Recent vulnerabilities

Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-42271
8.7 (4.0)
LiteLLM: Authenticated command execution via MCP stdio… BerriAI
 litellm
 2026-05-08T03:35:16.758Z 2026-05-09T03:55:48.638Z
CVE-2026-44298
4.1 (3.1)
Kimai: Arbitrary file read in invoice PDF renderer (admin) kimai
 kimai
 2026-05-08T03:32:06.672Z 2026-05-08T14:06:31.033Z
CVE-2026-41498
3.3 (3.1)
Kimai: Team API Missing Object-Level Authorization kimai
 kimai
 2026-05-08T03:30:32.310Z 2026-05-08T21:28:32.582Z
CVE-2026-8133
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
zyx0814 FilePress Shares Filelist API admin.php sql in… zyx0814
 FilePress
 2026-05-08T03:30:13.832Z 2026-05-08T14:07:28.131Z
CVE-2026-42267
5.4 (4.0)
Kimai: Formula Injection via tag names in XLSX export kimai
 kimai
 2026-05-08T03:28:52.226Z 2026-05-08T12:58:12.770Z
CVE-2026-41900
8.8 (3.1)
OpenLearnX has Critical Remote Code Execution Through … th30d4y
 OpenLearnX
 2026-05-08T03:25:50.286Z 2026-05-08T12:54:17.267Z
CVE-2026-42150
5.1 (3.1)
wlc: print_html outputs API data without HTML escaping… WeblateOrg
 wlc
 2026-05-08T03:23:12.234Z 2026-05-08T21:28:38.342Z
CVE-2026-42264
7.4 (3.1)
Axios: Prototype pollution read-side gadgets in HTTP a… axios
 axios
 2026-05-08T03:20:24.248Z 2026-05-09T03:55:55.325Z
CVE-2026-41645
5.3 (3.1)
Nuclei: Environment variable disclosure via Response-D… projectdiscovery
 nuclei
 2026-05-08T03:17:19.302Z 2026-05-08T03:17:19.302Z
CVE-2026-8132
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
CodeAstro Leave Management System login.php sql injection CodeAstro
 Leave Management System
 2026-05-08T03:15:09.496Z 2026-05-08T20:05:10.452Z
CVE-2026-41646
5.5 (3.1)
Nuclei: Local File Read via require() Module Loader Bypass projectdiscovery
 nuclei
 2026-05-08T03:14:49.908Z 2026-05-08T14:11:15.673Z
CVE-2026-42261
7.1 (3.1)
PromptHub: Authenticated SSRF via IPv6 filter bypass i… legeling
 PromptHub
 2026-05-08T03:11:25.305Z 2026-05-08T03:11:25.305Z
CVE-2026-43944
9.4 (4.0)
electerm: dangerous code can be run through links or c… electerm
 electerm
 2026-05-08T03:08:09.046Z 2026-05-08T03:08:09.046Z
CVE-2026-43942
5.5 (3.1)
electerm: Full process.env exposed to renderer via win… electerm
 electerm
 2026-05-08T03:03:54.752Z 2026-05-08T23:09:52.223Z
CVE-2026-43941
9.6 (3.1)
Unvalidated shell.openExternal in electerm allows arbi… electerm
 electerm
 2026-05-08T03:01:12.461Z 2026-05-08T21:28:44.766Z
CVE-2026-8131
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
SourceCodester SUP Online Shopping replymsg.php sql in… SourceCodester
 SUP Online Shopping
 2026-05-08T03:00:18.891Z 2026-05-08T23:08:50.680Z
CVE-2026-43940
8.4 (3.1)
electerm: Path traversal in electerm runWidget leads t… electerm
 electerm
 2026-05-08T02:58:05.646Z 2026-05-08T12:52:47.567Z
CVE-2026-43943
7.8 (3.1)
electerm: RCE via malicious SSH server filename in ope… electerm
 electerm
 2026-05-08T02:55:51.285Z 2026-05-08T14:44:16.203Z
CVE-2026-41500
9.8 (3.1)
electerm has Command Injection Vulnerability via runMa… electerm
 electerm
 2026-05-08T02:53:44.494Z 2026-05-08T23:06:39.245Z
CVE-2026-41501
9.8 (3.1)
electerm has Command Injection Vulnerability via runLi… electerm
 electerm
 2026-05-08T02:51:10.144Z 2026-05-08T11:19:54.297Z
CVE-2026-8130
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
SourceCodester SUP Online Shopping message.php sql injection SourceCodester
 SUP Online Shopping
 2026-05-08T02:45:09.771Z 2026-05-08T11:29:09.929Z
CVE-2026-8129
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
SourceCodester SUP Online Shopping wishlist.php sql in… SourceCodester
 SUP Online Shopping
 2026-05-08T02:30:11.130Z 2026-05-08T13:00:19.618Z
CVE-2026-8128
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
SourceCodester SUP Online Shopping viewmsg.php sql injection SourceCodester
 SUP Online Shopping
 2026-05-08T02:15:09.625Z 2026-05-08T21:28:51.228Z
CVE-2026-3508
6.8 (4.0)
An Out-of-bounds Read vulnerability in the IOCTL … ASUS
 ASUS System Control Interface
 2026-05-08T02:00:53.822Z 2026-05-08T13:02:09.176Z
CVE-2026-6737
2 (4.0)
An Exposed IOCTL with Insufficient Access Control… ASUS
 AsusPTPFilter
 2026-05-08T02:00:26.422Z 2026-05-08T13:02:29.276Z
CVE-2026-8127
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
eladmin Users API Endpoint UserController.java checkLe… n/a
 eladmin
 2026-05-08T02:00:14.462Z 2026-05-08T14:11:52.923Z
CVE-2026-8126
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
SourceCodester Comment System post_comment.php sql injection SourceCodester
 Comment System
 2026-05-08T01:45:11.083Z 2026-05-08T20:09:46.965Z
CVE-2026-8125
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
code-projects Simple Chat System sendMessage.php sql i… code-projects
 Simple Chat System
 2026-05-08T01:30:10.489Z 2026-05-08T23:04:28.126Z
CVE-2026-8124
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
GPAC box_code_base.c sidx_box_read allocation of resources n/a
 GPAC
 2026-05-08T01:15:10.347Z 2026-05-08T11:41:38.846Z
CVE-2026-8123
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
Open5GS NSSF message.c ogs_sbi_discovery_option_add_sn… n/a
 Open5GS
 2026-05-08T01:00:12.670Z 2026-05-08T13:01:17.005Z
ID CVSS Description Vendor Product Published Updated
CVE-2023-46453
9.8 (3.1)
Certain GL.iNet devices with 4.x firmware allow a… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T18:59:23.304Z
CVE-2024-53326
7.3 (3.1)
LINQPad before 5.52.01 Pro edition is vulnerable … n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T19:07:17.134Z
CVE-2024-51092
9.1 (3.1)
LibreNMS before 24.10.0 allows a remote attacker … n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:11:39.042Z
CVE-2024-46508
7.5 (3.1)
yeti-platform yeti before 2.1.12 allows attackers… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T18:24:44.897Z
CVE-2024-46507
7.3 (3.1)
A SSTI (server side template injection) vulnerabi… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T17:40:42.362Z
CVE-2024-45257
7.3 (3.1)
A Command Injection issue in the payload build pa… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T17:43:08.428Z
CVE-2024-33724
5.4 (3.1)
SOPlanning 1.52.00 is vulnerable to Cross Site Sc… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T21:29:15.895Z
CVE-2024-33722
6.3 (3.1)
SOPlanning 1.52.00 is vulnerable to SQL Injection… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T17:45:14.137Z
CVE-2024-33288
7.3 (3.1)
Prison Management System Using PHP v1.0 was disco… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T17:47:46.141Z
CVE-2024-30167
6.3 (3.1)
/cgi-bin/time.cgi in Atlona AT-OME-MS42 Matrix Sw… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:09:36.933Z
CVE-2024-27686
7.5 (3.1)
Mikrotik RouterOS (x86) 6.40.5 through 6.49.10 (f… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:00:45.540Z
CVE-2023-47268
5.3 (3.1)
In libslic3r/GCode/PostProcessor.cpp in Prusa Pru… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T17:07:37.996Z
CVE-2026-8148
7.8 (3.1)
NAVER MYBOX Explorer for Windows before 3.0.11.16… NAVER
 NAVER MYBOX Explorer
 2026-05-08T04:36:12.538Z 2026-05-08T17:59:41.775Z
CVE-2026-8138
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda CX12L SetPptpServerCfg” formSetPPTPServer stack-… Tenda
 CX12L
 2026-05-08T04:15:10.228Z 2026-05-08T10:35:06.800Z
CVE-2026-8137
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Totolink X5000R formDdns sub_458E40 buffer overflow Totolink
 X5000R
 2026-05-08T04:00:13.042Z 2026-05-08T12:55:48.365Z
CVE-2026-42279
5.8 (3.1)
solidtime: Time entry update endpoint allows cross-org… solidtime-io
 solidtime
 2026-05-08T03:57:31.727Z 2026-05-08T10:38:51.086Z
CVE-2026-42278
8.8 (4.0)
UltraDAG: Smart Account Spending Policy Bypass via Pockets UltraDAGcom
 core
 2026-05-08T03:55:01.093Z 2026-05-08T23:16:05.807Z
CVE-2026-42277
6.5 (3.1)
Onyx: IDOR in /chat/file/{file_id} allows any authenti… onyx-dot-app
 onyx
 2026-05-08T03:51:11.520Z 2026-05-08T21:28:14.132Z
CVE-2026-42276
4.3 (3.1)
Onyx: IDOR in /chat/stop-chat-session allows any authe… onyx-dot-app
 onyx
 2026-05-08T03:49:56.765Z 2026-05-08T12:57:18.681Z
CVE-2023-42346
N/A
Alkacon OpenCms before 16 allows XXE when the <!D… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T04:46:17.859Z
CVE-2023-42345
6.1 (3.1)
A Cross Site Scripting vulnerability in Alkacon O… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T12:59:37.304Z
CVE-2023-42344
7.3 (3.1)
Alkacon OpenCms before 10.5.1 allows remote unaut… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:36:11.494Z
CVE-2023-42343
6.1 (3.1)
A Cross Site Scripting vulnerability in Alkacon O… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T13:46:46.335Z
CVE-2022-45899
6.5 (3.1)
Nokia Broadcast Message Center (BMC) before 13.1 … n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T13:48:07.147Z
CVE-2022-26523
5.3 (3.1)
The socket connection handler in aswArPot.sys in … n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:07:59.984Z
CVE-2022-26522
7.8 (3.1)
The socket connection handler in aswArPot.sys in … n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T14:29:11.603Z
CVE-2022-23961
6.1 (3.1)
In Thruk Monitoring through 2.46.3, the login fie… n/a
 n/a
 2026-05-08T00:00:00.000Z 2026-05-08T13:49:44.094Z
CVE-2026-8136
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
SourceCodester Pharmacy Sales and Inventory System ind… SourceCodester
 Pharmacy Sales and Inventory System
 2026-05-08T03:45:08.503Z 2026-05-08T21:28:20.603Z
CVE-2026-8133
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
zyx0814 FilePress Shares Filelist API admin.php sql in… zyx0814
 FilePress
 2026-05-08T03:30:13.832Z 2026-05-08T14:07:28.131Z
CVE-2026-8132
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
CodeAstro Leave Management System login.php sql injection CodeAstro
 Leave Management System
 2026-05-08T03:15:09.496Z 2026-05-08T20:05:10.452Z
ID Description Published Updated
fkie_cve-2025-70095 A cross-site scripting (XSS) vulnerability in the item management and sales invoice function of Ope… 2026-02-13T16:16:11.080 2026-02-17T14:59:05.980
fkie_cve-2025-70094 A cross-site scripting (XSS) vulnerability in the Generate Item Barcode function of OpenSourcePOS v… 2026-02-13T16:16:10.977 2026-02-17T14:59:24.453
fkie_cve-2025-70093 An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted… 2026-02-13T16:16:10.867 2026-02-17T14:59:41.803
fkie_cve-2025-70091 A cross-site scripting (XSS) vulnerability in the Customers function of OpenSourcePOS v3.4.1 allows… 2026-02-13T16:16:10.760 2026-02-17T15:00:22.087
fkie_cve-2026-25531 Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, The fix for… 2026-02-13T15:15:57.990 2026-02-13T20:43:30.620
fkie_cve-2026-1578 HP App for Android is potentially vulnerable to cross-site scripting (XSS) when using an outdated v… 2026-02-13T15:15:57.853 2026-04-15T00:35:42.020
fkie_cve-2026-23112 In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks i… 2026-02-13T14:16:10.403 2026-05-04T09:16:00.390
fkie_cve-2026-23111 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inve… 2026-02-13T14:16:10.283 2026-04-03T14:16:23.820
fkie_cve-2026-1619 Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/… 2026-02-13T14:16:10.067 2026-03-02T13:38:01.157
fkie_cve-2026-1618 Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. F… 2026-02-13T14:16:09.910 2026-03-02T13:38:12.053
fkie_cve-2025-14349 Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability i… 2026-02-13T14:16:09.210 2026-03-02T13:37:32.403
fkie_cve-2026-2443 A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processin… 2026-02-13T12:16:09.107 2026-03-23T20:16:25.643
fkie_cve-2025-33042 Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Avro Java SDK whe… 2026-02-13T12:16:07.570 2026-02-20T15:07:04.680
fkie_cve-2026-22892 Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 fail to validate user pe… 2026-02-13T11:16:10.693 2026-02-18T21:34:16.227
