Recent vulnerabilities

ID	Description	Published	Updated
ghsa-x5cr-w4x6-22r9	Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' s…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-wm7p-2wcf-h9qh	Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to …	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-vqvm-xqhr-4h5w	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-rg8q-q5qg-28fm	Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative cre…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-mv53-5j69-vvj9	JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery (CSRF) attacks, all…	2025-12-31T00:31:10Z	2025-12-31T00:31:11Z
ghsa-mpcq-qm9f-9qfj	Akuvox Smart Intercom S539 contains an unauthenticated vulnerability that allows remote attackers t…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-m9w6-v3p4-qjm7	Cross-Site Request Forgery (CSRF) vulnerability in Hoernerfranz WP-CalDav2ICS allows Stored XSS.Thi…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-jv66-87h9-r6q4	Tosibox Key Service 3.3.0 contains an unquoted service path vulnerability that allows local non-pri…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-hcw3-qjrp-gq57	Tinycontrol LAN Controller 1.58a contains an authentication bypass vulnerability that allows unauth…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-g772-q552-ggr6	Ksenia Security Lares 4.0 Home Automation version 1.6 contains an unprotected endpoint vulnerabilit…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-g2pw-5fjr-fhhf	Ksenia Security Lares 4.0 Home Automation version 1.6 contains a default credentials vulnerability …	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-c56g-3hg8-4249	Akuvox Smart Intercom S539 contains an improper access control vulnerability that allows users with…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-5xw5-83cp-4rjf	Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that expose…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-4rhh-qhhp-cw22	NLB mKlik Macedonia 3.3.12 contains a SQL injection vulnerability in international transfer paramet…	2025-12-31T00:31:11Z	2025-12-31T00:31:11Z
ghsa-xpmj-f96f-w324	ETAP Safety Manager 1.0.0.32 contains a cross-site scripting vulnerability in the 'action' GET para…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-x593-jp73-3qq7	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a command injection vulnerability that allows local au…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-vf6p-f83q-937h	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an SQL injection vulnerability in the 'username' POST …	2025-12-31T00:31:09Z	2025-12-31T00:31:10Z
ghsa-r568-76cw-jx2w	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a conditional command injection vulnerability that all…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-q68f-54g3-3rc9	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a conditional command injection vulnerability that all…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-pc62-v6r5-973x	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an insufficient session expiration vul…	2025-12-31T00:31:09Z	2025-12-31T00:31:10Z
ghsa-m8f6-rrcx-mrm3	H3C SSL VPN contains a user enumeration vulnerability that allows attackers to identify valid usern…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-hv34-rhhr-q53f	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an unauthenticated remote code execution vulnerability…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-gxjj-79fr-px4p	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x contains an unauthenticated stored cross-site scripting …	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-gr6g-859c-3j6j	SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-gcc4-3hh2-4mcx	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an unauthenticated command injection v…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-cqgr-77q2-257r	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x contains a network vulnerability that allows unauthentic…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-cjhx-gxg4-xjm7	Fetch FTP Client 5.8.2 contains a denial of service vulnerability that allows attackers to trigger …	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-9x83-xq9p-cxq5	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains an information disclosure vulnerability that allows un…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-7h43-qx63-fwcr	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain an unauthenticated file disclosure vul…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z
ghsa-7fvm-m3gq-pf2p	SOUND4 IMPACT/FIRST/PULSE/Eco versions 2.x and below contain hardcoded credentials embedded in serv…	2025-12-31T00:31:10Z	2025-12-31T00:31:10Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-7195	5.2 (v3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2025-12-31T01:40:46.656Z
cve-2025-68131		CBORDecoder reuse can leak shareable values across dec…	agronholm	cbor2	2025-12-31T01:15:36.827Z	2025-12-31T01:15:36.827Z
cve-2024-53866		pnpm vulnerable to no-script global cache poisoning vi…	pnpm	pnpm	2024-12-10T17:12:44.629Z	2025-12-31T01:11:35.531Z
