Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-7195	5.2 (3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2025-12-30T15:40:11.264Z
CVE-2025-15218	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda AC10U POST Request Parameter AdvSetLanip fromadv…	Tenda	AC10U	2025-12-30T03:32:08.254Z	2025-12-30T15:37:55.493Z
CVE-2025-15219	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	SohuTV CacheCloud MachineManageController.java doPodLi…	SohuTV	CacheCloud	2025-12-30T04:02:07.018Z	2025-12-30T15:37:03.221Z
CVE-2025-15254	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	Tenda W6-S ATE Service ate TendaAte os command injection	Tenda	W6-S	2025-12-30T15:32:07.822Z	2025-12-30T15:35:22.187Z
CVE-2025-68995	4.3 (3.1)	WordPress My Sticky Elements plugin <= 2.3.3 - Broken …	Gal Dubinski	My Sticky Elements	2025-12-30T10:47:51.492Z	2025-12-30T15:33:13.996Z
CVE-2025-66877	7.5 (3.1)	Buffer overflow vulnerability in function dcputch…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T15:24:13.771Z
CVE-2025-15220	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	SohuTV CacheCloud LoginController.java init cross site…	SohuTV	CacheCloud	2025-12-30T04:32:07.020Z	2025-12-30T15:23:53.739Z
CVE-2025-66869	7.5 (3.1)	Buffer overflow vulnerability in function strcat …	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T15:23:04.733Z
CVE-2025-68996	7.5 (3.1)	WordPress Responsive Posts Carousel Pro plugin <= 15.1…	WebCodingPlace	Responsive Posts Carousel Pro	2025-12-30T10:47:51.680Z	2025-12-30T15:22:57.395Z
CVE-2025-66862	7.5 (3.1)	A buffer overflow vulnerability in function gnu_s…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T15:21:46.591Z
CVE-2025-66865	7.5 (3.1)	An issue was discovered in function d_print_comp_…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T15:20:39.997Z
CVE-2025-66863	7.5 (3.1)	An issue was discovered in function d_discriminat…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T15:19:15.437Z
CVE-2025-15221	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	SohuTV CacheCloud AppDataMigrateController.java index …	SohuTV	CacheCloud	2025-12-30T05:02:05.317Z	2025-12-30T15:08:29.719Z
CVE-2025-15253	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 exeCommand stack-based overflow	Tenda	M3	2025-12-30T15:02:06.940Z	2025-12-30T15:02:06.940Z
CVE-2025-15222	2.3 (4.0) 5 (3.1) 5 (3.0)	Dromara Sa-Token SaSerializerTemplateForJdkUseBase64.j…	Dromara	Sa-Token	2025-12-30T05:32:05.705Z	2025-12-30T14:56:32.958Z
CVE-2025-68997	5.3 (3.1)	WordPress wpDiscuz plugin <= 7.6.40 - Insecure Direct …	AdvancedCoding	wpDiscuz	2025-12-30T10:47:51.914Z	2025-12-30T14:53:58.866Z
CVE-2025-15229	6.9 (4.0) 5.3 (3.1) 5.3 (3.0)	Tenda CH22 DhcpListClient fromDhcpListClient denial of…	Tenda	CH22	2025-12-30T06:02:07.970Z	2025-12-30T14:51:09.821Z
CVE-2025-15230	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setVlanPolicyData formSetVlanPolicy heap-base…	Tenda	M3	2025-12-30T06:32:07.597Z	2025-12-30T14:50:28.070Z
CVE-2025-15231	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setVlanInfo formSetRemoteVlanInfo stack-based…	Tenda	M3	2025-12-30T07:02:06.664Z	2025-12-30T14:48:44.393Z
CVE-2025-15232	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setAdPushInfo formSetAdPushInfo stack-based o…	Tenda	M3	2025-12-30T07:32:09.836Z	2025-12-30T14:48:12.802Z
CVE-2025-15233	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setAdInfoDetail formSetAdInfoDetails heap-bas…	Tenda	M3	2025-12-30T08:02:06.822Z	2025-12-30T14:46:51.690Z
CVE-2025-68998	5.4 (3.1)	WordPress Heateor Social Login plugin <= 1.1.39 - Cros…	Heateor Support	Heateor Social Login	2025-12-30T10:47:52.118Z	2025-12-30T14:46:17.094Z
CVE-2025-69007	5.9 (3.1)	WordPress Popping Sidebars and Widgets Light plugin <=…	OTWthemes	Popping Sidebars and Widgets Light	2025-12-30T10:47:52.485Z	2025-12-30T14:45:00.417Z
CVE-2025-15252	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based …	Tenda	M3	2025-12-30T14:32:07.886Z	2025-12-30T14:42:52.886Z
CVE-2025-57462	6.1 (3.1)	Stored cross-site scripting (xss) in machsol mach…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T14:42:39.714Z
CVE-2025-15234	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setInternetLanInfo formSetRemoteInternetLanIn…	Tenda	M3	2025-12-30T08:32:06.259Z	2025-12-30T14:41:34.984Z
CVE-2025-15241	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	CloudPanel Community Edition HTTP Header users redirect	CloudPanel	Community Edition	2025-12-30T09:02:07.225Z	2025-12-30T14:41:02.720Z
CVE-2025-69018	6.5 (3.1)	WordPress Web Directory Free plugin <= 1.7.12 - Cross …	Shamalli	Web Directory Free	2025-12-30T10:47:54.463Z	2025-12-30T14:35:28.973Z
CVE-2025-69006	5.9 (3.1)	WordPress AM Events plugin <= 1.13.1 - Cross Site Scri…	Atte Moisio	AM Events	2025-12-30T10:47:52.307Z	2025-12-30T14:33:45.538Z
CVE-2025-69015	3.8 (3.1)	WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A…	Automattic	Crowdsignal Forms	2025-12-30T10:47:53.892Z	2025-12-30T14:32:06.209Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-65239	4.3 (3.1)	Incorrect access control in the /aux1/ocussd/trac…	n/a	n/a	2025-11-26T00:00:00.000Z	2025-11-26T16:40:51.938Z
CVE-2025-26155	9.8 (3.1)	NCP Secure Enterprise Client 13.18 and NCP Secure…	n/a	n/a	2025-11-26T00:00:00.000Z	2025-12-02T16:57:56.487Z
CVE-2025-13742	2.4 (4.0)	Limited HTML injection in emails	pretix	pretix	2025-11-27T11:04:36.990Z	2025-11-28T15:22:05.481Z
CVE-2025-65681	3.3 (3.1)	An issue was discovered in Overhang.IO (tutor-ope…	n/a	n/a	2025-11-26T00:00:00.000Z	2025-11-28T21:01:18.964Z
CVE-2025-65276	9.8 (3.1)	An unauthenticated administrative access vulnerab…	n/a	n/a	2025-11-26T00:00:00.000Z	2025-12-01T19:15:42.318Z
CVE-2025-65278	7.5 (3.1)	An issue was discovered in file users.json in Gro…	n/a	n/a	2025-11-26T00:00:00.000Z	2025-11-28T16:59:39.172Z
CVE-2025-40934	9.3 (3.1)	XML-Sig prior to 0.68 for Perl improperly validates XM…	TIMLEGGE	XML::Sig	2025-11-26T22:34:33.569Z	2025-11-28T18:54:00.742Z
CVE-2025-12758	7.5 (3.1)	Versions of the package validator before 13.15.22…	n/a	validator	2025-11-27T05:00:01.916Z	2025-12-03T16:27:57.965Z
CVE-2025-69020	6.5 (3.1)	WordPress Newsletters plugin <= 4.12 - Cross Site Scri…	Tribulant Software	Newsletters	2025-12-30T10:47:54.856Z	2025-12-30T14:16:36.914Z
CVE-2025-69019	6.5 (3.1)	WordPress FlippingBook plugin <= 2.0.1 - Cross Site Sc…	FlippingBook	FlippingBook	2025-12-30T10:47:54.668Z	2025-12-30T14:26:03.272Z
CVE-2025-69018	6.5 (3.1)	WordPress Web Directory Free plugin <= 1.7.12 - Cross …	Shamalli	Web Directory Free	2025-12-30T10:47:54.463Z	2025-12-30T14:35:28.973Z
CVE-2025-69017	6.5 (3.1)	WordPress RestroPress plugin <= 3.2.4.2 - Cross Site S…	Magnigenie	RestroPress	2025-12-30T10:47:54.276Z	2025-12-30T14:28:12.623Z
CVE-2025-69016	4.3 (3.1)	WordPress Shortcodes and extra features for Phlox them…	averta	Shortcodes and extra features for Phlox theme	2025-12-30T10:47:54.087Z	2025-12-30T14:30:37.846Z
CVE-2025-69015	3.8 (3.1)	WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken A…	Automattic	Crowdsignal Forms	2025-12-30T10:47:53.892Z	2025-12-30T14:32:06.209Z
CVE-2025-69012	4.3 (3.1)	WordPress Event Organiser plugin <= 3.12.8 - Broken Ac…	Stephen Harris	Event Organiser	2025-12-30T10:47:53.274Z	2025-12-30T14:09:56.619Z
CVE-2025-69007	5.9 (3.1)	WordPress Popping Sidebars and Widgets Light plugin <=…	OTWthemes	Popping Sidebars and Widgets Light	2025-12-30T10:47:52.485Z	2025-12-30T14:45:00.417Z
CVE-2025-69006	5.9 (3.1)	WordPress AM Events plugin <= 1.13.1 - Cross Site Scri…	Atte Moisio	AM Events	2025-12-30T10:47:52.307Z	2025-12-30T14:33:45.538Z
CVE-2025-68998	5.4 (3.1)	WordPress Heateor Social Login plugin <= 1.1.39 - Cros…	Heateor Support	Heateor Social Login	2025-12-30T10:47:52.118Z	2025-12-30T14:46:17.094Z
CVE-2025-68997	5.3 (3.1)	WordPress wpDiscuz plugin <= 7.6.40 - Insecure Direct …	AdvancedCoding	wpDiscuz	2025-12-30T10:47:51.914Z	2025-12-30T14:53:58.866Z
CVE-2025-57462	6.1 (3.1)	Stored cross-site scripting (xss) in machsol mach…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-30T14:42:39.714Z
CVE-2025-15253	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 exeCommand stack-based overflow	Tenda	M3	2025-12-30T15:02:06.940Z	2025-12-30T15:02:06.940Z
CVE-2025-15252	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda M3 setDhcpAP formSetRemoteDhcpForAp stack-based …	Tenda	M3	2025-12-30T14:32:07.886Z	2025-12-30T14:42:52.886Z
CVE-2025-13836	6.3 (4.0)	Excessive read buffering DoS in http.client	Python Software Foundation	CPython	2025-12-01T18:02:38.483Z	2025-12-22T20:03:45.491Z
CVE-2025-13806	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	nutzam NutzBoot Transaction API EthModule.java imprope…	nutzam	NutzBoot	2025-12-01T04:02:06.300Z	2025-12-01T14:48:59.487Z
CVE-2025-12106	9.1 (3.1)	Insufficient argument validation in OpenVPN 2.7_a…	OpenVPN	OpenVPN	2025-12-01T12:43:02.480Z	2025-12-01T18:50:28.995Z
CVE-2025-55129	5.4 (3.0)	HackerOne community member Kassem S.(kassem_s94) …	Revive	Revive Adserver	2025-12-02T01:42:06.085Z	2025-12-02T18:28:26.884Z
CVE-2025-69014	4.9 (3.1)	WordPress Youzify plugin <= 1.3.5 - Server Side Reques…	Youzify	Youzify	2025-12-30T10:47:53.707Z	2025-12-30T13:02:39.578Z
CVE-2025-69013	4.3 (3.1)	WordPress Stratum plugin <= 1.6.1 - Broken Access Cont…	jetmonsters	Stratum	2025-12-30T10:47:53.465Z	2025-12-30T13:06:32.023Z
CVE-2025-69010	5.3 (3.1)	WordPress Themebeez Toolkit plugin <= 1.3.5 - Broken A…	themebeez	Themebeez Toolkit	2025-12-30T10:47:53.090Z	2025-12-30T13:57:44.160Z
CVE-2025-69009	5.3 (3.1)	WordPress Medicalequipment theme <= 1.0.9 - Broken Acc…	kamleshyadav	Medicalequipment	2025-12-30T10:47:52.874Z	2025-12-30T13:34:54.169Z

