Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-50793 |
8.7 (4.0)
8.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Authenticated Comm… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:38.291Z | 2025-12-30T22:41:38.291Z |
| CVE-2022-50792 |
8.7 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Fi… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:37.875Z | 2025-12-30T22:41:37.875Z |
| CVE-2022-50791 |
8.5 (4.0)
8.4 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Conditional Comman… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:37.450Z | 2025-12-30T22:41:37.450Z |
| CVE-2022-50790 |
6.9 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Ra… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:37.051Z | 2025-12-30T22:41:37.051Z |
| CVE-2022-50789 |
8.5 (4.0)
8.4 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Conditional Comman… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:36.629Z | 2025-12-30T22:41:36.629Z |
| CVE-2022-50788 |
6.9 (4.0)
7.5 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Information Disclo… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:36.215Z | 2025-12-30T22:41:36.215Z |
| CVE-2022-50787 |
5.3 (4.0)
7.2 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated St… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:35.798Z | 2025-12-30T22:41:35.798Z |
| CVE-2022-50696 |
9.3 (4.0)
6.5 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Hardcoded Credenti… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:35.214Z | 2025-12-30T22:41:35.214Z |
| CVE-2022-50695 |
8.7 (4.0)
9.8 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x ICMP Flood Attack … |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:34.792Z | 2025-12-30T22:41:34.792Z |
| CVE-2022-50694 |
8.8 (4.0)
8.2 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x SQL Injection via … |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:34.373Z | 2025-12-30T22:41:34.373Z |
| CVE-2022-50692 |
6.9 (4.0)
7.5 (3.1)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Insufficient Sessi… |
SOUND4 Ltd. |
Impact/Pulse/First |
2025-12-30T22:41:33.949Z | 2025-12-30T22:41:33.949Z |
| CVE-2022-50691 |
9.3 (4.0)
9.8 (3.1)
|
MiniDVBLinux 5.4 Remote Root Command Execution via com… |
MiniDVBLinux |
MiniDVBLinux |
2025-12-30T22:41:33.477Z | 2025-12-30T22:41:33.477Z |
| CVE-2025-62753 |
7.5 (3.1)
|
WordPress MAS Videos plugin <= 1.3.2 - Local File Incl… |
MadrasThemes |
MAS Videos |
2025-12-30T22:37:03.420Z | 2025-12-30T22:37:03.420Z |
| CVE-2025-15360 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
newbee-mall-plus Product Information Edit UploadContro… |
n/a |
newbee-mall-plus |
2025-12-30T21:32:06.648Z | 2025-12-30T22:36:37.524Z |
| CVE-2025-15199 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
code-projects College Notes Uploading System userprofi… |
code-projects |
College Notes Uploading System |
2025-12-29T18:02:06.000Z | 2025-12-30T22:32:46.863Z |
| CVE-2025-14280 |
5.3 (3.1)
|
PixelYourSite <= 11.1.5 - Sensitive Information Exposu… |
pixelyoursite |
PixelYourSite – Your smart PIXEL (TAG) & API Manager |
2025-12-29T18:20:49.929Z | 2025-12-30T22:30:31.768Z |
| CVE-2025-13592 |
7.2 (3.1)
|
Advanced Ads <= 2.0.14 - Authenticated (Editor+) Remot… |
monetizemore |
Advanced Ads – Ad Manager & AdSense |
2025-12-29T18:20:50.576Z | 2025-12-30T22:30:07.259Z |
| CVE-2025-15200 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
SohuTV CacheCloud AppClientDataShowController.java doI… |
SohuTV |
CacheCloud |
2025-12-29T18:32:06.529Z | 2025-12-30T22:29:49.105Z |
| CVE-2025-15201 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
SohuTV CacheCloud WebResourceController.java redirectN… |
SohuTV |
CacheCloud |
2025-12-29T19:02:07.207Z | 2025-12-30T22:27:14.236Z |
| CVE-2025-14728 |
6.8 (3.1)
|
Rapid7 Velociraptor Directory Traversal Vulnerability |
Rapid7 |
Velociraptor |
2025-12-29T19:04:27.820Z | 2025-12-30T22:26:47.316Z |
| CVE-2025-68431 |
6.5 (3.1)
|
libheif has Potential Heap Buffer Over-Read |
strukturag |
libheif |
2025-12-29T19:09:54.628Z | 2025-12-30T22:26:20.374Z |
| CVE-2025-69202 |
6 (4.0)
|
axios-cache-interceptor Vulnerable to Cache Poisoning … |
arthurfiorette |
axios-cache-interceptor |
2025-12-29T19:13:27.880Z | 2025-12-30T22:25:39.052Z |
| CVE-2025-68974 |
9.8 (3.1)
|
WordPress WordPress Social Login and Register plugin <… |
miniOrange |
WordPress Social Login and Register |
2025-12-30T10:47:47.632Z | 2025-12-30T22:25:19.008Z |
| CVE-2025-68975 |
8.1 (3.1)
|
WordPress Eagle Booking plugin <= 1.3.4.3 - Insecure D… |
Eagle-Themes |
Eagle Booking |
2025-12-30T10:47:47.878Z | 2025-12-30T22:24:56.415Z |
| CVE-2025-68976 |
8.8 (3.1)
|
WordPress Eagle Booking plugin <= 1.3.4.3 - Settings C… |
Eagle-Themes |
Eagle Booking |
2025-12-30T10:47:48.092Z | 2025-12-30T22:24:18.062Z |
| CVE-2025-68979 |
8.1 (3.1)
|
WordPress Google Calendar Events plugin <= 3.5.9 - Ins… |
SimpleCalendar |
Google Calendar Events |
2025-12-30T10:47:48.678Z | 2025-12-30T22:24:07.354Z |
| CVE-2025-68980 |
8.1 (3.1)
|
WordPress WeDesignTech Portfolio plugin <= 1.0.2 - Bro… |
designthemes |
WeDesignTech Portfolio |
2025-12-30T10:47:48.858Z | 2025-12-30T22:23:55.769Z |
| CVE-2025-68981 |
8.8 (3.1)
|
WordPress HomeFix Elementor Portfolio plugin <= 1.0.1 … |
designthemes |
HomeFix Elementor Portfolio |
2025-12-30T10:47:49.035Z | 2025-12-30T22:21:43.215Z |
| CVE-2025-68982 |
8.1 (3.1)
|
WordPress DesignThemes LMS Addon plugin <= 2.6 - Broke… |
designthemes |
DesignThemes LMS Addon |
2025-12-30T10:47:49.216Z | 2025-12-30T22:20:31.813Z |
| CVE-2025-68983 |
9.8 (3.1)
|
WordPress Greenmart theme <= 4.2.11 - Local File Inclu… |
thembay |
Greenmart |
2025-12-30T10:47:49.392Z | 2025-12-30T22:19:26.741Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-55311 |
6.5 (3.1)
|
An issue was discovered in Foxit PDF and Editor f… |
n/a |
n/a |
2025-12-11T00:00:00.000Z | 2025-12-11T16:25:41.126Z |
| CVE-2024-33453 |
8.1 (3.1)
|
Buffer Overflow vulnerability in esp-idf v.5.1 al… |
n/a |
n/a |
2024-10-17T00:00:00 | 2024-10-18T19:10:25.659Z |
| CVE-2024-33454 |
6.5 (3.1)
|
Buffer Overflow vulnerability in esp-idf v.5.1 al… |
n/a |
n/a |
2024-05-09T15:57:23.806Z | 2025-02-13T15:52:38.610Z |
| CVE-2024-48809 |
7.5 (3.1)
|
An issue in Open Networking Foundations sdran-in-… |
n/a |
n/a |
2024-11-04T00:00:00 | 2024-11-05T21:18:03.960Z |
| CVE-2025-15371 |
8.5 (4.0)
7.8 (3.1)
7.8 (3.0)
|
Tenda i24 Shadow File hard-coded credentials |
Tenda |
i24 |
2025-12-31T01:02:06.989Z | 2025-12-31T01:02:06.989Z |
| CVE-2025-11964 |
1.9 (3.1)
|
OOBW in utf_16le_to_utf_8_truncated() in libpcap |
The Tcpdump Group |
libpcap |
2025-12-31T00:58:19.026Z | 2025-12-31T00:58:19.026Z |
| CVE-2025-11961 |
1.9 (3.1)
|
OOBR and OOBW in pcap_ether_aton() in libpcap |
The Tcpdump Group |
libpcap |
2025-12-31T00:56:16.310Z | 2025-12-31T00:56:16.310Z |
| CVE-2025-13499 |
7.8 (3.1)
|
Access of Uninitialized Pointer in Wireshark |
Wireshark Foundation |
Wireshark |
2025-11-21T06:03:52.020Z | 2025-12-11T15:34:55.962Z |
| CVE-2025-13946 |
5.5 (3.1)
|
Loop with Unreachable Exit Condition ('Infinite Loop')… |
Wireshark Foundation |
Wireshark |
2025-12-03T08:04:54.335Z | 2025-12-03T14:28:19.274Z |
| CVE-2024-48246 |
5.4 (3.1)
|
Vehicle Management System 1.0 contains a Stored C… |
n/a |
n/a |
2025-03-05T00:00:00.000Z | 2025-03-06T14:23:01.488Z |
| CVE-2025-14284 |
6.1 (3.1)
|
Versions of the package @tiptap/extension-link be… |
n/a |
@tiptap/extension-link |
2025-12-09T05:00:03.409Z | 2025-12-09T14:59:53.928Z |
| CVE-2024-9582 |
6.4 (3.1)
|
Accordion Slider <= 1.9.11 - Authenticted (Contributor… |
bqworks |
Accordion Slider |
2024-10-16T06:43:37.406Z | 2024-10-16T14:09:41.287Z |
| CVE-2024-56055 |
8.5 (3.1)
|
WordPress WPLMS plugin < 1.9.9.5.2 - Arbitrary Directo… |
VibeThemes |
WPLMS |
2024-12-18T18:42:49.539Z | 2024-12-18T19:02:18.760Z |
| CVE-2025-63035 |
6.5 (3.1)
|
WordPress WPLMS plugin <= 1.9.9.5.4 - Cross Site Scrip… |
VibeThemes |
WPLMS |
2025-12-09T14:52:29.953Z | 2025-12-10T17:14:40.434Z |
| CVE-2025-64052 |
5.1 (3.1)
|
An issue was discovered in Fanvil x210 V2 2.12.20… |
n/a |
n/a |
2025-12-05T00:00:00.000Z | 2025-12-05T21:49:55.897Z |
| CVE-2024-30146 |
4.1 (3.1)
|
HCL Domino Leap is affected by improper access control |
HCL Software |
HCL Domino Leap |
2025-04-30T21:16:31.949Z | 2025-05-01T15:34:11.144Z |
| CVE-2025-11200 |
8.1 (3.0)
|
MLflow Weak Password Requirements Authentication Bypas… |
MLflow |
MLflow |
2025-10-29T19:42:03.734Z | 2025-10-31T03:55:31.971Z |
| CVE-2025-25298 |
6.3 (4.0)
|
Missing Maximum Password Length Validation in Strapi P… |
strapi |
strapi |
2025-10-16T16:21:45.585Z | 2025-10-16T18:12:49.837Z |
| CVE-2024-56143 |
8.2 (3.1)
|
Strapi Allows Unauthorized Access to Private Fields vi… |
strapi |
strapi |
2025-10-16T16:07:30.996Z | 2025-10-16T17:54:24.103Z |
| CVE-2024-33065 |
8.4 (3.1)
|
Improper Input Validation in Camera |
Qualcomm, Inc. |
Snapdragon |
2024-10-07T12:58:52.280Z | 2024-10-07T13:15:33.662Z |
| CVE-2024-4068 |
7.5 (3.1)
|
Memory Exhaustion in braces |
micromatch |
braces |
2024-05-13T10:06:38.152Z | 2024-11-06T13:10:11.179Z |
| CVE-2024-53406 |
8.8 (3.1)
|
Espressif Esp idf v5.3.0 is vulnerable to Insecur… |
n/a |
n/a |
2025-03-13T00:00:00.000Z | 2025-03-19T18:42:46.005Z |
| CVE-2023-40238 |
N/A
|
A LogoFAIL issue was discovered in BmpDecoderDxe … |
n/a |
n/a |
2023-12-07T00:00:00 | 2024-08-02T18:24:55.918Z |
| CVE-2025-14652 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Online Cake Ordering System admindetail.p… |
itsourcecode |
Online Cake Ordering System |
2025-12-14T09:02:06.291Z | 2025-12-15T21:18:14.730Z |
| CVE-2025-14832 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Online Cake Ordering System updateproduct… |
itsourcecode |
Online Cake Ordering System |
2025-12-17T22:02:06.941Z | 2025-12-18T15:07:31.226Z |
| CVE-2025-14650 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Online Cake Ordering System product.php s… |
itsourcecode |
Online Cake Ordering System |
2025-12-14T08:02:06.327Z | 2025-12-15T21:22:27.841Z |
| CVE-2025-4533 |
5.1 (4.0)
2.7 (3.1)
2.7 (3.0)
|
JeecgBoot Document Library Upload zip unzipFile resour… |
n/a |
JeecgBoot |
2025-05-11T06:31:04.456Z | 2025-05-12T13:39:06.588Z |
| CVE-2025-10981 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
JeecgBoot exportXls improper authorization |
n/a |
JeecgBoot |
2025-09-26T00:02:07.436Z | 2025-09-26T15:18:45.375Z |
| CVE-2025-10980 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
JeecgBoot exportXls improper authorization |
n/a |
JeecgBoot |
2025-09-25T23:32:07.502Z | 2025-09-26T19:15:16.785Z |
| CVE-2024-39580 |
6.7 (3.1)
|
Dell PowerScale InsightIQ, versions 5.0 through 5… |
Dell |
PowerScale InsightIQ |
2024-09-10T08:54:54.258Z | 2024-09-10T13:16:32.221Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-68990 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-30T11:15:57.690 | 2025-12-30T23:15:53.313 |
| fkie_cve-2025-68989 | Insertion of Sensitive Information Into Sent Data vulnerability in Renzo Johnson Contact Form 7 Ext… | 2025-12-30T11:15:57.567 | 2025-12-30T23:15:53.157 |
| fkie_cve-2025-68988 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe E-… | 2025-12-30T11:15:57.450 | 2025-12-30T23:15:53.010 |
| fkie_cve-2025-68987 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T11:15:57.330 | 2025-12-30T23:15:52.843 |