cve-2025-15371		Tenda i24 Shadow File hard-coded credentials	Tenda	i24	2025-12-31T01:02:06.989Z	2025-12-31T01:02:06.989Z
cve-2025-11964	1.9 (v3.1)	OOBW in utf_16le_to_utf_8_truncated() in libpcap	The Tcpdump Group	libpcap	2025-12-31T00:58:19.026Z	2025-12-31T00:58:19.026Z
cve-2025-11961	1.9 (v3.1)	OOBR and OOBW in pcap_ether_aton() in libpcap	The Tcpdump Group	libpcap	2025-12-31T00:56:16.310Z	2025-12-31T00:56:16.310Z
cve-2025-59131	7.1 (v3.1)	WordPress WP-CalDav2ICS plugin <= 1.3.4 - Cross Site R…	Hoernerfranz	WP-CalDav2ICS	2025-12-30T22:55:32.248Z	2025-12-30T22:55:32.248Z
cve-2022-50802	5.1 (v4.0) 6.1 (v3.1)	ETAP Safety Manager 1.0.0.32 Unauthenticated Reflected…	ETAP Lighting International NV	ETAP Safety Manager	2025-12-30T22:42:57.655Z	2025-12-30T22:42:57.655Z
cve-2025-15114	9.3 (v4.0) 9.8 (v3.1)	Ksenia Security Lares 4.0 Home Automation 1.6 PIN Expo…	Ksenia Security S.p.A.	Ksenia Security Lares 4.0 Home Automation	2025-12-30T22:41:47.116Z	2025-12-30T22:41:47.116Z
cve-2025-15113	8.5 (v4.0) 7.8 (v3.1)	Ksenia Security Lares 4.0 Home Automation 1.6 Remote C…	Ksenia Security S.p.A.	Ksenia Security Lares 4.0 Home Automation	2025-12-30T22:41:46.694Z	2025-12-30T22:41:46.694Z
cve-2025-15112	5.1 (v4.0) 8 (v3.1)	Ksenia Security Lares 4.0 Home Automation 1.6 URL Redi…	Ksenia Security S.p.A.	Ksenia Security Lares 4.0 Home Automation	2025-12-30T22:41:46.247Z	2025-12-30T22:41:46.247Z
cve-2025-15111	9.3 (v4.0) 7.5 (v3.1)	Ksenia Security Lares 4.0 Home Automation 1.6 Default …	Ksenia Security S.p.A.	Ksenia Security Lares 4.0 Home Automation	2025-12-30T22:41:45.831Z	2025-12-30T22:41:45.831Z
cve-2024-58338	8.6 (v4.0) 9.8 (v3.1)	Anevia Flamingo XL 3.2.9 Remote Root Jailbreak via Tra…	Ateme	Flamingo XL	2025-12-30T22:41:45.411Z	2025-12-30T22:41:45.411Z
cve-2024-58337	8.7 (v4.0) 7.5 (v3.1)	Akuvox Smart Intercom S539 Improper Access Control via…	The Akuvox Company	Akuvox Smart Doorphone	2025-12-30T22:41:44.989Z	2025-12-30T22:41:44.989Z
cve-2024-58336	8.7 (v4.0) 9.8 (v3.1)	Akuvox Smart Intercom S539 Unauthenticated Video Strea…	The Akuvox Company	Akuvox Smart Doorphone	2025-12-30T22:41:44.569Z	2025-12-30T22:41:44.569Z
cve-2024-58315	8.5 (v4.0) 8.4 (v3.1)	Tosibox Key Service 3.3.0 Local Privilege Escalation v…	Tosibox Oy	Tosibox Key Service	2025-12-30T22:41:44.147Z	2025-12-30T22:41:44.147Z
cve-2023-54327	9.3 (v4.0) 7.5 (v3.1)	Tinycontrol LAN Controller 1.58a Authentication Bypass…	Tinycontrol	LAN Controller	2025-12-30T22:41:43.728Z	2025-12-30T22:41:43.728Z
cve-2023-54163	8.8 (v4.0) 8.2 (v3.1)	NLB mKlik Macedonia 3.3.12 SQL Injection via Internati…	NLB Banka AD Skopje	NLB mKlik Makedonija	2025-12-30T22:41:43.245Z	2025-12-30T22:41:43.245Z
cve-2023-53983	9.3 (v4.0) 7.5 (v3.1)	Anevia Flamingo XL/XS 3.6.20 Default Credentials Authe…	Ateme	Anevia Flamingo XL/XS	2025-12-30T22:41:42.839Z	2025-12-30T22:41:42.839Z
cve-2022-50804	5.1 (v4.0) 6.5 (v3.1)	JM-DATA ONU JF511-TV 1.0.67 Cross-Site Request Forgery…	JM-DATA ONU	JF511-TV	2025-12-30T22:41:42.422Z	2025-12-30T22:41:42.422Z
cve-2022-50803	9.3 (v4.0) 9.8 (v3.1)	JM-DATA ONU JF511-TV 1.0.67 Default Credentials Vulner…	JM-DATA ONU	JF511-TV	2025-12-30T22:41:41.999Z	2025-12-30T22:41:41.999Z
cve-2022-50801	5.1 (v4.0) 4.3 (v3.1)	JM-DATA ONU JF511-TV 1.0.67 Authenticated Stored Cross…	JM-DATA ONU	JF511-TV	2025-12-30T22:41:41.205Z	2025-12-30T22:41:41.205Z
cve-2022-50800	6.9 (v4.0) 7.5 (v3.1)	H3C SSL VPN n/a Username Enumeration via Login Script …	Hangzhou H3C Technologies	H3C SSL VPN	2025-12-30T22:41:40.801Z	2025-12-30T22:41:40.801Z
cve-2022-50799	7.1 (v4.0) 7.5 (v3.1)	Fetch Softworks Fetch FTP Client 5.8.2 Remote CPU Cons…	Fetch Softworks	Fetch Softworks Fetch FTP Client	2025-12-30T22:41:40.340Z	2025-12-30T22:41:40.340Z
cve-2022-50798	6.7 (v4.0) 7.5 (v3.1)	SoX 14.4.2 Denial of Service Vulnerability via WAV Fil…	Chris Bagwell	SoX	2025-12-30T22:41:39.913Z	2025-12-30T22:41:39.913Z
cve-2022-50796	9.3 (v4.0) 7.5 (v3.1)	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Re…	SOUND4 Ltd.	Impact/Pulse/First	2025-12-30T22:41:39.503Z	2025-12-30T22:41:39.503Z
cve-2022-50795	8.5 (v4.0) 8.4 (v3.1)	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Conditional Comman…	SOUND4 Ltd.	Impact/Pulse/First	2025-12-30T22:41:39.100Z	2025-12-30T22:41:39.100Z
cve-2022-50794	9.3 (v4.0) 9.8 (v3.1)	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Co…	SOUND4 Ltd.	Impact/Pulse/First	2025-12-30T22:41:38.681Z	2025-12-30T22:41:38.681Z
cve-2022-50793	8.7 (v4.0) 8.8 (v3.1)	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Authenticated Comm…	SOUND4 Ltd.	Impact/Pulse/First	2025-12-30T22:41:38.291Z	2025-12-30T22:41:38.291Z
cve-2022-50792	8.7 (v4.0) 9.8 (v3.1)	SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x Unauthenticated Fi…	SOUND4 Ltd.	Impact/Pulse/First	2025-12-30T22:41:37.875Z	2025-12-30T22:41:37.875Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-59500	7.7 (v3.1)	Azure Notification Service Elevation of Privilege Vuln…	Microsoft	Azure Notification Service	2025-10-23T21:07:30.428Z	2025-12-11T19:36:43.997Z
cve-2025-59503	10 (v3.1)	Azure Compute Resource Provider Elevation of Privilege…	Microsoft	Azure Compute Resource Provider	2025-10-23T21:18:06.047Z	2025-12-11T19:36:43.408Z
cve-2025-62726		n8n Vulnerable to Remote Code Execution via Git Node P…	n8n-io	n8n	2025-10-30T16:24:11.484Z	2025-10-31T18:19:31.619Z
