Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0286 |
N/A
|
In some NT web servers, appending a space at the … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.867Z |
| CVE-1999-0287 |
N/A
|
Vulnerability in the Wguest CGI program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.837Z |
| CVE-1999-0298 |
N/A
|
ypbind with -ypset and -ypsetme options activated… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.864Z |
| CVE-1999-0306 |
N/A
|
buffer overflow in HP xlock program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.887Z |
| CVE-1999-0307 |
N/A
|
Buffer overflow in HP-UX cstm program allows loca… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.862Z |
| CVE-1999-0317 |
N/A
|
Buffer overflow in Linux su command gives root ac… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.036Z |
| CVE-1999-0319 |
N/A
|
Buffer overflow in xmcd 2.1 allows local users to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.893Z |
| CVE-1999-0330 |
N/A
|
Linux bdash game has a buffer overflow that allow… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.895Z |
| CVE-1999-0331 |
N/A
|
Buffer overflow in Internet Explorer 4.0(1). |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.893Z |
| CVE-1999-0333 |
N/A
|
HP OpenView Omniback allows remote execution of c… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.021Z |
| CVE-1999-0336 |
N/A
|
Buffer overflow in mstm in HP-UX allows local use… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.955Z |
| CVE-1999-0345 |
N/A
|
Jolt ICMP attack causes a denial of service in Wi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.895Z |
| CVE-1999-0347 |
N/A
|
Internet Explorer 4.01 allows remote attackers to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0352 |
N/A
|
ControlIT 4.5 and earlier (aka Remotely Possible)… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.026Z |
| CVE-1999-0354 |
N/A
|
Internet Explorer 4.x or 5.x with Word 97 allows … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.957Z |
| CVE-1999-0356 |
N/A
|
ControlIT v4.5 and earlier uses weak encryption t… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.131Z |
| CVE-1999-0360 |
N/A
|
MS Site Server 2.0 with IIS 4 can allow users to … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.888Z |
| CVE-1999-0361 |
N/A
|
NetWare version of LaserFiche stores usernames an… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.897Z |
| CVE-1999-0364 |
N/A
|
Microsoft Access 97 stores a database password as… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.833Z |
| CVE-1999-0370 |
N/A
|
In Sun Solaris and SunOS, man and catman contain … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.031Z |
| CVE-1999-0381 |
N/A
|
super 3.11.6 and other versions have a buffer ove… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.941Z |
| CVE-1999-0389 |
N/A
|
Buffer overflow in the bootp server in the Debian… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0394 |
N/A
|
DPEC Online Courseware allows an attacker to chan… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.027Z |
| CVE-1999-0397 |
N/A
|
The demo version of the Quakenbush NT Password Ap… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.964Z |
| CVE-1999-0398 |
N/A
|
In some instances of SSH 1.2.27 and 2.0.11 on Lin… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.945Z |
| CVE-1999-0399 |
N/A
|
The DCC server command in the Mirc 5.5 client doe… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.118Z |
| CVE-1999-0400 |
N/A
|
Denial of service in Linux 2.2.0 running the ldd … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.037Z |
| CVE-1999-0401 |
N/A
|
A race condition in Linux 2.2.1 allows local user… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.159Z |
| CVE-1999-0406 |
N/A
|
Digital Unix Networker program nsralist has a buf… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.126Z |
| CVE-1999-0411 |
N/A
|
Several startup scripts in SCO OpenServer Enterpr… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.198Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0286 |
N/A
|
In some NT web servers, appending a space at the … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.867Z |
| CVE-1999-0287 |
N/A
|
Vulnerability in the Wguest CGI program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.837Z |
| CVE-1999-0298 |
N/A
|
ypbind with -ypset and -ypsetme options activated… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.864Z |
| CVE-1999-0306 |
N/A
|
buffer overflow in HP xlock program. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.887Z |
| CVE-1999-0307 |
N/A
|
Buffer overflow in HP-UX cstm program allows loca… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.862Z |
| CVE-1999-0317 |
N/A
|
Buffer overflow in Linux su command gives root ac… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.036Z |
| CVE-1999-0319 |
N/A
|
Buffer overflow in xmcd 2.1 allows local users to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.893Z |
| CVE-1999-0330 |
N/A
|
Linux bdash game has a buffer overflow that allow… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.895Z |
| CVE-1999-0331 |
N/A
|
Buffer overflow in Internet Explorer 4.0(1). |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.893Z |
| CVE-1999-0333 |
N/A
|
HP OpenView Omniback allows remote execution of c… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.021Z |
| CVE-1999-0336 |
N/A
|
Buffer overflow in mstm in HP-UX allows local use… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.955Z |
| CVE-1999-0345 |
N/A
|
Jolt ICMP attack causes a denial of service in Wi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.895Z |
| CVE-1999-0347 |
N/A
|
Internet Explorer 4.01 allows remote attackers to… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0352 |
N/A
|
ControlIT 4.5 and earlier (aka Remotely Possible)… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.026Z |
| CVE-1999-0354 |
N/A
|
Internet Explorer 4.x or 5.x with Word 97 allows … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.957Z |
| CVE-1999-0356 |
N/A
|
ControlIT v4.5 and earlier uses weak encryption t… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.131Z |
| CVE-1999-0360 |
N/A
|
MS Site Server 2.0 with IIS 4 can allow users to … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.888Z |
| CVE-1999-0361 |
N/A
|
NetWare version of LaserFiche stores usernames an… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.897Z |
| CVE-1999-0364 |
N/A
|
Microsoft Access 97 stores a database password as… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.833Z |
| CVE-1999-0370 |
N/A
|
In Sun Solaris and SunOS, man and catman contain … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.031Z |
| CVE-1999-0381 |
N/A
|
super 3.11.6 and other versions have a buffer ove… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.941Z |
| CVE-1999-0389 |
N/A
|
Buffer overflow in the bootp server in the Debian… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.901Z |
| CVE-1999-0394 |
N/A
|
DPEC Online Courseware allows an attacker to chan… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.027Z |
| CVE-1999-0397 |
N/A
|
The demo version of the Quakenbush NT Password Ap… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.964Z |
| CVE-1999-0398 |
N/A
|
In some instances of SSH 1.2.27 and 2.0.11 on Lin… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.945Z |
| CVE-1999-0399 |
N/A
|
The DCC server command in the Mirc 5.5 client doe… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.118Z |
| CVE-1999-0400 |
N/A
|
Denial of service in Linux 2.2.0 running the ldd … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.037Z |
| CVE-1999-0401 |
N/A
|
A race condition in Linux 2.2.1 allows local user… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.159Z |
| CVE-1999-0406 |
N/A
|
Digital Unix Networker program nsralist has a buf… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.126Z |
| CVE-1999-0411 |
N/A
|
Several startup scripts in SCO OpenServer Enterpr… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.198Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-1999-1297 | cmdtool in OpenWindows 3.0 and XView 3.0 in SunOS 4.1.4 and earlier allows attackers with physical … | 1998-07-15T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1433 | HP JetAdmin D.01.09 on Solaris allows local users to change the permissions of arbitrary files via … | 1998-07-15T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1582 | By design, the "established" command on the Cisco PIX firewall allows connections from one host to … | 1998-07-15T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0263 | Solaris SUNWadmap can be exploited to obtain root access. | 1998-07-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1149 | Buffer overflow in CSM Proxy 4.1 allows remote attackers to cause a denial of service (crash) via a… | 1998-07-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1432 | Power management (Powermanagement) on Solaris 2.4 through 2.6 does not start the xlock process unti… | 1998-07-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1558 | Vulnerability in loginout in Digital OpenVMS 7.1 and earlier allows unauthorized access when extern… | 1998-07-16T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0005 | Arbitrary command execution via IMAP buffer overflow in authenticate command. | 1998-07-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1200 | Vintra SMTP MailServer allows remote attackers to cause a denial of service via a malformed "EXPN *… | 1998-07-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1420 | NBase switches NH2012, NH2012R, NH2015, and NH2048 have a back door password that cannot be disable… | 1998-07-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1421 | NBase switches NH208 and NH215 run a TFTP server which allows remote attackers to send software upd… | 1998-07-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1070 | Buffer overflow in ping CGI program in Xylogics Annex terminal service allows remote attackers to c… | 1998-07-25T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0941 | Mutt mail client allows a remote attacker