| fkie_cve-2025-68985 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T11:15:57.213 | 2025-12-30T23:15:52.687 |
| fkie_cve-2025-68984 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T11:15:57.090 | 2025-12-30T23:15:52.517 |
| fkie_cve-2025-68983 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T11:15:56.973 | 2025-12-30T23:15:52.327 |
| fkie_cve-2025-68982 | Missing Authorization vulnerability in designthemes DesignThemes LMS Addon designthemes-lms-addon a… | 2025-12-30T11:15:56.853 | 2025-12-30T23:15:52.170 |
| fkie_cve-2025-68981 | Missing Authorization vulnerability in designthemes HomeFix Elementor Portfolio homefix-ele-portfol… | 2025-12-30T11:15:56.737 | 2025-12-30T23:15:51.970 |
| fkie_cve-2025-68980 | Missing Authorization vulnerability in designthemes WeDesignTech Portfolio wedesigntech-portfolio a… | 2025-12-30T11:15:56.613 | 2025-12-30T23:15:51.813 |
| fkie_cve-2025-68979 | Authorization Bypass Through User-Controlled Key vulnerability in SimpleCalendar Google Calendar Ev… | 2025-12-30T11:15:56.493 | 2025-12-30T23:15:51.647 |
| fkie_cve-2025-68976 | Missing Authorization vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting I… | 2025-12-30T11:15:56.140 | 2025-12-30T23:15:51.457 |
| fkie_cve-2025-68975 | Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-… | 2025-12-30T11:15:56.017 | 2025-12-30T23:15:51.273 |
| fkie_cve-2025-68974 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T11:15:55.893 | 2025-12-30T23:15:51.117 |
| fkie_cve-2025-62753 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T23:15:50.920 | 2025-12-30T23:15:50.920 |
| fkie_cve-2025-59131 | Cross-Site Request Forgery (CSRF) vulnerability in Hoernerfranz WP-CalDav2ICS allows Stored XSS.Thi… | 2025-12-30T23:15:50.770 | 2025-12-30T23:15:50.770 |
| fkie_cve-2025-15360 | A vulnerability was determined in newbee-mall-plus 2.0.0. This impacts the function Upload of the f… | 2025-12-30T22:15:42.230 | 2025-12-30T23:15:50.640 |
| fkie_cve-2025-15201 | A flaw has been found in SohuTV CacheCloud up to 3.2.0. The impacted element is the function redire… | 2025-12-29T19:15:56.370 | 2025-12-30T23:15:50.513 |
| fkie_cve-2025-15200 | A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. The affected element is the function… | 2025-12-29T19:15:56.187 | 2025-12-30T23:15:50.367 |
| fkie_cve-2025-15199 | A security vulnerability has been detected in code-projects College Notes Uploading System 1.0. Imp… | 2025-12-29T19:15:56.003 | 2025-12-30T23:15:50.233 |
| fkie_cve-2025-15114 | Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that expose… | 2025-12-30T23:15:50.070 | 2025-12-30T23:15:50.070 |
| fkie_cve-2025-15113 | Ksenia Security Lares 4.0 Home Automation version 1.6 contains an unprotected endpoint vulnerabilit… | 2025-12-30T23:15:49.913 | 2025-12-30T23:15:49.913 |
| fkie_cve-2025-15112 | Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' s… | 2025-12-30T23:15:49.733 | 2025-12-30T23:15:49.733 |
| fkie_cve-2025-15111 | Ksenia Security Lares 4.0 Home Automation version 1.6 contains a default credentials vulnerability … | 2025-12-30T23:15:49.557 | 2025-12-30T23:15:49.557 |
| fkie_cve-2024-58338 | Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to … | 2025-12-30T23:15:49.227 | 2025-12-30T23:15:49.227 |
| fkie_cve-2024-58337 | Akuvox Smart Intercom S539 contains an improper access control vulnerability that allows users with… | 2025-12-30T23:15:49.060 | 2025-12-30T23:15:49.060 |
| fkie_cve-2024-58336 | Akuvox Smart Intercom S539 contains an unauthenticated vulnerability that allows remote attackers t… | 2025-12-30T23:15:48.880 | 2025-12-30T23:15:48.880 |
| fkie_cve-2024-58315 | Tosibox Key Service 3.3.0 contains an unquoted service path vulnerability that allows local non-pri… | 2025-12-30T23:15:48.700 | 2025-12-30T23:15:48.700 |
| fkie_cve-2023-54327 | Tinycontrol LAN Controller 1.58a contains an authentication bypass vulnerability that allows unauth… | 2025-12-30T23:15:48.500 | 2025-12-30T23:15:48.500 |
| fkie_cve-2023-54163 | NLB mKlik Macedonia 3.3.12 contains a SQL injection vulnerability in international transfer paramet… | 2025-12-30T23:15:48.337 | 2025-12-30T23:15:48.337 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-6xcq-8cpm-6v2h |
8.8 (3.1)
8.7 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an authenticated command injection vulnerability in th… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-3crj-9596-945w |
9.8 (3.1)
9.3 (4.0)
|
JM-DATA ONU JF511-TV version 1.0.67 uses default credentials that allow attackers to gain unauthori… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-32jx-jm5r-c6x7 |
9.8 (3.1)
6.9 (4.0)
|
SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an unauthenticated vulnerability that … | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-2v4h-c2w7-48pw |
4.3 (3.1)
5.1 (4.0)
|
JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to authenticated stored cross-site scripting (XSS… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-v4xq-5vm7-92m6 |
8.1 (3.1)
|
Missing Authorization vulnerability in designthemes WeDesignTech Portfolio wedesigntech-portfolio a… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-v45r-hm43-6rhp |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-r6vv-wc27-96r7 |
9.8 (3.1)
9.3 (4.0)
|
MiniDVBLinux 5.4 contains a remote command execution vulnerability that allows unauthenticated atta… | 2025-12-31T00:31:09Z | 2025-12-31T00:31:09Z |
| ghsa-r6vr-4858-x6vp |
8.8 (3.1)
|
Missing Authorization vulnerability in designthemes HomeFix Elementor Portfolio homefix-ele-portfol… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-qw33-f2vh-j266 |
8.1 (3.1)
|
Missing Authorization vulnerability in designthemes DesignThemes LMS Addon designthemes-lms-addon a… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-qfmr-crpq-mvc3 |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-p53h-3f9r-wqfh |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-m9wg-62r3-4h9p |
7.5 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in Renzo Johnson Contact Form 7 Ext… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-6xw6-m3mp-wcgg |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-44r9-xqhr-r952 |
7.5 (3.1)
|
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in o2oe E-… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-3gq6-fx9q-4r9m |
4.7 (3.1)
2.0 (4.0)
|
A vulnerability was determined in newbee-mall-plus 2.0.0. This impacts the function Upload of the f… | 2025-12-31T00:31:09Z | 2025-12-31T00:31:09Z |
| ghsa-24x8-vf4r-m3v5 |
9.8 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-30T12:30:27Z | 2025-12-31T00:31:09Z |
| ghsa-hqvh-9m3c-4xx2 |
9.8 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-30T12:30:26Z | 2025-12-31T00:31:08Z |
| ghsa-ffhx-92gc-w57q |
8.1 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in Eagle-Themes Eagle Booking eagle-… | 2025-12-30T12:30:26Z | 2025-12-31T00:31:08Z |
| ghsa-8hrf-667w-43rm |
8.1 (3.1)
|
Authorization Bypass Through User-Controlled Key vulnerability in SimpleCalendar Google Calendar Ev… | 2025-12-30T12:30:27Z | 2025-12-31T00:31:08Z |
| ghsa-3f3m-mgfh-hc2q |
8.8 (3.1)
|
Missing Authorization vulnerability in Eagle-Themes Eagle Booking eagle-booking allows Exploiting I… | 2025-12-30T12:30:26Z | 2025-12-31T00:31:08Z |
| ghsa-jm2j-x4xc-567m |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-05-07T15:31:44Z | 2025-12-31T00:31:06Z |
| ghsa-j4p8-h8mh-rh8q |
7.1 (3.1)
|
Self-hosted n8n has Legacy Code node that enables arbitrary file read/write | 2025-12-26T18:26:38Z | 2025-12-31T00:20:06Z |
| ghsa-f83h-ghpp-7wcc |
7.8 (3.1)
|
Insecure Deserialization (pickle) in pdfminer.six CMap Loader — Local Privesc | 2025-11-07T23:17:05Z | 2025-12-31T00:16:54Z |
| ghsa-wf5f-4jwr-ppcp |
8.6 (3.1)
|
Arbitrary Code Execution in pdfminer.six via Crafted PDF Input | 2025-11-07T20:52:24Z | 2025-12-31T00:16:06Z |
| ghsa-wh6m-h6f4-rjf4 |
7.3 (4.0)
|
Libredesk has Improper Neutralization of HTML Tags in a Web Page | 2025-12-16T20:43:16Z | 2025-12-31T00:13:33Z |
| ghsa-95qg-89c2-w5hj |
6.7 (3.1)
|
theshit vulnerable to unsafe loading of user-owned Python rules when running as root | 2025-12-30T23:45:51Z | 2025-12-30T23:45:52Z |
| ghsa-7rvh-xqp3-pr8j |
4.0 (3.1)
|
ImageMagick's failure to limit MVG mutual causes Stack Overflow | 2025-12-30T23:08:15Z | 2025-12-30T23:08:15Z |
| ghsa-h956-rh7x-ppgj |
9.8 (3.1)
|
RustFS has a gRPC Hardcoded Token Authentication Bypass | 2025-12-30T23:06:15Z | 2025-12-30T23:06:15Z |
| ghsa-p27m-hp98-6637 |
5.3 (3.1)
|
ImageMagick's failure to limit the depth of SVG file reads caused a DoS attack | 2025-12-30T22:54:32Z | 2025-12-30T22:54:33Z |
| ghsa-xx3f-437p-fp69 |
6.3 (3.1)
2.1 (4.0)
|
A vulnerability was found in D-Link DI-7400G+ 19.12.25A1. This affects an unknown function of the f… | 2025-12-30T21:30:33Z | 2025-12-30T21:30:33Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2025-53 |
|
vLLM is an inference and serving engine for large language models (LLMs). Prior to versio… | vllm | 2025-05-29T17:15:21+00:00 | 2025-06-26T21:23:06.231251+00:00 |
| pysec-2025-51 |
|
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v… | apache-airflow-providers-snowflake | 2025-06-24T08:15:24+00:00 | 2025-06-26T21:23:03.132527+00:00 |
| pysec-2025-50 |
|
vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp… | vllm | 2025-05-30T18:15:32+00:00 | 2025-06-19T03:02:28.572160+00:00 |
| pysec-2024-255 |
|
Gradio before 4.20 allows credential leakage on Windows. | gradio | 2024-05-05T20:15:07+00:00 | 2025-06-17T19:21:48.983901+00:00 |
| pysec-2024-254 |
4.2 (3.1)
|
A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke… | zenml | 2024-04-16T00:15:11+00:00 | 2025-06-13T00:48:41.806476+00:00 |
| pysec-2025-49 |
8.8 (3.1)
|
setuptools is a package that allows users to download, build, install, upgrade, and unins… | setuptools | 2025-05-17T16:15:19+00:00 | 2025-06-12T22:23:11.115559+00:00 |
| pysec-2025-48 |
9.8 (3.1)
|
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… | mobsf | 2025-03-31T17:15:42+00:00 | 2025-06-12T22:23:10.476087+00:00 |
| pysec-2024-253 |
|
pretix before 2024.1.1 mishandles file validation. | pretix | 2024-02-26T16:28:00+00:00 | 2025-06-11T15:23:51.683422+00:00 |
| pysec-2024-252 |
|
PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t… | torch | 2024-04-17T19:15:07+00:00 | 2025-06-10T19:22:08.948962+00:00 |
| pysec-2024-251 |
|
Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in… | torch | 2024-04-17T19:15:07+00:00 | 2025-06-10T03:12:59.077932+00:00 |
| pysec-2025-47 |
|
An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2… | django | 2025-06-05T03:15:25+00:00 | 2025-06-05T05:23:28.296596+00:00 |
| pysec-2025-46 |
5.5 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri… | pypickle | 2025-05-26T08:15:19+00:00 | 2025-06-03T17:36:58.579358+00:00 |
| pysec-2025-45 |
7.8 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.… | pypickle | 2025-05-26T07:15:26+00:00 | 2025-06-03T17:36:58.528116+00:00 |
| pysec-2024-250 |
|
Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr… | torch | 2024-04-19T21:15:08+00:00 | 2025-06-03T15:23:56.072490+00:00 |
| pysec-2023-312 |
5.9 (3.1)
|
Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b… | redis | 2023-07-15T23:15:09Z | 2025-06-02T11:48:06.372423Z |