fkie_cve-2026-20796 Mattermost versions 10.11.x <= 10.11.9 fail to properly validate channel membership at the time of … 2026-02-13T11:16:10.280 2026-02-23T15:53:11.073
fkie_cve-2026-0872 Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on Windows … 2026-02-13T09:16:07.753 2026-04-15T00:35:42.020
fkie_cve-2025-48023 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T06:16:11.917 2026-03-02T15:34:07.500
fkie_cve-2025-48022 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T06:16:11.790 2026-03-02T15:34:00.107
fkie_cve-2025-48021 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T06:16:11.650 2026-03-02T15:33:57.503
fkie_cve-2025-15520 The RegistrationMagic WordPress plugin before 6.0.7.2 checks nonces but not capabilities, allowing… 2026-02-13T06:16:10.897 2026-04-15T00:35:42.020
fkie_cve-2025-48020 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T05:16:09.567 2026-03-02T15:34:05.240
fkie_cve-2025-48019 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T05:16:09.423 2026-03-02T15:34:02.843
fkie_cve-2025-1924 A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati… 2026-02-13T05:16:02.843 2026-03-02T15:33:54.707
fkie_cve-2026-26257 Rejected reason: Not used 2026-02-13T04:15:54.217 2026-02-13T04:15:54.217
fkie_cve-2026-26256 Rejected reason: Not used 2026-02-13T04:15:54.073 2026-02-13T04:15:54.073
fkie_cve-2026-26255 Rejected reason: Not used 2026-02-13T04:15:54.007 2026-02-13T04:15:54.007
fkie_cve-2026-26254 Rejected reason: Not used 2026-02-13T04:15:53.940 2026-02-13T04:15:53.940
fkie_cve-2026-26253 Rejected reason: Not used 2026-02-13T04:15:53.877 2026-02-13T04:15:53.877
fkie_cve-2026-26252 Rejected reason: Not used 2026-02-13T04:15:53.817 2026-02-13T04:15:53.817
fkie_cve-2026-26251 Rejected reason: Not used 2026-02-13T04:15:53.757 2026-02-13T04:15:53.757
ID Severity Description Published Updated
ghsa-7g7m-x38c-mrrv
5.4 (3.1)
SOPlanning 1.52.00 is vulnerable to Cross Site Scripting (XSS) via the groupe_id parameter to proce… 2026-05-08T06:32:38Z 2026-05-09T00:31:53Z
ghsa-w223-mrpp-5vv6
7.8 (3.1)
The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver befo… 2026-05-08T06:32:37Z 2026-05-08T15:31:19Z
ghsa-rm8r-x5mx-f7w9
7.3 (3.1)
5.5 (4.0)
A vulnerability was determined in SourceCodester SUP Online Shopping 1.0. The impacted element is a… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-rcc6-6q2f-m2cw
7.3 (3.1)
Alkacon OpenCms before 10.5.1 allows remote unauthenticated attackers to obtain sensitive informati… 2026-05-08T06:32:37Z 2026-05-08T15:31:20Z
ghsa-qm5g-9237-pg9r
7.3 (3.1)
5.5 (4.0)
A security flaw has been discovered in SourceCodester SUP Online Shopping 1.0. This impacts an unkn… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-pxqj-577f-7xfv
7.3 (3.1)
5.5 (4.0)
A security vulnerability has been detected in zyx0814 FilePress up to 2.2.0. Affected by this vulne… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-pj6p-9p8x-5mfc
Alkacon OpenCms before 16 allows XXE when the <!DOCTYPE> refers to an external host. 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-hqhv-x7gw-gg62
6.1 (3.1)
In Thruk Monitoring through 2.46.3, the login field of the login form is vulnerable to reflected XS… 2026-05-08T06:32:37Z 2026-05-08T15:31:19Z
ghsa-h488-x5g3-rjr5
5.3 (3.1)
The socket connection handler in aswArPot.sys in the Avast and AVG Windows Anti Rootkit driver befo… 2026-05-08T06:32:37Z 2026-05-08T15:31:19Z
ghsa-gxmg-m8j9-9hxw
7.3 (3.1)
5.5 (4.0)
A vulnerability was identified in SourceCodester SUP Online Shopping 1.0. This affects an unknown f… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-gggm-v39x-cpg8
7.3 (3.1)
5.5 (4.0)
A weakness has been identified in CodeAstro Leave Management System 1.0. Affected is an unknown fun… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-8gpv-c454-3hfc
6.1 (3.1)
A Cross Site Scripting vulnerability in Alkacon OpenCms before 10.5.1 exists via cmis-online/type. 2026-05-08T06:32:37Z 2026-05-08T15:31:19Z
ghsa-6f3j-w8c5-257p
6.5 (3.1)
Nokia Broadcast Message Center (BMC) before 13.1 allows an unauthenticated remote attacker to do OS… 2026-05-08T06:32:37Z 2026-05-08T15:31:19Z
ghsa-3h5f-583p-w5vj
2.4 (3.1)
1.9 (4.0)
A flaw has been found in SourceCodester Pharmacy Sales and Inventory System 1.0. This affects an un… 2026-05-08T06:32:37Z 2026-05-08T06:32:37Z
ghsa-2887-f3v6-6rjf
6.1 (3.1)
A Cross Site Scripting vulnerability in Alkacon OpenCms before 16 exists via updateModelGroups.jsp. 2026-05-08T06:32:37Z 2026-05-08T15:31:20Z
ghsa-rw2q-pc53-f59p
7.3 (3.1)
5.5 (4.0)
A flaw has been found in SourceCodester Comment System 1.0. This issue affects some unknown process… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-qvg3-xf4r-fgqm
3.3 (3.1)
1.9 (4.0)
A security vulnerability has been detected in GPAC up to 26.02.0. This affects the function sidx_bo… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-q74f-j88c-7g46
2.0 (4.0)
An Exposed IOCTL with Insufficient Access Control vulnerability in AsusPTPFilter allows a local use… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-pj2x-r6wc-476j
6.3 (3.1)
2.1 (4.0)
A vulnerability was detected in code-projects Simple Chat System 1.0. This vulnerability affects un… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-m3gg-rqf2-7qcj
6.8 (4.0)
An Out-of-bounds Read vulnerability in the IOCTL handler in ASUS System Control Interface allows a … 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-93h2-p56q-h6jc
7.3 (3.1)
5.5 (4.0)
A vulnerability was found in SourceCodester SUP Online Shopping 1.0. The affected element is an unk… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-7rvc-3rgf-7589
6.3 (3.1)
2.1 (4.0)
A vulnerability has been found in eladmin up to 2.7. Impacted is the function checkLevel of the fil… 2026-05-08T03:30:24Z 2026-05-08T03:30:24Z
ghsa-x7c4-pm53-48h6
4.3 (3.1)
2.1 (4.0)
A flaw has been found in Open5GS up to 2.7.7. The affected element is the function nssf_nnrf_nssele… 2026-05-08T03:30:23Z 2026-05-08T03:30:23Z
ghsa-w88m-grx2-xwvr
3.3 (3.1)
1.9 (4.0)
A vulnerability was detected in Open5GS up to 2.7.7. Impacted is the function ogs_sbi_stream_find_b… 2026-05-08T03:30:23Z 2026-05-08T03:30:23Z
ghsa-m782-cq9r-w5vf
4.3 (3.1)
2.1 (4.0)
A vulnerability has been found in Open5GS up to 2.7.7. The impacted element is the function ogs_sbi… 2026-05-08T03:30:23Z 2026-05-08T03:30:23Z
ghsa-ghx3-pgmg-h9fc
4.3 (3.1)
2.1 (4.0)
A vulnerability was found in Open5GS up to 2.7.7. This affects the function ogs_sbi_discovery_optio… 2026-05-08T03:30:23Z 2026-05-08T03:30:23Z
ghsa-fxh4-4qxc-cq82
4.3 (3.1)
2.1 (4.0)
A vulnerability was determined in Open5GS up to 2.7.7. This impacts the function ogs_sbi_discovery_… 2026-05-08T03:30:23Z 2026-05-08T03:30:23Z
ghsa-m8jc-jjj9-hgc8
7.3 (3.1)
This vulnerability, in the MAXHUB Pivot client application versions prior to v1.36.2, may allow an… 2026-05-08T00:31:35Z 2026-05-08T00:31:35Z
ghsa-h65h-28xw-w79q
6.3 (3.1)
2.1 (4.0)
A weakness has been identified in huangjunsen0406 xiaozhi-mcphub up to 1.0.3. This vulnerability af… 2026-05-08T00:31:35Z 2026-05-08T00:31:35Z
ghsa-935g-9rq5-q95c
5.3 (3.1)
5.5 (4.0)
A security flaw has been discovered in gyoridavid short-video-maker up to 1.3.4. This affects an un… 2026-05-08T00:31:35Z 2026-05-08T00:31:35Z
ID Severity Description Package Published Updated
pysec-2023-224
5.3 (3.1)
Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc… twisted 2023-10-25T21:15:00+00:00 2023-11-02T16:33:16.395026+00:00
pysec-2023-228
3.3 (3.1)
When installing a package from a Mercurial VCS URL (ie "pip install hg+...") with pip p… pip 2023-10-25T18:17:00+00:00 2023-11-03T16:28:41.538340+00:00
pysec-2023-221
7.5 (3.1)
Werkzeug is a comprehensive WSGI web application library. If an upload of a file that sta… werkzeug 2023-10-25T18:17:00Z 2023-11-08T18:38:34.170214Z
pysec-2023-220
6.5 (3.1)
Nautobot is a Network Automation Platform built as a web application atop the Django Pyth… nautobot 2023-10-25T18:17:00+00:00 2023-11-01T18:30:02.084237+00:00
pysec-2023-218
4.3 (3.1)
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Airflo… apache-airflow 2023-10-23T19:15:00+00:00 2023-10-28T05:24:46.485079+00:00
pysec-2023-211
views/switch.py in django-grappelli (aka Django Grappelli) before 2.15.2 attempts to prev… django-grappelli 2023-10-22T19:15:00+00:00 2023-10-22T20:22:30.994719+00:00
pysec-2023-210
views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.… coderedcms 2023-10-22T19:15:00+00:00 2023-10-22T20:22:30.887585+00:00
pysec-2023-217
8.8 (3.1)
Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2. modoboa 2023-10-20T17:15:00+00:00 2023-10-27T20:23:07.873996+00:00
pysec-2023-216
5.4 (3.1)
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2. modoboa 2023-10-20T17:15:00+00:00 2023-10-27T20:23:07.820957+00:00
pysec-2023-215
5.4 (3.1)
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2. modoboa 2023-10-20T17:15:00+00:00 2023-10-27T20:23:07.768462+00:00
pysec-2023-214
5.4 (3.1)
Home assistant is an open source home automation. The audit team’s analyses confirmed tha… homeassistant 2023-10-20T00:15:00+00:00 2023-10-26T20:24:24.928732+00:00
pysec-2023-229
5.4 (3.1)
ArchiveBox is an open source self-hosted web archiving system. Any users who are using th… archivebox 2023-10-19T22:15:00+00:00 2023-11-04T04:27:37.550377+00:00
pysec-2023-213
7.5 (3.1)
Inadequate encryption strength in mycli 1.27.0 allows attackers to view sensitive informa… mycli 2023-10-19T22:15:00+00:00 2023-10-25T22:26:24.480718+00:00
pysec-2023-219
2.7 (3.1)
Wagtail is an open source content management system built on Django. A user with a limite… wagtail 2023-10-19T19:15:00+00:00 2023-10-31T20:23:51.857051+00:00
pysec-2023-205
LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because… langchain 2023-10-19T05:15:00+00:00 2023-10-19T10:33:05.150766+00:00
pysec-2023-212
4.2 (3.1)
urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't re… urllib3 2023-10-17T20:15:00+00:00 2023-10-25T18:28:34.811764+00:00
pysec-2023-206
7.5 (3.1)
NULL Pointer Dereference in GitHub repository seleniumhq/selenium prior to 4.14.0. selenium 2023-10-15T23:15:00+00:00 2023-10-19T12:51:06.907613+00:00
pysec-2023-207
6.1 (3.1)
urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cros… urllib3 2023-10-15T19:15:00+00:00 2023-10-19T16:33:01.297810+00:00
pysec-2023-204
4.3 (3.1)
Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an … apache-airflow 2023-10-14T10:15:00+00:00 2023-10-18T20:24:08.594791+00:00
pysec-2023-203
6.5 (3.1)
Apache Airflow, in versions prior to 2.7.2, contains a security vulnerability that allows… apache-airflow 2023-10-14T10:15:00+00:00 2023-10-18T20:24:08.541134+00:00
pysec-2023-202
6.5 (3.1)
Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows au… apache-airflow 2023-10-14T10:15:00+00:00 2023-10-18T20:24:08.482939+00:00
pysec-2023-197
Apache Airflow, versions before 2.7.2, has a vulnerability that allows an authorized user… apache-airflow 2023-10-14T10:15:00+00:00 2023-10-14T12:46:00.410542+00:00
pysec-2023-201
4.3 (3.1)
vantage6 is privacy preserving federated learning infrastructure. The endpoint /api/colla… vantage6 2023-10-11T20:15:00+00:00 2023-10-18T05:26:18.202930+00:00
pysec-2023-200
4.3 (3.1)
vantage6 is privacy preserving federated learning infrastructure. When a collaboration is… vantage6 2023-10-11T20:15:00+00:00 2023-10-18T05:26:18.112311+00:00
pysec-2023-198
5.4 (3.1)
vantage6 is privacy preserving federated learning infrastructure. Prior to version 4.0.0,… vantage6-node 2023-10-11T20:15:00+00:00 2023-10-17T18:31:16.643410+00:00
pysec-2023-196
7.2 (3.1)
vantage6 is privacy preserving federated learning infrastructure. Versions prior to 4.0.0… vantage6 2023-10-11T18:15:00+00:00 2023-10-13T22:28:56.802294+00:00
pysec-2023-199
4.9 (3.1)