ID	Description	Published	Updated
fkie_cve-2025-13806	A security vulnerability has been detected in nutzam NutzBoot up to 2.6.0-SNAPSHOT. This impacts an…	2025-12-01T05:16:00.013	2025-12-30T14:53:43.353
fkie_cve-2025-12106	Insufficient argument validation in OpenVPN 2.7_alpha1 through 2.7_rc1 allows an attacker to trigge…	2025-12-01T13:16:00.070	2025-12-30T14:52:06.967
fkie_cve-2025-55129	HackerOne community member Kassem S.(kassem_s94) has reported that username handling in Revive Adse…	2025-12-02T02:15:46.987	2025-12-30T14:31:58.787
fkie_cve-2025-69014	Server-Side Request Forgery (SSRF) vulnerability in Youzify Youzify youzify allows Server Side Requ…	2025-12-30T11:15:59.650	2025-12-30T14:15:53.970
fkie_cve-2025-69013	Missing Authorization vulnerability in jetmonsters Stratum stratum allows Exploiting Incorrectly Co…	2025-12-30T11:15:59.527	2025-12-30T14:15:53.803
fkie_cve-2025-69010	Missing Authorization vulnerability in themebeez Themebeez Toolkit themebeez-toolkit allows Exploit…	2025-12-30T11:15:59.290	2025-12-30T14:15:53.647
fkie_cve-2025-69009	Missing Authorization vulnerability in kamleshyadav Medicalequipment medicalequipment allows Exploi…	2025-12-30T11:15:59.167	2025-12-30T14:15:53.483
fkie_cve-2025-69008	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-30T11:15:59.053	2025-12-30T14:15:53.320
fkie_cve-2025-15251	A vulnerability was detected in beecue FastBee up to 2.1. Impacted is the function getRootElement o…	2025-12-30T14:15:53.130	2025-12-30T14:15:53.130
fkie_cve-2025-15250	A security vulnerability has been detected in 08CMS Novel System up to 3.4. This issue affects some…	2025-12-30T14:15:52.937	2025-12-30T14:15:52.937
fkie_cve-2025-15249	A weakness has been identified in zhujunliang3 work_platform up to 6bc5a50bb527ce27f7906d11ea6ec139…	2025-12-30T14:15:52.670	2025-12-30T14:15:52.670
fkie_cve-2023-54290	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-30T13:16:18.050	2025-12-30T14:15:52.597
fkie_cve-2023-54256	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-30T13:16:14.330	2025-12-30T14:15:52.533
fkie_cve-2023-54212	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-30T13:16:09.417	2025-12-30T14:15:52.480
fkie_cve-2023-54103	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-24T13:16:12.190	2025-12-30T14:15:52.413
fkie_cve-2023-54054	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-24T13:16:07.083	2025-12-30T14:15:52.357
fkie_cve-2022-50867	In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs …	2025-12-30T13:16:01.533	2025-12-30T14:15:51.963
fkie_cve-2022-50831	Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.	2025-12-30T13:15:57.597	2025-12-30T14:15:51.437
fkie_cve-2024-28864	SecureProps is a PHP library designed to simplify the encryption and decryption of property data in…	2024-03-18T22:15:09.247	2025-12-30T13:43:50.433
fkie_cve-2024-1432	UNSUPPORTED WHEN ASSIGNED A vulnerability was found in DeepFaceLab pretrained DF.wf.288res.38…	2024-02-11T03:15:08.930	2025-12-30T13:30:20.690
fkie_cve-2025-15248	A security flaw has been discovered in sunhailin12315 product-review 商品评价系统 up to 91ead6890b4065bb4…	2025-12-30T13:16:23.020	2025-12-30T13:16:23.020
fkie_cve-2025-14426	The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due…	2025-12-30T13:16:22.490	2025-12-30T13:16:22.490
fkie_cve-2024-58247	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.410	2025-12-30T13:16:22.410
fkie_cve-2024-58246	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.337	2025-12-30T13:16:22.337
fkie_cve-2024-58245	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.267	2025-12-30T13:16:22.267
fkie_cve-2024-58244	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.210	2025-12-30T13:16:22.210
fkie_cve-2024-58243	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.133	2025-12-30T13:16:22.133
fkie_cve-2024-58242	Rejected reason: REJECT DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was…	2025-12-30T13:16:22.073	2025-12-30T13:16:22.073
fkie_cve-2023-54326	In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Free …	2025-12-30T13:16:21.947	2025-12-30T13:16:21.947
fkie_cve-2023-54325	In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix out-of-bound…	2025-12-30T13:16:21.840	2025-12-30T13:16:21.840

