Recent vulnerabilities

ID	Description	Published	Updated
ghsa-4p46-pwfr-66x6	Some AES functions may panic when overflow checking is enabled in ring	2025-03-07T16:23:50Z	2025-12-29T21:37:23Z
ghsa-c86p-w88r-qvqr	Duplicate Advisory: ring has some AES functions that may panic when overflow checking is enabled in	2025-05-09T18:30:38Z	2025-12-29T21:36:51Z
ghsa-vvxf-wj5w-6gj5	hemmelig allows SSRF Filter bypass via Secret Request functionality	2025-12-29T21:31:04Z	2025-12-29T21:31:04Z
ghsa-m3w5-5pmv-9m9q	A vulnerability was determined in SohuTV CacheCloud up to 3.2.0. Affected is the function doQuartzL…	2025-12-29T21:30:25Z	2025-12-29T21:30:26Z
ghsa-g3j9-h256-3c38	A vulnerability was identified in code-projects Student File Management System 1.0. Affected by thi…	2025-12-29T21:30:26Z	2025-12-29T21:30:26Z
ghsa-wgr2-qr2w-94qw	givanz VvvebJs 1.7.2 suffers from a File Upload vulnerability via save.php.	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-w5v4-r6mh-235c	A vulnerability in the SSH server of TP-Link TL-WR820N v2.80 allows the use of a weak cryptographic…	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-w2wc-5vr8-f58p	A vulnerability has been found in SohuTV CacheCloud up to 3.2.0. This affects the function taskQueu…	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-q38m-7hwc-v39w	DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/d…	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-frgf-2qjw-vqvw	A stack-based buffer overflow exists in the GoAhead-Webs HTTP daemon on KuWFi 4G LTE AC900 devices …	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-cj98-23mv-wprf	givanz VvvebJs 1.7.2 is vulnerable to Directory Traversal via scan.php.	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-c28f-cg8m-7xv9	A vulnerability was found in SohuTV CacheCloud up to 3.2.0. This impacts the function index of the …	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-5r6q-cg35-jr9q	A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side…	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-2rqx-6v8j-7xmq	givanz VvvebJs 1.7.2 is vulnerable to Insecure File Upload.	2025-12-29T21:30:25Z	2025-12-29T21:30:25Z
ghsa-x6h4-24w5-wf3q	A security vulnerability has been detected in code-projects College Notes Uploading System 1.0. Imp…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-r87x-jm9x-rwc9	The PixelYourSite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versi…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-r2fc-j4gv-f88r	The Advanced Ads plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-pmf7-wfpv-2m87	A flaw has been found in SohuTV CacheCloud up to 3.2.0. The impacted element is the function redire…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-pj23-86ww-f72p	In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where o…	2025-12-28T18:30:26Z	2025-12-29T21:30:24Z
ghsa-mwfx-853j-whj2	NagiosXI 2026R1.0.1 build 1762361101 is vulnerable to Directory Traversal in /admin/coreconfigsnaps…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-fh4j-chp9-mvg5	Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers tha…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-c2fm-8hf4-2g8g	A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. The affected element is the function…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-2wcx-prwg-mc24	In NagiosXI 2026R1.0.1 build 1762361101, Dashboard parameters lack proper filtering, allowing any a…	2025-12-29T21:30:24Z	2025-12-29T21:30:24Z
ghsa-43h9-hc38-qph5	SQLE's JWT Secret Handler can be manipulated to use hard-coded cryptographic key	2025-12-27T15:30:17Z	2025-12-29T20:36:20Z
ghsa-3329-ghmp-jmv5	Picklescan is vulnerable to RCE through missing detection when calling numpy.f2py.crackfortran.myeval	2025-12-29T20:04:09Z	2025-12-29T20:04:09Z
ghsa-x843-g5mx-g377	Picklescan is vulnerable to RCE through missing detection when calling built-in python operator.met…	2025-12-29T20:03:30Z	2025-12-29T20:03:30Z
ghsa-95fv-5gfj-2r84	Withdrawn Advisory: Emby Server API Vulnerability allowing to gain administrative access without pr…	2025-12-08T16:25:53Z	2025-12-29T19:43:24Z
ghsa-x23q-75qm-3p39	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-w7vq-ff8g-w2pj	Missing Authorization vulnerability in Plugin Optimizer allows Exploiting Incorrectly Configured Ac…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-w7q9-f5xc-px27	Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-7195	5.2 (v3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2025-12-29T22:05:10.726Z
cve-2025-14847	8.7 (v4.0) 7.5 (v3.1)	Zlib compressed protocol header length confusion may a…	MongoDB Inc.	MongoDB Server	2025-12-19T11:00:22.465Z	2025-12-29T22:04:07.526Z
cve-2025-15207		Campcodes Supplier Management System view_products.php…	Campcodes	Supplier Management System	2025-12-29T22:02:06.250Z	2025-12-29T22:02:06.250Z
cve-2025-15206		Campcodes Supplier Management System add_area.php sql …	Campcodes	Supplier Management System	2025-12-29T21:32:07.186Z	2025-12-29T21:32:07.186Z