| pysec-2025-44 |
|
django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod… | django-helpdesk | 2025-05-31T01:15:19+00:00 | 2025-05-31T03:09:35.357757+00:00 |
| pysec-2025-43 |
|
vLLM is an inference and serving engine for large language models (LLMs). In versions sta… | vllm | 2025-05-29T17:15:21+00:00 | 2025-05-29T19:21:01.611587+00:00 |
| pysec-2025-42 |
9.8 (3.1)
|
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver… | vllm | 2025-04-30T01:15:51+00:00 | 2025-05-28T21:23:12.396609+00:00 |
| pysec-2025-41 |
9.8 (3.1)
|
PyTorch is a Python package that provides tensor computation with strong GPU acceleration… | torch | 2025-04-18T16:15:23+00:00 | 2025-05-28T15:23:37.843138+00:00 |
| pysec-2025-40 |
7.5 (3.1)
|
A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`… | transformers | 2025-05-19T12:15:19+00:00 | 2025-05-21T19:22:10.801823+00:00 |
| pysec-2024-249 |
6.1 (3.1)
|
### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f… | label-studio | 2024-02-22T22:15:47+00:00 | 2025-05-19T11:22:35.312280+00:00 |
| pysec-2024-248 |
7.8 (3.1)
|
OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its … | opencanary | 2024-10-14T21:15:12+00:00 | 2025-05-16T14:23:05.150356+00:00 |
| pysec-2025-39 |
|
motionEye is an online interface for the software motion, a video surveillance program wi… | motioneye | 2025-05-14T16:15:29+00:00 | 2025-05-14T17:22:51.050788+00:00 |
| pysec-2025-38 |
|
OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im… | ironic | 2025-05-08T17:16:01Z | 2025-05-13T04:24:03.083929Z |
| pysec-2024-247 |
9.9 (3.1)
|
A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically… | zenml | 2024-04-16T00:15:11+00:00 | 2025-05-12T15:23:53.861001+00:00 |
| pysec-2025-37 |
|
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2… | django | 2025-05-08T04:17:18+00:00 | 2025-05-08T05:23:16.210893+00:00 |
| pysec-2025-36 |
9.8 (3.1)
|
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida… | langflow | 2025-04-07T15:15:44+00:00 | 2025-05-07T19:22:44.993642+00:00 |
| pysec-2024-246 |
5.3 (3.1)
|
Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in… | vyper | 2024-04-25T17:15:50+00:00 | 2025-05-05T19:21:20.899426+00:00 |
| pysec-2024-111 |
9.1 (3.1)
|
A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha… | langchain | 2024-10-29T13:15:00Z | 2025-05-02T18:39:47.588215Z |
| pysec-2024-245 |
|
Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user… | apache-airflow | 2024-02-29T11:15:08+00:00 | 2025-05-01T21:22:38.598048+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33881 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.886591Z |
| gsd-2024-33880 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.882744Z |
| gsd-2024-33879 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.727068Z |
| gsd-2024-33878 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.850311Z |
| gsd-2024-33877 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.871220Z |
| gsd-2024-33876 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.990196Z |
| gsd-2024-33875 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.862083Z |
| gsd-2024-33874 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.959238Z |
| gsd-2024-33873 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.870402Z |
| gsd-2024-33872 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.839468Z |
| gsd-2024-33871 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.800751Z |
| gsd-2024-33870 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.943118Z |
| gsd-2024-33869 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.784255Z |
| gsd-2024-33868 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.896638Z |
| gsd-2024-33867 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.808129Z |
| gsd-2024-33866 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.819755Z |
| gsd-2024-33865 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.790923Z |
| gsd-2024-33864 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.792101Z |
| gsd-2024-33863 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.824810Z |
| gsd-2024-33862 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.799465Z |
| gsd-2024-33861 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.958057Z |
| gsd-2024-33860 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.777612Z |
| gsd-2024-33859 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.867340Z |
| gsd-2024-33858 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.848478Z |
| gsd-2024-33857 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.834866Z |
| gsd-2024-33856 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.944669Z |
| gsd-2024-33855 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.741239Z |
| gsd-2024-33854 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.916266Z |
| gsd-2024-33853 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.825026Z |
| gsd-2024-33852 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-28T05:02:07.824312Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-191921 | Malicious code in voicemetterr (PyPI) | 2025-11-21T19:23:01Z | 2025-12-31T02:45:16Z |
| mal-2025-191920 | Malicious code in venomenallib (PyPI) | 2025-09-09T21:59:41Z | 2025-12-31T02:45:16Z |
| mal-2025-191919 | Malicious code in uzip (PyPI) | 2025-11-22T16:53:45Z | 2025-12-31T02:45:16Z |
| mal-2025-191918 | Malicious code in uuzip (PyPI) | 2025-11-22T20:55:03Z | 2025-12-31T02:45:16Z |
| mal-2025-191916 | Malicious code in unicore (PyPI) | 2025-09-07T21:01:23Z | 2025-12-31T02:45:16Z |
| mal-2025-191909 | Malicious code in transaction-utils (PyPI) | 2025-02-21T21:50:10Z | 2025-12-31T02:45:16Z |
| mal-2025-191908 | Malicious code in tosa-serialization-lib (PyPI) | 2025-10-14T09:40:20Z | 2025-12-31T02:45:16Z |
| mal-2025-191897 | Malicious code in tgeffect (PyPI) | 2025-11-22T15:12:29Z | 2025-12-31T02:45:16Z |
| mal-2025-191895 | Malicious code in testpurpleteaming (PyPI) | 2025-11-06T08:41:26Z | 2025-12-31T02:45:16Z |
| mal-2025-191892 | Malicious code in terminalcolornew (PyPI) | 2025-09-16T15:02:38Z | 2025-12-31T02:45:16Z |
| mal-2025-191891 | Malicious code in tensorflows (PyPI) | 2025-05-26T16:56:04Z | 2025-12-31T02:45:16Z |
| mal-2025-191889 | Malicious code in telepycore (PyPI) | 2025-04-30T21:54:42Z | 2025-12-31T02:45:16Z |
| mal-2025-191884 | Malicious code in tableausdk (PyPI) | 2025-06-07T16:33:11Z | 2025-12-31T02:45:16Z |
| mal-2025-191878 | Malicious code in statsapi (PyPI) | 2025-10-25T09:07:56Z | 2025-12-31T02:45:16Z |
| mal-2025-191873 | Malicious code in sorex (PyPI) | 2025-06-14T09:18:22Z | 2025-12-31T02:45:16Z |
| mal-2025-191872 | Malicious code in soopsocks (PyPI) | 2025-09-26T16:20:15Z | 2025-12-31T02:45:16Z |
| mal-2025-191870 | Malicious code in sitoogether (PyPI) | 2025-11-19T13:06:45Z | 2025-12-31T02:45:16Z |
| mal-2025-191868 | Malicious code in singtok (PyPI) | 2025-02-18T20:50:57Z | 2025-12-31T02:45:16Z |
| mal-2025-191867 | Malicious code in siitoogether (PyPI) | 2025-11-20T11:29:04Z | 2025-12-31T02:45:16Z |
| mal-2025-191661 | Malicious code in smart-scheduler (PyPI) | 2025-10-22T17:09:55Z | 2025-12-31T02:45:16Z |
| mal-2025-191533 | Malicious code in spellcheckers (PyPI) | 2025-11-15T18:49:10Z | 2025-12-31T02:45:16Z |
| mal-2025-1512 | Malicious code in testresearchpackagedc (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:16Z |
| mal-2024-12369 | Malicious code in wehaveatogether (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:16Z |
| mal-2024-12365 | Malicious code in transformars (PyPI) | 2024-07-07T18:03:21Z | 2025-12-31T02:45:16Z |
| mal-2024-12364 | Malicious code in tiktok-session-lite-sdk (PyPI) | 2024-08-22T22:25:03Z | 2025-12-31T02:45:16Z |
| mal-2024-12357 | Malicious code in szn-url (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:16Z |
| mal-2024-12356 | Malicious code in szn-search-mlops-common (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:16Z |
| mal-2024-12351 | Malicious code in spy-ai (PyPI) | 2024-10-02T09:16:00Z | 2025-12-31T02:45:16Z |
| mal-2024-12350 | Malicious code in springboot (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:16Z |
| mal-2024-12348 | Malicious code in spiderai (PyPI) | 2024-10-02T09:16:00Z | 2025-12-31T02:45:16Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2608 | Golang Go: Schwachstelle ermöglicht Denial of Service | 2025-11-16T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2466 | QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service | 2025-11-02T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2365 | Oracle Java SE: Mehrere Schwachstellen | 2025-10-21T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2193 | QEMU: Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-1740 | Golang Go: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-08-06T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0935 | Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0627 | Vercel Next.js: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-24T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0606 | Red Hat Enterprise Linux (Gatekeeper): Mehrere Schwachstellen ermöglichen Denial of Service | 2025-03-19T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0485 | Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-04T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-0123 | Red Hat Enterprise Linux und and OpenShift (go-git): Mehrere Schwachstellen | 2025-01-19T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2024-3281 | expat: Schwachstelle ermöglicht Denial of Service | 2024-10-27T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2024-1951 | expat: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-08-29T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2023-3174 | SSH Protokoll: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-12-18T23:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2909 | IBM App Connect Enterprise: Mehrere Schwachstellen | 2025-12-22T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2886 | Red Hat Enterprise Linux (git-lfs, opentelemetry-collector): Mehrere Schwachstellen | 2025-12-18T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2812 | Mozilla Firefox: Mehrere Schwachstellen | 2025-12-09T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2756 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-07T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2750 | Apache HTTP Server: Mehrere Schwachstellen | 2025-12-04T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2747 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-12-04T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2564 | Microsoft Windows und Windows Server: Mehrere Schwachstellen | 2025-11-11T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2449 | GIMP: Schwachstelle ermöglicht Codeausführung | 2025-10-29T23:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2246 | Linux Kernel: Mehrere Schwachstellen | 2025-10-08T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2230 | Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2227 | Golang Go: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2129 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-09-24T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2092 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-18T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2087 | Linux Kernel: Mehrere Schwachstellen | 2025-09-17T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2083 | Ruby: Schwachstelle ermöglicht Denial of Service | 2025-09-17T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2077 | Linux Kernel: Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2040 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-11T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0374 | Kwetsbaarheden verholpen in Arista EOS | 2025-11-20T11:48:20.126141Z | 2025-11-20T11:48:20.126141Z |