ID	Severity	Description	Published	Updated
ghsa-x4m5-4cw8-vc44	6.0 (4.0)	axios-cache-interceptor Vulnerable to Cache Poisoning via Ignored HTTP Vary Header	2025-12-30T15:37:55Z	2025-12-30T15:37:55Z
ghsa-8wpr-639p-ccrj	6.9 (4.0)	Nest has a Fastify URL Encoding Middleware Bypass (TOCTOU)	2025-12-30T15:32:44Z	2025-12-30T15:32:44Z
ghsa-9cg9-4h4f-j6fg	7.5 (3.1)	phpMyFAQ has unauthenticated config backup download via /api/setup/backup	2025-12-30T15:31:19Z	2025-12-30T15:31:19Z
ghsa-5pmw-cmp3-g6wx	5.6 (3.1) 6.3 (4.0)	A vulnerability was detected in beecue FastBee up to 2.1. Impacted is the function getRootElement o…	2025-12-30T15:30:36Z	2025-12-30T15:30:37Z
ghsa-vfgj-f4g9-xh2h		In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential nul…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-r7xj-f632-276f	3.5 (3.1) 5.1 (4.0)	A weakness has been identified in zhujunliang3 work_platform up to 6bc5a50bb527ce27f7906d11ea6ec139…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-r67g-vmvr-rvjq		In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix out-of-bound…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-pc8q-ch37-jjrm	4.7 (3.1) 2.0 (4.0)	A security vulnerability has been detected in 08CMS Novel System up to 3.4. This issue affects some…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-mp4j-2q4v-gvfv	4.3 (3.1)	The Strong Testimonials plugin for WordPress is vulnerable to unauthorized modification of data due…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-jx25-4v2r-83c2		In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: perform…	2025-12-30T15:30:35Z	2025-12-30T15:30:36Z
ghsa-jp9m-rpm6-97j7		In the Linux kernel, the following vulnerability has been resolved: dm: fix a race condition in re…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-hrq7-rg66-qqxv		In the Linux kernel, the following vulnerability has been resolved: media: af9005: Fix null-ptr-de…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-gjjf-pwjw-673q		In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix mem…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-gc92-cfvx-57qj		In the Linux kernel, the following vulnerability has been resolved: tpm: tpm_vtpm_proxy: fix a rac…	2025-12-30T15:30:35Z	2025-12-30T15:30:36Z
ghsa-9rp2-rcxm-vpww		In the Linux kernel, the following vulnerability has been resolved: cxl/pmem: Fix nvdimm registrat…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-8m2v-q2gj-8gq3		In the Linux kernel, the following vulnerability has been resolved: dm flakey: don't corrupt the z…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-87qv-rjw5-q2ph		In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Free …	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-7984-m77j-cx8w		In the Linux kernel, the following vulnerability has been resolved: net/smc: use smc_lgr_list.lock…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-5jpm-q7cg-9gjh	8.8 (3.1) 7.4 (4.0)	A flaw has been found in Tenda M3 1.0.0.13(4903). The affected element is the function formSetRemot…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-5fqh-8g63-525q		In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer derefere…	2025-12-30T15:30:35Z	2025-12-30T15:30:36Z
ghsa-56vj-hg2h-5wm9	8.8 (3.1) 7.4 (4.0)	A vulnerability has been found in Tenda M3 1.0.0.13(4903). The impacted element is an unknown funct…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-52c3-vccj-p4f5		In the Linux kernel, the following vulnerability has been resolved: scsi: message: mptlan: Fix use…	2025-12-30T15:30:35Z	2025-12-30T15:30:36Z
ghsa-3rp4-j8x5-r3q5		In the Linux kernel, the following vulnerability has been resolved: arm64: set __exception_irq_ent…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-2jx2-7jpf-5pr4		In the Linux kernel, the following vulnerability has been resolved: pinctrl: at91-pio4: check retu…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-2fjh-g9hr-2x3g		In the Linux kernel, the following vulnerability has been resolved: refscale: Fix uninitalized use…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-2339-c258-4747	3.5 (3.1) 2.0 (4.0)	A security flaw has been discovered in sunhailin12315 product-review 商品评价系统 up to 91ead6890b4065bb4…	2025-12-30T15:30:36Z	2025-12-30T15:30:36Z
ghsa-xp6q-4ch5-xqhr		In the Linux kernel, the following vulnerability has been resolved: ext4: refuse to create ea bloc…	2025-12-30T15:30:35Z	2025-12-30T15:30:35Z
ghsa-v9cw-759q-rvpj		In the Linux kernel, the following vulnerability has been resolved: bcache: fixup btree_cache_wait…	2025-12-30T15:30:35Z	2025-12-30T15:30:35Z
ghsa-rj9v-3cx4-5wvc		In the Linux kernel, the following vulnerability has been resolved: media: av7110: prevent underfl…	2025-12-30T15:30:34Z	2025-12-30T15:30:35Z
ghsa-qw59-8j4j-9xwf		In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Fix NULL dereferen…	2025-12-30T15:30:35Z	2025-12-30T15:30:35Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-85	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.978434Z
pysec-2024-84	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.815196Z
pysec-2024-83	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.652331Z
pysec-2024-82	8.8 (3.1)	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.488172Z
pysec-2023-278	5.3 (3.1)	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2025-12-16T15:05:59.273145Z
pysec-2025-52		gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220		A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72		The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71		Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	10.0 (3.1)	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	9.8 (3.1)	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258		In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69		In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	8.0 (3.1)	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	9.8 (3.1)	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66		Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65		A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61		Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	9.8 (3.1)	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60		Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59		Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	7.5 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	8.8 (3.1)	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57		A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	4.3 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256		Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55		vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54		vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z

ID	Description	Published	Updated
mal-2025-192962	Malicious code in rippling-cli (PyPI)	2025-12-30T09:52:01Z	2025-12-30T10:09:50Z
mal-2025-192961	Malicious code in awsutil (PyPI)	2025-12-29T21:57:34Z	2025-12-29T21:57:34Z
mal-2025-192960	Malicious code in kcheck (npm)	2025-12-29T15:45:39Z	2025-12-29T16:09:42Z
mal-2025-192959	Malicious code in intl-tel-input-utils (npm)	2025-12-29T15:00:48Z	2025-12-29T16:09:42Z
mal-2025-192956	Malicious code in cryptozip (PyPI)	2025-12-28T19:49:40Z	2025-12-29T13:20:36Z
mal-2025-192690	Malicious code in smtrlib (PyPI)	2025-12-22T17:15:11Z	2025-12-29T11:08:56Z
mal-2025-192579	Malicious code in smtblib (PyPI)	2025-12-15T15:24:47Z	2025-12-29T11:08:56Z
mal-2025-192958	Malicious code in smtmlib (PyPI)	2025-12-29T10:04:23Z	2025-12-29T10:08:51Z
mal-2025-192957	Malicious code in crypto-trade-analyzer (npm)	2025-12-29T07:45:42Z	2025-12-29T07:45:42Z
mal-2025-192953	Malicious code in aiogram-types-v3 (PyPI)	2025-12-28T01:44:36Z	2025-12-28T20:09:20Z
mal-2025-192955	Malicious code in eslint-config-pexip-engage (npm)	2025-12-28T17:50:47Z	2025-12-28T17:50:47Z
mal-2025-192952	Malicious code in eslint-config-sdk (npm)	2025-12-27T20:20:29Z	2025-12-28T17:39:25Z
mal-2025-192954	Malicious code in api-umbrella-admin-ui (npm)	2025-12-28T15:05:48Z	2025-12-28T15:05:48Z
mal-2025-192951	Malicious code in ugc-kit (npm)	2025-12-27T17:21:21Z	2025-12-27T17:21:21Z
mal-2025-192949	Malicious code in ing-feat-malware-detection (npm)	2025-12-27T17:11:12Z	2025-12-27T17:11:12Z
mal-2025-192950	Malicious code in ing-feat-ui-image (npm)	2025-12-27T17:11:08Z	2025-12-27T17:11:08Z
mal-2025-192934	Malicious code in ing-feat-kyc-consent (npm)	2025-12-25T18:55:12Z	2025-12-27T16:09:26Z
mal-2025-192948	Malicious code in extrazip (PyPI)	2025-12-27T09:41:01Z	2025-12-27T09:41:01Z
mal-2025-192947	Malicious code in crypo (PyPI)	2025-12-27T08:56:38Z	2025-12-27T08:56:38Z
mal-2025-192946	Malicious code in crpto (PyPI)	2025-12-27T08:55:55Z	2025-12-27T08:55:55Z
mal-2025-192945	Malicious code in flaask (PyPI)	2025-12-27T08:53:06Z	2025-12-27T08:53:06Z
mal-2025-192944	Malicious code in backstage-plugin-glean (npm)	2025-12-27T02:51:04Z	2025-12-27T02:51:04Z
mal-2025-192942	Malicious code in telebot-bot (PyPI)	2025-12-26T20:04:06Z	2025-12-26T20:04:06Z
mal-2025-192943	Malicious code in telegrem (PyPI)	2025-12-26T20:03:22Z	2025-12-26T20:03:22Z
mal-2025-192941	Malicious code in bola511 (npm)	2025-12-26T14:09:11Z	2025-12-26T14:09:11Z
mal-2025-192940	Malicious code in aiogram-3 (PyPI)	2025-12-26T04:33:18Z	2025-12-26T10:09:30Z
mal-2025-192939	Malicious code in magic-poc (npm)	2025-12-26T03:35:35Z	2025-12-26T03:35:35Z
mal-2025-192938	Malicious code in bettermode-icons (npm)	2025-12-25T21:52:38Z	2025-12-25T22:40:17Z
mal-2025-192937	Malicious code in bettermode-common (npm)	2025-12-25T19:41:57Z	2025-12-25T19:41:57Z
mal-2025-192933	Malicious code in ing-feat-auth-idin (npm)	2025-12-25T18:54:53Z	2025-12-25T18:54:53Z

