Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-63032 |
6.5 (3.1)
|
WordPress Consulting theme <= 1.5.0 - Cross Site Scrip… |
ThinkUpThemes |
Consulting |
2025-12-31T11:50:42.237Z | 2025-12-31T11:50:42.237Z |
| CVE-2025-15389 |
8.7 (4.0)
8.8 (3.1)
|
QNO Technology|VPN Firewall - OS Command Injection |
QNO Technology |
VPN Firewall |
2025-12-31T09:12:45.719Z | 2025-12-31T09:12:45.719Z |
| CVE-2025-49028 |
7.1 (3.1)
|
WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2025-12-31T09:05:02.812Z |
| CVE-2025-15388 |
8.7 (4.0)
8.8 (3.1)
|
QNO Technology|VPN Firewall - OS Command Injection |
QNO Technology |
VPN Firewall |
2025-12-31T09:01:46.998Z | 2025-12-31T09:01:46.998Z |
| CVE-2025-62136 |
6.5 (3.1)
|
WordPress Melos theme <= 1.6.0 - Cross Site Scripting … |
ThinkUpThemes |
Melos |
2025-12-31T09:00:40.532Z | 2025-12-31T09:00:40.532Z |
| CVE-2025-62992 |
6.5 (3.1)
|
WordPress Everest Backup plugin <= 2.3.9 - Cross Site … |
Everest themes |
Everest Backup |
2025-12-31T08:59:00.974Z | 2025-12-31T08:59:00.974Z |
| CVE-2025-62137 |
6.5 (3.1)
|
WordPress Shuttle theme <= 1.5.0 - Cross Site Scriptin… |
Shuttlethemes |
Shuttle |
2025-12-31T08:57:17.441Z | 2025-12-31T08:57:17.441Z |
| CVE-2025-62758 |
6.5 (3.1)
|
WordPress Funnelforms Free plugin <= 3.8 - Cross Site … |
Funnelforms |
Funnelforms Free |
2025-12-31T08:55:12.187Z | 2025-12-31T08:55:12.187Z |
| CVE-2025-62759 |
6.5 (3.1)
|
WordPress Series plugin <= 2.0.1 - Cross Site Scriptin… |
Justin Tadlock |
Series |
2025-12-31T08:53:31.863Z | 2025-12-31T08:53:31.863Z |
| CVE-2025-62760 |
6.5 (3.1)
|
WordPress BuddyPress Activity Shortcode plugin <= 1.1.… |
BuddyDev |
BuddyPress Activity Shortcode |
2025-12-31T08:52:04.460Z | 2025-12-31T08:52:04.460Z |
| CVE-2025-63000 |
6.5 (3.1)
|
WordPress Sermon Manager plugin <= 2.30.0 - Cross Site… |
WP for church |
Sermon Manager |
2025-12-31T08:50:23.702Z | 2025-12-31T08:50:23.702Z |
| CVE-2025-62146 |
6.5 (3.1)
|
WordPress MX Time Zone Clocks plugin <= 5.1.1 - Cross … |
Maksym Marko |
MX Time Zone Clocks |
2025-12-31T08:47:52.280Z | 2025-12-31T08:47:52.280Z |
| CVE-2025-63005 |
6.5 (3.1)
|
WordPress WordPress Tooltips plugin <= 10.7.9 - Cross … |
Tomas |
WordPress Tooltips |
2025-12-31T08:46:02.530Z | 2025-12-31T08:46:02.530Z |
| CVE-2025-62761 |
6.5 (3.1)
|
WordPress Knowledge Base documentation & wiki plugin –… |
BasePress |
Knowledge Base documentation & wiki plugin – BasePress |
2025-12-31T08:44:22.540Z | 2025-12-31T08:44:22.540Z |
| CVE-2025-15387 |
8.7 (4.0)
8.8 (3.1)
|
QNO Technology|VPN Firewall - Insufficient Entropy |
QNO Technology |
VPN Firewall |
2025-12-31T08:23:59.879Z | 2025-12-31T08:23:59.879Z |
| CVE-2025-15017 |
7 (4.0)
|
A vulnerability exists in serial device servers w… |
Moxa |
NPort 5000AI-M12 Series |
2025-12-31T07:44:24.344Z | 2025-12-31T07:44:24.344Z |
| CVE-2025-2026 |
7.1 (4.0)
|
The NPort 6100-G2/6200-G2 Series is affected by a… |
Moxa |
NPort 6100-G2/6200-G2 Series |
2025-12-31T07:32:26.427Z | 2025-12-31T07:32:26.427Z |
| CVE-2025-1977 |
7.7 (4.0)
|
The NPort 6100-G2/6200-G2 Series is affected by a… |
Moxa |
NPort 6100-G2/6200-G2 Series |
2025-12-31T07:23:28.569Z | 2025-12-31T07:23:28.569Z |
| CVE-2025-15279 |
7.8 (3.0)
|
FontForge GUtils BMP File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:37.307Z | 2025-12-31T06:59:37.307Z |
| CVE-2025-15278 |
7.8 (3.0)
|
FontForge GUtils XBM File Parsing Integer Overflow Rem… |
FontForge |
FontForge |
2025-12-31T06:59:33.188Z | 2025-12-31T06:59:33.188Z |
| CVE-2025-15277 |
7.8 (3.0)
|
FontForge GUtils SGI File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:29.183Z | 2025-12-31T06:59:29.183Z |
| CVE-2025-15276 |
7.8 (3.0)
|
FontForge SFD File Parsing Deserialization of Untruste… |
FontForge |
FontForge |
2025-12-31T06:59:24.595Z | 2025-12-31T06:59:24.595Z |
| CVE-2025-15280 |
8.8 (3.0)
|
FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:59:18.875Z | 2025-12-31T06:59:18.875Z |
| CVE-2025-15275 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:14.262Z | 2025-12-31T06:59:14.262Z |
| CVE-2025-15274 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:09.163Z | 2025-12-31T06:59:09.163Z |
| CVE-2025-15273 |
8.8 (3.0)
|
FontForge PFB File Parsing Stack-based Buffer Overflow… |
FontForge |
FontForge |
2025-12-31T06:59:04.808Z | 2025-12-31T06:59:04.808Z |
| CVE-2025-15272 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:00.778Z | 2025-12-31T06:59:00.778Z |
| CVE-2025-15271 |
8.8 (3.0)
|
FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:54.402Z | 2025-12-31T06:58:54.402Z |
| CVE-2025-15270 |
8.8 (3.0)
|
FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:49.796Z | 2025-12-31T06:58:49.796Z |
| CVE-2025-15269 |
8.8 (3.0)
|
FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:58:23.826Z | 2025-12-31T06:58:23.826Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62137 |
6.5 (3.1)
|
WordPress Shuttle theme <= 1.5.0 - Cross Site Scriptin… |
Shuttlethemes |
Shuttle |
2025-12-31T08:57:17.441Z | 2025-12-31T08:57:17.441Z |
| CVE-2025-62136 |
6.5 (3.1)
|
WordPress Melos theme <= 1.6.0 - Cross Site Scripting … |
ThinkUpThemes |
Melos |
2025-12-31T09:00:40.532Z | 2025-12-31T09:00:40.532Z |
| CVE-2025-49028 |
7.1 (3.1)
|
WordPress Zoho ZeptoMail plugin <= 3.3.1 - Cross Site … |
Zoho Mail |
Zoho ZeptoMail |
2025-12-31T09:05:02.812Z | 2025-12-31T09:05:02.812Z |
| CVE-2025-15388 |
8.7 (4.0)
8.8 (3.1)
|
QNO Technology|VPN Firewall - OS Command Injection |
QNO Technology |
VPN Firewall |
2025-12-31T09:01:46.998Z | 2025-12-31T09:01:46.998Z |
| CVE-2025-15387 |
8.7 (4.0)
8.8 (3.1)
|
QNO Technology|VPN Firewall - Insufficient Entropy |
QNO Technology |
VPN Firewall |
2025-12-31T08:23:59.879Z | 2025-12-31T08:23:59.879Z |
| CVE-2025-2026 |
7.1 (4.0)
|
The NPort 6100-G2/6200-G2 Series is affected by a… |
Moxa |
NPort 6100-G2/6200-G2 Series |
2025-12-31T07:32:26.427Z | 2025-12-31T07:32:26.427Z |
| CVE-2025-1977 |
7.7 (4.0)
|
The NPort 6100-G2/6200-G2 Series is affected by a… |
Moxa |
NPort 6100-G2/6200-G2 Series |
2025-12-31T07:23:28.569Z | 2025-12-31T07:23:28.569Z |
| CVE-2025-15017 |
7 (4.0)
|
A vulnerability exists in serial device servers w… |
Moxa |
NPort 5000AI-M12 Series |
2025-12-31T07:44:24.344Z | 2025-12-31T07:44:24.344Z |
| CVE-2025-15280 |
8.8 (3.0)
|
FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:59:18.875Z | 2025-12-31T06:59:18.875Z |
| CVE-2025-15279 |
7.8 (3.0)
|
FontForge GUtils BMP File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:37.307Z | 2025-12-31T06:59:37.307Z |
| CVE-2025-15278 |
7.8 (3.0)
|
FontForge GUtils XBM File Parsing Integer Overflow Rem… |
FontForge |
FontForge |
2025-12-31T06:59:33.188Z | 2025-12-31T06:59:33.188Z |
| CVE-2025-15277 |
7.8 (3.0)
|
FontForge GUtils SGI File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:29.183Z | 2025-12-31T06:59:29.183Z |
| CVE-2025-15276 |
7.8 (3.0)
|
FontForge SFD File Parsing Deserialization of Untruste… |
FontForge |
FontForge |
2025-12-31T06:59:24.595Z | 2025-12-31T06:59:24.595Z |
| CVE-2025-15275 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:14.262Z | 2025-12-31T06:59:14.262Z |
| CVE-2025-15274 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:09.163Z | 2025-12-31T06:59:09.163Z |
| CVE-2025-15273 |
8.8 (3.0)
|
FontForge PFB File Parsing Stack-based Buffer Overflow… |
FontForge |
FontForge |
2025-12-31T06:59:04.808Z | 2025-12-31T06:59:04.808Z |
| CVE-2025-15272 |
8.8 (3.0)
|
FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:00.778Z | 2025-12-31T06:59:00.778Z |
| CVE-2025-15271 |
8.8 (3.0)
|
FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:54.402Z | 2025-12-31T06:58:54.402Z |
| CVE-2025-15270 |
8.8 (3.0)
|
FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:49.796Z | 2025-12-31T06:58:49.796Z |
| CVE-2025-15269 |
8.8 (3.0)
|
FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:58:23.826Z | 2025-12-31T06:58:23.826Z |
| CVE-2025-14783 |
4.3 (3.1)
|
Easy Digital Downloads <= 3.6.2 - Unvalidated Redirect… |
smub |
Easy Digital Downloads – eCommerce Payments and Subscriptions made easy |
2025-12-31T06:24:42.546Z | 2025-12-31T06:24:42.546Z |
| CVE-2025-69277 |
4.5 (3.1)
|
libsodium before ad3004e, in atypical use cases i… |
libsodium |
libsodium |
2025-12-31T05:50:07.422Z | 2025-12-31T06:03:26.026Z |
| CVE-2025-68885 |
7.1 (3.1)
|
WordPress Custom Post Status plugin <= 1.1.0 - Cross S… |
Page Carbajal |
Custom Post Status |
2025-12-31T05:34:27.042Z | 2025-12-31T05:34:27.042Z |
| CVE-2025-49354 |
7.1 (3.1)
|
WordPress Recent Posts From Each Category plugin <= 1.… |
Mindstien Technologies |
Recent Posts From Each Category |
2025-12-31T05:30:25.381Z | 2025-12-31T05:30:25.381Z |
| CVE-2025-49353 |
7.1 (3.1)
|
WordPress Noindex by Path plugin <= 1.0 - Cross Site R… |
Marcin Kijak |
Noindex by Path |
2025-12-31T05:36:42.895Z | 2025-12-31T05:36:42.895Z |
| CVE-2025-49345 |
7.1 (3.1)
|
WordPress WP-EasyArchives plugin <= 3.1.2 - Cross Site… |
mg12 |
WP-EasyArchives |
2025-12-31T05:23:28.075Z | 2025-12-31T05:23:28.075Z |
| CVE-2025-49344 |
7.1 (3.1)
|
WordPress SensitiveTagCloud plugin <= 1.4.1 - Cross Si… |
Rene Ade |
SensitiveTagCloud |
2025-12-31T05:25:58.689Z | 2025-12-31T05:25:58.689Z |
| CVE-2025-49343 |
7.1 (3.1)
|
WordPress Social Profilr plugin <= 1.0 - Cross Site Re… |
Socialprofilr |
Social Profilr |
2025-12-31T05:28:06.720Z | 2025-12-31T05:28:06.720Z |
| CVE-2025-49342 |
7.1 (3.1)
|
WordPress Custom Style plugin <= 1.0 - Cross Site Requ… |
Wolfgang Häfelinger |
Custom Style |
2025-12-31T05:55:53.218Z | 2025-12-31T05:55:53.218Z |
| CVE-2025-14434 |
N/A
|
Ultimate Post Kit < 4.0.16 – Unauthenticated Arbitrary… |
Unknown |
Ultimate Post Kit Addons for Elementor |
2025-12-31T06:00:11.262Z | 2025-12-31T06:00:11.262Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-15276 | FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability. T… | 2025-12-31T07:15:51.870 | 2025-12-31T07:15:51.870 |
| fkie_cve-2025-15275 | FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T07:15:51.710 | 2025-12-31T07:15:51.710 |
| fkie_cve-2025-15274 | FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T07:15:51.550 | 2025-12-31T07:15:51.550 |
| fkie_cve-2025-15273 | FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vu… | 2025-12-31T07:15:51.393 | 2025-12-31T07:15:51.393 |
| fkie_cve-2025-15272 | FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T07:15:51.233 | 2025-12-31T07:15:51.233 |
| fkie_cve-2025-15271 | FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T07:15:51.063 | 2025-12-31T07:15:51.063 |
| fkie_cve-2025-15270 | FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T07:15:50.897 | 2025-12-31T07:15:50.897 |
| fkie_cve-2025-15269 | FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability a… | 2025-12-31T07:15:50.710 | 2025-12-31T07:15:50.710 |
| fkie_cve-2025-14783 | The Easy Digital Downloads plugin for WordPress is vulnerable to Unvalidated Redirect in all versio… | 2025-12-31T07:15:49.197 | 2025-12-31T07:15:49.197 |