cve-2025-15084		youlaitech youlai-mall Order Payment OrderController.j…	youlaitech	youlai-mall	2025-12-25T18:32:05.729Z	2025-12-29T21:29:17.869Z
cve-2025-15085		youlaitech youlai-mall Balance MemberController.java d…	youlaitech	youlai-mall	2025-12-25T19:32:08.203Z	2025-12-29T21:28:29.460Z
cve-2025-15144		dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg c…	dayrui	XunRuiCMS	2025-12-28T16:32:07.116Z	2025-12-29T21:27:18.449Z
cve-2025-15145		SohuTV CacheCloud TotalManageController.java doTotalLi…	SohuTV	CacheCloud	2025-12-28T17:02:05.970Z	2025-12-29T21:26:55.456Z
cve-2025-15146		SohuTV CacheCloud UserManageController.java doUserList…	SohuTV	CacheCloud	2025-12-28T17:32:06.551Z	2025-12-29T21:25:59.423Z
cve-2025-15148		CmsEasy Backend Template Management template_admin.php…	n/a	CmsEasy	2025-12-28T18:02:08.178Z	2025-12-29T21:22:26.770Z
cve-2025-15149		rawchen ecms Add New Product updateProductServlet.java…	rawchen	ecms	2025-12-28T18:32:06.054Z	2025-12-29T21:17:12.684Z
cve-2025-68502	4.3 (v3.1)	WordPress JetPopup plugin <= 2.0.20.1 - Insecure Direc…	Crocoblock	JetPopup	2025-12-29T21:16:55.539Z	2025-12-29T21:16:55.539Z
cve-2025-68503	6.5 (v3.1)	WordPress JetBlog plugin <= 2.4.7 - Broken Access Cont…	Crocoblock	JetBlog	2025-12-29T21:15:43.312Z	2025-12-29T21:15:43.312Z
cve-2025-68504	6.5 (v3.1)	WordPress JetSearch plugin <= 3.5.16 - Cross Site Scri…	Crocoblock	JetSearch	2025-12-29T21:14:40.576Z	2025-12-29T21:14:40.576Z
cve-2025-15161		Tenda WH450 PPTPUserSetting stack-based overflow	Tenda	WH450	2025-12-28T23:02:08.101Z	2025-12-29T21:13:48.407Z
cve-2025-68562	9.9 (v3.1)	WordPress MapSVG plugin <= 8.7.3 - Arbitrary File Uplo…	RomanCode	MapSVG	2025-12-29T21:13:24.913Z	2025-12-29T21:13:24.913Z
cve-2025-68607	6.5 (v3.1)	WordPress Custom Field Template plugin <= 2.7.5 - Cros…	Hiroaki Miyashita	Custom Field Template	2025-12-29T21:10:50.618Z	2025-12-29T21:10:50.618Z
cve-2025-68860	9.8 (v3.1)	WordPress Mobile builder plugin <= 1.4.2 - Broken Auth…	Mobile Builder	Mobile builder	2025-12-29T21:08:56.358Z	2025-12-29T21:08:56.358Z
cve-2025-15162		Tenda WH450 RouteStatic stack-based overflow	Tenda	WH450	2025-12-28T23:32:08.620Z	2025-12-29T21:06:49.439Z
cve-2025-15163		Tenda WH450 SafeEmailFilter stack-based overflow	Tenda	WH450	2025-12-29T00:02:07.226Z	2025-12-29T21:03:37.471Z
cve-2025-15205		code-projects Student File Management System download.…	code-projects	Student File Management System	2025-12-29T21:02:06.928Z	2025-12-29T21:02:06.928Z
cve-2025-15065	8.6 (v4.0) 6.3 (v3.1)	Data Exposure in Kings Information & Network KESS Enterprise	Kings Information & Network Co.	KESS Enterprise	2025-12-29T00:09:27.009Z	2025-12-29T21:01:59.310Z
cve-2025-69205		In µURU, a Specially Crafted Federation Name Allows Di…	olell	uURU	2025-12-29T20:52:17.516Z	2025-12-29T20:52:17.516Z
cve-2024-25182	N/A	givanz VvvebJs 1.7.2 suffers from a File Upload v…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:40:54.229Z
cve-2025-15204		SohuTV CacheCloud QuartzManageController.java doQuartz…	SohuTV	CacheCloud	2025-12-29T20:32:06.147Z	2025-12-29T20:32:06.147Z
cve-2024-27480	N/A	givanz VvvebJs 1.7.2 is vulnerable to Insecure Fi…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:27:33.820Z
cve-2024-25183	N/A	givanz VvvebJs 1.7.2 is vulnerable to Directory T…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:25:12.953Z
cve-2025-13958	N/A	YaMaps < 0.6.40 - Contributor+ Stored XSS	Unknown	YaMaps for WordPress Plugin	2025-12-29T06:00:10.716Z	2025-12-29T20:16:35.365Z
cve-2025-13417	N/A	Plugin Organizer < 10.2.4 - Subscriber+ SQLi	Unknown	Plugin Organizer	2025-12-29T06:00:08.587Z	2025-12-29T20:15:42.608Z
cve-2025-15203		SohuTV CacheCloud ResourceController.java index cross …	SohuTV	CacheCloud	2025-12-29T20:02:06.187Z	2025-12-29T20:02:06.187Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68860	9.8 (v3.1)	WordPress Mobile builder plugin <= 1.4.2 - Broken Auth…	Mobile Builder	Mobile builder	2025-12-29T21:08:56.358Z	2025-12-29T21:08:56.358Z
cve-2025-68607	6.5 (v3.1)	WordPress Custom Field Template plugin <= 2.7.5 - Cros…	Hiroaki Miyashita	Custom Field Template	2025-12-29T21:10:50.618Z	2025-12-29T21:10:50.618Z
cve-2025-68562	9.9 (v3.1)	WordPress MapSVG plugin <= 8.7.3 - Arbitrary File Uplo…	RomanCode	MapSVG	2025-12-29T21:13:24.913Z	2025-12-29T21:13:24.913Z
cve-2025-68504	6.5 (v3.1)	WordPress JetSearch plugin <= 3.5.16 - Cross Site Scri…	Crocoblock	JetSearch	2025-12-29T21:14:40.576Z	2025-12-29T21:14:40.576Z
cve-2025-68503	6.5 (v3.1)	WordPress JetBlog plugin <= 2.4.7 - Broken Access Cont…	Crocoblock	JetBlog	2025-12-29T21:15:43.312Z	2025-12-29T21:15:43.312Z
cve-2025-68502	4.3 (v3.1)	WordPress JetPopup plugin <= 2.0.20.1 - Insecure Direc…	Crocoblock	JetPopup	2025-12-29T21:16:55.539Z	2025-12-29T21:16:55.539Z
cve-2025-15207		Campcodes Supplier Management System view_products.php…	Campcodes	Supplier Management System	2025-12-29T22:02:06.250Z	2025-12-29T22:02:06.250Z
