WeGIA	2025-12-09T22:43:55.170Z	2025-12-09T22:43:55.170Z
CVE-2025-67495	8 (3.1)	ZITADEL Vulnerable to Account Takeover via DOM-Based X…	zitadel	zitadel	2025-12-09T22:38:44.327Z	2025-12-09T22:38:44.327Z
CVE-2025-67494	9.3 (3.1)	ZITADEL Vulnerable to Unauthenticated Full-Read SSRF v…	zitadel	zitadel	2025-12-09T22:07:51.878Z	2025-12-09T22:07:51.878Z
CVE-2025-36437	4.3 (3.1)	IBM Planning Analytics Local is vulnerable to disclosi…	IBM	IBM Planning Analytics Local	2025-12-09T22:04:14.831Z	2025-12-09T22:04:14.831Z
CVE-2025-66645	7.5 (3.1)	NiceGUI Path Traversal Vulnerability in app.add_media_…	zauberzeug	nicegui	2025-12-09T21:41:32.049Z	2025-12-09T21:41:32.049Z
CVE-2025-66039	9.3 (4.0)	FreePBX Endpoint Manager Allows Unauthenticated Logins…	FreePBX	security-reporting	2025-12-09T21:32:03.412Z	2025-12-09T21:32:03.412Z
CVE-2025-34425	5.3 (4.0)	MailEnable < 10.54 Reflected XSS in WindowContext Para…	MailEnable	MailEnable	2025-12-09T21:13:44.546Z	2025-12-09T21:13:44.546Z
CVE-2023-53774	6.9 (4.0)	MiniDVBLinux 5.4 Simple VideoDiskRecorder Protocol Rem…	MiniDVBLinux	Simple VideoDiskRecorder Protocol SVDRP (svdrpsend.sh) Exploit	2025-12-09T20:56:46.780Z	2025-12-09T20:56:46.780Z
CVE-2023-53773	8.7 (4.0)	MiniDVBLinux 5.4 Unauthenticated Live Stream Disclosur…	MiniDVBLinux	MiniDVBLinux	2025-12-09T20:55:58.650Z	2025-12-09T20:55:58.650Z
CVE-2023-53772	8.7 (4.0)	MiniDVBLinux 5.4 Arbitrary File Read Vulnerability via…	MiniDVBLinux	MiniDVBLinux	2025-12-09T20:55:15.808Z	2025-12-09T20:55:15.808Z
CVE-2023-53771	9.3 (4.0)	MiniDVBLinux 5.4 Unauthenticated Root Password Change …	MiniDVBLinux	MiniDVBLinux Change Root Password PoC	2025-12-09T20:54:46.109Z	2025-12-09T20:54:46.109Z
CVE-2025-67489	9.8 (3.1)	@vitejs/plugin-rsc Remote Code Execution through unsaf…	vitejs	vite-plugin-react	2025-12-09T20:54:23.716Z	2025-12-09T20:54:23.716Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-67507	8.1 (3.1)	Filament's multi-factor authentication (app) recovery …	filamentphp	filament	2025-12-10T00:43:06.855Z	2025-12-10T00:43:06.855Z
CVE-2025-67506	9.8 (3.1)	PipesHub Vulnerable to Path Traversal through Unauthen…	pipeshub-ai	pipeshub-ai	2025-12-10T00:36:16.730Z	2025-12-10T00:36:16.730Z
CVE-2025-67485	5.3 (3.1)	HTTP/HTTPS Traffic Interception Bypass in mad-proxy	machphy	mad-proxy	2025-12-10T00:08:39.475Z	2025-12-10T00:08:39.475Z
CVE-2025-67503	N/A	This CVE is a duplicate of another CVE.	N/A	N/A		2025-12-10T00:01:26.325Z
CVE-2025-67502	5.4 (3.1)	Taguette does not safeguard against Open Redirect	remram44	taguette	2025-12-09T23:53:39.474Z	2025-12-09T23:53:39.474Z
CVE-2025-67501	9.4 (4.0)	WeGIA is vulnerable to SQL Injection via editar_catego…	LabRedesCefetRJ	WeGIA	2025-12-09T23:49:41.895Z	2025-12-09T23:49:41.895Z
CVE-2025-67500	3.7 (3.1)	Mastodon Error Handling Discrepancy Enables Private St…	mastodon	mastodon	2025-12-09T23:44:04.501Z	2025-12-09T23:44:04.501Z
CVE-2025-67499	6.6 (3.1)	CNI Plugins Portmap nftables backend intercepts non-lo…	containernetworking	plugins	2025-12-09T23:13:22.398Z	2025-12-09T23:13:22.398Z
CVE-2025-64898	4.3 (3.1)	ColdFusion \| Insufficiently Protected Credentials (CWE-522)	Adobe	ColdFusion	2025-12-09T23:41:10.587Z	2025-12-09T23:41:10.587Z
CVE-2025-64897	5.6 (3.1)	ColdFusion \| Improper Access Control (CWE-284)	Adobe	ColdFusion	2025-12-09T23:41:07.028Z	2025-12-09T23:41:07.028Z
CVE-2025-61823	6.2 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:06.229Z	2025-12-09T23:41:06.229Z
CVE-2025-61822	6.2 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:07.797Z	2025-12-09T23:41:07.797Z
CVE-2025-61821	6.8 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:11.355Z	2025-12-09T23:41:11.355Z
CVE-2025-61813	8.2 (3.1)	ColdFusion \| Improper Restriction of XML External Enti…	Adobe	ColdFusion	2025-12-09T23:41:12.929Z	2025-12-09T23:41:12.929Z
CVE-2025-61812	8.4 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:12.133Z	2025-12-09T23:41:12.133Z
CVE-2025-61811	8.4 (3.1)	ColdFusion \| Improper Access Control (CWE-284)	Adobe	ColdFusion	2025-12-09T23:41:05.394Z	2025-12-09T23:41:05.394Z
CVE-2025-61810	8.4 (3.1)	ColdFusion \| Deserialization of Untrusted Data (CWE-502)	Adobe	ColdFusion	2025-12-09T23:41:09.815Z	2025-12-09T23:41:09.815Z
CVE-2025-61809	9.1 (3.1)	ColdFusion \| Improper Input Validation (CWE-20)	Adobe	ColdFusion	2025-12-09T23:41:08.641Z	2025-12-09T23:41:08.641Z
CVE-2025-61808	9.1 (3.1)	ColdFusion \| Unrestricted Upload of File with Dangerou…	Adobe	ColdFusion	2025-12-09T23:41:13.755Z	2025-12-09T23:41:13.755Z
CVE-2025-67498	N/A	Further research determined the issue is not a vulnerability.	N/A	N/A		2025-12-09T22:58:02.117Z
CVE-2025-67497	N/A	Further research determined the issue is not a vulnerability.	N/A	N/A		2025-12-09T22:54:04.390Z
CVE-2025-67496	4.3 (3.1)	WeGia is Vulnerable to XSS through id_pessoa Parameter…	LabRedesCefetRJ	WeGIA	2025-12-09T22:43:55.170Z	2025-12-09T22:43:55.170Z
CVE-2025-67495	8 (3.1)	ZITADEL Vulnerable to Account Takeover via DOM-Based X…	zitadel	zitadel	2025-12-09T22:38:44.327Z	2025-12-09T22:38:44.327Z
CVE-2025-13760	N/A	This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	N/A	N/A		2025-12-09T22:19:04.232Z
CVE-2025-67494	9.3 (3.1)	ZITADEL Vulnerable to Unauthenticated Full-Read SSRF v…	zitadel	zitadel	2025-12-09T22:07:51.878Z	2025-12-09T22:07:51.878Z
CVE-2025-66645	7.5 (3.1)	NiceGUI Path Traversal Vulnerability in app.add_media_…	zauberzeug	nicegui	2025-12-09T21:41:32.049Z	2025-12-09T21:41:32.049Z
CVE-2025-66039	9.3 (4.0)	FreePBX Endpoint Manager Allows Unauthenticated Logins…	FreePBX	security-reporting	2025-12-09T21:32:03.412Z	2025-12-09T21:32:03.412Z
CVE-2025-65513	N/A	fetch-mcp v1.0.2 and before is vulnerable to Serv…	n/a	n/a	2025-12-09T00:00:00.000Z	2025-12-09T21:09:05.500Z
CVE-2025-36437	4.3 (3.1)	IBM Planning Analytics Local is vulnerable to disclosi…	IBM	IBM Planning Analytics Local	2025-12-09T22:04:14.831Z	2025-12-09T22:04:14.831Z
CVE-2025-34425	5.3 (4.0)	MailEnable < 10.54 Reflected XSS in WindowContext Para…	MailEnable	MailEnable	2025-12-09T21:13:44.546Z	2025-12-09T21:13:44.546Z