to execute commands via shell metacharacters. | 1998-07-28T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1447 | Internet Explorer 4.0 allows remote attackers to cause a denial of service (crash) via HTML code th… | 1998-07-28T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1406 | dumpreg in Red Hat Linux 5.1 opens /dev/mem with O_RDWR access, which allows local users to cause a… | 1998-07-29T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1448 | Eudora and Eudora Light before 3.05 allows remote attackers to cause a crash and corrupt the user's… | 1998-07-29T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1136 | Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers… | 1998-07-30T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0269 | Netscape Enterprise servers may list files through the PageServices query. | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0288 | The WINS server in Microsoft Windows NT 4.0 before SP4 allows remote attackers to cause a denial of… | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0333 | HP OpenView Omniback allows remote execution of commands as root via spoofing, and local users can … | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0339 | Buffer overflow in the libauth library in Solaris allows local users to gain additional privileges,… | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0344 | NT users can gain debug-level access on a system process using the Sechole exploit. | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0516 | An SNMP community name is guessable. | 1998-08-01T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0062 | The chpass command in OpenBSD allows a local user to gain root access through file descriptor leakage. | 1998-08-03T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0262 | Hylafax faxsurvey CGI script on Linux allows remote attackers to execute arbitrary commands via she… | 1998-08-04T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1199 | Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource … | 1998-08-07T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0159 | Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (s… | 1998-08-12T04:00:00.000 | 2025-08-27T19:15:33.120 |
| fkie_cve-1999-1283 | Opera 3.2.1 allows remote attackers to cause a denial of service (application crash) via a URL that… | 1998-08-14T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-0157 | Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service. | 1998-08-18T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-1999-1416 | AnswerBook2 (AB2) web server dwhttpd 3.1a4 allows remote attackers to cause a denial of service (re… | 1998-08-23T04:00:00.000 | 2025-04-03T01:03:51.193 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-5h6m-9mvx-m6c5 |
6.1 (3.1)
5.1 (4.0)
|
Moderate severity vulnerability that affects mayan-edms | 2018-09-06T03:25:03Z | 2024-09-24T15:29:53Z |
| ghsa-vqcq-mrmw-mcmg |
9.8 (3.1)
|
Rubyzip gem contains a Directory Traversal vulnerability in zip file component | 2018-09-06T03:27:18Z | 2022-04-26T18:30:20Z |
| ghsa-w578-j992-554x |
9.8 (3.1)
9.3 (4.0)
|
Ansible fails to properly mark lookup-plugin results as unsafe | 2018-09-06T03:28:50Z | 2025-05-29T22:47:16Z |
| ghsa-pp57-mqmh-44h7 |
9.8 (3.1)
|
Command Injection in macaddress | 2018-09-06T23:24:21Z | 2021-09-16T18:18:02Z |
| ghsa-qg3g-2mgh-33j8 |
9.8 (3.1)
|
Sensitive Data Exposure in msrcrypto | 2018-09-10T15:19:49Z | 2021-09-16T19:58:01Z |
| ghsa-9mr8-6prp-gwjv |
8.8 (3.1)
|
SQL Injection in query-mysql | 2018-09-10T15:20:30Z | 2021-09-08T20:06:59Z |
| ghsa-rq8g-5pc5-wrhr |
9.8 (3.1)
|
Insufficient Entropy in cryptiles | 2018-09-11T18:22:50Z | 2023-03-29T19:11:42Z |
| ghsa-xqvg-xm9m-p2c4 |
6.5 (3.1)
|
Moderate severity vulnerability that affects mailman | 2018-09-11T18:57:16Z | 2021-09-22T16:31:46Z |
| ghsa-2j2j-8rrv-264g |
6.1 (3.1)
|
Cross-Site Scripting in exceljs | 2018-09-11T18:58:40Z | 2023-09-13T18:50:53Z |
| ghsa-fpwp-69xv-c67f |
6.5 (3.1)
7.1 (4.0)
|
aiohttp-session Session Fixation vulnerability | 2018-09-13T15:46:40Z | 2025-07-11T23:17:38Z |
| ghsa-h6h9-pphv-m266 |
8.1 (3.1)
8.3 (4.0)
|
Topydo Improper Input Validation vulnerability | 2018-09-13T15:47:26Z | 2024-11-13T22:55:00Z |
| ghsa-m4fw-77v7-924m |
6.1 (3.1)
5.3 (4.0)
|
Qutebrowser XSS Vulnerability | 2018-09-13T15:47:57Z | 2024-10-25T21:36:47Z |
| ghsa-pj7m-g53m-7638 |
6.1 (3.1)
|
Bootstrap Cross-site Scripting vulnerability | 2018-09-13T15:49:56Z | 2025-11-19T14:25:32Z |
| ghsa-7mvr-5x2g-wfc8 |
6.1 (3.1)
|
Bootstrap Cross-site Scripting vulnerability | 2018-09-13T15:50:32Z | 2024-08-05T16:31:55Z |
| ghsa-5cv7-r488-wc5x |
7.5 (3.1)
|
noderequest is malware | 2018-09-17T20:39:17Z | 2023-09-07T18:32:19Z |
| ghsa-c9j3-wqph-5xx9 |
9.8 (3.1)
|
Command Injection in egg-scripts | 2018-09-17T20:43:34Z | 2023-02-03T20:45:07Z |
| ghsa-cfhg-9x44-78h2 |
9.8 (3.1)
|
ps Enables OS Command Injection | 2018-09-17T20:43:59Z | 2023-09-11T18:21:34Z |
| ghsa-8462-q7x7-g2x4 |
7.5 (3.1)
|
js-bson vulnerable to REDoS | 2018-09-17T20:44:58Z | 2023-09-05T23:09:22Z |
| ghsa-6g87-ff9q-v847 |
7.5 (3.1)
8.7 (4.0)
|
websockets is vulnerable to denial of service by memory exhaustion | 2018-09-17T20:46:52Z | 2024-11-19T18:06:51Z |
| ghsa-544j-77x9-h938 |
|
Moderate severity vulnerability that affects actionpack | 2018-09-17T21:53:30Z | 2021-12-03T14:12:20Z |
| ghsa-7hp2-xwpj-95jq |
7.5 (3.1)
|
Denial of service or RCE from libxml2 and libxslt | 2018-09-17T21:53:42Z | 2023-06-30T19:54:52Z |
| ghsa-qf5x-qgx7-437h |
|
Moderate severity vulnerability that affects actionpack | 2018-09-17T21:54:11Z | 2020-06-17T15:15:04Z |
| ghsa-23v3-qfrj-wmgh |
|
Moderate severity vulnerability that affects actionpack | 2018-09-17T21:54:22Z | 2020-06-16T20:51:48Z |
| ghsa-5xmj-wm96-fmw8 |
|
Moderate severity vulnerability that affects actionpack | 2018-09-17T21:54:37Z | 2020-06-16T21:38:53Z |
| ghsa-m53f-rhq8-q6hf |
|
Moderate severity vulnerability that affects actionpack | 2018-09-17T21:55:03Z | 2021-12-03T14:21:39Z |
| ghsa-685w-vc84-wxcx |
|
Doorkeeper vulnerable to Cross-site Request Forgery | 2018-09-17T21:55:22Z | 2025-04-14T21:54:39Z |
| ghsa-v543-gqhh-6gww |
|
Duplicate Advisory: Moderate severity vulnerability that affects activemodel | 2018-09-17T21:55:43Z | 2022-10-05T19:27:48Z |
| ghsa-6834-r92f-jj42 |
|
Moderate severity vulnerability that affects actionview | 2018-09-17T21:55:54Z | 2021-12-03T14:23:09Z |
| ghsa-9vc2-p34x-jhxh |
|
Moderate severity vulnerability that affects rack | 2018-09-17T21:56:30Z | 2020-06-16T21:54:47Z |
| ghsa-35c4-f3rq-f9g3 |
|
Moderate severity vulnerability that affects activesupport | 2018-09-17T21:57:23Z | 2020-06-16T21:42:52Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2018-147 |
6.5 (3.1)
|
In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows re… | exiv2 | 2018-03-25T03:29:00Z | 2024-11-21T14:22:49.341312Z |
| pysec-2018-148 |
6.5 (3.1)
|
In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the con… | exiv2 | 2018-03-30T08:29:00Z | 2024-11-21T14:22:49.400819Z |
| pysec-2018-101 |
|
SickRage before v2018.03.09-1 includes cleartext credentials in HTTP responses. | sickrage | 2018-03-31T21:29:00Z | 2021-08-27T03:22:21.352713Z |
| pysec-2018-86 |
|
Koji version 1.12, 1.13, 1.14 and 1.15 contain an incorrect access control vulnerability … | koji | 2018-04-04T20:29:00Z | 2021-08-27T03:22:05.857986Z |
| pysec-2018-100 |
|
base/oi/doa.py in the Rope library in CPython (aka Python) allows remote attackers to exe… | rope | 2018-04-06T16:29:00Z | 2021-08-27T03:22:19.565672Z |
| pysec-2018-10 |
|
Kotti before 1.3.2 and 2.x before 2.0.0b2 has CSRF in the local roles implementation, as … | kotti | 2018-04-09T07:29:00Z | 2021-06-10T06:51:50.431238Z |
| pysec-2018-84 |
|
JSNAPy is an open source python version of Junos Snapshot Administrator developed by Juni… | jsnapy | 2018-04-11T19:29:00Z | 2021-08-27T03:22:05.101975Z |
| pysec-2018-59 |
|
The safe_eval function in trytond in Tryton before 2.4.15, 2.6.x before 2.6.14, 2.8.x bef… | trytond | 2018-04-12T15:29:00Z | 2021-10-12T02:55:35.904690Z |
| pysec-2018-83 |
|
diffoscope before 77 writes to arbitrary locations on disk based on the contents of an un… | diffoscope | 2018-04-13T16:29:00Z | 2021-08-27T03:21:57.266779Z |
| pysec-2018-31 |
|
tlslite-ng version 0.7.3 and earlier, since commit d7b288316bca7bcdd082e6ccff5491e2413052… | tlslite-ng | 2018-04-18T19:29:00Z | 2021-06-16T00:03:25.014006Z |
| pysec-2018-55 |
|
gunicorn version 19.4.5 contains a CWE-113: Improper Neutralization of CRLF Sequences in … | gunicorn | 2018-04-18T19:29:00Z | 2021-07-15T02:22:14.592267Z |
| pysec-2018-75 |
|
OISF suricata-update version 1.0.0a1 contains an Insecure Deserialization vulnerability i… | suricata-update | 2018-04-18T19:29:00Z | 2021-08-25T04:30:32.993759Z |
| pysec-2018-50 |
|
In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master. | salt | 2018-04-23T22:29:00Z | 2021-07-05T00:01:26.870701Z |
| pysec-2018-39 |
|
Ansible before versions 2.1.4, 2.2.1 is vulnerable to an improper input validation in Ans… | ansible | 2018-04-24T16:29:00Z | 2021-07-02T02:41:33.713953Z |
| pysec-2018-36 |
|
Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle at… | ansible | 2018-05-04T20:29:00Z | 2021-07-02T02:41:32.885648Z |
| pysec-2018-125 |
6.5 (3.1)
|
Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based buffer over-read. | exiv2 | 2018-05-07T07:29:00Z | 2024-11-21T14:22:47.938221Z |
| pysec-2018-104 |
|
python-oslo-middleware before versions 3.8.1, 3.19.1, 3.23.1 is vulnerable to an informat… | oslo-middleware | 2018-05-08T17:29:00Z | 2021-11-16T21:20:29.327956Z |
| pysec-2018-126 |
6.5 (3.1)
|
In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at… | exiv2 | 2018-05-10T02:29:00Z | 2024-11-21T14:22:47.998655Z |
| pysec-2018-127 |
6.5 (3.1)
|
An issue was discovered in Exiv2 0.26. readMetadata in jp2image.cpp allows remote attacke… | exiv2 | 2018-05-12T04:29:00Z | 2024-11-21T14:22:48.062891Z |
| pysec-2018-128 |
6.5 (3.1)
|
An issue was discovered in Exiv2 0.26. The Exiv2::Internal::PngChunk::parseTXTChunk funct… | exiv2 | 2018-05-12T04:29:00Z | 2024-11-21T14:22:48.18647Z |