cve-2025-15206		Campcodes Supplier Management System add_area.php sql …	Campcodes	Supplier Management System	2025-12-29T21:32:07.186Z	2025-12-29T21:32:07.186Z
cve-2025-14847	8.7 (v4.0) 7.5 (v3.1)	Zlib compressed protocol header length confusion may a…	MongoDB Inc.	MongoDB Server	2025-12-19T11:00:22.465Z	2025-12-29T22:04:07.526Z
cve-2025-69205		In µURU, a Specially Crafted Federation Name Allows Di…	olell	uURU	2025-12-29T20:52:17.516Z	2025-12-29T20:52:17.516Z
cve-2025-15205		code-projects Student File Management System download.…	code-projects	Student File Management System	2025-12-29T21:02:06.928Z	2025-12-29T21:02:06.928Z
cve-2025-15204		SohuTV CacheCloud QuartzManageController.java doQuartz…	SohuTV	CacheCloud	2025-12-29T20:32:06.147Z	2025-12-29T20:32:06.147Z
cve-2025-13958	N/A	YaMaps < 0.6.40 - Contributor+ Stored XSS	Unknown	YaMaps for WordPress Plugin	2025-12-29T06:00:10.716Z	2025-12-29T20:16:35.365Z
cve-2025-13417	N/A	Plugin Organizer < 10.2.4 - Subscriber+ SQLi	Unknown	Plugin Organizer	2025-12-29T06:00:08.587Z	2025-12-29T20:15:42.608Z
cve-2024-27480	N/A	givanz VvvebJs 1.7.2 is vulnerable to Insecure Fi…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:27:33.820Z
cve-2024-25183	N/A	givanz VvvebJs 1.7.2 is vulnerable to Directory T…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:25:12.953Z
cve-2024-25182	N/A	givanz VvvebJs 1.7.2 suffers from a File Upload v…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:40:54.229Z
cve-2025-69202		axios-cache-interceptor Vulnerable to Cache Poisoning …	arthurfiorette	axios-cache-interceptor	2025-12-29T19:13:27.880Z	2025-12-29T19:13:27.880Z
cve-2025-15203		SohuTV CacheCloud ResourceController.java index cross …	SohuTV	CacheCloud	2025-12-29T20:02:06.187Z	2025-12-29T20:02:06.187Z
cve-2025-15202		SohuTV CacheCloud TaskController.java taskQueueList cr…	SohuTV	CacheCloud	2025-12-29T19:32:06.804Z	2025-12-29T19:32:06.804Z
cve-2025-14175	6 (v4.0)	Weak Algorithm Support in SSH Server on TL-WR820N	TP-Link Systems Inc.	TL-WR820N v2.8	2025-12-29T19:31:23.473Z	2025-12-29T19:31:23.473Z
cve-2024-30855	N/A	DedeCMS v5.7 was discovered to contain a Cross-Si…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T19:38:16.526Z
cve-2024-25181	N/A	A critical vulnerability has been identified in g…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T19:49:11.124Z
cve-2025-61924		PrestaShop Checkout Target PayPal merchant account hij…	PrestaShopCorp	ps_checkout	2025-10-16T17:33:49.254Z	2025-10-16T19:22:58.718Z
cve-2025-61922		PrestaShop Checkout allows customer account takeover v…	PrestaShopCorp	ps_checkout	2025-10-16T17:26:14.999Z	2025-10-17T14:00:38.840Z
cve-2025-61923		PrestaShop Checkout Backoffice directory traversal all…	PrestaShopCorp	ps_checkout	2025-10-16T17:31:07.064Z	2025-10-16T19:23:05.488Z
cve-2025-68973	7.8 (v3.1)	In GnuPG through 2.4.8, armor_filter in g10/armor…	GnuPG	GnuPG	2025-12-28T16:19:11.019Z	2025-12-29T19:03:39.496Z
cve-2025-68706	N/A	A stack-based buffer overflow exists in the GoAhe…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:39:44.855Z
cve-2025-68431		libheif has Potential Heap Buffer Over-Read	strukturag	libheif	2025-12-29T19:09:54.628Z	2025-12-29T19:09:54.628Z
cve-2025-67255	N/A	In NagiosXI 2026R1.0.1 build 1762361101, Dashboar…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:14:15.414Z

ID	Description	Published	Updated
fkie_cve-2025-69202	Axios Cache Interceptor is a cache interceptor for axios. Prior to version 1.11.1, when a server ca…	2025-12-29T20:15:42.107	2025-12-29T20:15:42.107
fkie_cve-2025-15203	A vulnerability was found in SohuTV CacheCloud up to 3.2.0. This impacts the function index of the …	2025-12-29T20:15:41.920	2025-12-29T20:15:41.920
fkie_cve-2025-15202	A vulnerability has been found in SohuTV CacheCloud up to 3.2.0. This affects the function taskQueu…	2025-12-29T20:15:41.737	2025-12-29T20:15:41.737
fkie_cve-2025-14175	A vulnerability in the SSH server of TP-Link TL-WR820N v2.80 allows the use of a weak cryptographic…	2025-12-29T20:15:41.400	2025-12-29T20:15:41.400
fkie_cve-2024-30855	DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/d…	2025-12-29T20:15:41.277	2025-12-29T20:15:41.277
fkie_cve-2024-25181	A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side…	2025-12-29T20:15:40.423	2025-12-29T20:15:40.423
fkie_cve-2025-61924	PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versio…	2025-10-16T18:15:39.140	2025-12-29T20:06:15.343
fkie_cve-2025-61922	PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. Starting …	2025-10-16T18:15:38.597	2025-12-29T20:06:13.033
fkie_cve-2025-61923	PrestaShop Checkout is the PrestaShop official payment module in partnership with PayPal. In versio…	2025-10-16T18:15:38.987	2025-12-29T20:06:09.500
fkie_cve-2025-68973	In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where o…	2025-12-28T17:16:01.500	2025-12-29T19:15:57.260
fkie_cve-2025-68706	A stack-based buffer overflow exists in the GoAhead-Webs HTTP daemon on KuWFi 4G LTE AC900 devices …	2025-12-29T19:15:57.090	2025-12-29T19:15:57.090