ID	Description	Published	Updated
fkie_cve-2025-12954	The Timetable and Event Schedule by MotoPress WordPress plugin before 2.4.16 does not verify a user…	2025-12-03T06:15:47.260	2025-12-04T17:15:08.283
fkie_cve-2025-13495	The FluentCart plugin for WordPress is vulnerable to SQL Injection via the 'groupKey' parameter in …	2025-12-03T04:15:59.830	2025-12-04T17:15:08.283
fkie_cve-2025-12585	The MxChat – AI Chatbot for WordPress plugin for WordPress is vulnerable to Sensitive Information E…	2025-12-03T04:15:59.650	2025-12-04T17:15:08.283
fkie_cve-2025-10304	The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPre…	2025-12-03T04:15:58.613	2025-12-04T17:15:08.283
fkie_cve-2025-13646	The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missin…	2025-12-03T03:16:00.033	2025-12-04T17:15:08.283
fkie_cve-2025-13645	The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insuf…	2025-12-03T03:15:59.840	2025-12-04T17:15:08.283
fkie_cve-2025-13448	The CSSIgniter Shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…	2025-12-03T03:15:58.803	2025-12-04T17:15:08.283
fkie_cve-2025-65955	Rejected reason: Further research determined the issue is not a vulnerability.	2025-12-02T23:15:45.603	2025-12-06T00:15:46.647
fkie_cve-2025-66476	Vim is an open source, command line text editor. Prior to version 9.1.1947, an uncontrolled search …	2025-12-02T22:16:09.940	2025-12-04T17:15:08.283
fkie_cve-2025-55181	Sending an HTTP request/response body with greater than 2^31 bytes triggers an infinite loop in pro…	2025-12-02T22:16:08.380	2025-12-04T17:15:08.283
fkie_cve-2025-65657	FeehiCMS version 2.1.1 has a Remote Code Execution via Unrestricted File Upload in Ad Management. F…	2025-12-02T21:15:53.063	2025-12-04T17:15:08.283
fkie_cve-2025-65380	PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the admin/index.php endpoint. Speci…	2025-12-02T21:15:52.947	2025-12-04T19:01:55.517
fkie_cve-2025-64778	NMIS/BioDose software V22.02 and previous versions contain executable binaries with plain text hard…	2025-12-02T21:15:52.750	2025-12-04T17:15:08.283
fkie_cve-2025-64642	NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure fi…	2025-12-02T21:15:52.557	2025-12-04T17:15:08.283
fkie_cve-2025-64298	NMIS/BioDose V22.02 and previous version installations where the embedded Microsoft SQLServer Expre…	2025-12-02T21:15:52.333	2025-12-04T17:15:08.283
fkie_cve-2025-62575	NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user acc…	2025-12-02T21:15:52.133	2025-12-04T17:15:08.283
fkie_cve-2025-61940	NMIS/BioDose V22.02 and previous versions rely on a common SQL Server user account to access data i…	2025-12-02T21:15:51.930	2025-12-04T17:15:08.283
fkie_cve-2025-65877	Lvzhou CMS before commit c4ea0eb9cab5f6739b2c87e77d9ef304017ed615 (2025-09-22) is vulnerable to SQL…	2025-12-02T20:15:53.410	2025-12-09T17:15:55.850
fkie_cve-2025-65379	PHPGurukul Billing System 1.0 is vulnerable to SQL Injection in the /admin/password-recovery.php en…	2025-12-02T20:15:53.117	2025-12-04T19:13:34.923
fkie_cve-2025-13658	A vulnerability in Longwatch devices allows unauthenticated HTTP GET requests to execute arbitrary …	2025-12-02T20:15:50.810	2025-12-04T17:15:08.283
fkie_cve-2025-13542	The DesignThemes LMS plugin for WordPress is vulnerable to Privilege Escalation in all versions up …	2025-12-02T20:15:49.670	2025-12-04T17:15:25.860
fkie_cve-2025-13510	The Iskra iHUB and iHUB Lite smart metering gateway exposes its web management interface without re…	2025-12-02T20:15:49.470	2025-12-04T17:15:25.860
fkie_cve-2025-66468	The Aimeos GrapesJS CMS extension provides page editor for creating content pages based on extensib…	2025-12-02T19:15:53.310	2025-12-04T17:15:25.860
fkie_cve-2025-66460	Lookyloo is a web interface that allows users to capture a website page and then display a tree of …	2025-12-02T19:15:53.163	2025-12-05T14:57:46.010
fkie_cve-2025-66459	Lookyloo is a web interface that allows users to capture a website page and then display a tree of …	2025-12-02T19:15:53.007	2025-12-05T14:58:10.617
fkie_cve-2025-66458	Lookyloo is a web interface that allows users to capture a website page and then display a tree of …	2025-12-02T19:15:52.850	2025-12-05T14:58:21.437
fkie_cve-2025-66454	Arcade MCP allows you to to create, deploy, and share MCP Servers. Prior to 1.5.4, the arcade-mcp H…	2025-12-02T19:15:52.683	2025-12-04T17:15:25.860
fkie_cve-2025-66416	The MCP Python SDK, called `mcp` on PyPI, is a Python implementation of the Model Context Protocol …	2025-12-02T19:15:52.520	2025-12-04T17:15:25.860
fkie_cve-2025-66414	MCP TypeScript SDK is the official TypeScript SDK for Model Context Protocol servers and clients. P…	2025-12-02T19:15:52.347	2025-12-04T17:15:25.860
fkie_cve-2025-66409	ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In 5.5.1, 5.4.3, 5.3.4, 5.…	2025-12-02T19:15:52.133	2025-12-04T17:15:25.860

ID	Severity	Description	Published	Updated
ghsa-q76w-cpf4-58gv	4.3 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Insufficiently Protecte…	2025-12-10T00:30:23Z	2025-12-10T00:30:23Z
ghsa-mjw5-6w2m-jr5w	5.6 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control…	2025-12-10T00:30:23Z	2025-12-10T00:30:23Z
ghsa-8r3x-4gr3-hxhv	6.2 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validati…	2025-12-10T00:30:23Z	2025-12-10T00:30:23Z
ghsa-2m3g-74x3-7w8x	6.2 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction of…	2025-12-10T00:30:23Z	2025-12-10T00:30:23Z
ghsa-x7fx-4pm8-g98w	8.2 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction of…	2025-12-10T00:30:22Z	2025-12-10T00:30:23Z
ghsa-v4hm-2c9r-89mm	5.3 (4.0)	MailEnable versions prior to 10.54 contain a reflected cross-site scripting (XSS) vulnerability in …	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-r74v-f24v-2v5w	8.4 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Access Control…	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-g96j-73c3-2r7f	9.1 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Unrestricted Upload of …	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-fxxp-hvhr-hwpp	4.3 (3.1)	IBM Planning Analytics Local 2.1.0 - 2.1.15 could disclose sensitive information about server archi…	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-cv32-3w6x-v6x4	6.8 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Restriction of…	2025-12-10T00:30:22Z	2025-12-10T00:30:23Z
ghsa-cjmh-96m9-g6qr	8.4 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by a Deserialization of Untru…	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-8fxj-2g9q-8fjw		fetch-mcp v1.0.2 and before is vulnerable to Server-Side Request Forgery (SSRF) vulnerability, whic…	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-5mvc-x488-xrpc	9.1 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validati…	2025-12-10T00:30:22Z	2025-12-10T00:30:23Z
ghsa-4q95-6mw3-3rm5		Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-10T00:30:22Z	2025-12-10T00:30:22Z
ghsa-47gj-rgp2-78f7	8.4 (3.1)	ColdFusion versions 2025.4, 2023.16, 2021.22 and earlier are affected by an Improper Input Validati…	2025-12-10T00:30:22Z	2025-12-10T00:30:23Z
ghsa-9rwj-6rc7-p77c	7.3 (3.1)	LangGraph's SQLite is vulnerable to SQL injection via metadata filter key in SQLite checkpointer li…	2025-12-10T00:02:21Z	2025-12-10T00:02:21Z
ghsa-mjcp-gpgx-ggcg	5.9 (3.1)	OpenTofu incorrectly validates excluded subdomain constraint in conjunction with TLS certificates c…	2025-12-09T22:48:08Z	2025-12-09T22:48:08Z
ghsa-4c65-9gqf-4w8h	9.6 (3.1)	Cybersecurity AI (CAI) vulnerable to Command Injection in run_ssh_command_with_credentials Agent tool	2025-12-09T22:47:32Z	2025-12-09T22:47:32Z
ghsa-vqf5-jvfh-997c	9.9 (4.0)	Tinycontrol LAN Controller v3 LK3 version 1.58a contains an unauthenticated vulnerability that allo…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-v5hw-qpgq-4cjm	7.8 (3.1)	Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and ea…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-r6g3-qgx7-w7m3	9.3 (4.0)	MiniDVBLinux 5.4 contains an authentication bypass vulnerability that allows remote attackers to ch…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-qr37-m54m-gwg9	3.3 (3.1)	Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and ea…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-ppvc-j5f4-q5rv	8.7 (4.0)	MiniDVBLinux 5.4 contains an arbitrary file disclosure vulnerability that allows attackers to read …	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-mx46-g635-gjjg	8.7 (4.0)	MiniDVBLinux 5.4 contains an unauthenticated configuration download vulnerability that allows remot…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-mx39-grv7-hq6w	9.3 (4.0)	Selea Targa IP OCR-ANPR Camera contains an unauthenticated command injection vulnerability in utils…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-h444-3g5w-w93p	7.8 (3.1)	Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and ea…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-g24h-8xr2-34q6	8.7 (4.0)	MiniDVBLinux 5.4 contains an unauthenticated vulnerability in the tv_action.sh script that allows r…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-92hr-cjp6-738x	5.5 (3.1)	Creative Cloud Desktop versions 6.4.0.361 and earlier are affected by a Creation of Temporary File …	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-8wjp-8f9v-ph26	6.9 (4.0)	MiniDVBLinux 5.4 contains a remote code execution vulnerability in the SVDRP protocol that allows r…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z
ghsa-636h-73hj-chgr	3.3 (3.1)	Acrobat Reader versions 24.001.30264, 20.005.30793, 25.001.20982, 24.001.30273, 20.005.30803 and ea…	2025-12-09T21:31:49Z	2025-12-09T21:31:49Z