| pysec-2018-129 |
6.5 (3.1)
|
In Exiv2 0.26, the Exiv2::PngImage::printStructure function in pngimage.cpp allows remote… | exiv2 | 2018-05-14T03:29:00Z | 2024-11-21T14:22:48.247062Z |
| pysec-2018-130 |
9.8 (3.1)
|
Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp. | exiv2 | 2018-05-29T07:29:00Z | 2024-11-21T14:22:48.306556Z |
| pysec-2018-150 |
7.5 (3.1)
|
Hyperledger Iroha versions v1.0_beta and v1.0.0_beta-1 are vulnerable to transaction and … | iroha | 2018-06-01T19:29:00Z | 2024-11-21T14:22:52.162008Z |
| pysec-2018-131 |
8.8 (3.1)
|
Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an o… | exiv2 | 2018-06-13T11:29:00Z | 2024-11-21T14:22:48.369854Z |
| pysec-2018-132 |
8.8 (3.1)
|
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to… | exiv2 | 2018-06-13T11:29:00Z | 2024-11-21T14:22:48.43262Z |
| pysec-2018-95 |
|
An issue was discovered in Yelp OSXCollector. A maliciously crafted Universal/fat binary … | osxcollector | 2018-06-13T22:29:00Z | 2021-08-27T03:22:09.893229Z |
| pysec-2018-116 |
|
Cross-site scripting (XSS) vulnerability in Airbnb Knowledge Repo 0.7.4 allows remote att… | knowledge-repo | 2018-06-17T20:29:00Z | 2021-12-14T08:16:52.814070Z |
| pysec-2018-40 |
|
Ansible before version 2.3 has an input validation vulnerability in the handling of data … | ansible | 2018-06-22T13:29:00Z | 2021-07-02T02:41:33.763354Z |
| pysec-2018-149 |
6.1 (3.1)
|
The Galaxy Project Galaxy version v14.10 contains a CWE-79: Improper Neutralization of In… | galaxy-app | 2018-06-26T16:29:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2018-26 |
|
qutebrowser version introduced in v0.11.0 (1179ee7a937fb31414d77d9970bac21095358449) cont… | qutebrowser | 2018-06-26T16:29:00Z | 2021-06-10T06:51:59.879286Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2022-6217 | Malicious code in sorareshshsjs (npm) | 2022-06-08T08:49:45Z | 2022-06-08T08:50:22Z |
| mal-2022-6217 | Malicious code in sorareshshsjs (npm) | 2022-06-08T08:49:45Z | 2022-06-08T08:50:22Z |
| MAL-2022-2679 | Malicious code in eg-clickstream-sdk-js (npm) | 2022-06-08T08:52:00Z | 2022-06-08T08:52:10Z |
| mal-2022-2679 | Malicious code in eg-clickstream-sdk-js (npm) | 2022-06-08T08:52:00Z | 2022-06-08T08:52:10Z |
| MAL-2022-7085 | Malicious code in web3-upgrade (npm) | 2022-06-08T08:52:50Z | 2022-06-08T08:52:50Z |
| mal-2022-7085 | Malicious code in web3-upgrade (npm) | 2022-06-08T08:52:50Z | 2022-06-08T08:52:50Z |
| MAL-2022-2243 | Malicious code in cron-mail (npm) | 2022-06-08T08:53:25Z | 2022-06-08T08:53:26Z |
| mal-2022-2243 | Malicious code in cron-mail (npm) | 2022-06-08T08:53:25Z | 2022-06-08T08:53:26Z |
| MAL-2022-124 | Malicious code in @blackice12/tiny (npm) | 2022-06-08T08:54:15Z | 2022-06-08T08:54:21Z |
| mal-2022-124 | Malicious code in @blackice12/tiny (npm) | 2022-06-08T08:54:15Z | 2022-06-08T08:54:21Z |
| MAL-2022-6476 | Malicious code in test-depss (npm) | 2022-06-08T08:56:16Z | 2022-06-08T08:56:16Z |
| mal-2022-6476 | Malicious code in test-depss (npm) | 2022-06-08T08:56:16Z | 2022-06-08T08:56:16Z |
| MAL-2022-2660 | Malicious code in ecobeeesss (npm) | 2022-06-08T08:57:06Z | 2022-06-08T08:57:06Z |
| MAL-2022-4884 | Malicious code in node-dvnr (npm) | 2022-06-08T08:57:06Z | 2022-06-08T08:57:06Z |
| mal-2022-2660 | Malicious code in ecobeeesss (npm) | 2022-06-08T08:57:06Z | 2022-06-08T08:57:06Z |
| mal-2022-4884 | Malicious code in node-dvnr (npm) | 2022-06-08T08:57:06Z | 2022-06-08T08:57:06Z |
| MAL-2022-7358 | Malicious code in yoti_2020 (npm) | 2022-06-08T09:00:11Z | 2022-06-08T09:00:12Z |
| mal-2022-7358 | Malicious code in yoti_2020 (npm) | 2022-06-08T09:00:11Z | 2022-06-08T09:00:12Z |
| MAL-2022-1160 | Malicious code in atlassian-sketch-plugin (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:06Z |
| MAL-2022-4031 | Malicious code in jira-cloud-for-sketch (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| MAL-2022-4032 | Malicious code in jira-frontend (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:02Z |
| MAL-2022-5077 | Malicious code in onepassword_events_api (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| MAL-2022-6723 | Malicious code in ual-reactjs-renderer-example (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:02Z |
| MAL-2022-6791 | Malicious code in universal-authenticator-library-js-example (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:02Z |
| MAL-2022-6986 | Malicious code in vt-blockchain-bootcamp-starter-frontend (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| MAL-2022-899 | Malicious code in ai-cluster-manager (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| mal-2022-1160 | Malicious code in atlassian-sketch-plugin (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:06Z |
| mal-2022-4031 | Malicious code in jira-cloud-for-sketch (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| mal-2022-4032 | Malicious code in jira-frontend (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:02Z |
| mal-2022-5077 | Malicious code in onepassword_events_api (npm) | 2022-06-08T09:01:01Z | 2022-06-08T09:01:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-2477 | Ansible: Schwachstelle ermöglicht Privilegieneskalation | 2020-03-24T23:00:00.000+00:00 | 2024-12-03T23:00:00.000+00:00 |
| wid-sec-w-2023-2759 | Squid: Schwachstelle ermöglicht Manipulation von Dateien | 2020-03-25T23:00:00.000+00:00 | 2023-10-26T22:00:00.000+00:00 |
| wid-sec-w-2023-2223 | OTRS: Mehrere Schwachstellen | 2020-03-26T23:00:00.000+00:00 | 2023-08-30T22:00:00.000+00:00 |
| wid-sec-w-2023-2476 | Ruby: Mehrere Schwachstellen | 2020-03-31T22:00:00.000+00:00 | 2025-01-08T23:00:00.000+00:00 |
| wid-sec-w-2025-2548 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2020-03-31T22:00:00.000+00:00 | 2025-12-02T23:00:00.000+00:00 |
| wid-sec-w-2023-2475 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-04-02T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2024-0539 | Red Hat OpenStack: Mehrere Schwachstellen | 2020-04-05T22:00:00.000+00:00 | 2024-03-03T23:00:00.000+00:00 |
| wid-sec-w-2024-1979 | QEMU: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-04-05T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-1748 | GNU libc: Schwachstelle ermöglicht Privilegieneskalation | 2020-04-06T22:00:00.000+00:00 | 2023-08-23T22:00:00.000+00:00 |
| wid-sec-w-2024-0439 | libssh: Schwachstelle ermöglicht Denial of Service | 2020-04-08T22:00:00.000+00:00 | 2024-05-07T22:00:00.000+00:00 |
| wid-sec-w-2022-1639 | Oracle Java SE: Mehrere Schwachstellen | 2020-04-14T22:00:00.000+00:00 | 2025-04-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1049 | Oracle MySQL: Mehrere Schwachstellen | 2020-04-14T22:00:00.000+00:00 | 2023-04-20T22:00:00.000+00:00 |
| wid-sec-w-2024-1450 | Aruba ClearPass Policy Manager: Mehrere Schwachstellen | 2020-04-14T22:00:00.000+00:00 | 2024-11-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0189 | git: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-04-14T22:00:00.000+00:00 | 2025-01-27T23:00:00.000+00:00 |
| wid-sec-w-2022-1593 | Squid: Mehrere Schwachstellen | 2020-04-15T22:00:00.000+00:00 | 2023-10-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1825 | IBM MQ: Mehrere Schwachstellen | 2020-04-16T22:00:00.000+00:00 | 2023-07-19T22:00:00.000+00:00 |
| wid-sec-w-2022-1594 | Squid: Mehrere Schwachstellen | 2020-04-19T22:00:00.000+00:00 | 2023-10-26T22:00:00.000+00:00 |
| wid-sec-w-2023-3080 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2020-04-21T22:00:00.000+00:00 | 2024-11-25T23:00:00.000+00:00 |
| wid-sec-w-2023-2474 | Squid: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2020-04-22T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2022-0770 | IBM DB2: Mehrere Schwachstellen | 2020-04-23T22:00:00.000+00:00 | 2024-05-16T22:00:00.000+00:00 |
| wid-sec-w-2023-2222 | OTRS: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-04-26T22:00:00.000+00:00 | 2023-08-30T22:00:00.000+00:00 |
| wid-sec-w-2024-1978 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-04-26T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-0270 | libTIFF: Schwachstelle ermöglicht Denial of Service | 2020-04-28T22:00:00.000+00:00 | 2023-02-02T23:00:00.000+00:00 |
| wid-sec-w-2023-0458 | Red Hat Liblouis: Mehrere Schwachstellen | 2020-04-28T22:00:00.000+00:00 | 2024-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-2406 | OpenSC: Schwachstelle ermöglicht Codeausführung | 2020-04-28T22:00:00.000+00:00 | 2023-09-20T22:00:00.000+00:00 |
| wid-sec-w-2024-0586 | Red Hat fontforge: Schwachstelle ermöglicht Codeausführung | 2020-04-28T22:00:00.000+00:00 | 2024-03-07T23:00:00.000+00:00 |
| wid-sec-w-2024-1288 | Red Hat edk2: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2020-04-28T22:00:00.000+00:00 | 2024-06-04T22:00:00.000+00:00 |
| wid-sec-w-2024-3163 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2020-04-29T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2022-1347 | jQuery: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2020-05-03T22:00:00.000+00:00 | 2025-05-29T22:00:00.000+00:00 |
| wid-sec-w-2024-1449 | SaltStack Salt: Mehrere Schwachstellen ermöglichen Erlangen von Administratorrechten | 2020-05-04T22:00:00.000+00:00 | 2024-06-25T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0287 | Kwetsbaarheden verholpen in Cisco NX-OS Software | 2025-09-11T08:18:37.706725Z | 2025-09-11T08:18:37.706725Z |
| ncsc-2025-0288 | Kwetsbaarheden verholpen in GitLab CE/EE | 2025-09-12T14:49:52.285990Z | 2025-09-12T14:49:52.285990Z |
| ncsc-2025-0289 | Kwetsbaarheden verholpen in Omnissa Workspace ONE UEM | 2025-09-12T15:23:20.359090Z | 2025-09-12T15:23:20.359090Z |
| ncsc-2025-0290 | Kwetsbaarheden verholpen in Apple macOS | 2025-09-16T11:16:20.572265Z | 2025-09-16T11:16:20.572265Z |
| ncsc-2025-0291 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2025-09-16T11:17:27.365694Z | 2025-09-16T11:17:27.365694Z |
| ncsc-2025-0292 | Kwetsbaarheden verholpen in Ivanti producten | 2025-09-16T12:21:50.959347Z | 2025-09-16T12:21:50.959347Z |
| ncsc-2025-0293 | Kwetsbaarheden verholpen in Spring Framework | 2025-09-16T13:38:44.960337Z | 2025-09-16T13:38:44.960337Z |