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… matrix-synapse 2023-10-10T18:15:00+00:00 2023-10-17T22:26:17.611846+00:00
pysec-2023-194
9.8 (3.1)
langchain_experimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and exe… langchain-experimental 2023-10-09T20:15:00Z 2025-02-23T07:46:11Z
pysec-2023-195
6.5 (3.1)
OctoPrint is a web interface for 3D printers. OctoPrint versions up until and including 1… octoprint 2023-10-09T16:15:00+00:00 2023-10-13T20:25:14.968230+00:00
pysec-2023-193
4.8 (3.1)
Zope is an open-source web application server. The title property, available on most Zope… zope 2023-10-04T21:15:00+00:00 2023-10-10T20:21:16.174482+00:00
ID Description Updated
ID Description Published Updated
mal-2026-3013 Malicious code in undicy-http (npm) 2026-04-23T03:59:27Z 2026-04-23T20:50:52Z
mal-2026-3010 Malicious code in separadordeinfocc (npm) 2026-04-23T03:59:27Z 2026-04-23T20:50:52Z
mal-2026-3014 Malicious code in vime-azl (npm) 2026-04-23T03:56:24Z 2026-04-23T20:50:52Z
mal-2026-3011 Malicious code in ts-bing (npm) 2026-04-23T03:56:24Z 2026-04-23T20:50:52Z
mal-2026-3009 Malicious code in rollup-plugin-polyfill-route (npm) 2026-04-23T03:54:10Z 2026-04-23T20:50:52Z
mal-2026-3003 Malicious code in @amsterdam-local/forms-component-library (npm) 2026-04-23T03:52:34Z 2026-04-23T20:50:49Z
mal-2026-3012 Malicious code in ts-moduler (npm) 2026-04-23T03:49:53Z 2026-04-23T20:50:52Z
mal-2026-3002 Malicious code in lyrox (PyPI) 2026-04-23T00:22:16Z 2026-04-23T00:22:16Z
mal-2026-3001 Malicious code in process-support (PyPI) 2026-04-22T23:13:14Z 2026-05-02T23:49:22Z
mal-2026-3000 Malicious code in xinference (PyPI) 2026-04-22T22:06:22Z 2026-04-27T10:19:57Z
mal-2026-2998 Malicious code in @spinstorm/shared (npm) 2026-04-22T21:15:39Z 2026-04-23T20:50:49Z
mal-2026-2999 Malicious code in pypdf-fork (PyPI) 2026-04-22T21:09:16Z 2026-04-22T21:09:16Z
mal-2026-2997 Malicious code in @stlm/common-ui (npm) 2026-04-22T15:03:57Z 2026-04-23T20:50:49Z
mal-2026-2996 Malicious code in sparkling-sdk (npm) 2026-04-22T14:49:27Z 2026-04-23T20:50:52Z
mal-2026-2995 Malicious code in color-studio (npm) 2026-04-22T14:49:27Z 2026-04-23T20:50:50Z
mal-2026-2993 Malicious code in @openwebconcept/design-tokens (npm) 2026-04-22T14:01:36Z 2026-04-23T20:50:49Z
mal-2026-2994 Malicious code in @openwebconcept/theme-owc (npm) 2026-04-22T13:59:52Z 2026-04-23T20:50:49Z
mal-2026-2992 Malicious code in @automagik/genie (npm) 2026-04-22T13:58:31Z 2026-04-23T20:50:49Z
mal-2026-2991 Malicious code in pgserve (npm) 2026-04-22T13:51:55Z 2026-04-23T20:50:51Z
mal-2026-2985 Malicious code in @bmg-web/bmg-dialog (npm) 2026-04-22T08:58:28Z 2026-04-23T20:50:49Z
mal-2026-2983 Malicious code in @bmg-web/bmg-checkbox (npm) 2026-04-22T08:55:49Z 2026-04-23T20:50:49Z
mal-2026-2990 Malicious code in etsyapp (npm) 2026-04-22T08:55:39Z 2026-04-23T20:50:50Z
mal-2026-2984 Malicious code in @bmg-web/bmg-collapse (npm) 2026-04-22T08:48:20Z 2026-04-23T20:50:49Z
mal-2026-2988 Malicious code in @bmg-web/bmg-grid (npm) 2026-04-22T08:48:05Z 2026-04-23T20:50:49Z
mal-2026-2981 Malicious code in @bmg-web/bmg-button (npm) 2026-04-22T08:48:00Z 2026-04-23T20:50:49Z
mal-2026-2986 Malicious code in @bmg-web/bmg-dropdown (npm) 2026-04-22T08:47:48Z 2026-04-23T20:50:49Z
mal-2026-2980 Malicious code in @bmg-web/bmg-ajax (npm) 2026-04-22T08:45:50Z 2026-04-23T20:50:49Z
mal-2026-2989 Malicious code in @bmg-web-features/bmg-user-interaction-tracker (npm) 2026-04-22T08:45:49Z 2026-04-23T20:50:49Z
mal-2026-2982 Malicious code in @bmg-web/bmg-card (npm) 2026-04-22T08:45:48Z 2026-04-23T20:50:49Z
mal-2026-2987 Malicious code in @bmg-web/bmg-external-link (npm) 2026-04-22T08:45:41Z 2026-04-23T20:50:49Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-2816 ImageMagick: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-10T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2814 Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-12-10T23:00:00.000+00:00 2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2812 Mozilla Firefox: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-2807 TianoCore EDK2: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-09T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-2805 TianoCore EDK2: Schwachstelle ermöglicht Codeausführung 2025-12-09T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2802 Notepad++: Schwachstelle ermöglicht Codeausführung 2025-12-09T23:00:00.000+00:00 2026-02-03T23:00:00.000+00:00
wid-sec-w-2025-2798 Red Hat OpenShift Service Mesh: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2789 Adobe Experience Manager: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2781 Microsoft Windows: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2026-01-19T23:00:00.000+00:00
wid-sec-w-2025-2765 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-08T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2759 IBM WebSphere Application Server: Schwachstelle ermöglicht Cross-Site Scripting 2025-12-08T23:00:00.000+00:00 2026-01-07T23:00:00.000+00:00
wid-sec-w-2025-2756 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-07T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2755 util-linux: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen 2025-12-07T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2751 WebKitGTK: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2750 Apache HTTP Server: Mehrere Schwachstellen 2025-12-04T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2025-2747 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-04T23:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2746 IBM InfoSphere Information Server: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-04T23:00:00.000+00:00 2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2741 cPython: Schwachstelle ermöglicht Denial of Service 2025-12-03T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2025-2740 ffmpeg: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-12-03T23:00:00.000+00:00 2026-01-27T23:00:00.000+00:00
wid-sec-w-2025-2738 Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung 2025-12-03T23:00:00.000+00:00 2025-12-04T23:00:00.000+00:00
wid-sec-w-2025-2737 libpng: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen 2025-12-03T23:00:00.000+00:00 2026-02-12T23:00:00.000+00:00
wid-sec-w-2025-2736 QT (Declarative module): Schwachstelle ermöglicht Denial of Service 2025-12-03T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2733 Drupal-Module: Mehrere Schwachstellen 2025-12-03T23:00:00.000+00:00 2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-2730 Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-02T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2729 WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-02T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2724 Golang Go: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2026-03-25T23:00:00.000+00:00
wid-sec-w-2025-2722 ImageMagick: Schwachstelle ermöglicht Denial of Service 2025-12-02T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2718 Google Chrome/Microsoft Edge: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2717 Django: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2712 Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-01T23:00:00.000+00:00 2026-02-26T23:00:00.000+00:00
ID Description Published Updated
icsa-25-219-04 Rockwell Automation Arena 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-03 Burk Technology ARC Solo 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-02 Johnson Controls FX Server, FX80 and FX90 (Update A) 2025-08-07T06:00:00.000000Z 2025-12-04T07:00:00.000000Z
icsa-25-219-01 Delta Electronics DIAView 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-06 Dreame Technology iOS and Android Mobile Applications 2025-08-07T04:00:00.000000Z 2025-08-07T04:00:00.000000Z
va-25-219-01 Tyler Technologies ERP Pro 9 2025-08-07T00:00:00Z 2025-08-07T00:00:00Z
icsa-25-217-02 Tigo Energy Cloud Connect Advanced (Update A) 2025-08-05T06:00:00.000000Z 2025-08-19T06:00:00.000000Z
icsa-25-217-01 Mitsubishi Electric Iconics Digital Solutions Multiple Products (Update B) 2025-08-05T05:00:00.000000Z 2026-04-07T05:00:00.000000Z
icsa-25-247-01 Honeywell OneWireless Wireless Device Manager (WDM) 2025-08-04T06:00:00.000000Z 2025-08-04T06:00:00.000000Z
va-25-174-01 OPEXUS FOIAXpress Public Access Link (PAL) multiple vulnerabilities 2025-07-31T17:01:09Z 2025-09-09T21:12:34Z
icsa-25-212-02 Rockwell Automation Lifecycle Services with VMware 2025-07-31T06:00:00.000000Z 2025-07-31T06:00:00.000000Z
icsa-25-212-01 Güralp Systems FMUS Series and MIN Series Devices (Update B) 2025-07-31T06:00:00.000000Z 2026-01-13T07:00:00.000000Z
icsa-25-210-03 Delta Electronics DTN Soft 2025-07-29T06:00:00.000000Z 2025-07-29T06:00:00.000000Z
icsa-25-210-02 Samsung HVAC DMS 2025-07-29T06:00:00.000000Z 2025-07-29T06:00:00.000000Z
icsa-25-210-01 National Instruments LabVIEW 2025-07-29T06:00:00.000000Z 2025-07-29T06:00:00.000000Z
icsa-25-205-04 LG Innotek Camera Model LNV5110R 2025-07-25T05:00:00.000000Z 2025-07-25T05:00:00.000000Z
icsma-25-205-01 Medtronic MyCareLink Patient Monitor 2025-07-24T06:00:00.000000Z 2025-07-24T06:00:00.000000Z
icsa-25-205-03 Honeywell Experion PKS (Update A) 2025-07-24T06:00:00.000000Z 2025-08-04T06:00:00.000000Z
icsa-25-205-02 Network Thermostat X-Series WiFi Thermostats 2025-07-24T06:00:00.000000Z 2025-07-24T06:00:00.000000Z
icsa-25-205-01 Mitsubishi Electric CNC Series (Update B) 2025-07-24T06:00:00.000000Z 2026-01-29T07:00:00.000000Z
icsa-25-203-04 Schneider Electric EcoStruxure Power Operation (Update A) 2025-07-22T06:00:00.000000Z 2026-02-25T07:00:00.000000Z
icsa-25-203-02 Lantronix Provisioning Manager 2025-07-22T06:00:00.000000Z 2025-07-22T06:00:00.000000Z
icsa-25-203-01 DuraComm DP-10iN-100-MU 2025-07-22T06:00:00.000000Z 2025-07-22T06:00:00.000000Z
icsma-25-198-01 Panoramic Corporation Digital Imaging Software 2025-07-17T06:00:00.000000Z 2025-07-17T06:00:00.000000Z
icsa-25-198-01 Leviton AcquiSuite and Energy Monitoring Hub 2025-07-17T06:00:00.000000Z 2025-07-17T06:00:00.000000Z
icsa-25-196-03 LITEON IC48A and IC80A EV Chargers 2025-07-15T06:00:00.000000Z 2025-07-15T06:00:00.000000Z
icsa-25-196-02 ABB RMC-100 2025-07-15T06:00:00.000000Z 2025-07-15T06:00:00.000000Z
icsa-25-191-10 End-of-Train and Head-of-Train Remote Linking Protocol (Update C) 2025-07-10T06:00:00.000000Z 2025-09-18T06:00:00.000000Z
icsa-25-191-09 KUNBUS RevPi Webstatus 2025-07-10T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
icsa-25-191-08 Advantech iView 2025-07-10T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
ID Description Published Updated
cisco-sa-radius-spoofing-july-2024-87ccdwz3 RADIUS Protocol Spoofing Vulnerability (Blast-RADIUS): July 2024 2024-07-10T16:00:00+00:00 2024-09-03T14:10:25+00:00
cisco-sa-openssh-rce-2024 Remote Unauthenticated Code Execution Vulnerability in OpenSSH Server (regreSSHion): July 2024 2024-07-02T16:00:00+00:00 2024-09-13T14:43:44+00:00
cisco-sa-nxos-cmd-injection-xd9ohyop Cisco NX-OS Software CLI Command Injection Vulnerability 2024-07-01T16:00:00+00:00 2024-09-17T18:05:20+00:00
cisco-sa-finesse-ssrf-rfi-um7wt8ew Cisco Finesse Web-Based Management Interface Vulnerabilities 2024-06-05T16:00:00+00:00 2024-06-14T21:44:14+00:00
cisco-sa-webex-june-2024 Cisco Webex Meetings Meeting Information and Metadata Issue June 2024 2024-06-04T21:00:00+00:00 2024-06-11T19:41:36+00:00
cisco-sa-snort3-ips-bypass-ue69kbmd Multiple Cisco Products Snort 3 HTTP Intrusion Prevention System Rule Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-ftd-archive-bypass-z4wqjwcn Cisco Firepower Threat Defense Software Encrypted Archive File Policy Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-fmc-sqli-wffdnnos Cisco Firepower Management Center Software SQL Injection Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T17:39:28+00:00
