Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-36917 |
8.6 (4.0)
7.5 (3.1)
|
iDS6 DSSPro Digital Signage System 6.2 Cleartext Passw… |
Guangzhou Yeroo Tech Co., Ltd. |
iDS6 DSSPro Digital Signage System |
2026-01-06T15:53:23.292Z | 2026-01-15T21:37:30.416Z |
| CVE-2026-23622 |
7.4 (4.0)
|
CSRF Protection Bypass: Sensitive endpoints accept GET… |
alextselegidis |
easyappointments |
2026-01-15T19:28:58.369Z | 2026-01-15T21:34:43.098Z |
| CVE-2025-36934 |
7.4 (3.1)
|
In bigo_worker_thread of private/google-modules/v… |
Google |
Android |
2025-12-11T19:35:47.543Z | 2026-01-15T21:30:04.740Z |
| CVE-2025-70892 |
9.8 (3.1)
|
Phpgurukul Cyber Cafe Management System v1.0 cont… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:25:50.687Z |
| CVE-2025-70893 |
8.8 (3.1)
|
A time-based blind SQL Injection vulnerability ex… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:22:19.718Z |
| CVE-2026-21918 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: SRX and MX Series: When TCP packets occur in… |
Juniper Networks |
Junos OS |
2026-01-15T20:27:54.743Z | 2026-01-15T21:13:00.740Z |
| CVE-2026-21917 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: SRX Series: Specifically malformed SSL packe… |
Juniper Networks |
Junos OS |
2026-01-15T20:27:11.214Z | 2026-01-15T21:12:37.455Z |
| CVE-2026-21907 |
5.9 (3.1)
8.2 (4.0)
|
Junos Space: TLS/SSL server supports use of static key… |
Juniper Networks |
Junos Space |
2026-01-15T20:21:11.010Z | 2026-01-15T21:12:31.198Z |
| CVE-2026-21903 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS: Subscribing to telemetry sensors at scale ca… |
Juniper Networks |
Junos OS |
2026-01-15T20:18:36.767Z | 2026-01-15T21:12:08.631Z |
| CVE-2026-0203 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS: Receipt of a specifically malformed ICMP pac… |
Juniper Networks |
Junos OS |
2026-01-15T20:17:24.552Z | 2026-01-15T21:11:32.119Z |
| CVE-2025-60011 |
5.8 (3.1)
6.9 (4.0)
|
Junos OS and Junos OS Evolved: Optional transitive BGP… |
Juniper Networks |
Junos OS |
2026-01-15T20:16:47.459Z | 2026-01-15T21:10:58.766Z |
| CVE-2025-60007 |
5.5 (3.1)
6.8 (4.0)
|
Junos OS: A specifically crafted 'show chassis' comman… |
Juniper Networks |
Junos OS |
2026-01-15T20:16:22.617Z | 2026-01-15T21:10:13.435Z |
| CVE-2026-1002 |
6.9 (4.0)
|
Eclipse Vert.x Web static handler file access denial |
Eclipse Vert.x |
Eclipse Vert.x |
2026-01-15T20:50:25.642Z | 2026-01-15T21:09:22.172Z |
| CVE-2025-60003 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS and Junos OS Evolved: BGP update with a set o… |
Juniper Networks |
Junos OS |
2026-01-15T20:15:04.828Z | 2026-01-15T21:09:19.309Z |
| CVE-2025-59961 |
5.5 (3.1)
6.8 (4.0)
|
Junos OS and Junos OS Evolved: Unix socket used to con… |
Juniper Networks |
Junos OS |
2026-01-15T20:14:43.508Z | 2026-01-15T21:08:37.387Z |
| CVE-2025-67025 |
6.1 (3.1)
|
Cross Site Scripting vulnerability in Anycomment … |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:07:24.240Z |
| CVE-2025-70891 |
6.1 (3.1)
|
A stored cross-site scripting (XSS) vulnerability… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:06:05.340Z |
| CVE-2025-70890 |
6.1 (3.1)
|
A stored cross-site scripting (XSS) vulnerability… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:04:49.118Z |
| CVE-2025-65368 |
6.1 (3.1)
|
SparkyFitness v0.15.8.2 is vulnerable to Cross Si… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T21:03:15.128Z |
| CVE-2026-21920 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: SRX Series: If a specific request is process… |
Juniper Networks |
Junos OS |
2026-01-15T20:28:10.526Z | 2026-01-15T20:59:21.070Z |
| CVE-2026-21921 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS and Junos OS Evolved: When telemetry collecto… |
Juniper Networks |
Junos OS |
2026-01-15T20:28:29.656Z | 2026-01-15T20:55:25.182Z |
| CVE-2026-21909 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS and Junos OS Evolved: Receipt of specific IS-… |
Juniper Networks |
Junos OS |
2026-01-15T20:22:44.674Z | 2026-01-15T20:52:42.400Z |
| CVE-2026-21910 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN … |
Juniper Networks |
Junos OS |
2026-01-15T20:23:29.682Z | 2026-01-15T20:51:57.933Z |
| CVE-2026-21911 |
6.5 (3.1)
7.1 (4.0)
|
Junos OS Evolved: Flapping management interface causes… |
Juniper Networks |
Junos OS Evolved |
2026-01-15T20:23:54.924Z | 2026-01-15T20:51:32.531Z |
| CVE-2026-21912 |
5.5 (3.1)
6.8 (4.0)
|
Junos OS: MX10k Series: 'show system firmware' CLI com… |
Juniper Networks |
Junos OS |
2026-01-15T20:24:20.087Z | 2026-01-15T20:50:28.949Z |
| CVE-2026-21913 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: EX4000: A high volume of traffic destined to… |
Juniper Networks |
Junos OS |
2026-01-15T20:25:03.276Z | 2026-01-15T20:45:02.652Z |
| CVE-2026-21914 |
7.5 (3.1)
8.7 (4.0)
|
Junos OS: SRX Series: A specifically malformed GTP mes… |
Juniper Networks |
Junos OS |
2026-01-15T20:25:35.725Z | 2026-01-15T20:44:30.550Z |
| CVE-2025-66169 |
N/A
|
Apache Camel Neo4j: Cypher injection vulnerability in … |
Apache Software Foundation |
Apache Camel Neo4j |
2026-01-14T11:45:20.338Z | 2026-01-15T20:43:58.492Z |
| CVE-2025-14301 |
9.8 (3.1)
|
Integration Opvius AI for WooCommerce <= 1.3.0 - Unaut… |
woosaai |
Integration Opvius AI for WooCommerce |
2026-01-14T05:28:05.974Z | 2026-01-15T20:35:48.151Z |
| CVE-2026-23746 |
9.3 (4.0)
|
Entrust Instant Financial Issuance (IFI) SmartCardCont… |
Entrust Corporation |
Instant Financial Issuance (IF) |
2026-01-15T19:44:53.716Z | 2026-01-15T20:33:58.351Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-25290 |
5.3 (3.1)
|
@octokit/request has a Regular Expression in fetchWrap… |
octokit |
request.js |
2025-02-14T19:37:47.110Z | 2026-01-16T17:29:06.418Z |
| CVE-2025-24980 |
6.9 (4.0)
|
Pimcore Admin Classic Bundle allows user enumeration |
pimcore |
admin-ui-classic-bundle |
2025-02-07T19:56:10.439Z | 2026-01-16T17:17:53.971Z |
| CVE-2025-24022 |
8.6 (3.1)
|
iTop server vulnerable to portal code injection |
Combodo |
iTop |
2025-05-14T14:57:37.960Z | 2026-01-20T15:37:55.868Z |
| CVE-2024-44238 |
7.8 (3.1)
|
The issue was addressed with improved bounds chec… |
Apple |
iOS and iPadOS |
2026-01-16T17:06:05.774Z | 2026-01-17T04:55:22.581Z |
| CVE-2024-53695 |
6.3 (4.0)
|
HBS 3 Hybrid Backup Sync |
QNAP Systems Inc. |
HBS 3 Hybrid Backup Sync |
2025-03-07T16:13:42.883Z | 2025-03-07T17:54:53.580Z |
| CVE-2026-21433 |
7.7 (3.1)
|
Emlog vulnerable to Server-Side Request Forgery (SSRF) |
emlog |
emlog |
2026-01-02T19:00:22.611Z | 2026-01-05T20:37:52.330Z |
| CVE-2025-51567 |
9.1 (3.1)
|
A SQL Injection was found in the /exam/user/profi… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T20:06:58.653Z |
| CVE-2025-64677 |
8.2 (3.1)
|
Office Out-of-Box Experience Spoofing Vulnerability |
Microsoft |
Office Out-of-Box Experience |
2025-12-18T22:02:08.421Z | 2026-01-14T21:35:51.830Z |
| CVE-2025-64675 |
8.3 (3.1)
|
Azure Cosmos DB Spoofing Vulnerability |
Microsoft |
Azure Cosmos DB |
2025-12-18T23:15:31.241Z | 2026-01-14T21:35:51.157Z |
| CVE-2023-25797 |
5.9 (3.1)
|
WordPress vSlider Multi Image Slider for WordPress Plu… |
Mr.Vibe |
vSlider Multi Image Slider for WordPress |
2023-05-03T10:25:10.749Z | 2025-02-19T21:32:39.319Z |
| CVE-2023-3604 |
7.5 (3.1)
|
Change WP Admin < 1.1.4 - Secret Login Page Disclosure |
Unknown |
Change WP Admin Login |
2023-08-21T12:29:51.285Z | 2024-10-02T17:41:31.835Z |
| CVE-2024-43947 |
5.4 (3.1)
|
WordPress WP Armour Extended plugin <= 1.26 - Cross Si… |
Dinesh Karki |
WP Armour Extended |
2024-08-29T18:15:56.699Z | 2024-08-29T18:55:14.355Z |
| CVE-2025-52598 |
6.3 (4.0)
|
Insufficient certificate validation |
Hanwha Vision Co., Ltd. |
QNV-C8012 |
2025-12-26T04:07:19.958Z | 2025-12-26T15:15:22.694Z |
| CVE-2025-10568 |
5.2 (4.0)
|
HyperX NGENUITY - Arbitrary Code Execution |
HP Inc. |
HyperX NGENUITY |
2025-09-19T19:39:08.802Z | 2025-09-19T19:57:00.834Z |
| CVE-2026-23529 |
7.7 (3.1)
|
Arbitrary File Read in Google BigQuery Sink connector |
Aiven-Open |
bigquery-connector-for-apache-kafka |
2026-01-16T16:53:17.830Z | 2026-01-16T17:24:03.843Z |
| CVE-2026-23528 |
5.3 (4.0)
|
Dask distributed Vulnerable to Remote Code Execution v… |
dask |
distributed |
2026-01-16T16:44:28.152Z | 2026-01-16T17:21:36.324Z |
| CVE-2026-23523 |
9.7 (3.1)
|
Dive allows One-click Remote Code Execution through De… |
OpenAgentPlatform |
Dive |
2026-01-16T16:29:48.433Z | 2026-01-16T16:47:34.560Z |
| CVE-2026-22782 |
2.9 (4.0)
|
RustFS RPC signature verification logs shared secret |
rustfs |
rustfs |
2026-01-16T16:14:15.203Z | 2026-01-16T16:36:08.520Z |
| CVE-2026-0949 |
6.5 (3.1)
|
PEM versions prior to 9.8.1 are affected by a sto… |
EnterpriseDB |
Postgres Enterprise Manager (PEM) |
2026-01-16T16:29:42.134Z | 2026-01-16T16:49:37.156Z |
| CVE-2025-70746 |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain … |
n/a |
n/a |