| ncsc-2025-0294 | Kwetsbaarheden verholpen in HPE Aruba Networking EdgeConnect SD-WAN Gateways | 2025-09-18T12:02:45.239087Z | 2025-09-18T12:02:45.239087Z |
| ncsc-2025-0295 | Kwetsbaarheid verholpen in Fortra's GoAnywhere MFT | 2025-09-19T12:26:42.186246Z | 2025-09-19T12:26:42.186246Z |
| ncsc-2025-0296 | Kwetsbaarheid verholpen in WatchGuard Fireware OS | 2025-09-19T13:31:26.392203Z | 2025-10-17T08:19:28.145953Z |
| ncsc-2025-0297 | Kwetsbaarheden verholpen in Cisco IOS en Cisco IOS XE Software | 2025-09-25T09:20:07.678881Z | 2025-09-25T10:42:19.129323Z |
| ncsc-2025-0298 | Kwetsbaarheden verholpen in Cisco Secure Firewall ASA en FTD | 2025-09-25T18:17:20.040958Z | 2025-09-25T18:17:20.040958Z |
| ncsc-2025-0299 | Kwetsbaarheden verholpen in Zenitel ICX500 en ICX510 Gateway | 2025-09-26T07:00:18.729367Z | 2025-09-26T07:00:18.729367Z |
| ncsc-2025-0300 | Kwetsbaarheden verholpen in GitLab EE & CE | 2025-09-29T09:40:53.033373Z | 2025-09-29T09:40:53.033373Z |
| ncsc-2025-0301 | Kwetsbaarheden verholpen in VMware NSX | 2025-09-30T08:29:24.969885Z | 2025-09-30T08:29:24.969885Z |
| ncsc-2025-0302 | Kwetsbaarheid verholpen in IBM InfoSphere | 2025-09-30T08:31:27.582962Z | 2025-09-30T08:31:27.582962Z |
| ncsc-2025-0303 | Kwetsbaarheid verholpen in Oracle E-Business Suite | 2025-10-05T09:07:57.122302Z | 2025-10-08T13:03:30.836713Z |
| ncsc-2025-0304 | Kwetsbaarheden verholpen in Redis | 2025-10-08T11:43:37.331971Z | 2025-10-08T11:43:37.331971Z |
| ncsc-2025-0305 | Kwetsbaarheden verholpen in Juniper Networks Junos OS | 2025-10-13T07:17:00.445318Z | 2025-10-13T07:17:00.445318Z |
| ncsc-2025-0306 | Kwetsbaarheden verholpen in GitLab | 2025-10-13T07:25:32.225768Z | 2025-10-13T07:25:32.225768Z |
| ncsc-2025-0307 | Kwetsbaarheid verholpen in Oracle E-Business Suite | 2025-10-13T07:52:22.500853Z | 2025-10-13T07:52:22.500853Z |
| ncsc-2025-0308 | Kwetsbaarheden verholpen in Juniper Networks Junos Space | 2025-10-13T08:31:03.235596Z | 2025-10-13T08:31:03.235596Z |
| ncsc-2025-0309 | Kwetsbaarheden verholpen in Siemens producten | 2025-10-14T11:22:10.254089Z | 2025-10-14T11:22:10.254089Z |
| ncsc-2025-0310 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-10-14T18:03:45.875739Z | 2025-10-24T11:09:29.790442Z |
| ncsc-2025-0311 | Kwetsbaarheden verholpen in Microsoft Azure | 2025-10-14T18:13:41.244373Z | 2025-10-14T18:13:41.244373Z |
| ncsc-2025-0312 | Kwetsbaarheden verholpen in Microsoft Exchange | 2025-10-14T18:16:12.274468Z | 2025-10-14T18:16:12.274468Z |
| ncsc-2025-0313 | Kwetsbaarheden verholpen in Microsoft Developer Tools | 2025-10-14T18:21:47.576457Z | 2025-10-14T18:21:47.576457Z |
| ncsc-2025-0314 | Kwetsbaarheden verholpen in Microsoft System Center | 2025-10-14T18:27:56.075338Z | 2025-10-14T18:27:56.075338Z |
| ncsc-2025-0315 | Kwetsbaarheden verholpen in Microsoft Office | 2025-10-14T18:38:05.692251Z | 2025-10-14T18:38:05.692251Z |
| ncsc-2025-0316 | Kwetsbaarheid verholpen in Microsoft SQL Server | 2025-10-14T18:52:06.487996Z | 2025-10-14T18:52:06.487996Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-368868 | SSA-368868: Multiple Vulnerabilities in WibuKey for Windows | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-426509 | SSA-426509: Multiple Local Code Execution Vulnerabilities in Questa and ModelSim | 2024-10-08T00:00:00Z | 2025-06-17T00:00:00Z |
| ssa-430425 | SSA-430425: Multiple Vulnerabilities in SINEC Security Monitor before V4.9.0 | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-540493 | SSA-540493: Kiosk Mode Escape Vulnerability in HiMed Cockpit Devices Before V11.6.2 | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-583523 | SSA-583523: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2024-10-08T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-626178 | SSA-626178: Stack-Based Buffer Overflow Vulnerability in JT2Go Before V2406.0003 | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-850560 | SSA-850560: Use of 4-Digit PIN in SENTRON PAC3200 Devices | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-852501 | SSA-852501: Multiple Memory Corruption Vulnerabilities in Simcenter Nastran Before 2406.5000 | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-876787 | SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs | 2024-10-08T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-959281 | SSA-959281: XML File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| ssa-438590 | SSA-438590: Buffer Overflow Vulnerability in Siveillance Video Camera Drivers | 2024-10-10T00:00:00Z | 2024-10-10T00:00:00Z |
| ssa-333468 | SSA-333468: Multiple Vulnerabilities in InterMesh Subscriber Devices | 2024-10-23T00:00:00Z | 2024-10-23T00:00:00Z |
| ssa-000297 | SSA-000297: Multiple SQLite Vulnerabilities in RUGGEDCOM CROSSBOW Station Access Controller Before V5.6 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-064257 | SSA-064257: Privilege Escalation Vulnerability in SIPORT Before V3.4.0 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-230445 | SSA-230445: Stored XSS Vulnerability in OZW Web Servers Before V5.2 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-331112 | SSA-331112: Multiple Vulnerabilities in SINEC NMS Before V3.0 SP1 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-351178 | SSA-351178: Multiple Vulnerabilities in Solid Edge Before SE2024 Update 9 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-354112 | SSA-354112: Multiple Vulnerabilities in SCALANCE M-800 Family Before V8.2 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-454789 | SSA-454789: Deserialization Vulnerability in TeleControl Server Basic V3.1 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-616032 | SSA-616032: Local Privilege Escalation Vulnerability in Spectrum Power 7 Before V24Q3 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-654798 | SSA-654798: Incorrect Authorization Vulnerability in SIMATIC CP 1543-1 Devices | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-871035 | SSA-871035: Session-Memory Deserialization Vulnerability in Siemens Engineering Platforms Before V19 | 2024-11-12T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-914892 | SSA-914892: Race Condition Vulnerability in Basic Authentication Implementation of Mendix Runtime | 2024-11-12T00:00:00Z | 2025-08-12T00:00:00Z |
| ssa-915275 | SSA-915275: Multiple Vulnerabilities in SINEC INS Before V1.0 SP2 Update 3 | 2024-11-12T00:00:00Z | 2024-11-12T00:00:00Z |
| ssa-472448 | SSA-472448: Security Bypass Vulnerability in the SQL Client-Server Communication in Siveillance Video | 2024-11-13T00:00:00Z | 2024-11-13T00:00:00Z |
| ssa-824503 | SSA-824503: Multiple WRL File Parsing Vulnerabilities in Tecnomatix Plant Simulation Before V2302.0018 and V2404.0007 | 2024-11-18T00:00:00Z | 2024-11-18T00:00:00Z |
| ssa-354569 | SSA-354569: Multiple Vulnerabilities in Palo Alto Networks PAN-OS on RUGGEDCOM APE1808 Devices | 2024-11-22T00:00:00Z | 2025-06-10T00:00:00Z |
| ssa-128393 | SSA-128393: Firmware Decryption Vulnerability in SICAM A8000 CP-8031 and CP-8050 | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-384652 | SSA-384652: Cross-Site Request Forgery (CSRF) Vulnerability in RUGGEDCOM ROX II | 2024-12-10T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-392859 | SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20 | 2024-12-10T00:00:00Z | 2025-12-09T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2003:280 | Red Hat Security Advisory: openssh security update | 2003-09-16T17:51:00+00:00 | 2025-11-21T17:26:29+00:00 |
| rhsa-2003_280 | Red Hat Security Advisory: openssh security update | 2003-09-16T17:51:00+00:00 | 2024-11-21T22:51:24+00:00 |
| rhsa-2003:279 | Red Hat Security Advisory: : Updated OpenSSH packages fix potential vulnerabilities | 2003-09-16T17:53:00+00:00 | 2025-11-21T17:26:33+00:00 |
| rhsa-2003_279 | Red Hat Security Advisory: : Updated OpenSSH packages fix potential vulnerabilities | 2003-09-16T17:53:00+00:00 | 2024-11-21T22:51:20+00:00 |
| rhsa-2003:269 | Red Hat Security Advisory: : Updated KDE packages fix security issues | 2003-09-16T20:44:00+00:00 | 2025-11-21T17:26:27+00:00 |
| rhsa-2003_269 | Red Hat Security Advisory: : Updated KDE packages fix security issues | 2003-09-16T20:44:00+00:00 | 2024-11-21T22:50:18+00:00 |
| rhsa-2003:270 | Red Hat Security Advisory: kdebase security update | 2003-09-16T20:54:00+00:00 | 2025-11-21T17:26:27+00:00 |
| rhsa-2003_270 | Red Hat Security Advisory: kdebase security update | 2003-09-16T20:54:00+00:00 | 2024-11-21T22:50:22+00:00 |
| rhsa-2003:284 | Red Hat Security Advisory: sendmail security update | 2003-09-17T19:13:00+00:00 | 2025-11-21T17:26:31+00:00 |
| rhsa-2003_284 | Red Hat Security Advisory: sendmail security update | 2003-09-17T19:13:00+00:00 | 2024-11-21T22:51:46+00:00 |
| rhsa-2003:283 | Red Hat Security Advisory: : Updated Sendmail packages fix vulnerability. | 2003-09-17T23:42:00+00:00 | 2025-11-21T17:26:30+00:00 |
| rhsa-2003_283 | Red Hat Security Advisory: : Updated Sendmail packages fix vulnerability. | 2003-09-17T23:42:00+00:00 | 2024-11-21T22:51:42+00:00 |
| rhsa-2003:243 | Red Hat Security Advisory: : Updated Apache and mod_ssl packages fix security vulnerabilities | 2003-09-22T08:34:00+00:00 | 2025-11-21T17:26:23+00:00 |
| rhsa-2003_243 | Red Hat Security Advisory: : Updated Apache and mod_ssl packages fix security vulnerabilities | 2003-09-22T08:34:00+00:00 | 2024-11-21T22:48:37+00:00 |
| rhsa-2003:244 | Red Hat Security Advisory: apache security update | 2003-09-22T08:39:00+00:00 | 2025-11-21T17:26:23+00:00 |
| rhsa-2003_244 | Red Hat Security Advisory: apache security update | 2003-09-22T08:39:00+00:00 | 2024-11-21T22:48:41+00:00 |
| rhsa-2003:257 | Red Hat Security Advisory: perl security update | 2003-09-22T08:46:00+00:00 | 2025-11-21T17:26:25+00:00 |
| rhsa-2003_257 | Red Hat Security Advisory: perl security update | 2003-09-22T08:46:00+00:00 | 2024-11-21T22:49:29+00:00 |
| rhsa-2003:256 | Red Hat Security Advisory: : : : Updated Perl packages fix security issues. | 2003-09-22T08:52:00+00:00 | 2025-11-21T17:26:25+00:00 |
| rhsa-2003_256 | Red Hat Security Advisory: : : : Updated Perl packages fix security issues. | 2003-09-22T08:52:00+00:00 | 2024-11-21T22:49:25+00:00 |