fkie_cve-2025-68431	libheif is an HEIF and AVIF file format decoder and encoder. Prior to version 1.21.0, a crafted HEI…	2025-12-29T19:15:56.933	2025-12-29T19:15:56.933
fkie_cve-2025-67255	In NagiosXI 2026R1.0.1 build 1762361101, Dashboard parameters lack proper filtering, allowing any a…	2025-12-29T19:15:56.820	2025-12-29T19:15:56.820
fkie_cve-2025-67254	NagiosXI 2026R1.0.1 build 1762361101 is vulnerable to Directory Traversal in /admin/coreconfigsnaps…	2025-12-29T19:15:56.710	2025-12-29T19:15:56.710
fkie_cve-2025-15201	A flaw has been found in SohuTV CacheCloud up to 3.2.0. The impacted element is the function redire…	2025-12-29T19:15:56.370	2025-12-29T19:15:56.370
fkie_cve-2025-15200	A vulnerability was detected in SohuTV CacheCloud up to 3.2.0. The affected element is the function…	2025-12-29T19:15:56.187	2025-12-29T19:15:56.187
fkie_cve-2025-15199	A security vulnerability has been detected in code-projects College Notes Uploading System 1.0. Imp…	2025-12-29T19:15:56.003	2025-12-29T19:15:56.003
fkie_cve-2025-14728	Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers tha…	2025-12-29T19:15:55.277	2025-12-29T19:15:55.277
fkie_cve-2025-14280	The PixelYourSite plugin for WordPress is vulnerable to Sensitive Information Exposure in all versi…	2025-12-29T19:15:54.870	2025-12-29T19:15:54.870
fkie_cve-2025-13592	The Advanced Ads plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and…	2025-12-29T19:15:54.687	2025-12-29T19:15:54.687
fkie_cve-2025-49131	FastGPT is an open-source project that provides a platform for building, deploying, and operating A…	2025-06-09T13:15:24.120	2025-12-29T19:09:21.850
fkie_cve-2025-27600	FastGPT is a knowledge-based platform built on the LLMs. Since the web crawling plug-in does not pe…	2025-03-06T19:15:28.117	2025-12-29T19:09:01.927
fkie_cve-2025-62612	FastGPT is an AI Agent building platform. Prior to version 4.11.1, in the workflow file reading nod…	2025-10-22T21:15:46.693	2025-12-29T19:08:53.507
fkie_cve-2025-52552	FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login…	2025-06-21T03:15:24.990	2025-12-29T19:06:40.077
fkie_cve-2025-62690	Mattermost versions 10.11.x <= 10.11.4 fail to validate redirect URLs on the /error page, which all…	2025-12-17T13:15:58.510	2025-12-29T18:55:05.180
fkie_cve-2025-62190	Mattermost versions 11.0.x <= 11.0.4, 10.12.x <= 10.12.2, 10.11.x <= 10.11.6 and Mattermost Calls v…	2025-12-17T13:15:58.370	2025-12-29T18:51:51.667
fkie_cve-2025-13352	Mattermost versions 10.11.x <= 10.11.6 and Mattermost GitHub plugin versions <=2.4.0 fail to valida…	2025-12-17T13:15:56.627	2025-12-29T18:50:47.780
fkie_cve-2025-14273	Mattermost versions 11.1.x <= 11.1.0, 11.0.x <= 11.0.5, 10.12.x <= 10.12.3, 10.11.x <= 10.11.7 with…	2025-12-22T12:16:19.240	2025-12-29T18:47:45.547
fkie_cve-2025-13324	Mattermost versions 10.11.x <= 10.11.5, 11.0.x <= 11.0.4, 10.12.x <= 10.12.2 fail to invalidate rem…	2025-12-17T19:16:01.093	2025-12-29T18:46:13.530
fkie_cve-2025-12689	Mattermost versions 11.0.x <= 11.0.4, 10.12.x <= 10.12.2, 10.11.x <= 10.11.6 fail to check WebSocke…	2025-12-17T19:16:00.537	2025-12-29T18:44:33.540

ID	Description	Package	Published	Updated
pysec-2024-85	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.978434Z
pysec-2024-84	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.815196Z
pysec-2024-83	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.652331Z
pysec-2024-82	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.488172Z
pysec-2023-278	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2025-12-16T15:05:59.273145Z
pysec-2025-52	gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220	A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72	The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71	Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258	In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69	In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66	Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65	A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61	Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60	Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59	Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57	A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55	vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54	vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-33876	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.990196Z

ID	Description	Published	Updated
mal-2025-192960	Malicious code in kcheck (npm)	2025-12-29T15:45:39Z	2025-12-29T16:09:42Z
mal-2025-192959	Malicious code in intl-tel-input-utils (npm)	2025-12-29T15:00:48Z	2025-12-29T16:09:42Z
mal-2025-192956	Malicious code in cryptozip (PyPI)	2025-12-28T19:49:40Z	2025-12-29T13:20:36Z
mal-2025-192690	Malicious code in smtrlib (PyPI)	2025-12-22T17:15:11Z	2025-12-29T11:08:56Z