ID	Description	Published	Updated
wid-sec-w-2025-2930	Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2020-07-21T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2717	Django: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2595	Linux Kernel: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2579	Linux Kernel: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2495	Django: Mehrere Schwachstellen ermöglichen Denial of Service und SQL-Injection	2025-11-05T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2431	Linux Kernel: Mehrere Schwachstellen	2025-10-28T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2053	Linux Kernel: Mehrere Schwachstellen	2025-09-15T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2045	expat: Schwachstelle ermöglicht Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1948	libxml2 (exsltDynMapFunction): Schwachstelle ermöglicht Denial of Service	2025-09-02T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1744	OpenJPEG: Schwachstelle ermöglicht Denial of Service	2025-08-07T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0956	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Denial of Service	2025-05-06T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0836	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Offenlegung von Informationen	2025-04-15T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2024-1850	Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-13T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-2853	Red Hat Enterprise Linux: Mehrere Schwachstellen	2023-11-07T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-0580	Red Hat Enterprise Linux (mod_auth_openidc): Mehrere Schwachstellen	2022-05-10T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2022-0499	expat: Schwachstelle ermöglicht Codeausführung	2022-01-26T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2871	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-17T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2830	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service	2025-12-11T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2741	cPython: Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2706	Python: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-01T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2694	MariaDB: Schwachstelle ermöglicht Codeausführung	2025-11-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2677	OPNsense: Schwachstelle ermöglicht Manipulation von Dateien	2025-11-25T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2645	Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2637	Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0403	Kwetsbaarheden verholpen in QNAP besturingssystemen	2025-12-29T09:17:28.385450Z	2025-12-29T09:17:28.385450Z
ncsc-2025-0402	Kwetsbaarheid verholpen in MongoDB	2025-12-27T11:38:11.514349Z	2025-12-27T11:38:11.514349Z
ncsc-2025-0399	Kwetsbaarheid verholpen in HPE OneView Software	2025-12-18T18:38:20.794784Z	2025-12-24T11:29:46.123674Z
ncsc-2025-0401	Kwetsbaarheden verholpen in Foxit PDF Reader	2025-12-24T09:14:56.590353Z	2025-12-24T09:14:56.590353Z
ncsc-2025-0400	Kwetsbaarheid verholpen in WatchGuard Firebox	2025-12-19T11:16:01.438518Z	2025-12-19T11:16:01.438518Z
ncsc-2025-0398	Kwetsbaarheid in Cisco AsyncOS	2025-12-17T19:47:00.346651Z	2025-12-17T19:47:00.346651Z
ncsc-2025-0386	Kwetsbaarheden verholpen in Fortinet producten	2025-12-10T09:51:34.918202Z	2025-12-16T10:33:05.061241Z
ncsc-2025-0397	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2025-12-15T09:08:39.804149Z	2025-12-15T09:08:39.804149Z
ncsc-2025-0396	Kwetsbaarheden verholpen in Apple macOS	2025-12-15T09:06:36.450655Z	2025-12-15T09:06:36.450655Z
ncsc-2025-0394	Kwetsbaarheden verholpen in React Server Components	2025-12-12T09:04:19.324080Z	2025-12-12T10:46:34.688189Z
ncsc-2025-0395	Kwetsbaarheden verholpen in SAP Software	2025-12-12T09:29:08.429888Z	2025-12-12T09:29:08.429888Z
ncsc-2025-0393	Kwetsbaarheid verholpen in GeoServer	2025-12-12T08:12:18.831044Z	2025-12-12T09:02:27.681292Z
ncsc-2025-0392	Kwetsbaarheid verholpen in Barracuda Service Center	2025-12-11T13:53:23.819008Z	2025-12-11T13:53:23.819008Z
ncsc-2025-0391	Kwetsbaarheden verholpen in Ivanti Endpoint Manager	2025-12-11T13:51:55.178462Z	2025-12-11T13:51:55.178462Z
ncsc-2025-0390	Kwetsbaarheden verholpen in GitLab CE/EE	2025-12-11T09:22:54.841848Z	2025-12-11T09:22:54.841848Z
ncsc-2025-0389	Kwetsbaarheden verholpen in Adobe Experience Manager	2025-12-10T14:59:57.911864Z	2025-12-10T14:59:57.911864Z
ncsc-2025-0388	Kwetsbaarheden verholpen in Adobe Acrobat Reader	2025-12-10T13:35:58.314547Z	2025-12-10T13:35:58.314547Z
ncsc-2025-0387	Kwetsbaarheden verholpen in Adobe ColdFusion	2025-12-10T13:34:08.908897Z	2025-12-10T13:34:08.908897Z
ncsc-2025-0385	Kwetsbaarheden verholpen in Microsoft Exchange	2025-12-09T18:42:32.332749Z	2025-12-09T18:42:32.332749Z
ncsc-2025-0384	Kwetsbaarheden verholpen in Microsoft Office	2025-12-09T18:40:33.839342Z	2025-12-09T18:40:33.839342Z
ncsc-2025-0383	Kwetsbaarheden verholpen in Microsoft Windows	2025-12-09T18:39:18.152251Z	2025-12-09T18:39:18.152251Z
ncsc-2025-0382	Kwetsbaarheden verholpen in Siemens producten	2025-12-09T13:15:05.391966Z	2025-12-09T13:15:05.391966Z
ncsc-2025-0381	Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform	2025-12-08T08:23:21.965599Z	2025-12-08T08:23:21.965599Z
ncsc-2025-0380	Kwetsbaarheden verholpen in React Server Components	2025-12-03T20:11:57.728117Z	2025-12-05T12:13:36.590522Z
ncsc-2025-0379	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-12-02T13:25:17.745981Z	2025-12-02T13:25:17.745981Z
ncsc-2025-0378	Kwetsbaarheden verholpen in Mattermost	2025-11-28T09:53:42.334621Z	2025-11-28T09:53:42.334621Z
ncsc-2025-0377	Kwetsbaarheden verholpen in GitLab	2025-11-27T13:35:09.121804Z	2025-11-27T13:35:09.121804Z
ncsc-2025-0376	Kwetsbaarheden verholpen in SonicWall Email Security appliances	2025-11-21T16:06:33.949861Z	2025-11-21T16:06:33.949861Z
ncsc-2025-0375	Kwetsbaarheid verholpen in Progress MOVEit Transfer	2025-11-21T16:06:14.387571Z	2025-11-21T16:06:14.387571Z
ncsc-2025-0334	Kwetsbaarheden verholpen in Oracle Fusion Middleware	2025-10-23T13:42:11.992643Z	2025-11-21T16:03:18.991100Z