| fkie_cve-2025-69277 | libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted … | 2025-12-31T06:15:41.513 | 2025-12-31T06:15:41.513 |
| fkie_cve-2025-68885 | Cross-Site Request Forgery (CSRF) vulnerability in Page Carbajal Custom Post Status allows Stored X… | 2025-12-31T06:15:41.370 | 2025-12-31T06:15:41.370 |
| fkie_cve-2025-49354 | Cross-Site Request Forgery (CSRF) vulnerability in Mindstien Technologies Recent Posts From Each Ca… | 2025-12-31T06:15:41.223 | 2025-12-31T06:15:41.223 |
| fkie_cve-2025-49353 | Cross-Site Request Forgery (CSRF) vulnerability in Marcin Kijak Noindex by Path allows Stored XSS.T… | 2025-12-31T06:15:41.083 | 2025-12-31T06:15:41.083 |
| fkie_cve-2025-49345 | Cross-Site Request Forgery (CSRF) vulnerability in mg12 WP-EasyArchives allows Stored XSS.This issu… | 2025-12-31T06:15:40.957 | 2025-12-31T06:15:40.957 |
| fkie_cve-2025-49344 | Cross-Site Request Forgery (CSRF) vulnerability in Rene Ade SensitiveTagCloud allows Stored XSS.Thi… | 2025-12-31T06:15:40.813 | 2025-12-31T06:15:40.813 |
| fkie_cve-2025-49343 | Cross-Site Request Forgery (CSRF) vulnerability in Socialprofilr Social Profilr allows Stored XSS.T… | 2025-12-31T06:15:40.677 | 2025-12-31T06:15:40.677 |
| fkie_cve-2025-49342 | Cross-Site Request Forgery (CSRF) vulnerability in Wolfgang Häfelinger Custom Style allows Stored X… | 2025-12-31T06:15:40.517 | 2025-12-31T06:15:40.517 |
| fkie_cve-2025-14434 | The Ultimate Post Kit Addons for Elementor WordPress plugin before 4.0.16 exposes multiple AJAX “lo… | 2025-12-31T06:15:40.410 | 2025-12-31T06:15:40.410 |
| fkie_cve-2025-13029 | The Knowband Mobile App Builder WordPress plugin before 3.0.0 does not have authorisation when dele… | 2025-12-31T06:15:40.270 | 2025-12-31T06:15:40.270 |
| fkie_cve-2025-59137 | Cross-Site Request Forgery (CSRF) vulnerability in eLEOPARD Behance Portfolio Manager allows Stored… | 2025-12-31T05:16:07.443 | 2025-12-31T05:16:07.443 |
| fkie_cve-2025-49346 | Cross-Site Request Forgery (CSRF) vulnerability in Peter Sterling Simple Archive Generator allows S… | 2025-12-31T05:16:06.637 | 2025-12-31T05:16:06.637 |
| fkie_cve-2025-15375 | A flaw has been found in EyouCMS up to 1.7.7. The impacted element is the function unserialize of t… | 2025-12-31T05:16:05.703 | 2025-12-31T05:16:05.703 |
| fkie_cve-2025-15374 | A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of… | 2025-12-31T05:16:03.670 | 2025-12-31T05:16:03.670 |
| fkie_cve-2025-15065 | Exposure of Sensitive Information to an Unauthorized Actor, Missing Encryption of Sensitive Data, F… | 2025-12-29T01:15:52.680 | 2025-12-31T05:15:59.597 |
| fkie_cve-2025-68973 | In GnuPG before 2.4.9, armor_filter in g10/armor.c has two increments of an index variable where on… | 2025-12-28T17:16:01.500 | 2025-12-31T04:15:53.420 |
| fkie_cve-2025-15373 | A security vulnerability has been detected in EyouCMS up to 1.7.7. Impacted is the function saveRem… | 2025-12-31T04:15:53.200 | 2025-12-31T04:15:53.200 |
| fkie_cve-2025-15372 | A weakness has been identified in youlaitech vue3-element-admin up to 3.4.0. This issue affects som… | 2025-12-31T03:15:53.820 | 2025-12-31T03:15:53.820 |
| fkie_cve-2025-15223 | A vulnerability was found in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d… | 2025-12-31T03:15:53.610 | 2025-12-31T03:15:53.610 |
| fkie_cve-2025-61413 | A stored cross-site scripting (XSS) vulnerability in the /manager/pages component of Piranha CMS v1… | 2025-10-23T18:16:23.683 | 2025-12-31T02:35:31.940 |
| fkie_cve-2025-62236 | The Frontier Airlines website has a publicly available endpoint that validates if an email addresse… | 2025-10-23T20:15:40.890 | 2025-12-31T02:34:14.700 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-w327-296g-78wc |
8.8 (3.1)
|
FontForge PFB File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vu… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-mv95-mmh4-gvp6 |
7.8 (3.1)
|
FontForge SFD File Parsing Deserialization of Untrusted Data Remote Code Execution Vulnerability. T… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-hp8x-4h95-9799 |
8.8 (3.1)
|
FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-gwg7-r3vr-jqwf |
8.8 (3.1)
|
FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. … | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-c6rw-2xpc-ff8c |
4.3 (3.1)
|
The Easy Digital Downloads plugin for WordPress is vulnerable to Unvalidated Redirect in all versio… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-8j84-3r78-7j5x |
8.8 (3.1)
|
FontForge SFD File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability a… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-7q3f-q9mp-p2f9 |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-6m4m-8948-4883 |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-6465-93fg-6pfr |
8.8 (3.1)
|
FontForge SFD File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vul… | 2025-12-31T09:30:18Z | 2025-12-31T09:30:18Z |
| ghsa-x3v7-84r2-j89m |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in mg12 WP-EasyArchives allows Stored XSS.This issu… | 2025-12-31T06:30:18Z | 2025-12-31T06:30:18Z |
| ghsa-mrfv-m5wm-5w6w |
4.5 (3.1)
|
libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted … | 2025-12-31T06:30:18Z | 2025-12-31T06:30:18Z |
| ghsa-hjcx-w529-729v |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Mindstien Technologies Recent Posts From Each Ca… | 2025-12-31T06:30:18Z | 2025-12-31T06:30:18Z |
| ghsa-8wv5-4mjg-mcjg |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Marcin Kijak Noindex by Path allows Stored XSS.T… | 2025-12-31T06:30:18Z | 2025-12-31T06:30:18Z |
| ghsa-3w6x-j894-mcx4 |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Page Carbajal Custom Post Status allows Stored X… | 2025-12-31T06:30:18Z | 2025-12-31T06:30:18Z |
| ghsa-xgr9-pmph-722v |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Peter Sterling Simple Archive Generator allows S… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-vwg9-2rf4-w4xc |
6.3 (3.1)
2.1 (4.0)
|
A flaw has been found in EyouCMS up to 1.7.7. The impacted element is the function unserialize of t… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-v43f-9m3r-qj67 |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in eLEOPARD Behance Portfolio Manager allows Stored… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-r9h3-v9hv-vpf2 |
3.5 (3.1)
2.0 (4.0)
|
A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-qw27-cxc9-7xxh |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Rene Ade SensitiveTagCloud allows Stored XSS.Thi… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-j4mr-6qvv-6q4w |
|
The Ultimate Post Kit Addons for Elementor WordPress plugin before 4.0.16 exposes multiple AJAX “lo… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-h7h6-79g4-qpq3 |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Socialprofilr Social Profilr allows Stored XSS.T… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-93v3-46mj-22fw |
6.3 (3.1)
2.1 (4.0)
|
A security vulnerability has been detected in EyouCMS up to 1.7.7. Impacted is the function saveRem… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-5r88-ccjv-66xq |
7.1 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in Wolfgang Häfelinger Custom Style allows Stored X… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-4xqm-hx6r-2gp8 |
|
The Knowband Mobile App Builder WordPress plugin before 3.0.0 does not have authorisation when dele… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-5fgj-7r84-vwrr |
4.3 (3.1)
2.1 (4.0)
|
A vulnerability was found in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-4695-qj73-37p4 |
2.4 (3.1)
1.9 (4.0)
|
A weakness has been identified in youlaitech vue3-element-admin up to 3.4.0. This issue affects som… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-x25x-vjrm-h7qq |
1.9 (3.1)
|
pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a fix… | 2025-12-31T03:30:33Z | 2025-12-31T03:30:34Z |
| ghsa-9qhr-gr34-rmgj |
7.8 (3.1)
7.1 (4.0)
|
A vulnerability has been found in Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G and TEG5328… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-53h7-g6w8-rxxc |
1.9 (3.1)
|
On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message inclu… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-777r-h845-392r |
7.8 (3.1)
7.0 (4.0)
|
GoSign Desktop versions 2.4.0 and earlier use an unsigned update manifest for distributing applicat… | 2025-11-18T18:32:53Z | 2025-12-31T03:30:32Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2025-53 |
|
vLLM is an inference and serving engine for large language models (LLMs). Prior to versio… | vllm | 2025-05-29T17:15:21+00:00 | 2025-06-26T21:23:06.231251+00:00 |
| pysec-2025-51 |
|
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v… | apache-airflow-providers-snowflake | 2025-06-24T08:15:24+00:00 | 2025-06-26T21:23:03.132527+00:00 |
| pysec-2025-50 |
|
vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp… | vllm | 2025-05-30T18:15:32+00:00 | 2025-06-19T03:02:28.572160+00:00 |
| pysec-2024-255 |
|
Gradio before 4.20 allows credential leakage on Windows. | gradio | 2024-05-05T20:15:07+00:00 | 2025-06-17T19:21:48.983901+00:00 |
| pysec-2024-254 |
4.2 (3.1)
|
A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke… | zenml | 2024-04-16T00:15:11+00:00 | 2025-06-13T00:48:41.806476+00:00 |
| pysec-2025-49 |
8.8 (3.1)
|
setuptools is a package that allows users to download, build, install, upgrade, and unins… | setuptools | 2025-05-17T16:15:19+00:00 | 2025-06-12T22:23:11.115559+00:00 |
| pysec-2025-48 |
9.8 (3.1)
|
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… | mobsf | 2025-03-31T17:15:42+00:00 | 2025-06-12T22:23:10.476087+00:00 |
| pysec-2024-253 |
|
pretix before 2024.1.1 mishandles file validation. | pretix | 2024-02-26T16:28:00+00:00 | 2025-06-11T15:23:51.683422+00:00 |
| pysec-2024-252 |
|
PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t… | torch | 2024-04-17T19:15:07+00:00 | 2025-06-10T19:22:08.948962+00:00 |
| pysec-2024-251 |
|
Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in… | torch | 2024-04-17T19:15:07+00:00 | 2025-06-10T03:12:59.077932+00:00 |
| pysec-2025-47 |
|
An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2… | django | 2025-06-05T03:15:25+00:00 | 2025-06-05T05:23:28.296596+00:00 |
| pysec-2025-46 |
5.5 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri… | pypickle | 2025-05-26T08:15:19+00:00 | 2025-06-03T17:36:58.579358+00:00 |
| pysec-2025-45 |
7.8 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.… | pypickle | 2025-05-26T07:15:26+00:00 | 2025-06-03T17:36:58.528116+00:00 |
| pysec-2024-250 |
|
Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr… | torch | 2024-04-19T21:15:08+00:00 | 2025-06-03T15:23:56.072490+00:00 |
| pysec-2023-312 |
5.9 (3.1)
|
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b… | redis | 2023-07-15T23:15:09Z | 2025-06-02T11:48:06.372423Z |
| pysec-2025-44 |
|
django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod… | django-helpdesk | 2025-05-31T01:15:19+00:00 | 2025-05-31T03:09:35.357757+00:00 |