mal-2025-192579	Malicious code in smtblib (PyPI)	2025-12-15T15:24:47Z	2025-12-29T11:08:56Z
mal-2025-192958	Malicious code in smtmlib (PyPI)	2025-12-29T10:04:23Z	2025-12-29T10:08:51Z
mal-2025-192957	Malicious code in crypto-trade-analyzer (npm)	2025-12-29T07:45:42Z	2025-12-29T07:45:42Z
mal-2025-192953	Malicious code in aiogram-types-v3 (PyPI)	2025-12-28T01:44:36Z	2025-12-28T20:09:20Z
mal-2025-192955	Malicious code in eslint-config-pexip-engage (npm)	2025-12-28T17:50:47Z	2025-12-28T17:50:47Z
mal-2025-192952	Malicious code in eslint-config-sdk (npm)	2025-12-27T20:20:29Z	2025-12-28T17:39:25Z
mal-2025-192954	Malicious code in api-umbrella-admin-ui (npm)	2025-12-28T15:05:48Z	2025-12-28T15:05:48Z
mal-2025-192951	Malicious code in ugc-kit (npm)	2025-12-27T17:21:21Z	2025-12-27T17:21:21Z
mal-2025-192949	Malicious code in ing-feat-malware-detection (npm)	2025-12-27T17:11:12Z	2025-12-27T17:11:12Z
mal-2025-192950	Malicious code in ing-feat-ui-image (npm)	2025-12-27T17:11:08Z	2025-12-27T17:11:08Z
mal-2025-192934	Malicious code in ing-feat-kyc-consent (npm)	2025-12-25T18:55:12Z	2025-12-27T16:09:26Z
mal-2025-192948	Malicious code in extrazip (PyPI)	2025-12-27T09:41:01Z	2025-12-27T09:41:01Z
mal-2025-192947	Malicious code in crypo (PyPI)	2025-12-27T08:56:38Z	2025-12-27T08:56:38Z
mal-2025-192946	Malicious code in crpto (PyPI)	2025-12-27T08:55:55Z	2025-12-27T08:55:55Z
mal-2025-192945	Malicious code in flaask (PyPI)	2025-12-27T08:53:06Z	2025-12-27T08:53:06Z
mal-2025-192944	Malicious code in backstage-plugin-glean (npm)	2025-12-27T02:51:04Z	2025-12-27T02:51:04Z
mal-2025-192942	Malicious code in telebot-bot (PyPI)	2025-12-26T20:04:06Z	2025-12-26T20:04:06Z
mal-2025-192943	Malicious code in telegrem (PyPI)	2025-12-26T20:03:22Z	2025-12-26T20:03:22Z
mal-2025-192941	Malicious code in bola511 (npm)	2025-12-26T14:09:11Z	2025-12-26T14:09:11Z
mal-2025-192940	Malicious code in aiogram-3 (PyPI)	2025-12-26T04:33:18Z	2025-12-26T10:09:30Z
mal-2025-192939	Malicious code in magic-poc (npm)	2025-12-26T03:35:35Z	2025-12-26T03:35:35Z
mal-2025-192938	Malicious code in bettermode-icons (npm)	2025-12-25T21:52:38Z	2025-12-25T22:40:17Z
mal-2025-192937	Malicious code in bettermode-common (npm)	2025-12-25T19:41:57Z	2025-12-25T19:41:57Z
mal-2025-192933	Malicious code in ing-feat-auth-idin (npm)	2025-12-25T18:54:53Z	2025-12-25T18:54:53Z
mal-2025-192935	Malicious code in ing-feat-mortgage-consent-starter (npm)	2025-12-25T18:54:11Z	2025-12-25T18:54:11Z
mal-2025-192936	Malicious code in ing-feat-pis-single-payments (npm)	2025-12-25T18:54:07Z	2025-12-25T18:54:07Z

ID	Description	Published	Updated
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2871	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-17T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2830	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service	2025-12-11T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2741	cPython: Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2706	Python: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-01T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2694	MariaDB: Schwachstelle ermöglicht Codeausführung	2025-11-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2677	OPNsense: Schwachstelle ermöglicht Manipulation von Dateien	2025-11-25T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2645	Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2637	Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2608	Golang Go: Schwachstelle ermöglicht Denial of Service	2025-11-16T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2466	QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2365	Oracle Java SE: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2193	QEMU: Schwachstelle ermöglicht Denial of Service	2025-10-05T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-1740	Golang Go: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-08-06T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0935	Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen	2025-05-04T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0627	Vercel Next.js: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-03-24T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0606	Red Hat Enterprise Linux (Gatekeeper): Mehrere Schwachstellen ermöglichen Denial of Service	2025-03-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0485	Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-03-04T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-0123	Red Hat Enterprise Linux und and OpenShift (go-git): Mehrere Schwachstellen	2025-01-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2024-3281	expat: Schwachstelle ermöglicht Denial of Service	2024-10-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2024-1951	expat: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-29T22:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2023-3174	SSH Protokoll: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2909	IBM App Connect