ID	Severity	Description	Package	Published	Updated
pysec-2025-71		Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-69		In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-65		A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61		Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-51		Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v…	apache-airflow-providers-snowflake	2025-06-24T08:15:24+00:00	2025-06-26T21:23:03.132527+00:00
pysec-2025-70	10.0 (3.1)	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2025-52		gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2025-68	8.0 (3.1)	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	9.8 (3.1)	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-64	9.8 (3.1)	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-47		An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2…	django	2025-06-05T03:15:25+00:00	2025-06-05T05:23:28.296596+00:00
pysec-2025-44		django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod…	django-helpdesk	2025-05-31T01:15:19+00:00	2025-05-31T03:09:35.357757+00:00
pysec-2025-55		vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54		vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00
pysec-2025-50		vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp…	vllm	2025-05-30T18:15:32+00:00	2025-06-19T03:02:28.572160+00:00
pysec-2025-53		vLLM is an inference and serving engine for large language models (LLMs). Prior to versio…	vllm	2025-05-29T17:15:21+00:00	2025-06-26T21:23:06.231251+00:00
pysec-2025-43		vLLM is an inference and serving engine for large language models (LLMs). In versions sta…	vllm	2025-05-29T17:15:21+00:00	2025-05-29T19:21:01.611587+00:00
pysec-2025-46	5.5 (3.1)	A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri…	pypickle	2025-05-26T08:15:19+00:00	2025-06-03T17:36:58.579358+00:00
pysec-2025-45	7.8 (3.1)	A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.…	pypickle	2025-05-26T07:15:26+00:00	2025-06-03T17:36:58.528116+00:00
pysec-2025-40	7.5 (3.1)	A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`…	transformers	2025-05-19T12:15:19+00:00	2025-05-21T19:22:10.801823+00:00
pysec-2025-49	8.8 (3.1)	setuptools is a package that allows users to download, build, install, upgrade, and unins…	setuptools	2025-05-17T16:15:19+00:00	2025-06-12T22:23:11.115559+00:00
pysec-2025-39		motionEye is an online interface for the software motion, a video surveillance program wi…	motioneye	2025-05-14T16:15:29+00:00	2025-05-14T17:22:51.050788+00:00
pysec-2025-60		Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59		Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2025-38		OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im…	ironic	2025-05-08T17:16:01Z	2025-05-13T04:24:03.083929Z
pysec-2025-37		An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2…	django	2025-05-08T04:17:18+00:00	2025-05-08T05:23:16.210893+00:00
pysec-2025-42	9.8 (3.1)	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver…	vllm	2025-04-30T01:15:51+00:00	2025-05-28T21:23:12.396609+00:00
pysec-2025-34		The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_…	picklescan	2025-04-24T01:15:49+00:00	2025-04-24T03:08:15.436691+00:00
pysec-2025-56	4.3 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2025-41	9.8 (3.1)	PyTorch is a Python package that provides tensor computation with strong GPU acceleration…	torch	2025-04-18T16:15:23+00:00	2025-05-28T15:23:37.843138+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2025-192395	Malicious code in libxmlrussia (npm)	2025-12-09T20:38:15Z	2025-12-09T20:38:15Z
mal-2025-192396	Malicious code in helloharry123c (PyPI)	2025-12-09T20:34:47Z	2025-12-09T20:34:47Z
mal-2025-192394	Malicious code in libxmlussr2 (npm)	2025-12-09T20:25:55Z	2025-12-09T20:25:55Z
mal-2025-192393	Malicious code in ctosec-appsec-wb-xray-adapter (PyPI)	2025-12-09T18:38:25Z	2025-12-09T21:40:17Z
mal-2025-192392	Malicious code in ajenti-plugin-testing-pyld (PyPI)	2025-12-09T18:32:50Z	2025-12-09T18:32:50Z
mal-2025-192391	Malicious code in bignum (PyPI)	2025-12-09T16:32:42Z	2025-12-09T16:32:42Z
mal-0000-kam193-badcc187e382c3a2	Malicious code in bignum (PyPI)	2025-12-09T16:32:42Z	2025-12-10T01:05:01Z
mal-2025-192390	Malicious code in libxmljs2woter (npm)	2025-12-09T14:46:17Z	2025-12-09T14:46:17Z
mal-2025-192389	Malicious code in libxmljs2qwerty (npm)	2025-12-09T13:57:36Z	2025-12-09T13:57:36Z
mal-2025-192388	Malicious code in libxmljs2varaboba (npm)	2025-12-09T12:17:55Z	2025-12-09T12:17:55Z
mal-2025-192387	Malicious code in do-not-install-this-package-001 (PyPI)	2025-12-09T09:25:41Z	2025-12-09T21:40:17Z
mal-2025-192386	Malicious code in telcoo (PyPI)	2025-12-09T08:05:51Z	2025-12-09T08:08:53Z
mal-2025-192385	Malicious code in graphsync (PyPI)	2025-12-09T08:01:54Z	2025-12-09T08:01:54Z
mal-2025-192384	Malicious code in jsonify-errors (npm)	2025-12-09T07:55:28Z	2025-12-09T07:55:28Z
mal-2025-192383	Malicious code in chai-uuids (npm)	2025-12-09T07:55:28Z	2025-12-09T07:55:28Z
mal-2025-192382	Malicious code in raft-dask (PyPI)	2025-12-09T06:49:43Z	2025-12-09T06:49:43Z
mal-2025-192381	Malicious code in configurator-framework (npm)	2025-12-09T04:40:47Z	2025-12-09T04:40:47Z
mal-2025-192380	Malicious code in sketchfab-spinner (PyPI)	2025-12-09T03:35:56Z	2025-12-09T07:40:13Z
mal-2025-192379	Malicious code in helloharry123p (PyPI)	2025-12-08T23:54:54Z	2025-12-09T16:44:22Z
mal-2025-192378	Malicious code in shop-api-sdk (npm)	2025-12-08T19:09:22Z	2025-12-08T19:09:22Z
mal-2025-192377	Malicious code in gs-uitk-lodash (npm)	2025-12-08T15:40:53Z	2025-12-08T19:08:12Z
mal-2025-192376	Malicious code in graphnode (PyPI)	2025-12-08T14:14:35Z	2025-12-08T14:14:35Z
mal-2025-192373	Malicious code in @notrainers/nobtrainer-sdk (npm)	2025-12-08T03:36:55Z	2025-12-08T03:36:55Z
mal-2025-192375	Malicious code in tensor-fi-utils-core (npm)	2025-12-08T03:36:17Z	2025-12-08T03:36:18Z
mal-2025-192374	Malicious code in solana-dexco-basic (npm)	2025-12-08T03:36:17Z	2025-12-08T03:36:18Z
mal-2025-192368	Malicious code in paysera-checkout-modal (npm)	2025-12-07T22:30:57Z	2025-12-07T22:30:57Z
mal-2025-192371	Malicious code in tna_xmlparser (npm)	2025-12-07T21:23:57Z	2025-12-07T21:23:57Z
mal-2025-192367	Malicious code in hexdeci (PyPI)	2025-12-07T17:56:09Z	2025-12-07T17:56:09Z
mal-2025-192366	Malicious code in react-hook-form-5 (npm)	2025-12-07T09:31:09Z	2025-12-07T09:31:09Z
mal-2025-192365	Malicious code in python-tg-bot (PyPI)	2025-12-07T00:50:39Z	2025-12-07T00:50:39Z

