Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-7195	5.2 (3.1)	Operator-sdk: privilege escalation due to incorrect pe…	Red Hat	Compliance Operator 1	2025-08-07T19:05:08.756Z	2025-12-05T02:30:04.861Z
CVE-2025-12804	6.4 (3.1)	Booking Calendar <= 10.14.6 - Authenticated (Contribut…	wpdevelop	Booking Calendar	2025-12-05T01:55:22.221Z	2025-12-05T01:55:22.221Z
CVE-2025-11759	4.3 (3.1)	Backup, Restore and Migrate your sites with XCloner <=…	watchful	Backup, Restore and Migrate your sites with XCloner	2025-12-05T01:55:21.515Z	2025-12-05T01:55:21.515Z
CVE-2025-62223	4.3 (3.1)	Microsoft Edge (Chromium-based) for Mac Spoofing Vulne…	Microsoft	Microsoft Edge (Chromium-based)	2025-12-05T00:21:41.975Z	2025-12-05T00:21:41.975Z
CVE-2025-14052	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	youlaitech youlai-mall members getMemberById access control	youlaitech	youlai-mall	2025-12-05T00:02:06.424Z	2025-12-05T00:02:06.424Z
CVE-2025-12196	8.6 (4.0)	WatchGuard Firebox Authenticated Out of Bounds Write i…	WatchGuard	Fireware OS	2025-12-04T21:45:29.261Z	2025-12-04T23:22:12.844Z
CVE-2025-12195	8.6 (4.0)	WatchGuard Firebox Authenticated Out of Bounds Write i…	WatchGuard	Fireware OS	2025-12-04T21:43:57.162Z	2025-12-04T23:16:42.644Z
CVE-2025-12026	8.6 (4.0)	WatchGuard Firebox Authenticated Out of Bounds Write i…	WatchGuard	Fireware OS	2025-12-04T21:43:46.266Z	2025-12-04T23:15:35.998Z
CVE-2024-8176	7.5 (3.1)	Libexpat: expat: improper restriction of xml entity ex…			2025-03-14T08:19:48.962Z	2025-12-04T23:14:41.792Z
CVE-2025-13932	8.3 (4.0)	The SolisCloud API suffers from a Broken Access C…	SolisCloud	Monitoring Platform (Cloud API & Device Control API)	2025-12-04T21:17:03.206Z	2025-12-04T23:02:41.998Z
CVE-2025-13373	8.7 (4.0) 7.5 (3.1)	Advantech iView SQL Injection	Advantech	iView	2025-12-04T22:50:36.079Z	2025-12-04T22:50:36.079Z
CVE-2024-3884	7.5 (3.1)	Undertow: outofmemory when parsing form data encoding …	Red Hat	Red Hat JBoss Enterprise Application Platform 8.0	2025-12-03T18:40:25.606Z	2025-12-04T22:50:15.751Z
CVE-2025-66564	7.5 (3.1)	Sigstore Timestamp Authority allocates excessive memor…	sigstore	timestamp-authority	2025-12-04T22:37:13.307Z	2025-12-04T22:37:13.307Z
CVE-2025-66563	7.1 (4.0)	Monkeytype vulnerable to stored XSS in approve quotes page	monkeytypegame	monkeytype	2025-12-04T22:34:10.010Z	2025-12-04T22:34:10.010Z
CVE-2025-14051	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	youlaitech youlai-mall addresses deleteAddress imprope…	youlaitech	youlai-mall	2025-12-04T22:32:06.395Z	2025-12-04T22:32:06.395Z
CVE-2025-66561	7.3 (3.1)	SysReptor Vulnerable to an Authenticated Stored Cross-…	Syslifters	sysreptor	2025-12-04T22:27:52.015Z	2025-12-04T22:27:52.015Z
CVE-2025-66559	8 (4.0)	Taiko Alethia Pacaya inbox verification pointer corruption	taikoxyz	taiko-mono	2025-12-04T22:23:55.608Z	2025-12-04T22:23:55.608Z
CVE-2025-1549	6.3 (4.0)	WatchGuard Mobile VPN with SSL Local Privilege Escallation	WatchGuard	Mobile VPN with SSL Client	2025-10-29T16:50:39.263Z	2025-12-04T22:22:49.520Z
CVE-2025-1547	7.5 (4.0)	WatchGuard Firebox Authenticated Stack Overflow in Cer…	WatchGuard	Fireware OS	2025-12-04T22:11:09.164Z	2025-12-04T22:11:09.164Z
CVE-2025-66509	8.9 (4.0)	LaraDashboard: 1-Click Pre-Auth RCE via Host Header + …	laradashboard	laradashboard	2025-12-04T22:10:26.848Z	2025-12-04T22:10:26.848Z
CVE-2025-66506	7.5 (3.1)	Fulcio allocates excessive memory during token parsing	sigstore	fulcio	2025-12-04T22:04:41.637Z	2025-12-04T22:04:41.637Z
CVE-2025-1910	6.3 (4.0)	WatchGuard Mobile VPN with SSL Local Privilege Escalat…	WatchGuard	Mobile VPN with SSL Client	2025-12-04T21:56:51.105Z	2025-12-04T21:56:51.105Z
CVE-2025-12986	6 (4.0)	Denial of Service Vulnerability in Silicon Labs WF200 …	silabs.com	Gecko SDK	2025-12-04T21:55:59.291Z	2025-12-04T21:55:59.291Z
CVE-2025-6946	4.8 (4.0)	WatchGuard Firebox Stored Cross-Site-Scripting (XSS) V…	WatchGuard	Fireware OS	2025-12-04T21:48:50.477Z	2025-12-04T21:48:50.477Z
CVE-2025-1545	8.2 (4.0)	WatchGuard Firebox XPath Injection Vulnerability in Web CGI	WatchGuard	Fireware OS	2025-12-04T21:48:27.311Z	2025-12-04T21:48:27.311Z
CVE-2025-11838	8.7 (4.0)	WatchGuard Firebox iked Memory Corruption Vulnerability	WatchGuard	Fireware OS	2025-12-04T21:48:10.961Z	2025-12-04T21:48:10.961Z
CVE-2025-13940	6.7 (4.0)	WatchGuard Firebox Boot Time System Integrity Check Bypass	WatchGuard	Fireware OS	2025-12-04T21:47:44.483Z	2025-12-04T21:47:44.483Z
CVE-2025-13939	4.8 (4.0)	WatchGuard Firebox Stored Cross-Site-Scripting (XSS) V…	WatchGuard	Fireware OS	2025-12-04T21:47:37.793Z	2025-12-04T21:47:37.793Z
CVE-2025-13938	4.8 (4.0)	WatchGuard Firebox Stored Cross-Site-Scripting (XSS) V…	WatchGuard	Fireware OS	2025-12-04T21:47:29.650Z	2025-12-04T21:47:29.650Z
CVE-2025-13937	4.8 (4.0)	WatchGuard Firebox Stored Cross-Site-Scripting (XSS) V…	WatchGuard	Fireware OS	2025-12-04T21:47:19.995Z	2025-12-04T21:47:19.995Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-12804	6.4 (3.1)	Booking Calendar <= 10.14.6 - Authenticated (Contribut…	wpdevelop	Booking Calendar	2025-12-05T01:55:22.221Z	2025-12-05T01:55:22.221Z
CVE-2025-11759	4.3 (3.1)	Backup, Restore and Migrate your sites with XCloner <=…	watchful	Backup, Restore and Migrate your sites with XCloner	2025-12-05T01:55:21.515Z	2025-12-05T01:55:21.515Z
CVE-2025-54236	9.1 (3.1)	Adobe Commerce \| Improper Input Validation (CWE-20)	Adobe	Adobe Commerce	2025-09-09T13:20:17.939Z	2025-10-24T22:20:23.685Z
CVE-2025-62223	4.3 (3.1)	Microsoft Edge (Chromium-based) for Mac Spoofing Vulne…	Microsoft	Microsoft Edge (Chromium-based)	2025-12-05T00:21:41.975Z	2025-12-05T00:21:41.975Z
CVE-2025-9553	5.3 (3.1)	API Key manager - Critical - Unsupported - SA-CONTRIB-…	Drupal	API Key manager	2025-10-10T22:25:36.628Z	2025-10-15T19:21:28.347Z
CVE-2025-9554	5.3 (3.1)	Owl Carousel 2 - Critical - Unsupported - SA-CONTRIB-2…	Drupal	Owl Carousel 2	2025-10-10T22:25:48.838Z	2025-10-15T19:22:29.982Z
CVE-2025-22167	8.7 (4.0)	This High severity Path Traversal (Arbitrary Writ…	Atlassian	Jira Software Data Center	2025-10-22T01:00:06.278Z	2025-10-23T03:55:20.670Z
CVE-2025-49923	6.1 (3.1)	WordPress Seriously Simple Podcasting plugin <= 3.11.1…	Craig Hewitt	Seriously Simple Podcasting	2025-10-22T14:32:13.596Z	2025-11-13T16:28:21.953Z
CVE-2025-59048	8.1 (3.1)	OpenBao AWS Plugin Vulnerable to Cross-Account IAM Rol…	openbao	openbao-plugins	2025-10-23T15:09:06.574Z	2025-10-23T15:40:48.665Z
CVE-2025-11564	5.3 (3.1)	Tutor LMS – eLearning and online course solution <= 3.…	themeum	Tutor LMS – eLearning and online course solution	2025-10-25T05:31:19.940Z	2025-10-27T15:49:09.061Z
CVE-2025-6680	4.3 (3.1)	Tutor LMS <= 3.8.3 - Missing Authorization to Sensitiv…	themeum	Tutor LMS – eLearning and online course solution	2025-10-25T05:31:18.909Z	2025-10-27T15:47:28.193Z
CVE-2025-62882	4.3 (3.1)	WordPress Seriously Simple Podcasting plugin <= 3.13.0…	Craig Hewitt	Seriously Simple Podcasting	2025-10-27T01:33:43.191Z	2025-11-13T10:33:47.353Z
CVE-2025-11154	5.4 (3.1)	IDonate < 2.1.13 - Unauthenticated User Deletion	Unknown	IDonate	2025-10-27T06:00:01.632Z	2025-10-27T15:11:51.813Z
CVE-2025-47658	9.9 (3.1)	WordPress ELEX WordPress HelpDesk & Customer Ticketing…	ELEXtensions	ELEX WordPress HelpDesk & Customer Ticketing System	2025-05-23T12:43:23.046Z	2025-05-23T18:59:06.107Z
CVE-2025-5114	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	easysoft zentaopms Editor index.php edit deserialization	easysoft	zentaopms	2025-05-23T14:31:04.924Z	2025-05-23T14:41:59.798Z
CVE-2025-14052	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	youlaitech youlai-mall members getMemberById access control	youlaitech	youlai-mall	2025-12-05T00:02:06.424Z	2025-12-05T00:02:06.424Z
CVE-2024-8176	7.5 (3.1)	Libexpat: expat: improper restriction of xml entity ex…			2025-03-14T08:19:48.962Z	2025-12-04T23:14:41.792Z
CVE-2025-48057	9.3 (4.0)	Icinga 2 certificate renewal might incorrectly renew a…	Icinga	icinga2	2025-05-27T16:32:29.931Z	2025-05-27T18:27:57.002Z
CVE-2023-26226	7.4 (4.0)	A use after free memory corruption issue exists in Yan…	Yandex	Browser	2025-05-30T17:23:54.571Z	2025-05-30T17:48:16.518Z