cve-2024-25621		containerd affected by a local privilege escalation vi…	containerd	containerd	2025-11-06T18:36:21.566Z	2025-11-06T19:35:13.415Z
cve-2025-63408	N/A	Local Agent DVR versions thru 6.6.1.0 are vulnera…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-18T17:00:51.156Z
cve-2025-63602	N/A	A vulnerability was discovered in Awesome Miner t…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-18T17:04:06.527Z
cve-2025-63604	N/A	A code injection vulnerability exists in baryhuan…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-18T17:06:05.260Z
cve-2025-34324	7 (v4.0)	GoSign Desktop < 2.4.1 Insecure Update Mechanism RCE	Tinexta InfoCert S.p.A.	GoSign Desktop	2025-11-18T16:33:05.469Z	2025-11-18T18:24:11.777Z
cve-2025-68131		CBORDecoder reuse can leak shareable values across dec…	agronholm	cbor2	2025-12-31T01:15:36.827Z	2025-12-31T01:15:36.827Z
cve-2025-63829	N/A	eProsima Fast-DDS v3.3 and before has an infinite…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-18T17:12:46.478Z
cve-2025-56643	N/A	Requarks Wiki.js 2.5.307 does not properly revoke…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-19T16:50:05.856Z
cve-2025-63994	N/A	An arbitrary file upload vulnerability in the /ph…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-12-01T15:35:18.515Z
cve-2025-64076		Multiple vulnerabilities exist in cbor2 through v…	n/a	n/a	2025-11-18T00:00:00.000Z	2025-11-19T13:55:54.103Z
cve-2024-38963	N/A	Nopcommerce 4.70.1 is vulnerable to Cross Site Sc…	n/a	n/a	2024-07-09T00:00:00	2024-08-02T04:19:20.508Z
cve-2024-8914		Thanh Toán Quét Mã QR Code Tự Động – MoMo, ViettelPay,…	haibasoft	Thanh Toán Quét Mã QR Code Tự Động – MoMo, ViettelPay, VNPay và 40 ngân hàng Việt Nam	2024-09-24T06:40:56.964Z	2025-08-27T21:43:06.600Z
cve-2025-10979		JeecgBoot exportXls improper authorization	n/a	JeecgBoot	2025-09-25T23:02:07.534Z	2025-09-26T19:13:10.702Z
cve-2025-10707		JeecgBoot sendMsg improper authorization	n/a	JeecgBoot	2025-09-19T11:32:10.286Z	2025-09-19T13:07:22.821Z
cve-2025-10319		JeecgBoot Tenant Log Export exportLog improper authorization	n/a	JeecgBoot	2025-09-12T15:02:07.197Z	2025-09-12T15:40:36.782Z
cve-2025-10318		JeecgBoot WebSocket Message sendWebSocketMsg improper …	n/a	JeecgBoot	2025-09-12T12:32:08.175Z	2025-09-12T17:21:13.826Z
cve-2025-4362		itsourcecode Gym Management System ajax.php sql injection	itsourcecode	Gym Management System	2025-05-06T15:00:06.802Z	2025-05-06T19:52:29.927Z
cve-2025-14706		Shiguangwu sgwbox N3 NETREBOOT http_eshell_server comm…	Shiguangwu	sgwbox N3	2025-12-15T05:32:05.553Z	2025-12-15T18:00:55.566Z
cve-2025-56130	N/A	OS Command Injection vulnerability in Ruijie RG-S…	n/a	n/a	2025-12-11T00:00:00.000Z	2025-12-12T17:35:45.781Z
cve-2024-22770	7.4 (v3.1)	Hitron Systems DVR HVR-16781 Improper Input Validation…	Hitron Systems	DVR HVR-16781	2024-01-23T04:42:39.638Z	2025-05-22T14:58:05.088Z
cve-2024-22768	7.4 (v3.1)	Hitron Systems DVR HVR-4781 Improper Input Validation …	Hitron Systems	DVR HVR-4781	2024-01-23T04:31:40.489Z	2025-05-30T14:19:56.241Z
cve-2024-22772	7.4 (v3.1)	Hitron Systems DVR LGUVR-8H Improper Input Validation …	Hitron Systems	DVR LGUVR-8H	2024-01-23T04:52:06.708Z	2024-10-22T03:55:44.110Z
cve-2024-22769	7.4 (v3.1)	Hitron Systems DVR HVR-8781 Improper Input Validation …	Hitron Systems	DVR HVR-8781	2024-01-23T04:37:06.276Z	2025-05-30T14:19:50.183Z
cve-2024-22771	7.4 (v3.1)	Hitron Systems DVR LGUVR-4H Improper Input Validation …	Hitron Systems	DVR LGUVR-4H	2024-01-23T04:49:10.800Z	2024-10-22T03:55:42.957Z
cve-2024-23842	7.4 (v3.1)	Hitron Systems DVR LGUVR-16H Improper Input Validation…	Hitron Systems DVR	DVR LGUVR-16H	2024-01-23T04:56:41.242Z	2025-09-15T13:58:10.062Z
cve-2025-55311	N/A	An issue was discovered in Foxit PDF and Editor f…	n/a	n/a	2025-12-11T00:00:00.000Z	2025-12-11T16:25:41.126Z
cve-2024-33453	N/A	Buffer Overflow vulnerability in esp-idf v.5.1 al…	n/a	n/a	2024-10-17T00:00:00	2024-10-18T19:10:25.659Z

ID	Description	Published	Updated
fkie_cve-2023-52623	In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix a suspicious RCU u…	2024-03-26T18:15:08.930	2025-12-31T00:52:38.710
fkie_cve-2024-9180	A privileged Vault operator with write permissions to the root namespace’s identity endpoint could …	2024-10-10T21:15:05.010	2025-12-31T00:49:50.770
fkie_cve-2025-4166	Vault Community and Vault Enterprise Key/Value (kv) Version 2 plugin may unintentionally expose sen…	2025-05-02T15:15:50.313	2025-12-31T00:49:39.840
fkie_cve-2025-9806	A vulnerability was determined in Tenda F1202 1.2.0.9/1.2.0.14/1.2.0.20. Impacted is an unknown fun…	2025-09-02T01:15:30.957	2025-12-31T00:48:39.297
fkie_cve-2023-52927	In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be…	2025-03-14T15:15:39.253	2025-12-31T00:48:10.147
fkie_cve-2024-23128	A maliciously crafted MODEL file, when parsed in libodxdll.dll and ASMDATAX229A.dll through Autodes…	2024-02-22T04:15:08.590	2025-12-31T00:46:34.580
fkie_cve-2024-23127	A maliciously crafted MODEL, SLDPRT, or SLDASM file, when parsed in ODXSW_DLL.dll and libodxdll.dll…	2024-02-22T03:15:08.233	2025-12-31T00:46:21.110
fkie_cve-2024-23126	A maliciously crafted CATPART file when parsed CC5Dll.dll through Autodesk applications can be used…	2024-02-22T03:15:08.170	2025-12-31T00:44:45.573