| ncsc-2025-0373 | Kwetsbaarheden verholpen in Fortinet FortiOS | 2025-11-19T08:35:31.999400Z | 2025-11-19T08:35:31.999400Z |
| ncsc-2025-0372 | Kwetsbaarheid verholpen in Fortinet FortiWeb | 2025-11-19T08:34:59.616354Z | 2025-11-19T08:34:59.616354Z |
| ncsc-2025-0371 | Kwetsbaarheden verholpen in Google Chrome | 2025-11-18T09:01:31.984222Z | 2025-11-18T09:01:31.984222Z |
| ncsc-2025-0370 | Kwetsbaarheden verholpen in Cisco Unified Contact Center Express | 2025-11-18T07:04:55.173157Z | 2025-11-18T07:04:55.173157Z |
| ncsc-2025-0369 | Kwetsbaarheden verholpen in IBM AIX | 2025-11-18T07:03:55.766335Z | 2025-11-18T07:03:55.766335Z |
| ncsc-2025-0368 | Kwetsbaarheden verholpen in Zoom Workplace en Zoom Clients | 2025-11-18T07:02:36.696426Z | 2025-11-18T07:02:36.696426Z |
| ncsc-2025-0367 | Kwetsbaarheden verholpen in GitLab | 2025-11-18T07:01:35.502522Z | 2025-11-18T07:01:35.502522Z |
| ncsc-2025-0366 | Kwetsbaarheid verholpen in Fortinet FortiWeb | 2025-11-15T14:57:33.774388Z | 2025-11-15T14:57:33.774388Z |
| ncsc-2025-0365 | Kwetsbaarheden verholpen in Cisco Catalyst Center | 2025-11-14T12:55:27.227262Z | 2025-11-14T12:55:27.227262Z |
| ncsc-2025-0364 | Kwetsbaarheid verholpen in Adobe Photoshop | 2025-11-12T12:17:16.207233Z | 2025-11-12T12:17:16.207233Z |
| ncsc-2025-0363 | Kwetsbaarheden verholpen in Adobe Illustrator | 2025-11-12T11:52:08.634593Z | 2025-11-12T11:56:09.924799Z |
| ncsc-2025-0362 | Kwetsbaarheden verholpen in Microsoft Visual Studio | 2025-11-11T18:35:40.376220Z | 2025-11-11T18:35:40.376220Z |
| ncsc-2025-0361 | Kwetsbaarheid verholpen in Microsoft SQL Server | 2025-11-11T18:34:39.453615Z | 2025-11-11T18:34:39.453615Z |
| ncsc-2025-0360 | Kwetsbaarheden verholpen in Microsoft Dynamics | 2025-11-11T18:33:13.936830Z | 2025-11-11T18:33:13.936830Z |
| ncsc-2025-0359 | Kwetsbaarheden verholpen in Microsoft Office | 2025-11-11T18:31:27.092072Z | 2025-11-11T18:31:27.092072Z |
| ncsc-2025-0358 | Kwetsbaartheden verholpen in Microsoft Windows | 2025-11-11T18:29:38.918562Z | 2025-11-11T18:29:38.918562Z |
| ncsc-2025-0357 | Kwetsbaarheden verholpen in Siemens producten | 2025-11-11T18:14:44.487803Z | 2025-11-11T18:14:44.487803Z |
| ncsc-2025-0356 | Kwetsbaarheden verholpen in SAP-producten | 2025-11-11T12:15:53.615720Z | 2025-11-11T12:15:53.615720Z |
| ncsc-2025-0355 | Kwetsbaarheden verholpen in Fortinet FortiOS en FortiProxy | 2025-11-07T10:07:28.475542Z | 2025-11-07T10:07:28.475542Z |
| ncsc-2025-0354 | Kwetsbaarheid verholpen in Cisco Identity Services Engine | 2025-11-06T12:36:51.591695Z | 2025-11-06T12:36:51.591695Z |
| ncsc-2025-0353 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-11-04T15:03:48.630084Z | 2025-11-04T15:03:48.630084Z |
| ncsc-2025-0352 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2025-11-04T12:53:15.358078Z | 2025-11-04T12:53:15.358078Z |
| ncsc-2025-0351 | Kwetsbaarheden verholpen in Apple MacOS | 2025-11-04T12:44:25.439757Z | 2025-11-04T12:44:25.439757Z |
| ncsc-2025-0350 | Kwetsbaarheid verholpen in CFMOTO Ride voertuigdatabeheer systemen | 2025-11-04T10:27:59.187171Z | 2025-11-04T10:27:59.187171Z |
| ncsc-2025-0349 | Kwetsbaarheden verholpen in Nagios XI | 2025-11-03T08:27:42.052256Z | 2025-11-03T08:27:42.052256Z |
| ncsc-2025-0348 | Kwetsbaarheden verholpen in Arista Networks producten | 2025-11-03T08:26:39.905306Z | 2025-11-03T08:26:39.905306Z |
| ncsc-2025-0347 | Kwetsbaarheden verholpen in IBM QRadar SIEM | 2025-11-03T08:17:18.981494Z | 2025-11-03T08:17:18.981494Z |
| ncsc-2025-0346 | Kwetsbaarheid verholpen in Progress MOVEit Transfer | 2025-11-03T08:14:02.972842Z | 2025-11-03T08:14:02.972842Z |
| ncsc-2025-0345 | Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk | 2025-10-31T09:35:00.469498Z | 2025-10-31T09:35:00.469498Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-750499 | SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-726617 | SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-711309 | SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products | 2023-09-12T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-698820 | SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices | 2024-07-09T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-687955 | SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5 | 2025-02-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-682326 | SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-631336 | SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6 | 2022-06-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-552874 | SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2022-12-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-522291 | SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-514895 | SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-365596 | SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-339694 | SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-322980 | SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2023-04-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-301229 | SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II | 2025-05-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-267056 | SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-225578 | SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3 | 2022-07-12T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-216014 | SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs | 2025-03-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-201498 | SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11 | 2025-11-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-194557 | SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5 | 2025-01-14T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-876787 | SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs | 2024-10-08T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-722410 | SSA-722410: Multiple Vulnerabilities in User Management Component (UMC) | 2025-09-09T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-625789 | SSA-625789: Multiple Vulnerabilities in SIMATIC S7-1200 CPU V1/V2 Devices | 2011-06-10T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-614723 | SSA-614723: Denial of Service Vulnerabilities in User Management Component (UMC) | 2025-05-13T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-599451 | SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0 | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-541582 | SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-513708 | SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices | 2025-06-10T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-486936 | SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-373591 | SSA-373591: Buffer Overflow Vulnerability in RUGGEDCOM ROS Devices | 2021-07-13T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-367714 | SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP | 2025-05-23T00:00:00Z | 2025-10-14T00:00:00Z |
| ssa-365200 | SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products | 2025-10-14T00:00:00Z | 2025-10-14T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2021:5128 | Red Hat Security Advisory: Openshift Logging security and bug update (5.1.5) | 2021-12-14T18:09:12+00:00 | 2025-12-31T00:54:26+00:00 |
| rhsa-2021:5127 | Red Hat Security Advisory: Openshift Logging security and bug update (5.2.4) | 2021-12-14T18:38:45+00:00 | 2025-12-31T00:54:25+00:00 |
| rhsa-2021:5126 | Red Hat Security Advisory: Red Hat Integration Camel Extensions for Quarkus GA security update | 2021-12-14T16:19:04+00:00 | 2025-12-31T00:54:24+00:00 |
| rhsa-2021:5108 | Red Hat Security Advisory: OpenShift Container Platform 4.8.z security update | 2021-12-14T15:09:31+00:00 | 2025-12-31T00:54:24+00:00 |
| rhsa-2021:5107 | Red Hat Security Advisory: OpenShift Container Platform 4.7.40 security update | 2021-12-16T15:00:19+00:00 | 2025-12-31T00:54:23+00:00 |
| rhsa-2021:5106 | Red Hat Security Advisory: OpenShift Container Platform 4.6.z security update | 2021-12-16T06:12:27+00:00 | 2025-12-31T00:54:23+00:00 |
| rhsa-2021:5094 | Red Hat Security Advisory: OpenShift Container Platform 3.11.z security update | 2021-12-14T05:50:14+00:00 | 2025-12-31T00:54:22+00:00 |
| rhsa-2021:5093 | Red Hat Security Advisory: Red Hat build of Eclipse Vert.x 4.1.5 SP1 security update | 2021-12-14T16:00:56+00:00 | 2025-12-31T00:54:22+00:00 |
| rhsa-2023:3161 | Red Hat Security Advisory: Red Hat OpenStack Platform 13.0 security update | 2023-05-17T01:57:13+00:00 | 2025-12-31T00:54:14+00:00 |
| rhsa-2023:3158 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 security update | 2023-05-17T01:04:39+00:00 | 2025-12-31T00:54:13+00:00 |
| rhsa-2023:3157 | Red Hat Security Advisory: Red Hat OpenStack Platform 17.0 security update | 2023-05-17T01:02:40+00:00 | 2025-12-31T00:54:13+00:00 |
| rhsa-2023:3156 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.1 security update | 2023-05-17T01:02:32+00:00 | 2025-12-31T00:54:13+00:00 |
| rhsa-2025:9759 | Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update | 2025-07-02T17:25:30+00:00 | 2025-12-30T18:07:06+00:00 |
| rhsa-2025:9646 | Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update | 2025-06-25T14:06:29+00:00 | 2025-12-30T18:07:00+00:00 |
| rhsa-2025:9562 | Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update | 2025-10-21T04:13:27+00:00 | 2025-12-30T18:07:00+00:00 |
| rhsa-2025:9541 | Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates | 2025-06-24T14:31:21+00:00 | 2025-12-30T18:07:00+00:00 |
| rhsa-2025:9388 | Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates | 2025-06-23T15:10:48+00:00 | 2025-12-30T18:07:00+00:00 |
| rhsa-2025:9259 | Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update | 2025-06-26T01:50:03+00:00 | 2025-12-30T18:06:59+00:00 |
| rhsa-2025:9167 | Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release | 2025-06-17T09:27:34+00:00 | 2025-12-30T18:06:58+00:00 |
| rhsa-2025:9136 | Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release | 2025-06-16T18:32:02+00:00 | 2025-12-30T18:06:58+00:00 |
| rhsa-2025:8704 | Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release | 2025-06-09T16:42:07+00:00 | 2025-12-30T18:06:57+00:00 |
| rhsa-2025:8691 | Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update | 2025-06-09T14:26:17+00:00 | 2025-12-30T18:06:56+00:00 |
| rhsa-2025:8560 | Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update | 2025-06-10T06:26:36+00:00 | 2025-12-30T18:06:56+00:00 |
| rhsa-2025:8556 | Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update | 2025-06-13T05:16:43+00:00 | 2025-12-30T18:06:56+00:00 |
| rhsa-2025:8552 | Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update | 2025-06-11T12:02:51+00:00 | 2025-12-30T18:06:55+00:00 |