ID	Description	Published	Updated
ssa-512988	SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-800126	SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-723487	SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products	2024-07-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-673996	SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-408105	SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products	2022-12-13T00:00:00Z	2025-12-09T00:00:00Z
ssa-392859	SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2025-11-17T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:23542	Red Hat Security Advisory: OpenShift File Integrity Operator bug fix and enhancement update	2025-12-17T16:35:07+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:23529	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.11.9 security update	2025-12-17T14:58:47+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:23528	Red Hat Security Advisory: multicluster engine for Kubernetes 2.6 security update	2025-12-17T14:58:16+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:22684	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-12-03T23:53:32+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:22683	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-12-03T22:50:31+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:22416	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16 security, enhancement & bug fix update	2025-12-01T12:00:04+00:00	2025-12-30T14:35:02+00:00
rhsa-2025:22420	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14 security, enhancement & bug fix update	2025-12-01T12:14:05+00:00	2025-12-30T14:34:59+00:00
rhsa-2025:22418	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15 security, enhancement & bug fix update	2025-12-01T12:10:52+00:00	2025-12-30T14:34:59+00:00
rhsa-2025:22415	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update	2025-12-01T11:59:39+00:00	2025-12-30T14:34:59+00:00
rhsa-2025:21885	Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update	2025-11-20T19:56:52+00:00	2025-12-30T14:34:59+00:00
rhsa-2025:21368	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-11-13T17:36:32+00:00	2025-12-30T14:34:56+00:00
rhsa-2025:19961	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-11-10T01:30:28+00:00	2025-12-30T14:34:56+00:00
rhsa-2025:19958	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-11-10T01:14:14+00:00	2025-12-30T14:34:56+00:00
rhsa-2025:19335	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update	2025-10-30T12:58:23+00:00	2025-12-30T14:34:56+00:00
rhsa-2025:19332	Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update	2025-10-30T12:27:36+00:00	2025-12-30T14:34:56+00:00
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2025-12-30T12:02:51+00:00
rhsa-2025:9646	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update	2025-06-25T14:06:29+00:00	2025-12-30T12:02:51+00:00
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2025-12-30T12:02:51+00:00
rhsa-2025:9541	Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates	2025-06-24T14:31:21+00:00	2025-12-30T12:02:50+00:00
rhsa-2025:9514	Red Hat Security Advisory: rhc security update	2025-06-24T11:31:03+00:00	2025-12-30T12:02:49+00:00
rhsa-2025:9388	Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates	2025-06-23T15:10:48+00:00	2025-12-30T12:02:49+00:00
rhsa-2025:9259	Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update	2025-06-26T01:50:03+00:00	2025-12-30T12:02:49+00:00
rhsa-2025:9167	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release	2025-06-17T09:27:34+00:00	2025-12-30T12:02:49+00:00
rhsa-2025:9136	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release	2025-06-16T18:32:02+00:00	2025-12-30T12:02:47+00:00
rhsa-2025:8761	Red Hat Security Advisory: HawtIO 4.2.0 for Red Hat build of Apache Camel 4 Release and security update.	2025-06-10T10:39:32+00:00	2025-12-30T12:02:47+00:00
rhsa-2025:8560	Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update	2025-06-10T06:26:36+00:00	2025-12-30T12:02:46+00:00
rhsa-2025:8556	Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update	2025-06-13T05:16:43+00:00	2025-12-30T12:02:46+00:00
rhsa-2025:8704	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release	2025-06-09T16:42:07+00:00	2025-12-30T12:02:45+00:00
rhsa-2025:8691	Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update	2025-06-09T14:26:17+00:00	2025-12-30T12:02:45+00:00
rhsa-2025:8670	Red Hat Security Advisory: Release of OpenShift Serverless Logic 1.36.0 security update & enhancements	2025-06-09T10:12:51+00:00	2025-12-30T12:02:45+00:00

ID	Description	Published	Updated
icsa-25-177-01	Mitsubishi Electric Air Conditioning Systems (Update B)	2025-06-26T06:00:00.000000Z	2025-12-23T07:00:00.000000Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-352-08	Axis Communications Camera Station Pro, Camera Station, and Device Manager	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-07	Rockwell Automation Micro820, Micro850, Micro870	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-06	Advantech WebAccess/SCADA	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-03	National Instruments LabView	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-01	Inductive Automation Ignition	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-24-291-03	Mitsubishi Electric CNC Series (Update C)	2024-10-17T06:00:00.000000Z	2025-12-18T07:00:00.000000Z
va-25-352-01	BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
icsa-25-350-04	Mitsubishi Electric GT Designer3	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-03	Hitachi Energy AFS, AFR and AFF Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-02	Johnson Controls PowerG, IQPanel and IQHub	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-01	Güralp Systems Fortimus Series, Minimus Series, and Certimus Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-308-01	Fuji Electric Monitouch V-SFT-6 (Update A)	2025-11-04T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
va-25-345-01	CISA Software Acquisition Guide Supplier Response Web Tool XSS	2025-12-12T20:27:47Z	2025-12-12T20:27:47Z
icsma-25-345-02	Varex Imaging Panoramic Dental Imaging Software	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsma-25-345-01	Grassroots DICOM (GDCM)	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-10	OpenPLC_V3	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-03	AzeoTech DAQFactory	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2025-12-17T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00

ID	Description	Published	Updated
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
SCA-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2025-13699	MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability	2025-12-02T00:00:00.000Z	2025-12-30T01:37:07.000Z
msrc_cve-2025-68615	Net-SNMP snmptrapd crash	2025-12-02T00:00:00.000Z	2025-12-30T01:36:49.000Z
msrc_cve-2025-13912	Potential non-constant time compiled code with Clang LLVM	2025-12-02T00:00:00.000Z	2025-12-30T01:36:30.000Z
msrc_cve-2025-13281	Portworx Half-Blind SSRF in kube-controller-manager	2025-12-02T00:00:00.000Z	2025-12-30T01:36:19.000Z
msrc_cve-2025-65637	A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters.	2025-12-02T00:00:00.000Z	2025-12-30T01:36:12.000Z
msrc_cve-2023-52970	MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., 11.0 through 11.0., and 11.1 through 11.4.* crashes in Item_direct_view_ref::derived_field_transformer_for_where.	2025-03-02T00:00:00.000Z	2025-12-30T01:35:17.000Z
msrc_cve-2025-68973	In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)	2025-12-02T00:00:00.000Z	2025-12-30T01:01:21.000Z
msrc_cve-2025-14180	NULL Pointer Dereference in PDO quoting	2025-12-02T00:00:00.000Z	2025-12-29T14:36:08.000Z
msrc_cve-2025-14178	Heap buffer overflow in array_merge()	2025-12-02T00:00:00.000Z	2025-12-29T14:36:03.000Z
msrc_cve-2025-14177	Information Leak of Memory in getimagesize	2025-12-02T00:00:00.000Z	2025-12-29T14:35:58.000Z
msrc_cve-2025-68972	In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.	2025-12-02T00:00:00.000Z	2025-12-29T14:35:53.000Z
msrc_cve-2025-14104	Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames	2025-12-02T00:00:00.000Z	2025-12-27T14:36:13.000Z
msrc_cve-2025-68156	Expr has Denial of Service via Unbounded Recursion in Builtin Functions	2025-12-02T00:00:00.000Z	2025-12-27T01:36:36.000Z
msrc_cve-2025-7425	Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr	2025-07-02T00:00:00.000Z	2025-12-26T14:39:00.000Z
msrc_cve-2023-54061	x86: fix clear_user_rep_good() exception handling annotation	2025-12-02T00:00:00.000Z	2025-12-26T14:38:55.000Z
msrc_cve-2025-68733	smack: fix bug: unprivileged task can create labels	2025-12-02T00:00:00.000Z	2025-12-26T14:38:50.000Z
msrc_cve-2025-68374	md: fix rcu protection in md_wakeup_thread	2025-12-02T00:00:00.000Z	2025-12-26T14:38:46.000Z
msrc_cve-2025-68724	crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id	2025-12-02T00:00:00.000Z	2025-12-26T14:38:41.000Z
msrc_cve-2025-68380	wifi: ath11k: fix peer HE MCS assignment	2025-12-02T00:00:00.000Z	2025-12-26T14:38:36.000Z
msrc_cve-2025-68376	coresight: ETR: Fix ETR buffer use-after-free issue	2025-12-02T00:00:00.000Z	2025-12-26T14:38:31.000Z
msrc_cve-2025-68378	bpf: Fix stackmap overflow check in __bpf_get_stackid()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:26.000Z
msrc_cve-2025-68727	ntfs3: Fix uninit buffer allocated by __getname()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:22.000Z
msrc_cve-2025-68364	ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:17.000Z
msrc_cve-2025-68346	ALSA: dice: fix buffer overflow in detect_stream_formats()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:12.000Z
msrc_cve-2025-68379	RDMA/rxe: Fix null deref on srq->rq.queue after resize failure	2025-12-02T00:00:00.000Z	2025-12-26T14:38:07.000Z
msrc_cve-2025-68363	bpf: Check skb->transport_header is set in bpf_skb_check_mtu	2025-12-02T00:00:00.000Z	2025-12-26T14:38:02.000Z
msrc_cve-2025-68740	ima: Handle error code returned by ima_filter_rule_match()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:57.000Z
msrc_cve-2023-54082	af_unix: Fix null-ptr-deref in unix_stream_sendpage().	2025-12-02T00:00:00.000Z	2025-12-26T14:37:53.000Z
msrc_cve-2025-68358	btrfs: fix racy bitfield write in btrfs_clear_space_info_full()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:48.000Z
msrc_cve-2025-68372	nbd: defer config put in recv_work	2025-12-02T00:00:00.000Z	2025-12-26T14:37:43.000Z