fkie_cve-2024-23125	A maliciously crafted SLDPRT file when parsed ODXSW_DLL.dll through Autodesk applications can be us…	2024-02-22T03:15:08.100	2025-12-31T00:44:00.543
fkie_cve-2024-11422	A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bound…	2024-12-17T16:15:23.557	2025-12-31T00:42:35.660
fkie_cve-2024-23142	A maliciously crafted CATPART, STP, and MODEL file, when parsed in atf_dwg_consumer.dll, rose_x64_v…	2024-06-25T02:15:11.123	2025-12-31T00:41:46.143
fkie_cve-2024-23141	A maliciously crafted MODEL file, when parsed in libodxdll through Autodesk applications, can cause…	2024-06-25T02:15:11.030	2025-12-31T00:41:37.030
fkie_cve-2024-23140	A maliciously crafted 3DM and MODEL file, when parsed in opennurbs.dll and atf_api.dll through Auto…	2024-06-25T02:15:10.940	2025-12-31T00:41:28.917
fkie_cve-2024-23138	A maliciously crafted DWG file when parsed through Autodesk DWG TrueView can be used to cause a Sta…	2024-03-18T00:15:07.587	2025-12-31T00:41:24.293
fkie_cve-2024-23136	A maliciously crafted STP file in ASMKERN228A.dll when parsed through Autodesk applications can be …	2024-02-22T05:15:09.527	2025-12-31T00:41:19.613
fkie_cve-2024-23135	A maliciously crafted SLDPRT file in ASMkern228A.dll when parsed through Autodesk applications can …	2024-02-22T05:15:09.357	2025-12-31T00:41:11.480
fkie_cve-2024-23134	A maliciously crafted IGS file in tbb.dll when parsed through Autodesk AutoCAD can be used in user-…	2024-02-22T05:15:09.187	2025-12-31T00:41:03.790
fkie_cve-2024-23133	A maliciously crafted STP file in ASMDATAX228A.dll when parsed through Autodesk applications can le…	2024-02-22T04:15:08.917	2025-12-31T00:40:45.947
fkie_cve-2024-23131	A maliciously crafted STP file, when parsed in ASMIMPORT229A.dll, ASMKERN228A.dll, ASMkern229A.dll …	2024-02-22T04:15:08.797	2025-12-31T00:40:28.337
fkie_cve-2024-23130	A maliciously crafted SLDASM or SLDPRT file, when parsed in ODXSW_DLL.dll through Autodesk applicat…	2024-02-22T04:15:08.737	2025-12-31T00:40:24.163
fkie_cve-2024-23129	A maliciously crafted MODEL 3DM, STP, or SLDASM file, when in opennurbs.dll parsed through Autodesk…	2024-02-22T04:15:08.667	2025-12-31T00:40:11.737
fkie_cve-2025-64012	InvoicePlane commit debb446c is vulnerable to Incorrect Access Control. The invoices/view handler f…	2025-12-16T16:15:59.177	2025-12-31T00:39:06.250
fkie_cve-2025-65318	When using the attachment interaction functionality, Canary Mail 5.1.40 and below saves documents t…	2025-12-16T16:15:59.673	2025-12-31T00:38:32.100
fkie_cve-2025-65319	When using the attachment interaction functionality, Blue Mail 1.140.103 and below saves documents …	2025-12-16T16:15:59.790	2025-12-31T00:37:04.657
fkie_cve-2025-65427	An issue was discovered in Dbit N300 T1 Pro Easy Setup Wireless Wi-Fi Router on firmware version V1…	2025-12-16T16:15:59.900	2025-12-31T00:33:39.737
fkie_cve-2025-29231	A stored cross-site scripting (XSS) vulnerability in the page_save component of Linksys E5600 V1.1.…	2025-12-16T17:16:07.180	2025-12-31T00:30:16.810
fkie_cve-2025-37164	A remote code execution issue exists in HPE OneView.	2025-12-16T17:16:07.843	2025-12-31T00:29:42.973
fkie_cve-2025-62862	Ampere AmpereOne AC03 devices before 3.5.9.3, AmpereOne AC04 devices before 4.4.5.2, and AmpereOne …	2025-12-16T17:16:10.320	2025-12-31T00:28:47.350
fkie_cve-2025-63414	A Path Traversal vulnerability in the Allsky WebUI version v2024.12.06_06 allows an unauthenticated…	2025-12-16T17:16:10.473	2025-12-31T00:25:34.513
fkie_cve-2025-69202	Axios Cache Interceptor is a cache interceptor for axios. Prior to version 1.11.1, when a server ca…	2025-12-29T20:15:42.107	2025-12-30T23:15:53.463

ID	Description	Package	Published	Updated
pysec-2024-85	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.978434Z
pysec-2024-84	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.815196Z
pysec-2024-83	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.652331Z
pysec-2024-82	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2025-12-16T15:05:59.488172Z
pysec-2023-278	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2025-12-16T15:05:59.273145Z
pysec-2025-52	gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220	A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72	The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71	Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258	In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69	In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66	Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65	A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61	Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60	Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59	Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57	A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55	vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54	vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-33876	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.990196Z

ID	Description	Published	Updated
mal-2025-192601	Malicious code in vscode-azure-mcp-server (npm)	2025-12-16T17:02:46Z	2025-12-30T17:25:53Z
mal-2025-192698	Malicious code in ro-mobile (npm)	2025-12-22T22:29:27Z	2025-12-30T17:25:52Z