| rhsa-2025:8544 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update | 2025-06-04T20:11:19+00:00 | 2025-12-30T18:06:54+00:00 |
| rhsa-2025:8542 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates | 2025-06-04T21:17:49+00:00 | 2025-12-30T18:06:54+00:00 |
| rhsa-2025:8510 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update | 2025-06-04T12:26:00+00:00 | 2025-12-30T18:06:53+00:00 |
| rhsa-2025:8479 | Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update | 2025-06-04T01:58:44+00:00 | 2025-12-30T18:06:53+00:00 |
| rhsa-2025:8392 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates | 2025-06-04T00:41:53+00:00 | 2025-12-30T18:06:53+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-345-06 | Siemens SINEMA Remote Connect Server | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-345-05 | Siemens Advanced Licensing (SALT) Toolkit | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-345-04 | Siemens IAM Client | 2025-12-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-22 | Siemens Web Installer (SSA-282044) | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-11 | Siemens SIMATIC S7-PLCSIM | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-226-03 | Siemens SIMATIC S7-PLCSIM | 2025-08-12T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-347-02 | Siemens Engineering Platforms | 2024-12-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-256-16 | Siemens Third-Party Component in SICAM and SITIPE Products | 2024-09-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-193-05 | Siemens SCALANCE, RUGGEDCOM | 2024-07-09T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-22-349-09 | Siemens OpenSSL 3.0 Affecting Products | 2022-12-13T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-25-338-07 | Advantech iView | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-06 | SolisCloud Monitoring Platform | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-05 | Sunbird DCIM dcTrack and Power IQ | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-04 | Johnson Controls iSTAR | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-03 | Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-02 | MAXHUB Pivot | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-338-01 | Mitsubishi Electric GX Works2 | 2025-12-04T07:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-219-02 | Johnson Controls FX Server, FX80 and FX90 (Update A) | 2025-08-07T06:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsa-25-148-03 | Consilium Safety CS5000 Fire Panel (Update A) | 2025-05-29T06:00:00.000000Z | 2025-12-04T07:00:00.000000Z |
| icsma-25-336-01 | Mirion Medical EC2 Software NMIS BioDose | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-02 | Iskra iHUB and iHUB Lite | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-336-01 | Industrial Video & Control Longwatch | 2025-12-02T07:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-205-01 | Mitsubishi Electric CNC Series (Update A) | 2025-07-24T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-23-157-02 | Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C) | 2023-06-06T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-25-329-06 | SiRcom SMART Alert (SiSA) | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-05 | Festo Compact Vision System, Control Block, Controller, and Operator Unit products | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-03 | Zenitel TCIV-3+ | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-02 | Rockwell Automation Arena Simulation | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-25-329-01 | Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share | 2025-11-25T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-22-333-05 | Mitsubishi Electric FA Engineering Software (Update C) | 2022-12-05T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-ios-invalid-url-dos-nvxszf6u | Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-ios-cli-eb7cz6yo | Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-defaultacl-psjk9nvf | Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-cat9k-acl-l4k7vxgd | Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-action-frame-inj-qqcncz8h | Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-9800cl-openscep-sb4xtxzp | Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability | 2025-09-24T16:00:00+00:00 | 2025-09-24T16:00:00+00:00 |
| cisco-sa-snmp-bypass-hhuvujdn | Cisco IOS XE SD-WAN Software Packet Filtering Bypass Vulnerability | 2025-05-07T16:00:00+00:00 | 2025-09-22T14:12:28+00:00 |
| cisco-sa-xrsig-uy4zrucg | Cisco IOS XR Software Image Verification Bypass Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-iosxr-arp-storm-ejuu55ym | Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-acl-packetio-swjhhbtz | Cisco IOS XR Software Management Interface ACL Bypass Vulnerability | 2025-09-10T16:00:00+00:00 | 2025-09-10T16:00:00+00:00 |
| cisco-sa-fp2k-ipsec-dos-tjwgdzco | Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability | 2025-08-14T16:00:00+00:00 | 2025-09-09T21:22:34+00:00 |
| cisco-sa-webex-xss-55bv8hhm | Cisco Webex Meetings Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-webex-urlredirect-uk8ddjsz | Cisco Webex Meetings URL Redirection Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-phone-write-g3kcc5df | Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-imp-xss-xqgu4hsg | Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epnm-pi-stored-xss-xjqzsycp | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epnm-info-dis-zhppmfgz | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-epni-arb-file-upload-jjdm2p83 | Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-cucm-csrf-w762pryd | Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability | 2025-09-03T16:00:00+00:00 | 2025-09-03T16:00:00+00:00 |
| cisco-sa-3100_4200_tlsdos-2ynscd54 | Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability | 2025-08-14T16:00:00+00:00 | 2025-09-03T13:37:50+00:00 |
| cisco-sa-ucs-xss-ey6xhyps | Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-vkvmorv-cnkrv7hk | Cisco Integrated Management Controller Virtual Keyboard Video Monitor Open Redirect Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-multi-cmdinj-e4ukjyrz | Cisco UCS Manager Software Command Injection Vulnerabilities | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-ucs-kvmsxss-6h7anuyk | Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxospc-pim6-vg4jfph | Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxos-infodis-tectysfg | Cisco NX-OS Software Sensitive Log Information Disclosure Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nxos-cmdinj-qhnze5ss | Cisco NX-OS Software Command Injection Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nshs-urapi-gjubvfpu | Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-nd-ptrs-xu2fm2wb | Cisco Nexus Dashboard Path Traversal Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| cisco-sa-n39k-isis-dos-jhja8rfx | Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability | 2025-08-27T16:00:00+00:00 | 2025-08-27T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| SCA-2023-0007 | Vulnerabilities in SICK LMS5xx | 2023-08-25T11:00:00.000Z | 2023-08-25T11:00:00.000Z |
| sca-2023-0006 | Vulnerabilities in SICK ICR890-4 | 2023-07-10T13:00:00.000Z | 2023-07-10T13:00:00.000Z |
| SCA-2023-0006 | Vulnerabilities in SICK ICR890-4 | 2023-07-10T13:00:00.000Z | 2023-07-10T13:00:00.000Z |
| sca-2023-0005 | Vulnerabilities in SICK EventCam App | 2023-06-19T11:00:00.000Z | 2023-06-19T11:00:00.000Z |
| SCA-2023-0005 | Vulnerabilities in SICK EventCam App | 2023-06-19T11:00:00.000Z | 2023-06-19T11:00:00.000Z |
| sca-2023-0004 | Vulnerabilities in SICK FTMg | 2023-05-11T13:00:00.000Z | 2023-05-11T13:00:00.000Z |
| SCA-2023-0004 | Vulnerabilities in SICK FTMg | 2023-05-11T13:00:00.000Z | 2023-05-11T13:00:00.000Z |
| sca-2023-0003 | Vulnerability in SICK Flexi Soft and Flexi Classic Gateways | 2023-05-03T13:00:00.000Z | 2023-05-03T13:00:00.000Z |
| SCA-2023-0003 | Vulnerability in SICK Flexi Soft and Flexi Classic Gateways | 2023-05-03T13:00:00.000Z | 2023-05-03T13:00:00.000Z |
| sca-2023-0002 | Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways | 2023-04-11T10:00:00.000Z | 2023-04-11T10:00:00.000Z |
| sca-2023-0001 | Bootloader mode vulnerability in Flexi Soft Gateways v3 | 2023-02-20T14:00:00.000Z | 2023-02-20T14:00:00.000Z |
| sca-2022-0015 | Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR | 2022-12-08T16:00:00.000Z | 2022-12-08T16:00:00.000Z |
| sca-2022-0013 | Password recovery vulnerability affects multiple SICK SIMs | 2022-10-21T13:00:00.000Z | 2022-11-04T14:00:00.000Z |
| sca-2022-0014 | SICK FlexiCompact affected by Denial of Service vulnerability | 2022-10-31T11:00:00.000Z | 2022-10-31T11:00:00.000Z |
| sca-2022-0012 | OpenSSL vulnerability affects multiple SICK SIMs | 2022-08-08T13:00:00.000Z | 2022-08-03T13:00:00.000Z |
| sca-2022-0010 | Vulnerability in SICK Flexi Soft Designer & Safety Designer | 2022-05-16T10:00:00.000Z | 2022-07-19T10:00:00.000Z |
| sca-2022-0011 | Vulnerabilities in SICK Package Analytics | 2022-06-08T15:00:00.000Z | 2022-06-08T15:00:00.000Z |
| sca-2022-0009 | Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET | 2022-04-29T15:00:00.000Z | 2022-04-29T15:00:00.000Z |
| sca-2022-0008 | Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3 | 2022-04-29T15:00:00.000Z | 2022-04-29T15:00:00.000Z |
| sca-2022-0007 | Vulnerabilities in SICK MARSIC300 | 2022-04-21T15:00:00.000Z | 2022-04-21T15:00:00.000Z |
| sca-2022-0006 | Vulnerability in SICK MSC800 | 2022-04-11T15:00:00.000Z | 2022-04-11T15:00:00.000Z |
| sca-2022-0005 | Vulnerability in SICK Overall Equipment Effectiveness (OEE) | 2022-04-11T15:00:00.000Z | 2022-04-11T15:00:00.000Z |
| sca-2022-0004 | Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC | 2022-04-11T15:00:00.000Z | 2022-03-31T15:00:00.000Z |
| sca-2022-0003 | Vulnerabilities in SICK FTMg | 2022-03-31T15:00:00.000Z | 2022-03-31T15:00:00.000Z |
| sca-2022-0002 | PwnKit vulnerability affects multiple SICK IPCs | 2022-02-23T16:00:00.000Z | 2022-02-23T16:00:00.000Z |
| sca-2022-0001 | Vulnerability in SICK FieldEcho | 2022-02-17T16:00:00.000Z | 2022-02-17T16:00:00.000Z |
| sca-2021-0003 | SICK Security Advisory for Apache Log4j (CVE-2021-44228) | 2021-12-14T17:00:00.000Z | 2021-12-17T12:00:00.000Z |
| sca-2021-0004 | Vulnerabilities in SICK SOPAS ET | 2021-12-16T08:00:00.000Z | 2021-12-17T08:00:00.000Z |
| sca-2021-0002 | MEAC affected by Windows SMBv1 vulnerability | 2021-08-04T10:00:00.000Z | 2021-08-04T10:00:00.000Z |