ID	Description	Published	Updated
9akk108471a8107	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-09-16T00:30:00.000Z	2025-11-28T08:00:00.000Z
4hzm000603	ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC)	2025-11-27T00:30:00.000Z	2025-11-28T00:30:00.000Z
7paa022088	Edgenius Management Portal Authentication Bypass	2025-11-20T00:30:00.000Z	2025-11-20T00:30:00.000Z
2nga002813	PCM600 SharpZip library vulnerability	2025-11-03T00:30:00.000Z	2025-11-03T00:30:00.000Z
4tz00000006007	ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations	2025-10-20T00:30:00.000Z	2025-10-23T00:30:00.000Z
9akk108471a8948	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-10-20T00:30:00.000Z	2025-10-21T00:30:00.000Z
3kxg200000r4801	CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability	2025-04-16T00:30:00.000Z	2025-10-20T00:30:00.000Z
sa25p003	B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-14T00:30:00.000Z
4tz00000006008	LVS MConfig Insecure memory handling	2025-10-08T00:30:00.000Z	2025-10-08T00:30:00.000Z
sa25p002	B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7808	EIBPORT Reflected XSS	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7121	FLXeon Controllers Multiple vulnerabilities	2025-09-09T00:30:00.000Z	2025-09-18T00:30:00.000Z
9akk108471a4462	ELSB/BLBA ASPECT advisory several CVEs	2025-08-11T00:30:00.000Z	2025-09-04T00:30:00.000Z
9akk108471a3623	RMC - 100 Vulnerabilities in web UI (REST Interface)	2025-07-03T00:30:00.000Z	2025-08-18T00:30:00.000Z
2nga002743	ABB AbilityTM zenon Remote Transport Vulnerability	2025-08-12T00:30:00.000Z	2025-08-12T00:30:00.000Z
3adr011407	ABB Automation Builder Vulnerabilities in user management and access control	2025-04-30T00:00:00.000Z	2025-07-25T00:00:00.000Z
3adr011432	AC500 V2 Buffer overread on Modbus protocol	2025-07-23T00:30:00.000Z	2025-07-23T00:30:00.000Z
9akk108471a4556	Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode.	2025-07-21T00:30:00.000Z	2025-07-21T00:30:00.000Z
2crt000008	Lite Panel Pro Vulnerability in Session Management	2025-06-26T00:30:00.000Z	2025-06-26T00:30:00.000Z
9akk108470a8948	ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway.	2025-05-29T00:30:00.000Z	2025-06-05T00:30:00.000Z
9akk108471a1621	EIBPORT Session Management Fail	2025-06-02T00:30:00.000Z	2025-06-04T00:30:00.000Z
9akk108471a0021	ELSB/BLBA ASPECT advisory several CVEs	2025-05-22T00:30:00.000Z	2025-05-23T10:30:00.000Z
2crt000006	ANC – ABB Network Card Multiple vulnerabilities in ANC	2025-04-30T00:30:00.000Z	2025-04-30T00:30:00.000Z
2crt000007	Ekip Com IEC61850 Vulnerability in 3rd Party Library	2025-04-29T00:30:00.000Z	2025-04-29T00:30:00.000Z
9akk108470a9989	ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities	2025-04-10T08:30:00.000Z	2025-04-10T08:30:00.000Z
2nga002579	ABB Arctic communication solution ARM600 Vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
2nga002427	ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
9akk108470a9494	Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
9akk108470a9491	ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
sa24p015	B&R APROL Potential Privilege Escalation and Information Disclosure	2025-03-24T00:30:00.000Z	2025-03-24T00:30:00.000Z

ID	Description	Updated
var-202407-2188	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:32.699000Z
var-202406-3119	Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s…	2024-07-23T22:46:22.685000Z
var-202407-1740	NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha…	2024-07-23T22:46:18.378000Z
var-202407-1417	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:07.784000Z
var-202407-1103	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:01.992000Z
var-202407-0957	WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile…	2024-07-23T22:45:59.391000Z
var-202407-0819	SIMATIC S7-1500 is a modular control system suitable for various automation applications …	2024-07-23T22:45:56.958000Z
var-202407-0818	NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6…	2024-07-23T22:45:56.946000Z
var-202407-0779	Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of …	2024-07-23T22:45:56.150000Z
var-202407-0778	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:56.131000Z
var-202407-0745	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:55.498000Z
var-202305-1479	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution …	2024-07-23T22:45:09.335000Z
var-202108-1158	A race condition was addressed with improved locking. This issue is fixed in macOS Monter…	2024-07-23T22:44:06.976000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-07-23T22:43:49.590000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-07-23T22:43:25.614000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-07-23T22:41:43.584000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-07-23T22:41:20.004000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-07-23T22:41:18.832000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-07-23T22:41:17.171000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-07-23T22:41:16.554000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-07-23T22:41:04.279000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-07-23T22:40:53.160000Z
var-202305-1588	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit…	2024-07-23T22:40:05.297000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-07-23T22:39:32.535000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-07-23T22:39:32.874000Z
var-201706-0017	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie…	2024-07-23T22:38:34.494000Z
var-202305-1520	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul…	2024-07-23T22:38:26.576000Z
var-202407-0490	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP …	2024-07-23T22:38:24.768000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-07-23T22:37:44.850000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-07-23T22:37:43.471000Z

ID	Description	Published	Updated
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2025-12-24T11:10+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-12-23T14:36+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00

ID	Description	Updated
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00
ts-2023-001	TS-2023-001	2023-01-17T00:00