mal-2025-192694	Malicious code in dc-extras (npm)	2025-12-22T22:29:27Z	2025-12-30T17:25:49Z
mal-2025-192986	Malicious code in nbugs-video (npm)	2025-12-30T17:15:04Z	2025-12-30T17:15:05Z
mal-2025-192987	Malicious code in npm-xmt (npm)	2025-12-30T17:12:30Z	2025-12-30T17:12:31Z
mal-2025-192985	Malicious code in error-fallback (npm)	2025-12-30T17:11:04Z	2025-12-30T17:11:04Z
mal-2025-192984	Malicious code in chai-promised-chains (npm)	2025-12-30T17:11:04Z	2025-12-30T17:11:04Z
mal-2025-192982	Malicious code in @ptest2535/ui-core_mal (npm)	2025-12-30T17:05:14Z	2025-12-30T17:05:18Z
mal-2025-192980	Malicious code in @ptest2535/l_woker_mal (npm)	2025-12-30T17:05:14Z	2025-12-30T17:05:15Z
mal-2025-192979	Malicious code in @ptest2535/artifactory-demo-ptest (npm)	2025-12-30T17:05:14Z	2025-12-30T17:05:15Z
mal-2025-192981	Malicious code in @ptest2535/test_package (npm)	2025-12-30T17:05:14Z	2025-12-30T17:05:14Z
mal-2025-192988	Malicious code in yellowdiscordlookup (npm)	2025-12-30T17:01:58Z	2025-12-30T17:01:58Z
mal-2025-192983	Malicious code in bigmathex (npm)	2025-12-30T16:59:03Z	2025-12-30T16:59:03Z
mal-2024-3055	Malicious code in stitch-ui-toolbox (npm)	2024-06-25T13:02:06Z	2025-12-30T16:26:15Z
mal-2025-4762	Malicious code in react-server-dom-fb (npm)	2025-06-09T22:10:11Z	2025-12-30T16:26:14Z
mal-2025-48848	Malicious code in internal-test-utils (npm)	2025-10-23T19:35:56Z	2025-12-30T16:26:12Z
mal-2024-2379	Malicious code in float-kit (npm)	2024-06-25T12:43:12Z	2025-12-30T16:26:12Z
mal-2024-1800	Malicious code in baas-admin-sdk (npm)	2024-06-25T12:29:11Z	2025-12-30T16:26:11Z
mal-2025-192569	Malicious code in @ikarem/telemetry (npm)	2025-12-14T05:03:06Z	2025-12-30T16:26:10Z
mal-2025-192970	Malicious code in portal-lise (npm)	2025-12-30T16:16:04Z	2025-12-30T16:16:04Z
mal-2025-192967	Malicious code in eb-csr (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:39Z
mal-2025-192965	Malicious code in awsmcc (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:39Z
mal-2025-192976	Malicious code in shop-minis-docs (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192975	Malicious code in rt-text-media-collection (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192974	Malicious code in rt-interactive-card-collection (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192973	Malicious code in react-dom-bindings (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192972	Malicious code in react-devtools-shared (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192971	Malicious code in react-devtools-extensions (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:38Z
mal-2025-192977	Malicious code in shopify-app-react-router (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:28Z
mal-2025-192966	Malicious code in cdd-plugin-for-datawarrior (npm)	2025-12-30T16:12:28Z	2025-12-30T16:12:28Z

ID	Description	Published	Updated
wid-sec-w-2025-2930	Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2020-07-21T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2717	Django: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2595	Linux Kernel: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2579	Linux Kernel: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2495	Django: Mehrere Schwachstellen ermöglichen Denial of Service und SQL-Injection	2025-11-05T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2431	Linux Kernel: Mehrere Schwachstellen	2025-10-28T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2053	Linux Kernel: Mehrere Schwachstellen	2025-09-15T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2045	expat: Schwachstelle ermöglicht Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1948	libxml2 (exsltDynMapFunction): Schwachstelle ermöglicht Denial of Service	2025-09-02T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1744	OpenJPEG: Schwachstelle ermöglicht Denial of Service	2025-08-07T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0956	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Denial of Service	2025-05-06T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0836	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Offenlegung von Informationen	2025-04-15T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2024-1850	Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-13T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-2853	Red Hat Enterprise Linux: Mehrere Schwachstellen	2023-11-07T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-0580	Red Hat Enterprise Linux (mod_auth_openidc): Mehrere Schwachstellen	2022-05-10T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2022-0499	expat: Schwachstelle ermöglicht Codeausführung	2022-01-26T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2871	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-17T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2830	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service	2025-12-11T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2741	cPython: Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2706	Python: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-01T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2694	MariaDB: Schwachstelle ermöglicht Codeausführung	2025-11-27T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2677	OPNsense: Schwachstelle ermöglicht Manipulation von Dateien	2025-11-25T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2645	Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2637	Rsync: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-18T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-512988	SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-800126	SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-723487	SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products	2024-07-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-673996	SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-408105	SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products	2022-12-13T00:00:00Z	2025-12-09T00:00:00Z