| rhsa-2003:290 | Red Hat Security Advisory: mod_ssl, openssl security update for Stronghold | 2003-09-30T12:16:00+00:00 | 2025-11-21T17:26:34+00:00 |
| rhsa-2003_290 | Red Hat Security Advisory: mod_ssl, openssl security update for Stronghold | 2003-09-30T12:16:00+00:00 | 2024-11-21T22:52:00+00:00 |
| rhsa-2003:231 | Red Hat Security Advisory: semi security update | 2003-10-02T19:53:00+00:00 | 2025-11-21T17:26:18+00:00 |
| rhsa-2003_231 | Red Hat Security Advisory: semi security update | 2003-10-02T19:53:00+00:00 | 2024-11-21T22:47:53+00:00 |
| rhsa-2003:285 | Red Hat Security Advisory: sane-backends security update | 2003-10-07T15:52:00+00:00 | 2025-11-21T17:26:32+00:00 |
| rhsa-2003_285 | Red Hat Security Advisory: sane-backends security update | 2003-10-07T15:52:00+00:00 | 2024-11-21T22:51:06+00:00 |
| rhsa-2003:278 | Red Hat Security Advisory: : Updated SANE packages fix remote vulnerabilities | 2003-10-07T19:10:00+00:00 | 2025-11-21T17:26:29+00:00 |
| rhsa-2003_278 | Red Hat Security Advisory: : Updated SANE packages fix remote vulnerabilities | 2003-10-07T19:10:00+00:00 | 2024-11-21T22:51:03+00:00 |
| rhsa-2003:282 | Red Hat Security Advisory: mysql security update | 2003-10-09T08:53:00+00:00 | 2025-11-21T17:26:30+00:00 |
| rhsa-2003_282 | Red Hat Security Advisory: mysql security update | 2003-10-09T08:53:00+00:00 | 2024-11-21T22:51:30+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-16-082-01a | Siemens APOGEE Insight Incorrect File Permissions Vulnerability (Update A) | 2016-12-24T07:00:00.000000Z | 2025-06-05T21:38:41.495940Z |
| icsa-16-084-01 | Cogent DataHub Elevation of Privilege Vulnerability | 2016-12-26T07:00:00.000000Z | 2025-06-05T21:38:47.730754Z |
| icsma-17-009-01a | ICSMA-17-009-01A_St. Jude Merlin@home Transmitter Vulnerability (Update A) | 2017-01-09T00:00:00.000000Z | 2017-02-06T00:00:00.000000Z |
| icsa-17-010-01a | OSIsoft PI Coresight and PI Web API (Update A) | 2017-01-10T00:00:00.000000Z | 2017-07-11T00:00:00.000000Z |
| icsa-17-012-01 | Advantech WebAccess | 2017-01-12T00:00:00.000000Z | 2017-01-12T00:00:00.000000Z |
| icsa-17-012-02 | VideoInsight Web Client | 2017-01-12T00:00:00.000000Z | 2017-01-12T00:00:00.000000Z |
| icsa-17-012-03 | Carlo Gavazzi VMU-C EM and VMU-C PV | 2017-01-12T00:00:00.000000Z | 2017-01-12T00:00:00.000000Z |
| icsa-17-017-01 | PHOENIX CONTACT mGuard | 2017-01-17T00:00:00.000000Z | 2017-01-17T00:00:00.000000Z |
| icsma-17-017-01 | ICSMA-17-017-01_BD Alaris 8000 Insufficiently Protected Credentials Vulnerability | 2017-01-17T00:00:00.000000Z | 2017-02-07T00:00:00.000000Z |
| icsma-17-017-02 | BD Alaris 8015 PC Unit (Update B) | 2017-01-17T00:00:00.000000Z | 2021-03-16T00:00:00.000000Z |
| icsa-17-019-01a | Schneider Electric homeLYnk Controller (Update A) | 2017-01-19T00:00:00.000000Z | 2017-04-13T00:00:00.000000Z |
| icsa-17-024-01 | Schneider Electric Wonderware Historian | 2017-01-24T00:00:00.000000Z | 2017-01-24T00:00:00.000000Z |
| icsa-17-026-01 | Eaton ePDU Path Traversal Vulnerability | 2017-01-26T00:00:00.000000Z | 2017-01-26T00:00:00.000000Z |
| icsa-17-026-02a | Belden Hirschmann GECKO (Update A) | 2017-01-26T00:00:00.000000Z | 2017-04-18T00:00:00.000000Z |
| icsa-17-031-01a | BINOM3 Electric Power Quality Meter (Update A) | 2017-01-31T00:00:00.000000Z | 2017-02-07T00:00:00.000000Z |
| icsa-17-031-02 | Ecava IntegraXor | 2017-01-31T00:00:00.000000Z | 2017-01-31T00:00:00.000000Z |
| icsa-17-033-01 | Honeywell XL Web II Controller Vulnerabilities | 2017-02-02T00:00:00.000000Z | 2017-02-02T00:00:00.000000Z |
| icsa-17-038-01 | ICSA-17-038-01_Sielco Sistemi Winlog SCADA Software | 2017-02-07T00:00:00.000000Z | 2017-02-07T00:00:00.000000Z |
| icsa-17-040-01 | Hanwha Techwin Smart Security Manager | 2017-02-09T00:00:00.000000Z | 2017-02-09T00:00:00.000000Z |
| icsa-17-045-01 | Advantech WebAccess | 2017-02-14T00:00:00.000000Z | 2017-02-14T00:00:00.000000Z |
| icsa-17-045-02 | Geutebrück IP Cameras | 2017-02-14T00:00:00.000000Z | 2017-02-14T00:00:00.000000Z |
| icsa-17-045-03 | Siemens SIMATIC Authentication Bypass (Update D) | 2017-02-14T00:00:00.000000Z | 2018-06-12T00:00:00.000000Z |
| icsa-17-047-01 | Rockwell Automation Connected Components Workbench | 2017-02-16T00:00:00.000000Z | 2017-03-21T00:00:00.000000Z |
| icsa-17-047-02 | Rockwell Automation FactoryTalk Activation | 2017-02-16T00:00:00.000000Z | 2017-03-21T00:00:00.000000Z |
| icsa-17-054-01 | VIPA Controls WinPLC7 | 2017-02-23T00:00:00.000000Z | 2017-02-23T00:00:00.000000Z |
| icsa-17-054-02 | Red Lion Controls Sixnet-Managed Industrial Switches, AutomationDirect STRIDE-Managed Ethernet Switches Vulnerability | 2017-02-23T00:00:00.000000Z | 2017-02-23T00:00:00.000000Z |
| icsa-17-054-03 | Schneider Electric Modicon M340 PLC (Update A) | 2017-02-23T00:00:00.000000Z | 2019-01-10T00:00:00.000000Z |
| icsa-17-059-01 | Siemens RUGGEDCOM NMS | 2017-02-28T00:00:00.000000Z | 2017-02-28T00:00:00.000000Z |
| icsa-17-061-01 | ICSA-17-061-01_Eaton xComfort Ethernet Communication Interface | 2017-03-02T00:00:00.000000Z | 2017-03-02T00:00:00.000000Z |
| icsa-17-061-02 | Schneider Electric Conext ComBox | 2017-03-02T00:00:00.000000Z | 2017-03-02T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20190306-nxos-privesc | Cisco NX-OS Software Privilege Escalation Vulnerability | 2019-03-06T16:00:00+00:00 | 2019-03-06T16:00:00+00:00 |
| cisco-sa-20190306-nxos-privesca | Cisco NX-OS Software Privilege Escalation Vulnerability | 2019-03-06T16:00:00+00:00 | 2019-03-06T16:00:00+00:00 |
| cisco-sa-20190306-nxos-sig-verif | Cisco NX-OS Software Image Signature Verification Vulnerability | 2019-03-06T16:00:00+00:00 | 2019-04-15T14:48:02+00:00 |
| cisco-sa-20190306-nxosldap | Cisco FXOS and NX-OS Lightweight Directory Access Protocol Denial of Service Vulnerabilities | 2019-03-06T16:00:00+00:00 | 2019-03-06T16:00:00+00:00 |
| cisco-sa-20190306-tetra-ace | Cisco Nexus 9000 Series Switches Standalone NX-OS Mode Tetration Analytics Agent Arbitrary Code Execution Vulnerability | 2019-03-06T16:00:00+00:00 | 2019-03-06T16:00:00+00:00 |
| cisco-sa-20190313-cspcscv | Cisco Common Services Platform Collector Static Credential Vulnerability | 2019-03-13T16:00:00+00:00 | 2019-03-13T16:00:00+00:00 |
| cisco-sa-20190313-sip | Cisco Small Business SPA514G IP Phones SIP Denial of Service Vulnerability | 2019-03-13T16:00:00+00:00 | 2019-03-13T16:00:00+00:00 |
| cisco-sa-20190320-ip-phone-csrf | Cisco IP Phone 8800 Series Cross-Site Request Forgery Vulnerability | 2019-03-20T16:00:00+00:00 | 2019-03-22T19:30:00+00:00 |
| cisco-sa-20190320-ip-phone-rce | Cisco IP Phone 7800 Series and 8800 Series Remote Code Execution Vulnerability | 2019-03-20T16:00:00+00:00 | 2019-03-20T16:00:00+00:00 |
| cisco-sa-20190320-ipab | Cisco IP Phone 8800 Series Authorization Bypass Vulnerability | 2019-03-20T16:00:00+00:00 | 2019-03-22T19:30:00+00:00 |
| cisco-sa-20190320-ipfudos | Cisco IP Phone 8800 Series File Upload Denial of Service Vulnerability | 2019-03-20T16:00:00+00:00 | 2019-03-22T19:30:00+00:00 |
| cisco-sa-20190320-ipptv | Cisco IP Phone 8800 Series Path Traversal Vulnerability | 2019-03-20T16:00:00+00:00 | 2019-03-22T19:30:00+00:00 |
| cisco-sa-20190327-afu | Cisco IOS XE Software Arbitrary File Upload Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-c6500 | Cisco IOS Software Catalyst 6500 Series 802.1x Authentication Bypass Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-call-home-cert | Cisco IOS and IOS XE Software Smart Call Home Certificate Validation Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-cmp-dos | Cisco IOS and IOS XE Software Cluster Management Protocol Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-eta-dos | Cisco IOS XE Software Encrypted Traffic Analytics Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-evss | Cisco IOS XE Software Catalyst 4500 Cisco Discovery Protocol Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-info | Cisco IOS and IOS XE Software Information Disclosure Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-ios-infoleak | Cisco IOS and IOS XE Software Hot Standby Router Protocol Information Leak Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-04-01T15:45:00+00:00 |
| cisco-sa-20190327-iosxe-cmdinj | Cisco IOS XE Software Command Injection Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-iosxe-cmdinject | Cisco IOS XE Software Command Injection Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-iosxe-pe | Cisco IOS XE Software Privilege Escalation Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-iosxe-privesc | Cisco IOS XE Software Privilege Escalation Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-ipsla-dos | Cisco IOS and IOS XE Software IP Service Level Agreement Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-isdn | Cisco IOS and IOS XE Software ISDN Interface Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-mgmtacl | Cisco IOS XE Software Gigabit Ethernet Management Interface Access Control List Bypass Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-nat64 | Cisco IOS Software NAT64 Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-nbar | Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| cisco-sa-20190327-pfrv3 | Cisco IOS XE Software Performance Routing Version 3 Denial of Service Vulnerability | 2019-03-27T16:00:00+00:00 | 2019-03-27T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-10761 | An assertion failure issue was found in the Network Block Device(NBD) Server in all QEMU versions before QEMU 5.0.1. This flaw occurs when an nbd-client sends a spec-compliant request that is near the boundary of maximum permitted request length. A remote nbd-client could use this flaw to crash the qemu-nbd server resulting in a denial of service. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-11080 | Denial of service in nghttp2 | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13659 | address_space_map in exec.c in QEMU 4.2.0 can trigger a NULL pointer dereference related to BounceBuffer. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13754 | hw/pci/msix.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access via a crafted address in an msi-x mmio operation. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13776 | systemd through v245 mishandles numerical usernames such as ones composed of decimal digits or 0x followed by hex digits as demonstrated by use of root privileges when privileges of the 0x0 user account were intended. NOTE: this issue exists because of an incomplete fix for CVE-2017-1000082. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13777 | GnuTLS 3.6.x before 3.6.14 uses incorrect cryptography for encrypting a session ticket (a loss of confidentiality in TLS 1.2 and an authentication bypass in TLS 1.3). The earliest affected version is 3.6.4 (2018-09-24) because of an error in a 2018-09-18 commit. Until the first key rotation the TLS server always uses wrong data in place of an encryption key derived from an application. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13791 | hw/pci/pci.c in QEMU 4.2.0 allows guest OS users to trigger an out-of-bounds access by providing an address near the end of the PCI configuration space. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13800 | ati-vga in hw/display/ati.c in QEMU 4.2.0 allows guest OS users to trigger infinite recursion via a crafted mm_index value during an ati_mm_read or ati_mm_write call. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-13962 | Qt 5.12.2 through 5.14.2 as used in unofficial builds of Mumble 1.3.0 and other products mishandles OpenSSL's error queue which can cause a denial of service to QSslSocket users. Because errors leak in unrelated TLS sessions an unrelated session may be disconnected when any handshake fails. (Mumble 1.3.1 is not affected regardless of the Qt version.) | 2020-06-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-13974 | An issue was discovered in the Linux kernel 4.4 through 5.7.1. drivers/tty/vt/keyboard.c has an integer overflow if k_ascii is called several times in a row aka CID-b86dab054059. NOTE: Members in the community argue that the integer overflow does not lead to a security issue in this case. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14145 | The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected. | 2020-06-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14147 | An integer overflow in the getnum function in lua_struct.c in Redis before 6.0.3 allows context-dependent attackers with permission to run Lua code in a Redis session to cause a denial of service (memory corruption and application crash) or possibly bypass intended sandbox restrictions via a large number which triggers a stack-based buffer overflow. NOTE: this issue exists because of a CVE-2015-8080 regression. | 2020-06-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-14150 | GNU Bison before 3.5.4 allows attackers to cause a denial of service (application crash). NOTE: there is a risk only if Bison is used with untrusted input, and an observed bug happens to cause unsafe behavior with a specific compiler/architecture. The bug reports were intended to show that a crash may occur in Bison itself, not that a crash may occur in code that is generated by Bison. | 2020-06-02T00:00:00.000Z | 2025-10-01T23:11:04.000Z |
| msrc_cve-2020-14152 | In IJG JPEG (aka libjpeg) before 9d, jpeg_mem_available() in jmemnobs.c in djpeg does not honor the max_memory_to_use setting, possibly causing excessive memory consumption. | 2020-06-02T00:00:00.000Z | 2025-03-14T00:00:00.000Z |
| msrc_cve-2020-14155 | libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-14422 | Lib/ipaddress.py in Python through 3.8.3 improperly computes hash values in the IPv4Interface and IPv6Interface classes which might allow a remote attacker to cause a denial of service if an application is affected by the performance of a dictionary containing IPv4Interface or IPv6Interface objects and this attacker can cause many dictionary entries to be created. This is fixed in: v3.5.10 v3.5.10rc1; v3.6.12; v3.7.9; v3.8.4 v3.8.4rc1 v3.8.5 v3.8.6 v3.8.6rc1; v3.9.0 v3.9.0b4 v3.9.0b5 v3.9.0rc1 v3.9.0rc2. | 2020-06-02T00:00:00.000Z | 2020-11-10T00:00:00.000Z |
| msrc_cve-2020-15358 | In SQLite before 3.32.3 select.c mishandles query-flattener optimization leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation. | 2020-06-02T00:00:00.000Z | 2021-02-11T00:00:00.000Z |
| msrc_cve-2020-15393 | In the Linux kernel 4.4 through 5.7.6 usbtest_disconnect in drivers/usb/misc/usbtest.c has a memory leak aka CID-28ebeb8db770. | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-4040 | CSRF issue on preview pages in Bolt CMS | 2020-06-02T00:00:00.000Z | 2025-10-01T23:11:06.000Z |
| msrc_cve-2020-4041 | The filename of uploaded files vulnerable to stored XSS in Bolt CMS | 2020-06-02T00:00:00.000Z | 2025-10-01T23:11:07.000Z |
| msrc_cve-2020-7014 | The fix for CVE-2020-7009 was found to be incomplete. Elasticsearch versions from 6.7.0 to 6.8.7 and 7.0.0 to 7.6.1 contain a privilege escalation flaw if an attacker is able to create API keys and also authentication tokens. An attacker who is able to generate an API key and an authentication token can perform a series of steps that result in an authentication token being generated with elevated privileges. | 2020-06-02T00:00:00.000Z | 2021-12-01T00:00:00.000Z |
| msrc_cve-2020-8618 | A buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2020-8619 | A buffer boundary check assertion in rdataset.c can fail incorrectly during zone transfer | 2020-06-02T00:00:00.000Z | 2020-08-18T00:00:00.000Z |
| msrc_cve-2019-19338 | A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability. | 2020-07-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2019-20907 | In Lib/tarfile.py in Python through 3.8.3 an attacker is able to craft a TAR archive leading to an infinite loop when opened by tarfile.open because _proc_pax lacks header validation. | 2020-07-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2020-10713 | A flaw was found in grub2 prior to version 2.06. An attacker may use the GRUB 2 flaw to hijack and tamper the GRUB verification process. This flaw also allows the bypass of Secure Boot protections. In order to load an untrusted or modified kernel an attacker would first need to establish access to the system such as gaining physical access obtain the ability to alter a pxe-boot network or have remote access to a networked system with root access. With this access an attacker could then craft a string to cause a buffer overflow by injecting a malicious payload that leads to arbitrary code execution within GRUB. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-14039 | In Go before 1.13.13 and 1.14.x before 1.14.5 Certificate.Verify may lack a check on the VerifyOptions.KeyUsages EKU requirements (if VerifyOptions.Roots equals nil and the installation is on Windows). Thus X.509 certificate verification is incomplete. | 2020-07-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-14308 | In grub2 versions before 2.06 the grub memory allocator doesn't check for possible arithmetic overflows on the requested allocation size. This leads the function to return invalid memory allocations which can be further used to cause possible integrity confidentiality and availability impacts during the boot process. | 2020-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-14309 | There's an issue with grub2 in all versions before 2.06 when handling squashfs filesystems containing a symbolic link with name length of UINT32 bytes in size. The name size leads to an arithmetic overflow leading to a zero-size allocation further causing a heap-based buffer overflow with attacker controlled data. | 2020-07-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-14310 | There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buffer allocation to read the value from the font value. An attacker may leverage that by crafting a malicious font file which has a name with UINT32_MAX leading to read_section_as_string() to an arithmetic overflow zero-sized allocation and further heap-based buffer overflow. | 2020-07-02T00:00:00.000Z | 2025-07-11T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202107-1710 | Shanghai Huayi Technology Group Co., Ltd. is a company mainly engaged in the research and… | 2022-05-04T09:08:30.167000Z |
| var-202107-1731 | DIR-850L is a wireless AC1200 dual-band gigabit cloud router. D_Link DIR-850L has a w… | 2022-05-04T09:08:30.156000Z |
| var-202107-1752 | Matsushita Electric (China) Co., Ltd. was established in 1994 and is mainly responsible f… | 2022-05-04T09:08:30.144000Z |
| var-202107-1773 | Bihaiwei L7 home gateway is a home gateway launched by Beijing Bihaiwei Technology Co., L… | 2022-05-04T09:08:30.129000Z |
| var-202107-1815 | Vivo x27 is a smart phone. Vivo x27 has an information disclosure vulnerability, whic… | 2022-05-04T09:08:30.118000Z |
| var-202107-1836 | Axis is an IT company that specializes in providing network video solutions. Axis M10… | 2022-05-04T09:08:30.107000Z |
| var-202107-1857 | Matsushita Electric (China) Co., Ltd. was established in 1994 and is mainly responsible f… | 2022-05-04T09:08:30.095000Z |
| var-202107-1878 | Cisco IP Phone CP-8865 is an enterprise-class IP phone. Cisco IP Phone CP-8865 has an… | 2022-05-04T09:08:30.083000Z |
| var-202107-1899 | Shenzhen Wanwang Broadcom Investment Management Limited Partnership (Limited Partnership)… | 2022-05-04T09:08:30.071000Z |
| var-202106-2003 | TP-LINK Technology Co., Ltd. ("TP-LINK" for short) is the world's leading supplier of net… | 2022-05-04T09:08:33.775000Z |
| var-202106-2024 | D-Link DIR-809 is a wireless router using RTOS. D-Link DIR-809 has a denial of servic… | 2022-05-04T09:08:33.760000Z |
| var-202106-2045 | Shenzhen Wangxin Technology Co., Ltd. is a sharing economy cloud computing company focusi… | 2022-05-04T09:08:33.748000Z |
| var-202106-2066 | Chengdu Feiyuxing Technology Co., Ltd. is a company dedicated to providing intelligent an… | 2022-05-04T09:08:33.737000Z |
| var-202106-2087 | EDIMAX N300 Wi-Fi is a 2.4G single-band wireless router of Xunzhou Technology Co., Ltd. … | 2022-05-04T09:08:33.728000Z |
| var-202106-2108 | Ruckus R300 is a wireless access point product of Ruckus Wireless. Ruckus Wireless Ru… | 2022-05-04T09:08:33.713000Z |