ID	Description	Published	Updated
fkie_cve-2025-54236	Adobe Commerce versions 2.4.9-alpha2, 2.4.8-p2, 2.4.7-p7, 2.4.6-p12, 2.4.5-p14, 2.4.4-p15 and earli…	2025-09-09T14:15:46.563	2025-12-05T02:00:02.270
fkie_cve-2025-62223	User interface (ui) misrepresentation of critical information in Microsoft Edge for iOS allows an u…	2025-12-05T01:15:48.557	2025-12-05T01:15:48.557
fkie_cve-2025-9553	Vulnerability in Drupal API Key manager.This issue affects API Key manager: ..	2025-10-10T23:15:37.523	2025-12-05T00:45:51.440
fkie_cve-2025-9554	Vulnerability in Drupal Owl Carousel 2.This issue affects Owl Carousel 2: ..	2025-10-10T23:15:37.630	2025-12-05T00:41:19.147
fkie_cve-2025-22167	This High severity Path Traversal (Arbitrary Write) vulnerability was introduced in versions: 9.12.…	2025-10-22T01:16:08.753	2025-12-05T00:38:58.717
fkie_cve-2025-49923	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-10-22T15:15:38.193	2025-12-05T00:33:30.743
fkie_cve-2025-59048	OpenBao's AWS Plugin generates AWS access credentials based on IAM policies. Prior to version 0.1.1…	2025-10-23T16:16:43.190	2025-12-05T00:33:07.590
fkie_cve-2025-11564	The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthor…	2025-10-25T06:15:35.307	2025-12-05T00:26:48.090
fkie_cve-2025-6680	The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to Sensitiv…	2025-10-25T06:15:36.563	2025-12-05T00:23:55.297
fkie_cve-2025-62882	Missing Authorization vulnerability in Craig Hewitt Seriously Simple Podcasting seriously-simple-po…	2025-10-27T02:15:46.940	2025-12-05T00:22:10.990
fkie_cve-2025-11154	The IDonate WordPress plugin before 2.1.13 does not have authorisation and CSRF when deleting user…	2025-10-27T06:15:37.020	2025-12-05T00:20:23.643
fkie_cve-2025-47658	Unrestricted Upload of File with Dangerous Type vulnerability in ELEXtensions ELEX WordPress HelpDe…	2025-05-23T13:15:42.050	2025-12-05T00:17:40.350
fkie_cve-2025-5114	A vulnerability has been found in easysoft zentaopms 21.5_20250307 and classified as critical. This…	2025-05-23T15:15:25.900	2025-12-05T00:16:57.107
fkie_cve-2025-14052	A vulnerability has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected by this vulnerabilit…	2025-12-05T00:15:48.233	2025-12-05T00:15:48.233
fkie_cve-2024-8176	A stack overflow vulnerability exists in the libexpat library due to the way it handles recursive e…	2025-03-14T09:15:14.157	2025-12-05T00:15:47.730
fkie_cve-2025-48057	Icinga 2 is a monitoring system which checks the availability of network resources, notifies users …	2025-05-27T17:15:26.387	2025-12-05T00:12:22.747
fkie_cve-2023-26226	A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24.4.0.682	2025-05-30T18:15:32.283	2025-12-05T00:01:19.847
fkie_cve-2025-20994	Improper handling of insufficient permission in SyncClientProvider in Samsung Internet installed on…	2025-06-04T05:15:24.353	2025-12-04T23:59:07.827
fkie_cve-2025-20995	Improper handling of insufficient permission in ClientProvider in Samsung Internet installed on non…	2025-06-04T05:15:24.480	2025-12-04T23:48:37.590
fkie_cve-2025-66564	Sigstore Timestamp Authority is a service for issuing RFC 3161 timestamps. Prior to 2.0.3, Function…	2025-12-04T23:15:47.430	2025-12-04T23:15:47.430
fkie_cve-2025-66563	Monkeytype is a minimalistic and customizable typing test. In 25.49.0 and earlier, there is imprope…	2025-12-04T23:15:47.270	2025-12-04T23:15:47.270
fkie_cve-2025-66561	SysReptor is a fully customizable pentest reporting platform. Prior to 2025.102, there is a Stored …	2025-12-04T23:15:47.107	2025-12-04T23:15:47.107
fkie_cve-2025-66559	Taiko Alethia is an Ethereum-equivalent, permissionless, based rollup designed to scale Ethereum wi…	2025-12-04T23:15:46.940	2025-12-04T23:15:46.940
fkie_cve-2025-1549	A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client on Windows …	2025-10-29T17:15:35.543	2025-12-04T23:15:46.757
fkie_cve-2025-14051	A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById/updat…	2025-12-04T23:15:46.553	2025-12-04T23:15:46.553
fkie_cve-2025-13373	Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) req…	2025-12-04T23:15:46.270	2025-12-04T23:15:46.270
fkie_cve-2024-3884	A flaw was found in Undertow that can cause remote denial of service attacks. When the server uses …	2025-12-03T19:15:54.767	2025-12-04T23:15:45.300
fkie_cve-2025-6946	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-04T22:15:49.833	2025-12-04T22:15:49.833
fkie_cve-2025-66509	LaraDashboard is an all-In-one solution to start a Laravel Application. In 2.3.0 and earlier, the p…	2025-12-04T22:15:49.673	2025-12-04T22:15:49.673
fkie_cve-2025-66506	Fulcio is a free-to-use certificate authority for issuing code signing certificates for an OpenID C…	2025-12-04T22:15:49.503	2025-12-04T22:15:49.503