ssa-392859	SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2025-11-17T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:21885	Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update	2025-11-20T19:56:52+00:00	2025-11-29T08:07:16+00:00
rhsa-2025:21368	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update	2025-11-13T17:36:32+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19961	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.12.6 security update	2025-11-10T01:30:28+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19958	Red Hat Security Advisory: multicluster engine for Kubernetes v2.7.7 security update	2025-11-10T01:14:14+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19335	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes 2.14.1 security update	2025-10-30T12:58:23+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:19332	Red Hat Security Advisory: multicluster engine for Kubernetes 2.9.1 security update	2025-10-30T12:27:36+00:00	2025-11-29T08:07:14+00:00
rhsa-2025:9646	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update	2025-06-25T14:06:29+00:00	2025-11-29T06:55:12+00:00
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2025-11-29T06:55:11+00:00
rhsa-2025:9562	Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update	2025-10-21T04:13:27+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9541	Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates	2025-06-24T14:31:21+00:00	2025-11-29T06:55:08+00:00
rhsa-2025:9388	Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates	2025-06-23T15:10:48+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9259	Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update	2025-06-26T01:50:03+00:00	2025-11-29T06:55:06+00:00
rhsa-2025:9167	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release	2025-06-17T09:27:34+00:00	2025-11-29T06:55:05+00:00
rhsa-2025:9136	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.16.2 product release	2025-06-16T18:32:02+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8704	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.17.1 product release	2025-06-09T16:42:07+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8552	Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update	2025-06-11T12:02:51+00:00	2025-11-29T06:55:04+00:00
rhsa-2025:8691	Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update	2025-06-09T14:26:17+00:00	2025-11-29T06:55:02+00:00
rhsa-2025:8560	Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update	2025-06-10T06:26:36+00:00	2025-11-29T06:55:01+00:00
rhsa-2025:8556	Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update	2025-06-13T05:16:43+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8544	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update	2025-06-04T20:11:19+00:00	2025-11-29T06:55:00+00:00
rhsa-2025:8542	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates	2025-06-04T21:17:49+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8510	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update	2025-06-04T12:26:00+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8479	Red Hat Security Advisory: RHODF-4.16-RHEL-9 security update	2025-06-04T01:58:44+00:00	2025-11-29T06:54:58+00:00
rhsa-2025:8392	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates	2025-06-04T00:41:53+00:00	2025-11-29T06:54:57+00:00
rhsa-2025:8390	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes	2025-06-02T17:37:18+00:00	2025-11-29T06:54:55+00:00
rhsa-2025:8384	Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates	2025-06-02T14:56:45+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8299	Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update	2025-06-04T12:16:12+00:00	2025-11-29T06:54:54+00:00
rhsa-2025:8284	Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update	2025-06-03T10:16:45+00:00	2025-11-29T06:54:53+00:00
rhsa-2025:8280	Red Hat Security Advisory: OpenShift Container Platform 4.17.32 bug fix and security update	2025-06-04T09:19:59+00:00	2025-11-29T06:54:52+00:00
rhsa-2025:8274	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update	2025-05-28T20:39:49+00:00	2025-11-29T06:54:52+00:00

ID	Description	Published	Updated
msrc_cve-2025-13281	Portworx Half-Blind SSRF in kube-controller-manager	2025-12-02T00:00:00.000Z	2025-12-30T14:36:11.000Z
msrc_cve-2025-14104	Util-linux: util-linux: heap buffer overread in setpwnam() when processing 256-byte usernames	2025-12-02T00:00:00.000Z	2025-12-30T14:36:04.000Z