| pysec-2025-43 |
|
vLLM is an inference and serving engine for large language models (LLMs). In versions sta… | vllm | 2025-05-29T17:15:21+00:00 | 2025-05-29T19:21:01.611587+00:00 |
| pysec-2025-42 |
9.8 (3.1)
|
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver… | vllm | 2025-04-30T01:15:51+00:00 | 2025-05-28T21:23:12.396609+00:00 |
| pysec-2025-41 |
9.8 (3.1)
|
PyTorch is a Python package that provides tensor computation with strong GPU acceleration… | torch | 2025-04-18T16:15:23+00:00 | 2025-05-28T15:23:37.843138+00:00 |
| pysec-2025-40 |
7.5 (3.1)
|
A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`… | transformers | 2025-05-19T12:15:19+00:00 | 2025-05-21T19:22:10.801823+00:00 |
| pysec-2024-249 |
6.1 (3.1)
|
### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f… | label-studio | 2024-02-22T22:15:47+00:00 | 2025-05-19T11:22:35.312280+00:00 |
| pysec-2024-248 |
7.8 (3.1)
|
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its … | opencanary | 2024-10-14T21:15:12+00:00 | 2025-05-16T14:23:05.150356+00:00 |
| pysec-2025-39 |
|
motionEye is an online interface for the software motion, a video surveillance program wi… | motioneye | 2025-05-14T16:15:29+00:00 | 2025-05-14T17:22:51.050788+00:00 |
| pysec-2025-38 |
|
OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im… | ironic | 2025-05-08T17:16:01Z | 2025-05-13T04:24:03.083929Z |
| pysec-2024-247 |
9.9 (3.1)
|
A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically… | zenml | 2024-04-16T00:15:11+00:00 | 2025-05-12T15:23:53.861001+00:00 |
| pysec-2025-37 |
|
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2… | django | 2025-05-08T04:17:18+00:00 | 2025-05-08T05:23:16.210893+00:00 |
| pysec-2025-36 |
9.8 (3.1)
|
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida… | langflow | 2025-04-07T15:15:44+00:00 | 2025-05-07T19:22:44.993642+00:00 |
| pysec-2024-246 |
5.3 (3.1)
|
Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in… | vyper | 2024-04-25T17:15:50+00:00 | 2025-05-05T19:21:20.899426+00:00 |
| pysec-2024-111 |
9.1 (3.1)
|
A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha… | langchain | 2024-10-29T13:15:00Z | 2025-05-02T18:39:47.588215Z |
| pysec-2024-245 |
|
Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user… | apache-airflow | 2024-02-29T11:15:08+00:00 | 2025-05-01T21:22:38.598048+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33881 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.886591Z |
| gsd-2024-33880 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.882744Z |
| gsd-2024-33879 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.727068Z |
| gsd-2024-33878 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.850311Z |
| gsd-2024-33877 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.871220Z |
| gsd-2024-33876 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.990196Z |
| gsd-2024-33875 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.862083Z |
| gsd-2024-33874 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.959238Z |
| gsd-2024-33873 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.870402Z |
| gsd-2024-33872 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.839468Z |
| gsd-2024-33871 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.800751Z |
| gsd-2024-33870 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.943118Z |
| gsd-2024-33869 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.784255Z |
| gsd-2024-33868 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.896638Z |
| gsd-2024-33867 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.808129Z |
| gsd-2024-33866 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.819755Z |
| gsd-2024-33865 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.790923Z |
| gsd-2024-33864 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.792101Z |
| gsd-2024-33863 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.824810Z |
| gsd-2024-33862 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.799465Z |
| gsd-2024-33861 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.958057Z |
| gsd-2024-33860 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.777612Z |
| gsd-2024-33859 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.867340Z |
| gsd-2024-33858 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.848478Z |
| gsd-2024-33857 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.834866Z |
| gsd-2024-33856 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.944669Z |
| gsd-2024-33855 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.741239Z |
| gsd-2024-33854 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.916266Z |
| gsd-2024-33853 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.825026Z |
| gsd-2024-33852 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.824312Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-41787 | Malicious code in tronapisync (PyPI) | 2025-08-06T22:56:43Z | 2025-12-31T02:45:16Z |
| mal-2025-41760 | Malicious code in set7 (PyPI) | 2025-07-21T14:29:37Z | 2025-12-31T02:45:16Z |
| mal-2025-3004 | Malicious code in systoring (PyPI) | 2025-02-13T13:18:05Z | 2025-12-31T02:45:16Z |
| mal-2025-192690 | Malicious code in smtrlib (PyPI) | 2025-12-22T17:15:11Z | 2025-12-31T02:45:16Z |
| mal-2025-192679 | Malicious code in system-health-check-test-unique (PyPI) | 2025-12-19T20:42:35Z | 2025-12-31T02:45:16Z |
| mal-2025-192438 | Malicious code in synium (PyPI) | 2025-12-10T18:29:17Z | 2025-12-31T02:45:16Z |
| mal-2025-192386 | Malicious code in telcoo (PyPI) | 2025-12-09T08:05:51Z | 2025-12-31T02:45:16Z |
| mal-2025-192380 | Malicious code in sketchfab-spinner (PyPI) | 2025-12-09T03:35:56Z | 2025-12-31T02:45:16Z |
| mal-2025-191939 | Malicious code in xx-ent-wiki-sm (PyPI) | 2025-08-25T19:09:47Z | 2025-12-31T02:45:16Z |
| mal-2025-191937 | Malicious code in xsltproc (PyPI) | 2025-11-14T07:57:01Z | 2025-12-31T02:45:16Z |
| mal-2025-191933 | Malicious code in win32evtlog (PyPI) | 2025-06-10T20:26:30Z | 2025-12-31T02:45:16Z |
| mal-2025-191930 | Malicious code in wei516-ppa (PyPI) | 2025-11-07T17:50:13Z | 2025-12-31T02:45:16Z |
| mal-2025-191929 | Malicious code in wei516-enconly (PyPI) | 2025-11-06T08:44:21Z | 2025-12-31T02:45:16Z |
| mal-2025-191927 | Malicious code in wayspiritmcp-weather (PyPI) | 2025-11-05T21:16:52Z | 2025-12-31T02:45:16Z |
| mal-2025-191926 | Malicious code in wayspiritmcp-tpa (PyPI) | 2025-11-05T21:25:33Z | 2025-12-31T02:45:16Z |
| mal-2025-191925 | Malicious code in wayspiritmcp-ppa (PyPI) | 2025-11-05T21:24:19Z | 2025-12-31T02:45:16Z |
| mal-2025-191924 | Malicious code in wayspiritmcp-enconly (PyPI) | 2025-11-05T21:21:44Z | 2025-12-31T02:45:16Z |
| mal-2025-191921 | Malicious code in voicemetterr (PyPI) | 2025-11-21T19:23:01Z | 2025-12-31T02:45:16Z |
| mal-2025-191920 | Malicious code in venomenallib (PyPI) | 2025-09-09T21:59:41Z | 2025-12-31T02:45:16Z |
| mal-2025-191919 | Malicious code in uzip (PyPI) | 2025-11-22T16:53:45Z | 2025-12-31T02:45:16Z |
| mal-2025-191918 | Malicious code in uuzip (PyPI) | 2025-11-22T20:55:03Z | 2025-12-31T02:45:16Z |
| mal-2025-191916 | Malicious code in unicore (PyPI) | 2025-09-07T21:01:23Z | 2025-12-31T02:45:16Z |
| mal-2025-191909 | Malicious code in transaction-utils (PyPI) | 2025-02-21T21:50:10Z | 2025-12-31T02:45:16Z |
| mal-2025-191908 | Malicious code in tosa-serialization-lib (PyPI) | 2025-10-14T09:40:20Z | 2025-12-31T02:45:16Z |
| mal-2025-191897 | Malicious code in tgeffect (PyPI) | 2025-11-22T15:12:29Z | 2025-12-31T02:45:16Z |
| mal-2025-191895 | Malicious code in testpurpleteaming (PyPI) | 2025-11-06T08:41:26Z | 2025-12-31T02:45:16Z |
| mal-2025-191892 | Malicious code in terminalcolornew (PyPI) | 2025-09-16T15:02:38Z | 2025-12-31T02:45:16Z |
| mal-2025-191891 | Malicious code in tensorflows (PyPI) | 2025-05-26T16:56:04Z | 2025-12-31T02:45:16Z |
| mal-2025-191889 | Malicious code in telepycore (PyPI) | 2025-04-30T21:54:42Z | 2025-12-31T02:45:16Z |
| mal-2025-191884 | Malicious code in tableausdk (PyPI) | 2025-06-07T16:33:11Z | 2025-12-31T02:45:16Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-2853 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2023-11-07T23:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2023-0580 | Red Hat Enterprise Linux (mod_auth_openidc): Mehrere Schwachstellen | 2022-05-10T22:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2022-0499 | expat: Schwachstelle ermöglicht Codeausführung | 2022-01-26T23:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2905 | MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-18T23:00:00.000+00:00 | 2025-12-28T23:00:00.000+00:00 |
| wid-sec-w-2025-2910 | Hitachi Ops Center: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2891 | WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS | 2025-12-18T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2871 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-12-17T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2830 | Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service | 2025-12-11T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2694 | MariaDB: Schwachstelle ermöglicht Codeausführung | 2025-11-27T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2677 | OPNsense: Schwachstelle ermöglicht Manipulation von Dateien | 2025-11-25T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2637 | Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-11-18T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2466 | QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service | 2025-11-02T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2365 | Oracle Java SE: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2193 | QEMU: Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-1740 | Golang Go: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-08-06T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0935 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0627 | Vercel Next.js: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-24T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2024-3281 | expat: Schwachstelle ermöglicht Denial of Service | 2024-10-27T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2024-1951 | expat: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-08-29T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2909 | IBM App Connect Enterprise: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2886 | Red Hat Enterprise Linux (git-lfs, opentelemetry-collector): Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2812 | Mozilla Firefox: Mehrere Schwachstellen | 2025-12-09T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2756 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-07T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2750 | Apache HTTP Server: Mehrere Schwachstellen | 2025-12-04T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2747 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-04T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2564 | Microsoft Windows und Windows Server: Mehrere Schwachstellen | 2025-11-11T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2449 | GIMP: Schwachstelle ermöglicht Codeausführung | 2025-10-29T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2246 | Linux Kernel: Mehrere Schwachstellen | 2025-10-08T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2230 | Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2227 | Golang Go: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0374 | Kwetsbaarheden verholpen in Arista EOS | 2025-11-20T11:48:20.126141Z | 2025-11-20T11:48:20.126141Z |