ID	Severity	Description	Published	Updated
ghsa-4f99-4q7p-p3gh	8.7 (4.0)	Logrus is vulnerable to DoS when using Entry.Writer()	2025-12-04T21:31:04Z	2025-12-05T02:27:47Z
ghsa-f58c-gq56-vjjf	10.0 (4.0)	Apache Tika has XXE vulnerability	2025-12-04T18:30:54Z	2025-12-05T02:26:56Z
ghsa-frv8-gffc-37px	2.1 (4.0)	open-webui is Vulnerable to Incorrect Access Control	2025-12-04T18:30:53Z	2025-12-05T02:21:42Z
ghsa-3mwv-j45g-vp3w	5.5 (4.0)	ComposioHQ has a directory traversal vulnerability	2025-12-04T18:30:53Z	2025-12-05T02:18:39Z
ghsa-8ggh-xwr9-3373	5.5 (3.1)	Ansible Community General Collection is vulnerable to exposure of sensitive information	2025-12-04T12:31:05Z	2025-12-05T02:15:35Z
ghsa-rr44-8j7r-jg2q	2.9 (4.0)	alexusmai laravel-file-manager is vulnerable to Directory Traversal	2025-12-03T21:31:05Z	2025-12-05T02:13:01Z
ghsa-ww8c-xjp4-29q3	6.3 (3.1) 2.1 (4.0)	A vulnerability has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected by this vulnerabilit…	2025-12-05T00:31:06Z	2025-12-05T00:31:06Z
ghsa-rc65-2j52-4wcg	6.3 (3.1) 2.1 (4.0)	A flaw has been found in youlaitech youlai-mall 1.0.0/2.0.0. Affected is the function getById/updat…	2025-12-05T00:31:05Z	2025-12-05T00:31:06Z
ghsa-wrx2-9p3v-9gcp	8.6 (4.0)	An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated p…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-vvx6-p7xx-h39j	8.6 (4.0)	An Out-of-bounds Write vulnerability in WatchGuard Fireware OS's CLI could allow an authenticated p…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-rj4p-qc9g-j2p3	8.3 (4.0)	The SolisCloud API suffers from a Broken Access Control vulnerability, specifically an Insecure Dir…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-rg89-p3mq-2mpq	4.8 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-q8vw-65qc-j457	4.8 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-q579-mcrq-q4vr	7.2 (3.1) 7.4 (4.0)	DCIM dcTrack allows an attacker to misuse certain remote access features. An authenticated user wit…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-pw6w-rvw4-j57r	6.7 (4.0)	An Expected Behavior Violation [CWE-440] vulnerability in WatchGuard Fireware OS may allow an attac…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-pr8q-v9mh-7jqr	6.0 (4.0)	When a WF200/WGM160P device is configured to operate as an Access Point, it may be vulnerable to a …	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-pqq2-xhg5-jr2v	8.2 (4.0)	An XPath Injection vulnerability in WatchGuard Fireware OS may allow a remote unauthenticated attac…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-mqjc-wg38-cgvf	7.5 (3.1) 8.7 (4.0)	The password reset mechanism for the Pivot client application is weak, and it may allow an attacker…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-mf5h-qhm4-74qx	4.8 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-m27x-m5c5-4g53	6.3 (4.0)	The WatchGuard Mobile VPN with SSL Client on Windows allows a locally authenticated non-administra…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-j82h-27vv-ghvv	8.7 (4.0)	A memory corruption vulnerability in WatchGuard Fireware OS may allow an unauthenticated attacker t…	2025-12-05T00:31:04Z	2025-12-05T00:31:05Z
ghsa-gxjq-f9vv-wjqm		Kalmia CMS version 0.2.0 contains a user enumeration vulnerability in its authentication mechanism.…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-g4hc-6r4j-7wpc	4.8 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-fj6v-mwp3-rwm2	8.6 (4.0)	An Out-of-bounds Write vulnerability in WatchGuard Fireware OS’s certificate request command could …	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-f6h7-jxqx-887x		Kalmia CMS version 0.2.0 contains an Incorrect Access Control vulnerability in the /kal-api/auth/us…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-f583-j8xv-g3gq	4.8 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-cx46-cw26-h8h6	7.5 (4.0)	A stack-based buffer overflow vulnerability [CWE-121] in WatchGuard Fireware OS's certificate reque…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-3w9v-5hv6-vvfx	7.5 (3.1) 8.7 (4.0)	Advantech iView versions 5.7.05.7057 and prior do not properly sanitize SNMP v1 trap (Port 162) req…	2025-12-05T00:31:05Z	2025-12-05T00:31:05Z
ghsa-pxj4-78jw-m85v	7.4 (4.0)	The web interface of the Silicon Labs Simplicity Device Manager is exposed publicly and can be used…	2025-12-05T00:31:04Z	2025-12-05T00:31:04Z
ghsa-ghmf-r624-m2jq	9.8 (3.1) 7.4 (4.0)	A use after free memory corruption issue exists in Yandex Browser for Desktop prior to version 24.4.0.682	2025-05-30T18:31:15Z	2025-12-05T00:31:04Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-85	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-03T09:06:52.733011Z
pysec-2024-84	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-03T09:06:52.629904Z
pysec-2024-83	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-03T09:06:52.528651Z
pysec-2024-82	8.8 (3.1)	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2025-12-03T09:06:52.427196Z
pysec-2023-278	5.3 (3.1)	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2025-12-03T09:06:52.302557Z
pysec-2020-220		A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-52		gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-08-28T06:24:53.410404Z
pysec-2025-72		The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71		Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	10.0 (3.1)	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	9.8 (3.1)	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258		In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69		In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	8.0 (3.1)	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	9.8 (3.1)	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66		Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65		A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61		Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	9.8 (3.1)	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60		Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59		Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	7.5 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	8.8 (3.1)	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57		A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	4.3 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256		Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55		vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54		vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z

ID	Description	Published	Updated
mal-2025-192311	Malicious code in react-icon-updater (npm)	2025-12-05T02:50:28Z	2025-12-05T02:50:28Z
mal-2025-192307	Malicious code in jsonify-settings (npm)	2025-12-05T02:44:48Z	2025-12-05T02:44:48Z
mal-2025-192308	Malicious code in module-listener (npm)	2025-12-05T02:42:15Z	2025-12-05T02:42:20Z
mal-2025-192310	Malicious code in node-tailwind (npm)	2025-12-05T02:42:15Z	2025-12-05T02:42:16Z
mal-2025-192309	Malicious code in node-dpapi1 (npm)	2025-12-05T02:42:15Z	2025-12-05T02:42:16Z
mal-2025-192305	Malicious code in dell-recovery (PyPI)	2025-12-04T22:01:57Z	2025-12-04T22:01:57Z
mal-2025-192306	Malicious code in dell-restore-system (PyPI)	2025-12-04T21:59:37Z	2025-12-04T21:59:37Z
mal-2025-192304	Malicious code in elf-stats-northbound-sparkler-410 (npm)	2025-12-04T19:12:07Z	2025-12-04T19:12:07Z
mal-2025-192302	Malicious code in coremsft (PyPI)	2025-12-04T12:39:04Z	2025-12-04T15:10:43Z
mal-2025-192303	Malicious code in elf-stats-ginger-wreath-646 (npm)	2025-12-04T13:55:53Z	2025-12-04T13:55:53Z
mal-2025-192117	Malicious code in elf-stats-piney-icicle-501 (npm)	2025-12-03T15:59:29Z	2025-12-04T10:25:39Z
mal-2025-192052	Malicious code in elf-stats-ginger-icicle-707 (npm)	2025-12-03T15:59:29Z	2025-12-04T10:25:39Z
mal-0000-ghsa-malware-be13195f97a73e68	Malware in elf-stats-piney-icicle-501	2025-12-04T09:32:30Z	2025-12-04T09:32:31Z
mal-0000-ghsa-malware-7a16c9b5ba2c490c	Malware in elf-stats-ginger-icicle-707	2025-12-04T09:32:30Z	2025-12-04T09:32:31Z
mal-2025-191995	Malicious code in elf-stats-candlelit-reindeer-881 (npm)	2025-12-03T15:59:29Z	2025-12-04T09:25:56Z
mal-0000-ghsa-malware-c72713caa3870f24	Malware in elf-stats-candlelit-reindeer-881	2025-12-04T09:08:27Z	2025-12-04T09:08:28Z
mal-2025-192222	Malicious code in elf-stats-mulled-stocking-538 (npm)	2025-12-03T17:22:10Z	2025-12-04T08:26:39Z
mal-2025-192259	Malicious code in unified11 (npm)	2025-12-03T18:25:39Z	2025-12-04T07:25:06Z
mal-2025-192254	Malicious code in unified10 (npm)	2025-12-03T18:06:52Z	2025-12-04T07:25:06Z
mal-2025-192253	Malicious code in remark-stringify10 (npm)	2025-12-03T17:50:51Z	2025-12-04T07:25:05Z
mal-2025-192246	Malicious code in remark-parse10 (npm)	2025-12-03T17:35:41Z	2025-12-04T07:25:05Z
mal-2025-192245	Malicious code in remark-mdx2.3 (npm)	2025-12-03T17:31:24Z	2025-12-04T07:25:05Z
mal-2025-192244	Malicious code in hast-util-to-mdast9 (npm)	2025-12-03T17:15:49Z	2025-12-04T07:25:03Z
mal-2025-192301	Malicious code in elf-stats-mulled-ornament-810 (npm)	2025-12-04T07:15:49Z	2025-12-04T07:15:59Z
mal-2025-192299	Malicious code in elf-stats-lanternlit-snowman-834 (npm)	2025-12-04T07:15:49Z	2025-12-04T07:15:59Z
mal-0000-ghsa-malware-5358cc61b0fff34a	Malware in elf-stats-lanternlit-snowman-834	2025-12-04T07:15:49Z	2025-12-04T07:15:59Z
mal-0000-ghsa-malware-17a5cba56932eeba	Malware in elf-stats-mulled-ornament-810	2025-12-04T07:15:49Z	2025-12-04T07:15:59Z
mal-2025-192300	Malicious code in elf-stats-marzipan-cocoa-562 (npm)	2025-12-04T07:15:49Z	2025-12-04T07:15:50Z
mal-2025-192298	Malicious code in elf-stats-candlelit-marshmallow-663 (npm)	2025-12-04T07:15:49Z	2025-12-04T07:15:50Z
mal-2025-192297	Malicious code in elf-stats-bright-cocoa-293 (npm)	2025-12-04T07:15:49Z	2025-12-04T07:15:50Z