cisco-sa-fmc-object-bypass-fth8tdjq Cisco Firepower Management Center Software Object Group Access Control List Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-asaftd-saml-bypass-kknvxykw Cisco Adaptive Security Appliance and Firepower Threat Defense Software Authorization Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-asaftd-ogsnsg-aclbyp-3xb8q6jx Cisco Adaptive Security Appliance and Firepower Threat Defense Software Inactive-to-Active ACL Bypass Vulnerability 2024-05-22T16:00:00+00:00 2024-05-22T16:00:00+00:00
cisco-sa-opendns-pulse-dos-dd8l3szq Cisco OpenDNS Pulsing DNS Denial of Service Attack 2024-05-20T16:00:00+00:00 2024-05-23T16:28:32+00:00
cisco-sa-secure-nam-priv-esc-szu2vypz Cisco Secure Client for Windows with Network Access Manager Module Privilege Escalation Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-rwpesc-qrqgnh3f Cisco Crosswork Network Services Orchestrator Vulnerabilities 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-ordir-mnm8yqzo Cisco Crosswork Network Services Orchestrator Open Redirect Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-nso-hcc-priv-esc-owbwcs5d Cisco Crosswork Network Services Orchestrator Privilege Escalation Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-esa-sma-wsa-xss-bgg5whod Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Cross-Site Scripting Vulnerabilities 2024-05-15T16:00:00+00:00 2024-06-12T15:37:50+00:00
cisco-sa-esa-http-split-glrnnows Cisco Secure Email Gateway HTTP Response Splitting Vulnerability 2024-05-15T16:00:00+00:00 2024-06-12T15:14:33+00:00
cisco-sa-cnfd-rwpesc-zaoufyx8 ConfD CLI Privilege Escalation and Arbitrary File Read and Write Vulnerabilities 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-appd-netvisdos-9znbsjtk Cisco AppDynamics Network Visibility Service Denial of Service Vulnerability 2024-05-15T16:00:00+00:00 2024-05-15T16:00:00+00:00
cisco-sa-ipphone-multi-vulns-cxahcvs Cisco IP Phone 6800, 7800, and 8800 Series with Multiplatform Firmware Vulnerabilities 2024-05-01T16:00:00+00:00 2024-05-01T16:00:00+00:00
cisco-sa-asaftd-websrvs-dos-x8gnucd2 Cisco Adaptive Security Appliance and Firepower Threat Defense Software Web Services Denial of Service Vulnerability 2024-04-24T16:00:00+00:00 2024-04-24T16:00:00+00:00
cisco-sa-asaftd-persist-rce-flsnxf4h Cisco Adaptive Security Appliance and Firepower Threat Defense Software Persistent Local Code Execution Vulnerability 2024-04-24T16:00:00+00:00 2024-04-24T16:00:00+00:00
cisco-sa-asaftd-cmd-inj-zjv8wysm Cisco Adaptive Security Appliance and Firepower Threat Defense Software Command Injection Vulnerability 2024-04-24T16:00:00+00:00 2026-03-04T16:10:59+00:00
cisco-sa-snmp-uwbxfqww Cisco IOS and IOS XE Software SNMP Extended Named Access Control List Bypass Vulnerability 2024-04-17T16:00:00+00:00 2024-04-17T16:00:00+00:00
cisco-sa-cimc-cmd-inj-mux4c5aj Cisco Integrated Management Controller CLI Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:08+00:00
cisco-sa-cimc-cmd-inj-blupcb Cisco Integrated Management Controller Web-Based Management Interface Command Injection Vulnerability 2024-04-17T16:00:00+00:00 2024-06-28T15:22:37+00:00
cisco-sa-tms-xss-kgw4dx9y Cisco TelePresence Management Suite Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-sbiz-rv-xss-oqertup Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ndru-pesc-kz2pqlzh Cisco Nexus Dashboard Privilege Escalation Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
ID Description Published Updated
msrc_cve-2026-40890 github.com/gomarkdown/markdown: Out-of-bounds Read in SmartypantsRenderer 2026-04-02T00:00:00.000Z 2026-04-24T14:44:48.000Z
msrc_cve-2026-40706 CVE-2026-40706 2026-04-02T00:00:00.000Z 2026-04-24T14:45:04.000Z
msrc_cve-2026-40556 Insecure Directory Permissions in GNU nano Leading to Privilege Abuse 2026-04-02T00:00:00.000Z 2026-04-29T01:07:07.000Z
msrc_cve-2026-40393 CVE-2026-40393 2026-04-02T00:00:00.000Z 2026-04-18T01:01:43.000Z
msrc_cve-2026-40386 CVE-2026-40386 2026-04-02T00:00:00.000Z 2026-04-29T14:54:15.000Z
msrc_cve-2026-40385 CVE-2026-40385 2026-04-02T00:00:00.000Z 2026-04-29T14:54:30.000Z
msrc_cve-2026-40356 CVE-2026-40356 2026-04-02T00:00:00.000Z 2026-05-01T01:03:54.000Z
msrc_cve-2026-40355 CVE-2026-40355 2026-04-02T00:00:00.000Z 2026-05-01T01:03:46.000Z
msrc_cve-2026-40255 @adonisjs/http-server has an Open Redirect vulnerability 2026-04-02T00:00:00.000Z 2026-04-18T01:01:32.000Z
msrc_cve-2026-40226 CVE-2026-40226 2026-04-02T00:00:00.000Z 2026-04-29T14:53:47.000Z
msrc_cve-2026-40225 CVE-2026-40225 2026-04-02T00:00:00.000Z 2026-04-29T14:59:35.000Z
msrc_cve-2026-40179 Prometheus: Stored XSS via metric names and label values in web UI tooltips and metrics explorer 2026-04-02T00:00:00.000Z 2026-04-17T01:02:33.000Z
msrc_cve-2026-40175 Axios has Unrestricted Cloud Metadata Exfiltration via Header Injection Chain 2026-04-02T00:00:00.000Z 2026-04-15T01:05:29.000Z
msrc_cve-2026-40170 ngtcp2 has a qlog transport parameter serialization stack buffer overflow 2026-04-02T00:00:00.000Z 2026-05-05T01:03:34.000Z
msrc_cve-2026-40164 jq: Algorithmic complexity DoS via hardcoded MurmurHash3 seed 2026-04-02T00:00:00.000Z 2026-04-24T14:40:19.000Z
msrc_cve-2026-40026 Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-11T01:40:37.000Z
msrc_cve-2026-40025 Sleuth Kit APFS Keybag Parser Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-11T01:40:44.000Z
msrc_cve-2026-40024 Sleuth Kit tsk_recover Path Traversal 2026-04-02T00:00:00.000Z 2026-04-11T01:40:50.000Z
msrc_cve-2026-39979 jq: Out-of-Bounds Read in jv_parse_sized() Error Formatting for Non-NUL-Terminated Counted Buffers 2026-04-02T00:00:00.000Z 2026-04-24T14:40:12.000Z
msrc_cve-2026-39956 jq: Missing runtime type checks for _strindices lead to crash and limited memory disclosure 2026-04-02T00:00:00.000Z 2026-04-24T14:40:26.000Z
msrc_cve-2026-39882 OpenTelemetry-Go OTLP HTTP exporters read unbounded HTTP response bodies 2026-04-02T00:00:00.000Z 2026-05-06T14:51:41.000Z
msrc_cve-2026-39881 Vim Ex command injection in Vims NetBeans integration 2026-04-02T00:00:00.000Z 2026-04-11T01:40:57.000Z
msrc_cve-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation 2026-04-02T00:00:00.000Z 2026-04-13T14:41:03.000Z
msrc_cve-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-13T14:40:58.000Z
msrc_cve-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification 2026-04-02T00:00:00.000Z 2026-04-13T14:40:53.000Z
msrc_cve-2026-39316 CUPS has a use-after-free in `cupsdDeleteTemporaryPrinters` via dangling subscription pointer 2026-04-02T00:00:00.000Z 2026-04-18T14:38:14.000Z
msrc_cve-2026-39314 CUPS has an integer underflow in `_ppdCreateFromIPP` causes root cupsd crash via negative `job-password-supported` 2026-04-02T00:00:00.000Z 2026-04-18T14:38:20.000Z
msrc_cve-2026-3833 Gnutls: gnutls: policy bypass due to case-sensitive nameconstraints comparison 2026-04-02T00:00:00.000Z 2026-05-07T01:10:52.000Z
msrc_cve-2026-3832 Gnutls: gnutls: security bypass allows acceptance of revoked server certificates via crafted ocsp response 2026-04-02T00:00:00.000Z 2026-05-09T01:39:42.000Z
msrc_cve-2026-37555 CVE-2026-37555 2026-04-02T00:00:00.000Z 2026-05-04T14:41:31.000Z
ID Description Published Updated
ncsc-2025-0151 Kwetsbaarheden verholpen in Apple macOS 2025-05-13T09:19:37.094950Z 2025-05-13T09:19:37.094950Z
ncsc-2025-0150 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2025-05-13T09:14:44.606584Z 2025-05-13T09:14:44.606584Z
ncsc-2025-0149 Kwetsbaarheden verholpen in SAP producten 2025-05-13T09:05:38.110295Z 2025-05-13T09:05:38.110295Z
ncsc-2025-0148 Kwetsbaarheden verholpen in ASUS DriverHub 2025-05-12T13:22:18.034442Z 2025-05-12T13:22:18.034442Z
ncsc-2025-0147 Kwetsbaarheden verholpen in F5 BIG-IP 2025-05-09T08:07:32.002935Z 2025-05-09T08:07:32.002935Z
ncsc-2025-0146 Kwetsbaarheden verholpen in Cisco IOS XE Software 2025-05-08T08:43:57.415709Z 2025-05-08T08:43:57.415709Z
ncsc-2025-0145 Kwetsbaarheden verholpen in SonicWall SMA100 2025-05-08T08:40:26.301646Z 2025-05-08T08:40:26.301646Z
ncsc-2025-0144 Kwetsbaarheden verholpen in SysAid On-Prem 2025-05-08T06:56:21.378830Z 2025-05-08T06:56:21.378830Z
ncsc-2025-0143 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-05-07T11:19:50.517092Z 2025-05-07T11:19:50.517092Z
ncsc-2025-0142 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2025-05-06T08:01:05.582708Z 2025-05-06T08:01:05.582708Z
ncsc-2025-0141 Kwetsbaarheden verholpen in Keycloak 2025-05-06T07:12:42.075830Z 2025-05-06T07:12:42.075830Z
ncsc-2025-0140 Kwetsbaarheden verholpen in Apple AirPlay zoals gebruikt door macOS, iOS en iPadOS 2025-04-30T08:45:31.426155Z 2025-04-30T08:45:31.426155Z
ncsc-2025-0139 Kwetsbaarheid verholpen in SonicWall SonicOS 2025-04-25T09:35:24.276801Z 2025-04-25T09:35:24.276801Z
ncsc-2025-0138 Kwetsbaarheid verholpen in Commvault Command Center 2025-04-24T13:09:08.399556Z 2025-05-06T06:55:31.232567Z
ncsc-2025-0137 Kwetsbaarheid verholpen in Erlang/OTP SSH-server 2025-04-18T05:33:40.823978Z 2025-04-18T05:33:40.823978Z
ncsc-2025-0136 Kwetsbaarheden verholpen in Apple macOS, iOS en iPadOS 2025-04-17T07:19:14.228835Z 2025-04-17T07:19:14.228835Z
ncsc-2025-0135 Kwetsbaarheden verholpen in Siemens TeleControl Server 2025-04-17T07:14:24.584624Z 2025-04-17T07:14:24.584624Z
ncsc-2025-0134 Kwetsbaarheid verholpen in Cisco Webex App 2025-04-17T07:11:41.369333Z 2025-04-17T07:11:41.369333Z
ncsc-2025-0133 Kwetsbaarheden verholpen in Oracle PeopleSoft 2025-04-16T15:13:33.586832Z 2025-04-16T15:13:33.586832Z
ncsc-2025-0132 Kwetsbaarheden verholpen in Oracle MySQL 2025-04-16T15:11:43.357092Z 2025-04-16T15:11:43.357092Z
ncsc-2025-0131 Kwetsbaarheden verholpen in Oracle JD Edwards 2025-04-16T15:10:06.149204Z 2025-04-16T15:10:06.149204Z
ncsc-2025-0130 Kwetsbaarheden verholpen in Oracle Java 2025-04-16T15:04:40.041941Z 2025-04-16T15:04:40.041941Z
ncsc-2025-0129 Kwetsbaarheden verholpen in Oracle Analytics 2025-04-16T15:02:22.596981Z 2025-04-16T15:02:22.596981Z
ncsc-2025-0128 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2025-04-16T15:01:24.587426Z 2025-04-16T15:01:24.587426Z
ncsc-2025-0127 Kwetsbaarheden verholpen in Oracle Financial Services 2025-04-16T15:00:12.952979Z 2025-04-16T15:00:12.952979Z
ncsc-2025-0126 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2025-04-16T14:59:13.973935Z 2025-04-16T14:59:13.973935Z
ncsc-2025-0125 Kwetsbaarheden verholpen in Oracle E-Business Suite 2025-04-16T14:58:05.867499Z 2025-04-16T14:58:05.867499Z
ncsc-2025-0124 Kwetsbaarheden verholpen in Oracle Communications 2025-04-16T08:39:55.217751Z 2025-04-16T08:39:55.217751Z
ncsc-2025-0123 Kwetsbaarheden verholpen in Oracle Database Producten 2025-04-16T08:37:39.412900Z 2025-04-16T08:37:39.412900Z
ncsc-2025-0122 Kwetsbaarheden verholpen in Rockwell Automation Arena 2025-04-14T11:29:22.815190Z 2025-04-14T11:29:22.815190Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2026:10374-1 python311-tornado6-6.5.5-1.1 on GA media 2026-03-14T00:00:00Z 2026-03-14T00:00:00Z
opensuse-su-2026:10373-1 python311-simpleeval-1.0.5-1.1 on GA media 2026-03-14T00:00:00Z 2026-03-14T00:00:00Z
opensuse-su-2026:10372-1 python311-black-26.3.1-1.1 on GA media 2026-03-14T00:00:00Z 2026-03-14T00:00:00Z
opensuse-su-2026:10371-1 curl-8.19.0-1.1 on GA media 2026-03-14T00:00:00Z 2026-03-14T00:00:00Z
opensuse-su-2026:20357-1 Security update for qemu 2026-03-13T10:47:15Z 2026-03-13T10:47:15Z
opensuse-su-2026:20354-1 Security update for libsoup2 2026-03-13T08:41:04Z 2026-03-13T08:41:04Z