| ncsc-2025-0373 | Kwetsbaarheden verholpen in Fortinet FortiOS | 2025-11-19T08:35:31.999400Z | 2025-11-19T08:35:31.999400Z |
| ncsc-2025-0372 | Kwetsbaarheid verholpen in Fortinet FortiWeb | 2025-11-19T08:34:59.616354Z | 2025-11-19T08:34:59.616354Z |
| ncsc-2025-0371 | Kwetsbaarheden verholpen in Google Chrome | 2025-11-18T09:01:31.984222Z | 2025-11-18T09:01:31.984222Z |
| ncsc-2025-0370 | Kwetsbaarheden verholpen in Cisco Unified Contact Center Express | 2025-11-18T07:04:55.173157Z | 2025-11-18T07:04:55.173157Z |
| ncsc-2025-0369 | Kwetsbaarheden verholpen in IBM AIX | 2025-11-18T07:03:55.766335Z | 2025-11-18T07:03:55.766335Z |
| ncsc-2025-0368 | Kwetsbaarheden verholpen in Zoom Workplace en Zoom Clients | 2025-11-18T07:02:36.696426Z | 2025-11-18T07:02:36.696426Z |
| ncsc-2025-0367 | Kwetsbaarheden verholpen in GitLab | 2025-11-18T07:01:35.502522Z | 2025-11-18T07:01:35.502522Z |
| ncsc-2025-0366 | Kwetsbaarheid verholpen in Fortinet FortiWeb | 2025-11-15T14:57:33.774388Z | 2025-11-15T14:57:33.774388Z |
| ncsc-2025-0365 | Kwetsbaarheden verholpen in Cisco Catalyst Center | 2025-11-14T12:55:27.227262Z | 2025-11-14T12:55:27.227262Z |
| ncsc-2025-0364 | Kwetsbaarheid verholpen in Adobe Photoshop | 2025-11-12T12:17:16.207233Z | 2025-11-12T12:17:16.207233Z |
| ncsc-2025-0363 | Kwetsbaarheden verholpen in Adobe Illustrator | 2025-11-12T11:52:08.634593Z | 2025-11-12T11:56:09.924799Z |
| ncsc-2025-0362 | Kwetsbaarheden verholpen in Microsoft Visual Studio | 2025-11-11T18:35:40.376220Z | 2025-11-11T18:35:40.376220Z |
| ncsc-2025-0361 | Kwetsbaarheid verholpen in Microsoft SQL Server | 2025-11-11T18:34:39.453615Z | 2025-11-11T18:34:39.453615Z |
| ncsc-2025-0360 | Kwetsbaarheden verholpen in Microsoft Dynamics | 2025-11-11T18:33:13.936830Z | 2025-11-11T18:33:13.936830Z |
| ncsc-2025-0359 | Kwetsbaarheden verholpen in Microsoft Office | 2025-11-11T18:31:27.092072Z | 2025-11-11T18:31:27.092072Z |
| ncsc-2025-0358 | Kwetsbaartheden verholpen in Microsoft Windows | 2025-11-11T18:29:38.918562Z | 2025-11-11T18:29:38.918562Z |
| ncsc-2025-0357 | Kwetsbaarheden verholpen in Siemens producten | 2025-11-11T18:14:44.487803Z | 2025-11-11T18:14:44.487803Z |
| ncsc-2025-0356 | Kwetsbaarheden verholpen in SAP-producten | 2025-11-11T12:15:53.615720Z | 2025-11-11T12:15:53.615720Z |
| ncsc-2025-0355 | Kwetsbaarheden verholpen in Fortinet FortiOS en FortiProxy | 2025-11-07T10:07:28.475542Z | 2025-11-07T10:07:28.475542Z |
| ncsc-2025-0354 | Kwetsbaarheid verholpen in Cisco Identity Services Engine | 2025-11-06T12:36:51.591695Z | 2025-11-06T12:36:51.591695Z |
| ncsc-2025-0353 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-11-04T15:03:48.630084Z | 2025-11-04T15:03:48.630084Z |
| ncsc-2025-0352 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2025-11-04T12:53:15.358078Z | 2025-11-04T12:53:15.358078Z |
| ncsc-2025-0351 | Kwetsbaarheden verholpen in Apple MacOS | 2025-11-04T12:44:25.439757Z | 2025-11-04T12:44:25.439757Z |
| ncsc-2025-0350 | Kwetsbaarheid verholpen in CFMOTO Ride voertuigdatabeheer systemen | 2025-11-04T10:27:59.187171Z | 2025-11-04T10:27:59.187171Z |
| ncsc-2025-0349 | Kwetsbaarheden verholpen in Nagios XI | 2025-11-03T08:27:42.052256Z | 2025-11-03T08:27:42.052256Z |
| ncsc-2025-0348 | Kwetsbaarheden verholpen in Arista Networks producten | 2025-11-03T08:26:39.905306Z | 2025-11-03T08:26:39.905306Z |
| ncsc-2025-0347 | Kwetsbaarheden verholpen in IBM QRadar SIEM | 2025-11-03T08:17:18.981494Z | 2025-11-03T08:17:18.981494Z |
| ncsc-2025-0346 | Kwetsbaarheid verholpen in Progress MOVEit Transfer | 2025-11-03T08:14:02.972842Z | 2025-11-03T08:14:02.972842Z |
| ncsc-2025-0345 | Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk | 2025-10-31T09:35:00.469498Z | 2025-10-31T09:35:00.469498Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-750499 | SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-726617 | SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-711309 | SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products | 2023-09-12T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-698820 | SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-687955 | SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5 | 2025-02-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-682326 | SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-631336 | SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6 | 2022-06-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-552874 | SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2022-12-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-522291 | SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-514895 | SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-365596 | SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-339694 | SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-322980 | SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2023-04-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-301229 | SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-267056 | SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-225578 | SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3 | 2022-07-12T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-216014 | SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs | 2025-03-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-201498 | SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-194557 | SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5 | 2025-01-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-876787 | SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs | 2024-10-08T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-722410 | SSA-722410: Multiple Vulnerabilities in User Management Component (UMC) | 2025-09-09T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-625789 | SSA-625789: Multiple Vulnerabilities in SIMATIC S7-1200 CPU V1/V2 Devices | 2011-06-10T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-614723 | SSA-614723: Denial of Service Vulnerabilities in User Management Component (UMC) | 2025-05-13T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-599451 | SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0 | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-541582 | SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-513708 | SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices | 2025-06-10T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-486936 | SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-373591 | SSA-373591: Buffer Overflow Vulnerability in RUGGEDCOM ROS Devices | 2021-07-13T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-367714 | SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP | 2025-05-23T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-365200 | SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:8691 | Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update | 2025-06-09T14:26:17+00:00 | 2025-12-31T10:04:31+00:00 |
| rhsa-2025:8670 | Red Hat Security Advisory: Release of OpenShift Serverless Logic 1.36.0 security update & enhancements | 2025-06-09T10:12:51+00:00 | 2025-12-31T10:04:29+00:00 |
| rhsa-2025:8560 | Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update | 2025-06-10T06:26:36+00:00 | 2025-12-31T10:04:29+00:00 |
| rhsa-2025:8556 | Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update | 2025-06-13T05:16:43+00:00 | 2025-12-31T10:04:28+00:00 |
| rhsa-2025:8552 | Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update | 2025-06-11T12:02:51+00:00 | 2025-12-31T10:04:27+00:00 |
| rhsa-2025:8544 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update | 2025-06-04T20:11:19+00:00 | 2025-12-31T10:04:26+00:00 |
| rhsa-2025:8542 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates | 2025-06-04T21:17:49+00:00 | 2025-12-31T10:04:25+00:00 |
| rhsa-2025:8510 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update | 2025-06-04T12:26:00+00:00 | 2025-12-31T10:04:24+00:00 |
| rhsa-2025:8479 | Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update | 2025-06-04T01:58:44+00:00 | 2025-12-31T10:04:24+00:00 |
| rhsa-2025:8392 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates | 2025-06-04T00:41:53+00:00 | 2025-12-31T10:04:23+00:00 |
| rhsa-2025:8390 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes | 2025-06-02T17:37:18+00:00 | 2025-12-31T10:04:23+00:00 |
| rhsa-2025:8384 | Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates | 2025-06-02T14:56:45+00:00 | 2025-12-31T10:04:21+00:00 |
| rhsa-2025:8299 | Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update | 2025-06-04T12:16:12+00:00 | 2025-12-31T10:04:19+00:00 |
| rhsa-2025:8284 | Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update | 2025-06-03T10:16:45+00:00 | 2025-12-31T10:04:19+00:00 |
| rhsa-2025:8280 | Red Hat Security Advisory: OpenShift Container Platform 4.17.32 bug fix and security update | 2025-06-04T09:19:59+00:00 | 2025-12-31T10:04:19+00:00 |
| rhsa-2025:8274 | Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update | 2025-05-28T20:39:49+00:00 | 2025-12-31T10:04:18+00:00 |
| rhsa-2025:8267 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-28T15:24:18+00:00 | 2025-12-31T10:04:17+00:00 |
| rhsa-2025:8244 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.21.0 release | 2025-05-28T02:39:39+00:00 | 2025-12-31T10:04:17+00:00 |
| rhsa-2025:7967 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-19T09:52:50+00:00 | 2025-12-31T10:04:17+00:00 |
| rhsa-2025:8224 | Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.18.1 product release | 2025-05-27T17:21:15+00:00 | 2025-12-31T10:04:15+00:00 |
| rhsa-2025:8075 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-21T15:37:30+00:00 | 2025-12-31T10:04:15+00:00 |
| rhsa-2025:7863 | Red Hat Security Advisory: OpenShift Container Platform 4.18.14 bug fix and security update | 2025-05-20T17:17:48+00:00 | 2025-12-31T10:04:15+00:00 |
| rhsa-2025:8059 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update | 2025-05-21T06:13:16+00:00 | 2025-12-31T10:04:13+00:00 |
| rhsa-2025:7753 | Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update | 2025-05-15T17:09:32+00:00 | 2025-12-31T10:04:12+00:00 |
| rhsa-2025:7669 | Red Hat Security Advisory: OpenShift Container Platform 4.17.30 bug fix and security update | 2025-05-21T13:50:02+00:00 | 2025-12-31T10:04:11+00:00 |