ID	Description	Published	Updated
wid-sec-w-2025-2730	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-02T23:00:00.000+00:00	2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2717	Django: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2682	Tinyproxy: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-11-26T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2600	PostgreSQL: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-13T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2595	Linux Kernel: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2548	Red Hat Enterprise Linux: Mehrere Schwachstellen	2020-03-31T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2488	Red Hat Enterprise Linux (SSSD, libsoup): Mehrere Schwachstellen	2025-11-04T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2468	CPython: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2435	D-LINK Aquila Pro AI R15: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten	2025-10-28T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2431	Linux Kernel: Mehrere Schwachstellen	2025-10-28T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2409	Xen: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-26T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2407	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-26T23:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2386	Unbound: Schwachstelle ermöglicht Manipulation von Dateien	2025-10-22T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2380	Xen: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2298	Linux Kernel: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2246	Linux Kernel: Mehrere Schwachstellen	2025-10-08T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2230	Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien	2025-10-07T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2227	Golang Go: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2212	OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung	2025-10-06T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2170	Linux Kernel: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2099	Linux Kernel: Mehrere Schwachstellen	2025-09-21T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2045	expat: Schwachstelle ermöglicht Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2007	Xen: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1976	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-04T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1965	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-09-03T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1502	AMD Prozessor: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen	2025-07-08T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1447	Xen: Schwachstelle ermöglicht Denial of Service	2025-07-01T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1339	PAM: Schwachstelle ermöglicht Privilegieneskalation	2025-06-17T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1252	GNU libc: Mehrere Schwachstellen ermöglichen Manipulation von Daten	2025-06-05T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-1157	binutils: Mehrere Schwachstellen ermöglichen Codeausführung	2025-05-27T22:00:00.000+00:00	2025-12-02T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0380	Kwetsbaarheden verholpen in React Server Components	2025-12-03T20:11:57.728117Z	2025-12-03T20:11:57.728117Z
ncsc-2025-0379	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-12-02T13:25:17.745981Z	2025-12-02T13:25:17.745981Z
ncsc-2025-0378	Kwetsbaarheden verholpen in Mattermost	2025-11-28T09:53:42.334621Z	2025-11-28T09:53:42.334621Z
ncsc-2025-0377	Kwetsbaarheden verholpen in GitLab	2025-11-27T13:35:09.121804Z	2025-11-27T13:35:09.121804Z
ncsc-2025-0376	Kwetsbaarheden verholpen in SonicWall Email Security appliances	2025-11-21T16:06:33.949861Z	2025-11-21T16:06:33.949861Z
ncsc-2025-0375	Kwetsbaarheid verholpen in Progress MOVEit Transfer	2025-11-21T16:06:14.387571Z	2025-11-21T16:06:14.387571Z
ncsc-2025-0334	Kwetsbaarheden verholpen in Oracle Fusion Middleware	2025-10-23T13:42:11.992643Z	2025-11-21T16:03:18.991100Z
ncsc-2025-0374	Kwetsbaarheden verholpen in Arista EOS	2025-11-20T11:48:20.126141Z	2025-11-20T11:48:20.126141Z
ncsc-2025-0373	Kwetsbaarheden verholpen in Fortinet FortiOS	2025-11-19T08:35:31.999400Z	2025-11-19T08:35:31.999400Z
ncsc-2025-0372	Kwetsbaarheid verholpen in Fortinet FortiWeb	2025-11-19T08:34:59.616354Z	2025-11-19T08:34:59.616354Z
ncsc-2025-0371	Kwetsbaarheden verholpen in Google Chrome	2025-11-18T09:01:31.984222Z	2025-11-18T09:01:31.984222Z
ncsc-2025-0370	Kwetsbaarheden verholpen in Cisco Unified Contact Center Express	2025-11-18T07:04:55.173157Z	2025-11-18T07:04:55.173157Z
ncsc-2025-0369	Kwetsbaarheden verholpen in IBM AIX	2025-11-18T07:03:55.766335Z	2025-11-18T07:03:55.766335Z
ncsc-2025-0368	Kwetsbaarheden verholpen in Zoom Workplace en Zoom Clients	2025-11-18T07:02:36.696426Z	2025-11-18T07:02:36.696426Z
ncsc-2025-0367	Kwetsbaarheden verholpen in GitLab	2025-11-18T07:01:35.502522Z	2025-11-18T07:01:35.502522Z
ncsc-2025-0366	Kwetsbaarheid verholpen in Fortinet FortiWeb	2025-11-15T14:57:33.774388Z	2025-11-15T14:57:33.774388Z
ncsc-2025-0365	Kwetsbaarheden verholpen in Cisco Catalyst Center	2025-11-14T12:55:27.227262Z	2025-11-14T12:55:27.227262Z
ncsc-2025-0364	Kwetsbaarheid verholpen in Adobe Photoshop	2025-11-12T12:17:16.207233Z	2025-11-12T12:17:16.207233Z
ncsc-2025-0363	Kwetsbaarheden verholpen in Adobe Illustrator	2025-11-12T11:52:08.634593Z	2025-11-12T11:56:09.924799Z
ncsc-2025-0362	Kwetsbaarheden verholpen in Microsoft Visual Studio	2025-11-11T18:35:40.376220Z	2025-11-11T18:35:40.376220Z
ncsc-2025-0361	Kwetsbaarheid verholpen in Microsoft SQL Server	2025-11-11T18:34:39.453615Z	2025-11-11T18:34:39.453615Z
ncsc-2025-0360	Kwetsbaarheden verholpen in Microsoft Dynamics	2025-11-11T18:33:13.936830Z	2025-11-11T18:33:13.936830Z
ncsc-2025-0359	Kwetsbaarheden verholpen in Microsoft Office	2025-11-11T18:31:27.092072Z	2025-11-11T18:31:27.092072Z
ncsc-2025-0358	Kwetsbaartheden verholpen in Microsoft Windows	2025-11-11T18:29:38.918562Z	2025-11-11T18:29:38.918562Z
ncsc-2025-0357	Kwetsbaarheden verholpen in Siemens producten	2025-11-11T18:14:44.487803Z	2025-11-11T18:14:44.487803Z
ncsc-2025-0356	Kwetsbaarheden verholpen in SAP-producten	2025-11-11T12:15:53.615720Z	2025-11-11T12:15:53.615720Z
ncsc-2025-0355	Kwetsbaarheden verholpen in Fortinet FortiOS en FortiProxy	2025-11-07T10:07:28.475542Z	2025-11-07T10:07:28.475542Z
ncsc-2025-0354	Kwetsbaarheid verholpen in Cisco Identity Services Engine	2025-11-06T12:36:51.591695Z	2025-11-06T12:36:51.591695Z
ncsc-2025-0353	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-11-04T15:03:48.630084Z	2025-11-04T15:03:48.630084Z
ncsc-2025-0352	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2025-11-04T12:53:15.358078Z	2025-11-04T12:53:15.358078Z