2026-01-16T00:00:00.000Z | 2026-01-16T16:27:54.056Z |
| CVE-2020-36929 |
8.5 (4.0)
7.8 (3.1)
|
Brother BRPrint Auditor 3.0.7 - 'Multiple' Unquoted Se… |
Support |
Brother BRPrint Auditor |
2026-01-15T23:25:34.881Z | 2026-01-16T16:52:48.820Z |
| CVE-2020-36928 |
8.5 (4.0)
7.8 (3.1)
|
Brother BRAgent 1.38 - 'WBA_Agent_Client' Unquoted Ser… |
Brother |
Brother BRAgent |
2026-01-15T23:25:34.323Z | 2026-01-16T16:53:34.686Z |
| CVE-2020-36927 |
8.5 (4.0)
7.8 (3.1)
|
DiskPulse 13.6.14 - Unquoted Service Path |
Diskpulse |
DiskPulse |
2026-01-15T23:25:33.790Z | 2026-01-16T16:54:28.591Z |
| CVE-2026-21432 |
6.8 (4.0)
|
Emlog has stored Cross-site Scripting issue that can l… |
emlog |
emlog |
2026-01-02T18:58:38.050Z | 2026-01-05T20:37:57.632Z |
| CVE-2026-21431 |
2 (4.0)
|
Emlog vulnerable to stored Cross-site Scripting via im… |
emlog |
emlog |
2026-01-02T18:49:03.202Z | 2026-01-05T20:38:04.182Z |
| CVE-2026-21429 |
2 (4.0)
|
Emlog has Broken Access Control (BAC) |
emlog |
emlog |
2026-01-02T17:23:17.252Z | 2026-01-02T21:05:56.458Z |
| CVE-2024-48014 |
7.5 (3.1)
|
Dell BSAFE Micro Edition Suite, versions prior to… |
Dell |
BSAFE Micro Edition Suite |
2025-09-25T15:08:52.140Z | 2025-09-25T16:05:40.970Z |
| CVE-2025-26333 |
5.9 (3.1)
|
Dell BSAFE Crypto-J generates an error message th… |
Dell |
BSAFE Crypto-J |
2025-09-25T15:16:41.383Z | 2025-10-24T13:55:19.877Z |
| CVE-2025-43993 |
7.8 (3.1)
|
Dell Wireless 5932e and Qualcomm Snapdragon X62 F… |
Dell |
Wireless 5932e |
2025-09-25T19:38:00.845Z | 2025-09-26T17:39:48.405Z |
| CVE-2025-43943 |
6.7 (3.1)
|
Dell Cloud Disaster Recovery, version(s) prior to… |
Dell |
Cloud Disaster Recovery |
2025-09-25T15:22:10.962Z | 2025-09-25T16:06:17.102Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-22919 | An attacker with administrative access may inject malicious content into the login page, potentiall… | 2026-01-15T13:16:06.923 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22918 | An attacker may exploit missing protection against clickjacking by tricking users into performing u… | 2026-01-15T13:16:06.790 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22917 | Improper input handling in a system endpoint may allow attackers to overload resources, causing a d… | 2026-01-15T13:16:06.660 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22916 | An attacker with low privileges may be able to trigger critical system functions such as reboot or … | 2026-01-15T13:16:06.527 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22915 | An attacker with low privileges may be able to read files from specific directories on the device, … | 2026-01-15T13:16:06.387 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22914 | An attacker with limited permissions may still be able to write files to specific locations on the … | 2026-01-15T13:16:06.250 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22913 | Improper handling of a URL parameter may allow attackers to execute code in a user's browser after … | 2026-01-15T13:16:06.100 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22912 | Improper validation of a login parameter may allow attackers to redirect users to malicious website… | 2026-01-15T13:16:05.960 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22911 | Firmware update files may expose password hashes for system accounts, which could allow a remote at… | 2026-01-15T13:16:05.813 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22910 | The device is deployed with weak and publicly known default passwords for certain hidden user level… | 2026-01-15T13:16:05.673 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22909 | Certain system functions may be accessed without proper authorization, allowing attackers to start,… | 2026-01-15T13:16:05.537 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22908 | Uploading unvalidated container images may allow remote attackers to gain full access to the system… | 2026-01-15T13:16:05.400 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22907 | An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read … | 2026-01-15T13:16:05.263 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22859 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client… | 2026-01-14T18:16:43.657 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22858 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-ove… | 2026-01-14T18:16:43.520 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22857 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-… | 2026-01-14T18:16:43.373 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22856 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the ser… | 2026-01-14T18:16:43.230 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22855 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bou… | 2026-01-14T18:16:43.080 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22854 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-ove… | 2026-01-14T18:16:42.933 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22853 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR arra… | 2026-01-14T18:16:42.790 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22852 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP s… | 2026-01-14T18:16:42.643 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22851 | FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition … | 2026-01-14T18:16:42.490 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22787 | html2pdf.js converts any webpage or element into a printable PDF entirely client-side. Prior to 0.1… | 2026-01-14T17:16:09.290 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22779 | BlackSheep is an asynchronous web framework to build event based web applications with Python. Prio… | 2026-01-14T17:16:09.150 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22708 | Cursor is a code editor built for programming with AI. Prior to 2.3, hen the Cursor Agent is runnin… | 2026-01-14T17:16:08.980 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22694 | AliasVault is a privacy-first password manager with built-in email aliasing. AliasVault Android ver… | 2026-01-14T17:16:08.810 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22646 | Certain error messages returned by the application expose internal system details that should not b… | 2026-01-15T14:16:28.430 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22645 | The application discloses all used components, versions and license information to unauthenticated … | 2026-01-15T14:16:28.290 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22644 | Certain requests pass the authentication token in the URL as string query parameter, making it vuln… | 2026-01-15T14:16:28.163 | 2026-01-16T15:55:33.063 |
| fkie_cve-2026-22643 | In Grafana, an excessively long dashboard title or panel name will cause Chromium browsers to becom… | 2026-01-15T14:16:28.023 | 2026-01-16T15:55:33.063 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-7cf5-cv98-v7j6 |
9.8 (3.1)
9.5 (4.0)
|
Improper Validation of Integrity Check Value vulnerability in Sharp Display Solutions projectors al… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-7376-x4rm-3v8x |
3.9 (3.1)
|
A vulnerability has been identified in the libarchive library, specifically within the archive_read… | 2025-06-09T21:30:52Z | 2026-01-15T21:31:42Z |
| ghsa-32fm-h45j-grpv |
7.5 (3.1)
9.1 (4.0)
|
Path Traversal vulnerability in Sharp Display Solutions projectors allows a attacker may access and… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-rj4r-gj6w-jfgc |
6.5 (3.1)
|
An issue was discovered in Dolby UDC 4.5 through 4.13. A crash of the DD+ decoder process can occur… | 2025-10-20T15:30:25Z | 2026-01-15T21:31:41Z |
| ghsa-hm8v-8c3v-cxfq |
7.5 (3.1)
|
A flaw was found in QEMU. If the QIOChannelWebsock object is freed while it is waiting to complete … | 2025-10-03T12:33:14Z | 2026-01-15T21:31:41Z |
| ghsa-4wg4-p27p-5q2r |
5.4 (3.1)
|
Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Auth… | 2026-01-15T18:14:17Z | 2026-01-15T20:18:09Z |
| ghsa-hqrp-m84v-2m2f |
4.3 (3.1)
|
Pimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" Listing | 2026-01-15T18:13:26Z | 2026-01-15T20:17:53Z |
| ghsa-m3r2-724c-pwgf |
4.3 (3.1)
|
Pimcore is Vulnerable to Broken Access Control: Missing Function Level Authorization on "Static Rou… | 2026-01-15T18:12:49Z | 2026-01-15T20:17:47Z |
| ghsa-q433-j342-rp9h |
8.6 (3.1)
|
Pimcore ENV Variables and Cookie Informations are exposed in http_error_log | 2026-01-15T18:11:46Z | 2026-01-15T20:17:42Z |
| ghsa-vh2x-fw87-4fxq |
8.1 (3.1)
|
DPanel has an arbitrary file deletion vulnerability in /api/common/attach/delete interface | 2026-01-15T17:58:42Z | 2026-01-15T20:17:37Z |
| ghsa-xfhx-r7ww-5995 |
7.1 (4.0)
|
Google Keras Allocates Resources Without Limits or Throttling in the HDF5 weight loading component | 2026-01-15T15:31:19Z | 2026-01-15T20:11:41Z |
| ghsa-xcr7-93gf-w336 |
5.5 (3.1)
|
A stack overflow in the pcmreframe_flush_packet function of GPAC v2.4.0 allows attackers to cause a… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-w268-23r7-r9xw |
8.2 (3.1)
|
GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmx_parse_tags function. | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-vgf7-qrg3-cm45 |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and C… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-v836-m9qv-79gp |
7.5 (3.1)
|
An out-of-bounds read in the GSF demuxer filter component of GPAC v2.4.0 allows attackers to cause … | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-rfww-x774-mhj8 |
7.5 (3.1)
|
A buffer overflow in the vobsub_get_subpic_duration() function of GPAC v2.4.0 allows attackers to c… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-j537-vq7v-4qhp |
7.5 (3.1)
|
Tenda AX-1806 v1.0.0.1 was discovered to contain a stack overflow in the mac parameter of the sub_6… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-fg67-2rcj-c4j8 |
6.3 (4.0)
|
A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-c5mq-gmc7-99wv |
5.5 (3.1)
|
A heap overflow in the vorbis_to_intern() function of GPAC v2.4.0 allows attackers to cause a Denia… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-93w3-78pr-jqhg |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-283r-6w65-p4xp |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) could… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-xq72-25v6-8f77 |
8.8 (3.1)
|
A local privilege escalation vulnerability exists during the installation of Epic Games Store via t… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-wh46-xj24-hh5q |
9.8 (3.1)
9.3 (4.0)
|
ProjeQtOr Project Management 9.1.4 contains a file upload vulnerability that allows guest users to … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-m46h-g9fm-378f |
7.2 (3.1)
5.1 (4.0)
|
Tagstoo 2.0.1 contains a stored cross-site scripting vulnerability that allows attackers to inject … | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-h9pr-pv2g-cx98 |
|
Cross site scripting (XSS) vulnerability in Omnispace Agora Project before 25.10 allowing attackers… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-f5m3-9gmr-6wrh |
6.2 (3.1)
8.5 (4.0)
|
Visual Tools DVR VX16 version 4.2.28 contains a local privilege escalation vulnerability in its Sud… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-c23h-wjw2-xvwf |
7.3 (3.1)
|
A local information disclosure vulnerability exists in the Ludashi driver before 5.1025 due to a la… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-96hh-fpgr-2f83 |
7.8 (3.1)
8.5 (4.0)
|
Dynojet Power Core 2.3.0 contains an unquoted service path vulnerability in the DJ.UpdateService th… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-7wmq-973g-rwg4 |
9.8 (3.1)
6.7 (4.0)
|
Cmder Console Emulator 1.3.18 contains a buffer overflow vulnerability that allows attackers to tri… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ghsa-78pm-r8gh-wjm6 |
8.2 (3.1)
8.8 (4.0)
|
Build Smart ERP 21.0817 contains an unauthenticated SQL injection vulnerability in the 'eidValue' p… | 2026-01-15T18:31:32Z | 2026-01-15T18:31:32Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-177 |
|
An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature … | ecdsa | 2019-11-26T13:15:00Z | 2021-08-27T03:22:03.507805Z |
| pysec-2019-175 |
|
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag R… | djblets | 2019-11-04T21:15:00Z | 2021-08-27T03:22:03.149747Z |
| pysec-2016-25 |
|
flask-oidc version 0.1.2 and earlier is vulnerable to an open redirect | flask-oidc | 2016-10-07T18:59:00Z | 2021-08-27T03:22:03.924557Z |
| pysec-2015-35 |
|
Buffer overflow in the C implementation of the apply_delta function in _pack.c in Dulwich… | dulwich | 2015-03-31T14:59:00Z | 2021-08-27T03:22:03.427700Z |
| pysec-2015-34 |
|
The build_index_from_tree function in index.py in Dulwich before 0.9.9 allows remote atta… | dulwich | 2015-03-31T14:59:00Z | 2021-08-27T03:22:03.389388Z |
| pysec-2014-80 |
|
Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connectio… | docker-py | 2014-11-17T16:59:00Z | 2021-08-27T03:22:03.349219Z |
| pysec-2014-79 |
|
Cross-site scripting (XSS) vulnerability in gravatars/templatetags/gravatars.py in Djblet… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.303468Z |
| pysec-2014-78 |
|
Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets be… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.219875Z |
| pysec-2012-14 |
|
Universal Feed Parser (aka feedparser or python-feedparser) before 5.1.2 allows remote at… | feedparser | 2012-05-21T22:55:00Z | 2021-08-27T03:22:03.863933Z |
| pysec-2012-13 |
|
Elixir 0.8.0 uses Blowfish in CFB mode without constructing a unique initialization vecto… | elixir | 2012-08-26T21:55:00Z | 2021-08-27T03:22:03.583910Z |
| pysec-2011-21 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.831291Z |
| pysec-2011-20 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.796807Z |
| pysec-2011-19 |
|
feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.762667Z |
| pysec-2011-18 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.724216Z |
| pysec-2020-230 |
|
In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow use… | django-user-sessions | 2020-01-24T20:15:00Z | 2021-08-27T03:21:57.616152Z |
| pysec-2020-229 |
|
django-nopassword before 5.0.0 stores cleartext secrets in the database. | django-nopassword | 2020-03-18T15:15:00Z | 2021-08-27T03:21:57.541967Z |
| pysec-2019-174 |
|
Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin… | django-crm | 2019-08-27T15:15:00Z | 2021-08-27T03:21:57.382280Z |
| pysec-2018-83 |
|
diffoscope before 77 writes to arbitrary locations on disk based on the contents of an un… | diffoscope | 2018-04-13T16:29:00Z | 2021-08-27T03:21:57.266779Z |
| pysec-2018-82 |
|
There is a vulnerability in load() method in definitions/parser.py in the Danijar Hafner … | definitions | 2018-12-21T23:29:00Z | 2021-08-27T03:21:57.237018Z |
| pysec-2017-86 |
|
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted cont… | django-epiceditor | 2017-03-09T20:59:00Z | 2021-08-27T03:21:57.430234Z |
| pysec-2021-129 |
|
The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by usi… | bottle | 2021-01-18T12:15:00Z | 2021-08-27T03:21:56.437494Z |
| pysec-2020-228 |
|
An insecure-credentials flaw was found in all openstack-cinder versions before openstack-… | cinder | 2020-06-10T17:15:00Z | 2021-08-27T03:21:56.949334Z |
| pysec-2020-227 |
|
All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoi… | cabot | 2020-09-22T08:15:00Z | 2021-08-27T03:21:56.574917Z |
| pysec-2020-226 |
|
Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via t… | cabot | 2020-12-04T20:15:00Z | 2021-08-27T03:21:56.543783Z |
| pysec-2020-225 |
|
An issue was discovered in OpenStack blazar-dashboard before 1.3.1, 2.0.0, and 3.0.0. A u… | blazar-dashboard | 2020-10-16T06:15:00Z | 2021-08-27T03:21:56.229273Z |
| pysec-2016-24 |
|
redirect() in bottle.py in bottle 0.12.10 doesn't filter a "\r\n" sequence, which leads t… | bottle | 2016-12-16T09:59:00Z | 2021-08-27T03:21:56.402931Z |
| pysec-2014-77 |
|
Bottle 0.10.x before 0.10.12, 0.11.x before 0.11.7, and 0.12.x before 0.12.6 does not pro… | bottle | 2014-10-25T22:55:00Z | 2021-08-27T03:21:56.361083Z |
| pysec-2011-17 |
|
Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effec… | celery | 2011-12-05T11:55:00Z | 2021-08-27T03:21:56.662825Z |
| pysec-2021-128 |
|
Apache Superset up to and including 1.0.1 allowed for the creation of an external URL tha… | apache-superset | 2021-04-27T10:15:00Z | 2021-08-27T03:21:55.733407Z |
| pysec-2021-127 |
|
Apache Superset up to and including 0.38.0 allowed the creation of a Markdown component o… | apache-superset | 2021-03-05T12:15:00Z | 2021-08-27T03:21:55.702415Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-32137 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.136897Z |
| gsd-2024-32136 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.143714Z |
| gsd-2024-32135 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.141282Z |
| gsd-2024-32134 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.139635Z |
| gsd-2024-32133 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.127437Z |
| gsd-2024-32132 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.148901Z |
| gsd-2024-32131 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.157365Z |
| gsd-2024-32130 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.236360Z |
| gsd-2024-32129 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk… | 2024-04-12T05:02:22.139177Z |
| gsd-2024-32128 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.124496Z |
| gsd-2024-32127 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.136218Z |
| gsd-2024-32126 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.130590Z |
| gsd-2024-32125 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.127635Z |
| gsd-2024-32124 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.133313Z |
| gsd-2024-32123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.135258Z |
| gsd-2024-32122 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.159280Z |
| gsd-2024-32121 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.160945Z |
| gsd-2024-32120 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.130814Z |
| gsd-2024-32119 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.151656Z |
| gsd-2024-32118 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.137310Z |
| gsd-2024-32117 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.161416Z |
| gsd-2024-32116 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.140690Z |
| gsd-2024-32115 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.124942Z |
| gsd-2024-32114 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.128946Z |
| gsd-2024-32113 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.152051Z |
| gsd-2023-52718 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:42.490161Z |
| gsd-2023-7257 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:23.450972Z |
| gsd-2023-7256 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:23.556926Z |
| gsd-2021-47258 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:05:09.564568Z |
| gsd-2021-47257 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:05:09.628891Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-192281 | Malicious code in elf-stats-frostbitten-pantry-235 (npm) | 2025-12-03T20:00:51Z | 2025-12-23T19:37:08Z |
| MAL-2025-192280 | Malicious code in elf-stats-evergreen-pantry-410 (npm) | 2025-12-03T19:50:08Z | 2025-12-23T19:37:08Z |
| MAL-2025-192260 | Malicious code in elf-stats-flickering-ornament-344 (npm) | 2025-12-03T18:48:03Z | 2025-12-23T19:37:08Z |
| MAL-2025-192256 | Malicious code in elf-stats-frostbitten-drum-529 (npm) | 2025-12-03T18:12:57Z | 2025-12-23T19:37:08Z |
| MAL-2025-192039 | Malicious code in elf-stats-frostbitten-ribbon-950 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192038 | Malicious code in elf-stats-frostbitten-bow-539 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192037 | Malicious code in elf-stats-flickering-workbench-929 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192035 | Malicious code in elf-stats-flickering-saddlebag-301 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192029 | Malicious code in elf-stats-festive-hollyberry-572 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192028 | Malicious code in elf-stats-festive-cocoa-106 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192026 | Malicious code in elf-stats-evergreen-snowglobe-961 (npm) | 2025-12-03T15:45:34Z | 2025-12-23T19:37:08Z |
| MAL-2025-192025 | Malicious code in elf-stats-evergreen-sled-681 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192024 | Malicious code in elf-stats-evergreen-muffin-867 (npm) | 2025-12-03T11:42:10Z | 2025-12-23T19:37:08Z |
| MAL-2025-192023 | Malicious code in elf-stats-evergreen-mitten-361 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192022 | Malicious code in elf-stats-evergreen-mailbag-606 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192021 | Malicious code in elf-stats-evergreen-fir-211 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192019 | Malicious code in elf-stats-evergreen-bow-653 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192017 | Malicious code in elf-stats-ember-muffin-717 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| MAL-2025-192016 | Malicious code in elf-stats-ember-hammer-340 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T19:37:08Z |
| mal-2025-192697 | Malicious code in mw-frontend-utils (npm) | 2025-12-22T22:29:27Z | 2025-12-23T19:24:03Z |
| mal-2025-192696 | Malicious code in mui-wrapper-core (npm) | 2025-12-22T22:29:27Z | 2025-12-23T19:24:03Z |
| mal-2025-192543 | Malicious code in mw-proto-ts (npm) | 2025-12-11T12:17:38Z | 2025-12-23T19:24:03Z |
| mal-2025-192542 | Malicious code in mui-wrapper-styles (npm) | 2025-12-11T12:15:41Z | 2025-12-23T19:24:03Z |
| mal-2025-192541 | Malicious code in mui-wrapper-icons (npm) | 2025-12-11T12:17:23Z | 2025-12-23T19:24:03Z |
| MAL-2025-192697 | Malicious code in mw-frontend-utils (npm) | 2025-12-22T22:29:27Z | 2025-12-23T19:24:03Z |
| MAL-2025-192696 | Malicious code in mui-wrapper-core (npm) | 2025-12-22T22:29:27Z | 2025-12-23T19:24:03Z |
| MAL-2025-192543 | Malicious code in mw-proto-ts (npm) | 2025-12-11T12:17:38Z | 2025-12-23T19:24:03Z |
| MAL-2025-192542 | Malicious code in mui-wrapper-styles (npm) | 2025-12-11T12:15:41Z | 2025-12-23T19:24:03Z |
| MAL-2025-192541 | Malicious code in mui-wrapper-icons (npm) | 2025-12-11T12:17:23Z | 2025-12-23T19:24:03Z |
| mal-2025-192692 | Malicious code in @vienna_cancer_center_portal/js (npm) | 2025-12-22T22:29:27Z | 2025-12-23T19:24:01Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0472 | IBM Business Automation Workflow: Schwachstelle ermöglicht Cross-Site Scripting | 2025-03-02T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0467 | IBM MQ: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-03-02T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0466 | IBM Storage Virtualize Produkte: Mehrere Schwachstellen | 2025-03-02T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0465 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Privilegieneskalation | 2025-03-02T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0464 | Samsung Exynos: Mehrere Schwachstellen | 2025-03-02T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0457 | Rancher: Mehrere Schwachstellen | 2025-02-27T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0281 | Red Hat Enterprise Linux (Fast Datapath): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-05T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0178 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-01-22T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-3285 | IBM App Connect Enterprise: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2024-10-27T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-3191 | Oracle Fusion Middleware: Mehrere Schwachstellen | 2024-10-15T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-3125 | Microsoft Azure CLI: Mehrere Schwachstellen ermöglichen Privilegieneskalation und Codeausführung | 2024-10-08T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-2197 | IBM App Connect Enterprise: Mehrere Schwachstellen ermöglichen Cross-Site Scripting und Server-Side Request Forgery | 2024-09-22T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-1799 | IBM App Connect Enterprise: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2024-08-07T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-1339 | Microsoft Azure: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2024-06-11T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2024-0219 | libTIFF: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-01-25T23:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2023-1538 | libTIFF: Schwachstelle ermöglicht Denial of Service | 2023-06-21T22:00:00.000+00:00 | 2025-03-02T23:00:00.000+00:00 |
| wid-sec-w-2025-0462 | Infoblox NIOS: Mehrere Schwachstellen | 2025-02-27T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2025-0459 | IBM MQ: Mehrere Schwachstellen | 2025-02-27T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2025-0458 | DrayTek Vigor: Mehrere Schwachstellen | 2025-02-27T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2025-0455 | Linux Kernel: Schwachstelle ermöglicht Codeausführung | 2025-02-27T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2025-0454 | MongoDB und MongoDB Compass: Mehrere Schwachstellen | 2025-02-27T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-3635 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2024-12-08T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-3210 | IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service | 2024-10-15T22:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-3186 | Apache Solr: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2024-10-15T22:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-3053 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2024-09-30T22:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-1432 | GNU Emacs: Schwachstelle ermöglicht Codeausführung | 2024-06-23T22:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2024-0708 | GNU Emacs: Mehrere Schwachstellen | 2024-03-25T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2023-3052 | IBM Informix: Mehrere Schwachstellen | 2023-12-04T23:00:00.000+00:00 | 2025-02-27T23:00:00.000+00:00 |
| wid-sec-w-2025-0452 | Cisco Nexus 3000 und 9000: Mehrere Schwachstellen | 2025-02-26T23:00:00.000+00:00 | 2025-02-26T23:00:00.000+00:00 |
| wid-sec-w-2025-0451 | Extreme Networks IQ Engine: Mehrere Schwachstellen | 2025-02-26T23:00:00.000+00:00 | 2025-02-26T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:9111 | Red Hat Security Advisory: OpenShift Container Platform 4.9.54 bug fix and security update | 2023-01-06T10:37:49+00:00 | 2026-01-13T22:51:39+00:00 |
| rhsa-2022:6714 | Red Hat Security Advisory: RHACS 3.72 enhancement and security update | 2022-09-26T15:26:11+00:00 | 2026-01-13T22:51:39+00:00 |
| rhsa-2022:7874 | Red Hat Security Advisory: OpenShift Container Platform 4.8.53 bug fix and security update | 2022-11-18T05:14:22+00:00 | 2026-01-13T22:51:38+00:00 |
| rhsa-2022:7435 | Red Hat Security Advisory: Logging Subsystem 5.4.8 - Red Hat OpenShift security update | 2022-11-16T12:13:01+00:00 | 2026-01-13T22:51:38+00:00 |
| rhsa-2022:7434 | Red Hat Security Advisory: Logging Subsystem 5.5.4 - Red Hat OpenShift security update | 2022-11-10T03:50:23+00:00 | 2026-01-13T22:51:38+00:00 |
| rhsa-2022:7407 | Red Hat Security Advisory: Service Binding Operator 1.3.1 security update | 2022-11-03T13:32:17+00:00 | 2026-01-13T22:51:37+00:00 |
| rhsa-2022:7216 | Red Hat Security Advisory: OpenShift Container Platform 4.9.51 bug fix and security update | 2022-11-03T05:55:12+00:00 | 2026-01-13T22:51:37+00:00 |
| rhsa-2022:7211 | Red Hat Security Advisory: OpenShift Container Platform 4.10.39 bug fix and security update | 2022-11-02T07:24:04+00:00 | 2026-01-13T22:51:37+00:00 |
| rhsa-2022:7201 | Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update | 2022-11-02T06:25:16+00:00 | 2026-01-13T22:51:36+00:00 |
| rhsa-2022:7058 | Red Hat Security Advisory: OpenShift sandboxed containers 1.3.1 security fix and bug fix update | 2022-10-19T22:19:53+00:00 | 2026-01-13T22:51:36+00:00 |
| rhsa-2022:6905 | Red Hat Security Advisory: OpenShift Container Platform 4.9.50 bug fix and security update | 2022-10-19T19:49:51+00:00 | 2026-01-13T22:51:35+00:00 |
| rhsa-2022:6882 | Red Hat Security Advisory: Openshift Logging 5.3.13 security and bug fix release | 2022-11-09T16:43:13+00:00 | 2026-01-13T22:51:35+00:00 |
| rhsa-2022:6805 | Red Hat Security Advisory: OpenShift Container Platform 4.10.36 security update | 2022-10-12T08:13:59+00:00 | 2026-01-13T22:51:35+00:00 |
| rhsa-2022:6801 | Red Hat Security Advisory: OpenShift Container Platform 4.8.51 packages and security update | 2022-10-13T07:44:51+00:00 | 2026-01-13T22:51:34+00:00 |
| rhsa-2022:6449 | Red Hat Security Advisory: nodejs:16 security and bug fix update | 2022-09-13T09:59:48+00:00 | 2026-01-13T22:51:34+00:00 |
| rhsa-2022:6308 | Red Hat Security Advisory: OpenShift Container Platform 4.8.49 security update | 2022-09-14T20:37:57+00:00 | 2026-01-13T22:51:34+00:00 |
| rhsa-2022:6258 | Red Hat Security Advisory: OpenShift Container Platform 4.10.31 security update | 2022-09-08T05:39:54+00:00 | 2026-01-13T22:51:33+00:00 |
| rhsa-2022:6187 | Red Hat Security Advisory: Node Health Check Operator 0.3.1 security update | 2022-08-25T10:08:43+00:00 | 2026-01-13T22:51:33+00:00 |
| rhsa-2022:6147 | Red Hat Security Advisory: OpenShift Container Platform 4.9.47 bug fix and security update | 2022-08-31T16:38:13+00:00 | 2026-01-13T22:51:33+00:00 |
| rhsa-2022:6155 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.11.0 security, enhancement & bugfix update | 2022-08-24T13:43:53+00:00 | 2026-01-13T22:51:32+00:00 |
| rhsa-2022:6133 | Red Hat Security Advisory: OpenShift Container Platform 4.10.30 bug fix and security update | 2022-08-31T12:31:50+00:00 | 2026-01-13T22:51:32+00:00 |
| rhsa-2022:5840 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.3 security and bug fix update | 2022-08-02T07:44:20+00:00 | 2026-01-13T22:51:32+00:00 |
| rhsa-2022:5730 | Red Hat Security Advisory: OpenShift Container Platform 4.10.25 bug fix and security update | 2022-08-01T11:33:31+00:00 | 2026-01-13T22:51:32+00:00 |
| rhsa-2022:4814 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.6.5 security and bug fix update | 2022-05-31T09:48:42+00:00 | 2026-01-13T22:51:32+00:00 |
| rhsa-2022:5673 | Red Hat Security Advisory: Release of containers for OSP 16.2.z director operator tech preview | 2022-07-20T15:48:31+00:00 | 2026-01-13T22:51:31+00:00 |
| rhsa-2022:5555 | Red Hat Security Advisory: RHV Manager (ovirt-engine) [ovirt-4.5.1] security, bug fix and update | 2022-07-14T12:56:49+00:00 | 2026-01-13T22:51:31+00:00 |
| rhsa-2022:5532 | Red Hat Security Advisory: Red Hat Fuse 7.11.0 release and security update | 2022-07-07T14:19:49+00:00 | 2026-01-13T22:51:31+00:00 |
| rhsa-2022:5415 | Red Hat Security Advisory: go-toolset-1.17 and go-toolset-1.17-golang security and bug fix update | 2022-06-30T17:34:35+00:00 | 2026-01-13T22:51:30+00:00 |
| rhsa-2022:5337 | Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update | 2022-06-30T21:00:23+00:00 | 2026-01-13T22:51:30+00:00 |
| rhsa-2022:5188 | Red Hat Security Advisory: RHACS 3.69 security update | 2022-06-24T19:42:45+00:00 | 2026-01-13T22:51:30+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-111-02 | Johnson Controls Metasys SCT Pro | 2022-04-21T00:00:00.000000Z | 2022-04-21T00:00:00.000000Z |
| icsa-22-111-01 | Delta Electronics ASDA-Soft | 2022-04-21T00:00:00.000000Z | 2022-04-21T00:00:00.000000Z |
| icsa-22-109-05 | Elcomplus SmartPTT SCADA Server | 2022-04-19T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-22-109-04 | Elcomplus SmartPTT SCADA | 2022-04-19T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-22-109-03 | FANUC ROBOGUIDE Simulation Platform | 2022-04-19T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-22-109-02 | Automated Logic WebCTRL | 2022-04-19T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-22-109-01 | Interlogix Hills ComNav | 2022-04-19T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-21-119-04 | Multiple RTOS (Update E) | 2021-04-29T00:00:00.000000Z | 2022-04-19T00:00:00.000000Z |
| icsa-22-104-03 | Red Lion DA50N | 2022-04-14T00:00:00.000000Z | 2022-04-14T00:00:00.000000Z |
| icsa-22-104-02 | Johnson Controls Metasys | 2022-04-14T00:00:00.000000Z | 2022-04-14T00:00:00.000000Z |
| icsa-22-104-01 | Delta Electronics DMARS | 2022-04-14T00:00:00.000000Z | 2022-04-14T00:00:00.000000Z |
| icsa-19-099-03 | Siemens Industrial Products with OPC UA (Update H) | 2019-04-09T00:00:00.000000Z | 2022-04-14T00:00:00.000000Z |
| icsa-22-102-05 | Aethon TUG Home Base Server | 2022-04-12T00:00:00.000000Z | 2022-04-12T00:00:00.000000Z |
| icsa-22-102-03 | Inductive Automation Ignition | 2022-04-12T00:00:00.000000Z | 2022-04-12T00:00:00.000000Z |
| icsa-22-102-02 | Mitsubishi Electric MELSEC-Q Series C Controller Module | 2022-04-12T00:00:00.000000Z | 2022-04-12T00:00:00.000000Z |
| icsa-22-102-01 | Valmet DNA | 2022-04-12T00:00:00.000000Z | 2022-04-12T00:00:00.000000Z |
| icsa-22-097-02 | ABB SPIET800 and PNI800 | 2022-04-07T00:00:00.000000Z | 2022-04-07T00:00:00.000000Z |
| icsa-22-097-01 | Pepperl+Fuchs WirelessHART-Gateway | 2022-04-07T00:00:00.000000Z | 2022-04-07T00:00:00.000000Z |
| icsa-21-278-01 | Mitsubishi Electric GOT and Tension Controller (Update A) | 2021-10-05T00:00:00.000000Z | 2022-04-07T00:00:00.000000Z |
| icsma-22-095-01 | LifePoint Informatics Patient Portal | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsma-21-187-01 | Philips Vue PACS (Update B) | 2021-07-06T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-095-02 | Johnson Controls Metasys | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-095-01 | Rockwell Automation ISaGRAF | 2022-04-05T00:00:00.000000Z | 2022-04-05T00:00:00.000000Z |
| icsa-22-090-07 | Rockwell Automation Studio 5000 Logix Designer | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-06 | General Electric Renewable Energy MDS Radios | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-05 | Rockwell Automation Logix Controllers | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-03 | Fuji Electric Alpha5 | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-02 | Hitachi Energy e-mesh EMS | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-090-01 | Schneider Electric SCADAPack Workbench | 2022-03-31T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| icsa-22-067-01 | PTC Axeda agent and Axeda Desktop Server (Update C) | 2022-03-08T00:00:00.000000Z | 2022-03-31T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-webex-teams-dll-drsnH5AN | Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-privilege-esc-pyb7ytd | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-privilege-esc-pyb7YTd | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-priv-esc-ggcumfxv | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-priv-esc-gGCUMFxv | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-sdwan-xss-xxelfpc3 | Cisco SD-WAN vManage Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-sdwan-xss-xXeLFpC3 | Cisco SD-WAN vManage Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ndb-path-traversal-wvdyxzpy | Cisco Nexus Data Broker Software Path