| sca-2021-0001 | Inadequate SSH configuration in SICK Visionary-S CX | 2021-06-25T10:00:00.000Z | 2021-06-25T10:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| nn-2023_10-01 | DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023_1-01 | Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 | 2023-05-03T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:9-01 | Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:8-01 | Session Fixation in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:7-01 | DoS via SAML configuration in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:6-01 | Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:5-01 | Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:4-01 | Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:3-01 | Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:2-01 | Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2 | 2023-08-09T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:11-01 | SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:10-01 | DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 | 2023-09-18T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2023:1-01 | Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2 | 2023-05-03T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022_2-02 | Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022_2-01 | Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022:2-02 | Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2022:2-01 | Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0 | 2022-02-14T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021_2-01 | Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021_1-01 | Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021:2-01 | Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2021:1-01 | Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4 | 2021-02-22T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020_3-01 | Angular template injection on custom report name field | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020_2-01 | Cross-site request forgery attack on change password form | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020:3-01 | Angular template injection on custom report name field | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2020:2-01 | Cross-site request forgery attack on change password form | 2020-05-26T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019_2-01 | CSV Injection on node label | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019_1-01 | Stored XSS in field name data model | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019:2-01 | CSV Injection on node label | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| nn-2019:1-01 | Stored XSS in field name data model | 2019-11-11T11:00:00.000Z | 2023-11-16T11:00:00.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-68728 | ntfs3: fix uninit memory after failed mi_read in mi_format_new | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:38.000Z |
| msrc_cve-2025-68725 | bpf: Do not let BPF test infra emit invalid GSO types to stack | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:33.000Z |
| msrc_cve-2025-68365 | fs/ntfs3: Initialize allocated memory before use | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:29.000Z |
| msrc_cve-2025-68367 | macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:24.000Z |
| msrc_cve-2025-68742 | bpf: Fix invalid prog->stats access when update_effective_progs fails | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:19.000Z |
| msrc_cve-2025-68356 | gfs2: Prevent recursive memory reclaim | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:14.000Z |
| msrc_cve-2025-68746 | spi: tegra210-quad: Fix timeout handling | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:09.000Z |
| msrc_cve-2025-68344 | ALSA: wavefront: Fix integer overflow in sample size validation | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:04.000Z |
| msrc_cve-2025-68347 | ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events | 2025-12-02T00:00:00.000Z | 2025-12-26T14:37:00.000Z |
| msrc_cve-2025-68744 | bpf: Free special fields when update [lru_,]percpu_hash maps | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:55.000Z |
| msrc_cve-2025-68729 | wifi: ath12k: Fix MSDU buffer types handling in RX error path | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:50.000Z |
| msrc_cve-2025-68745 | scsi: qla2xxx: Clear cmds after chip reset | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:45.000Z |
| msrc_cve-2025-68736 | landlock: Fix handling of disconnected directories | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:40.000Z |
| msrc_cve-2025-68366 | nbd: defer config unlock in nbd_genl_connect | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:35.000Z |
| msrc_cve-2025-68357 | iomap: allocate s_dio_done_wq for async reads as well | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:30.000Z |
| msrc_cve-2023-54161 | af_unix: Fix null-ptr-deref in unix_stream_sendpage(). | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:26.000Z |
| msrc_cve-2025-68732 | gpu: host1x: Fix race in syncpt alloc/free | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:21.000Z |
| msrc_cve-2025-68741 | scsi: qla2xxx: Fix improper freeing of purex item | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:16.000Z |
| msrc_cve-2025-68345 | ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_hda_read_acpi() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:11.000Z |
| msrc_cve-2025-68362 | wifi: rtl818x: rtl8187: Fix potential buffer underflow in rtl8187_rx_cb() | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:06.000Z |
| msrc_cve-2025-68354 | regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex | 2025-12-02T00:00:00.000Z | 2025-12-26T14:36:01.000Z |
| msrc_cve-2025-68349 | NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid | 2025-12-02T00:00:00.000Z | 2025-12-26T14:35:56.000Z |
| msrc_cve-2025-68371 | scsi: smartpqi: Fix device resources accessed after device removal | 2025-12-02T00:00:00.000Z | 2025-12-26T14:35:51.000Z |
| msrc_cve-2025-3001 | PyTorch torch.lstm_cell memory corruption | 2025-03-02T00:00:00.000Z | 2025-12-25T01:38:09.000Z |
| msrc_cve-2025-68476 | KEDA has Arbitrary File Read via Insufficient Path Validation in HashiCorp Vault Service Account Credential | 2025-12-02T00:00:00.000Z | 2025-12-25T01:37:57.000Z |
| msrc_cve-2025-38478 | comedi: Fix initialization of data for instructions that write to subdevice | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:40.000Z |
| msrc_cve-2025-38477 | net/sched: sch_qfq: Fix race condition on qfq_aggregate | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:36.000Z |
| msrc_cve-2025-38425 | i2c: tegra: check msg length in SMBUS block read | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:31.000Z |
| msrc_cve-2025-38422 | net: lan743x: Modify the EEPROM and OTP size for PCI1xxxx devices | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:26.000Z |
| msrc_cve-2025-38412 | platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs callbacks | 2025-07-02T00:00:00.000Z | 2025-12-25T01:02:21.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| 9akk108470a8565 | RMC-100 Vulnerability in the Web UI (REST Interface) | 2025-03-11T00:30:00.000Z | 2025-03-11T00:30:00.000Z |
| 9akk108470a5684 | FLXeon Controllers Cyber Security Advisory | 2025-01-20T00:30:00.000Z | 2025-02-14T00:30:00.000Z |
| 7paa012159 | System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text | 2025-02-10T00:30:00.000Z | 2025-02-10T00:30:00.000Z |
| 9akk108470a6775 | Hardcoded credentials in ASPECT Energy Management System | 2025-02-05T00:30:00.000Z | 2025-02-06T00:30:00.000Z |
| sa25p001 | Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates | 2025-01-15T00:30:00.000Z | 2025-01-16T00:30:00.000Z |
| 9akk108470a5466 | Drive Composer Path Traversal Vulnerability | 2025-02-05T00:30:00.000Z | 2025-01-10T00:30:00.000Z |
| 3adr011377 | AC500 V3 Multiple vulnerabilities | 2025-01-07T00:30:00.000Z | 2025-01-07T00:30:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202001-0832 | A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic… | 2024-07-23T22:37:43.319000Z |
| var-201208-0222 | Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r… | 2024-07-23T22:37:43.393000Z |
| var-202108-1148 | An access issue was addressed with improved access restrictions. This issue is fixed in m… | 2024-07-23T22:36:01.656000Z |
| var-200202-0006 | Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause… | 2024-07-23T22:34:48.127000Z |
| var-202007-0395 | Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities … | 2024-07-23T22:33:57.481000Z |
| var-201805-1147 | WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe… | 2024-07-23T22:32:10.966000Z |
| var-201902-0647 | LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening … | 2024-07-23T22:32:09.990000Z |
| var-201908-0863 | Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE… | 2024-07-23T22:30:33.144000Z |
| var-201912-0120 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2024-07-23T22:30:32.761000Z |
| var-201912-0114 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2024-07-23T22:30:32.792000Z |
| var-202305-1589 | D-Link DIR-2150 SetSysEmailSettings EmailTo Command Injection Remote Code Execution Vulne… | 2024-07-23T22:30:26.856000Z |
| var-202407-0235 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res… | 2024-07-23T22:30:24.825000Z |
| var-202407-0234 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data … | 2024-07-23T22:30:24.699000Z |
| var-202407-0233 | Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data … | 2024-07-23T22:30:24.731000Z |
| var-202407-0232 | Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res… | 2024-07-23T22:30:24.657000Z |
| var-201112-0097 | Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a… | 2024-07-23T22:29:05.132000Z |
| var-201801-0152 | An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri… | 2024-07-23T22:28:30.754000Z |
| var-201801-0151 | A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior … | 2024-07-23T22:28:30.640000Z |
| var-201807-0341 | ABB Panel Builder 800 all versions has an improper input validation vulnerability which m… | 2024-07-23T22:28:27.949000Z |
| var-201806-1058 | Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo… | 2024-07-23T22:28:27.641000Z |
| var-201906-1029 | In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne… | 2024-07-23T22:28:26.009000Z |
| var-202004-0077 | There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc… | 2024-07-23T22:28:24.545000Z |
| var-202206-2050 | The affected product is vulnerable to multiple SQL injections, which may allow an unautho… | 2024-07-23T22:27:49.515000Z |
| var-202305-1981 | D-Link DIR-2150 SetSysEmailSettings AccountName Command Injection Remote Code Execution V… | 2024-07-23T22:27:44.287000Z |
| var-202305-0214 | D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerabilit… | 2024-07-23T22:27:44.496000Z |
| var-202305-0130 | D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vul… | 2024-07-23T22:27:44.522000Z |
| var-202407-0441 | A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC R… | 2024-07-23T22:27:41.577000Z |
| var-201105-0156 | Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30… | 2024-07-23T22:25:52.955000Z |
| var-201402-0028 | The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni… | 2024-07-23T22:25:48.624000Z |
| var-201402-0027 | The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re… | 2024-07-23T22:25:48.742000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000100 | Multiple Roboticsware products register Windows services with unquoted file paths | 2025-11-04T14:17+09:00 | 2025-11-04T14:17+09:00 |
| jvndb-2025-000098 | Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path | 2025-11-04T13:51+09:00 | 2025-11-04T13:51+09:00 |
| jvndb-2025-000099 | Progress Flowmon vulnerable to authenticated OS command injection | 2025-11-04T12:47+09:00 | 2025-11-04T12:47+09:00 |