ID	Description	Published	Updated
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2025-11-17T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-750499	SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-726617	SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-711309	SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products	2023-09-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-698820	SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-687955	SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-682326	SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-631336	SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6	2022-06-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-552874	SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices	2022-12-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-522291	SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-514895	SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-365596	SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-339694	SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-322980	SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices	2023-04-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-301229	SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-267056	SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-225578	SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3	2022-07-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-216014	SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs	2025-03-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-201498	SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-194557	SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5	2025-01-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-876787	SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs	2024-10-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-722410	SSA-722410: Multiple Vulnerabilities in User Management Component (UMC)	2025-09-09T00:00:00Z	2025-10-14T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-10-14T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:22684	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-12-03T23:53:32+00:00	2025-12-05T03:40:59+00:00
rhsa-2025:22683	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-12-03T22:50:31+00:00	2025-12-05T03:40:59+00:00
rhsa-2025:22420	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.14 security, enhancement & bug fix update	2025-12-01T12:14:05+00:00	2025-12-05T03:40:59+00:00
rhsa-2025:22418	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15 security, enhancement & bug fix update	2025-12-01T12:10:52+00:00	2025-12-05T03:40:59+00:00
rhsa-2025:22416	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16 security, enhancement & bug fix update	2025-12-01T12:00:04+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:22415	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update	2025-12-01T11:59:39+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:21885	Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update	2025-11-20T19:56:52+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:21368	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-11-13T17:36:32+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:19961	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-11-10T01:30:28+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:19958	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-11-10T01:14:14+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:19335	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update	2025-10-30T12:58:23+00:00	2025-12-05T03:40:57+00:00
rhsa-2025:19332	Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update	2025-10-30T12:27:36+00:00	2025-12-05T03:40:57+00:00
rhba-2024:2413	Red Hat Bug Fix Advisory: glibc bug fix and enhancement update	2024-04-30T10:40:50+00:00	2025-12-05T01:20:09+00:00
rhsa-2025:9922	Red Hat Security Advisory: Streams for Apache Kafka 2.9.1 release and security update	2025-06-30T13:16:39+00:00	2025-12-05T00:52:49+00:00
rhsa-2025:9697	Red Hat Security Advisory: Red Hat Build of Apache Camel 4.10.3 for Spring Boot patch release.	2025-06-25T19:47:43+00:00	2025-12-05T00:52:49+00:00
rhsa-2025:9696	Red Hat Security Advisory: apache-commons-beanutils security update	2025-06-25T19:30:28+00:00	2025-12-05T00:52:49+00:00
rhsa-2025:9318	Red Hat Security Advisory: javapackages-tools:201801 security update	2025-06-23T03:38:42+00:00	2025-12-05T00:52:48+00:00
rhsa-2025:9166	Red Hat Security Advisory: apache-commons-beanutils security update	2025-06-17T09:07:56+00:00	2025-12-05T00:52:48+00:00
rhsa-2025:9117	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update	2025-06-16T15:03:56+00:00	2025-12-05T00:52:48+00:00
rhsa-2025:9115	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.22 security update	2025-06-16T15:03:42+00:00	2025-12-05T00:52:48+00:00
rhsa-2025:9114	Red Hat Security Advisory: apache-commons-beanutils security update	2025-06-16T14:55:14+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:8919	Red Hat Security Advisory: Red Hat Build of Apache Camel 4.10 for Quarkus 3.20 update is now available (RHBQ 3.20.1.SP1)	2025-06-11T15:34:10+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:8265	Red Hat Security Advisory: Red Hat build of Cryostat 4.0.1: new RHEL 9 container image security update	2025-06-05T02:19:45+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:3467	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.4.21 security update	2025-04-01T13:06:47+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:16668	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.12 on RHEL 7 security update	2025-09-25T00:09:06+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:15815	Red Hat Security Advisory: Red Hat Product OCP Tools 4.13 OpenShift Jenkins security update	2025-09-15T14:44:44+00:00	2025-12-05T00:52:47+00:00
rhsa-2025:16667	Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.3.15 security update	2025-09-25T00:09:21+00:00	2025-12-05T00:52:46+00:00
rhsa-2025:16409	Red Hat Security Advisory: Red Hat AMQ Broker 7.12.5 release and security update	2025-09-22T23:39:35+00:00	2025-12-05T00:52:46+00:00
rhsa-2025:15817	Red Hat Security Advisory: Red Hat Product OCP Tools 4.15 OpenShift Jenkins security update	2025-09-15T15:04:50+00:00	2025-12-05T00:52:46+00:00
rhsa-2025:15816	Red Hat Security Advisory: Red Hat Product OCP Tools 4.14 OpenShift Jenkins security update	2025-09-15T15:05:00+00:00	2025-12-05T00:52:46+00:00

ID	Description	Published	Updated
icsa-25-338-07	Advantech iView	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-06	SolisCloud Monitoring Platform	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-05	Sunbird DCIM dcTrack and Power IQ	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-04	Johnson Controls iSTAR	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-03	Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-02	MAXHUB Pivot	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-01	Mitsubishi Electric GX Works2	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-219-02	Johnson Controls FX Server, FX80 and FX90 (Update A)	2025-08-07T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-148-03	Consilium Safety CS5000 Fire Panel (Update A)	2025-05-29T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsma-25-336-01	Mirion Medical EC2 Software NMIS BioDose	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-02	Iskra iHUB and iHUB Lite	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-01	Industrial Video & Control Longwatch	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-205-01	Mitsubishi Electric CNC Series (Update A)	2025-07-24T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-23-157-02	Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C)	2023-06-06T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-329-06	SiRcom SMART Alert (SiSA)	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-05	Festo Compact Vision System, Control Block, Controller, and Operator Unit products	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-03	Zenitel TCIV-3+	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-02	Rockwell Automation Arena Simulation	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-22-333-05	Mitsubishi Electric FA Engineering Software (Update C)	2022-12-05T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-04	Opto 22 groov View	2025-11-25T06:00:00.000000Z	2025-11-25T06:00:00.000000Z
icsa-25-324-06	Emerson Appleton UPSMON-PRO	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-01	Automated Logic WebCTRL Premium Server	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-03	Opto 22 GRV-EPIC and groov RIO	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-324-02	ICAM365 CCTV Camera Multiple Models	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-322-05	METZ CONNECT EWIO2	2025-11-18T12:00:00.000000Z	2025-11-18T12:00:00.000000Z
icsa-25-322-03	Shelly Pro 3EM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-322-02	Shelly Pro 4PM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-317-12	Siemens Spectrum Power 4	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-11	Siemens SICAM P850 family and SICAM P855 family	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-04T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00

ID	Description	Published	Updated
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
SCA-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z

ID	Description	Published	Updated
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2025-66031	node-forge ASN.1 Unbounded Recursion	2025-11-02T00:00:00.000Z	2025-12-04T14:36:01.000Z
msrc_cve-2025-66030	node-forge ASN.1 OID Integer Truncation	2025-11-02T00:00:00.000Z	2025-12-04T14:35:55.000Z
msrc_cve-2025-12816	CVE-2025-12816	2025-11-02T00:00:00.000Z	2025-12-04T14:35:48.000Z
msrc_cve-2025-12977	CVE-2025-12977	2025-11-02T00:00:00.000Z	2025-12-04T14:35:42.000Z
msrc_cve-2025-12969	CVE-2025-12969	2025-11-02T00:00:00.000Z	2025-12-04T14:35:35.000Z
msrc_cve-2025-39829	trace/fgraph: Fix the warning caused by missing unregister notifier	2025-09-02T00:00:00.000Z	2025-12-04T01:01:45.000Z
msrc_cve-2025-39810	bnxt_en: Fix memory corruption when FW resources change during ifdown	2025-09-02T00:00:00.000Z	2025-12-04T01:01:40.000Z
msrc_cve-2023-53292	blk-mq: fix NULL dereference on q->elevator in blk_mq_elv_switch_none	2025-09-02T00:00:00.000Z	2025-12-04T01:01:35.000Z
msrc_cve-2023-53261	coresight: Fix memory leak in acpi_buffer->pointer	2025-09-02T00:00:00.000Z	2025-12-04T01:01:30.000Z
msrc_cve-2022-50266	kprobes: Fix check for probe enabled in kill_kprobe()	2025-09-02T00:00:00.000Z	2025-12-04T01:01:24.000Z
msrc_cve-2025-11494	GNU Binutils Linker elfxx-x86.c _bfd_x86_elf_late_size_sections out-of-bounds	2025-10-02T00:00:00.000Z	2025-12-03T01:39:19.000Z
msrc_cve-2025-4953	Podman: build context bind mount	2025-09-02T00:00:00.000Z	2025-12-03T01:39:03.000Z
msrc_cve-2025-38626	f2fs: fix to trigger foreground gc during f2fs_map_blocks() in lfs mode	2025-08-02T00:00:00.000Z	2025-12-03T01:38:53.000Z
msrc_cve-2025-38615	fs/ntfs3: cancle set bad inode after removing name fails	2025-08-02T00:00:00.000Z	2025-12-03T01:38:48.000Z
msrc_cve-2025-38597	drm/rockchip: vop2: fail cleanly if missing a primary plane for a video-port	2025-08-02T00:00:00.000Z	2025-12-03T01:38:43.000Z
msrc_cve-2025-38659	gfs2: No more self recovery	2025-08-02T00:00:00.000Z	2025-12-03T01:38:39.000Z
msrc_cve-2025-64506	LIBPNG is vulnerable to a heap buffer over-read in `png_write_image_8bit` with grayscale+alpha or RGB/RGBA images	2025-11-02T00:00:00.000Z	2025-12-03T01:38:33.000Z
msrc_cve-2025-64505	LIBPNG is vulnerable to a heap buffer overflow in `png_do_quantize` via malformed palette index	2025-11-02T00:00:00.000Z	2025-12-03T01:38:21.000Z
msrc_cve-2025-39781	parisc: Drop WARN_ON_ONCE() from flush_cache_vmap	2025-09-02T00:00:00.000Z	2025-12-03T01:38:04.000Z
msrc_cve-2025-39753	gfs2: Set .migrate_folio in gfs2_{rgrp,meta}_aops	2025-09-02T00:00:00.000Z	2025-12-03T01:37:58.000Z
msrc_cve-2025-39745	rcutorture: Fix rcutorture_one_extend_check() splat in RT kernels	2025-09-02T00:00:00.000Z	2025-12-03T01:37:53.000Z
msrc_cve-2025-39732	wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:48.000Z
msrc_cve-2025-39726	s390/ism: fix concurrency management in ism_cmd()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:43.000Z
msrc_cve-2025-39720	ksmbd: fix refcount leak causing resource not released	2025-09-02T00:00:00.000Z	2025-12-03T01:37:38.000Z
msrc_cve-2025-38716	hfs: fix general protection fault in hfs_find_init()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:33.000Z
msrc_cve-2025-38710	gfs2: Validate i_depth for exhash directories	2025-09-02T00:00:00.000Z	2025-12-03T01:37:29.000Z
msrc_cve-2025-38692	exfat: add cluster chain loop check for dir	2025-09-02T00:00:00.000Z	2025-12-03T01:37:24.000Z
msrc_cve-2022-50236	iommu/mediatek: Fix crash on isr after kexec()	2025-09-02T00:00:00.000Z	2025-12-03T01:37:19.000Z
msrc_cve-2025-11932	Timing Side-Channel in PSK Binder Verification	2025-11-02T00:00:00.000Z	2025-12-03T01:37:14.000Z
msrc_cve-2025-12889	TLS 1.2 Client Can Downgrade Digest Used	2025-11-02T00:00:00.000Z	2025-12-03T01:37:06.000Z