msrc_cve-2025-65637	A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters.	2025-12-02T00:00:00.000Z	2025-12-30T14:35:57.000Z
msrc_cve-2025-13699	MariaDB mariadb-dump Utility Directory Traversal Remote Code Execution Vulnerability	2025-12-02T00:00:00.000Z	2025-12-30T01:37:07.000Z
msrc_cve-2025-68615	Net-SNMP snmptrapd crash	2025-12-02T00:00:00.000Z	2025-12-30T01:36:49.000Z
msrc_cve-2025-13912	Potential non-constant time compiled code with Clang LLVM	2025-12-02T00:00:00.000Z	2025-12-30T01:36:30.000Z
msrc_cve-2023-52970	MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., 11.0 through 11.0., and 11.1 through 11.4.* crashes in Item_direct_view_ref::derived_field_transformer_for_where.	2025-03-02T00:00:00.000Z	2025-12-30T01:35:17.000Z
msrc_cve-2025-68973	In GnuPG through 2.4.8, armor_filter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. (For ExtendedLTS, 2.2.51 and later are fixed versions.)	2025-12-02T00:00:00.000Z	2025-12-30T01:01:21.000Z
msrc_cve-2025-14180	NULL Pointer Dereference in PDO quoting	2025-12-02T00:00:00.000Z	2025-12-29T14:36:08.000Z
msrc_cve-2025-14178	Heap buffer overflow in array_merge()	2025-12-02T00:00:00.000Z	2025-12-29T14:36:03.000Z
msrc_cve-2025-14177	Information Leak of Memory in getimagesize	2025-12-02T00:00:00.000Z	2025-12-29T14:35:58.000Z
msrc_cve-2025-68972	In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can construct a modified message that places additional text after the signed material, such that signature verification of the modified message succeeds (although an "invalid armor" message is printed during verification). This is related to use of \f as a marker to denote truncation of a long plaintext line.	2025-12-02T00:00:00.000Z	2025-12-29T14:35:53.000Z
msrc_cve-2025-68156	Expr has Denial of Service via Unbounded Recursion in Builtin Functions	2025-12-02T00:00:00.000Z	2025-12-27T01:36:36.000Z
msrc_cve-2025-7425	Libxslt: heap use-after-free in libxslt caused by atype corruption in xmlattrptr	2025-07-02T00:00:00.000Z	2025-12-26T14:39:00.000Z
msrc_cve-2023-54061	x86: fix clear_user_rep_good() exception handling annotation	2025-12-02T00:00:00.000Z	2025-12-26T14:38:55.000Z
msrc_cve-2025-68733	smack: fix bug: unprivileged task can create labels	2025-12-02T00:00:00.000Z	2025-12-26T14:38:50.000Z
msrc_cve-2025-68374	md: fix rcu protection in md_wakeup_thread	2025-12-02T00:00:00.000Z	2025-12-26T14:38:46.000Z
msrc_cve-2025-68724	crypto: asymmetric_keys - prevent overflow in asymmetric_key_generate_id	2025-12-02T00:00:00.000Z	2025-12-26T14:38:41.000Z
msrc_cve-2025-68380	wifi: ath11k: fix peer HE MCS assignment	2025-12-02T00:00:00.000Z	2025-12-26T14:38:36.000Z
msrc_cve-2025-68376	coresight: ETR: Fix ETR buffer use-after-free issue	2025-12-02T00:00:00.000Z	2025-12-26T14:38:31.000Z
msrc_cve-2025-68378	bpf: Fix stackmap overflow check in __bpf_get_stackid()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:26.000Z
msrc_cve-2025-68727	ntfs3: Fix uninit buffer allocated by __getname()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:22.000Z
msrc_cve-2025-68364	ocfs2: relax BUG() to ocfs2_error() in __ocfs2_move_extent()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:17.000Z
msrc_cve-2025-68346	ALSA: dice: fix buffer overflow in detect_stream_formats()	2025-12-02T00:00:00.000Z	2025-12-26T14:38:12.000Z
msrc_cve-2025-68379	RDMA/rxe: Fix null deref on srq->rq.queue after resize failure	2025-12-02T00:00:00.000Z	2025-12-26T14:38:07.000Z
msrc_cve-2025-68363	bpf: Check skb->transport_header is set in bpf_skb_check_mtu	2025-12-02T00:00:00.000Z	2025-12-26T14:38:02.000Z
msrc_cve-2025-68740	ima: Handle error code returned by ima_filter_rule_match()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:57.000Z
msrc_cve-2023-54082	af_unix: Fix null-ptr-deref in unix_stream_sendpage().	2025-12-02T00:00:00.000Z	2025-12-26T14:37:53.000Z
msrc_cve-2025-68358	btrfs: fix racy bitfield write in btrfs_clear_space_info_full()	2025-12-02T00:00:00.000Z	2025-12-26T14:37:48.000Z
msrc_cve-2025-68372	nbd: defer config put in recv_work	2025-12-02T00:00:00.000Z	2025-12-26T14:37:43.000Z

ID	Description	Published	Updated
icsa-25-177-01	Mitsubishi Electric Air Conditioning Systems (Update B)	2025-06-26T06:00:00.000000Z	2025-12-23T07:00:00.000000Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-352-08	Axis Communications Camera Station Pro, Camera Station, and Device Manager	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-07	Rockwell Automation Micro820, Micro850, Micro870	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-06	Advantech WebAccess/SCADA	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-03	National Instruments LabView	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-01	Inductive Automation Ignition	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-24-291-03	Mitsubishi Electric CNC Series (Update C)	2024-10-17T06:00:00.000000Z	2025-12-18T07:00:00.000000Z
va-25-352-01	BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
icsa-25-350-04	Mitsubishi Electric GT Designer3	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-03	Hitachi Energy AFS, AFR and AFF Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-02	Johnson Controls PowerG, IQPanel and IQHub	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-01	Güralp Systems Fortimus Series, Minimus Series, and Certimus Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-308-01	Fuji Electric Monitouch V-SFT-6 (Update A)	2025-11-04T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