ID	Description	Published	Updated
wid-sec-w-2025-2751	WebKitGTK: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2750	Apache HTTP Server: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2746	IBM InfoSphere Information Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-04T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2738	Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung	2025-12-03T23:00:00.000+00:00	2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2730	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-02T23:00:00.000+00:00	2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2717	Django: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2711	Android Patchday Dezember 2025: Mehrere Schwachstellen	2025-12-01T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2703	Zabbix: Mehrere Schwachstellen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2702	Red Hat Enterprise Linux (Developer Hub): Schwachstelle ermöglicht Manipulation von Dateien	2025-11-30T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2701	xwiki (XJetty): Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2700	CODESYS Control und Development System: Mehrere Schwachstellen	2025-11-30T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2697	Devolutions Remote Desktop Manager und Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-30T23:00:00.000+00:00	2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-2682	Tinyproxy: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-11-26T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2670	Fluent Bit: Mehrere Schwachstellen	2025-11-24T23:00:00.000+00:00	2025-11-25T23:00:00.000+00:00
wid-sec-w-2025-2667	Janitza UMG 96-PA und UMG 96-PA-MID+: Schwachstelle ermöglicht Denial of Service	2025-11-23T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2663	libpng: Mehrere Schwachstellen	2025-11-23T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2661	Google Cloud Platform (Looker): Schwachstelle ermöglicht Ausführen von beliebigem Programmcode	2025-11-23T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2657	WebKitGTK: Mehrere Schwachstellen	2025-11-20T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2655	CUPS-Filters: Schwachstelle ermöglicht Codeausführung	2025-11-20T23:00:00.000+00:00	2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2653	Microsoft Visual Studio Code: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-11-20T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2652	Red Hat Satellite: Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-20T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2651	GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-19T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2649	Google Cloud Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-11-19T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2647	SonicWall Email Security: Mehrere Schwachstellen	2025-11-19T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2643	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-11-26T23:00:00.000+00:00
wid-sec-w-2025-2640	SonicWall SSL-VPN: Schwachstelle ermöglicht Denial of Service	2025-11-19T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2638	Grub: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2636	OpenVPN: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2635	Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Denial of Service	2025-11-18T23:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2613	Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung oder DoS	2025-11-17T23:00:00.000+00:00	2025-11-24T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0385	Kwetsbaarheden verholpen in Microsoft Exchange	2025-12-09T18:42:32.332749Z	2025-12-09T18:42:32.332749Z
ncsc-2025-0384	Kwetsbaarheden verholpen in Microsoft Office	2025-12-09T18:40:33.839342Z	2025-12-09T18:40:33.839342Z
ncsc-2025-0383	Kwetsbaarheden verholpen in Microsoft Windows	2025-12-09T18:39:18.152251Z	2025-12-09T18:39:18.152251Z
ncsc-2025-0382	Kwetsbaarheden verholpen in Siemens producten	2025-12-09T13:15:05.391966Z	2025-12-09T13:15:05.391966Z
ncsc-2025-0381	Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform	2025-12-08T08:23:21.965599Z	2025-12-08T08:23:21.965599Z
ncsc-2025-0380	Kwetsbaarheden verholpen in React Server Components	2025-12-03T20:11:57.728117Z	2025-12-05T12:13:36.590522Z
ncsc-2025-0379	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-12-02T13:25:17.745981Z	2025-12-02T13:25:17.745981Z
ncsc-2025-0378	Kwetsbaarheden verholpen in Mattermost	2025-11-28T09:53:42.334621Z	2025-11-28T09:53:42.334621Z
ncsc-2025-0377	Kwetsbaarheden verholpen in GitLab	2025-11-27T13:35:09.121804Z	2025-11-27T13:35:09.121804Z
ncsc-2025-0376	Kwetsbaarheden verholpen in SonicWall Email Security appliances	2025-11-21T16:06:33.949861Z	2025-11-21T16:06:33.949861Z
ncsc-2025-0375	Kwetsbaarheid verholpen in Progress MOVEit Transfer	2025-11-21T16:06:14.387571Z	2025-11-21T16:06:14.387571Z
ncsc-2025-0374	Kwetsbaarheden verholpen in Arista EOS	2025-11-20T11:48:20.126141Z	2025-11-20T11:48:20.126141Z
ncsc-2025-0373	Kwetsbaarheden verholpen in Fortinet FortiOS	2025-11-19T08:35:31.999400Z	2025-11-19T08:35:31.999400Z
ncsc-2025-0372	Kwetsbaarheid verholpen in Fortinet FortiWeb	2025-11-19T08:34:59.616354Z	2025-11-19T08:34:59.616354Z
ncsc-2025-0371	Kwetsbaarheden verholpen in Google Chrome	2025-11-18T09:01:31.984222Z	2025-11-18T09:01:31.984222Z
ncsc-2025-0370	Kwetsbaarheden verholpen in Cisco Unified Contact Center Express	2025-11-18T07:04:55.173157Z	2025-11-18T07:04:55.173157Z
ncsc-2025-0369	Kwetsbaarheden verholpen in IBM AIX	2025-11-18T07:03:55.766335Z	2025-11-18T07:03:55.766335Z
ncsc-2025-0368	Kwetsbaarheden verholpen in Zoom Workplace en Zoom Clients	2025-11-18T07:02:36.696426Z	2025-11-18T07:02:36.696426Z
ncsc-2025-0367	Kwetsbaarheden verholpen in GitLab	2025-11-18T07:01:35.502522Z	2025-11-18T07:01:35.502522Z
ncsc-2025-0366	Kwetsbaarheid verholpen in Fortinet FortiWeb	2025-11-15T14:57:33.774388Z	2025-11-15T14:57:33.774388Z
ncsc-2025-0365	Kwetsbaarheden verholpen in Cisco Catalyst Center	2025-11-14T12:55:27.227262Z	2025-11-14T12:55:27.227262Z
ncsc-2025-0364	Kwetsbaarheid verholpen in Adobe Photoshop	2025-11-12T12:17:16.207233Z	2025-11-12T12:17:16.207233Z
ncsc-2025-0363	Kwetsbaarheden verholpen in Adobe Illustrator	2025-11-12T11:52:08.634593Z	2025-11-12T11:56:09.924799Z
ncsc-2025-0362	Kwetsbaarheden verholpen in Microsoft Visual Studio	2025-11-11T18:35:40.376220Z	2025-11-11T18:35:40.376220Z
ncsc-2025-0361	Kwetsbaarheid verholpen in Microsoft SQL Server	2025-11-11T18:34:39.453615Z	2025-11-11T18:34:39.453615Z
ncsc-2025-0360	Kwetsbaarheden verholpen in Microsoft Dynamics	2025-11-11T18:33:13.936830Z	2025-11-11T18:33:13.936830Z
ncsc-2025-0359	Kwetsbaarheden verholpen in Microsoft Office	2025-11-11T18:31:27.092072Z	2025-11-11T18:31:27.092072Z
ncsc-2025-0358	Kwetsbaartheden verholpen in Microsoft Windows	2025-11-11T18:29:38.918562Z	2025-11-11T18:29:38.918562Z
ncsc-2025-0357	Kwetsbaarheden verholpen in Siemens producten	2025-11-11T18:14:44.487803Z	2025-11-11T18:14:44.487803Z
ncsc-2025-0356	Kwetsbaarheden verholpen in SAP-producten	2025-11-11T12:15:53.615720Z	2025-11-11T12:15:53.615720Z

ID	Description	Published	Updated
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-682326	SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-522291	SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-514895	SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-365596	SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-339694	SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-267056	SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-201498	SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-599451	SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-541582	SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-486936	SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-365200	SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-318832	SSA-318832: SQL Injection Vulnerability in SINEC NMS	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-062309	SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-916339	SSA-916339: Information Disclosure Vulnerability in Apogee PXC and Talon TC Devices	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:23001	Red Hat Security Advisory: grafana security update	2025-12-10T00:36:02+00:00	2025-12-10T00:36:46+00:00
rhsa-2025:22982	Red Hat Security Advisory: python-kdcproxy security update	2025-12-09T22:26:17+00:00	2025-12-09T22:26:51+00:00
rhsa-2025:22969	Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (libwebsockets) security update	2025-12-09T18:20:01+00:00	2025-12-09T21:02:23+00:00
rhsa-2025:22955	Red Hat Security Advisory: Red Hat OpenStack Platform 17.1.12 director Operator container images	2025-12-09T16:44:15+00:00	2025-12-09T21:23:37+00:00
rhsa-2025:22944	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.4	2025-12-09T15:41:43+00:00	2025-12-09T21:02:29+00:00
rhsa-2025:22925	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security update	2025-12-09T15:25:26+00:00	2025-12-09T21:02:23+00:00
rhsa-2025:22941	Red Hat Security Advisory: Kiali 2.17.2 for Red Hat OpenShift Service Mesh 3.2	2025-12-09T15:24:58+00:00	2025-12-09T21:23:36+00:00
rhsa-2025:22924	Red Hat Security Advisory: Red Hat JBoss Web Server 5.8.6 release and security update	2025-12-09T15:22:27+00:00	2025-12-09T21:02:23+00:00
rhsa-2025:22939	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.7	2025-12-09T15:08:18+00:00	2025-12-09T21:02:28+00:00
rhsa-2025:22938	Red Hat Security Advisory: Kiali 2.11.5 for Red Hat OpenShift Service Mesh 3.1	2025-12-09T14:59:35+00:00	2025-12-09T21:23:36+00:00
rhsa-2025:22937	Red Hat Security Advisory: Kiali 2.4.11 for Red Hat OpenShift Service Mesh 3.0	2025-12-09T14:59:02+00:00	2025-12-09T21:23:35+00:00
rhsa-2025:22936	Red Hat Security Advisory: Kiali 1.73.25 for Red Hat OpenShift Service Mesh 2.6	2025-12-09T14:58:58+00:00	2025-12-09T21:23:34+00:00
rhsa-2025:22935	Red Hat Security Advisory: Red Hat Update Infrastructure 5 security update	2025-12-09T14:40:14+00:00	2025-12-09T15:22:33+00:00
rhsa-2025:22914	Red Hat Security Advisory: kernel-rt security update	2025-12-09T12:20:30+00:00	2025-12-09T15:02:20+00:00
rhsa-2025:22910	Red Hat Security Advisory: kernel security update	2025-12-09T11:59:40+00:00	2025-12-09T15:02:21+00:00
rhsa-2025:22905	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.19.4	2025-12-09T10:09:13+00:00	2025-12-09T21:23:34+00:00
rhsa-2025:22865	Red Hat Security Advisory: kernel security update	2025-12-09T08:56:00+00:00	2025-12-09T15:02:21+00:00
rhsa-2025:22854	Red Hat Security Advisory: kernel security update	2025-12-09T08:51:05+00:00	2025-12-09T15:02:21+00:00
rhsa-2025:22866	Red Hat Security Advisory: gimp security update	2025-12-09T08:34:00+00:00	2025-12-09T21:02:27+00:00
rhsa-2025:22869	Red Hat Security Advisory: ghostscript security update	2025-12-09T08:33:50+00:00	2025-12-09T15:02:18+00:00
rhsa-2025:22871	Red Hat Security Advisory: expat security update	2025-12-09T08:32:00+00:00	2025-12-09T15:03:26+00:00
rhsa-2025:22899	Red Hat Security Advisory: golang security update	2025-12-09T08:03:20+00:00	2025-12-10T00:36:43+00:00
rhsa-2025:22883	Red Hat Security Advisory: thunderbird security update	2025-12-09T07:58:10+00:00	2025-12-09T09:10:54+00:00
rhsa-2025:22882	Red Hat Security Advisory: thunderbird security update	2025-12-09T07:56:48+00:00	2025-12-09T09:10:16+00:00
rhsa-2025:22802	Red Hat Security Advisory: kernel security update	2025-12-09T07:41:49+00:00	2025-12-09T09:10:54+00:00
rhsa-2025:22842	Red Hat Security Advisory: expat security update	2025-12-09T07:23:09+00:00	2025-12-09T15:03:26+00:00
rhsa-2025:22868	Red Hat Security Advisory: Insights proxy Container Image	2025-12-08T18:05:34+00:00	2025-12-08T22:41:28+00:00
rhsa-2025:22863	Red Hat Security Advisory: OpenShift Container Platform 4.17.45 CNF IBU extras update	2025-12-08T16:08:23+00:00	2025-12-08T16:10:54+00:00
rhsa-2025:22861	Red Hat Security Advisory: Red Hat Developer Hub 1.8.1 release.	2025-12-08T15:17:40+00:00	2025-12-09T21:23:33+00:00
rhsa-2025:22801	Red Hat Security Advisory: kernel security update	2025-12-08T03:20:22+00:00	2025-12-08T06:45:24+00:00

ID	Description	Published	Updated
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-338-07	Advantech iView	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-06	SolisCloud Monitoring Platform	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-05	Sunbird DCIM dcTrack and Power IQ	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-04	Johnson Controls iSTAR	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-03	Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-02	MAXHUB Pivot	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-01	Mitsubishi Electric GX Works2	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsma-25-336-01	Mirion Medical EC2 Software NMIS BioDose	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-02	Iskra iHUB and iHUB Lite	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-01	Industrial Video & Control Longwatch	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-329-06	SiRcom SMART Alert (SiSA)	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-05	Festo Compact Vision System, Control Block, Controller, and Operator Unit products	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-03	Zenitel TCIV-3+	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-02	Rockwell Automation Arena Simulation	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-04	Opto 22 groov View	2025-11-25T06:00:00.000000Z	2025-11-25T06:00:00.000000Z
icsa-25-324-06	Emerson Appleton UPSMON-PRO	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-01	Automated Logic WebCTRL Premium Server	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-03	Opto 22 GRV-EPIC and groov RIO	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-324-02	ICAM365 CCTV Camera Multiple Models	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-322-05	METZ CONNECT EWIO2	2025-11-18T12:00:00.000000Z	2025-11-18T12:00:00.000000Z
icsa-25-322-03	Shelly Pro 3EM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-322-02	Shelly Pro 4PM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-317-12	Siemens Spectrum Power 4	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-11	Siemens SICAM P850 family and SICAM P855 family	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-10	Rockwell Automation AADvance-Trusted SIS Workstation	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-09	Rockwell Automation FactoryTalk Policy Manager	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-07	Rockwell Automation FactoryTalk DataMosaix Private Cloud	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-08T22:30:06+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00

ID	Description	Published	Updated
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
sca-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
sca-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
sca-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
sca-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z

ID	Description	Published	Updated
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2025-64680	Windows DWM Core Library Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64679	Windows DWM Core Library Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64678	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64673	Windows Storage VSP Driver Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64672	Microsoft SharePoint Server Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64671	GitHub Copilot for Jetbrains Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64670	Windows DirectX Information Disclosure Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64667	Microsoft Exchange Server Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64666	Microsoft Exchange Server Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64661	Windows Shell Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64658	Windows File Explorer Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62573	DirectX Graphics Kernel Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62572	Application Information Service Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62571	Windows Installer Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62570	Windows Camera Frame Server Monitor Information Disclosure Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62569	Microsoft Brokering File System Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62567	Windows Hyper-V Denial of Service Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62565	Windows File Explorer Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62564	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62563	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62562	Microsoft Outlook Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62561	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62560	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62559	Microsoft Word Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62558	Microsoft Word Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62557	Microsoft Office Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62556	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62555	Microsoft Word Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62554	Microsoft Office Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62553	Microsoft Excel Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z