ID	Description	Published	Updated
9akk108471a8107	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-09-16T00:30:00.000Z	2025-11-28T08:00:00.000Z
4hzm000603	ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC)	2025-11-27T00:30:00.000Z	2025-11-28T00:30:00.000Z
7paa022088	Edgenius Management Portal Authentication Bypass	2025-11-20T00:30:00.000Z	2025-11-20T00:30:00.000Z
2nga002813	PCM600 SharpZip library vulnerability	2025-11-03T00:30:00.000Z	2025-11-03T00:30:00.000Z
4tz00000006007	ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations	2025-10-20T00:30:00.000Z	2025-10-23T00:30:00.000Z
9akk108471a8948	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-10-20T00:30:00.000Z	2025-10-21T00:30:00.000Z
3kxg200000r4801	CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability	2025-04-16T00:30:00.000Z	2025-10-20T00:30:00.000Z
sa25p003	B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-14T00:30:00.000Z
4tz00000006008	LVS MConfig Insecure memory handling	2025-10-08T00:30:00.000Z	2025-10-08T00:30:00.000Z
sa25p002	B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7808	EIBPORT Reflected XSS	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7121	FLXeon Controllers Multiple vulnerabilities	2025-09-09T00:30:00.000Z	2025-09-18T00:30:00.000Z
9akk108471a4462	ELSB/BLBA ASPECT advisory several CVEs	2025-08-11T00:30:00.000Z	2025-09-04T00:30:00.000Z
9akk108471a3623	RMC - 100 Vulnerabilities in web UI (REST Interface)	2025-07-03T00:30:00.000Z	2025-08-18T00:30:00.000Z
2nga002743	ABB AbilityTM zenon Remote Transport Vulnerability	2025-08-12T00:30:00.000Z	2025-08-12T00:30:00.000Z
3adr011407	ABB Automation Builder Vulnerabilities in user management and access control	2025-04-30T00:00:00.000Z	2025-07-25T00:00:00.000Z
3adr011432	AC500 V2 Buffer overread on Modbus protocol	2025-07-23T00:30:00.000Z	2025-07-23T00:30:00.000Z
9akk108471a4556	Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode.	2025-07-21T00:30:00.000Z	2025-07-21T00:30:00.000Z
2crt000008	Lite Panel Pro Vulnerability in Session Management	2025-06-26T00:30:00.000Z	2025-06-26T00:30:00.000Z
9akk108470a8948	ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway.	2025-05-29T00:30:00.000Z	2025-06-05T00:30:00.000Z
9akk108471a1621	EIBPORT Session Management Fail	2025-06-02T00:30:00.000Z	2025-06-04T00:30:00.000Z
9akk108471a0021	ELSB/BLBA ASPECT advisory several CVEs	2025-05-22T00:30:00.000Z	2025-05-23T10:30:00.000Z
2crt000006	ANC – ABB Network Card Multiple vulnerabilities in ANC	2025-04-30T00:30:00.000Z	2025-04-30T00:30:00.000Z
2crt000007	Ekip Com IEC61850 Vulnerability in 3rd Party Library	2025-04-29T00:30:00.000Z	2025-04-29T00:30:00.000Z
9akk108470a9989	ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities	2025-04-10T08:30:00.000Z	2025-04-10T08:30:00.000Z
2nga002579	ABB Arctic communication solution ARM600 Vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
2nga002427	ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
9akk108470a9494	Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
9akk108470a9491	ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
sa24p015	B&R APROL Potential Privilege Escalation and Information Disclosure	2025-03-24T00:30:00.000Z	2025-03-24T00:30:00.000Z

ID	Description	Updated
var-202407-2188	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:32.699000Z
var-202406-3119	Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s…	2024-07-23T22:46:22.685000Z
var-202407-1740	NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha…	2024-07-23T22:46:18.378000Z
var-202407-1417	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:07.784000Z
var-202407-1103	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:01.992000Z
var-202407-0957	WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile…	2024-07-23T22:45:59.391000Z
var-202407-0819	SIMATIC S7-1500 is a modular control system suitable for various automation applications …	2024-07-23T22:45:56.958000Z
var-202407-0818	NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6…	2024-07-23T22:45:56.946000Z
var-202407-0779	Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of …	2024-07-23T22:45:56.150000Z
var-202407-0778	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:56.131000Z
var-202407-0745	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:55.498000Z
var-202305-1479	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution …	2024-07-23T22:45:09.335000Z
var-202108-1158	A race condition was addressed with improved locking. This issue is fixed in macOS Monter…	2024-07-23T22:44:06.976000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-07-23T22:43:49.590000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-07-23T22:43:25.614000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-07-23T22:41:43.584000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-07-23T22:41:20.004000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-07-23T22:41:18.832000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-07-23T22:41:17.171000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-07-23T22:41:16.554000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-07-23T22:41:04.279000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-07-23T22:40:53.160000Z
var-202305-1588	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit…	2024-07-23T22:40:05.297000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-07-23T22:39:32.535000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-07-23T22:39:32.874000Z
var-201706-0017	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie…	2024-07-23T22:38:34.494000Z
var-202305-1520	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul…	2024-07-23T22:38:26.576000Z
var-202407-0490	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP …	2024-07-23T22:38:24.768000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-07-23T22:37:44.850000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-07-23T22:37:43.471000Z

ID	Description	Published	Updated
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-11-21T15:31+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00
jvndb-2025-000099	Progress Flowmon vulnerable to authenticated OS command injection	2025-11-04T12:47+09:00	2025-11-04T12:47+09:00
jvndb-2025-000096	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	2025-10-29T14:17+09:00	2025-10-29T14:17+09:00
jvndb-2025-000095	MZK-DP300N uses hard-coded credentials	2025-10-28T14:04+09:00	2025-10-28T14:04+09:00
jvndb-2025-014793	NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference	2025-10-01T11:35+09:00	2025-10-27T12:28+09:00
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000091	I-O DATA NarSuS App registers a Windows service with an unquoted file path	2025-10-22T15:04+09:00	2025-10-22T15:04+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00
jvndb-2025-000074	Multiple vulnerabilities in desknet's NEO	2025-10-16T17:30+09:00	2025-10-16T17:30+09:00

ID	Description	Updated
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00
ts-2023-001	TS-2023-001	2023-01-17T00:00