| rhsa-2025:7702 | Red Hat Security Advisory: OpenShift Container Platform 4.14.52 bug fix and security update | 2025-05-21T14:54:27+00:00 | 2025-12-31T10:04:09+00:00 |
| rhsa-2025:7698 | Red Hat Security Advisory: OpenShift Container Platform 4.15.51 bug fix and security update | 2025-05-21T14:00:14+00:00 | 2025-12-31T10:04:08+00:00 |
| rhsa-2025:7616 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update | 2025-05-14T14:49:22+00:00 | 2025-12-31T10:04:07+00:00 |
| rhsa-2025:7592 | Red Hat Security Advisory: yggdrasil security update | 2025-05-14T11:52:59+00:00 | 2025-12-31T10:04:07+00:00 |
| rhsa-2025:7503 | Red Hat Security Advisory: osbuild-composer security update | 2025-05-13T17:31:03+00:00 | 2025-12-31T10:04:06+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-345-06 | Siemens SINEMA Remote Connect Server | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-345-05 | Siemens Advanced Licensing (SALT) Toolkit | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-345-04 | Siemens IAM Client | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-22 | Siemens Web Installer (SSA-282044) | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-11 | Siemens SIMATIC S7-PLCSIM | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-03 | Siemens SIMATIC S7-PLCSIM | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-347-02 | Siemens Engineering Platforms | 2024-12-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-256-16 | Siemens Third-Party Component in SICAM and SITIPE Products | 2024-09-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-193-05 | Siemens SCALANCE, RUGGEDCOM | 2024-07-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-22-349-09 | Siemens OpenSSL 3.0 Affecting Products | 2022-12-13T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-338-07 | Advantech iView | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-06 | SolisCloud Monitoring Platform | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-05 | Sunbird DCIM dcTrack and Power IQ | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-04 | Johnson Controls iSTAR | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-03 | Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-02 | MAXHUB Pivot | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-01 | Mitsubishi Electric GX Works2 | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-219-02 | Johnson Controls FX Server, FX80 and FX90 (Update A) | 2025-08-07T06:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-148-03 | Consilium Safety CS5000 Fire Panel (Update A) | 2025-05-29T06:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsma-25-336-01 | Mirion Medical EC2 Software NMIS BioDose | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-02 | Iskra iHUB and iHUB Lite | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-01 | Industrial Video & Control Longwatch | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-205-01 | Mitsubishi Electric CNC Series (Update A) | 2025-07-24T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-23-157-02 | Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C) | 2023-06-06T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-329-06 | SiRcom SMART Alert (SiSA) | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-05 | Festo Compact Vision System, Control Block, Controller, and Operator Unit products | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-03 | Zenitel TCIV-3+ | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-02 | Rockwell Automation Arena Simulation | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-01 | Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-22-333-05 | Mitsubishi Electric FA Engineering Software (Update C) | 2022-12-05T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-ios-invalid-url-dos-nvxszf6u | Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-ios-cli-eb7cz6yo | Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-defaultacl-psjk9nvf | Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-cat9k-acl-l4k7vxgd | Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-action-frame-inj-qqcncz8h | Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-9800cl-openscep-sb4xtxzp | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-snmp-bypass-hhuvujdn | Cisco IOS XE SD-WAN Software Packet Filtering Bypass Vulnerability | 2025-05-07T16:00:00+00:00 | 2025-09-22T14:12:28+00:00 |
| cisco-sa-xrsig-uy4zrucg | Cisco IOS XR Software Image Verification Bypass Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-iosxr-arp-storm-ejuu55ym | Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-acl-packetio-swjhhbtz | Cisco IOS XR Software Management Interface ACL Bypass Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-fp2k-ipsec-dos-tjwgdzco | Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability | 2025-08-14T16:00:00+00:00 | 2025-09-09T21:22:34+00:00 |
| cisco-sa-webex-xss-55bv8hhm | Cisco Webex Meetings Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-webex-urlredirect-uk8ddjsz | Cisco Webex Meetings URL Redirection Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-phone-write-g3kcc5df | Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-imp-xss-xqgu4hsg | Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epnm-pi-stored-xss-xjqzsycp | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epnm-info-dis-zhppmfgz | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epni-arb-file-upload-jjdm2p83 | Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-cucm-csrf-w762pryd | Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-3100_4200_tlsdos-2ynscd54 | Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability | 2025-08-14T16:00:00+00:00 | 2025-09-03T13:37:50+00:00 |
| cisco-sa-ucs-xss-ey6xhyps | Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-vkvmorv-cnkrv7hk | Cisco Integrated Management Controller Virtual Keyboard Video Monitor Open Redirect Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-multi-cmdinj-e4ukjyrz | Cisco UCS Manager Software Command Injection Vulnerabilities | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-kvmsxss-6h7anuyk | Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxospc-pim6-vg4jfph | Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxos-infodis-tectysfg | Cisco NX-OS Software Sensitive Log Information Disclosure Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxos-cmdinj-qhnze5ss | Cisco NX-OS Software Command Injection Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nshs-urapi-gjubvfpu | Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nd-ptrs-xu2fm2wb | Cisco Nexus Dashboard Path Traversal Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-n39k-isis-dos-jhja8rfx | Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| SCA-2023-0007 | Vulnerabilities in SICK LMS5xx | 2023-08-25T11:00:00.000Z | 2023-08-25T11:00:00.000Z |
| sca-2023-0006 | Vulnerabilities in SICK ICR890-4 | 2023-07-10T13:00:00.000Z | 2023-07-10T13:00:00.000Z |
| SCA-2023-0006 | Vulnerabilities in SICK ICR890-4 | 2023-07-10T13:00:00.000Z | 2023-07-10T13:00:00.000Z |
| sca-2023-0005 | Vulnerabilities in SICK EventCam App | 2023-06-19T11:00:00.000Z | 2023-06-19T11:00:00.000Z |
| SCA-2023-0005 | Vulnerabilities in SICK EventCam App | 2023-06-19T11:00:00.000Z | 2023-06-19T11:00:00.000Z |
| sca-2023-0004 | Vulnerabilities in SICK FTMg | 2023-05-11T13:00:00.000Z | 2023-05-11T13:00:00.000Z |
| SCA-2023-0004 | Vulnerabilities in SICK FTMg | 2023-05-11T13:00:00.000Z | 2023-05-11T13:00:00.000Z |
| sca-2023-0003 | Vulnerability in SICK Flexi Soft and Flexi Classic Gateways | 2023-05-03T13:00:00.000Z | 2023-05-03T13:00:00.000Z |
| SCA-2023-0003 | Vulnerability in SICK Flexi Soft and Flexi Classic Gateways | 2023-05-03T13:00:00.000Z | 2023-05-03T13:00:00.000Z |
| sca-2023-0002 | Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways | 2023-04-11T10:00:00.000Z | 2023-04-11T10:00:00.000Z |
| sca-2023-0001 | Bootloader mode vulnerability in Flexi Soft Gateways v3 | 2023-02-20T14:00:00.000Z | 2023-02-20T14:00:00.000Z |
| sca-2022-0015 | Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR | 2022-12-08T16:00:00.000Z | 2022-12-08T16:00:00.000Z |
| sca-2022-0013 | Password recovery vulnerability affects multiple SICK SIMs | 2022-10-21T13:00:00.000Z | 2022-11-04T14:00:00.000Z |
| sca-2022-0014 | SICK FlexiCompact affected by Denial of Service vulnerability | 2022-10-31T11:00:00.000Z | 2022-10-31T11:00:00.000Z |
| sca-2022-0012 | OpenSSL vulnerability affects multiple SICK SIMs | 2022-08-08T13:00:00.000Z | 2022-08-03T13:00:00.000Z |
| sca-2022-0010 | Vulnerability in SICK Flexi Soft Designer & Safety Designer | 2022-05-16T10:00:00.000Z | 2022-07-19T10:00:00.000Z |
| sca-2022-0011 | Vulnerabilities in SICK Package Analytics | 2022-06-08T15:00:00.000Z | 2022-06-08T15:00:00.000Z |
| sca-2022-0009 | Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET | 2022-04-29T15:00:00.000Z | 2022-04-29T15:00:00.000Z |
| sca-2022-0008 | Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3 | 2022-04-29T15:00:00.000Z | 2022-04-29T15:00:00.000Z |
| sca-2022-0007 | Vulnerabilities in SICK MARSIC300 | 2022-04-21T15:00:00.000Z | 2022-04-21T15:00:00.000Z |
| sca-2022-0006 | Vulnerability in SICK MSC800 | 2022-04-11T15:00:00.000Z | 2022-04-11T15:00:00.000Z |
| sca-2022-0005 | Vulnerability in SICK Overall Equipment Effectiveness (OEE) | 2022-04-11T15:00:00.000Z | 2022-04-11T15:00:00.000Z |
| sca-2022-0004 | Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC | 2022-04-11T15:00:00.000Z | 2022-03-31T15:00:00.000Z |
| sca-2022-0003 | Vulnerabilities in SICK FTMg | 2022-03-31T15:00:00.000Z | 2022-03-31T15:00:00.000Z |
| sca-2022-0002 | PwnKit vulnerability affects multiple SICK IPCs | 2022-02-23T16:00:00.000Z | 2022-02-23T16:00:00.000Z |
| sca-2022-0001 | Vulnerability in SICK FieldEcho | 2022-02-17T16:00:00.000Z | 2022-02-17T16:00:00.000Z |
| sca-2021-0003 | SICK Security Advisory for Apache Log4j (CVE-2021-44228) | 2021-12-14T17:00:00.000Z | 2021-12-17T12:00:00.000Z |
| sca-2021-0004 | Vulnerabilities in SICK SOPAS ET | 2021-12-16T08:00:00.000Z | 2021-12-17T08:00:00.000Z |
| sca-2021-0002 | MEAC affected by Windows SMBv1 vulnerability | 2021-08-04T10:00:00.000Z | 2021-08-04T10:00:00.000Z |