Traversal Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ndb-path-traversal-wVDyXZPy | Cisco Nexus Data Broker Software Path Traversal Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ise-xxs-mf5cbyx5 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ise-xxs-mf5cbYx5 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ise-auth-bypass-ujwqltzm | Cisco Identity Services Engine Authorization Bypass Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ise-auth-bypass-uJWqLTZM | Cisco Identity Services Engine Authorization Bypass Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ind-dos-bwg634zn | Cisco Industrial Network Director Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ind-dos-BwG634zn | Cisco Industrial Network Director Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-fmc-xss-ylrjqqu | Cisco Firepower Management Center Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-fmc-xss-yLrjqqU | Cisco Firepower Management Center Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-expressway-vcs-dos-n6xxtmzb | Cisco Expressway Series and TelePresence Video Communication Server Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-expressway-vcs-dos-n6xxTMZB | Cisco Expressway Series and TelePresence Video Communication Server Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-esa-url-bypass-zztugtg3 | Cisco Email Security Appliance URL Filtering Bypass Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-esa-url-bypass-zZtugtg3 | Cisco Email Security Appliance URL Filtering Bypass Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-cvdsd-missing-auth-rqo88rnj | Cisco Vision Dynamic Signage Director Missing Authentication Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-cvdsd-missing-auth-rQO88rnj | Cisco Vision Dynamic Signage Director Missing Authentication Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-cdp-rcedos-mahr8vnx | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-cdp-rcedos-mAHR8vNx | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Remote Code Execution and Denial of Service Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-cdp-memleak-heyebx9 | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Memory Leak Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-rv-osinj-rce-pwtkpcjv | Cisco Small Business RV340 Series Routers Command Injection and Remote Code Execution Vulnerabilities | 2020-09-02T16:00:00+00:00 | 2020-09-30T19:35:24+00:00 |
| cisco-sa-rv-osinj-rce-pwTkPCJv | Cisco Small Business RV340 Series Routers Command Injection and Remote Code Execution Vulnerabilities | 2020-09-02T16:00:00+00:00 | 2020-09-30T19:35:24+00:00 |
| cisco-sa-ap-ethport-dos-xtjtt8py | Cisco Aironet Access Points Ethernet Wired Clients Denial of Service Vulnerability | 2020-09-24T16:00:00+00:00 | 2020-09-30T15:49:49+00:00 |
| cisco-sa-ap-ethport-dos-xtjTt8pY | Cisco Aironet Access Points Ethernet Wired Clients Denial of Service Vulnerability | 2020-09-24T16:00:00+00:00 | 2020-09-30T15:49:49+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-53154 | parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called. | 2025-05-02T00:00:00.000Z | 2025-09-04T01:32:31.000Z |
| msrc_cve-2025-21972 | net: mctp: unshare packets when reassembling | 2025-04-02T00:00:00.000Z | 2025-09-04T01:32:13.000Z |
| msrc_cve-2025-38514 | rxrpc: Fix oops due to non-existence of prealloc backlog struct | 2025-08-02T00:00:00.000Z | 2025-09-04T01:32:03.000Z |
| msrc_cve-2023-45285 | Command 'go get' may unexpectedly fallback to insecure git in cmd/go | 2023-12-01T08:00:00.000Z | 2025-09-04T01:31:42.000Z |
| msrc_cve-2024-26812 | vfio/pci: Create persistent INTx handler | 2024-04-02T07:00:00.000Z | 2025-09-04T01:30:54.000Z |
| msrc_cve-2025-37977 | scsi: ufs: exynos: Disable iocc if dma-coherent property isn't set | 2025-05-02T00:00:00.000Z | 2025-09-04T01:30:15.000Z |
| msrc_cve-2025-38038 | cpufreq: amd-pstate: Remove unnecessary driver_lock in set_boost | 2025-06-02T00:00:00.000Z | 2025-09-04T01:29:23.000Z |
| msrc_cve-2025-38543 | drm/tegra: nvdec: Fix dma_alloc_coherent error check | 2025-08-02T00:00:00.000Z | 2025-09-04T01:28:47.000Z |
| msrc_cve-2024-26765 | LoongArch: Disable IRQ before init_fn() for nonboot CPUs | 2024-04-02T07:00:00.000Z | 2025-09-04T01:28:29.000Z |
| msrc_cve-2025-38496 | dm-bufio: fix sched in atomic context | 2025-07-02T00:00:00.000Z | 2025-09-04T01:25:57.000Z |
| msrc_cve-2022-49218 | drm/dp: Fix OOB read when handling Post Cursor2 register | 2025-02-02T00:00:00.000Z | 2025-09-04T01:25:00.000Z |
| msrc_cve-2025-38513 | wifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev() | 2025-08-02T00:00:00.000Z | 2025-09-04T01:21:04.000Z |
| msrc_cve-2024-58093 | PCI/ASPM: Fix link state exit during switch upstream function removal | 2025-04-02T00:00:00.000Z | 2025-09-04T01:16:43.000Z |
| msrc_cve-2025-38060 | bpf: copy_verifier_state() should copy 'loop_entry' field | 2025-06-02T00:00:00.000Z | 2025-09-04T01:15:43.000Z |
| msrc_cve-2022-41724 | Panic on large handshake records in crypto/tls | 2023-02-01T00:00:00.000Z | 2025-09-04T01:14:18.000Z |
| msrc_cve-2025-38539 | tracing: Add down_write(trace_event_sem) when adding trace event | 2025-08-02T00:00:00.000Z | 2025-09-04T01:12:44.000Z |
| msrc_cve-2018-1000215 | Dave Gamble cJSON version 1.7.6 and earlier contains a CWE-772 vulnerability in cJSON library that can result in Denial of Service | 2018-08-02T00:00:00.000Z | 2025-09-04T01:12:38.000Z |
| msrc_cve-2025-38494 | HID: core: do not bypass hid_hw_raw_request | 2025-07-02T00:00:00.000Z | 2025-09-04T01:11:10.000Z |
| msrc_cve-2025-38538 | dmaengine: nbpfaxi: Fix memory corruption in probe() | 2025-08-02T00:00:00.000Z | 2025-09-04T01:10:08.000Z |
| msrc_cve-2023-45289 | Incorrect forwarding of sensitive headers and cookies on HTTP redirect in net/http | 2024-03-02T08:00:00.000Z | 2025-09-04T01:09:58.000Z |
| msrc_cve-2023-42503 | Apache Commons Compress: Denial of service via CPU consumption for malformed TAR file | 2023-09-01T00:00:00.000Z | 2025-09-04T01:07:36.000Z |
| msrc_cve-2025-38510 | kasan: remove kasan_find_vm_area() to prevent possible deadlock | 2025-08-02T00:00:00.000Z | 2025-09-04T01:07:11.000Z |
| msrc_cve-2025-38677 | f2fs: fix to avoid out-of-boundary access in dnode page | 2025-08-02T00:00:00.000Z | 2025-09-04T01:06:37.000Z |
| msrc_cve-2025-37984 | crypto: ecdsa - Harden against integer overflows in DIV_ROUND_UP() | 2025-05-02T00:00:00.000Z | 2025-09-04T01:05:17.000Z |
| msrc_cve-2025-38329 | firmware: cs_dsp: Fix OOB memory read access in KUnit test (wmfw info) | 2025-07-02T00:00:00.000Z | 2025-09-04T01:01:28.000Z |
| msrc_cve-2025-38490 | net: libwx: remove duplicate page_pool_put_full_page() | 2025-07-02T00:00:00.000Z | 2025-09-04T01:00:10.000Z |
| msrc_cve-2023-6270 | Kernel: aoe: improper reference count leads to use-after-free vulnerability | 2024-01-01T08:00:00.000Z | 2025-09-04T00:59:32.000Z |
| msrc_cve-2025-38542 | net: appletalk: Fix device refcount leak in atrtr_create() | 2025-08-02T00:00:00.000Z | 2025-09-04T00:57:26.000Z |
| msrc_cve-2025-38340 | firmware: cs_dsp: Fix OOB memory read access in KUnit test | 2025-07-02T00:00:00.000Z | 2025-09-04T00:57:21.000Z |
| msrc_cve-2025-4969 | Libsoup: off-by-one out-of-bounds read in find_boundary() in soup-multipart.c | 2025-05-02T00:00:00.000Z | 2025-09-04T00:56:39.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201412-0535 | Multiple stack-based buffer overflows in (1) HWOPOSScale.ocx and (2) HWOPOSSCANNER.ocx in… | 2024-04-19T22:49:54.970000Z |
| var-201406-0321 | Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.… | 2024-04-19T22:47:35.081000Z |
| var-201512-0076 | Cross-site request forgery (CSRF) vulnerability on Belkin F9K1102 2 devices with firmware… | 2024-04-19T22:44:32.715000Z |
| var-201512-0075 | Belkin F9K1102 2 devices with firmware 2.10.17 rely on client-side JavaScript code for au… | 2024-04-19T22:44:32.748000Z |
| var-201512-0074 | The web management interface on Belkin F9K1102 2 devices with firmware 2.10.17 has a blan… | 2024-04-19T22:44:32.781000Z |
| var-201512-0073 | Belkin F9K1102 2 devices with firmware 2.10.17 use an improper algorithm for selecting th… | 2024-04-19T22:44:32.681000Z |
| var-202403-1239 | An arbitrary code execution vulnerability in Rockwell Automation Arena Simulation could … | 2024-04-19T22:43:55.992000Z |
| var-201504-0521 | The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate… | 2024-04-19T22:40:11.917000Z |
| var-201607-0243 | Integer overflow in the rtxMemHeapAlloc function in asn1rt_a.lib in Objective Systems ASN… | 2024-04-19T22:40:09.559000Z |
| var-201508-0177 | Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services … | 2024-04-19T22:40:08.722000Z |
| var-202112-0166 | ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9… | 2024-04-19T22:39:53.036000Z |
| var-202112-0023 | Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 … | 2024-04-19T22:39:53.058000Z |