va-25-345-01	CISA Software Acquisition Guide Supplier Response Web Tool XSS	2025-12-12T20:27:47Z	2025-12-12T20:27:47Z
icsma-25-345-02	Varex Imaging Panoramic Dental Imaging Software	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsma-25-345-01	Grassroots DICOM (GDCM)	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-10	OpenPLC_V3	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-03	AzeoTech DAQFactory	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2025-12-17T16:00:00+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00

ID	Description	Published	Updated
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
SCA-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
SCA-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2024_2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
OXDC-ADV-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
OXAS-ADV-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
OXDC-ADV-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
OXAS-ADV-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
OXAS-ADV-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
OXAS-ADV-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
OXAS-ADV-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Updated
var-202411-1650	D-LINK DI-8400 v16.07.26A1 was discovered to contain multiple remote command execution (R…	2024-11-29T23:10:19.240000Z
var-202411-1640	Linksys E3000 is a powerful dual-band Wireless-N router from Linksys, an American company…	2024-11-29T23:10:19.018000Z
var-202411-0543	A vulnerability has been identified in SIMATIC S7-PLCSIM V16 (All versions), SIMATIC S7-P…	2024-11-29T23:09:56.296000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-11-29T23:09:49.324000Z
var-201807-0341	ABB Panel Builder 800 all versions has an improper input validation vulnerability which m…	2024-11-29T23:09:47.475000Z
var-202411-1422	D-Link DI-8200 16.07.26A1 is vulnerable to remote command execution in the msp_info_htm f…	2024-11-29T23:09:36.483000Z
var-202411-1539	D-LINK DI-8003 v16.07.26A1 was discovered to contain a buffer overflow via the host_ip pa…	2024-11-29T23:08:33.376000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-11-29T23:08:28.292000Z
var-202410-3364	In TP-Link TL-WDR7660 v1.0, the guestRuleJsonToBin function handles the parameter string …	2024-11-29T23:07:43.747000Z
var-202411-1441	D-LINK DI-8003 v16.07.16A1 was discovered to contain a buffer overflow via the notify par…	2024-11-29T23:07:42.700000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-11-29T23:07:06.630000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-11-29T23:04:25.952000Z
var-202407-0046	mySCADA myPRO uses a hard-coded password which could allow an attacker to remotely exec…	2024-11-29T23:04:10.837000Z
var-202410-2013	In mm_GetMobileIdIndexForNsUpdate of mm_GmmPduCodec.c, there is a possible out of bounds …	2024-11-29T23:04:10.282000Z
var-201105-0156	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30…	2024-11-29T22:59:31.553000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-11-29T22:58:37.276000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-11-29T22:57:57.328000Z
var-201407-0233	Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote atta…	2024-11-29T22:56:23.397000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-11-29T22:56:15.896000Z
var-202411-1458	Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink…	2024-11-29T22:56:03.034000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-11-29T22:54:40.239000Z
var-201908-0863	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE…	2024-11-29T22:54:30.971000Z
var-201402-0027	The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re…	2024-11-29T22:51:33.128000Z
var-201402-0028	The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni…	2024-11-29T22:51:32.785000Z
var-201402-0026	Buffer overflow in the process_ra function in the router advertisement daemon (radvd) bef…	2024-11-29T22:51:32.731000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-11-29T22:51:22.051000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-11-29T22:51:21.315000Z
var-201906-1029	In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne…	2024-11-29T22:51:20.239000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-11-29T22:49:47.108000Z
var-201801-0151	A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior …	2024-11-29T22:49:45.101000Z

ID	Description	Published	Updated
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2025-12-24T11:10+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-12-23T14:36+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00

ID	Description	Updated
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00
ts-2023-001	TS-2023-001	2023-01-17T00:00

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated
gcve-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (v3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
gcve-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (v3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z