ID	Description	Published	Updated
4hzm000603	ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC)	2025-11-27T00:30:00.000Z	2025-11-28T00:30:00.000Z
7paa022088	Edgenius Management Portal Authentication Bypass	2025-11-20T00:30:00.000Z	2025-11-20T00:30:00.000Z
2nga002813	PCM600 SharpZip library vulnerability	2025-11-03T00:30:00.000Z	2025-11-03T00:30:00.000Z
9akk108471a8948	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-10-20T00:30:00.000Z	2025-10-21T00:30:00.000Z
4tz00000006007	ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations	2025-10-20T00:30:00.000Z	2025-10-23T00:30:00.000Z
4tz00000006008	LVS MConfig Insecure memory handling	2025-10-08T00:30:00.000Z	2025-10-08T00:30:00.000Z
sa25p003	B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-14T00:30:00.000Z
sa25p002	B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7808	EIBPORT Reflected XSS	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a8107	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-09-16T00:30:00.000Z	2025-11-28T08:00:00.000Z
9akk108471a7121	FLXeon Controllers Multiple vulnerabilities	2025-09-09T00:30:00.000Z	2025-09-18T00:30:00.000Z
2nga002743	ABB AbilityTM zenon Remote Transport Vulnerability	2025-08-12T00:30:00.000Z	2025-08-12T00:30:00.000Z
9akk108471a4462	ELSB/BLBA ASPECT advisory several CVEs	2025-08-11T00:30:00.000Z	2025-09-04T00:30:00.000Z
3adr011432	AC500 V2 Buffer overread on Modbus protocol	2025-07-23T00:30:00.000Z	2025-07-23T00:30:00.000Z
9akk108471a4556	Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode.	2025-07-21T00:30:00.000Z	2025-07-21T00:30:00.000Z
9akk108471a3623	RMC - 100 Vulnerabilities in web UI (REST Interface)	2025-07-03T00:30:00.000Z	2025-08-18T00:30:00.000Z
2crt000008	Lite Panel Pro Vulnerability in Session Management	2025-06-26T00:30:00.000Z	2025-06-26T00:30:00.000Z
9akk108471a1621	EIBPORT Session Management Fail	2025-06-02T00:30:00.000Z	2025-06-04T00:30:00.000Z
9akk108470a8948	ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway.	2025-05-29T00:30:00.000Z	2025-06-05T00:30:00.000Z
9akk108471a0021	ELSB/BLBA ASPECT advisory several CVEs	2025-05-22T00:30:00.000Z	2025-05-23T10:30:00.000Z
2crt000006	ANC – ABB Network Card Multiple vulnerabilities in ANC	2025-04-30T00:30:00.000Z	2025-04-30T00:30:00.000Z
3adr011407	ABB Automation Builder Vulnerabilities in user management and access control	2025-04-30T00:00:00.000Z	2025-07-25T00:00:00.000Z
2crt000007	Ekip Com IEC61850 Vulnerability in 3rd Party Library	2025-04-29T00:30:00.000Z	2025-04-29T00:30:00.000Z
3kxg200000r4801	CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability	2025-04-16T00:30:00.000Z	2025-10-20T00:30:00.000Z
9akk108470a9989	ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities	2025-04-10T08:30:00.000Z	2025-04-10T08:30:00.000Z
2nga002579	ABB Arctic communication solution ARM600 Vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
2nga002427	ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
9akk108470a9494	Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
9akk108470a9491	ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
sa24p015	B&R APROL Potential Privilege Escalation and Information Disclosure	2025-03-24T00:30:00.000Z	2025-03-24T00:30:00.000Z

ID	Description	Updated
var-202407-2188	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:32.699000Z
var-202406-3119	Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s…	2024-07-23T22:46:22.685000Z
var-202407-1740	NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha…	2024-07-23T22:46:18.378000Z
var-202407-1417	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:07.784000Z
var-202407-1103	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:01.992000Z
var-202407-0957	WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile…	2024-07-23T22:45:59.391000Z
var-202407-0819	SIMATIC S7-1500 is a modular control system suitable for various automation applications …	2024-07-23T22:45:56.958000Z
var-202407-0818	NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6…	2024-07-23T22:45:56.946000Z
var-202407-0779	Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of …	2024-07-23T22:45:56.150000Z
var-202407-0778	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:56.131000Z
var-202407-0745	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:55.498000Z
var-202305-1479	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution …	2024-07-23T22:45:09.335000Z
var-202108-1158	A race condition was addressed with improved locking. This issue is fixed in macOS Monter…	2024-07-23T22:44:06.976000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-07-23T22:43:49.590000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-07-23T22:43:25.614000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-07-23T22:41:43.584000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-07-23T22:41:20.004000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-07-23T22:41:18.832000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-07-23T22:41:17.171000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-07-23T22:41:16.554000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-07-23T22:41:04.279000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-07-23T22:40:53.160000Z
var-202305-1588	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit…	2024-07-23T22:40:05.297000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-07-23T22:39:32.535000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-07-23T22:39:32.874000Z
var-201706-0017	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie…	2024-07-23T22:38:34.494000Z
var-202305-1520	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul…	2024-07-23T22:38:26.576000Z
var-202407-0490	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP …	2024-07-23T22:38:24.768000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-07-23T22:37:44.850000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-07-23T22:37:43.471000Z

ID	Description	Published	Updated
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-08T17:48+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-11-21T15:31+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00
jvndb-2025-000099	Progress Flowmon vulnerable to authenticated OS command injection	2025-11-04T12:47+09:00	2025-11-04T12:47+09:00
jvndb-2025-000096	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	2025-10-29T14:17+09:00	2025-10-29T14:17+09:00
jvndb-2025-000095	MZK-DP300N uses hard-coded credentials	2025-10-28T14:04+09:00	2025-10-28T14:04+09:00
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000091	I-O DATA NarSuS App registers a Windows service with an unquoted file path	2025-10-22T15:04+09:00	2025-10-22T15:04+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2025:4320-1	Security update for the Linux Kernel	2025-12-04T10:04:32Z	2025-12-04T10:04:32Z
suse-su-2025:4319-1	Security update for cups	2025-12-03T12:34:14Z	2025-12-03T12:34:14Z
suse-su-2025:4315-1	Security update for the Linux Kernel	2025-12-01T10:12:39Z	2025-12-01T10:12:39Z
suse-su-2025:4313-1	Security update for python	2025-12-01T09:29:19Z	2025-12-01T09:29:19Z
suse-su-2025:4311-1	Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)	2025-11-28T16:33:27Z	2025-11-28T16:33:27Z
suse-su-2025:4310-1	Security update for libcryptopp	2025-11-28T15:54:32Z	2025-11-28T15:54:32Z
suse-su-2025:4309-1	Security update for curl	2025-11-28T15:40:02Z	2025-11-28T15:40:02Z
suse-su-2025:4308-1	Security update for glib2	2025-11-28T15:38:47Z	2025-11-28T15:38:47Z
suse-su-2025:4306-1	Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)	2025-11-28T14:03:42Z	2025-11-28T14:03:42Z
suse-su-2025:4305-1	Security update for grub2	2025-11-28T13:33:43Z	2025-11-28T13:33:43Z
suse-su-2025:4302-1	Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7)	2025-11-28T13:04:17Z	2025-11-28T13:04:17Z
suse-su-2025:4301-1	Security update for the Linux Kernel	2025-11-28T12:59:04Z	2025-11-28T12:59:04Z
suse-su-2025:4300-1	Security update for curl	2025-11-28T12:57:53Z	2025-11-28T12:57:53Z
suse-su-2025:4297-1	Security update for python311	2025-11-28T10:03:21Z	2025-11-28T10:03:21Z
suse-su-2025:4291-1	Security update for libmicrohttpd	2025-11-28T09:06:47Z	2025-11-28T09:06:47Z
suse-su-2025:4290-1	Security update for cups	2025-11-28T09:04:34Z	2025-11-28T09:04:34Z
suse-su-2025:4289-1	Security update for cups	2025-11-28T08:50:37Z	2025-11-28T08:50:37Z
suse-su-2025:4288-1	Security update for containerd	2025-11-28T08:25:49Z	2025-11-28T08:25:49Z
suse-su-2025:4287-1	Security update for java-25-openjdk	2025-11-28T08:23:45Z	2025-11-28T08:23:45Z
suse-su-2025:4285-1	Security update for the Linux Kernel (Live Patch 62 for SUSE Linux Enterprise 15 SP3)	2025-11-27T22:34:36Z	2025-11-27T22:34:36Z
suse-su-2025:4283-1	Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP5)	2025-11-27T19:04:00Z	2025-11-27T19:04:00Z
suse-su-2025:4282-1	Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP6)	2025-11-27T16:34:16Z	2025-11-27T16:34:16Z
suse-su-2025:4281-1	Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4)	2025-11-27T15:04:07Z	2025-11-27T15:04:07Z
suse-su-2025:4278-1	Security update for glib2	2025-11-27T13:13:51Z	2025-11-27T13:13:51Z
suse-su-2025:4277-1	Security update for python313	2025-11-27T13:13:43Z	2025-11-27T13:13:43Z
suse-su-2025:21082-1	Security update for libvirt	2025-11-27T10:24:18Z	2025-11-27T10:24:18Z
suse-su-2025:4275-1	Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6)	2025-11-27T10:04:14Z	2025-11-27T10:04:14Z
suse-su-2025:4274-1	Security update for buildah	2025-11-27T08:13:05Z	2025-11-27T08:13:05Z
suse-su-2025:4273-1	Security update for rubygem-rack	2025-11-27T08:12:25Z	2025-11-27T08:12:25Z
suse-su-2025:4272-1	Security update for gnutls	2025-11-27T08:11:48Z	2025-11-27T08:11:48Z