ID	Description	Published	Updated
suse-su-2025:4532-1	Security update for apache2-mod_auth_openidc	2025-12-29T13:53:59Z	2025-12-29T13:53:59Z
suse-su-2025:4530-1	Security update for the Linux Kernel	2025-12-29T10:48:23Z	2025-12-29T10:48:23Z
suse-su-2025:4528-1	Security update for webkit2gtk3	2025-12-26T14:52:35Z	2025-12-26T14:52:35Z
suse-su-2025:4527-1	Security update for webkit2gtk3	2025-12-26T14:49:08Z	2025-12-26T14:49:08Z
suse-su-2025:4526-1	Security update for buildah	2025-12-26T12:24:16Z	2025-12-26T12:24:16Z
suse-su-2025:4525-1	Security update for gnutls	2025-12-26T12:19:11Z	2025-12-26T12:19:11Z
suse-su-2025:4523-1	Security update for qemu	2025-12-26T10:45:48Z	2025-12-26T10:45:48Z
suse-su-2025:4522-1	Security update for python39	2025-12-26T10:35:01Z	2025-12-26T10:35:01Z
suse-su-2025:4521-1	Security update for the Linux Kernel	2025-12-24T12:42:49Z	2025-12-24T12:42:49Z
suse-su-2025:4520-1	Security update for mariadb	2025-12-24T09:19:47Z	2025-12-24T09:19:47Z
suse-su-2025:4518-1	Security update for apache2	2025-12-23T19:07:45Z	2025-12-23T19:07:45Z
suse-su-2025:4517-1	Security update for the Linux Kernel	2025-12-23T16:28:51Z	2025-12-23T16:28:51Z
suse-su-2025:4516-1	Security update for the Linux Kernel	2025-12-23T16:27:39Z	2025-12-23T16:27:39Z
suse-su-2025:4515-1	Security update for the Linux Kernel	2025-12-23T16:19:45Z	2025-12-23T16:19:45Z
suse-su-2025:4507-1	Security update for the Linux Kernel	2025-12-22T16:46:54Z	2025-12-22T16:46:54Z
suse-su-2025:4506-1	Security update for the Linux Kernel	2025-12-22T16:39:00Z	2025-12-22T16:39:00Z
suse-su-2025:4505-1	Security update for the Linux Kernel	2025-12-22T16:35:13Z	2025-12-22T16:35:13Z
suse-su-2025:4504-1	Security update for glib2	2025-12-22T16:30:38Z	2025-12-22T16:30:38Z
suse-su-2025:4502-1	Security update for mariadb	2025-12-22T11:28:30Z	2025-12-22T11:28:30Z
suse-su-2025:4494-1	Security update for libpng16	2025-12-19T13:14:13Z	2025-12-19T13:14:13Z
suse-su-2025:4493-1	Security update for mariadb	2025-12-19T13:01:17Z	2025-12-19T13:01:17Z
suse-su-2025:4491-1	Security update for mariadb	2025-12-19T11:40:47Z	2025-12-19T11:40:47Z
suse-su-2025:4490-1	Security update for xen	2025-12-19T11:17:12Z	2025-12-19T11:17:12Z
suse-su-2025:4489-1	Security update for netty	2025-12-19T11:01:56Z	2025-12-19T11:01:56Z
suse-su-2025:4488-1	Security update for apache2	2025-12-18T17:17:26Z	2025-12-18T17:17:26Z
suse-su-2025:4442-1	Security update for glib2	2025-12-17T16:17:51Z	2025-12-17T16:17:51Z
suse-su-2025:4441-1	Security update for glib2	2025-12-17T16:15:21Z	2025-12-17T16:15:21Z
suse-su-2025:4440-1	Security update for wireshark	2025-12-17T15:44:39Z	2025-12-17T15:44:39Z
suse-su-2025:4439-1	Security update for poppler	2025-12-17T15:44:25Z	2025-12-17T15:44:25Z
suse-su-2025:4438-1	Security update for mariadb	2025-12-17T15:43:51Z	2025-12-17T15:43:51Z

ID	Description	Published	Updated
opensuse-su-2025:15848-1	python311-openapi-core-0.22.0-1.1 on GA media	2025-12-28T00:00:00Z	2025-12-28T00:00:00Z
opensuse-su-2025:15847-1	anubis-1.24.0-1.1 on GA media	2025-12-28T00:00:00Z	2025-12-28T00:00:00Z
opensuse-su-2025:15846-1	python39-3.9.25-2.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15845-1	podman-5.7.1-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15844-1	cpp-httplib-devel-0.28.0-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15843-1	buildah-1.42.2-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15841-1	zk-0.15.2-1.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15840-1	python315-3.15.0~a3-1.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15839-1	python310-3.10.19-3.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15832-1	coredns-for-k8s1.35-1.13.1-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15831-1	chromedriver-143.0.7499.146-1.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15830-1	alloy-1.12.0-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15829-1	ImageMagick-7.1.2.10-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15824-1	netty-4.1.130-1.1 on GA media	2025-12-17T00:00:00Z	2025-12-17T00:00:00Z
opensuse-su-2025:15823-1	clair-4.9.0-1.1 on GA media	2025-12-17T00:00:00Z	2025-12-17T00:00:00Z
opensuse-su-2025:15822-1	strongswan-6.0.4-1.1 on GA media	2025-12-15T00:00:00Z	2025-12-15T00:00:00Z
opensuse-su-2025:15821-1	qemu-10.1.3-1.1 on GA media	2025-12-15T00:00:00Z	2025-12-15T00:00:00Z
opensuse-su-2025:15819-1	libruby4_0-4_0-4.0.0~preview2-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15818-1	pgadmin4-9.11-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15817-1	buildpacks-cli-0.39.1-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15816-1	ImageMagick-7.1.2.10-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15812-1	libpoppler-cpp2-25.09.1-4.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15811-1	keylime-config-7.13.0+40-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15810-1	gio-branding-upstream-2.86.3-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15809-1	firefox-esr-140.6.0-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15808-1	apache2-2.4.66-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15802-1	corepack24-24.11.1-2.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15801-1	libpng16-16-1.6.52-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15800-1	kdeconnect-kde-25.11.90-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15797-1	libpng12-0-1.2.59-4.1 on GA media	2025-12-04T00:00:00Z	2025-12-04T00:00:00Z

ID	Description	Published	Updated
cnvd-2025-31070	Advantech WebAccess/VPN StandaloneVpnClientsController.addStandaloneVpnClientAction函数跨站脚本漏洞	2025-11-11	2025-12-19
cnvd-2025-31069	Advantech WebAccess/VPN NetworksController.addNetworkAction函数跨站脚本漏洞	2025-11-11	2025-12-19
cnvd-2025-31068	Advantech WebAccess/VPN AjaxFwRulesController.ajaxNetworkFwRulesAction函数SQL注入漏洞	2025-11-11	2025-12-19
cnvd-2025-31067	Advantech WebAccess/VPN AjaxFwRulesController.ajaxDeviceFwRulesAction函数SQL注入漏洞	2025-11-11	2025-12-19
cnvd-2025-31066	Advantech WebAccess/VPN AjaxDeviceController.ajaxDeviceAction函数SQL注入漏洞	2025-11-11	2025-12-19
cnvd-2025-31065	Advantech iView SQL注入漏洞（CNVD-2025-31065）	2025-11-11	2025-12-19
cnvd-2025-31064	Advantech iView SQL注入漏洞（CNVD-2025-31064）	2025-11-11	2025-12-19
cnvd-2025-31063	Advantech iView SQL注入漏洞（CNVD-2025-31063）	2025-11-11	2025-12-19
cnvd-2025-31062	Advantech iView SQL注入漏洞（CNVD-2025-31062）	2025-11-11	2025-12-19
cnvd-2025-31061	Advantech iView SQL注入漏洞（CNVD-2025-31061）	2025-11-11	2025-12-19
cnvd-2025-31112	Online Birth Certificate System不安全的直接对象引用漏洞	2024-12-19	2025-12-18
cnvd-2025-31111	Online Birth Certificate System未授权访问漏洞	2024-12-20	2025-12-18
cnvd-2025-31110	Online Birth Certificate System /user/certificate-form.php文件跨站脚本漏洞	2024-12-20	2025-12-18
cnvd-2025-31109	Online Birth Certificate System HTML注入漏洞	2024-12-20	2025-12-18
cnvd-2025-31108	Online Birth Certificate System /user/certificate-form.php文件跨站脚本漏洞	2025-02-18	2025-12-18
cnvd-2025-31107	Online Birth Certificate System /admin/bwdates-reports-details.php文件SQL注入漏洞	2025-05-13	2025-12-18
cnvd-2025-31106	Online Birth Certificate System /search.php文件SQL注入漏洞	2025-05-14	2025-12-18
cnvd-2025-31105	Online Birth Certificate System /registered-users.php文件SQL注入漏洞	2025-06-06	2025-12-18
cnvd-2025-31104	Advantech WebAccess/VPN命令注入漏洞	2025-11-11	2025-12-18
cnvd-2025-31103	Advantech WebAccess/VPN绝对路径遍历漏洞	2025-11-11	2025-12-18
cnvd-2025-31102	News Portal login.php文件SQL注入漏洞	2025-03-07	2025-12-18
cnvd-2025-31101	News Portal /index.php文件SQL注入漏洞	2025-05-22	2025-12-18
cnvd-2025-31100	News Portal Project /contactus.php文件SQL注入漏洞	2025-05-22	2025-12-18
cnvd-2025-31099	News Portal /aboutus.php文件SQL注入漏洞	2025-05-22	2025-12-18
cnvd-2025-31098	News Portal /forgot-password.php文件SQL注入漏洞	2025-06-06	2025-12-18
cnvd-2025-31008	Credit Card Application Management System跨站脚本漏洞	2025-05-22	2025-12-18
cnvd-2025-31007	Credit Card Application Management System SQL注入漏洞	2025-05-22	2025-12-18
cnvd-2025-31006	Daily Expense Tracker System跨站脚本漏洞（CNVD-2025-31006）	2021-02-03	2025-12-18
cnvd-2025-31005	Daily Expense Tracker System跨站脚本漏洞（CNVD-2025-31005）	2021-02-03	2025-12-18
cnvd-2025-31004	Daily Expense Tracker System SQL注入漏洞（CNVD-2025-31004）	2025-02-17	2025-12-18