ID	Description	Published	Updated
suse-su-2025:4315-1	Security update for the Linux Kernel	2025-12-01T10:12:39Z	2025-12-01T10:12:39Z
suse-su-2025:4313-1	Security update for python	2025-12-01T09:29:19Z	2025-12-01T09:29:19Z
suse-su-2025:4311-1	Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)	2025-11-28T16:33:27Z	2025-11-28T16:33:27Z
suse-su-2025:4310-1	Security update for libcryptopp	2025-11-28T15:54:32Z	2025-11-28T15:54:32Z
suse-su-2025:4309-1	Security update for curl	2025-11-28T15:40:02Z	2025-11-28T15:40:02Z
suse-su-2025:4308-1	Security update for glib2	2025-11-28T15:38:47Z	2025-11-28T15:38:47Z
suse-su-2025:4306-1	Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)	2025-11-28T14:03:42Z	2025-11-28T14:03:42Z
suse-su-2025:4305-1	Security update for grub2	2025-11-28T13:33:43Z	2025-11-28T13:33:43Z
suse-su-2025:4302-1	Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7)	2025-11-28T13:04:17Z	2025-11-28T13:04:17Z
suse-su-2025:4301-1	Security update for the Linux Kernel	2025-11-28T12:59:04Z	2025-11-28T12:59:04Z
suse-su-2025:4300-1	Security update for curl	2025-11-28T12:57:53Z	2025-11-28T12:57:53Z
suse-su-2025:4297-1	Security update for python311	2025-11-28T10:03:21Z	2025-11-28T10:03:21Z
suse-su-2025:4291-1	Security update for libmicrohttpd	2025-11-28T09:06:47Z	2025-11-28T09:06:47Z
suse-su-2025:4290-1	Security update for cups	2025-11-28T09:04:34Z	2025-11-28T09:04:34Z
suse-su-2025:4289-1	Security update for cups	2025-11-28T08:50:37Z	2025-11-28T08:50:37Z
suse-su-2025:4288-1	Security update for containerd	2025-11-28T08:25:49Z	2025-11-28T08:25:49Z
suse-su-2025:4287-1	Security update for java-25-openjdk	2025-11-28T08:23:45Z	2025-11-28T08:23:45Z
suse-su-2025:4285-1	Security update for the Linux Kernel (Live Patch 62 for SUSE Linux Enterprise 15 SP3)	2025-11-27T22:34:36Z	2025-11-27T22:34:36Z
suse-su-2025:4283-1	Security update for the Linux Kernel (Live Patch 21 for SUSE Linux Enterprise 15 SP5)	2025-11-27T19:04:00Z	2025-11-27T19:04:00Z
suse-su-2025:4282-1	Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise 15 SP6)	2025-11-27T16:34:16Z	2025-11-27T16:34:16Z
suse-su-2025:4281-1	Security update for the Linux Kernel (Live Patch 43 for SUSE Linux Enterprise 15 SP4)	2025-11-27T15:04:07Z	2025-11-27T15:04:07Z
suse-su-2025:4278-1	Security update for glib2	2025-11-27T13:13:51Z	2025-11-27T13:13:51Z
suse-su-2025:4277-1	Security update for python313	2025-11-27T13:13:43Z	2025-11-27T13:13:43Z
suse-su-2025:21082-1	Security update for libvirt	2025-11-27T10:24:18Z	2025-11-27T10:24:18Z
suse-su-2025:4275-1	Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6)	2025-11-27T10:04:14Z	2025-11-27T10:04:14Z
suse-su-2025:4274-1	Security update for buildah	2025-11-27T08:13:05Z	2025-11-27T08:13:05Z
suse-su-2025:4273-1	Security update for rubygem-rack	2025-11-27T08:12:25Z	2025-11-27T08:12:25Z
suse-su-2025:4272-1	Security update for gnutls	2025-11-27T08:11:48Z	2025-11-27T08:11:48Z
suse-su-2025:4271-1	Security update for gnutls	2025-11-27T08:11:37Z	2025-11-27T08:11:37Z
suse-su-2025:4269-1	Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise 15 SP6)	2025-11-26T21:10:56Z	2025-11-26T21:10:56Z

ID	Description	Published	Updated
opensuse-su-2025-20133-1	Security update for python-cbor2	2025-12-02T13:51:41Z	2025-12-02T13:51:41Z
opensuse-su-2025:15792-1	python39-3.9.24-2.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15791-1	python315-3.15.0~a1-2.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15790-1	python-mistralclient-doc-6.1.0-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15789-1	libecpg6-18.1-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15788-1	lightdm-kde-greeter-6.0.5-1.1 on GA media	2025-12-01T00:00:00Z	2025-12-01T00:00:00Z
opensuse-su-2025:15787-1	python311-salt-3006.0-52.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15786-1	postgresql17-17.7-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15785-1	postgresql16-16.11-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15784-1	postgresql15-15.15-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15783-1	postgresql14-14.20-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15782-1	postgresql13-13.23-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15781-1	libpng16-16-1.6.51-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15780-1	libcoap-devel-4.3.5a-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025:15779-1	helm3-3.19.2-1.1 on GA media	2025-11-28T00:00:00Z	2025-11-28T00:00:00Z
opensuse-su-2025-20113-1	Security update for dovecot24	2025-11-27T20:17:17Z	2025-11-27T20:17:17Z
opensuse-su-2025-20114-1	Security update for himmelblau	2025-11-27T20:16:29Z	2025-11-27T20:16:29Z
opensuse-su-2025-20121-1	Security update for redis	2025-11-27T15:53:18Z	2025-11-27T15:53:18Z
opensuse-su-2025-20106-1	Security update for tomcat11	2025-11-27T15:43:26Z	2025-11-27T15:43:26Z
opensuse-su-2025-20116-1	Security update for rnp	2025-11-27T12:39:03Z	2025-11-27T12:39:03Z
opensuse-su-2025-20118-1	Security update for gitea-tea	2025-11-27T12:30:27Z	2025-11-27T12:30:27Z
opensuse-su-2025-20119-1	Security update for tcpreplay	2025-11-27T12:29:40Z	2025-11-27T12:29:40Z
opensuse-su-2025-20115-1	Security update for pnpm	2025-11-27T12:28:46Z	2025-11-27T12:28:46Z
opensuse-su-2025-20117-1	Security update for trivy	2025-11-27T12:27:44Z	2025-11-27T12:27:44Z
opensuse-su-2025-20100-1	Security update for libvirt	2025-11-27T10:23:20Z	2025-11-27T10:23:20Z
opensuse-su-2025-20099-1	Security update for xwayland	2025-11-27T10:11:16Z	2025-11-27T10:11:16Z
opensuse-su-2025:15778-1	libwireshark19-4.6.1-2.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15777-1	python311-spotipy-2.25.2-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15776-1	python311-pypdf-6.4.0-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15775-1	opa-1.11.0-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z

ID	Description	Published	Updated
cnvd-2025-29585	Apartment Management System addfair.php文件SQL注入漏洞	2025-08-26	2025-11-28
cnvd-2025-29584	Apartment Management System add_bill.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29583	Apartment Management System addunit.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29582	Apartment Management System add_owner_utility.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29581	Apartment Management System addowner.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29580	Apartment Management System add_m_committee.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29579	Apartment Management System add_maintenance_cost.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29578	Apartment Management System add_fund.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29577	Apartment Management System addfloor.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29576	Apartment Management System addemployee.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29572	Apartment Management System addcomplain.php文件SQL注入漏洞	2025-08-28	2025-11-28
cnvd-2025-29571	Apartment Management System visitor_info.php文件SQL注入漏洞	2025-08-29	2025-11-28
cnvd-2025-29570	Apartment Management System rented_info.php文件SQL注入漏洞	2025-08-29	2025-11-28
cnvd-2025-29569	Apartment Management System fair_info_all.php文件SQL注入漏洞	2025-08-29	2025-11-28
cnvd-2025-29568	Apartment Management System addvisitor.php文件SQL注入漏洞	2025-08-29	2025-11-28
cnvd-2025-29567	Apartment Management System addbranch.php文件SQL注入漏洞	2025-08-29	2025-11-28
cnvd-2025-29566	Apartment Management System unit_status_info.php文件SQL注入漏洞	2025-08-31	2025-11-28
cnvd-2025-29560	Google Chrome权限实现不当漏洞（CNVD-2025-29560）	2025-11-12	2025-11-28
cnvd-2025-29559	Google Chrome权限实现不当漏洞	2025-11-12	2025-11-28
cnvd-2025-29558	Sports Management System match.php文件SQL注入漏洞	2025-08-20	2025-11-28
cnvd-2025-29557	Sports Management System sports.php文件SQL注入漏洞	2025-08-26	2025-11-28
cnvd-2025-29556	Sports Management System /login.php文件SQL注入漏洞	2025-09-01	2025-11-28
cnvd-2025-29555	Sports Management System tournament_details.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29554	Sports Management System sporttype.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29553	Sports Management System resultdetails.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29552	Sports Management System mode.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29551	Sports Management System gametype.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29550	Sports Management System facilitator.php文件SQL注入漏洞	2025-09-04	2025-11-28
cnvd-2025-29508	WordPress BrightTALK Shortcode plugin跨站脚本漏洞	2025-11-25	2025-11-28
cnvd-2025-29507	WordPress Booking Calendar Contact Form Plugin缺少授权漏洞	2025-11-25	2025-11-28