| jvndb-2025-000096 | Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries | 2025-10-29T14:17+09:00 | 2025-10-29T14:17+09:00 |
| jvndb-2025-000095 | MZK-DP300N uses hard-coded credentials | 2025-10-28T14:04+09:00 | 2025-10-28T14:04+09:00 |
| jvndb-2025-014793 | NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference | 2025-10-01T11:35+09:00 | 2025-10-27T12:28+09:00 |
| jvndb-2025-000093 | Multiple stored cross-site scripting vulnerabilities in Pleasanter | 2025-10-24T15:11+09:00 | 2025-10-24T15:11+09:00 |
| jvndb-2025-000084 | GROWI vulnerable to cross-site scripting | 2025-10-22T15:44+09:00 | 2025-10-22T15:44+09:00 |
| jvndb-2025-000090 | Multiple stored cross-site scripting vulnerabilities in Movable Type | 2025-10-22T13:54+09:00 | 2025-10-22T13:54+09:00 |
| jvndb-2025-000088 | Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel | 2025-10-20T16:17+09:00 | 2025-10-22T10:06+09:00 |
| jvndb-2025-000092 | ETERNUS SF vulnerable to incorrect default permissions | 2025-10-20T14:20+09:00 | 2025-10-20T14:20+09:00 |
| jvndb-2025-000089 | Installer of AutoDownloader may insecurely load Dynamic Link Libraries | 2025-10-17T13:38+09:00 | 2025-10-17T13:38+09:00 |
| jvndb-2025-000074 | Multiple vulnerabilities in desknet's NEO | 2025-10-16T17:30+09:00 | 2025-10-16T17:30+09:00 |
| jvndb-2025-000076 | Multiple vulnerabilities in ChatLuck | 2025-10-16T17:17+09:00 | 2025-10-16T17:17+09:00 |
| jvndb-2025-000087 | Ruijie Networks RG-EST300 undocumented SSH functionality | 2025-10-16T14:19+09:00 | 2025-10-16T14:19+09:00 |
| jvndb-2025-016124 | Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal | 2025-10-16T11:16+09:00 | 2025-10-16T11:16+09:00 |
| jvndb-2025-000085 | Multiple RSUPPORT products may insecurely load Dynamic Link Libraries | 2025-10-15T15:55+09:00 | 2025-10-15T15:55+09:00 |
| jvndb-2025-000086 | Phoenix Contact CHARX SEC-3xxx vulnerable to code injection | 2025-10-15T15:54+09:00 | 2025-10-15T15:54+09:00 |
| jvndb-2025-000083 | BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path | 2025-10-10T13:56+09:00 | 2025-10-10T13:56+09:00 |
| jvndb-2025-015451 | Multiple vulnerabilities in FUJI Electric V-SFT | 2025-10-09T13:39+09:00 | 2025-10-09T13:39+09:00 |
| jvndb-2025-000081 | DataSpider Servista improper restriction of XML external entity references | 2025-09-29T14:44+09:00 | 2025-10-07T16:54+09:00 |
| jvndb-2025-000082 | The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries | 2025-10-06T15:38+09:00 | 2025-10-06T15:38+09:00 |
| jvndb-2025-015061 | Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation | 2025-10-06T13:52+09:00 | 2025-10-06T13:52+09:00 |
| jvndb-2025-000044 | Denial-of-service (DoS) vulnerabilities in multiple Apache products | 2025-06-26T14:41+09:00 | 2025-10-01T14:18+09:00 |
| jvndb-2025-014642 | Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers | 2025-09-30T11:50+09:00 | 2025-09-30T11:50+09:00 |
| jvndb-2025-000066 | Improper file access permission settings in multiple i-FILTER products | 2025-08-27T19:50+09:00 | 2025-09-29T13:45+09:00 |
| jvndb-2025-000077 | RICOH Streamline NX vulnerable to tampering with operation history | 2025-09-08T13:42+09:00 | 2025-09-24T16:53+09:00 |
| jvndb-2025-007519 | Multiple vulnerabilities in multiple BROTHER products | 2025-06-26T18:15+09:00 | 2025-09-22T10:16+09:00 |
| jvndb-2025-014105 | OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path | 2025-09-19T16:21+09:00 | 2025-09-19T16:21+09:00 |
| jvndb-2025-014104 | Multiple vulnerabilities in I-O DATA wireless LAN routers | 2025-09-19T14:58+09:00 | 2025-09-19T14:58+09:00 |
| ID | Description | Updated |
|---|---|---|
| ts-2022-005 | TS-2022-005 | 2022-11-21T00:00 |
| ts-2022-004 | TS-2022-004 | 2022-11-21T00:00 |
| ts-2022-003 | TS-2022-003 | 2022-06-14T00:00 |
| ts-2022-002 | TS-2022-002 | 2022-05-11T00:00 |
| ts-2022-001 | TS-2022-001 | 2022-02-07T00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:4437-1 | Security update for helm | 2025-12-17T14:44:51Z | 2025-12-17T14:44:51Z |
| suse-su-2025:4406-1 | Security update for postgresql15 | 2025-12-15T14:22:59Z | 2025-12-15T14:22:59Z |
| suse-su-2025:4398-1 | Security update for python3 | 2025-12-15T11:30:55Z | 2025-12-15T11:30:55Z |
| suse-su-2025:4397-1 | Security update for MozillaThunderbird | 2025-12-15T11:26:39Z | 2025-12-15T11:26:39Z |
| suse-su-2025:4396-1 | Security update for MozillaFirefox | 2025-12-15T11:24:28Z | 2025-12-15T11:24:28Z |
| suse-su-2025:4393-1 | Security update for the Linux Kernel | 2025-12-15T11:09:08Z | 2025-12-15T11:09:08Z |
| suse-su-2025:4391-1 | Security update for unbound | 2025-12-15T10:34:10Z | 2025-12-15T10:34:10Z |
| suse-su-2025:4257-2 | Security update for python311 | 2025-12-15T10:33:51Z | 2025-12-15T10:33:51Z |
| suse-su-2025:4390-1 | Security update for rhino | 2025-12-12T16:18:03Z | 2025-12-12T16:18:03Z |
| suse-su-2025:21195-1 | Security update for binutils | 2025-12-12T15:58:29Z | 2025-12-12T15:58:29Z |
| suse-su-2025:4389-1 | Security update for python | 2025-12-12T13:49:14Z | 2025-12-12T13:49:14Z |
| suse-su-2025:4388-1 | Security update for postgresql16 | 2025-12-12T13:36:29Z | 2025-12-12T13:36:29Z |
| suse-su-2025:4387-1 | Security update for postgresql16 | 2025-12-12T13:35:46Z | 2025-12-12T13:35:46Z |
| suse-su-2025:4386-1 | Security update for postgresql16 | 2025-12-12T13:34:19Z | 2025-12-12T13:34:19Z |
| suse-su-2025:4384-1 | Security update for python-Django | 2025-12-12T13:28:27Z | 2025-12-12T13:28:27Z |
| suse-su-2025:4383-1 | Security update for libpng12 | 2025-12-12T13:13:47Z | 2025-12-12T13:13:47Z |
| suse-su-2025:4382-1 | Security update for gegl | 2025-12-12T13:06:54Z | 2025-12-12T13:06:54Z |
| suse-su-2025:4381-1 | Security update for kubernetes-client | 2025-12-12T10:19:11Z | 2025-12-12T10:19:11Z |
| suse-su-2025:4380-1 | Security update for kubernetes-client | 2025-12-12T10:18:54Z | 2025-12-12T10:18:54Z |
| suse-su-2025:21194-1 | Security update for keylime | 2025-12-12T09:45:03Z | 2025-12-12T09:45:03Z |
| suse-su-2025:4373-1 | Security update for container-suseconnect | 2025-12-12T09:05:38Z | 2025-12-12T09:05:38Z |
| suse-su-2025:21193-1 | Security update for go1.24 | 2025-12-12T07:45:36Z | 2025-12-12T07:45:36Z |
| suse-su-2025:21192-1 | Security update for go1.25 | 2025-12-12T07:24:50Z | 2025-12-12T07:24:50Z |
| suse-su-2025:4372-1 | Security update for postgresql15 | 2025-12-11T19:06:38Z | 2025-12-11T19:06:38Z |
| suse-su-2025:4371-1 | Security update for postgresql14 | 2025-12-11T19:04:45Z | 2025-12-11T19:04:45Z |
| suse-su-2025:4370-1 | Security update for postgresql14 | 2025-12-11T19:03:37Z | 2025-12-11T19:03:37Z |
| suse-su-2025:4368-1 | Security update for python3 | 2025-12-11T15:12:31Z | 2025-12-11T15:12:31Z |
| suse-su-2025:4364-1 | Security update for postgresql17, postgresql18 | 2025-12-11T10:12:26Z | 2025-12-11T10:12:26Z |
| suse-su-2025:4363-1 | Security update for postgresql17, postgresql18 | 2025-12-11T10:10:24Z | 2025-12-11T10:10:24Z |
| suse-su-2025:4353-1 | Security update for fontforge | 2025-12-10T18:03:31Z | 2025-12-10T18:03:31Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15796-1 | go1.24-1.24.11-1.1 on GA media | 2025-12-04T00:00:00Z | 2025-12-04T00:00:00Z |
| opensuse-su-2025-20135-1 | Security update for mozjs128 | 2025-12-03T20:41:04Z | 2025-12-03T20:41:04Z |
| opensuse-su-2025:15795-1 | go1.25-1.25.5-1.1 on GA media | 2025-12-03T00:00:00Z | 2025-12-03T00:00:00Z |
| opensuse-su-2025:15794-1 | chromedriver-143.0.7499.40-2.1 on GA media | 2025-12-03T00:00:00Z | 2025-12-03T00:00:00Z |
| opensuse-su-2025-20133-1 | Security update for python-cbor2 | 2025-12-02T13:51:41Z | 2025-12-02T13:51:41Z |
| opensuse-su-2025-20132-1 | Security update for strongswan | 2025-12-02T13:11:59Z | 2025-12-02T13:11:59Z |
| opensuse-su-2025:15793-1 | gegl-0.4.64-3.1 on GA media | 2025-12-02T00:00:00Z | 2025-12-02T00:00:00Z |
| opensuse-su-2025:15792-1 | python39-3.9.24-2.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15791-1 | python315-3.15.0~a1-2.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15790-1 | python-mistralclient-doc-6.1.0-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15789-1 | libecpg6-18.1-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025:15788-1 | lightdm-kde-greeter-6.0.5-1.1 on GA media | 2025-12-01T00:00:00Z | 2025-12-01T00:00:00Z |
| opensuse-su-2025-20130-1 | Security update for bash-git-prompt | 2025-11-28T13:38:03Z | 2025-11-28T13:38:03Z |
| opensuse-su-2025-20128-1 | Security update for shadowsocks-v2ray-plugin, v2ray-core | 2025-11-28T13:38:03Z | 2025-11-28T13:38:03Z |
| opensuse-su-2025-20125-1 | Security update for java-17-openjdk | 2025-11-28T10:27:02Z | 2025-11-28T10:27:02Z |
| opensuse-su-2025-20123-1 | Security update for java-21-openjdk | 2025-11-28T09:35:08Z | 2025-11-28T09:35:08Z |
| opensuse-su-2025-20122-1 | Security update for openssh | 2025-11-28T07:46:24Z | 2025-11-28T07:46:24Z |
| opensuse-su-2025:15787-1 | python311-salt-3006.0-52.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15786-1 | postgresql17-17.7-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15785-1 | postgresql16-16.11-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15784-1 | postgresql15-15.15-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15783-1 | postgresql14-14.20-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15782-1 | postgresql13-13.23-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15781-1 | libpng16-16-1.6.51-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15780-1 | libcoap-devel-4.3.5a-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025:15779-1 | helm3-3.19.2-1.1 on GA media | 2025-11-28T00:00:00Z | 2025-11-28T00:00:00Z |
| opensuse-su-2025-20113-1 | Security update for dovecot24 | 2025-11-27T20:17:17Z | 2025-11-27T20:17:17Z |
| opensuse-su-2025-20114-1 | Security update for himmelblau | 2025-11-27T20:16:29Z | 2025-11-27T20:16:29Z |
| opensuse-su-2025-20121-1 | Security update for redis | 2025-11-27T15:53:18Z | 2025-11-27T15:53:18Z |
| opensuse-su-2025-20106-1 | Security update for tomcat11 | 2025-11-27T15:43:26Z | 2025-11-27T15:43:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-31003 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31003) | 2025-02-17 | 2025-12-18 |
| cnvd-2025-31002 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31002) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-31001 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31001) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-31000 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-31000) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-30999 | Daily Expense Tracker System SQL注入漏洞(CNVD-2025-30999) | 2025-05-22 | 2025-12-18 |
| cnvd-2025-30998 | Daily Expense Tracker System /expense-yearwise-reports-detailed.php文件SQL注入漏洞 | 2025-06-06 | 2025-12-18 |
| cnvd-2025-30967 | Advantech iView SQL注入漏洞(CNVD-2025-30967) | 2023-08-03 | 2025-12-18 |
| cnvd-2025-30966 | Advantech iView SQL注入漏洞(CNVD-2025-30966) | 2024-06-17 | 2025-12-18 |