opensuse-su-2026:10370-1 smb4k-4.0.5-1.2 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10369-1 skaffold-2.18.0-1.1 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10368-1 ruby4.0-rubygem-websocket-extensions-0.1.5-1.24 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10367-1 ruby4.0-rubygem-web-console-4.2.1-1.9 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10366-1 ruby4.0-rubygem-thor-1.4.0-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10365-1 ruby4.0-rubygem-sprockets-3.7-3.7.5-1.5 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10364-1 ruby4.0-rubygem-sprockets-4.2.1-1.9 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10363-1 ruby4.0-rubygem-rubyzip-2.3.2-1.19 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10362-1 ruby4.0-rubygem-railties-8.0-8.0.3-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10361-1 ruby4.0-rubygem-rails-html-sanitizer-1.6.0-1.9 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10360-1 ruby4.0-rubygem-rails-8.0-8.0.3-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10359-1 ruby4.0-rubygem-rack-session-2.1.1-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10358-1 ruby4.0-rubygem-rack-3.1.18-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10357-1 ruby4.0-rubygem-puma-6.4.3-1.5 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10356-1 ruby4.0-rubygem-nokogiri-1.18.9-1.4 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10355-1 ruby4.0-rubygem-multi_xml-0.6.0-1.31 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10354-1 ruby4.0-rubygem-minitar-0.9-1.21 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10353-1 ruby4.0-rubygem-loofah-2.23.1-1.5 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10352-1 ruby4.0-rubygem-kramdown-2.4.0-1.17 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10351-1 ruby4.0-rubygem-json_pure-2.7.6-1.5 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10350-1 ruby4.0-rubygem-jquery-rails-4.6.0-1.9 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10349-1 ruby4.0-rubygem-http-cookie-1.0.8-1.3 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10348-1 ruby4.0-rubygem-grpc-1.70.1-1.7 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
opensuse-su-2026:10347-1 ruby4.0-rubygem-globalid-1.2.1-1.9 on GA media 2026-03-13T00:00:00Z 2026-03-13T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:10125 Red Hat Security Advisory: RHTAS 1.3.4 - Red Hat Trusted Artifact Signer Release 2026-04-23T12:15:28+00:00 2026-05-09T08:54:24+00:00
rhsa-2026:10118 Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update 2026-04-23T11:34:58+00:00 2026-04-28T07:51:23+00:00
rhsa-2026:10117 Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update 2026-04-23T11:30:45+00:00 2026-05-07T08:27:16+00:00
rhsa-2026:10085 Red Hat Security Advisory: .NET 9.0 security update 2026-04-23T09:06:01+00:00 2026-04-23T14:47:17+00:00
rhsa-2026:10084 Red Hat Security Advisory: .NET 8.0 security update 2026-04-23T08:53:46+00:00 2026-04-23T14:47:16+00:00
rhsa-2026:10082 Red Hat Security Advisory: .NET 8.0 security update 2026-04-23T08:34:01+00:00 2026-04-23T14:47:16+00:00
rhsa-2026:10091 Red Hat Security Advisory: .NET 8.0 security update 2026-04-23T08:31:01+00:00 2026-04-23T14:47:17+00:00
rhsa-2026:10083 Red Hat Security Advisory: .NET 9.0 security update 2026-04-23T08:15:11+00:00 2026-04-23T14:47:19+00:00
rhsa-2026:10076 Red Hat Security Advisory: freerdp security update 2026-04-23T07:18:56+00:00 2026-04-28T07:39:46+00:00
rhsa-2026:10066 Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.20.4 2026-04-23T06:29:20+00:00 2026-04-28T07:49:06+00:00
rhsa-2026:10065 Red Hat Security Advisory: Red Hat Update Infrastructure 5.1 security update 2026-04-23T06:06:23+00:00 2026-05-09T00:09:20+00:00
rhsa-2026:10026 Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.20.4 2026-04-23T05:00:09+00:00 2026-04-28T07:49:06+00:00
rhsa-2026:9874 Red Hat Security Advisory: nodejs:20 security update 2026-04-22T21:54:54+00:00 2026-05-08T20:34:03+00:00
rhsa-2026:9872 Red Hat Security Advisory: DevWorkspace Operator 0.40.1 release. 2026-04-22T21:03:38+00:00 2026-05-09T08:56:29+00:00
rhsa-2026:9870 Red Hat Security Advisory: kernel security update 2026-04-22T20:47:10+00:00 2026-05-06T20:36:32+00:00
rhsa-2026:9848 Red Hat Security Advisory: multicluster engine for Kubernetes v2.6.10 security update 2026-04-22T17:54:30+00:00 2026-05-09T08:56:29+00:00
rhsa-2026:9836 Red Hat Security Advisory: kernel security update 2026-04-22T17:52:29+00:00 2026-04-27T19:41:48+00:00
rhsa-2026:9693 Red Hat Security Advisory: java-25-openjdk security update 2026-04-22T17:51:09+00:00 2026-05-07T21:42:25+00:00
rhsa-2026:9835 Red Hat Security Advisory: kernel-rt security update 2026-04-22T17:42:44+00:00 2026-04-27T19:41:47+00:00
rhsa-2026:9832 Red Hat Security Advisory: Insights proxy Container Image 2026-04-22T17:32:43+00:00 2026-05-09T00:10:20+00:00
rhsa-2026:9682 Red Hat Security Advisory: java-1.8.0-openjdk security update 2026-04-22T17:32:14+00:00 2026-05-04T21:23:57+00:00
rhsa-2026:9255 Red Hat Security Advisory: OpenJDK 11.0.31 ELS Security Update for Portable Linux Builds 2026-04-22T15:44:55+00:00 2026-05-09T00:10:18+00:00
rhsa-2026:9256 Red Hat Security Advisory: OpenJDK 11.0.31 ELS Security Update for Windows Builds 2026-04-22T15:44:44+00:00 2026-05-04T21:23:52+00:00
rhsa-2026:9745 Red Hat Security Advisory: python3 security update 2026-04-22T15:41:14+00:00 2026-05-05T20:32:19+00:00
rhsa-2026:9732 Red Hat Security Advisory: openssh security update 2026-04-22T15:08:16+00:00 2026-05-08T20:34:00+00:00
rhsa-2026:9742 Red Hat Security Advisory: Red Hat Developer Hub 1.8.6 release. 2026-04-22T14:56:38+00:00 2026-05-08T15:00:56+00:00
rhsa-2026:9711 Red Hat Security Advisory: nodejs:20 security update 2026-04-22T14:07:14+00:00 2026-05-08T20:33:59+00:00
rhsa-2026:9705 Red Hat Security Advisory: python3.11 security update 2026-04-22T14:06:14+00:00 2026-05-05T20:32:45+00:00
rhsa-2026:9254 Red Hat Security Advisory: Java 11 OpenJDK ELS Security Update 2026-04-22T13:51:24+00:00 2026-05-09T00:10:18+00:00
rhsa-2026:9699 Red Hat Security Advisory: Red Hat OpenShift GitOps v1.20.2 security update 2026-04-22T12:35:53+00:00 2026-05-08T10:09:36+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ssa-968170 SSA-968170: Remote Code Execution Vulnerability in SIMATIC STEP 7 V5.x and Derived Products 2023-06-13T00:00:00Z 2024-05-14T00:00:00Z
ssa-942865 SSA-942865: Multiple Vulnerabilities in the Integrated SCALANCE S615 of SINAMICS Medium Voltage Products 2023-06-13T00:00:00Z 2023-06-14T00:00:00Z
ssa-914026 SSA-914026: Local Code Execution Vulnerability in SIMATIC WinCC V7 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-887249 SSA-887249: Multiple Vulnerabilities in the Web Interface of SICAM Q200 Devices 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-831302 SSA-831302: Vulnerabilities in the BIOS of the SIMATIC S7-1500 TM MFP before V1.3.0 2023-06-13T00:00:00Z 2024-04-09T00:00:00Z
ssa-794697 SSA-794697: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP before V1.1 2023-06-13T00:00:00Z 2024-04-09T00:00:00Z
ssa-731916 SSA-731916: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-538795 SSA-538795: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-508677 SSA-508677: Use of Obsolete Function Vulnerability in SIMATIC WinCC before V8 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-482956 SSA-482956: Information Disclosure Vulnerability in SIMOTION before V5.5 2023-06-13T00:00:00Z 2023-06-13T00:00:00Z
ssa-042050 SSA-042050: Know-How Protection Mechanism Failure in TIA Portal 2023-06-13T00:00:00Z 2024-12-10T00:00:00Z
ssa-932528 SSA-932528: Multiple File Parsing Vulnerabilities in Solid Edge 2023-05-09T00:00:00Z 2023-08-08T00:00:00Z
ssa-892048 SSA-892048: Third-Party Component Vulnerabilities in SINEC NMS before V1.0.3.1 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-789345 SSA-789345: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-555292 SSA-555292: Security Vulnerabilities Fixed in SIMATIC Cloud Connect 7 V2.1 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-516174 SSA-516174: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D 2023-05-09T00:00:00Z 2023-10-10T00:00:00Z
ssa-325383 SSA-325383: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-813746 SSA-813746: BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families 2023-04-11T00:00:00Z 2024-08-13T00:00:00Z
ssa-699404 SSA-699404: Observable Response Discrepancy in Mendix Forgot Password Module 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-691715 SSA-691715: Vulnerability in OPC Foundation Local Discovery Server Affecting Siemens Products 2023-04-11T00:00:00Z 2025-09-09T00:00:00Z
ssa-642810 SSA-642810: JT File Parsing Vulnerability in JT Open and JT Utilities 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-632164 SSA-632164: External Entity Injection Vulnerability in Polarion ALM 2023-04-11T00:00:00Z 2023-05-09T00:00:00Z
ssa-629917 SSA-629917: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-572164 SSA-572164: Luxion KeyShot Vulnerability in Solid Edge 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-566905 SSA-566905: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products 2023-04-11T00:00:00Z 2024-09-10T00:00:00Z
ssa-558014 SSA-558014: Third-Party Component Vulnerabilities in SCALANCE XCM332 before V2.2 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-511182 SSA-511182: Use of Static TLS Certificate Known Hard Coded Private Keys in Adaptec Maxview Application 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-479249 SSA-479249: Weak Encryption Vulnerability in SCALANCE X-200IRT Devices 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-472454 SSA-472454: Command Injection Vulnerability in CPCI85 Firmware of SICAM A8000 Devices 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-322980 SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices 2023-04-11T00:00:00Z 2025-11-11T00:00:00Z
ID Description Published Updated
suse-su-2026:1492-1 Security update for docker 2026-04-20T15:56:26Z 2026-04-20T15:56:26Z
suse-su-2026:1491-1 Security update for buildah 2026-04-20T15:55:20Z 2026-04-20T15:55:20Z
suse-su-2026:1490-1 Security update for kubernetes 2026-04-20T15:54:48Z 2026-04-20T15:54:48Z
suse-su-2026:1489-1 Security update for kubernetes-old 2026-04-20T15:54:39Z 2026-04-20T15:54:39Z
suse-su-2026:1488-1 Security update for rekor 2026-04-20T15:54:22Z 2026-04-20T15:54:22Z
suse-su-2026:1487-1 Security update for runc 2026-04-20T15:52:14Z 2026-04-20T15:52:14Z
suse-su-2026:1486-1 Security update for cosign 2026-04-20T15:51:18Z 2026-04-20T15:51:18Z
suse-su-2026:21361-1 Security update for the Linux Kernel 2026-04-20T15:44:52Z 2026-04-20T15:44:52Z
suse-su-2026:21237-1 Security update for the Linux Kernel 2026-04-20T15:44:52Z 2026-04-20T15:44:52Z
suse-su-2026:21360-1 Security update for libraw 2026-04-20T15:26:23Z 2026-04-20T15:26:23Z
suse-su-2026:21358-1 Security update for clamav 2026-04-20T15:16:17Z 2026-04-20T15:16:17Z
suse-su-2026:21352-1 Security update for the Linux Kernel 2026-04-20T15:09:00Z 2026-04-20T15:09:00Z
suse-su-2026:21357-1 Security update for rust1.94 2026-04-20T15:04:21Z 2026-04-20T15:04:21Z
suse-su-2026:21356-1 Security update for go1.26 2026-04-20T14:00:06Z 2026-04-20T14:00:06Z
suse-su-2026:21355-1 Security update for go1.25 2026-04-20T13:54:28Z 2026-04-20T13:54:28Z
suse-su-2026:1484-1 Security update for container-suseconnect 2026-04-20T13:35:37Z 2026-04-20T13:35:37Z
suse-su-2026:21246-1 Security update for cockpit-machines 2026-04-20T13:04:39Z 2026-04-20T13:04:39Z
suse-su-2026:21245-1 Security update for cockpit-tukit 2026-04-20T13:04:05Z 2026-04-20T13:04:05Z
suse-su-2026:21244-1 Security update for openssl-3 2026-04-20T12:56:30Z 2026-04-20T12:56:30Z
suse-su-2026:21243-1 Security update for libcap 2026-04-20T12:43:53Z 2026-04-20T12:43:53Z
suse-su-2026:1483-1 Security update for helm 2026-04-20T10:29:46Z 2026-04-20T10:29:46Z
suse-su-2026:21354-1 Security update for qemu 2026-04-20T10:24:31Z 2026-04-20T10:24:31Z
suse-su-2026:21235-1 Security update for qemu 2026-04-20T10:24:31Z 2026-04-20T10:24:31Z
suse-su-2026:1482-1 Security update for openvswitch 2026-04-20T10:10:03Z 2026-04-20T10:10:03Z