| sca-2021-0001 | Inadequate SSH configuration in SICK Visionary-S CX | 2021-06-25T10:00:00.000Z | 2021-06-25T10:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| nn-2023_10-01 | DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023_1-01 | Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 | 2023-05-03T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:9-01 | Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:8-01 | Session Fixation in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:7-01 | DoS via SAML configuration in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:6-01 | Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:5-01 | Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:4-01 | Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:3-01 | Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:2-01 | Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:11-01 | SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:10-01 | DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:1-01 | Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 | 2023-05-03T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022_2-02 | Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022_2-01 | Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022:2-02 | Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022:2-01 | Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021_2-01 | Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021_1-01 | Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021:2-01 | Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021:1-01 | Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020_3-01 | Angular template injection on custom report name field | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020_2-01 | Cross-site request forgery attack on change password form | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020:3-01 | Angular template injection on custom report name field | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020:2-01 | Cross-site request forgery attack on change password form | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019_2-01 | CSV Injection on node label | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019_1-01 | Stored XSS in field name data model | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019:2-01 | CSV Injection on node label | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019:1-01 | Stored XSS in field name data model | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-68740 | ima: Handle error code returned by ima_filter_rule_match() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:57.000Z |
| msrc_cve-2023-54082 | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:53.000Z |
| msrc_cve-2025-68358 | btrfs: fix racy bitfield write in btrfs_clear_space_info_full() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:48.000Z |
| msrc_cve-2025-68372 | nbd: defer config put in recv_work | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:43.000Z |
| msrc_cve-2025-68728 | ntfs3: fix uninit memory after failed mi_read in mi_format_new | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:38.000Z |
| msrc_cve-2025-68725 | bpf: Do not let BPF test infra emit invalid GSO types to stack | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:33.000Z |
| msrc_cve-2025-68365 | fs/ntfs3: Initialize allocated memory before use | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:29.000Z |
| msrc_cve-2025-68367 | macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:24.000Z |
| msrc_cve-2025-68742 | bpf: Fix invalid prog->stats access when update_effective_progs fails | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:19.000Z |
| msrc_cve-2025-68356 | gfs2: Prevent recursive memory reclaim | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:14.000Z |
| msrc_cve-2025-68746 | spi: tegra210-quad: Fix timeout handling | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:09.000Z |
| msrc_cve-2025-68344 | ALSA: wavefront: Fix integer overflow in sample size validation | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:04.000Z |
| msrc_cve-2025-68347 | ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:00.000Z |
| msrc_cve-2025-68744 | bpf: Free special fields when update [lru_,]percpu_hash maps | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:55.000Z |
| msrc_cve-2025-68729 | wifi: ath12k: Fix MSDU buffer types handling in RX error path | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:50.000Z |
| msrc_cve-2025-68745 | scsi: qla2xxx: Clear cmds after chip reset | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:45.000Z |
| msrc_cve-2025-68736 | landlock: Fix handling of disconnected directories | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:40.000Z |
| msrc_cve-2025-68366 | nbd: defer config unlock in nbd_genl_connect | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:35.000Z |
| msrc_cve-2025-68357 | iomap: allocate s_dio_done_wq for async reads as well | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:30.000Z |
| msrc_cve-2023-54161 | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:26.000Z |
| msrc_cve-2025-68732 | gpu: host1x: Fix race in syncpt alloc/free | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:21.000Z |
| msrc_cve-2025-68741 | scsi: qla2xxx: Fix improper freeing of purex item | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:16.000Z |
| msrc_cve-2025-68345 | ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:11.000Z |
| msrc_cve-2025-68362 | wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:06.000Z |
| msrc_cve-2025-68354 | regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:01.000Z |
| msrc_cve-2025-68349 | NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid | 2025-12-02T00:00:00.000Z | 2025-12-26T14:35:56.000Z |
| msrc_cve-2025-68371 | scsi: smartpqi: Fix device resources accessed after device removal | 2025-12-02T00:00:00.000Z | 2025-12-26T14:35:51.000Z |
| msrc_cve-2025-3001 | PyTorch torch.lstm_cell memory corruption | 2025-03-02T00:00:00.000Z | 2025-12-25T01:38:09.000Z |
| msrc_cve-2025-68476 | KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential | 2025-12-02T00:00:00.000Z | 2025-12-25T01:37:57.000Z |
| msrc_cve-2025-38478 | comedi: Fix initialization of data for instructions that write to subdevice | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:40.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| 9akk108470a8565 | RMC-100 Vulnerability in the Web UI (REST Interface) | 2025-03-11T00:30:00.000Z | 2025-03-11T00:30:00.000Z |
| 9akk108470a5684 | FLXeon Controllers Cyber Security Advisory | 2025-01-20T00:30:00.000Z | 2025-02-14T00:30:00.000Z |
| 7paa012159 | System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text | 2025-02-10T00:30:00.000Z | 2025-02-10T00:30:00.000Z |
| 9akk108470a6775 | Hardcoded credentials in ASPECT Energy Management System | 2025-02-05T00:30:00.000Z | 2025-02-06T00:30:00.000Z |
| sa25p001 | Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates | 2025-01-15T00:30:00.000Z | 2025-01-16T00:30:00.000Z |
| 9akk108470a5466 | Drive Composer Path Traversal Vulnerability | 2025-02-05T00:30:00.000Z | 2025-01-10T00:30:00.000Z |
| 3adr011377 | AC500 V3 Multiple vulnerabilities | 2025-01-07T00:30:00.000Z | 2025-01-07T00:30:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202001-0832 | A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic… | 2024-07-23T22:37:43.319000Z |
| var-201208-0222 | Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r… | 2024-07-23T22:37:43.393000Z |
| var-202108-1148 | An access issue was addressed with improved access restrictions. This issue is fixed in m… | 2024-07-23T22:36:01.656000Z |
| var-200202-0006 | Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause… | 2024-07-23T22:34:48.127000Z |
| var-202007-0395 | Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities … | 2024-07-23T22:33:57.481000Z |
| var-201805-1147 | WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe… | 2024-07-23T22:32:10.966000Z |
| var-201902-0647 | LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening … | 2024-07-23T22:32:09.990000Z |
| var-201908-0863 | Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE… | 2024-07-23T22:30:33.144000Z |
| var-201912-0120 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2024-07-23T22:30:32.761000Z |
| var-201912-0114 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2024-07-23T22:30:32.792000Z |
| var-202305-1589 | D-Link DIR-2150 SetSysEmailSettings EmailTo Command Injection Remote Code Execution Vulne… | 2024-07-23T22:30:26.856000Z |
| var-202407-0235 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res… | 2024-07-23T22:30:24.825000Z |
| var-202407-0234 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data … | 2024-07-23T22:30:24.699000Z |
| var-202407-0233 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data … | 2024-07-23T22:30:24.731000Z |
| var-202407-0232 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res… | 2024-07-23T22:30:24.657000Z |
| var-201112-0097 | Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a… | 2024-07-23T22:29:05.132000Z |
| var-201801-0152 | An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri… | 2024-07-23T22:28:30.754000Z |
| var-201801-0151 | A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior … | 2024-07-23T22:28:30.640000Z |
| var-201807-0341 | ABB Panel Builder 800 all versions has an improper input validation vulnerability which m… | 2024-07-23T22:28:27.949000Z |
| var-201806-1058 | Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo… | 2024-07-23T22:28:27.641000Z |
| var-201906-1029 | In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne… | 2024-07-23T22:28:26.009000Z |
| var-202004-0077 | There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc… | 2024-07-23T22:28:24.545000Z |
| var-202206-2050 | The affected product is vulnerable to multiple SQL injections, which may allow an unautho… | 2024-07-23T22:27:49.515000Z |
| var-202305-1981 | D-Link DIR-2150 SetSysEmailSettings AccountName Command Injection Remote Code Execution V… | 2024-07-23T22:27:44.287000Z |
| var-202305-0214 | D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerabilit… | 2024-07-23T22:27:44.496000Z |
| var-202305-0130 | D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vul… | 2024-07-23T22:27:44.522000Z |
| var-202407-0441 | A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC R… | 2024-07-23T22:27:41.577000Z |
| var-201105-0156 | Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30… | 2024-07-23T22:25:52.955000Z |
| var-201402-0028 | The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni… | 2024-07-23T22:25:48.624000Z |
| var-201402-0027 | The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re… | 2024-07-23T22:25:48.742000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000100 | Multiple Roboticsware products register Windows services with unquoted file paths | 2025-11-04T14:17+09:00 | 2025-11-04T14:17+09:00 |
| jvndb-2025-000098 | Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path | 2025-11-04T13:51+09:00 | 2025-11-04T13:51+09:00 |
| jvndb-2025-000099 | Progress Flowmon vulnerable to authenticated OS command injection | 2025-11-04T12:47+09:00 | 2025-11-04T12:47+09:00 |
| jvndb-2025-000096 | Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries | 2025-10-29T14:17+09:00 | 2025-10-29T14:17+09:00 |
| jvndb-2025-000095 | MZK-DP300N uses hard-coded credentials | 2025-10-28T14:04+09:00 | 2025-10-28T14:04+09:00 |
| jvndb-2025-014793 | NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference | 2025-10-01T11:35+09:00 | 2025-10-27T12:28+09:00 |
| jvndb-2025-000093 | Multiple stored cross-site scripting vulnerabilities in Pleasanter | 2025-10-24T15:11+09:00 | 2025-10-24T15:11+09:00 |
| jvndb-2025-000084 | GROWI vulnerable to cross-site scripting | 2025-10-22T15:44+09:00 | 2025-10-22T15:44+09:00 |
| jvndb-2025-000090 | Multiple stored cross-site scripting vulnerabilities in Movable Type | 2025-10-22T13:54+09:00 | 2025-10-22T13:54+09:00 |
| jvndb-2025-000088 | Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel | 2025-10-20T16:17+09:00 | 2025-10-22T10:06+09:00 |
| jvndb-2025-000092 | ETERNUS SF vulnerable to incorrect default permissions | 2025-10-20T14:20+09:00 | 2025-10-20T14:20+09:00 |
| jvndb-2025-000089 | Installer of AutoDownloader may insecurely load Dynamic Link Libraries | 2025-10-17T13:38+09:00 | 2025-10-17T13:38+09:00 |
| jvndb-2025-000074 | Multiple vulnerabilities in desknet's NEO | 2025-10-16T17:30+09:00 | 2025-10-16T17:30+09:00 |
| jvndb-2025-000076 | Multiple vulnerabilities in ChatLuck | 2025-10-16T17:17+09:00 | 2025-10-16T17:17+09:00 |
| jvndb-2025-000087 | Ruijie Networks RG-EST300 undocumented SSH functionality | 2025-10-16T14:19+09:00 | 2025-10-16T14:19+09:00 |
| jvndb-2025-016124 | Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal | 2025-10-16T11:16+09:00 | 2025-10-16T11:16+09:00 |
| jvndb-2025-000085 | Multiple RSUPPORT products may insecurely load Dynamic Link Libraries | 2025-10-15T15:55+09:00 | 2025-10-15T15:55+09:00 |
| jvndb-2025-000086 | Phoenix Contact CHARX SEC-3xxx vulnerable to code injection | 2025-10-15T15:54+09:00 | 2025-10-15T15:54+09:00 |
| jvndb-2025-000083 | BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path | 2025-10-10T13:56+09:00 | 2025-10-10T13:56+09:00 |
| jvndb-2025-015451 | Multiple vulnerabilities in FUJI Electric V-SFT | 2025-10-09T13:39+09:00 | 2025-10-09T13:39+09:00 |
| jvndb-2025-000081 | DataSpider Servista improper restriction of XML external entity references | 2025-09-29T14:44+09:00 | 2025-10-07T16:54+09:00 |
| jvndb-2025-000082 | The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries | 2025-10-06T15:38+09:00 | 2025-10-06T15:38+09:00 |
| jvndb-2025-015061 | Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation | 2025-10-06T13:52+09:00 | 2025-10-06T13:52+09:00 |
| jvndb-2025-000044 | Denial-of-service (DoS) vulnerabilities in multiple Apache products | 2025-06-26T14:41+09:00 | 2025-10-01T14:18+09:00 |
| jvndb-2025-014642 | Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-09-30T11:50+09:00 | 2025-09-30T11:50+09:00 |
| jvndb-2025-000066 | Improper file access permission settings in multiple i-FILTER products | 2025-08-27T19:50+09:00 | 2025-09-29T13:45+09:00 |
| jvndb-2025-000077 | RICOH Streamline NX vulnerable to tampering with operation history | 2025-09-08T13:42+09:00 | 2025-09-24T16:53+09:00 |
| jvndb-2025-007519 | Multiple vulnerabilities in multiple BROTHER products | 2025-06-26T18:15+09:00 | 2025-09-22T10:16+09:00 |
| jvndb-2025-014105 | OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path | 2025-09-19T16:21+09:00 | 2025-09-19T16:21+09:00 |
| jvndb-2025-014104 | Multiple vulnerabilities in I-O DATA wireless LAN routers | 2025-09-19T14:58+09:00 | 2025-09-19T14:58+09:00 |
| ID | Description | Updated |
|---|---|---|
| ts-2022-005 | TS-2022-005 | 2022-11-21T00:00 |
| ts-2022-004 | TS-2022-004 | 2022-11-21T00:00 |
| ts-2022-003 | TS-2022-003 | 2022-06-14T00:00 |
| ts-2022-002 | TS-2022-002 | 2022-05-11T00:00 |
| ts-2022-001 | TS-2022-001 | 2022-02-07T00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:4437-1 | Security update for helm | 2025-12-17T14:44:51Z | 2025-12-17T14:44:51Z |
| suse-su-2025:4406-1 | Security update for postgresql15 | 2025-12-15T14:22:59Z | 2025-12-15T14:22:59Z |
| suse-su-2025:4398-1 | Security update for python3 | 2025-12-15T11:30:55Z | 2025-12-15T11:30:55Z |
| suse-su-2025:4397-1 | Security update for MozillaThunderbird | 2025-12-15T11:26:39Z | 2025-12-15T11:26:39Z |
| suse-su-2025:4396-1 | Security update for MozillaFirefox | 2025-12-15T11:24:28Z | 2025-12-15T11:24:28Z |
| suse-su-2025:4393-1 | Security update for the Linux Kernel | 2025-12-15T11:09:08Z | 2025-12-15T11:09:08Z |
| suse-su-2025:4391-1 | Security update for unbound | 2025-12-15T10:34:10Z | 2025-12-15T10:34:10Z |
| suse-su-2025:4257-2 | Security update for python311 | 2025-12-15T10:33:51Z | 2025-12-15T10:33:51Z |
| suse-su-2025:4390-1 | Security update for rhino | 2025-12-12T16:18:03Z | 2025-12-12T16:18:03Z |
| suse-su-2025:21195-1 | Security update for binutils | 2025-12-12T15:58:29Z | 2025-12-12T15:58:29Z |
| suse-su-2025:4389-1 | Security update for python | 2025-12-12T13:49:14Z | 2025-12-12T13:49:14Z |
| suse-su-2025:4388-1 | Security update for postgresql16 | 2025-12-12T13:36:29Z | 2025-12-12T13:36:29Z |
| suse-su-2025:4387-1 | Security update for postgresql16 | 2025-12-12T13:35:46Z | 2025-12-12T13:35:46Z |
| suse-su-2025:4386-1 | Security update for postgresql16 | 2025-12-12T13:34:19Z | 2025-12-12T13:34:19Z |
| suse-su-2025:4384-1 | Security update for python-Django | 2025-12-12T13:28:27Z | 2025-12-12T13:28:27Z |
| suse-su-2025:4383-1 | Security update for libpng12 | 2025-12-12T13:13:47Z | 2025-12-12T13:13:47Z |
| suse-su-2025:4382-1 | Security update for gegl | 2025-12-12T13:06:54Z | 2025-12-12T13:06:54Z |
| suse-su-2025:4381-1 | Security update for kubernetes-client | 2025-12-12T10:19:11Z | 2025-12-12T10:19:11Z |
| suse-su-2025:4380-1 | Security update for kubernetes-client | 2025-12-12T10:18:54Z | 2025-12-12T10:18:54Z |
| suse-su-2025:21194-1 | Security update for keylime | 2025-12-12T09:45:03Z | 2025-12-12T09:45:03Z |
| suse-su-2025:4373-1 | Security update for container-suseconnect | 2025-12-12T09:05:38Z | 2025-12-12T09:05:38Z |
| suse-su-2025:21193-1 | Security update for go1.24 | 2025-12-12T07:45:36Z | 2025-12-12T07:45:36Z |
| suse-su-2025:21192-1 | Security update for go1.25 | 2025-12-12T07:24:50Z | 2025-12-12T07:24:50Z |
| suse-su-2025:4372-1 | Security update for postgresql15 | 2025-12-11T19:06:38Z | 2025-12-11T19:06:38Z |
| suse-su-2025:4371-1 | Security update for postgresql14 | 2025-12-11T19:04:45Z | 2025-12-11T19:04:45Z |
| suse-su-2025:4370-1 | Security update for postgresql14 | 2025-12-11T19:03:37Z | 2025-12-11T19:03:37Z |
| suse-su-2025:4368-1 | Security update for python3 | 2025-12-11T15:12:31Z | 2025-12-11T15:12:31Z |
| suse-su-2025:4364-1 | Security update for postgresql17, postgresql18 | 2025-12-11T10:12:26Z | 2025-12-11T10:12:26Z |
| suse-su-2025:4363-1 | Security update for postgresql17, postgresql18 | 2025-12-11T10:10:24Z | 2025-12-11T10:10:24Z |
| suse-su-2025:4353-1 | Security update for fontforge | 2025-12-10T18:03:31Z | 2025-12-10T18:03:31Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15797-1 | libpng12-0-1.2.59-4.1 on GA media | 2025-12-04T00:00:00Z | 2025-12-04T00:00:00Z |
| opensuse-su-2025:15796-1 | go1.24-1.24.11-1.1 on GA media | 2025-12-04T00:00:00Z | 2025-12-04T00:00:00Z |
| opensuse-su-2025-20135-1 | Security update for mozjs128 | 2025-12-03T20:41:04Z | 2025-12-03T20:41:04Z |
| opensuse-su-2025:15795-1 | go1.25-1.25.5-1.1 on GA media | 2025-12-03T00:00:00Z | 2025-12-03T00:00:00Z |
| opensuse-su-2025:15794-1 | chromedriver-143.0.7499.40-2.1 on GA media | 2025-12-03T00:00:00Z | 2025-12-03T00:00:00Z |
| opensuse-su-2025-20133-1 | Security update for python-cbor2 | 2025-12-02T13:51:41Z | 2025-12-02T13:51:41Z |
| opensuse-su-2025-20132-1 | Security update for strongswan | 2025-12-02T13:11:59Z | 2025-12-02T13:11:59Z |
| opensuse-su-2025:15793-1 | gegl-0.4.64-3.1 on GA media | 2025-12-02T00:00:00Z | 2025-12-02T00:00:00Z |
| opensuse-su-2025:15792-1 | python39-3.9.24-2.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15791-1 | python315-3.15.0~a1-2.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15790-1 | python-mistralclient-doc-6.1.0-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15789-1 | libecpg6-18.1-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15788-1 | lightdm-kde-greeter-6.0.5-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025-20130-1 | Security update for bash-git-prompt | 2025-11-28T13:38:03Z | 2025-11-28T13:38:03Z |
| opensuse-su-2025-20128-1 | Security update for shadowsocks-v2ray-plugin, v2ray-core | 2025-11-28T13:38:03Z | 2025-11-28T13:38:03Z |
| opensuse-su-2025-20125-1 | Security update for java-17-openjdk | 2025-11-28T10:27:02Z | 2025-11-28T10:27:02Z |
| opensuse-su-2025-20123-1 | Security update for java-21-openjdk | 2025-11-28T09:35:08Z | 2025-11-28T09:35:08Z |
| opensuse-su-2025-20122-1 | Security update for openssh | 2025-11-28T07:46:24Z | 2025-11-28T07:46:24Z |
| opensuse-su-2025:15787-1 | python311-salt-3006.0-52.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15786-1 | postgresql17-17.7-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15785-1 | postgresql16-16.11-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15784-1 | postgresql15-15.15-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15783-1 | postgresql14-14.20-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15782-1 | postgresql13-13.23-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15781-1 | libpng16-16-1.6.51-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15780-1 | libcoap-devel-4.3.5a-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15779-1 | helm3-3.19.2-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025-20113-1 | Security update for dovecot24 | 2025-11-27T20:17:17Z | 2025-11-27T20:17:17Z |
| opensuse-su-2025-20114-1 | Security update for himmelblau | 2025-11-27T20:16:29Z | 2025-11-27T20:16:29Z |
| opensuse-su-2025-20121-1 | Security update for redis | 2025-11-27T15:53:18Z | 2025-11-27T15:53:18Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-31003 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31003) | 2025-02-17 | 2025-12-18 |
| cnvd-2025-31002 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31002) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-31001 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31001) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-31000 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31000) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-30999 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-30999) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-30998 | Daily Expense Tracker System /expense-yearwise-reports-detailed.php文件SQL注入漏洞 | 2025-06-06 | 2025-12-18 |
| cnvd-2025-30967 | Advantech iView SQL注入漏洞(CNVD-2025-30967) | 2023-08-03 | 2025-12-18 |
| cnvd-2025-30966 | Advantech iView SQL注入漏洞(CNVD-2025-30966) | 2024-06-17 | 2025-12-18 |
| cnvd-2025-30965 | Advantech WebAccess/VPN NetworksController.addNetworkAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30964 | Advantech WebAccess/VPN AppManagementController.appUpgradeAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30963 | Advantech WebAccess/VPN AjaxStandaloneVpnClientsController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30962 | Advantech WebAccess/VPN AjaxPrevalidationController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30961 | Advantech WebAccess/VPN AjaxNetworkController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30949 | D-Link DIR-823G命令注入漏洞(CNVD-2025-30949) | 2025-11-18 | 2025-12-18 |