| cnvd-2025-30965 | Advantech WebAccess/VPN NetworksController.addNetworkAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30964 | Advantech WebAccess/VPN AppManagementController.appUpgradeAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30963 | Advantech WebAccess/VPN AjaxStandaloneVpnClientsController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30962 | Advantech WebAccess/VPN AjaxPrevalidationController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30961 | Advantech WebAccess/VPN AjaxNetworkController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30949 | D-Link DIR-823G命令注入漏洞(CNVD-2025-30949) | 2025-11-18 | 2025-12-18 |
| cnvd-2025-30948 | Tenda AC21缓冲区溢出漏洞(CNVD-2025-30948) | 2025-09-25 | 2025-12-18 |
| cnvd-2025-30929 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30929) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30928 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30928) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30927 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30927) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30926 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30926) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30925 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30925) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30924 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30924) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30923 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30923) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30922 | Adobe Experience Manager跨站脚本漏洞(CNVD-2025-30922) | 2025-12-15 | 2025-12-18 |
| cnvd-2025-30979 | Advantech iView SQL注入漏洞 | 2025-12-08 | 2025-12-17 |
| cnvd-2025-30978 | Advantech WISE-DeviceOn Server硬编码加密密钥漏洞 | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30977 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097798) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30976 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097699) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30975 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097500) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30974 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097401) | 2025-12-10 | 2025-12-17 |
| cnvd-2025-30973 | Advantech WISE-DeviceOn Server跨站脚本漏洞(CNVD-2025-3097302) | 2025-12-10 | 2025-12-17 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-1112 | Multiples vulnérabilités dans les produits Elastic | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1111 | Multiples vulnérabilités dans Roundcube | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1110 | Multiples vulnérabilités dans les produits Apple | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1109 | Vulnérabilité dans strongSwan | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1103 | Multiples vulnérabilités dans Microsoft Edge | 2025-12-12T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1096 | Multiples vulnérabilités dans Google Chrome | 2025-12-11T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1108 | Multiples vulnérabilités dans les produits IBM | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1107 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1106 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1105 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1104 | Vulnérabilité dans Microsoft Windows Admin Center | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1102 | Multiples vulnérabilités dans les produits NetApp | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1101 | Multiples vulnérabilités dans les produits Netgate | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1100 | Multiples vulnérabilités dans les produits Atlassian | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1099 | Multiples vulnérabilités dans les produits Mozilla | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1098 | Vulnérabilité dans Broadcom Carbon Black Cloud | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1097 | Multiples vulnérabilités dans les produits Mitel | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1095 | Multiples vulnérabilités dans GitLab | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1094 | Multiples vulnérabilités dans les produits Microsoft | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1093 | Vulnérabilité dans Microsoft Azure Monitor Agent | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1092 | Multiples vulnérabilités dans Microsoft Windows | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1091 | Multiples vulnérabilités dans Microsoft Office | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1090 | Vulnérabilité dans les produits Moxa | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1089 | Vulnérabilité dans les produits Bitdefender | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1088 | Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM) | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1087 | Multiples vulnérabilités dans les produits Mozilla | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1086 | Multiples vulnérabilités dans les produits Intel | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1085 | Multiples vulnérabilités dans les produits Adobe | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1084 | Multiples vulnérabilités dans les produits Fortinet | 2025-12-10T00:00:00.000000 | 2025-12-10T00:00:00.000000 |
| certfr-2025-avi-1083 | Multiples vulnérabilités dans les produits Siemens | 2025-12-09T00:00:00.000000 | 2025-12-09T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2024-ALE-014 | [MàJ] Multiples vulnérabilités dans Fortinet FortiManager | 2024-10-30T00:00:00.000000 | 2024-10-23T00:00:00.000000 |
| CERTFR-2024-ALE-013 | Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) | 2025-03-31T00:00:00.000000 | 2024-10-25T00:00:00.000000 |
| certfr-2024-ale-015 | [MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-ALE-015 | [MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-ale-012 | [MàJ] Vulnérabilités affectant OpenPrinting CUPS | 2024-09-27T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| certfr-2024-ale-011 | Vulnérabilité dans SonicWall | 2024-09-10T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| CERTFR-2024-ALE-012 | [MàJ] Vulnérabilités affectant OpenPrinting CUPS | 2024-09-27T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| CERTFR-2024-ALE-011 | Vulnérabilité dans SonicWall | 2024-09-10T00:00:00.000000 | 2024-11-21T00:00:00.000000 |
| certfr-2024-ale-010 | Multiples vulnérabilités dans Roundcube | 2024-08-09T00:00:00.000000 | 2024-10-07T00:00:00.000000 |
| certfr-2024-ale-009 | Vulnérabilité dans OpenSSH | 2024-07-01T00:00:00.000000 | 2024-07-03T00:00:00.000000 |
| CERTFR-2024-ALE-010 | Multiples vulnérabilités dans Roundcube | 2024-08-09T00:00:00.000000 | 2024-10-07T00:00:00.000000 |
| CERTFR-2024-ALE-009 | Vulnérabilité dans OpenSSH | 2024-07-01T00:00:00.000000 | 2024-07-03T00:00:00.000000 |
| certfr-2024-ale-008 | [MàJ] Vulnérabilité dans les produits Check Point | 2024-05-30T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-007 | Multiples vulnérabilités dans les produits Cisco | 2024-04-25T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-006 | [MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect | 2024-04-12T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-004 | [MàJ] Vulnérabilité dans Fortinet FortiOS | 2024-02-09T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-008 | [MàJ] Vulnérabilité dans les produits Check Point | 2024-05-30T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-007 | Multiples vulnérabilités dans les produits Cisco | 2024-04-25T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-006 | [MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect | 2024-04-12T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| CERTFR-2024-ALE-004 | [MàJ] Vulnérabilité dans Fortinet FortiOS | 2024-02-09T00:00:00.000000 | 2024-07-01T00:00:00.000000 |
| certfr-2024-ale-005 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2024-02-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-003 | [MàJ] Incident affectant les solutions AnyDesk | 2024-02-05T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-001 | [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways | 2024-01-11T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-005 | [MàJ] Vulnérabilité dans Microsoft Outlook | 2024-02-15T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-003 | [MàJ] Incident affectant les solutions AnyDesk | 2024-02-05T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| CERTFR-2024-ALE-001 | [MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways | 2024-01-11T00:00:00.000000 | 2024-04-15T00:00:00.000000 |
| certfr-2024-ale-002 | [MàJ] Multiples Vulnérabilités dans GitLab | 2024-01-12T00:00:00.000000 | 2024-02-22T00:00:00.000000 |
| CERTFR-2024-ALE-002 | [MàJ] Multiples Vulnérabilités dans GitLab | 2024-01-12T00:00:00.000000 | 2024-02-22T00:00:00.000000 |
| certfr-2023-ale-013 | Vulnérabilité dans Apache Struts 2 | 2023-12-13T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| certfr-2023-ale-012 | [MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway | 2023-10-23T00:00:00.000000 | 2024-02-16T00:00:00.000000 |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| GCVE-1-2025-0013 |
9.4 (4.0)
|
Vulnerability in sharing group blueprints allowing sha… |
misp |
misp |
2025-11-04T08:49:21.558087Z | 2025-11-04T08:49:21.558087Z |
| GCVE-1-2025-0012 |
N/A
|
Potential vulnerability in file check upload but non-e… |
misp |
misp |
2025-11-04T07:20:00.000Z | 2025-11-28T07:16:21.589449Z |
| GCVE-1-2025-0011 |
9.4 (4.0)
|
Arbitrary file inclusion / deletion via import modules… |
misp |
misp |
2025-11-04T07:01:25.464225Z | 2025-11-04T07:01:25.464225Z |
| GCVE-1-2025-0010 |
6.3 (4.0)
|
Arbitrary file hash inclusion via templates accessible… |
misp |
misp |
2025-11-04T06:25:11.108987Z | 2025-11-04T06:25:11.108987Z |
| GCVE-1-2025-0009 |
6.4 (4.0)
|
A pre-auth user could self-assign a reporter without b… |
CIRCL |
vulnerability-lookup |
2025-10-13T09:20:24.800890Z | 2025-10-13T09:20:24.800890Z |
| GCVE-1-2025-0008 |
7 (4.0)
|
Logged users can view vulnerability disclosure comment… |
CIRCL |
vulnerability-lookup |
2025-10-13T09:10:00.000Z | 2025-10-13T09:15:31.637686Z |
| GCVE-1-2025-0007 |
4.5 (4.0)
|
Missing email validation on user management |
CIRCL |
vulnerability-lookup |
2025-10-13T08:37:00.000Z | 2025-10-13T08:51:37.408861Z |
| GCVE-1-2025-0006 |
9.3 (4.0)
|
Potential XSS in admin CPE in organization model |
CIRCL |
vulnerability-lookup |
2025-10-13T08:29:00.000Z | 2025-10-13T08:52:23.411325Z |
| GCVE-1-2025-0005 |
9.4 (4.0)
|
Reflected XSS due to insecure use of Markup |
CIRCL |
vulnerability-lookup |
2025-10-13T08:23:29.812914Z | 2025-10-13T08:23:29.812914Z |
| GCVE-1-2025-0004 |
10 (4.0)
|
XSS in Comments, Bundles, and Sightings component of v… |
CIRCL |
vulnerability-lookup |
2025-09-25T14:10:00.000Z | 2025-11-19T10:16:47.656802Z |
| GCVE-1-2025-0003 |
9.3 (4.0)
|
Incorrect ACL for user settings edit, which previ… |
cerebrate |
cerebrate |
2025-08-22T12:33:00.000Z | 2025-08-23T07:55:10.950332Z |
| GCVE-1-2025-0002 |
8.9 (4.0)
|
Command Injection in Cl0p Exfiltration Python Script |
Cl0p ransomware |
exfiltration |
2025-07-01T08:19:00.000Z | 2025-07-01T10:58:58.443468Z |
| GCVE-1-2025-0001 |
5.3 (4.0)
|
The absence of a password confirmation step when deact… |
CIRCL |
Vulnerability-Lookup |
2025-05-27T08:58:00.000Z | 2025-05-30T14:27:56.273945Z |