suse-su-2026:1481-1 Security update for gegl 2026-04-20T10:09:55Z 2026-04-20T10:09:55Z
suse-su-2026:1480-1 Security update for buildah 2026-04-20T10:09:39Z 2026-04-20T10:09:39Z
suse-su-2026:1479-1 Security update for gegl 2026-04-20T10:09:15Z 2026-04-20T10:09:15Z
suse-su-2026:1478-1 Security update for nodejs22 2026-04-20T10:09:08Z 2026-04-20T10:09:08Z
suse-su-2026:1477-1 Security update for opensc 2026-04-20T10:08:54Z 2026-04-20T10:08:54Z
suse-su-2026:1468-1 Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2026-04-20T08:34:17Z 2026-04-20T08:34:17Z
ID Description Published Updated
alsa-2026:2042 Important: brotli security update 2026-02-05T00:00:00Z 2026-02-05T12:08:23Z
alsa-2026:2039 Important: fontforge security update 2026-02-05T00:00:00Z 2026-02-06T21:29:46Z
alsa-2026:1939 Important: python3.12-wheel security update 2026-02-04T00:00:00Z 2026-02-10T07:52:01Z
alsa-2026:1913 Moderate: util-linux security update 2026-02-04T00:00:00Z 2026-02-10T07:54:49Z
alsa-2026:1908 Important: opentelemetry-collector security update 2026-02-04T00:00:00Z 2026-02-10T07:56:31Z
alsa-2026:1907 Important: opentelemetry-collector security update 2026-02-04T00:00:00Z 2026-02-10T07:58:47Z
alsa-2026:1906 Important: fence-agents security update 2026-02-04T00:00:00Z 2026-02-10T08:07:49Z
alsa-2026:1905 Important: fence-agents security update 2026-02-04T00:00:00Z 2026-02-10T08:20:49Z
alsa-2026:1904 Important: resource-agents security update 2026-02-04T00:00:00Z 2026-02-10T08:22:54Z
alsa-2026:1903 Important: fence-agents security update 2026-02-04T00:00:00Z 2026-02-10T08:31:08Z
alsa-2026:1902 Important: python-wheel security update 2026-02-04T00:00:00Z 2026-02-05T09:52:44Z
alsa-2026:1852 Moderate: util-linux security update 2026-02-03T00:00:00Z 2026-02-10T08:33:43Z
alsa-2026:1843 Important: nodejs22 security update 2026-02-03T00:00:00Z 2026-02-06T17:27:45Z
alsa-2026:1842 Important: nodejs24 security update 2026-02-03T00:00:00Z 2026-02-06T17:30:17Z
alsa-2026:1838 Moderate: image-builder security update 2026-02-03T00:00:00Z 2026-05-05T17:10:17Z
alsa-2026:1837 Moderate: osbuild-composer security update 2026-02-03T00:00:00Z 2026-02-06T17:33:01Z
alsa-2026:1831 Moderate: qemu-kvm security update 2026-02-03T00:00:00Z 2026-02-06T17:34:44Z
alsa-2026:1828 Moderate: python3.12 security update 2026-02-03T00:00:00Z 2026-02-05T09:48:47Z
alsa-2026:1825 Moderate: curl security update 2026-02-03T00:00:00Z 2026-02-05T09:50:43Z
alsa-2026:1715 Important: golang-github-openprinting-ipp-usb security update 2026-02-02T00:00:00Z 2026-02-03T11:03:28Z
alsa-2026:1714 Moderate: wireshark security update 2026-02-02T00:00:00Z 2026-02-03T11:02:21Z
alsa-2026:1696 Moderate: util-linux security update 2026-02-02T00:00:00Z 2026-02-03T11:05:12Z
alsa-2026:1690 Important: kernel security update 2026-02-02T00:00:00Z 2026-02-05T09:56:48Z
alsa-2026:1662 Moderate: kernel security update 2026-02-02T00:00:00Z 2026-02-02T13:45:57Z
alsa-2026:1661 Moderate: kernel-rt security update 2026-02-02T00:00:00Z 2026-02-02T13:40:07Z
alsa-2026:1631 Moderate: python3 security update 2026-02-02T00:00:00Z 2026-02-02T12:08:18Z
alsa-2026:1628 Important: php security update 2026-02-02T00:00:00Z 2026-02-02T09:59:40Z
alsa-2026:1617 Moderate: kernel security update 2026-02-02T00:00:00Z 2026-02-06T08:24:53Z
alsa-2026:1597 Moderate: iperf3 security update 2026-01-29T00:00:00Z 2026-02-02T10:00:47Z
alsa-2026:1595 Moderate: iperf3 security update 2026-01-29T00:00:00Z 2026-02-02T10:01:50Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2024-1201 Heap-buffer-overflow in polygonToCellsExperimental 2024-10-11T00:02:38.496890Z 2024-10-11T00:02:38.497374Z
osv-2024-1200 UNKNOWN READ in eat_line 2024-10-11T00:02:19.537501Z 2025-01-10T05:09:26.885831Z
osv-2024-1191 Security exception in org.apache.lucene.analysis.miscellaneous.ASCIIFoldingFilter.foldToASCII 2024-10-09T00:04:49.628226Z 2025-06-20T16:39:29.501730Z
osv-2024-1186 UNKNOWN READ in cfl_sds_len 2024-10-08T00:15:47.433219Z 2025-05-13T14:48:36.393777Z
osv-2024-1181 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-10-06T00:14:54.118103Z 2024-10-06T00:14:54.118486Z
osv-2024-1179 UNKNOWN READ in __dynamic_cast 2024-10-06T00:01:54.176437Z 2024-10-06T00:01:54.177068Z
osv-2024-1175 Use-of-uninitialized-value in mark_context 2024-10-04T00:14:55.661266Z 2024-10-04T00:14:55.661697Z
osv-2024-1164 Use-of-uninitialized-value in format_message 2024-10-02T00:13:05.449687Z 2025-04-05T14:45:16.595433Z
osv-2024-1161 Security exception in java.base/java.util.Arrays.copyOfRange 2024-10-01T00:13:59.667902Z 2024-10-01T00:13:59.668243Z
osv-2024-1159 Use-of-uninitialized-value in decompress_yuv.cc 2024-09-30T00:15:17.123309Z 2024-09-30T00:15:17.123644Z
osv-2024-1158 Use-of-uninitialized-value in format_message 2024-09-30T00:06:39.149467Z 2024-09-30T00:06:39.149753Z
osv-2024-1150 Heap-buffer-overflow in extract_mr_data 2024-09-29T00:02:55.188981Z 2024-09-29T00:02:55.189369Z
osv-2024-1149 Use-of-uninitialized-value in ultrahdr::uhdr_gainmap_metadata_frac::encodeGainmapMetadata 2024-09-29T00:02:09.713795Z 2024-09-29T00:02:09.714134Z
osv-2024-1145 Heap-buffer-overflow in ultrahdr::getYuv444Pixel 2024-09-26T00:02:03.373431Z 2024-09-26T00:02:03.374156Z
osv-2024-1144 Security exception in graphql.schema.GraphQLTypeUtil.simplePrint 2024-09-24T00:15:39.106189Z 2024-09-24T00:15:39.106491Z
osv-2024-1133 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-09-24T00:07:55.850153Z 2024-09-24T00:07:55.850498Z
osv-2024-1128 Segv on unknown address in udiv 2024-09-24T00:01:39.913285Z 2024-09-24T00:01:39.913799Z
osv-2024-1124 Heap-buffer-overflow in ih264d_read_coeff4x4_cabac 2024-09-21T00:14:26.784483Z 2025-01-31T14:23:52.455197Z
osv-2024-1102 Security exception in java.xml/com.sun.org.apache.xalan.internal.xsltc.trax.DOM2TO.parse 2024-09-19T00:06:40.360965Z 2024-09-19T00:06:40.361615Z
osv-2024-1090 UNKNOWN READ in ggml_free 2024-09-19T00:00:17.390184Z 2025-01-10T05:12:48.974830Z
osv-2024-1076 Heap-buffer-overflow in readBytes48 2024-09-17T00:02:06.643980Z 2024-09-17T00:02:06.644304Z
osv-2024-1071 Use-of-uninitialized-value in Poco::Dynamic::Var::~Var 2024-09-15T00:06:58.342742Z 2025-03-18T00:25:32.915201Z
osv-2024-1066 Heap-buffer-overflow in StrLen 2024-09-13T00:14:35.159638Z 2025-01-10T05:47:49.595046Z
osv-2024-1062 UNKNOWN WRITE in std::__1::recursive_mutex::lock 2024-09-13T00:05:28.000784Z 2024-09-13T00:05:28.001152Z
osv-2024-1059 UNKNOWN READ in chunk_free_object 2024-09-13T00:04:01.817618Z 2024-09-13T00:04:01.817953Z
osv-2024-1056 UNKNOWN WRITE in bfd_elf_get_str_section 2024-09-13T00:02:11.288214Z 2024-09-13T00:02:11.288549Z
osv-2024-1054 Bad-cast to Assimp::LogStream from invalid vptr 2024-09-13T00:00:21.771518Z 2024-09-13T00:00:21.772014Z
osv-2024-1053 Heap-buffer-overflow in gguf_get_tensor_offset 2024-09-13T00:00:16.432562Z 2025-01-10T05:05:50.790792Z
osv-2024-1045 UNKNOWN READ in glslang::TInfoSinkBase::location 2024-08-23T00:05:10.053074Z 2024-08-23T00:05:10.053507Z
osv-2024-1044 UNKNOWN READ in H5FL_reg_malloc 2024-08-22T00:03:34.815128Z 2024-08-22T00:03:34.815744Z
ID Description Published Updated
rustsec-2024-0418 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0417 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0416 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0415 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0414 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0413 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0412 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0411 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0410 gtk-rs GTK3 bindings - no longer maintained 2024-03-04T12:00:00Z 2024-12-09T12:29:00Z
rustsec-2024-0019 Tokens for named pipes may be delivered after deregistration 2024-03-04T12:00:00Z 2024-03-04T17:51:31Z
rustsec-2024-0020 Stack buffer overflow with whoami on several Unix platforms 2024-02-28T12:00:00Z 2024-04-11T16:16:20Z
rustsec-2024-0017 Non-idiomatic use of iterators leads to use after free 2024-02-28T12:00:00Z 2024-04-11T16:16:20Z
rustsec-2024-0018 ObjectPool creates uninitialized memory when freeing objects 2024-02-27T12:00:00Z 2024-04-11T16:16:20Z
rustsec-2024-0016 dav1d AV1 decoder integer overflow 2024-02-19T12:00:00Z 2024-04-11T16:16:20Z
rustsec-2024-0014 `generational-arena` is unmaintained 2024-02-11T12:00:00Z 2024-02-18T04:06:15Z
rustsec-2024-0013 Memory corruption, denial of service, and arbitrary code execution in libgit2 2024-02-06T12:00:00Z 2024-02-15T01:22:49Z
rustsec-2024-0010 Improper comparison of different-length signatures 2024-02-06T12:00:00Z 2024-02-15T01:22:49Z
rustsec-2024-0397 `conrod` is unmaintained 2024-01-26T12:00:00Z 2024-11-10T14:25:35Z
rustsec-2024-0396 `conrod_core` is unmaintained 2024-01-26T12:00:00Z 2024-11-10T14:25:35Z
rustsec-2024-0015 filesystem-rs may be implicitly unmaintained 2024-01-25T12:00:00Z 2024-02-18T04:23:45Z
rustsec-2024-0012 Stack overflow during recursive JSON parsing 2024-01-24T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0011 Unauthenticated Nonce Increment in snow 2024-01-23T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0009 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') 2024-01-23T12:00:00Z 2024-01-24T17:00:49Z
rustsec-2024-0008 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') 2024-01-23T12:00:00Z 2024-01-24T17:00:49Z
rustsec-2024-0006 Multiple issues involving quote API 2024-01-21T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0004 `cosmwasm` is unmaintained 2024-01-20T12:00:00Z 2024-01-21T14:51:38Z
rustsec-2024-0007 Use-after-free when setting the locale 2024-01-19T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0003 Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS) 2024-01-17T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0001 Unsound use of str::from_utf8_unchecked on bytes which are not UTF-8 2024-01-13T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0434 Missing facility to signal rotation of a verified cryptographic identity 2024-01-07T12:00:00Z 2025-01-22T10:27:39Z
ID Description Published Updated
bit-java-2021-35588 2026-05-06T14:42:44.908Z 2026-05-08T06:11:36.072Z
bit-java-2021-35586 2026-05-06T14:42:43.516Z 2026-05-08T06:11:36.072Z
bit-java-2021-35578 2026-05-06T14:42:42.115Z 2026-05-08T06:11:36.072Z
bit-java-2021-35567 2026-05-06T14:42:40.623Z 2026-05-08T06:11:36.072Z
bit-java-2021-35565 2026-05-06T14:42:39.185Z 2026-05-08T06:11:36.072Z
bit-java-2021-35564 2026-05-06T14:42:37.873Z 2026-05-08T06:11:36.072Z
bit-java-2021-35561 2026-05-06T14:42:36.392Z 2026-05-08T06:11:36.072Z
bit-java-2021-35560 2026-05-06T14:42:35.044Z 2026-05-08T06:11:36.072Z
bit-java-2021-35559 2026-05-06T14:42:33.642Z 2026-05-08T06:11:36.072Z
bit-java-2021-35556 2026-05-06T14:42:32.310Z 2026-05-08T06:11:36.072Z
bit-java-2021-35550 2026-05-06T14:42:30.854Z 2026-05-08T06:11:36.072Z
bit-java-2021-2432 2026-05-06T14:42:29.378Z 2026-05-08T06:11:36.072Z
bit-java-2021-2388 2026-05-06T14:42:27.785Z 2026-05-08T06:11:36.072Z
bit-java-2021-2369 2026-05-06T14:42:26.358Z 2026-05-08T06:11:36.072Z
bit-java-2021-2341 2026-05-06T14:42:25.008Z 2026-05-08T06:11:36.072Z
bit-java-2021-2163 2026-05-06T14:42:23.419Z 2026-05-08T06:11:36.072Z
bit-java-2021-2161 2026-05-06T14:42:22.077Z 2026-05-08T06:11:36.072Z
bit-java-2020-2830 2026-05-06T14:42:20.621Z 2026-05-08T06:11:36.072Z
bit-java-2020-2816 2026-05-06T14:42:19.285Z 2026-05-08T06:11:36.072Z
bit-java-2020-2805 2026-05-06T14:42:17.868Z 2026-05-08T06:11:36.072Z
bit-java-2020-2803 2026-05-06T14:42:16.378Z 2026-05-08T06:11:36.072Z
bit-java-2020-2800 2026-05-06T14:42:15.104Z 2026-05-08T06:11:36.072Z
bit-java-2020-2781 2026-05-06T14:42:13.712Z 2026-05-08T06:11:36.072Z
bit-java-2020-2778 2026-05-06T14:42:12.303Z 2026-05-08T06:11:36.072Z
bit-java-2020-2773 2026-05-06T14:42:10.967Z 2026-05-08T06:11:36.072Z