| var-202106-2129 | NETGEAR WNDR3300 is a wireless router. NETGEAR WNDR3300 has an information disclosure… | 2022-05-04T09:08:33.702000Z |
| var-202106-2150 | NETGEAR WNR1000v3 router is a wireless router device. The NETGEAR WNR1000v3 router ha… | 2022-05-04T09:08:33.687000Z |
| var-202106-2171 | Ruijie Networks is a provider of ICT infrastructure and industry solutions. Its main busi… | 2022-05-04T09:08:33.676000Z |
| var-202106-2192 | Axis is an IT company that specializes in providing network video solutions. AXIS 225… | 2022-05-04T09:08:33.665000Z |
| var-202106-2213 | Phicomm Data Communication Technology Co., Ltd. was established in 2009 and is a technolo… | 2022-05-04T09:08:33.653000Z |
| var-202106-2234 | RG-RAC200b is a wireless controller. RG-RAC200b has a command execution vulnerability… | 2022-05-04T09:08:33.638000Z |
| var-202106-2255 | Matsushita Electric (China) Co., Ltd. is a manufacturer mainly responsible for the sales … | 2022-05-04T09:08:33.626000Z |
| var-202106-2276 | AC11 is a dual-band wireless router developed by Shenzhen Jixiang Tengda Technology Co., … | 2022-05-04T09:08:33.615000Z |
| var-202106-2297 | HP ENVY 5540 All-in-One Printer series printer is an all-in-one printer from Hewlett-Pack… | 2022-05-04T09:08:33.604000Z |
| var-202106-2318 | Axis is an IT company that specializes in providing network video solutions. Axis P13… | 2022-05-04T09:08:33.590000Z |
| var-202106-2339 | New H3C Technology Co., Ltd. is committed to becoming the most reliable partner for custo… | 2022-05-04T09:08:33.579000Z |
| var-202105-1570 | ForceControl is a general-purpose human-machine visual monitoring configuration software,… | 2022-05-04T09:08:34.660000Z |
| var-202105-1591 | D-Link Electronic Equipment (Shanghai) Co., Ltd. is a company mainly engaged in network e… | 2022-05-04T09:08:34.648000Z |
| var-202105-1612 | The USG5100 series is a gigabit unified security gateway for large and medium-sized enter… | 2022-05-04T09:08:34.637000Z |
| var-202105-1633 | Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. Its business scope inclu… | 2022-05-04T09:08:34.627000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2010-000044 | Archive Decoder may insecurely load executable files | 2010-10-20T17:41+09:00 | 2010-10-20T17:41+09:00 |
| jvndb-2010-000047 | Sleipnir and Grani may insecurely load dynamic libraries | 2010-10-25T17:42+09:00 | 2010-10-25T17:42+09:00 |
| jvndb-2010-000048 | Sleipnir and Grani may insecurely load executable files | 2010-10-25T17:43+09:00 | 2010-10-25T17:43+09:00 |
| jvndb-2010-000049 | Multiple Yokka provided products may insecurely load executable files | 2010-10-25T17:43+09:00 | 2010-10-25T17:43+09:00 |
| jvndb-2010-000045 | TeraPad may insecurely load dynamic libraries | 2010-10-26T16:51+09:00 | 2010-10-26T16:51+09:00 |
| jvndb-2010-000046 | Apsaly may insecurely load executable files | 2010-10-26T16:52+09:00 | 2010-10-26T16:52+09:00 |
| jvndb-2010-000050 | Active! mail 6 vulnerable to HTTP header injection | 2010-10-29T20:36+09:00 | 2010-10-29T20:36+09:00 |
| jvndb-2010-000051 | GVim may insecurely load dynamic libraries | 2010-11-01T18:51+09:00 | 2010-11-01T18:51+09:00 |
| jvndb-2010-000052 | Ichitaro series vulnerable to arbitrary code execution | 2010-11-04T19:10+09:00 | 2010-11-05T16:15+09:00 |
| jvndb-2010-000053 | Ichitaro series vulnerable to arbitrary code execution | 2010-11-04T19:11+09:00 | 2010-11-05T16:15+09:00 |
| jvndb-2010-000054 | Flash Player access restriction bypass vulnerability | 2010-11-09T19:59+09:00 | 2011-02-01T16:22+09:00 |
| jvndb-2010-001538 | Safari address bar spoofing vulnerability | 2010-11-26T17:16+09:00 | 2010-12-10T17:48+09:00 |
| jvndb-2010-000056 | Google Chrome information disclosure vulnerability | 2010-11-26T17:32+09:00 | 2010-11-26T17:32+09:00 |
| jvndb-2010-000057 | Clipboard contents alteration vulnerability in Sleipnir | 2010-12-01T20:27+09:00 | 2010-12-01T20:27+09:00 |
| jvndb-2010-000058 | Clipboard contents alteration vulnerability in Grani | 2010-12-01T20:27+09:00 | 2010-12-01T20:27+09:00 |
| jvndb-2010-000059 | Vulnerability in Epson printer driver installer where access permissions are changed | 2010-12-08T18:25+09:00 | 2010-12-08T18:25+09:00 |
| jvndb-2010-000060 | Movable Type vulnerable to cross-site scripting | 2010-12-08T18:26+09:00 | 2010-12-08T18:26+09:00 |
| jvndb-2010-000061 | Movable Type vulnerable to SQL injection | 2010-12-08T18:28+09:00 | 2010-12-08T18:28+09:00 |
| jvndb-2010-002467 | Interstage Application Server Information Disclosure Vulnerability | 2010-12-14T15:18+09:00 | 2010-12-14T15:18+09:00 |
| jvndb-2010-002468 | EUR Form Client Arbitrary File Execution Vulnerability | 2010-12-14T15:21+09:00 | 2010-12-14T15:21+09:00 |
| jvndb-2010-000062 | Internet Explorer vulnerable to cross-site scripting | 2010-12-15T18:18+09:00 | 2010-12-15T18:18+09:00 |
| jvndb-2010-000063 | Internet Explorer vulnerable to cross-site scripting | 2010-12-15T18:19+09:00 | 2010-12-15T18:19+09:00 |
| jvndb-2010-000064 | Internet Explorer vulnerable to cross-site scripting | 2010-12-15T18:19+09:00 | 2010-12-15T18:19+09:00 |
| jvndb-2010-000065 | Internet Explorer vulnerable to cross-site scripting | 2010-12-15T18:20+09:00 | 2010-12-15T18:20+09:00 |
| jvndb-2010-000066 | AttacheCase may insecurely load executable files | 2010-12-17T18:30+09:00 | 2010-12-17T18:30+09:00 |
| jvndb-2010-002528 | Buffer Overflow Vulnerability in Hitachi Groupmax Related Products | 2010-12-24T16:22+09:00 | 2010-12-24T16:22+09:00 |
| jvndb-2010-002529 | Access Control Security Bypass Vulnerability in Interstage Application Server | 2010-12-24T16:25+09:00 | 2010-12-24T16:25+09:00 |
| jvndb-2007-000398 | SquirrelMail vulnerable to cross-site scripting | 2011-01-07T14:39+09:00 | 2011-01-07T14:39+09:00 |
| jvndb-2009-002207 | SquirrelMail vulnerable to cross-site request forgery | 2011-01-07T14:40+09:00 | 2011-01-07T14:40+09:00 |
| jvndb-2011-000001 | Contents-Mall vulnerability in password handling | 2011-01-13T11:41+09:00 | 2011-01-13T11:41+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20887-1 | Security update for kernel-livepatch-MICRO-6-0_Update_6 | 2025-10-24T10:12:23Z | 2025-10-24T10:12:23Z |
| suse-su-2025:20888-1 | Security update for kernel-livepatch-MICRO-6-0_Update_9 | 2025-10-24T10:12:23Z | 2025-10-24T10:12:23Z |
| suse-su-2025:20905-1 | Security update for kernel-livepatch-MICRO-6-0_Update_6 | 2025-10-24T10:12:23Z | 2025-10-24T10:12:23Z |
| suse-su-2025:20906-1 | Security update for kernel-livepatch-MICRO-6-0_Update_9 | 2025-10-24T10:12:23Z | 2025-10-24T10:12:23Z |
| suse-su-2025:20885-1 | Security update for kernel-livepatch-MICRO-6-0_Update_4 | 2025-10-24T10:12:30Z | 2025-10-24T10:12:30Z |
| suse-su-2025:20889-1 | Security update for kernel-livepatch-MICRO-6-0_Update_10 | 2025-10-24T10:12:30Z | 2025-10-24T10:12:30Z |
| suse-su-2025:20907-1 | Security update for kernel-livepatch-MICRO-6-0_Update_4 | 2025-10-24T10:12:30Z | 2025-10-24T10:12:30Z |
| suse-su-2025:20908-1 | Security update for kernel-livepatch-MICRO-6-0_Update_10 | 2025-10-24T10:12:30Z | 2025-10-24T10:12:30Z |
| suse-su-2025:20886-1 | Security update for kernel-livepatch-MICRO-6-0_Update_2 | 2025-10-24T10:13:10Z | 2025-10-24T10:13:10Z |
| suse-su-2025:20909-1 | Security update for kernel-livepatch-MICRO-6-0_Update_2 | 2025-10-24T10:13:10Z | 2025-10-24T10:13:10Z |
| suse-su-2025:20890-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-10-24T11:03:31Z | 2025-10-24T11:03:31Z |
| suse-su-2025:20920-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-10-24T11:03:31Z | 2025-10-24T11:03:31Z |
| suse-su-2025:20891-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_3 | 2025-10-24T11:06:50Z | 2025-10-24T11:06:50Z |
| suse-su-2025:3775-1 | Security update for MozillaFirefox | 2025-10-24T12:23:44Z | 2025-10-24T12:23:44Z |
| suse-su-2025:20899-1 | Security update for podman | 2025-10-24T12:38:16Z | 2025-10-24T12:38:16Z |
| suse-su-2025:20900-1 | Security update for haproxy | 2025-10-24T12:38:16Z | 2025-10-24T12:38:16Z |
| suse-su-2025:20892-1 | Security update for libxslt | 2025-10-24T12:52:51Z | 2025-10-24T12:52:51Z |
| suse-su-2025:3776-1 | Security update for ruby2.5 | 2025-10-24T13:25:43Z | 2025-10-24T13:25:43Z |
| suse-su-2025:3778-1 | Security update for libxslt | 2025-10-24T13:26:07Z | 2025-10-24T13:26:07Z |
| suse-su-2025:3779-1 | Security update for poppler | 2025-10-24T13:26:29Z | 2025-10-24T13:26:29Z |
| suse-su-2025:3780-1 | Security update for python-python-socketio | 2025-10-24T13:26:55Z | 2025-10-24T13:26:55Z |
| suse-su-2025:3782-1 | Security update for podman | 2025-10-24T13:27:40Z | 2025-10-24T13:27:40Z |
| suse-su-2025:3783-1 | Security update for afterburn | 2025-10-24T13:28:12Z | 2025-10-24T13:28:12Z |
| suse-su-2025:3784-1 | Security update for afterburn | 2025-10-24T13:28:17Z | 2025-10-24T13:28:17Z |
| suse-su-2025:3785-1 | Security update for afterburn | 2025-10-24T13:28:23Z | 2025-10-24T13:28:23Z |
| suse-su-2025:3786-1 | Security update for afterburn | 2025-10-24T13:28:30Z | 2025-10-24T13:28:30Z |
| suse-su-2025:3787-1 | Security update for libssh | 2025-10-24T13:28:40Z | 2025-10-24T13:28:40Z |
| suse-su-2025:3788-1 | Security update for libssh | 2025-10-24T13:28:58Z | 2025-10-24T13:28:58Z |
| suse-su-2025:3791-1 | Security update for p7zip | 2025-10-24T14:56:33Z | 2025-10-24T14:56:33Z |