Enterprise: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2886	Red Hat Enterprise Linux (git-lfs, opentelemetry-collector): Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2812	Mozilla Firefox: Mehrere Schwachstellen	2025-12-09T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2756	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-07T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2750	Apache HTTP Server: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2747	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-04T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-512988	SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-800126	SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-723487	SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products	2024-07-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-673996	SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-408105	SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products	2022-12-13T00:00:00Z	2025-12-09T00:00:00Z
ssa-392859	SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2025-11-17T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:21885	Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update	2025-11-20T19:56:52+00:00	2025-11-29T08:07:16+00:00
rhsa-2025:21368	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-11-13T17:36:32+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19961	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-11-10T01:30:28+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19958	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-11-10T01:14:14+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19335	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update	2025-10-30T12:58:23+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19332	Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update	2025-10-30T12:27:36+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:9646	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update	2025-06-25T14:06:29+00:00	2025-11-29T06:55:12+00:00
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2025-11-29T06:55:11+00:00
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9541	Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates	2025-06-24T14:31:21+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9388	Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates	2025-06-23T15:10:48+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9259	Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update	2025-06-26T01:50:03+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9167	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release	2025-06-17T09:27:34+00:00	2025-11-29T06:55:05+00:00
rhsa-2025:9136	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release	2025-06-16T18:32:02+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8704	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release	2025-06-09T16:42:07+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8552	Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update	2025-06-11T12:02:51+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8691	Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update	2025-06-09T14:26:17+00:00	2025-11-29T06:55:02+00:00
rhsa-2025:8560	Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update	2025-06-10T06:26:36+00:00	2025-11-29T06:55:01+00:00
rhsa-2025:8556	Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update	2025-06-13T05:16:43+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8544	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update	2025-06-04T20:11:19+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8542	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates	2025-06-04T21:17:49+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8510	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update	2025-06-04T12:26:00+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8479	Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update	2025-06-04T01:58:44+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8392	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates	2025-06-04T00:41:53+00:00	2025-11-29T06:54:57+00:00
rhsa-2025:8390	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes	2025-06-02T17:37:18+00:00	2025-11-29T06:54:55+00:00
rhsa-2025:8384	Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates	2025-06-02T14:56:45+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8299	Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update	2025-06-04T12:16:12+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8284	Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update	2025-06-03T10:16:45+00:00	2025-11-29T06:54:53+00:00
rhsa-2025:8280	Red Hat Security Advisory: OpenShift Container Platform 4.17.32 bug fix and security update	2025-06-04T09:19:59+00:00	2025-11-29T06:54:52+00:00
rhsa-2025:8274	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update	2025-05-28T20:39:49+00:00	2025-11-29T06:54:52+00:00