ID	Description	Published	Updated
opensuse-su-2025:15802-1	corepack24-24.11.1-2.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15801-1	libpng16-16-1.6.52-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15800-1	kdeconnect-kde-25.11.90-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15797-1	libpng12-0-1.2.59-4.1 on GA media	2025-12-04T00:00:00Z	2025-12-04T00:00:00Z
opensuse-su-2025:15796-1	go1.24-1.24.11-1.1 on GA media	2025-12-04T00:00:00Z	2025-12-04T00:00:00Z
opensuse-su-2025-20135-1	Security update for mozjs128	2025-12-03T20:41:04Z	2025-12-03T20:41:04Z
opensuse-su-2025:15795-1	go1.25-1.25.5-1.1 on GA media	2025-12-03T00:00:00Z	2025-12-03T00:00:00Z
opensuse-su-2025:15794-1	chromedriver-143.0.7499.40-2.1 on GA media	2025-12-03T00:00:00Z	2025-12-03T00:00:00Z
opensuse-su-2025-20133-1	Security update for python-cbor2	2025-12-02T13:51:41Z	2025-12-02T13:51:41Z
opensuse-su-2025-20132-1	Security update for strongswan	2025-12-02T13:11:59Z	2025-12-02T13:11:59Z
opensuse-su-2025:15793-1	gegl-0.4.64-3.1 on GA media	2025-12-02T00:00:00Z	2025-12-02T00:00:00Z
opensuse-su-2025:15792-1	python39-3.9.24-2.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15791-1	python315-3.15.0~a1-2.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15790-1	python-mistralclient-doc-6.1.0-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15789-1	libecpg6-18.1-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15788-1	lightdm-kde-greeter-6.0.5-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025-20130-1	Security update for bash-git-prompt	2025-11-28T13:38:03Z	2025-11-28T13:38:03Z
opensuse-su-2025-20128-1	Security update for shadowsocks-v2ray-plugin, v2ray-core	2025-11-28T13:38:03Z	2025-11-28T13:38:03Z
opensuse-su-2025-20125-1	Security update for java-17-openjdk	2025-11-28T10:27:02Z	2025-11-28T10:27:02Z
opensuse-su-2025-20123-1	Security update for java-21-openjdk	2025-11-28T09:35:08Z	2025-11-28T09:35:08Z
opensuse-su-2025-20122-1	Security update for openssh	2025-11-28T07:46:24Z	2025-11-28T07:46:24Z
opensuse-su-2025:15787-1	python311-salt-3006.0-52.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15786-1	postgresql17-17.7-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15785-1	postgresql16-16.11-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15784-1	postgresql15-15.15-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15783-1	postgresql14-14.20-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15782-1	postgresql13-13.23-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15781-1	libpng16-16-1.6.51-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15780-1	libcoap-devel-4.3.5a-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15779-1	helm3-3.19.2-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z

ID	Description	Published	Updated
cnvd-2025-30213	NVIDIA TAO资源加载漏洞	2025-12-04	2025-12-05
cnvd-2025-29924	Meta React Server Components远程代码执行漏洞	2025-12-04	2025-12-04
cnvd-2025-29923	ZEIT Next.js远程代码执行漏洞	2025-12-04	2025-12-04
cnvd-2025-30126	Devolutions Server存在未明漏洞（CNVD-2025-30126）	2025-12-03	2025-12-05
cnvd-2025-30125	Devolutions Server存在未明漏洞	2025-12-03	2025-12-05
cnvd-2025-30124	Devolutions Server SQL注入漏洞	2025-12-03	2025-12-05
cnvd-2025-29955	WordPress StreamTube Core plugin任意用户密码更改漏洞	2025-12-03	2025-12-04
cnvd-2025-29954	WordPress Nextend Social Login and Register plugin跨站请求伪造漏洞	2025-12-03	2025-12-04
cnvd-2025-29953	WordPress Arconix Shortcodes plugin跨站脚本漏洞	2025-12-03	2025-12-04
cnvd-2025-30215	Wireshark缓冲区溢出漏洞（CNVD-2025-30215）	2025-11-28	2025-12-04
cnvd-2025-30214	Cisco Catalyst Center Virtual Appliance访问控制错误漏洞	2025-11-28	2025-12-04
cnvd-2025-29956	WordPress TAX SERVICE Electronic HDM缺少授权漏洞	2025-11-28	2025-12-04
cnvd-2025-29934	WordPress houzez跨站脚本漏洞	2025-11-28	2025-12-03
cnvd-2025-30208	Blog Site admin.php文件授权不当漏洞	2025-11-27	2025-12-05
cnvd-2025-30207	Blog Site blog.php文件SQL注入漏洞	2025-11-27	2025-12-05
cnvd-2025-29967	WordPress插件Blog2Social: Social Media Auto Post & Scheduler存在未明漏洞	2025-11-27	2025-12-04
cnvd-2025-29966	WordPress插件atec Duplicate Page & Post存在未明漏洞	2025-11-27	2025-12-04
cnvd-2025-29959	WordPress Refund Request for WooCommerce plugin未经授权的数据修改漏洞	2025-11-27	2025-12-04
cnvd-2025-29958	WordPress ProjectList plugin任意文件上传漏洞	2025-11-27	2025-12-04
cnvd-2025-29957	WordPress ProjectList plugin SQL注入漏洞	2025-11-27	2025-12-04
cnvd-2025-29938	ASUS Router堆栈缓冲区溢出漏洞	2025-11-27	2025-12-03
cnvd-2025-29937	ASUS Router路径遍历漏洞（CNVD-2025-29937）	2025-11-27	2025-12-03
cnvd-2025-29936	ASUS Router身份验证绕过漏洞（CNVD-2025-29936）	2025-11-27	2025-12-03
cnvd-2025-29935	ASUS Router整数下溢漏洞	2025-11-27	2025-12-03
cnvd-2025-29870	Library System return.php文件SQL注入漏洞	2025-11-27	2025-12-03
cnvd-2025-29869	Library System index.php文件SQL注入漏洞	2025-11-27	2025-12-03
cnvd-2025-29868	Library System mail.php文件SQL注入漏洞	2025-11-27	2025-12-03
cnvd-2025-29783	ASUS Router路径遍历漏洞	2025-11-27	2025-12-03
cnvd-2025-29782	ASUS Router命令注入漏洞	2025-11-27	2025-12-03
cnvd-2025-29781	ASUS Router身份验证绕过漏洞	2025-11-27	2025-12-03