| var-202108-1931 | D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS comma… | 2024-04-19T22:39:53.666000Z |
| var-202108-1930 | D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthor… | 2024-04-19T22:39:53.641000Z |
| var-202112-0026 | Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and… | 2024-04-19T22:39:52.996000Z |
| var-202112-0025 | Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and… | 2024-04-19T22:39:52.974000Z |
| var-202112-0024 | Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and… | 2024-04-19T22:39:52.948000Z |
| var-202112-0008 | Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and… | 2024-04-19T22:39:52.902000Z |
| var-202112-0004 | Cross-site request forgery (CSRF) vulnerability in ELECOM LAN routers (WRC-1167GST2 firmw… | 2024-04-19T22:39:52.927000Z |
| var-201402-0185 | Cross-site scripting (XSS) vulnerability in user/ldap_user/add in Fortinet FortiOS 5.0.3 … | 2024-04-19T22:37:05.363000Z |
| var-201006-1205 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T22:25:26.489000Z |
| var-201507-0105 | Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) imple… | 2024-04-19T22:16:04.240000Z |
| var-201006-1222 | Array index error in AcroForm.api in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x b… | 2024-04-19T22:12:06.565000Z |
| var-201408-0271 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2886, CVE-2014-2… | 2024-04-19T22:11:18.963000Z |
| var-201006-1242 | Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.… | 2024-04-19T21:51:57.530000Z |
| var-201006-1214 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:51:26.481000Z |
| var-201006-1213 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:47:43.907000Z |
| var-201006-1193 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:45:26.115000Z |
| var-201006-0264 | Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Win… | 2024-04-19T21:12:04.344000Z |
| var-201711-0420 | An issue was discovered in certain Apple products. macOS High Sierra before Security Upda… | 2024-04-19T21:11:20.488000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000007 | Oracle WebLogic Server vulnerable to cross-site scripting | 2012-01-20T15:37+09:00 | 2012-01-20T15:37+09:00 |
| jvndb-2012-000002 | Cogent DataHub vulnerable to HTTP header injection | 2012-01-11T15:12+09:00 | 2012-01-13T16:08+09:00 |
| jvndb-2012-000001 | Cogent DataHub vulnerable to cross-site scripting | 2012-01-11T15:22+09:00 | 2012-01-13T15:57+09:00 |
| jvndb-2012-000003 | Wibu-Systems CodeMeter Runtime vulnerable to denial-of-service | 2012-01-11T15:02+09:00 | 2012-01-11T15:02+09:00 |
| jvndb-2011-002122 | An authentication information Exposure Vulnerability in JP1/IT Resource Management - Manager | 2012-01-06T19:53+09:00 | 2012-01-06T19:53+09:00 |
| jvndb-2011-003295 | JP1/Cm2/Network Node Manager i Denial of Service (DoS) Vulnerability | 2012-01-06T19:51+09:00 | 2012-01-06T19:51+09:00 |
| jvndb-2011-000108 | Movable Type Plugin MailForm vulnerable to cross-site scripting | 2011-12-26T14:49+09:00 | 2011-12-26T14:49+09:00 |
| jvndb-2011-000109 | WordPress vulnerable to arbitrary PHP code execution | 2011-12-26T14:28+09:00 | 2011-12-26T14:28+09:00 |
| jvndb-2011-000110 | WordPress Japanese vulnerable to cross-site scripting | 2011-12-26T14:26+09:00 | 2011-12-26T14:26+09:00 |
| jvndb-2011-000107 | PukiWiki Plus! vulnerable to cross-site scripting | 2011-12-22T18:16+09:00 | 2011-12-22T18:16+09:00 |
| jvndb-2011-000106 | Apache Struts vulnerable to cross-site scripting | 2011-12-22T18:08+09:00 | 2011-12-22T18:08+09:00 |
| jvndb-2011-000102 | Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK | 2011-12-15T16:26+09:00 | 2011-12-20T18:14+09:00 |
| jvndb-2011-000099 | ChaSen vulnerable to buffer overflow | 2011-11-08T18:31+09:00 | 2011-12-20T18:13+09:00 |
| jvndb-2011-000105 | Safari for iOS vulnerable to denial-of-service | 2011-12-15T16:30+09:00 | 2011-12-15T16:30+09:00 |
| jvndb-2011-000104 | FFFTP may insecurely load executable files | 2011-12-09T17:08+09:00 | 2011-12-09T17:08+09:00 |
| jvndb-2011-000103 | phpWebSite vulnerable to cross-site scripting | 2011-12-08T17:15+09:00 | 2011-12-08T17:15+09:00 |
| jvndb-2011-000101 | Etomite vulnerable to cross-site scripting | 2011-12-06T17:45+09:00 | 2011-12-06T17:45+09:00 |
| jvndb-2011-000100 | PowerChute Business Edition vulnerable to cross-site scripting | 2011-12-06T16:49+09:00 | 2011-12-06T16:49+09:00 |
| jvndb-2011-000079 | Cybozu Office vulnerable in restricting access | 2011-10-11T09:11+09:00 | 2011-11-28T16:48+09:00 |
| jvndb-2011-000076 | Nikki vulnerable to OS command injection | 2011-11-21T18:23+09:00 | 2011-11-21T18:23+09:00 |
| jvndb-2011-000075 | Nikki vulnerable to directory traversal | 2011-11-21T18:22+09:00 | 2011-11-21T18:22+09:00 |
| jvndb-2011-000098 | Iwate Portal Bar vulnerable to arbitrary script execution | 2011-11-08T18:25+09:00 | 2011-11-08T18:25+09:00 |
| jvndb-2011-000094 | Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery | 2011-10-31T18:03+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000093 | Multiple SKYARC System Co., Ltd. products fail to restrict access permissions | 2011-10-31T17:54+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000097 | WebObjects vulnerable to cross-site scripting | 2011-11-04T17:36+09:00 | 2011-11-04T17:36+09:00 |
| jvndb-2011-000096 | Opengear console servers vulnerable to authentication bypass | 2011-11-04T17:34+09:00 | 2011-11-04T17:34+09:00 |
| jvndb-2011-000095 | CSWorks LiveData Service vulnerable to denial-of-service (DoS) | 2011-11-01T16:05+09:00 | 2011-11-02T14:42+09:00 |
| jvndb-2011-000089 | Touhou Hisouten vulnerable to denial-of-service | 2011-10-28T17:49+09:00 | 2011-10-28T17:49+09:00 |
| jvndb-2011-000092 | Multiple D-Link products vulnerable to buffer overflow | 2011-10-28T17:42+09:00 | 2011-10-28T17:42+09:00 |
| jvndb-2011-000091 | FFFTP may insecurely load executable files | 2011-10-28T17:39+09:00 | 2011-10-28T17:39+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:1477-1 | Security update for libva | 2025-05-06T09:17:15Z | 2025-05-06T09:17:15Z |
| suse-su-2025:1467-1 | Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP6) | 2025-05-06T09:07:02Z | 2025-05-06T09:07:02Z |
| suse-su-2025:1468-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6) | 2025-05-06T09:06:57Z | 2025-05-06T09:06:57Z |
| suse-su-2025:1466-1 | Security update for rabbitmq-server | 2025-05-06T06:06:37Z | 2025-05-06T06:06:37Z |
| suse-su-2025:1465-1 | Security update for apache2-mod_auth_openidc | 2025-05-05T21:04:37Z | 2025-05-05T21:04:37Z |
| suse-su-2025:1464-1 | Security update for ImageMagick | 2025-05-05T18:49:06Z | 2025-05-05T18:49:06Z |
| suse-su-2025:1463-1 | Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3) | 2025-05-05T12:06:27Z | 2025-05-05T12:06:27Z |
| suse-su-2025:1457-1 | Security update for glib2 | 2025-05-05T10:56:39Z | 2025-05-05T10:56:39Z |
| suse-su-2025:1453-1 | Security update for libva | 2025-05-05T07:44:16Z | 2025-05-05T07:44:16Z |
| suse-su-2025:1452-1 | Security update for libva | 2025-05-05T07:43:59Z | 2025-05-05T07:43:59Z |
| suse-su-2025:1451-1 | Security update for libva | 2025-05-05T07:43:40Z | 2025-05-05T07:43:40Z |
| suse-su-2025:1450-1 | Security update for ffmpeg | 2025-05-05T07:42:43Z | 2025-05-05T07:42:43Z |
| suse-su-2025:1449-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4) | 2025-05-05T07:36:00Z | 2025-05-05T07:36:00Z |
| suse-su-2025:1448-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP3) | 2025-05-05T06:37:02Z | 2025-05-05T06:37:02Z |
| suse-su-2025:1445-1 | Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4) | 2025-05-04T16:10:05Z | 2025-05-04T16:10:05Z |
| suse-su-2025:1444-1 | Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP4) | 2025-05-04T13:39:40Z | 2025-05-04T13:39:40Z |
| suse-su-2025:1440-1 | Security update for libxml2 | 2025-05-02T13:44:52Z | 2025-05-02T13:44:52Z |
| suse-su-2025:1439-1 | Security update for libxml2 | 2025-05-02T13:44:39Z | 2025-05-02T13:44:39Z |
| suse-su-2025:1438-1 | Security update for libxml2 | 2025-05-02T13:44:11Z | 2025-05-02T13:44:11Z |
| suse-su-2025:1436-1 | Security update for MozillaFirefox | 2025-05-02T13:13:53Z | 2025-05-02T13:13:53Z |
| suse-su-2025:1435-1 | Security update for libxml2 | 2025-05-02T10:39:17Z | 2025-05-02T10:39:17Z |
| suse-su-2025:1434-1 | Security update for poppler | 2025-05-02T10:37:00Z | 2025-05-02T10:37:00Z |
| suse-su-2025:1433-1 | Security update for redis | 2025-05-02T10:23:46Z | 2025-05-02T10:23:46Z |
| suse-su-2025:1432-1 | Security update for redis | 2025-05-02T10:23:30Z | 2025-05-02T10:23:30Z |
| suse-su-2025:1431-1 | Security update for govulncheck-vulndb | 2025-05-02T08:11:07Z | 2025-05-02T08:11:07Z |
| suse-su-2025:1430-1 | Security update for python-h11 | 2025-05-02T08:10:35Z | 2025-05-02T08:10:35Z |
| suse-su-2025:1429-1 | Security update for java-21-openjdk | 2025-05-02T08:10:04Z | 2025-05-02T08:10:04Z |