ID	Description	Published	Updated
msrc_cve-2025-14180	NULL Pointer Dereference in PDO quoting	2025-12-02T00:00:00.000Z	2025-12-29T14:36:08.000Z
msrc_cve-2025-14178	Heap buffer overflow in array_merge()	2025-12-02T00:00:00.000Z	2025-12-29T14:36:03.000Z
msrc_cve-2025-14177	Information Leak of Memory in getimagesize	2025-12-02T00:00:00.000Z	2025-12-29T14:35:58.000Z
msrc_cve-2025-68972	In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.	2025-12-02T00:00:00.000Z	2025-12-29T14:35:53.000Z
msrc_cve-2025-14104	Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames	2025-12-02T00:00:00.000Z	2025-12-27T14:36:13.000Z
msrc_cve-2025-13699	MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability	2025-12-02T00:00:00.000Z	2025-12-27T01:36:47.000Z
msrc_cve-2025-68156	Expr has Denial of Service via Unbounded Recursion in Builtin Functions	2025-12-02T00:00:00.000Z	2025-12-27T01:36:36.000Z
msrc_cve-2025-7425	Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr	2025-07-02T00:00:00.000Z	2025-12-26T14:39:00.000Z
msrc_cve-2023-54061	x86: fix clear_user_rep_good() exception handling annotation	2025-12-02T00:00:00.000Z	2025-12-26T14:38:55.000Z
msrc_cve-2025-68733	smack: fix bug: unprivileged task can create labels	2025-12-02T00:00:00.000Z	2025-12-26T14:38:50.000Z
msrc_cve-2025-68374	md: fix rcu protection in md_wakeup_thread	2025-12-02T00:00:00.000Z	2025-12-26T14:38:46.000Z
msrc_cve-2025-68724	crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id	2025-12-02T00:00:00.000Z	2025-12-26T14:38:41.000Z
msrc_cve-2025-68380	wifi: ath11k: fix peer HE MCS assignment	2025-12-02T00:00:00.000Z	2025-12-26T14:38:36.000Z
msrc_cve-2025-68376	coresight: ETR: Fix ETR buffer use-after-free issue	2025-12-02T00:00:00.000Z	2025-12-26T14:38:31.000Z
msrc_cve-2025-68378	bpf: Fix stackmap overflow check in __bpf_get_stackid()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:26.000Z
msrc_cve-2025-68727	ntfs3: Fix uninit buffer allocated by __getname()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:22.000Z
msrc_cve-2025-68364	ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:17.000Z
msrc_cve-2025-68346	ALSA: dice: fix buffer overflow in detect_stream_formats()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:12.000Z
msrc_cve-2025-68379	RDMA/rxe: Fix null deref on srq->rq.queue after resize failure	2025-12-02T00:00:00.000Z	2025-12-26T14:38:07.000Z
msrc_cve-2025-68363	bpf: Check skb->transport_header is set in bpf_skb_check_mtu	2025-12-02T00:00:00.000Z	2025-12-26T14:38:02.000Z
msrc_cve-2025-68740	ima: Handle error code returned by ima_filter_rule_match()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:57.000Z
msrc_cve-2023-54082	af_unix: Fix null-ptr-deref in unix_stream_sendpage().	2025-12-02T00:00:00.000Z	2025-12-26T14:37:53.000Z
msrc_cve-2025-68358	btrfs: fix racy bitfield write in btrfs_clear_space_info_full()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:48.000Z
msrc_cve-2025-68372	nbd: defer config put in recv_work	2025-12-02T00:00:00.000Z	2025-12-26T14:37:43.000Z
msrc_cve-2025-68728	ntfs3: fix uninit memory after failed mi_read in mi_format_new	2025-12-02T00:00:00.000Z	2025-12-26T14:37:38.000Z
msrc_cve-2025-68725	bpf: Do not let BPF test infra emit invalid GSO types to stack	2025-12-02T00:00:00.000Z	2025-12-26T14:37:33.000Z
msrc_cve-2025-68365	fs/ntfs3: Initialize allocated memory before use	2025-12-02T00:00:00.000Z	2025-12-26T14:37:29.000Z
msrc_cve-2025-68367	macintosh/mac_hid: fix race condition in mac_hid_toggle_emumouse	2025-12-02T00:00:00.000Z	2025-12-26T14:37:24.000Z
msrc_cve-2025-68742	bpf: Fix invalid prog->stats access when update_effective_progs fails	2025-12-02T00:00:00.000Z	2025-12-26T14:37:19.000Z
msrc_cve-2025-68356	gfs2: Prevent recursive memory reclaim	2025-12-02T00:00:00.000Z	2025-12-26T14:37:14.000Z

ID	Description	Published	Updated
icsa-25-177-01	Mitsubishi Electric Air Conditioning Systems (Update B)	2025-06-26T06:00:00.000000Z	2025-12-23T07:00:00.000000Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-352-08	Axis Communications Camera Station Pro, Camera Station, and Device Manager	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-07	Rockwell Automation Micro820, Micro850, Micro870	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-06	Advantech WebAccess/SCADA	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-03	National Instruments LabView	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-01	Inductive Automation Ignition	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-24-291-03	Mitsubishi Electric CNC Series (Update C)	2024-10-17T06:00:00.000000Z	2025-12-18T07:00:00.000000Z
va-25-352-01	BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