ID	Description	Published	Updated
certfr-2025-avi-1141	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1140	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1139	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1138	Multiples vulnérabilités dans VMware Tanzu Platform	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1137	Multiples vulnérabilités dans les produits IBM	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1076	Multiples vulnérabilités dans MISP	2025-12-08T00:00:00.000000	2025-12-24T00:00:00.000000
certfr-2025-avi-1126	Multiples vulnérabilités dans PHP	2025-12-19T00:00:00.000000	2025-12-22T00:00:00.000000
certfr-2025-avi-1136	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1135	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1134	Multiples vulnérabilités dans MongoDB Server	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1133	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1132	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1131	Multiples vulnérabilités dans les produits IBM	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1130	Multiples vulnérabilités dans les produits Foxit	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1129	Multiples vulnérabilités dans les produits VMware	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1128	Multiples vulnérabilités dans Mozilla Firefox	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1127	Multiples vulnérabilités dans Centreon Web	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1125	Vulnérabilité dans les produits NetApp	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1124	Multiples vulnérabilités dans Microsoft Edge	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1123	Multiples vulnérabilités dans les produits Elastic	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1122	Multiples vulnérabilités dans Mattermost Server	2025-12-18T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1121	Vulnérabilité dans Sonicwall Secure Mobile Access	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1120	Vulnérabilité dans les produits Cisco	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1119	Multiples vulnérabilités dans les produits Synology	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1118	Vulnérabilité dans Mozilla Firefox	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1117	Multiples vulnérabilités dans GLPI	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1116	Multiples vulnérabilités dans Google Chrome	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000
certfr-2025-avi-1115	Vulnérabilité dans Trend Micro Apex One	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000
certfr-2025-avi-1114	Multiples vulnérabilités dans Tenable Nessus	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000
certfr-2025-avi-1113	Multiples vulnérabilités dans Moodle	2025-12-16T00:00:00.000000	2025-12-16T00:00:00.000000

ID	Description	Published	Updated
certfr-2025-ale-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-ale-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-ale-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
certfr-2025-ale-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
certfr-2025-ale-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
certfr-2025-ale-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
CERTFR-2025-ALE-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
CERTFR-2025-ALE-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
certfr-2025-ale-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
certfr-2025-ale-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
certfr-2025-ale-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
CERTFR-2025-ALE-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2025-ale-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
certfr-2025-ale-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-ALE-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
CERTFR-2025-ALE-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
certfr-2024-ale-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
certfr-2024-ale-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2025-0041	6.4 (4.0)	[online services] Reflected Cross-Site Scripting (XSS)…	typo3	typo3	2025-12-19T14:25:00.000Z	2025-12-19T14:54:51.594645Z
GCVE-1-2025-0031	7.1 (4.0)	A cross-site scripting (XSS) vulnerability was identif…	misp	misp	2025-12-03T10:58:00.000Z	2025-12-16T09:36:09.594750Z
GCVE-1-2025-0040	7.2 (4.0)	A cross-site scripting (XSS) vulnerability was id…	misp	misp	2025-12-13T08:44:32.378924Z	2025-12-13T08:44:32.378924Z
GCVE-1-2025-0039	8.5 (4.0)	XSS Reintroduced in MISP Dashboard World Map Widget Du…	misp	misp	2025-12-10T14:33:52.856734Z	2025-12-10T14:33:52.856734Z
GCVE-1-2025-0038	5 (4.0)	Reflected XSS in MISP Template Tag Removal and MISP Ad…	misp	misp	2025-12-10T14:10:00.000Z	2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037	7 (4.0)	Reflected XSS in MISP Dashboard Widgets via Unescaped …	misp	misp	2025-12-10T14:01:03.200804Z	2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036	8.3 (4.0)	A reflected cross-site scripting (XSS) vulnerability w…	misp	misp	2025-12-10T13:46:07.170083Z	2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035	8.3 (4.0)	Insufficient sanitization of bundle metadata (availabl…	CIRCL	vulnerability-lookup	2025-12-08T10:25:00.000Z	2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034	7 (4.0)	Missing CSRF protection on state-changing endpoints in…	CIRCL	vulnerability-lookup	2025-12-08T10:19:00.000Z	2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033	8.1 (4.0)	Vulnerability-lookup did not track or limit failed One…	CIRCL	vulnerability-lookup	2025-12-08T10:11:00.000Z	2025-12-08T12:12:53.235996Z
GCVE-1-2025-0032	10 (4.0)	The default configuration of WatchGuard Firebox device…	watchguard	firebox	2025-12-03T16:25:00.000Z	2025-12-19T13:48:34.570799Z
GCVE-1-2025-0030	6.2 (4.0)	A cross-site scripting (XSS) vulnerability in the MISP…	misp	misp	2025-12-03T10:53:00.000Z	2025-12-03T10:58:55.845341Z
GCVE-1-2025-0019	4 (4.0)	Path traversal vulnerability in EventReport for site-admin	misp	misp	2025-11-26T14:47:00.000Z	2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017	9.4 (4.0)	Privilege escalation in Cerebrate allows an authentica…	cerebrate	cerebrate	2025-11-12T08:15:00.000Z	2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029	6.3 (4.0)	Reflected cross-site scripting (XSS) vulnerabilities i…	misp	misp	2025-11-27T12:41:00.000Z	2025-11-27T12:48:51.085860Z
GCVE-1-2025-0027	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-27T07:17:00.000Z	2025-12-02T08:51:04.323899Z
GCVE-1-2025-0028	8.5 (4.0)	Information leakage vulnerability in the MISP Feed con…	misp	misp	2025-11-27T07:23:00.000Z	2025-12-02T08:51:35.429494Z
GCVE-1-2025-0026	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:35:00.000Z	2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:27:00.000Z	2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024	9.4 (4.0)	cross-site scripting (XSS) vulnerability in the MISP s…	misp	misp	2025-11-26T16:14:00.000Z	2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023	9.4 (4.0)	XSS in MISP server comparison tool	misp	misp	2025-11-26T16:10:00.000Z	2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022	9.4 (4.0)	Clarified setting's impact on download_attachments_on_load	misp	misp	2025-11-26T16:04:00.000Z	2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021	9.4 (4.0)	XSS in MISP ReST client in HTML view	misp	misp	2025-11-26T15:55:00.000Z	2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020	9.4 (4.0)	cross-site scripting (XSS) in Galaxy element JSON view	misp	misp	2025-11-26T15:49:00.000Z	2025-12-02T08:47:41.151429Z
GCVE-1-2025-0018	9.4 (4.0)	HTML injection issue was identified in Lookyloo’s web …	lookyloo	lookyloo	2025-11-18T15:33:00.000Z	2025-11-18T20:39:45.579295Z
GCVE-1-2025-0016	6 (4.0)	Local file inclusion in [ImportFromUrl() URL hand…	misp	misp	2025-11-04T09:20:00.000Z	2025-11-04T09:56:38.383646Z
GCVE-1-2025-0015	9 (4.0)	Potential XSS in decaying simulation tool	misp	misp	2025-11-04T09:06:00.000Z	2025-11-04T09:06:59.216121Z
GCVE-1-2025-0014	9.4 (4.0)	XSS in event report via Mermaid diagram	misp	misp	2025-11-04T08:58:00.024516Z	2025-11-04T08:58:00.024516Z

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	9.1 (3.1)	HexStrike AI MCP Server Command Injection	0x4m4	HexStrike AI	2025-11-30T21:27:56.057Z	2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100	6.5 (3.1)	Abilis CPX Fallback Shell Connection Relay	Abilis	CPX	2025-11-04T00:23:23.924Z	2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z