| suse-su-2025:1425-1 | Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4) | 2025-05-01T18:39:32Z | 2025-05-01T18:39:32Z |
| suse-su-2025:1423-1 | Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3) | 2025-05-01T16:11:35Z | 2025-05-01T16:11:35Z |
| suse-su-2025:1422-1 | Security update for the Linux Kernel (Live Patch 44 for SLE 15 SP3) | 2025-04-30T19:09:59Z | 2025-04-30T19:09:59Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:13630-1 | python3-salt-3006.0-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13629-1 | ghostscript-10.02.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13628-1 | tinyssh-20240101-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13627-1 | libtiff-devel-32bit-4.6.0-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13626-1 | MozillaFirefox-122.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13625-1 | libnss_slurm2-23.11.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13624-1 | sevctl-0.4.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13623-1 | libruby3_3-3_3-3.3.0-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13622-1 | mlocate-0.26-37.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13621-1 | grpc-devel-1.60.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13620-1 | coredns-1.11.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13619-1 | libmspack-devel-0.11-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13618-1 | coreutils-9.4-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13617-1 | MozillaThunderbird-115.7.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13616-1 | pam-1.6.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13615-1 | etcd-3.5.11-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13614-1 | atril-1.26.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13613-1 | libzstd-devel-1.5.5-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13612-1 | rear-2.7-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13611-1 | python310-Pillow-10.2.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13610-1 | python310-Mako-1.3.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13609-1 | openjfx-17.0.10.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13608-1 | apache-sshd-2.12.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13607-1 | jupyter-panel-1.3.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13606-1 | jupyter-notebook-7.0.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13605-1 | jupyter-jupyterlab-4.0.11-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13604-1 | golang-github-prometheus-prometheus-2.48.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13603-1 | ungoogled-chromium-120.0.6099.224-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13602-1 | java-11-openjdk-11.0.22.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13601-1 | jupyter-lsp-2.2.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-24077 | Oracle Database Server存在未明漏洞(CNVD-2025-24077) | 2025-07-21 | 2025-10-17 |
| cnvd-2025-24076 | Oracle Database Server存在未明漏洞(CNVD-2025-24076) | 2025-07-21 | 2025-10-17 |
| cnvd-2025-24075 | Oracle Database Server存在未明漏洞(CNVD-2025-24075) | 2025-07-21 | 2025-10-17 |
| cnvd-2025-24074 | Ashlar-Vellum Cobalt资源管理错误漏洞 | 2025-09-19 | 2025-10-17 |
| cnvd-2025-24073 | Ashlar-Vellum Graphite堆栈缓冲区溢出漏洞 | 2025-09-19 | 2025-10-17 |
| cnvd-2025-24072 | WordPress插件Authorsy跨站脚本漏洞 | 2025-09-29 | 2025-10-17 |
| cnvd-2025-24071 | Tenda AC15 formfast_setting_pppoe_set函数缓冲区溢出漏洞 | 2025-10-13 | 2025-10-17 |
| cnvd-2025-24070 | Huawei HarmonyOS Wi-Fi模块权限控制漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24068 | Huawei HarmonyOS Camera app权限验证绕过漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24067 | Huawei HarmonyOS device management模块缓冲区溢出漏洞漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24066 | Huawei HarmonyOS拒绝服务漏洞(CNVD-2025-24066) | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24065 | Huawei HarmonyOS print模块异常处理不当漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24064 | Huawei HarmonyOS拒绝服务漏(CNVD-2025-24064)洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24063 | Huawei HarmonyOS print模块异常处理不当漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24062 | Huawei HarmonyOS camera模块权限控制漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24061 | Huawei HarmonyOS Gallery模块权限控制漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24060 | Huawei HarmonyOS Gallery app身份验证绕过漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24059 | Huawei HarmonyOS media模块权限控制漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24058 | Huawei HarmonyOS拒绝服务漏洞(CNVD-2025-24058) | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24057 | Huawei HarmonyOS sensor service缓冲区溢出漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24056 | Huawei HarmonyOS development framework模块缓冲区溢出漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24055 | Huawei HarmonyOS network模块权限控制漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24054 | Huawei HarmonyOS office service内存错误引用漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24053 | Huawei HarmonyOS storage management模块内存错误引用漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24052 | Huawei HarmonyOS device management模块缓冲区溢出漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24051 | Huawei HarmonyOS package management模块数据处理错误漏洞 | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24050 | Huawei HarmonyOS拒绝服务漏洞(CNVD-2025-24050) | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24049 | Huawei HarmonyOS拒绝服务漏洞(CNVD-2025-24049) | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24048 | Bold Workplanner不安全直接对象引用漏洞(CNVD-2025-24048) | 2025-10-15 | 2025-10-17 |
| cnvd-2025-24047 | Bold Workplanner不安全直接对象引用漏洞(CNVD-2025-24047) | 2025-10-15 | 2025-10-17 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2024-avi-1084 | Vulnérabilité dans SolarWinds Web Help Desk | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| certfr-2024-avi-1083 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| certfr-2024-avi-1082 | Multiples vulnérabilités dans les produits Synology | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| CERTFR-2024-AVI-1084 | Vulnérabilité dans SolarWinds Web Help Desk | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| CERTFR-2024-AVI-1083 | Multiples vulnérabilités dans Mozilla Thunderbird | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| CERTFR-2024-AVI-1082 | Multiples vulnérabilités dans les produits Synology | 2024-12-16T00:00:00.000000 | 2024-12-16T00:00:00.000000 |
| certfr-2024-avi-1081 | Multiples vulnérabilités dans les produits IBM | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1080 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1079 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1078 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1077 | Multiples vulnérabilités dans Microsoft Edge | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1076 | Multiples vulnérabilités dans Suricata | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1075 | Multiples vulnérabilités dans Nagios XI | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1081 | Multiples vulnérabilités dans les produits IBM | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1080 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1079 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1078 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1077 | Multiples vulnérabilités dans Microsoft Edge | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1076 | Multiples vulnérabilités dans Suricata | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| CERTFR-2024-AVI-1075 | Multiples vulnérabilités dans Nagios XI | 2024-12-13T00:00:00.000000 | 2024-12-13T00:00:00.000000 |
| certfr-2024-avi-1074 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| certfr-2024-avi-1073 | Vulnérabilité dans les produits Mozilla | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| certfr-2024-avi-1072 | Multiples vulnérabilités dans les produits Apple | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| certfr-2024-avi-1071 | Multiples vulnérabilités dans les produits Tenable | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| CERTFR-2024-AVI-1074 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| CERTFR-2024-AVI-1073 | Vulnérabilité dans les produits Mozilla | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| CERTFR-2024-AVI-1072 | Multiples vulnérabilités dans les produits Apple | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| CERTFR-2024-AVI-1071 | Multiples vulnérabilités dans les produits Tenable | 2024-12-12T00:00:00.000000 | 2024-12-12T00:00:00.000000 |
| certfr-2024-avi-1070 | Multiples vulnérabilités dans les produits Microsoft | 2024-12-11T00:00:00.000000 | 2024-12-11T00:00:00.000000 |
| certfr-2024-avi-1069 | Multiples vulnérabilités dans Microsoft Windows | 2024-12-11T00:00:00.000000 | 2024-12-11T00:00:00.000000 |