| suse-su-2025:3793-1 | Security update for xen | 2025-10-24T15:35:30Z | 2025-10-24T15:35:30Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00529 | Oracle Solaris Cluster存在未明任意代码执行漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00530 | Oracle Database Server OJVM组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00531 | Oracle Database Server Workspace Manager组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00532 | WebSVN目录遍历漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00533 | Oracle Business Intelligence Enterprise Edition存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00534 | Puppet puppetlabs-stdlib模块存在漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00535 | Pillow拒绝服务漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00536 | FFmpeg 'libavcodec/utvideodec.c'拒绝服务漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00537 | FFmpeg 'vmd_decode'函数拒绝服务漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00538 | IBM BladeCenter SAS Connectivity Module和SAS RAID Module拒绝服务漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00539 | IBM Tivoli Netcool/OMNIbus跨站脚本漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00540 | Macroplant iExplorer不可信搜索路径漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00541 | Oracle Solaris存在未明漏洞(CNVD-2015-00541) | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00542 | Oracle Solaris存在未明漏洞(CNVD-2015-00542) | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00543 | OpenStack Image Registry Delivery Service任意文件操作漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00544 | Oracle SOA Suite Fabric Layer子件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00545 | Oracle Siebel Public Sector组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00546 | Oracle Siebel Oracle Enterprise Asset Management组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00547 | Oracle Siebel Core - Server BizLogic Script组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00548 | Oracle Siebel Core - Server Infrastructure组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00549 | Oracle Siebel Core - Server OM Services组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00550 | Oracle Siebel Core - System Management组件存在未明漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00551 | Oracle OpenSSO SAML子件存在未明漏洞(CNVD-2015-00551) | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00552 | Oracle OpenSSO SAML子件存在未明漏洞(CNVD-2015-00552) | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00553 | Oracle Java SE JAX-WS子件存在未明任意代码执行漏洞 | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00554 | Oracle Java SE Serviceability子件存在未明漏洞(CNVD-2015-00554) | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00555 | Oracle Java SE Install子件本地任意代码执行漏洞 | 2015-01-22 | 2015-01-23 |
| cnvd-2015-00556 | Apple Mac OS X IOKit IntelAccelerator空指针引用本地代码执行漏洞 | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00557 | McAfee Data Loss Prevention Endpoint权限提升漏洞 | 2015-01-22 | 2015-01-26 |
| cnvd-2015-00558 | McAfee Data Loss Prevention Endpoint HTML注入漏洞 | 2015-01-22 | 2015-01-26 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTA-2002-AVI-027 | Déni de service dans Realsecure Server Sensor d'ISS | 2002-02-08T00:00:00.000000 | 2002-02-08T00:00:00.000000 |
| certa-2002-avi-025 | Vulnérabilité dans le serveur Telnet Microsoft | 2002-02-08T00:00:00.000000 | 2002-02-08T00:00:00.000000 |
| certa-2002-avi-026 | Vulnérabilité dans l'authentification sur Cisco Secure Access Control Server | 2002-02-08T00:00:00.000000 | 2002-02-08T00:00:00.000000 |
| certa-2002-avi-027 | Déni de service dans Realsecure Server Sensor d'ISS | 2002-02-08T00:00:00.000000 | 2002-02-08T00:00:00.000000 |
| CERTA-2002-AVI-028 | Multiples vulnérabilités sur Oracle 9iAS v1.0.2.x | 2002-02-11T00:00:00.000000 | 2002-02-11T00:00:00.000000 |
| certa-2002-avi-028 | Multiples vulnérabilités sur Oracle 9iAS v1.0.2.x | 2002-02-11T00:00:00.000000 | 2002-02-11T00:00:00.000000 |
| CERTA-2002-AVI-029 | Vulnérabilité de groff | 2002-02-12T00:00:00.000000 | 2002-02-12T00:00:00.000000 |
| CERTA-2002-AVI-030 | Multiples vulnérabilités d'Internet Explorer | 2002-02-12T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| certa-2002-avi-029 | Vulnérabilité de groff | 2002-02-12T00:00:00.000000 | 2002-02-12T00:00:00.000000 |
| certa-2002-avi-030 | Multiples vulnérabilités d'Internet Explorer | 2002-02-12T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| CERTA-2002-AVI-031 | Vulnérabilité de l'agent SNMP sous Solaris | 2002-02-13T00:00:00.000000 | 2002-02-13T00:00:00.000000 |
| CERTA-2002-AVI-032 | vulnérabilité de SNMP sur CISCO | 2002-02-13T00:00:00.000000 | 2002-02-13T00:00:00.000000 |
| CERTA-2002-AVI-033 | Vulnérabilité du service <TT>SNMP</TT> sous Microsoft Windows | 2002-02-13T00:00:00.000000 | 2002-03-15T00:00:00.000000 |
| certa-2002-avi-031 | Vulnérabilité de l'agent SNMP sous Solaris | 2002-02-13T00:00:00.000000 | 2002-02-13T00:00:00.000000 |
| certa-2002-avi-032 | vulnérabilité de SNMP sur CISCO | 2002-02-13T00:00:00.000000 | 2002-02-13T00:00:00.000000 |
| certa-2002-avi-033 | Vulnérabilité du service <TT>SNMP</TT> sous Microsoft Windows | 2002-02-13T00:00:00.000000 | 2002-03-15T00:00:00.000000 |
| CERTA-2002-AVI-034 | Multiples vulnérabilités du paquetage ucd-snmp | 2002-02-18T00:00:00.000000 | 2002-05-23T00:00:00.000000 |
| CERTA-2002-AVI-035 | Débordement de mémoire dans CUPS | 2002-02-18T00:00:00.000000 | 2002-03-19T00:00:00.000000 |
| certa-2002-avi-034 | Multiples vulnérabilités du paquetage ucd-snmp | 2002-02-18T00:00:00.000000 | 2002-05-23T00:00:00.000000 |
| certa-2002-avi-035 | Débordement de mémoire dans CUPS | 2002-02-18T00:00:00.000000 | 2002-03-19T00:00:00.000000 |
| CERTA-2002-AVI-037 | Vulnérabilité des équipements HP AdvanceStack | 2002-02-19T00:00:00.000000 | 2002-02-19T00:00:00.000000 |
| certa-2002-avi-037 | Vulnérabilité des équipements HP AdvanceStack | 2002-02-19T00:00:00.000000 | 2002-02-19T00:00:00.000000 |
| CERTA-2002-AVI-036 | Vulnérabilité de setrlimit sous HP-UX 11.11 | 2002-02-20T00:00:00.000000 | 2002-02-20T00:00:00.000000 |
| certa-2002-avi-036 | Vulnérabilité de setrlimit sous HP-UX 11.11 | 2002-02-20T00:00:00.000000 | 2002-02-20T00:00:00.000000 |
| CERTA-2002-AVI-038 | Vulnérabilité des agents SNMP pour les équipements HP | 2002-02-21T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| CERTA-2002-AVI-039 | Vulnérabilité de SNMP sur Compaq | 2002-02-21T00:00:00.000000 | 2002-04-23T00:00:00.000000 |
| CERTA-2002-AVI-040 | Vulnérabilité dans Microsoft SQL Server 7.0 et 2000 | 2002-02-21T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| certa-2002-avi-038 | Vulnérabilité des agents SNMP pour les équipements HP | 2002-02-21T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| certa-2002-avi-039 | Vulnérabilité de SNMP sur Compaq | 2002-02-21T00:00:00.000000 | 2002-04-23T00:00:00.000000 |
| certa-2002-avi-040 | Vulnérabilité dans Microsoft SQL Server 7.0 et 2000 | 2002-02-21T00:00:00.000000 | 2002-02-21T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2020-ALE-007 | Vulnérabilité dans Microsoft Exchange Server | 2020-02-27T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| certfr-2020-ale-007 | Vulnérabilité dans Microsoft Exchange Server | 2020-02-27T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| CERTFR-2020-ALE-008 | Vulnérabilité dans l'implémentation du protocole SMB par Microsoft | 2020-03-11T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-008 | Vulnérabilité dans l'implémentation du protocole SMB par Microsoft | 2020-03-11T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| CERTFR-2020-ALE-009 | Multiples vulnérabilités dans Microsoft Windows | 2020-03-24T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-ale-009 | Multiples vulnérabilités dans Microsoft Windows | 2020-03-24T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| CERTFR-2020-ALE-010 | Multiples vulnérabilités dans Mozilla Firefox | 2020-04-06T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| certfr-2020-ale-010 | Multiples vulnérabilités dans Mozilla Firefox | 2020-04-06T00:00:00.000000 | 2020-05-05T00:00:00.000000 |
| CERTFR-2020-ALE-011 | Multiples vulnérabilités dans les produits Microsoft qui utilisent la bibliothèque Autodesk FBX | 2020-04-22T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| certfr-2020-ale-011 | Multiples vulnérabilités dans les produits Microsoft qui utilisent la bibliothèque Autodesk FBX | 2020-04-22T00:00:00.000000 | 2020-06-23T00:00:00.000000 |
| CERTFR-2020-ALE-012 | Multiples vulnérabilités dans SaltStack | 2020-05-04T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-012 | Multiples vulnérabilités dans SaltStack | 2020-05-04T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| CERTFR-2020-ALE-013 | Multiples vulnérabilités dans Microsoft Windows | 2020-07-01T00:00:00.000000 | 2020-07-05T00:00:00.000000 |
| certfr-2020-ale-013 | Multiples vulnérabilités dans Microsoft Windows | 2020-07-01T00:00:00.000000 | 2020-07-05T00:00:00.000000 |
| CERTFR-2020-ALE-014 | Vulnérabilité dans Palo Alto Networks PAN-OS | 2020-07-03T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| certfr-2020-ale-014 | Vulnérabilité dans Palo Alto Networks PAN-OS | 2020-07-03T00:00:00.000000 | 2020-07-31T00:00:00.000000 |
| CERTFR-2020-ALE-015 | Vulnérabilité dans F5 BIG-IP | 2020-07-05T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| certfr-2020-ale-015 | Vulnérabilité dans F5 BIG-IP | 2020-07-05T00:00:00.000000 | 2020-09-15T00:00:00.000000 |
| CERTFR-2020-ALE-016 | Vulnérabilité dans Microsoft Domain Name System (DNS) Server | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| CERTFR-2020-ALE-017 | Multiples vulnérabilités dans SAP Netweaver AS JAVA | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| certfr-2020-ale-016 | Vulnérabilité dans Microsoft Domain Name System (DNS) Server | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| certfr-2020-ale-017 | Multiples vulnérabilités dans SAP Netweaver AS JAVA | 2020-07-15T00:00:00.000000 | 2020-10-12T00:00:00.000000 |
| CERTFR-2020-ALE-018 | Vulnérabilité dans Cisco ASA et FTD | 2020-07-28T00:00:00.000000 | 2020-11-05T00:00:00.000000 |
| certfr-2020-ale-018 | Vulnérabilité dans Cisco ASA et FTD | 2020-07-28T00:00:00.000000 | 2020-11-05T00:00:00.000000 |
| CERTFR-2020-ALE-019 | Recrudescence d'activité Emotet en France | 2020-09-07T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| certfr-2020-ale-019 | Recrudescence d'activité Emotet en France | 2020-09-07T00:00:00.000000 | 2021-02-09T00:00:00.000000 |
| CERTFR-2020-ALE-020 | [MàJ] Vulnérabilité dans Microsoft Netlogon | 2020-09-15T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-020 | [MàJ] Vulnérabilité dans Microsoft Netlogon | 2020-09-15T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| CERTFR-2020-ALE-021 | Vulnérabilité dans Samba | 2020-09-18T00:00:00.000000 | 2021-03-11T00:00:00.000000 |
| certfr-2020-ale-021 | Vulnérabilité dans Samba | 2020-09-18T00:00:00.000000 | 2021-03-11T00:00:00.000000 |