ID	Description	Published	Updated
certfr-2025-avi-1064	Multiples vulnérabilités dans les produits Microsoft	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1063	Multiples vulnérabilités dans les produits Splunk	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1062	Multiples vulnérabilités dans Wireshark	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1061	Vulnérabilité dans PostgreSQL PgBouncer	2025-12-04T00:00:00.000000	2025-12-04T00:00:00.000000
certfr-2025-avi-1060	Multiples vulnérabilités dans Python	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1059	Multiples vulnérabilités dans Google Pixel	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1058	Multiples vulnérabilités dans Google Chrome	2025-12-03T00:00:00.000000	2025-12-03T00:00:00.000000
certfr-2025-avi-1057	Multiples vulnérabilités dans les produits VMware	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
certfr-2025-avi-1056	Multiples vulnérabilités dans Google Android	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
CERTFR-2025-AVI-1057	Multiples vulnérabilités dans les produits VMware	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
CERTFR-2025-AVI-1056	Multiples vulnérabilités dans Google Android	2025-12-02T00:00:00.000000	2025-12-02T00:00:00.000000
certfr-2025-avi-1055	Multiples vulnérabilités dans Zabbix	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-1054	Multiples vulnérabilités dans les produits VMware	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-1053	Vulnérabilité dans Stormshield Network VPN Client	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-1052	Vulnérabilité dans Mattermost Server	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-0936	Multiples vulnérabilités dans Mattermost Server	2025-10-29T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-1055	Multiples vulnérabilités dans Zabbix	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-1054	Multiples vulnérabilités dans les produits VMware	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-1053	Vulnérabilité dans Stormshield Network VPN Client	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-1052	Vulnérabilité dans Mattermost Server	2025-12-01T00:00:00.000000	2025-12-01T00:00:00.000000
CERTFR-2025-AVI-0936	Multiples vulnérabilités dans Mattermost Server	2025-10-29T00:00:00.000000	2025-12-01T00:00:00.000000
certfr-2025-avi-1051	Multiples vulnérabilités dans les produits IBM	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1050	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1049	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1048	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1047	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1046	Multiples vulnérabilités dans les produits Moxa	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
certfr-2025-avi-1045	Vulnérabilité dans MISP	2025-11-27T00:00:00.000000	2025-11-28T00:00:00.000000
CERTFR-2025-AVI-1051	Multiples vulnérabilités dans les produits IBM	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000
CERTFR-2025-AVI-1050	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-11-28T00:00:00.000000	2025-11-28T00:00:00.000000

ID	Description	Published	Updated
certfr-2025-ale-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
certfr-2025-ale-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
certfr-2025-ale-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
certfr-2025-ale-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
certfr-2025-ale-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
CERTFR-2025-ALE-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
CERTFR-2025-ALE-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
certfr-2025-ale-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
certfr-2025-ale-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
certfr-2025-ale-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
CERTFR-2025-ALE-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2025-ale-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
certfr-2025-ale-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-ALE-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
CERTFR-2025-ALE-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
certfr-2024-ale-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
certfr-2024-ale-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000
CERTFR-2024-ALE-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
CERTFR-2024-ALE-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2025-0032	10 (4.0)	The default configuration of WatchGuard Firebox device…	watchguard	firebox	2025-12-03T16:25:00.000Z	2025-12-03T16:27:36.683434Z
GCVE-1-2025-0031	6.3 (4.0)	A cross-site scripting (XSS) vulnerability was identif…	misp	misp	2025-12-03T10:58:19.835041Z	2025-12-03T10:58:19.835041Z
GCVE-1-2025-0030	6.2 (4.0)	A cross-site scripting (XSS) vulnerability in the MISP…	misp	misp	2025-12-03T10:53:00.000Z	2025-12-03T10:58:55.845341Z
GCVE-1-2025-0019	4 (4.0)	Path traversal vulnerability in EventReport for site-admin	misp	misp	2025-11-26T14:47:00.000Z	2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017	9.4 (4.0)	Privilege escalation in Cerebrate allows an authentica…	cerebrate	cerebrate	2025-11-12T08:15:00.000Z	2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029	6.3 (4.0)	Reflected cross-site scripting (XSS) vulnerabilities i…	misp	misp	2025-11-27T12:41:00.000Z	2025-11-27T12:48:51.085860Z
GCVE-1-2025-0027	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-27T07:17:00.000Z	2025-12-02T08:51:04.323899Z
GCVE-1-2025-0028	8.5 (4.0)	Information leakage vulnerability in the MISP Feed con…	misp	misp	2025-11-27T07:23:00.000Z	2025-12-02T08:51:35.429494Z
GCVE-1-2025-0026	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:35:00.000Z	2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:27:00.000Z	2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024	9.4 (4.0)	cross-site scripting (XSS) vulnerability in the MISP s…	misp	misp	2025-11-26T16:14:00.000Z	2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023	9.4 (4.0)	XSS in MISP server comparison tool	misp	misp	2025-11-26T16:10:00.000Z	2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022	9.4 (4.0)	Clarified setting's impact on download_attachments_on_load	misp	misp	2025-11-26T16:04:00.000Z	2025-12-02T08:49:04.510294Z
GCVE-1-2025-0021	9.4 (4.0)	XSS in MISP ReST client in HTML view	misp	misp	2025-11-26T15:55:00.000Z	2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020	9.4 (4.0)	cross-site scripting (XSS) in Galaxy element JSON view	misp	misp	2025-11-26T15:49:00.000Z	2025-12-02T08:47:41.151429Z
GCVE-1-2025-0018	9.4 (4.0)	HTML injection issue was identified in Lookyloo’s web …	lookyloo	lookyloo	2025-11-18T15:33:00.000Z	2025-11-18T20:39:45.579295Z
GCVE-1-2025-0016	6 (4.0)	Local file inclusion in [ImportFromUrl() URL hand…	misp	misp	2025-11-04T09:20:00.000Z	2025-11-04T09:56:38.383646Z
GCVE-1-2025-0015	9 (4.0)	Potential XSS in decaying simulation tool	misp	misp	2025-11-04T09:06:00.000Z	2025-11-04T09:06:59.216121Z
GCVE-1-2025-0014	9.4 (4.0)	XSS in event report via Mermaid diagram	misp	misp	2025-11-04T08:58:00.024516Z	2025-11-04T08:58:00.024516Z
GCVE-1-2025-0013	9.4 (4.0)	Vulnerability in sharing group blueprints allowing sha…	misp	misp	2025-11-04T08:49:21.558087Z	2025-11-04T08:49:21.558087Z
GCVE-1-2025-0012	N/A	Potential vulnerability in file check upload but non-e…	misp	misp	2025-11-04T07:20:00.000Z	2025-11-28T07:16:21.589449Z
GCVE-1-2025-0011	9.4 (4.0)	Arbitrary file inclusion / deletion via import modules…	misp	misp	2025-11-04T07:01:25.464225Z	2025-11-04T07:01:25.464225Z
GCVE-1-2025-0010	6.3 (4.0)	Arbitrary file hash inclusion via templates accessible…	misp	misp	2025-11-04T06:25:11.108987Z	2025-11-04T06:25:11.108987Z
GCVE-1-2025-0009	6.4 (4.0)	A pre-auth user could self-assign a reporter without b…	CIRCL	vulnerability-lookup	2025-10-13T09:20:24.800890Z	2025-10-13T09:20:24.800890Z
GCVE-1-2025-0008	7 (4.0)	Logged users can view vulnerability disclosure comment…	CIRCL	vulnerability-lookup	2025-10-13T09:10:00.000Z	2025-10-13T09:15:31.637686Z
GCVE-1-2025-0007	4.5 (4.0)	Missing email validation on user management	CIRCL	vulnerability-lookup	2025-10-13T08:37:00.000Z	2025-10-13T08:51:37.408861Z
GCVE-1-2025-0006	9.3 (4.0)	Potential XSS in admin CPE in organization model	CIRCL	vulnerability-lookup	2025-10-13T08:29:00.000Z	2025-10-13T08:52:23.411325Z
GCVE-1-2025-0005	9.4 (4.0)	Reflected XSS due to insecure use of Markup	CIRCL	vulnerability-lookup	2025-10-13T08:23:29.812914Z	2025-10-13T08:23:29.812914Z

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	9.1 (3.1)	HexStrike AI MCP Server Command Injection	0x4m4	HexStrike AI	2025-11-30T21:27:56.057Z	2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100	6.5 (3.1)	Abilis CPX Fallback Shell Connection Relay	Abilis	CPX	2025-11-04T00:23:23.924Z	2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z