bit-java-2020-2767 2026-05-06T14:42:09.643Z 2026-05-08T06:11:36.072Z
bit-java-2020-2757 2026-05-06T14:42:08.289Z 2026-05-08T06:11:36.072Z
bit-java-2020-2756 2026-05-06T14:42:06.786Z 2026-05-08T06:11:36.072Z
bit-java-2020-2755 2026-05-06T14:42:05.121Z 2026-05-08T06:11:36.072Z
bit-java-2020-2754 2026-05-06T14:42:03.723Z 2026-05-08T06:11:36.072Z
ID Description Published Updated
cleanstart-2026-zv38826 Within HostnameError 2026-03-10T01:00:05.764793Z 2026-03-09T13:15:34Z
cleanstart-2026-mo83449 Within HostnameError 2026-03-10T00:59:35.550450Z 2026-03-09T13:15:34Z
cleanstart-2026-jz91219 Within HostnameError 2026-03-10T00:59:35.590693Z 2026-03-09T13:15:34Z
cleanstart-2026-od98869 Within HostnameError 2026-03-10T00:59:05.580952Z 2026-03-09T13:15:34Z
cleanstart-2026-dt66006 Within HostnameError 2026-03-10T00:58:35.493841Z 2026-03-09T13:15:34Z
cleanstart-2026-ab04032 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-10T00:58:35.570783Z 2026-03-09T13:15:34Z
cleanstart-2026-oh74241 Security fixes for GHSA-MQQF-5WVP-8FH8 applied in versions: 0.122-r0 2026-03-10T00:58:07.551022Z 2026-03-09T13:15:34Z
cleanstart-2026-xh31600 Redis is an open source, in-memory database that persists on disk 2026-03-10T00:58:05.974960Z 2026-03-09T13:15:34Z
cleanstart-2026-av02020 Redis is an open source, in-memory database that persists on disk 2026-03-10T00:58:05.928030Z 2026-03-09T13:15:34Z
cleanstart-2026-ra63757 Redis is an open source, in-memory database that persists on disk 2026-03-10T00:56:05.142237Z 2026-03-09T13:15:34Z
cleanstart-2026-ir62391 Redis is an open source, in-memory database that persists on disk 2026-03-10T00:48:33.059735Z 2026-03-09T13:15:34Z
cleanstart-2026-qy24299 @octokit/endpoint turns REST API endpoints into generic request options 2026-03-07T00:39:47.646997Z 2026-03-06T13:08:41Z
cleanstart-2026-pp62083 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-07T00:39:46.558367Z 2026-03-06T13:08:41Z
cleanstart-2026-gi57625 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-07T00:39:46.578400Z 2026-03-06T13:08:41Z
cleanstart-2026-sm37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic 2026-03-04T00:45:05.719125Z 2026-03-03T12:59:01Z
cleanstart-2026-ay29369 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:43:31.868035Z 2026-03-03T12:59:01Z
cleanstart-2026-xj84245 Rack is a modular Ruby web server interface 2026-03-04T00:43:02.364521Z 2026-03-03T12:59:01Z
cleanstart-2026-cq83284 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:43:01.818359Z 2026-03-03T12:59:01Z
cleanstart-2026-yp32652 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:42:01.150900Z 2026-03-03T12:59:01Z
cleanstart-2026-na21773 GNU patch through 2 2026-03-04T00:42:01.122309Z 2026-03-03T12:59:01Z
cleanstart-2026-bz70876 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:42:00.996564Z 2026-03-03T12:59:01Z
cleanstart-2026-wy43835 PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access 2026-03-04T00:41:31.079681Z 2026-03-03T12:59:01Z
cleanstart-2026-ew93264 Security fixes for GHSA-4CX2-FC23-5WG6, GHSA-6XW4-3V39-52MM, GHSA-72QJ-48G4-5XGX, GHSA-MR3Q-G2MV-MR4Q, GHSA-P543-XPFM-54CP, GHSA-VC5P-V9HR-52MJ, GHSA-VQG5-3255-V292 applied in versions: 9.0.8-r2, 9.0.8-r3, 9.0.8-r4, 9.3.0-r1, 9.3.0-r2 2026-03-04T00:39:32.590174Z 2026-03-03T12:59:01Z
cleanstart-2026-vc01496 Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.8.4-r0 2026-03-04T00:39:30.734261Z 2026-03-03T12:59:01Z
cleanstart-2026-mw73882 filippo 2026-03-03T00:39:03.237072Z 2026-03-02T17:13:50Z
cleanstart-2026-by85815 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-03T00:39:03.275022Z 2026-03-02T17:13:50Z
cleanstart-2026-jy06700 vulnerability has been identified in Node 2026-02-27T01:09:46.914639Z 2026-02-26T12:09:56Z
cleanstart-2026-zg64300 Within HostnameError 2026-02-27T01:05:11.090007Z 2026-02-26T12:09:56Z
cleanstart-2026-ls98939 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T01:04:10.463954Z 2026-02-26T12:09:56Z
cleanstart-2026-hf45264 filippo 2026-02-27T01:03:40.135210Z 2026-02-26T12:09:56Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
CERTA-2013-ALE-005 Vulnérabilité dans le noyau Linux 2013-05-14T00:00:00.000000 2013-05-24T00:00:00.000000
certa-2013-ale-004 Vulnérabilité dans Adobe ColdFusion 2013-05-10T00:00:00.000000 2013-05-15T00:00:00.000000
CERTA-2013-ALE-004 Vulnérabilité dans Adobe ColdFusion 2013-05-10T00:00:00.000000 2013-05-15T00:00:00.000000
certa-2013-ale-003 Vulnérabilité dans Microsoft Internet Explorer 8 2013-05-06T00:00:00.000000 2013-05-15T00:00:00.000000
CERTA-2013-ALE-003 Vulnérabilité dans Microsoft Internet Explorer 8 2013-05-06T00:00:00.000000 2013-05-15T00:00:00.000000
certa-2013-ale-002 Vulnérabilités dans Adobe Reader et Acrobat 2013-02-14T00:00:00.000000 2013-02-21T00:00:00.000000
CERTA-2013-ALE-002 Vulnérabilités dans Adobe Reader et Acrobat 2013-02-14T00:00:00.000000 2013-02-21T00:00:00.000000
certa-2013-ale-001 Vulnérabilités dans Oracle Java 2013-01-10T00:00:00.000000 2013-01-15T00:00:00.000000
CERTA-2013-ALE-001 Vulnérabilités dans Oracle Java 2013-01-10T00:00:00.000000 2013-01-15T00:00:00.000000
certa-2012-ale-010 Vulnérabilité dans Internet Explorer 2012-12-31T00:00:00.000000 2013-01-15T00:00:00.000000
CERTA-2012-ALE-010 Vulnérabilité dans Internet Explorer 2012-12-31T00:00:00.000000 2013-01-15T00:00:00.000000
certa-2012-ale-009 Vulnérabilité dans les pilotes NVidia 2012-12-26T00:00:00.000000 2013-01-07T00:00:00.000000
CERTA-2012-ALE-009 Vulnérabilité dans les pilotes NVidia 2012-12-26T00:00:00.000000 2013-01-07T00:00:00.000000
certa-2012-ale-008 Vulnérabilité dans certains terminaux Samsung 2012-12-18T00:00:00.000000 2012-12-18T00:00:00.000000
CERTA-2012-ALE-008 Vulnérabilité dans certains terminaux Samsung 2012-12-18T00:00:00.000000 2012-12-18T00:00:00.000000
certa-2012-ale-007 Vulnérabilité dans MySQL 2012-12-06T00:00:00.000000 2013-01-07T00:00:00.000000
CERTA-2012-ALE-007 Vulnérabilité dans MySQL 2012-12-06T00:00:00.000000 2013-01-07T00:00:00.000000
certa-2012-ale-006 Vulnérabilité dans Internet Explorer 2012-09-18T00:00:00.000000 2012-09-21T00:00:00.000000
CERTA-2012-ALE-006 Vulnérabilité dans Internet Explorer 2012-09-18T00:00:00.000000 2012-09-21T00:00:00.000000
certa-2012-ale-005 Vulnérabilité dans Oracle Java 2012-08-27T00:00:00.000000 2012-08-31T00:00:00.000000
CERTA-2012-ALE-005 Vulnérabilité dans Oracle Java 2012-08-27T00:00:00.000000 2012-08-31T00:00:00.000000
certa-2012-ale-004 Vulnérabilité dans Microsoft Exchange et Fast Search Server 2010 2012-07-25T00:00:00.000000 2012-08-16T00:00:00.000000
CERTA-2012-ALE-004 Vulnérabilité dans Microsoft Exchange et Fast Search Server 2010 2012-07-25T00:00:00.000000 2012-08-16T00:00:00.000000
certa-2012-ale-003 Vulnérabilité dans Microsoft XML Core Services 2012-06-14T00:00:00.000000 2012-08-17T00:00:00.000000
CERTA-2012-ALE-003 Vulnérabilité dans Microsoft XML Core Services 2012-06-14T00:00:00.000000 2012-08-17T00:00:00.000000
certa-2012-ale-002 Vulnérabilité dans Windows RDP 2012-03-14T00:00:00.000000 2012-04-13T00:00:00.000000
CERTA-2012-ALE-002 Vulnérabilité dans Windows RDP 2012-03-14T00:00:00.000000 2012-04-13T00:00:00.000000
certa-2012-ale-001 Vulnérabilité dans Cisco IronPort 2012-02-01T00:00:00.000000 2013-02-05T00:00:00.000000
CERTA-2012-ALE-001 Vulnérabilité dans Cisco IronPort 2012-02-01T00:00:00.000000 2013-02-05T00:00:00.000000
certa-2011-ale-008 Vulnérabilité dans Adobe Reader et Acrobat 2011-12-07T00:00:00.000000 2012-01-10T00:00:00.000000
ID Description Published Updated
certfr-2026-avi-0164 Multiples vulnérabilités dans PostgreSQL 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0163 Multiples vulnérabilités dans HAProxy 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0162 Multiples vulnérabilités dans Juniper Networks Secure Analytics 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0161 Vulnérabilité dans Tenable Nessus Agent 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0171 Multiples vulnérabilités dans les produits IBM 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0170 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0169 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0168 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0167 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0166 Multiples vulnérabilités dans le noyau Linux de Debian 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0165 Vulnérabilité dans Mattermost Server 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0164 Multiples vulnérabilités dans PostgreSQL 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0163 Multiples vulnérabilités dans HAProxy 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0162 Multiples vulnérabilités dans Juniper Networks Secure Analytics 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
CERTFR-2026-AVI-0161 Vulnérabilité dans Tenable Nessus Agent 2026-02-13T00:00:00.000000 2026-02-13T00:00:00.000000
certfr-2026-avi-0160 Multiples vulnérabilités dans les produits Palo Alto Networks 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0159 Multiples vulnérabilités dans Keycloak 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0158 Multiples vulnérabilités dans les produits Apple 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0157 Multiples vulnérabilités dans les produits Qnap 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0156 Multiples vulnérabilités dans Google Chrome 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0155 Multiples vulnérabilités dans SPIP 2026-02-12T00:00:00.000000 2026-02-25T00:00:00.000000
certfr-2026-avi-0154 Vulnérabilité dans Traefik 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0160 Multiples vulnérabilités dans les produits Palo Alto Networks 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0159 Multiples vulnérabilités dans Keycloak 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0158 Multiples vulnérabilités dans les produits Apple 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0157 Multiples vulnérabilités dans les produits Qnap 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0156 Multiples vulnérabilités dans Google Chrome 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2026-AVI-0155 Multiples vulnérabilités dans SPIP 2026-02-12T00:00:00.000000 2026-02-25T00:00:00.000000
CERTFR-2026-AVI-0154 Vulnérabilité dans Traefik 2026-02-12T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2026-avi-0153 Multiples vulnérabilités dans les produits Microsoft 2026-02-11T00:00:00.000000 2026-02-11T00:00:00.000000
ID Description Published Updated
jvndb-2024-000065 "ZOZOTOWN" App for Android fails to restrict custom URL schemes properly 2024-06-19T16:04+09:00 2024-06-19T16:04+09:00
jvndb-2024-000064 WordPress plugin "SiteGuard WP Plugin" may leak the customized path to the login page 2024-06-19T14:25+09:00 2024-06-19T14:25+09:00
jvndb-2024-000061 Multiple vulnerabilities in Ricoh Streamline NX PC Client 2024-06-18T14:56+09:00 2024-06-18T14:56+09:00
jvndb-2024-000063 Multiple vulnerabilities in ID Link Manager and FUJITSU Software TIME CREATOR 2024-06-18T13:43+09:00 2024-06-18T13:43+09:00
jvndb-2024-003539 Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs 2024-06-17T15:21+09:00 2024-06-17T15:21+09:00
jvndb-2024-000062 Denial-of-service (DoS) vulnerability in IPCOM WAF function 2024-06-12T15:03+09:00 2024-06-12T15:03+09:00
jvndb-2024-000058 WordPress Plugin "Music Store - WordPress eCommerce" vulnerable to SQL injection 2024-06-07T15:24+09:00 2024-06-10T17:08+09:00
jvndb-2024-000060 Multiple vulnerabilities in "FreeFrom - the nostr client" App 2024-06-07T14:51+09:00 2024-06-07T14:51+09:00
jvndb-2024-000057 Multiple vulnerabilities in UNIVERSAL PASSPORT RX 2024-06-03T15:32+09:00 2024-06-03T15:32+09:00
jvndb-2024-003254 Seiko Solutions SkyBridge MB-A100/MB-A110 and SkyBridge BASIC MB-A130 vulnerable to OS command injection 2024-06-03T14:53+09:00 2024-06-03T14:53+09:00