| cnvd-2025-30948 | Tenda AC21缓冲区溢出漏洞(CNVD-2025-30948) | 2025-09-25 | 2025-12-18 |
| cnvd-2025-30929 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30929) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30928 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30928) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30927 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30927) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30926 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30926) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30925 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30925) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30924 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30924) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30923 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30923) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30922 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30922) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30979 | Advantech iView SQL注入漏洞 | 2025-12-08 | 2025-12-17 |
| cnvd-2025-30978 | Advantech WISE-DeviceOn Server硬编码加密密钥漏洞 | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30977 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097798) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30976 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097699) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30975 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097500) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30974 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097401) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30973 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097302) | 2025-12-10 | 2025-12-17 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-1112 | Multiples vulnérabilités dans les produits Elastic | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1111 | Multiples vulnérabilités dans Roundcube | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1110 | Multiples vulnérabilités dans les produits Apple | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1109 | Vulnérabilité dans strongSwan | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1103 | Multiples vulnérabilités dans Microsoft Edge | 2025-12-12T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1096 | Multiples vulnérabilités dans Google Chrome | 2025-12-11T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1108 | Multiples vulnérabilités dans les produits IBM | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1107 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1106 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1105 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1104 | Vulnérabilité dans Microsoft Windows Admin Center | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1102 | Multiples vulnérabilités dans les produits NetApp | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1101 | Multiples vulnérabilités dans les produits Netgate | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1100 | Multiples vulnérabilités dans les produits Atlassian | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1099 | Multiples vulnérabilités dans les produits Mozilla | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1098 | Vulnérabilité dans Broadcom Carbon Black Cloud | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1097 | Multiples vulnérabilités dans les produits Mitel | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1095 | Multiples vulnérabilités dans GitLab | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1094 | Multiples vulnérabilités dans les produits Microsoft | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1093 | Vulnérabilité dans Microsoft Azure Monitor Agent | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1092 | Multiples vulnérabilités dans Microsoft Windows | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1091 | Multiples vulnérabilités dans Microsoft Office | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1090 | Vulnérabilité dans les produits Moxa | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1089 | Vulnérabilité dans les produits Bitdefender | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1088 | Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM) | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1087 | Multiples vulnérabilités dans les produits Mozilla | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1086 | Multiples vulnérabilités dans les produits Intel | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1085 | Multiples vulnérabilités dans les produits Adobe | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1084 | Multiples vulnérabilités dans les produits Fortinet | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1083 | Multiples vulnérabilités dans les produits Siemens | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2024-ALE-014 | [MàJ] Multiples vulnérabilités dans Fortinet FortiManager | 2024-10-30T00:00:00.000000 | 2024-10-23T00:00:00.000000 |
| CERTFR-2024-ALE-013 | Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) | 2025-03-31T00:00:00.000000 | 2024-10-25T00:00:00.000000 |
| certfr-2024-ale-015 | [MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-ALE-015 | [MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-ale-012 | [MàJ] Vulnérabilités affectant OpenPrinting CUPS | 2024-09-27T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| certfr-2024-ale-011 | Vulnérabilité dans SonicWall | 2024-09-10T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| CERTFR-2024-ALE-012 | [MàJ] Vulnérabilités affectant OpenPrinting CUPS | 2024-09-27T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| CERTFR-2024-ALE-011 | Vulnérabilité dans SonicWall | 2024-09-10T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| certfr-2024-ale-010 | Multiples vulnérabilités dans Roundcube | 2024-08-09T00:00:00.000000 | 2024-10-07T00:00:00.000000 |
| certfr-2024-ale-009 | Vulnérabilité dans OpenSSH | 2024-07-01T00:00:00.000000 | 2024-07-03T00:00:00.000000 |
| CERTFR-2024-ALE-010 | Multiples vulnérabilités dans Roundcube | 2024-08-09T00:00:00.000000 | 2024-10-07T00:00:00.000000 |
| CERTFR-2024-ALE-009 | Vulnérabilité dans OpenSSH | 2024-07-01T00:00:00.000000 | 2024-07-03T00:00:00.000000 |
| certfr-2024-ale-008 | [MàJ] Vulnérabilité dans les produits Check Point | 2024-05-30T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-007 | Multiples vulnérabilités dans les produits Cisco | 2024-04-25T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-006 | [MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect | 2024-04-12T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-004 | [MàJ] Vulnérabilité dans Fortinet FortiOS | 2024-02-09T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-008 | [MàJ] Vulnérabilité dans les produits Check Point | 2024-05-30T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-007 | Multiples vulnérabilités dans les produits Cisco | 2024-04-25T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-006 | [MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect | 2024-04-12T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-004 | [MàJ] Vulnérabilité dans Fortinet FortiOS | 2024-02-09T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-005 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2024-02-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-003 | [MàJ] Incident affectant les solutions AnyDesk | 2024-02-05T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-001 | [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways | 2024-01-11T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-005 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2024-02-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-003 | [MàJ] Incident affectant les solutions AnyDesk | 2024-02-05T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-001 | [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways | 2024-01-11T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-002 | [MàJ] Multiples Vulnérabilités dans GitLab | 2024-01-12T00:00:00.000000 | 2024-02-22T00:00:00.000000 |
| CERTFR-2024-ALE-002 | [MàJ] Multiples Vulnérabilités dans GitLab | 2024-01-12T00:00:00.000000 | 2024-02-22T00:00:00.000000 |
| certfr-2023-ale-013 | Vulnérabilité dans Apache Struts 2 | 2023-12-13T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-012 | [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway | 2023-10-23T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| GCVE-1-2025-0013 |
9.4 (4.0)
|
Vulnerability in sharing group blueprints allowing sha… |
misp |
misp |
2025-11-04T08:49:21.558087Z | 2025-11-04T08:49:21.558087Z |
| GCVE-1-2025-0012 |
N/A
|
Potential vulnerability in file check upload but non-e… |
misp |
misp |
2025-11-04T07:20:00.000Z | 2025-11-28T07:16:21.589449Z |
| GCVE-1-2025-0011 |
9.4 (4.0)
|
Arbitrary file inclusion / deletion via import modules… |
misp |
misp |
2025-11-04T07:01:25.464225Z | 2025-11-04T07:01:25.464225Z |
| GCVE-1-2025-0010 |
6.3 (4.0)
|
Arbitrary file hash inclusion via templates accessible… |
misp |
misp |
2025-11-04T06:25:11.108987Z | 2025-11-04T06:25:11.108987Z |
| GCVE-1-2025-0009 |
6.4 (4.0)
|
A pre-auth user could self-assign a reporter without b… |
CIRCL |
vulnerability-lookup |
2025-10-13T09:20:24.800890Z | 2025-10-13T09:20:24.800890Z |
| GCVE-1-2025-0008 |
7 (4.0)
|
Logged users can view vulnerability disclosure comment… |
CIRCL |
vulnerability-lookup |
2025-10-13T09:10:00.000Z | 2025-10-13T09:15:31.637686Z |
| GCVE-1-2025-0007 |
4.5 (4.0)
|
Missing email validation on user management |
CIRCL |
vulnerability-lookup |
2025-10-13T08:37:00.000Z | 2025-10-13T08:51:37.408861Z |
| GCVE-1-2025-0006 |
9.3 (4.0)
|
Potential XSS in admin CPE in organization model |
CIRCL |
vulnerability-lookup |
2025-10-13T08:29:00.000Z | 2025-10-13T08:52:23.411325Z |
| GCVE-1-2025-0005 |
9.4 (4.0)
|
Reflected XSS due to insecure use of Markup |
CIRCL |
vulnerability-lookup |
2025-10-13T08:23:29.812914Z | 2025-10-13T08:23:29.812914Z |
| GCVE-1-2025-0004 |
10 (4.0)
|
XSS in Comments, Bundles, and Sightings component of v… |
CIRCL |
vulnerability-lookup |
2025-09-25T14:10:00.000Z | 2025-11-19T10:16:47.656802Z |
| GCVE-1-2025-0003 |
9.3 (4.0)
|
Incorrect ACL for user settings edit, which previ… |
cerebrate |
cerebrate |
2025-08-22T12:33:00.000Z | 2025-08-23T07:55:10.950332Z |
| GCVE-1-2025-0002 |
8.9 (4.0)
|
Command Injection in Cl0p Exfiltration Python Script |
Cl0p ransomware |
exfiltration |
2025-07-01T08:19:00.000Z | 2025-07-01T10:58:58.443468Z |
| GCVE-1-2025-0001 |
5.3 (4.0)
|
The absence of a password confirmation step when deact… |
CIRCL |
Vulnerability-Lookup |
2025-05-27T08:58:00.000Z | 2025-05-30T14:27:56.273945Z |