ID	Description	Published	Updated
certfr-2025-avi-1083	Multiples vulnérabilités dans les produits Siemens	2025-12-09T00:00:00.000000	2025-12-09T00:00:00.000000
certfr-2025-avi-1082	Multiples vulnérabilités dans les produits Microsoft	2025-12-09T00:00:00.000000	2025-12-09T00:00:00.000000
certfr-2025-avi-1081	Vulnérabilité dans Citrix XenServer	2025-12-09T00:00:00.000000	2025-12-09T00:00:00.000000
certfr-2025-avi-1080	Multiples vulnérabilités dans VMware Tanzu RabbitMQ	2025-12-09T00:00:00.000000	2025-12-09T00:00:00.000000
certfr-2025-avi-1079	Multiples vulnérabilités dans les produits SAP	2025-12-09T00:00:00.000000	2025-12-09T00:00:00.000000
certfr-2025-avi-1078	Multiples vulnérabilités dans les produits Microsoft	2025-12-08T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-avi-1077	Multiples vulnérabilités dans Traefik	2025-12-08T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-avi-1076	Multiples vulnérabilités dans MISP	2025-12-08T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-avi-1075	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1074	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1073	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1072	Multiples vulnérabilités dans les produits IBM	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1071	Multiples vulnérabilités dans Apache HTTP Server	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1070	Multiples vulnérabilités dans Microsoft CBL Mariner	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1069	Multiples vulnérabilités dans Microsoft Edge	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1068	Vulnérabilité dans Python	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1067	Vulnérabilité dans Apache Struts	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1066	Multiples vulnérabilités dans les produits Nextcloud	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1065	Multiples vulnérabilités dans NetApp ONTAP	2025-12-05T00:00:00.000000	2025-12-05T00:00:00.000000
certfr-2025-avi-1064	Multiples vulnérabilités dans les produits Microsoft	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1063	Multiples vulnérabilités dans les produits Splunk	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1062	Multiples vulnérabilités dans Wireshark	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1061	Vulnérabilité dans PostgreSQL PgBouncer	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1060	Multiples vulnérabilités dans Python	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1059	Multiples vulnérabilités dans Google Pixel	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1058	Multiples vulnérabilités dans Google Chrome	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1057	Multiples vulnérabilités dans les produits VMware	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
certfr-2025-avi-1056	Multiples vulnérabilités dans Google Android	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
CERTFR-2025-AVI-1057	Multiples vulnérabilités dans les produits VMware	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
CERTFR-2025-AVI-1056	Multiples vulnérabilités dans Google Android	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000

ID	Description	Published	Updated
certfr-2025-ale-014	Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-ale-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
certfr-2025-ale-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
certfr-2025-ale-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
CERTFR-2025-ALE-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
certfr-2025-ale-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
certfr-2025-ale-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
CERTFR-2025-ALE-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
certfr-2025-ale-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
certfr-2025-ale-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
CERTFR-2025-ALE-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
certfr-2025-ale-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
certfr-2025-ale-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
CERTFR-2025-ALE-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2024-ale-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000
CERTFR-2024-ALE-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000
certfr-2025-ale-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-ALE-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
certfr-2024-ale-015	[MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2025-0029	6.3 (4.0)	Reflected cross-site scripting (XSS) vulnerabilities i…	misp	misp	2025-11-27T12:41:00.000Z	2025-11-27T12:48:51.085860Z
GCVE-1-2025-0028	8.5 (4.0)	Information leakage vulnerability in the MISP Feed con…	misp	misp	2025-11-27T07:23:00.000Z	2025-12-02T08:51:35.429494Z
GCVE-1-2025-0027	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-27T07:17:00.000Z	2025-12-02T08:51:04.323899Z
GCVE-1-2025-0026	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:35:00.000Z	2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:27:00.000Z	2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024	9.4 (4.0)	cross-site scripting (XSS) vulnerability in the MISP s…	misp	misp	2025-11-26T16:14:00.000Z	2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023	9.4 (4.0)	XSS in MISP server comparison tool	misp	misp	2025-11-26T16:10:00.000Z	2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022	9.4 (4.0)	Clarified setting's impact on download_attachments_on_load	misp	misp	2025-11-26T16:04:00.000Z	2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021	9.4 (4.0)	XSS in MISP ReST client in HTML view	misp	misp	2025-11-26T15:55:00.000Z	2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020	9.4 (4.0)	cross-site scripting (XSS) in Galaxy element JSON view	misp	misp	2025-11-26T15:49:00.000Z	2025-12-02T08:47:41.151429Z
GCVE-1-2025-0019	4 (4.0)	Path traversal vulnerability in EventReport for site-admin	misp	misp	2025-11-26T14:47:00.000Z	2025-11-28T07:27:42.721350Z
GCVE-1-2025-0018	9.4 (4.0)	HTML injection issue was identified in Lookyloo’s web …	lookyloo	lookyloo	2025-11-18T15:33:00.000Z	2025-11-18T20:39:45.579295Z
GCVE-1-2025-0017	9.4 (4.0)	Privilege escalation in Cerebrate allows an authentica…	cerebrate	cerebrate	2025-11-12T08:15:00.000Z	2025-11-28T07:22:08.205835Z
GCVE-1-2025-0016	6 (4.0)	Local file inclusion in [ImportFromUrl() URL hand…	misp	misp	2025-11-04T09:20:00.000Z	2025-11-04T09:56:38.383646Z
GCVE-1-2025-0015	9 (4.0)	Potential XSS in decaying simulation tool	misp	misp	2025-11-04T09:06:00.000Z	2025-11-04T09:06:59.216121Z
GCVE-1-2025-0014	9.4 (4.0)	XSS in event report via Mermaid diagram	misp	misp	2025-11-04T08:58:00.024516Z	2025-11-04T08:58:00.024516Z
GCVE-1-2025-0013	9.4 (4.0)	Vulnerability in sharing group blueprints allowing sha…	misp	misp	2025-11-04T08:49:21.558087Z	2025-11-04T08:49:21.558087Z
GCVE-1-2025-0012	N/A	Potential vulnerability in file check upload but non-e…	misp	misp	2025-11-04T07:20:00.000Z	2025-11-28T07:16:21.589449Z
GCVE-1-2025-0011	9.4 (4.0)	Arbitrary file inclusion / deletion via import modules…	misp	misp	2025-11-04T07:01:25.464225Z	2025-11-04T07:01:25.464225Z
GCVE-1-2025-0010	6.3 (4.0)	Arbitrary file hash inclusion via templates accessible…	misp	misp	2025-11-04T06:25:11.108987Z	2025-11-04T06:25:11.108987Z
GCVE-1-2025-0009	6.4 (4.0)	A pre-auth user could self-assign a reporter without b…	CIRCL	vulnerability-lookup	2025-10-13T09:20:24.800890Z	2025-10-13T09:20:24.800890Z
GCVE-1-2025-0008	7 (4.0)	Logged users can view vulnerability disclosure comment…	CIRCL	vulnerability-lookup	2025-10-13T09:10:00.000Z	2025-10-13T09:15:31.637686Z
GCVE-1-2025-0007	4.5 (4.0)	Missing email validation on user management	CIRCL	vulnerability-lookup	2025-10-13T08:37:00.000Z	2025-10-13T08:51:37.408861Z
GCVE-1-2025-0006	9.3 (4.0)	Potential XSS in admin CPE in organization model	CIRCL	vulnerability-lookup	2025-10-13T08:29:00.000Z	2025-10-13T08:52:23.411325Z
GCVE-1-2025-0005	9.4 (4.0)	Reflected XSS due to insecure use of Markup	CIRCL	vulnerability-lookup	2025-10-13T08:23:29.812914Z	2025-10-13T08:23:29.812914Z
GCVE-1-2025-0004	10 (4.0)	XSS in Comments, Bundles, and Sightings component of v…	CIRCL	vulnerability-lookup	2025-09-25T14:10:00.000Z	2025-11-19T10:16:47.656802Z
GCVE-1-2025-0003	9.3 (4.0)	Incorrect ACL for user settings edit, which previ…	cerebrate	cerebrate	2025-08-22T12:33:00.000Z	2025-08-23T07:55:10.950332Z
GCVE-1-2025-0002	8.9 (4.0)	Command Injection in Cl0p Exfiltration Python Script	Cl0p ransomware	exfiltration	2025-07-01T08:19:00.000Z	2025-07-01T10:58:58.443468Z
GCVE-1-2025-0001	5.3 (4.0)	The absence of a password confirmation step when deact…	CIRCL	Vulnerability-Lookup	2025-05-27T08:58:00.000Z	2025-05-30T14:27:56.273945Z

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	9.1 (3.1)	HexStrike AI MCP Server Command Injection	0x4m4	HexStrike AI	2025-11-30T21:27:56.057Z	2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100	6.5 (3.1)	Abilis CPX Fallback Shell Connection Relay	Abilis	CPX	2025-11-04T00:23:23.924Z	2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z