icsa-25-350-04	Mitsubishi Electric GT Designer3	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-03	Hitachi Energy AFS, AFR and AFF Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-02	Johnson Controls PowerG, IQPanel and IQHub	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-01	Güralp Systems Fortimus Series, Minimus Series, and Certimus Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-308-01	Fuji Electric Monitouch V-SFT-6 (Update A)	2025-11-04T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
va-25-345-01	CISA Software Acquisition Guide Supplier Response Web Tool XSS	2025-12-12T20:27:47Z	2025-12-12T20:27:47Z
icsma-25-345-02	Varex Imaging Panoramic Dental Imaging Software	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsma-25-345-01	Grassroots DICOM (GDCM)	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-10	OpenPLC_V3	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-03	AzeoTech DAQFactory	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2025-12-17T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00

ID	Description	Published	Updated
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
SCA-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
SCA-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2024_2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
OXAS-ADV-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
OXDC-ADV-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
OXAS-ADV-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
OXAS-ADV-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
OXAS-ADV-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Updated
var-202411-1650	D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (R…	2024-11-29T23:10:19.240000Z
var-202411-1640	Linksys E3000 is a powerful dual-band Wireless-N router from Linksys, an American company…	2024-11-29T23:10:19.018000Z
var-202411-0543	A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-P…	2024-11-29T23:09:56.296000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-11-29T23:09:49.324000Z
var-201807-0341	ABB Panel Builder 800 all versions has an improper input validation vulnerability which m…	2024-11-29T23:09:47.475000Z
var-202411-1422	D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm f…	2024-11-29T23:09:36.483000Z
var-202411-1539	D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the host_ip pa…	2024-11-29T23:08:33.376000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-11-29T23:08:28.292000Z
var-202410-3364	In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string …	2024-11-29T23:07:43.747000Z
var-202411-1441	D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the notify par…	2024-11-29T23:07:42.700000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-11-29T23:07:06.630000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-11-29T23:04:25.952000Z
var-202407-0046	mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely exec…	2024-11-29T23:04:10.837000Z
var-202410-2013	In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds …	2024-11-29T23:04:10.282000Z
var-201105-0156	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30…	2024-11-29T22:59:31.553000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-11-29T22:58:37.276000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-11-29T22:57:57.328000Z
var-201407-0233	Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote atta…	2024-11-29T22:56:23.397000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-11-29T22:56:15.896000Z
var-202411-1458	Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink…	2024-11-29T22:56:03.034000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-11-29T22:54:40.239000Z
var-201908-0863	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE…	2024-11-29T22:54:30.971000Z
var-201402-0027	The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re…	2024-11-29T22:51:33.128000Z
var-201402-0028	The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni…	2024-11-29T22:51:32.785000Z
var-201402-0026	Buffer overflow in the process_ra function in the router advertisement daemon (radvd) bef…	2024-11-29T22:51:32.731000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-11-29T22:51:22.051000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-11-29T22:51:21.315000Z
var-201906-1029	In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne…	2024-11-29T22:51:20.239000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-11-29T22:49:47.108000Z
var-201801-0151	A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior …	2024-11-29T22:49:45.101000Z

ID	Description	Published	Updated
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2025-12-24T11:10+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-12-23T14:36+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00

ID	Description	Updated
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00
ts-2023-001	TS-2023-001	2023-01-17T00:00

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated
gcve-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (v3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
gcve-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (v3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z