jvndb-2024-003253 Multiple vulnerabilities in Sharp and Toshiba Tec MFPs 2024-06-03T14:36+09:00 2024-06-03T14:36+09:00
jvndb-2024-000056 awkblog vulnerable to OS command injection 2024-05-30T14:39+09:00 2024-05-30T14:39+09:00
jvndb-2024-000055 Redmine DMSF Plugin vulnerable to path traversal 2024-05-29T14:13+09:00 2024-05-29T14:13+09:00
jvndb-2024-000054 EC-Orange vulnerable to authorization bypass 2024-05-29T14:06+09:00 2024-05-29T14:06+09:00
jvndb-2024-003249 ELECOM wireless LAN routers vulnerable to OS command injection 2024-05-29T12:33+09:00 2024-05-29T12:33+09:00
jvndb-2024-000053 Multiple vulnerabilities in Unifier and Unifier Cast 2024-05-28T14:47+09:00 2024-05-28T14:47+09:00
jvndb-2024-000052 Multiple vulnerabilities in UTAU 2024-05-28T14:23+09:00 2024-05-28T14:23+09:00
jvndb-2024-003242 OMRON NJ/NX series vulnerable to insufficient verification of data authenticity 2024-05-28T12:28+09:00 2024-07-26T16:27+09:00
jvndb-2024-000051 Splunk Config Explorer vulnerable to cross-site scripting 2024-05-24T13:50+09:00 2024-05-24T13:50+09:00
jvndb-2024-000050 WordPress Plugin "WP Booking" vulnerable to cross-site scripting 2024-05-24T13:41+09:00 2024-05-24T13:41+09:00
jvndb-2024-000046 Android App "TP-Link Tether" and "TP-Link Tapo" vulnerable to improper server certificate verification 2024-05-21T13:33+09:00 2024-05-21T13:33+09:00
jvndb-2024-003188 Panasonic KW Watcher vulnerable to memory buffer error 2024-05-17T15:46+09:00 2024-05-17T15:46+09:00
jvndb-2023-021762 Ruijie BCR810W/BCR860 vulnerable to OS command injection 2024-05-17T13:54+09:00 2024-05-17T13:54+09:00
jvndb-2024-000049 WordPress Plugin "Download Plugins and Themes from Dashboard" vulnerable to path traversal 2024-05-17T13:33+09:00 2024-05-17T13:33+09:00
jvndb-2024-003187 Multiple vulnerabilities in Field Logic DataCube 2024-05-17T12:05+09:00 2024-05-17T12:05+09:00
jvndb-2024-002342 Central Dogma vulnerable to cross-site scripting 2024-05-13T17:27+09:00 2024-05-13T17:27+09:00
jvndb-2024-000047 Multiple vulnerabilities in Cybozu Garoon 2024-05-13T15:19+09:00 2024-05-13T15:19+09:00
jvndb-2024-000045 "OfferBox" App uses a hard-coded secret key 2024-05-10T15:11+09:00 2024-05-10T15:11+09:00
jvndb-2024-003181 Hidden Functionality vulnerability in DT900 2024-05-10T13:59+09:00 2024-05-10T13:59+09:00
jvndb-2024-000048 Phormer vulnerable to cross-site scripting 2024-05-10T13:48+09:00 2024-05-10T13:48+09:00
ID Description Published Updated
cnvd-2026-16055 OpenClaw安全绕过漏洞(CNVD-2026-16055) 2026-03-26 2026-04-03
cnvd-2026-16054 OpenClaw命令执行漏洞(CNVD-2026-16054) 2026-03-26 2026-04-03
cnvd-2026-16053 OpenClaw拒绝服务漏洞(CNVD-2026-16053) 2026-03-26 2026-04-03
cnvd-2026-16052 OpenClaw访问控制错误漏洞(CNVD-2026-16052) 2026-03-26 2026-04-03
cnvd-2026-16051 OpenClaw安全绕过漏洞(CNVD-2026-16051) 2026-03-26 2026-04-03
cnvd-2026-16050 OpenClaw操作系统命令注入漏洞(CNVD-2026-16050) 2026-03-26 2026-04-03
cnvd-2026-16049 OpenClaw存在未明漏洞(CNVD-2026-16049) 2026-03-26 2026-04-03
cnvd-2026-16048 OpenClaw存在未明漏洞(CNVD-2026-16048) 2026-03-26 2026-04-03
cnvd-2026-16047 OpenClaw代码执行漏洞(CNVD-2026-16047) 2026-03-26 2026-04-03
cnvd-2026-16046 OpenClaw命令执行漏洞(CNVD-2026-16046) 2026-03-26 2026-04-03
cnvd-2026-16045 OpenClaw安全绕过漏洞(CNVD-2026-16045) 2026-03-26 2026-04-03
cnvd-2026-16044 OpenClaw操作系统命令注入漏洞(CNVD-2026-16044) 2026-03-26 2026-04-03
cnvd-2026-16043 OpenClaw操作系统命令注入漏洞(CNVD-2026-16043) 2026-03-26 2026-04-03
cnvd-2026-16042 OpenClaw路径遍历漏洞(CNVD-2026-16042) 2026-03-26 2026-04-03
cnvd-2026-16041 OpenClaw访问控制错误漏洞(CNVD-2026-16041) 2026-03-26 2026-04-03
cnvd-2026-15860 Canva Affinity越界读取漏洞(CNVD-2026-15860) 2026-03-26 2026-04-02
cnvd-2026-15859 Canva Affinity越界读取漏洞(CNVD-2026-15859) 2026-03-26 2026-04-02
cnvd-2026-15858 Canva Affinity越界读取漏洞(CNVD-2026-15858) 2026-03-26 2026-04-02
cnvd-2026-15857 Canva Affinity类型混淆漏洞 2026-03-26 2026-04-02
cnvd-2026-15856 Canva Affinity越界读取漏洞(CNVD-2026-15856) 2026-03-26 2026-04-02
cnvd-2026-15855 Canva Affinity越界读取漏洞(CNVD-2026-15855) 2026-03-26 2026-04-02
cnvd-2026-15854 Canva Affinity越界读取漏洞(CNVD-2026-15854) 2026-03-26 2026-04-02
cnvd-2026-15853 Canva Affinity越界读取漏洞(CNVD-2026-15853) 2026-03-26 2026-04-02
cnvd-2026-15852 Canva Affinity越界写入漏洞 2026-03-26 2026-04-02
cnvd-2026-15851 Canva Affinity越界读取漏洞(CNVD-2026-15851) 2026-03-26 2026-04-02
cnvd-2026-15850 Canva Affinity越界读取漏洞(CNVD-2026-15850) 2026-03-26 2026-04-02
cnvd-2026-15849 Canva Affinity越界读取漏洞(CNVD-2026-15849) 2026-03-26 2026-04-02
cnvd-2026-15848 Canva Affinity越界读取漏洞(CNVD-2026-15848) 2026-03-26 2026-04-02
cnvd-2026-15847 Canva Affinity越界读取漏洞(CNVD-2026-15847) 2026-03-26 2026-04-02
cnvd-2026-15846 Canva Affinity越界读取漏洞(CNVD-2026-15846) 2026-03-26 2026-04-02
ID Description Published Updated
bdu:2026-01304 Уязвимость функции bus_error030 () ядра операционной системы Linux, позволяющая нарушител… 06.02.2026 06.02.2026
bdu:2026-01303 Уязвимость функции ov5675_init_controls() ядра операционной системы Linux, позволяющая на… 06.02.2026 06.02.2026
bdu:2026-01302 Уязвимость функции adreno_gpu_init() модуля drivers/gpu/drm/msm/adreno/adreno_gpu.c драйв… 06.02.2026 06.02.2026
bdu:2026-01301 Уязвимость функции ntfs_new_inode() модуля fs/ntfs3/fsntfs.c файловой системы NTFS 3 ядра… 06.02.2026 06.02.2026
bdu:2026-01300 Уязвимость функции gdlm_put_lock() модуля fs/gfs2/lock_dlm.c файловой системы GFS2 ядра о… 06.02.2026 06.02.2026
bdu:2026-01299 Уязвимость функции __replace_atomic_write_block() модуля fs/f2fs/segment.c файловой систе… 06.02.2026 06.02.2026
bdu:2026-01298 Уязвимость функции nonstatic_release_resource_db() модуля drivers/pcmcia/rsrc_nonstatic.c… 06.02.2026 06.02.2026
bdu:2026-01297 Уязвимость функции isert_wait_conn() модуля drivers/infiniband/ulp/isert/ib_isert.c драйв… 06.02.2026 06.02.2026
bdu:2026-01296 Уязвимость функции xfrm_state_delete_tunnel() модуля net/xfrm/xfrm_state.c ядра операцион… 06.02.2026 06.02.2026
bdu:2026-01295 Уязвимость функции kcm_sendmsg() в модуле net/kcm/kcmsock.c реализации сетевых функций яд… 06.02.2026 06.02.2026
bdu:2026-01294 Уязвимость функции vmw_cmd_dma() модуля drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c драйвера … 06.02.2026 06.02.2026
bdu:2026-01293 Уязвимость функции ipcomp_free_scratches() модуля net/xfrm/xfrm_ipcomp.c реализации сетев… 06.02.2026 06.02.2026
bdu:2026-01291 Уязвимость функции dbMount() модуля fs/jfs/jfs_dmap.c файловой системы JFS ядра операцион… 06.02.2026 06.02.2026
bdu:2026-01290 Уязвимость функции brcmf_fw_alloc_request() модуля drivers/net/wireless/broadcom/brcm8021… 06.02.2026 06.02.2026
bdu:2026-01289 Уязвимость функции si470x_usb_driver_probe() модуля drivers/media/radio/si470x/radio-si47… 06.02.2026 06.02.2026
bdu:2026-01288 Уязвимость функций smb_inherit_dacl() и smb_check_perm_dacl() модуля fs/smb/server/smbacl… 06.02.2026 06.02.2026
bdu:2026-01287 Уязвимость контроллера входящего трафика в кластере Kubernetes ingress-nginx, связанная с… 06.02.2026 06.02.2026
bdu:2026-01286 Уязвимость функции управления сертификатами веб-интерфейса платформы планирования и прове… 06.02.2026 06.02.2026
bdu:2026-01285 Уязвимость функции kernfs_remove_by_name_ns() модуля fs/kernfs/dir.c файловой системы ядр… 06.02.2026 06.02.2026
bdu:2026-01284 Уязвимость платформы для автоматизации рабочих процессов n8n, связанная с недостаточным к… 06.02.2026 06.02.2026
bdu:2026-01283 Уязвимость функции btrfs_quota_enable() модуля fs/btrfs/qgroup.c файловой системы btrfs я… 06.02.2026 06.02.2026
bdu:2026-01282 Уязвимость функции dml21_map_dc_state_into_dml_display_cfg() модуля drivers/gpu/drm/amd/d… 06.02.2026 06.02.2026
bdu:2026-01281 Уязвимость пакетов npm React Router и Remix, связанная с непринятием мер по защите структ… 05.02.2026 05.02.2026
bdu:2026-01280 Уязвимость функции pinmux_func_name_to_selector() модуля drivers/pinctrl/pinmux.c драйвер… 05.02.2026 05.02.2026
bdu:2026-01279 Уязвимость расширения vscode-go редактора исходного кода Visual Studio Code, позволяющая … 05.02.2026 05.02.2026
bdu:2026-01278 Уязвимость функции target_lu_gp_members_show() модуля drivers/target/target_core_configfs… 05.02.2026 05.02.2026
bdu:2026-01277 Уязвимость функции essiv_aead_crypt() компонента essiv ядра операционной системы Linux, п… 05.02.2026 05.02.2026
bdu:2026-01276 Уязвимость функции smb_break_all_levII_oplock() модуля fs/smb/server/oplock.c сервера SMB… 05.02.2026 05.02.2026
bdu:2026-01275 Уязвимость функции rcu_read_unlock_special() модуля kernel/rcu/tree_plugin.h ядра операци… 05.02.2026 05.02.2026
bdu:2026-01274 Уязвимость PHP-фреймворка Laravel, связанная с непринятием мер по нейтрализации подстанов… 05.02.2026 05.02.2026
ID Description Updated
var-201605-0467 Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4… 2024-07-23T21:36:25.410000Z
var-201306-0147 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:36:25.133000Z
var-202310-0175 The HTTP/2 protocol allows a denial of service (server resource consumption) because requ… 2024-07-23T21:36:24.758000Z
var-201110-0479 Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted re… 2024-07-23T21:36:24.394000Z
var-201804-1181 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2024-07-23T21:36:20.913000Z
var-202210-1070 An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions … 2024-07-23T21:36:19.928000Z
var-200501-0287 Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a… 2024-07-23T21:36:19.004000Z
var-202105-1311 A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in … 2024-07-23T21:35:12.003000Z
var-201804-1180 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2024-07-23T21:35:11.789000Z
var-201304-0300 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:35:11.273000Z
var-201006-1169 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… 2024-07-23T21:35:11.733000Z
var-202105-0131 A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packe… 2024-07-23T21:35:10.562000Z
var-201710-1404 An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo… 2024-07-23T21:35:10.631000Z
var-201711-0455 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… 2024-07-23T21:35:06.798000Z
var-201504-0478 The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement… 2024-07-23T21:35:06.207000Z
var-200704-0215 Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows re… 2024-07-23T21:35:06.142000Z
var-201912-0584 A memory corruption issue was addressed with improved input validation. This issue is fix… 2024-07-23T21:35:05.474000Z
var-201512-0007 Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 al… 2024-07-23T21:35:01.063000Z
var-202005-0397 json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file… 2024-07-23T21:34:58.765000Z
var-200909-0801 The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp modul… 2024-07-23T21:34:26.443000Z
var-201105-0094 The fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library … 2024-07-23T21:34:14.063000Z
var-201805-0950 A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Softw… 2024-07-23T21:34:13.151000Z
var-201707-1188 An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari … 2024-07-23T21:34:09.280000Z
var-201007-0318 WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before… 2024-07-23T21:34:09.881000Z
var-202010-1327 A logic issue was addressed with improved validation. This issue is fixed in iCloud for W… 2024-07-23T21:34:07.225000Z
var-201711-0448 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… 2024-07-23T21:34:05.466000Z
var-201710-1402 An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo… 2024-07-23T21:34:05.823000Z
var-202106-0345 Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allo… 2024-07-23T21:34:00.818000Z
var-201004-1006 Heap-based buffer overflow in vmnc.dll in the VMnc media codec in VMware Movie Decoder be… 2024-07-23T21:33:58.659000Z
var-201404-0377 Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51,… 2024-07-23T21:33:23.504000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated