Vulnerability-Lookup

Recent vulnerabilities from

Select from 69 available sources using the dropdown above.

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-4191	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	JawherKl node-api-postgres Profile Picture index.js pa…	JawherKl	node-api-postgres	2026-03-15T20:02:09.002Z	2026-03-16T20:10:57.488Z
CVE-2026-4190	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	JawherKl node-api-postgres user.js User.getAll sql injection	JawherKl	node-api-postgres	2026-03-15T19:32:16.058Z	2026-03-16T20:12:17.864Z
CVE-2026-4189	5.1 (4.0) 4.7 (3.1) 4.7 (3.0)	phpipam Section edit-result.php sql injection	n/a	phpipam	2026-03-15T19:32:12.338Z	2026-03-16T20:09:17.428Z
CVE-2026-4188	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	D-Link DIR-619L boa formSchedule stack-based overflow	D-Link	DIR-619L	2026-03-15T19:32:10.451Z	2026-03-16T14:40:35.140Z
CVE-2026-4187	6.9 (4.0) 5.3 (3.1) 5.3 (3.0)	Tiandy Easy7 Integrated Management Platform Device Ide…	Tiandy	Easy7 Integrated Management Platform	2026-03-15T19:02:17.513Z	2026-03-16T20:14:36.584Z
CVE-2026-4186	5.1 (4.0) 3.5 (3.1) 3.5 (3.0)	UEditor JSONP Callback controller.php cross site scripting	n/a	UEditor	2026-03-15T19:02:06.956Z	2026-03-17T15:19:44.695Z
CVE-2015-20120	8.8 (4.0) 8.2 (3.1)	RealtyScript 4.0.2 Multiple Time-based Blind SQL Injection	Next Click Ventures	RealtyScript	2026-03-15T18:35:43.736Z	2026-03-16T14:20:17.335Z
CVE-2017-20220	8.7 (4.0) 7.5 (3.1)	Serviio PRO 1.8 Unauthenticated Password Change via REST API	Serviio	Serviio PRO	2026-03-15T18:34:28.354Z	2026-03-16T14:20:17.530Z
CVE-2017-20219	5.1 (4.0) 6.1 (3.1)	Serviio PRO 1.8 DOM-based Cross-Site Scripting via med…	Serviio	Serviio PRO	2026-03-15T18:34:27.373Z	2026-03-16T14:20:17.702Z
CVE-2017-20218	8.5 (4.0) 7.8 (3.1)	Serviio PRO 1.8 Local Privilege Escalation via Unquoted Path	Serviio	Serviio PRO	2026-03-15T18:34:25.800Z	2026-03-16T14:20:17.881Z
CVE-2017-20217	8.7 (4.0) 7.5 (3.1)	Serviio PRO 1.8 REST API Information Disclosure	Serviio	Serviio PRO	2026-03-15T18:34:24.635Z	2026-03-16T14:20:18.020Z
CVE-2016-20036	5.1 (4.0) 6.1 (3.1)	Wowza Streaming Engine 4.5.0 Multiple Cross-Site Scrip…	Wowza Media Systems, LLC.	Wowza Streaming Engine	2026-03-15T18:34:23.829Z	2026-03-16T14:30:29.820Z
CVE-2016-20035	6.9 (4.0) 5.3 (3.1)	Wowza Streaming Engine 4.5.0 CSRF via user edit endpoint	Wowza Media Systems, LLC.	Wowza Streaming Engine	2026-03-15T18:34:22.874Z	2026-03-16T14:30:30.121Z
CVE-2016-20034	8.7 (4.0) 8.8 (3.1)	Wowza Streaming Engine 4.5.0 Privilege Escalation via …	Wowza Media Systems, LLC.	Wowza Streaming Engine	2026-03-15T18:34:22.034Z	2026-03-16T14:30:30.300Z
CVE-2016-20033	8.5 (4.0) 7.8 (3.1)	Wowza Streaming Engine 4.5.0 Local Privilege Escalatio…	Wowza Media Systems, LLC.	Wowza Streaming Engine	2026-03-15T18:34:21.181Z	2026-03-16T14:30:30.462Z
CVE-2015-20121	8.8 (4.0) 8.2 (3.1)	RealtyScript 4.0.2 SQL Injection via u_id and agent Pa…	Next Click Ventures	RealtyScripts	2026-03-15T18:34:19.926Z	2026-03-16T14:30:30.626Z
CVE-2015-20119	5.1 (4.0) 6.4 (3.1)	RealtyScript 4.0.2 Stored Cross-Site Scripting via tex…	Next Click Ventures	RealtyScript	2026-03-15T18:34:17.708Z	2026-03-16T14:30:30.762Z
CVE-2015-20118	5.1 (4.0) 7.2 (3.1)	RealtyScript 4.0.2 Stored Cross-Site Scripting via loc…	Next Click Ventures	RealtyScript	2026-03-15T18:34:16.830Z	2026-03-16T14:30:30.949Z
CVE-2015-20117	6.9 (4.0) 5.3 (3.1)	RealtyScript 4.0.2 Cross-Site Request Forgery Unauthor…	Next Click Ventures	RealtyScript	2026-03-15T18:34:16.030Z	2026-03-16T14:30:31.130Z
CVE-2015-20116	5.1 (4.0) 6.1 (3.1)	RealtyScript 4.0.2 Stored Cross-Site Scripting via CSV…	Next Click Ventures	RealtyScript	2026-03-15T18:34:14.443Z	2026-03-16T14:30:31.280Z
CVE-2015-20115	5.1 (4.0) 7.2 (3.1)	RealtyScript 4.0.2 Stored Cross-Site Scripting via Fil…	Next Click Ventures	RealtyScript	2026-03-15T18:34:13.697Z	2026-03-16T14:30:31.420Z
CVE-2015-20114	5.1 (4.0) 6.1 (3.1)	RealtyScript 4.0.2 Cross-Site Scripting via Multiple P…	Next Click Ventuers	RealtyScript	2026-03-15T18:34:12.468Z	2026-03-16T14:20:18.259Z
CVE-2015-20113	6.9 (4.0) 5.3 (3.1)	RealtyScript 4.0.2 Multiple Cross-Site Request Forgery…	Next Click Ventuers	RealtyScript	2026-03-15T18:34:11.692Z	2026-03-16T14:20:18.451Z
CVE-2013-20006	8.7 (4.0) 7.5 (3.1)	Qool CMS Multiple Persistent Cross-Site Scripting Vuln…	Qool	Qool CMS	2026-03-15T18:34:10.910Z	2026-03-16T14:20:18.616Z
CVE-2013-20005	6.9 (4.0) 5.3 (3.1)	Qool CMS 2.0 RC2 Cross-Site Request Forgery via adduser	Qool	Qool CMS	2026-03-15T18:34:09.977Z	2026-03-16T14:20:18.785Z
CVE-2026-4185	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	GPAC MP4Box swf_parse.c swf_def_bits_jpeg stack-based …	n/a	GPAC	2026-03-15T18:32:08.668Z	2026-03-17T15:18:42.115Z
CVE-2026-4184	9.3 (4.0) 9.8 (3.1) 9.8 (3.0)	D-Link DIR-816 goahead form2Wl5BasicSetup.cgi stack-ba…	D-Link	DIR-816	2026-03-15T17:32:09.843Z	2026-03-16T14:40:34.929Z
CVE-2026-4183	9.3 (4.0) 9.8 (3.1) 9.8 (3.0)	D-Link DIR-816 goahead form2WlanBasicSetup.cgi stack-b…	D-Link	DIR-816	2026-03-15T16:32:09.354Z	2026-03-16T14:40:34.375Z
CVE-2026-4182	9.3 (4.0) 9.8 (3.1) 9.8 (3.0)	D-Link DIR-816 goahead form2Wl5RepeaterStep2.cgi stack…	D-Link	DIR-816	2026-03-15T16:02:15.731Z	2026-03-16T14:40:34.130Z
CVE-2026-4181	9.3 (4.0) 9.8 (3.1) 9.8 (3.0)	D-Link DIR-816 goahead form2RepeaterStep2.cgi stack-ba…	D-Link	DIR-816	2026-03-15T16:02:10.609Z	2026-03-16T14:40:33.964Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-32706	7.1 (3.1)	PX4 autopilot has a global buffer overflow in crsf_rc …	PX4	PX4-Autopilot	2026-03-13T21:17:02.719Z	2026-03-17T15:41:50.077Z
CVE-2026-32705	6.8 (3.1)	PX4 autopilot BST Device Name Length Can Overflow Driv…	PX4	PX4-Autopilot	2026-03-13T21:15:55.509Z	2026-03-17T16:03:00.531Z
CVE-2026-32704	6.5 (3.1)	SiYuan renderSprig: missing admin check allows any use…	siyuan-note	siyuan	2026-03-13T21:10:36.613Z	2026-03-16T16:46:59.090Z
CVE-2026-32702	6.9 (4.0)	Cleanuparr has Username Enumeration via Timing Attack	Cleanuparr	Cleanuparr	2026-03-13T21:09:00.127Z	2026-03-16T16:47:53.284Z
CVE-2026-32640	8.7 (4.0)	(SimpleEval) Objects (including modules) can leak dang…	danthedeckie	simpleeval	2026-03-13T21:03:53.435Z	2026-03-16T16:48:21.852Z
CVE-2026-32635	8.6 (4.0)	Angular has XSS in i18n attribute bindings	@angular	compiler	2026-03-13T20:58:12.554Z	2026-03-17T03:55:33.785Z
CVE-2026-32630	5.3 (3.1)	file-type affected by ZIP Decompression Bomb DoS via […	sindresorhus	file-type	2026-03-13T20:54:16.960Z	2026-03-16T16:59:36.473Z
CVE-2026-32628	7.7 (4.0)	AnythingLLM has SQL Injection in Built-in SQL Agent Pl…	Mintplex-Labs	anything-llm	2026-03-13T20:50:15.991Z	2026-03-16T15:41:05.437Z
CVE-2026-32627	8.7 (3.1)	cpp-httplib has a Silent TLS Certificate Verification …	yhirose	cpp-httplib	2026-03-13T20:48:14.442Z	2026-03-16T15:41:05.578Z
CVE-2026-32626	9.7 (3.1)	AnythingLLM has a Streaming Phase XSS to RCE via LLM …	Mintplex-Labs	anything-llm	2026-03-13T20:14:30.437Z	2026-03-16T20:13:43.696Z
CVE-2026-32621	9.9 (3.1)	Apollo Federation has prototype pollution via incomple…	@apollo	federation-internals	2026-03-13T20:29:54.875Z	2026-03-16T20:14:57.335Z
CVE-2026-32617	7.1 (3.1)	AnythingLLM Permissable CORS policy	Mintplex-Labs	anything-llm	2026-03-13T20:07:57.446Z	2026-03-16T20:09:19.009Z
CVE-2026-32616	8.2 (3.1)	Pigeon has a Host Header Injection in email verificati…	kasuganosoras	Pigeon	2026-03-13T21:12:40.529Z	2026-03-16T16:46:32.353Z
CVE-2026-32614	7.5 (3.1)	Go ShangMi SM9 Infinity-Point Ciphertext Forgery Vulne…	emmansun	gmsm	2026-03-13T20:14:05.750Z	2026-03-16T20:12:09.389Z
CVE-2026-32600	8.2 (3.1)	xml-security is Missing AES-GCM Authentication Tag Val…	simplesamlphp	xml-security	2026-03-13T19:58:41.692Z	2026-03-16T14:03:17.811Z
CVE-2026-32594	6.9 (4.0)	Parse Server GraphQL WebSocket endpoint bypasses secur…	parse-community	parse-server	2026-03-13T19:56:42.155Z	2026-03-16T13:57:44.809Z
CVE-2026-32314	8.7 (4.0)	Yamux remote Panic via malformed Data frame with SYN s…	libp2p	rust-yamux	2026-03-13T19:53:08.823Z	2026-03-16T13:48:29.665Z
CVE-2026-32313	8.2 (3.1)	xmlseclibs is Missing AES-GCM Authentication Tag Valid…	robrichards	xmlseclibs	2026-03-13T19:50:48.530Z	2026-03-16T13:45:07.031Z
CVE-2026-31386	7.2 (3.0) 8.6 (4.0)	OpenLiteSpeed and LSWS Enterprise provided by Lit…	LiteSpeed Technologies	OpenLiteSpeed	2026-03-16T05:21:13.948Z	2026-03-16T15:29:03.838Z
CVE-2026-2923	7.8 (3.0)	GStreamer DVB Subtitles Out-Of-Bounds Write Remote Cod…	GStreamer	GStreamer	2026-03-13T20:39:01.199Z	2026-03-17T03:55:38.806Z
CVE-2026-2922	7.8 (3.0)	GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote…	GStreamer	GStreamer	2026-03-13T20:38:49.124Z	2026-03-18T03:55:38.961Z
CVE-2026-2921	7.8 (3.0)	GStreamer RIFF Palette Integer Overflow Remote Code Ex…	GStreamer	GStreamer	2026-03-13T20:41:50.780Z	2026-03-18T03:55:40.080Z
CVE-2026-2920	7.8 (3.0)	GStreamer ASF Demuxer Heap-based Buffer Overflow Remot…	GStreamer	GStreamer	2026-03-13T20:38:27.802Z	2026-03-18T03:55:37.859Z
CVE-2026-2578	4.3 (3.1)	Information Disclosure via WebSocket Event When Deleti…	Mattermost	Mattermost	2026-03-16T11:58:09.834Z	2026-03-16T13:49:55.812Z
CVE-2026-2493	7.5 (3.0)	IceWarp collaboration Directory Traversal Information …	IceWarp	IceWarp	2026-03-13T20:42:38.658Z	2026-03-16T15:41:05.952Z
CVE-2026-2491	6.3 (3.0)	Socomec DIRIS A-40 HTTP API Authentication Bypass Vuln…	Socomec	DIRIS A-40	2026-03-13T20:43:15.417Z	2026-03-16T15:41:05.821Z
CVE-2026-2476	7.6 (3.1)	MS Teams plugin sensitive config values not properly m…	Mattermost	Mattermost	2026-03-16T11:11:07.387Z	2026-03-16T13:49:58.500Z
CVE-2026-2463	4.3 (3.1)	Unauthorized access to invite ID during team creation	Mattermost	Mattermost	2026-03-16T11:13:57.575Z	2026-03-16T13:49:58.332Z
CVE-2026-2462	6.6 (3.1)	Admin RCE via Malicious Plugin Upload on CI Test Instances	Mattermost	Mattermost	2026-03-16T12:00:21.069Z	2026-03-17T03:55:27.849Z
CVE-2026-2461	4.3 (3.1)	Missing authorization check allows unauthorized modifi…	Mattermost	Mattermost	2026-03-16T11:16:32.720Z	2026-03-16T13:49:57.924Z

ID	Description	Published	Updated
fkie_cve-2025-70095	A cross-site scripting (XSS) vulnerability in the item management and sales invoice function of Ope…	2026-02-13T16:16:11.080	2026-02-17T14:59:05.980
fkie_cve-2025-70094	A cross-site scripting (XSS) vulnerability in the Generate Item Barcode function of OpenSourcePOS v…	2026-02-13T16:16:10.977	2026-02-17T14:59:24.453
fkie_cve-2025-70093	An issue in OpenSourcePOS v3.4.1 allows attackers to execute arbitrary code via returning a crafted…	2026-02-13T16:16:10.867	2026-02-17T14:59:41.803
fkie_cve-2025-70091	A cross-site scripting (XSS) vulnerability in the Customers function of OpenSourcePOS v3.4.1 allows…	2026-02-13T16:16:10.760	2026-02-17T15:00:22.087
fkie_cve-2026-25531	Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, The fix for…	2026-02-13T15:15:57.990	2026-02-13T20:43:30.620
fkie_cve-2026-1578	HP App for Android is potentially vulnerable to cross-site scripting (XSS) when using an outdated v…	2026-02-13T15:15:57.853	2026-02-13T15:43:55.060
fkie_cve-2026-23112	In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks i…	2026-02-13T14:16:10.403	2026-02-13T14:23:48.007
fkie_cve-2026-23111	In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix inve…	2026-02-13T14:16:10.283	2026-02-13T14:23:48.007
fkie_cve-2026-1619	Authorization Bypass Through User-Controlled Key vulnerability in Universal Software Inc. FlexCity/…	2026-02-13T14:16:10.067	2026-03-02T13:38:01.157
fkie_cve-2026-1618	Authentication Bypass Using an Alternate Path or Channel vulnerability in Universal Software Inc. F…	2026-02-13T14:16:09.910	2026-03-02T13:38:12.053
fkie_cve-2025-14349	Privilege Defined With Unsafe Actions, Missing Authentication for Critical Function vulnerability i…	2026-02-13T14:16:09.210	2026-03-02T13:37:32.403
fkie_cve-2026-2443	A flaw was identified in libsoup, a widely used HTTP library in GNOME-based systems. When processin…	2026-02-13T12:16:09.107	2026-02-13T14:23:48.007
fkie_cve-2025-33042	Improper Control of Generation of Code ('Code Injection') vulnerability in Apache Avro Java SDK whe…	2026-02-13T12:16:07.570	2026-02-20T15:07:04.680
fkie_cve-2026-22892	Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 fail to validate user pe…	2026-02-13T11:16:10.693	2026-02-18T21:34:16.227
fkie_cve-2026-20796	Mattermost versions 10.11.x <= 10.11.9 fail to properly validate channel membership at the time of …	2026-02-13T11:16:10.280	2026-02-23T15:53:11.073
fkie_cve-2026-0872	Improper Certificate Validation vulnerability in Thales SafeNet Agent for Windows Logon on Windows …	2026-02-13T09:16:07.753	2026-02-13T14:23:48.007
fkie_cve-2025-48023	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T06:16:11.917	2026-03-02T15:34:07.500
fkie_cve-2025-48022	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T06:16:11.790	2026-03-02T15:34:00.107
fkie_cve-2025-48021	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T06:16:11.650	2026-03-02T15:33:57.503
fkie_cve-2025-15520	The RegistrationMagic WordPress plugin before 6.0.7.2 checks nonces but not capabilities, allowing…	2026-02-13T06:16:10.897	2026-02-13T16:16:09.690
fkie_cve-2025-48020	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T05:16:09.567	2026-03-02T15:34:05.240
fkie_cve-2025-48019	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T05:16:09.423	2026-03-02T15:34:02.843
fkie_cve-2025-1924	A vulnerability has been found in Vnet/IP Interface Package provided by Yokogawa Electric Corporati…	2026-02-13T05:16:02.843	2026-03-02T15:33:54.707
fkie_cve-2026-26257	Rejected reason: Not used	2026-02-13T04:15:54.217	2026-02-13T04:15:54.217
fkie_cve-2026-26256	Rejected reason: Not used	2026-02-13T04:15:54.073	2026-02-13T04:15:54.073
fkie_cve-2026-26255	Rejected reason: Not used	2026-02-13T04:15:54.007	2026-02-13T04:15:54.007
fkie_cve-2026-26254	Rejected reason: Not used	2026-02-13T04:15:53.940	2026-02-13T04:15:53.940
fkie_cve-2026-26253	Rejected reason: Not used	2026-02-13T04:15:53.877	2026-02-13T04:15:53.877
fkie_cve-2026-26252	Rejected reason: Not used	2026-02-13T04:15:53.817	2026-02-13T04:15:53.817
fkie_cve-2026-26251	Rejected reason: Not used	2026-02-13T04:15:53.757	2026-02-13T04:15:53.757

ID	Severity	Description	Published	Updated
ghsa-3wjp-87jx-r4pv	6.3 (3.1) 2.1 (4.0)	A security vulnerability has been detected in CodeGenieApp serverless-express up to 4.17.1. Affecte…	2026-03-16T15:30:44Z	2026-03-16T15:30:44Z
ghsa-393c-jhgx-p674	8.1 (3.1)	Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability. Thi…	2026-03-16T15:30:44Z	2026-03-16T15:30:44Z
ghsa-2q8v-6q3v-prjc	8.0 (3.1)	Philips Hue Bridge Zigbee Stack Custom Command Handler Heap-based Buffer Overflow Remote Code Execu…	2026-03-16T15:30:44Z	2026-03-16T15:30:44Z
ghsa-26fg-fjwm-xwm6	8.8 (3.1) 7.4 (4.0)	A vulnerability was determined in Belkin F9K1122 1.00.33. This affects the function formReboot of t…	2026-03-16T15:30:44Z	2026-03-16T15:30:44Z
ghsa-wj6x-vgpf-cpm6	7.8 (3.1)	GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerab…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-vggc-6pg2-xvp9	6.4 (3.1) 5.1 (4.0)	Vulnogram 1.0.0 contains a stored cross-site scripting vulnerability in comment hypertext handling …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-vfq7-rgvh-5gcx	7.1 (4.0)	Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-pq8m-942f-68cv	7.4 (3.1)	libexif through 0.6.25 has a flaw in decoding MakerNotes. If the exif_mnote_data_get_value function…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-hx82-g397-5ggr	2.9 (3.1)	libexpat before 2.7.5 allows a NULL pointer dereference in the function setContext on retry after a…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-hjx5-q68f-pv56	7.8 (3.1)	GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerabi…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-hf8w-x9h5-5gf9	4.3 (3.1)	Mattermost Plugins versions <=11.3 11.0.3 11.2.2 10.10.11.0 fail to implement authorisation checks …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-h8gg-vg9f-x3jm	7.5 (3.1)	IceWarp collaboration Directory Traversal Information Disclosure Vulnerability. This vulnerability …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-h3jf-fj6h-58j8	7.1 (4.0)	Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-g7gw-mp9w-623w	7.8 (3.1)	GStreamer RIFF Palette Integer Overflow Remote Code Execution Vulnerability. This vulnerability all…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-fx49-m253-27jj	4.3 (3.1)	Mattermost fails to filter invite IDs based on user permissions	2026-03-16T15:30:43Z	2026-03-17T20:02:22Z
ghsa-fprx-ppqr-8wgf	6.6 (3.1)	Mattermost versions 11.3.x <= 11.3.0, 11.2.x <= 11.2.2, 10.11.x <= 10.11.10 fail to restrict plugin…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-9rpf-mhcj-gv7r	4.0 (3.1)	libexpat before 2.7.5 allows an infinite loop while parsing DTD content.	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-9qp5-q937-cpvv	5.3 (4.0)	Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in …	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-832q-9r5f-ppx5	8.6 (4.0)	Identity based authorization bypass vulnerability (IDOR) that allows an attacker to modify the data…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-7q24-fxcq-rmwc	6.3 (3.1)	Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability. This vulnerability allows network-…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-679f-wmrg-qf57	4.3 (3.1)	Mattermost allows a removed team member to enumerate all public channels within a private team	2026-03-16T15:30:43Z	2026-03-17T20:01:40Z
ghsa-5p6r-4c7p-96fh	3.4 (3.1)	telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from cli…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-52ch-r2h3-gxrq	7.8 (3.1)	GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-4ppj-6chv-5pgc	7.6 (3.1)	Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which al…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-3rhr-jr63-hwq5	4.3 (3.1)	Mattermost fails to preserve the redacted state of burn-on-read posts during deletion	2026-03-16T15:30:43Z	2026-03-17T20:02:36Z
ghsa-3gr9-8p27-7f3p	7.2 (3.1) 8.6 (4.0)	OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injectio…	2026-03-16T15:30:43Z	2026-03-16T15:30:43Z
ghsa-34g8-9fpp-46ch	5.3 (3.1)	Mattermost fails to limit the size of responses from integration action endpoints	2026-03-16T15:30:43Z	2026-03-17T20:01:22Z
ghsa-26hg-xq22-5254	4.8 (4.0)	Stored Cross-Site Scripting (XSS) vulnerability in the Wakyma web application, specifically in the …	2026-03-16T15:30:43Z	2026-03-16T15:30:44Z
ghsa-xvr9-fr69-g722	5.3 (3.1)	The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registra…	2026-03-16T15:30:42Z	2026-03-16T15:30:42Z
ghsa-xv2p-wchj-qjhp	4.3 (3.1)	Mattermost fails to bound memory allocation when processing DOC files	2026-03-16T15:30:42Z	2026-03-17T19:59:29Z

ID	Severity	Description	Package	Published	Updated
pysec-2023-221	7.5 (3.1)	Werkzeug is a comprehensive WSGI web application library. If an upload of a file that sta…	werkzeug	2023-10-25T18:17:00Z	2023-11-08T18:38:34.170214Z
pysec-2023-220	6.5 (3.1)	Nautobot is a Network Automation Platform built as a web application atop the Django Pyth…	nautobot	2023-10-25T18:17:00+00:00	2023-11-01T18:30:02.084237+00:00
pysec-2023-218	4.3 (3.1)	Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Airflo…	apache-airflow	2023-10-23T19:15:00+00:00	2023-10-28T05:24:46.485079+00:00
pysec-2023-211		views/switch.py in django-grappelli (aka Django Grappelli) before 2.15.2 attempts to prev…	django-grappelli	2023-10-22T19:15:00+00:00	2023-10-22T20:22:30.994719+00:00
pysec-2023-210		views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.…	coderedcms	2023-10-22T19:15:00+00:00	2023-10-22T20:22:30.887585+00:00
pysec-2023-217	8.8 (3.1)	Cross-Site Request Forgery (CSRF) in GitHub repository modoboa/modoboa prior to 2.2.2.	modoboa	2023-10-20T17:15:00+00:00	2023-10-27T20:23:07.873996+00:00
pysec-2023-216	5.4 (3.1)	Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.	modoboa	2023-10-20T17:15:00+00:00	2023-10-27T20:23:07.820957+00:00
pysec-2023-215	5.4 (3.1)	Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2.	modoboa	2023-10-20T17:15:00+00:00	2023-10-27T20:23:07.768462+00:00
pysec-2023-214	5.4 (3.1)	Home assistant is an open source home automation. The audit team’s analyses confirmed tha…	homeassistant	2023-10-20T00:15:00+00:00	2023-10-26T20:24:24.928732+00:00
pysec-2023-229	5.4 (3.1)	ArchiveBox is an open source self-hosted web archiving system. Any users who are using th…	archivebox	2023-10-19T22:15:00+00:00	2023-11-04T04:27:37.550377+00:00
pysec-2023-213	7.5 (3.1)	Inadequate encryption strength in mycli 1.27.0 allows attackers to view sensitive informa…	mycli	2023-10-19T22:15:00+00:00	2023-10-25T22:26:24.480718+00:00
pysec-2023-219	2.7 (3.1)	Wagtail is an open source content management system built on Django. A user with a limite…	wagtail	2023-10-19T19:15:00+00:00	2023-10-31T20:23:51.857051+00:00
pysec-2023-205		LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because…	langchain	2023-10-19T05:15:00+00:00	2023-10-19T10:33:05.150766+00:00
pysec-2023-212	4.2 (3.1)	urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't re…	urllib3	2023-10-17T20:15:00+00:00	2023-10-25T18:28:34.811764+00:00
pysec-2023-206	7.5 (3.1)	NULL Pointer Dereference in GitHub repository seleniumhq/selenium prior to 4.14.0.	selenium	2023-10-15T23:15:00+00:00	2023-10-19T12:51:06.907613+00:00
pysec-2023-207	6.1 (3.1)	urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cros…	urllib3	2023-10-15T19:15:00+00:00	2023-10-19T16:33:01.297810+00:00
pysec-2023-204	4.3 (3.1)	Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an …	apache-airflow	2023-10-14T10:15:00+00:00	2023-10-18T20:24:08.594791+00:00
pysec-2023-203	6.5 (3.1)	Apache Airflow, in versions prior to 2.7.2, contains a security vulnerability that allows…	apache-airflow	2023-10-14T10:15:00+00:00	2023-10-18T20:24:08.541134+00:00
pysec-2023-202	6.5 (3.1)	Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows au…	apache-airflow	2023-10-14T10:15:00+00:00	2023-10-18T20:24:08.482939+00:00
pysec-2023-197		Apache Airflow, versions before 2.7.2, has a vulnerability that allows an authorized user…	apache-airflow	2023-10-14T10:15:00+00:00	2023-10-14T12:46:00.410542+00:00
pysec-2023-201	4.3 (3.1)	vantage6 is privacy preserving federated learning infrastructure. The endpoint /api/colla…	vantage6	2023-10-11T20:15:00+00:00	2023-10-18T05:26:18.202930+00:00
pysec-2023-200	4.3 (3.1)	vantage6 is privacy preserving federated learning infrastructure. When a collaboration is…	vantage6	2023-10-11T20:15:00+00:00	2023-10-18T05:26:18.112311+00:00
pysec-2023-198	5.4 (3.1)	vantage6 is privacy preserving federated learning infrastructure. Prior to version 4.0.0,…	vantage6-node	2023-10-11T20:15:00+00:00	2023-10-17T18:31:16.643410+00:00
pysec-2023-196	7.2 (3.1)	vantage6 is privacy preserving federated learning infrastructure. Versions prior to 4.0.0…	vantage6	2023-10-11T18:15:00+00:00	2023-10-13T22:28:56.802294+00:00
pysec-2023-199	4.9 (3.1)	Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun…	matrix-synapse	2023-10-10T18:15:00+00:00	2023-10-17T22:26:17.611846+00:00
pysec-2023-194	9.8 (3.1)	langchain_experimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and exe…	langchain-experimental	2023-10-09T20:15:00Z	2025-02-23T07:46:11Z
pysec-2023-195	6.5 (3.1)	OctoPrint is a web interface for 3D printers. OctoPrint versions up until and including 1…	octoprint	2023-10-09T16:15:00+00:00	2023-10-13T20:25:14.968230+00:00
pysec-2023-193	4.8 (3.1)	Zope is an open-source web application server. The title property, available on most Zope…	zope	2023-10-04T21:15:00+00:00	2023-10-10T20:21:16.174482+00:00
pysec-2023-192	8.1 (3.1)	urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Coo…	urllib3	2023-10-04T17:15:00+00:00	2023-10-10T14:28:19.389317+00:00
pysec-2023-190	7.5 (3.1)	Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service (DoS) s…	asyncua	2023-10-03T05:15:00+00:00	2023-10-04T18:37:48.407821+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-1174	Malicious code in ethersnode (npm)	2026-03-03T05:29:56Z	2026-03-08T01:39:44Z
mal-2026-1173	Malicious code in eslint-verify-plugin (npm)	2026-03-03T05:27:31Z	2026-03-08T01:39:44Z
mal-2026-1176	Malicious code in gabby-types (npm)	2026-03-03T05:14:17Z	2026-03-08T01:39:44Z
mal-2026-1170	Malicious code in @global-dax-ad-platform/dax-utils (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1169	Malicious code in @global-dax-ad-platform/dax-types (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1168	Malicious code in @global-dax-ad-platform/dax-styles (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1167	Malicious code in @global-dax-ad-platform/dax-modules (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1166	Malicious code in @global-dax-ad-platform/dax-hooks (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1165	Malicious code in @global-dax-ad-platform/dax-components (npm)	2026-03-03T05:13:37Z	2026-03-08T01:39:42Z
mal-2026-1178	Malicious code in hiagentevilmcp (npm)	2026-03-03T05:11:36Z	2026-03-08T01:39:45Z
mal-2026-1172	Malicious code in @zakhaevv/envai (npm)	2026-03-03T05:09:55Z	2026-03-08T01:39:42Z
mal-2026-1171	Malicious code in @snazaah/davey (npm)	2026-03-03T05:08:31Z	2026-03-08T01:39:42Z
mal-2026-1177	Malicious code in graph-dynamic (npm)	2026-03-03T05:06:50Z	2026-03-08T01:39:44Z
mal-2026-1179	Malicious code in magala (npm)	2026-03-03T05:04:43Z	2026-03-08T01:39:45Z
mal-2026-1151	Malicious code in openclaw-droid (npm)	2026-03-03T04:20:34Z	2026-03-08T01:39:46Z
mal-2026-1157	Malicious code in token-discord-encryptation (npm)	2026-03-03T04:09:27Z	2026-03-08T01:39:48Z
mal-2026-1156	Malicious code in solongnerds (npm)	2026-03-03T04:08:55Z	2026-03-08T01:39:47Z
mal-2026-1164	Malicious code in yazxzpedia-libsignal (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:48Z
mal-2026-1155	Malicious code in rullzdigital-libsignal (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:47Z
mal-2026-1154	Malicious code in rullzdigital (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:47Z
mal-2026-1153	Malicious code in primexuu-libsignal (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:46Z
mal-2026-1150	Malicious code in libsignal-yazxz (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:45Z
mal-2026-1147	Malicious code in danzxoffc74-libsignal (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:43Z
mal-2026-1146	Malicious code in danzxoffc74 (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:43Z
mal-2026-1145	Malicious code in @yazxzpedia/baileys (npm)	2026-03-03T04:08:41Z	2026-03-08T01:39:42Z
mal-2026-1163	Malicious code in xpack-video-submission (npm)	2026-03-03T04:08:35Z	2026-03-08T01:39:48Z
mal-2026-1162	Malicious code in xpack-test-3.0 (npm)	2026-03-03T04:08:35Z	2026-03-08T01:39:48Z
mal-2026-1158	Malicious code in xpack-arc-gateway (npm)	2026-03-03T04:08:35Z	2026-03-08T01:39:48Z
mal-2026-1148	Malicious code in ethglobal-finale (npm)	2026-03-03T04:08:35Z	2026-03-08T01:39:44Z
mal-2026-1161	Malicious code in xpack-sui (npm)	2026-03-03T04:08:34Z	2026-03-08T01:39:48Z

ID	Description	Published	Updated

ID	Description	Published	Updated
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2228	ESRI ArcGIS: Schwachstelle ermöglicht SQL injection	2025-10-07T22:00:00.000+00:00	2025-10-22T22:00:00.000+00:00
wid-sec-w-2025-2227	Golang Go: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2025-2226	binutils: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-07T22:00:00.000+00:00	2025-10-08T22:00:00.000+00:00
wid-sec-w-2025-2224	Keycloak: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2223	Liferay Portal und DXP: Mehrere Schwachstellen ermöglichen Cross-Site Scripting	2025-10-07T22:00:00.000+00:00	2025-10-08T22:00:00.000+00:00
wid-sec-w-2025-2216	Kibana: Mehrere Schwachstellen	2025-10-06T22:00:00.000+00:00	2025-10-08T22:00:00.000+00:00
wid-sec-w-2025-2212	OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung	2025-10-06T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2209	HAProxy und HAProxy ALOHA: Schwachstelle ermöglicht Denial of Service	2025-10-05T22:00:00.000+00:00	2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2202	fetchmail: Schwachstelle ermöglicht Denial of Service	2025-10-05T22:00:00.000+00:00	2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2198	MediaWiki: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2196	Redis: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2026-01-14T23:00:00.000+00:00
wid-sec-w-2025-2195	Oracle E-Business Suite: Schwachstelle ermöglicht Codeausführung	2025-10-05T22:00:00.000+00:00	2025-10-21T22:00:00.000+00:00
wid-sec-w-2025-2194	Linux Kernel: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2193	QEMU: Schwachstelle ermöglicht Denial of Service	2025-10-05T22:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-2187	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-01T22:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2186	Django: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-10-01T22:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2181	Logback: Schwachstelle ermöglicht Codeausführung	2025-10-01T22:00:00.000+00:00	2025-10-05T22:00:00.000+00:00
wid-sec-w-2025-2171	Red Hat Enterprise Linux (JSON-XS Perl): Schwachstelle ermöglicht Denial of Service	2025-09-30T22:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2025-2170	Linux Kernel: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2026-01-28T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2025-2164	Red Hat Enterprise Linux (FreeIPA): Schwachstelle ermöglicht Erlangen von Administratorrechten	2025-09-30T22:00:00.000+00:00	2025-10-01T22:00:00.000+00:00
wid-sec-w-2025-2157	Apple iOS, iPadOS and macOS (Font Parser): Schwachstelle ermöglicht Denial of Service	2025-09-29T22:00:00.000+00:00	2025-09-30T22:00:00.000+00:00
wid-sec-w-2025-2153	VMware Cloud Foundation, vSphere, Aria Operations und Tools: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2152	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2025-09-29T22:00:00.000+00:00	2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2150	Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-09-29T22:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2149	IBM License Metric Tool: Mehrere Schwachstellen	2025-09-28T22:00:00.000+00:00	2025-09-29T22:00:00.000+00:00
wid-sec-w-2025-2144	binutils: Mehrere Schwachstellen	2025-09-28T22:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-2140	GitLab: Mehrere Schwachstellen	2025-09-25T22:00:00.000+00:00	2025-09-28T22:00:00.000+00:00
wid-sec-w-2025-2134	Red Hat Enterprise Linux (Developer Hub): Schwachstelle ermöglicht Denial of Service	2025-09-25T22:00:00.000+00:00	2026-02-04T23:00:00.000+00:00

ID	Description	Published	Updated
icsa-25-162-10	PTZOptics and Other Pan-Tilt-Zoom Cameras	2025-06-12T06:00:00.000000Z	2025-06-12T06:00:00.000000Z
icsa-25-162-09	AVEVA PI Connector for CygNet	2025-06-12T06:00:00.000000Z	2025-06-12T06:00:00.000000Z
icsa-25-162-08	AVEVA PI Web API	2025-06-12T06:00:00.000000Z	2025-06-12T06:00:00.000000Z
icsa-25-162-07	AVEVA PI Data Archive	2025-06-12T06:00:00.000000Z	2025-06-12T06:00:00.000000Z
icsa-25-168-01	Siemens Mendix Studio Pro	2025-06-12T00:00:00.000000Z	2025-07-08T00:00:00.000000Z
icsma-25-160-01	MicroDicom DICOM Viewer	2025-06-10T06:00:00.000000Z	2025-06-10T06:00:00.000000Z
icsa-25-160-01	SinoTrack GPS Receiver	2025-06-10T05:00:00.000000Z	2025-06-10T05:00:00.000000Z
icsa-25-175-04	Schneider Electric EVLink WallBox (Update A)	2025-06-10T04:00:00.000000Z	2025-07-08T04:00:00.000000Z
icsa-25-175-03	Schneider Electric Modicon Controllers (Update A)	2025-06-10T04:00:00.000000Z	2025-07-08T04:00:00.000000Z
icsa-25-162-06	Siemens Energy Services	2025-06-10T00:00:00.000000Z	2025-06-10T00:00:00.000000Z
icsa-25-162-05	Siemens SIMATIC S7-1500 CPU Family	2025-06-10T00:00:00.000000Z	2026-03-12T06:00:00.000000Z
icsa-25-162-04	Siemens SCALANCE and RUGGEDCOM	2025-06-10T00:00:00.000000Z	2026-01-14T22:05:41.593078Z
icsa-25-162-03	Siemens SCALANCE and RUGGEDCOM	2025-06-10T00:00:00.000000Z	2025-06-10T00:00:00.000000Z
icsa-25-162-02	Siemens RUGGEDCOM APE1808	2025-06-10T00:00:00.000000Z	2026-03-12T06:00:00.000000Z
icsa-25-162-01	Siemens Tecnomatix Plant Simulation	2025-06-10T00:00:00.000000Z	2025-06-10T00:00:00.000000Z
icsa-25-155-01	CyberData 011209 SIP Emergency Intercom	2025-06-05T06:00:00.000000Z	2025-06-05T06:00:00.000000Z
icsa-25-153-03	Mitsubishi Electric MELSEC iQ-F Series	2025-06-03T06:00:00.000000Z	2025-06-03T06:00:00.000000Z
icsa-25-153-01	Schneider Electric Wiser Home Automation	2025-06-03T06:00:00.000000Z	2025-06-03T06:00:00.000000Z
icsma-25-148-01	Santesoft Sante DICOM Viewer Pro	2025-05-29T06:00:00.000000Z	2025-05-29T06:00:00.000000Z
icsa-25-148-04	Instantel Micromate (Update A)	2025-05-29T06:00:00.000000Z	2025-08-07T06:00:00.000000Z
icsa-25-148-03	Consilium Safety CS5000 Fire Panel (Update A)	2025-05-29T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
va-25-147-01	Craft CMS stores user-provided content session files	2025-05-28T20:57:43Z	2025-05-28T20:57:43Z
va-25-148-01	ZKTeco BioTime multiple vulnerabilities	2025-05-28T15:28:55Z	2025-05-28T15:28:55Z
icsa-25-146-01	Johnson Controls iSTAR Configuration Utility (ICU) tool	2025-05-27T06:00:00.000000Z	2025-05-27T06:00:00.000000Z
icsa-25-148-01	Siemens SiPass	2025-05-23T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-142-02	Rockwell Automation FactoryTalk Historian ThingWorx	2025-05-22T06:00:00.000000Z	2025-05-22T06:00:00.000000Z
icsa-25-142-01	Lantronix Device Installer	2025-05-22T06:00:00.000000Z	2025-05-22T06:00:00.000000Z
icsa-25-140-11	Assured Telematics Inc (ATI) Fleet Management System (Update A)	2025-05-20T06:00:00.000000Z	2025-06-10T06:00:00.000000Z
icsa-25-140-10	Vertiv Liebert RDU101 and UNITY	2025-05-20T06:00:00.000000Z	2025-05-20T06:00:00.000000Z
icsa-25-140-09	AutomationDirect MB-Gateway	2025-05-20T06:00:00.000000Z	2025-05-20T06:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-iosxe-utd-cmd-jbl8kvht	Cisco IOS XE Software Unified Threat Defense Command Injection Vulnerability	2024-03-27T16:00:00+00:00	2024-04-02T20:11:04+00:00
cisco-sa-iosxe-priv-esc-seax6nlx	Cisco IOS XE Software Privilege Escalation Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-iosxe-ospf-dos-dr9sfrxp	Cisco IOS XE Software OSPFv2 Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-ios-xe-sda-edge-dos-qzwuwxwg	Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-ios-dos-hq4d3tzg	Cisco IOS Software for Catalyst 6000 Series Switches Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-04-04T15:31:55+00:00
cisco-sa-ikev1-no2ccfwz	Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-dmi-acl-bypass-xv8fo8vz	Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-dhcp-dos-t3cxpo9z	Cisco IOS XE Software DHCP Snooping with Endpoint Analytics Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-ccc-authz-bypass-5ekchjrb	Cisco Catalyst Center Authorization Bypass Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-aux-333wbz8f	Cisco IOS XE Software Auxiliary Asynchronous Port Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-ap-secureboot-bypass-zt5vjksd	Cisco Access Point Software Secure Boot Bypass Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-ap-dos-h9tggx6w	Cisco Access Point Software Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-airo-ap-dos-ppptcvw	Cisco Aironet Access Point Software Resource Exhaustion Denial of Service Vulnerability	2024-03-27T16:00:00+00:00	2024-03-27T16:00:00+00:00
cisco-sa-xrl2vpn-jesru3fc	Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-snmp-uhv6zdef	Cisco IOS XR Software SNMP Management Plane Protection ACL Bypass Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-iosxr-ssh-privesc-ewdmkew3	Cisco IOS XR Software SSH Privilege Escalation Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-iosxr-scp-dos-kb6suuhw	Cisco IOS XR Software Authenticated CLI Secure Copy Protocol and SFTP Denial of Service Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-iosxr-pppma-jkwfgnew	Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers PPPoE Denial of Service Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-iosxr-dhcp-dos-3tgpkrdm	Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-iosxr-acl-bypass-rzu5nl3e	Cisco IOS XR Software MPLS and Pseudowire Interfaces Access Control List Bypass Vulnerabilities	2024-03-13T16:00:00+00:00	2024-03-13T16:00:00+00:00
cisco-sa-secure-privesc-syxqo6ds	Cisco Secure Client for Linux with ISE Posture Module Privilege Escalation Vulnerability	2024-03-06T16:00:00+00:00	2024-03-06T16:00:00+00:00
cisco-sa-secure-client-crlf-w43v4g7	Cisco Secure Client Carriage Return Line Feed Injection Vulnerability	2024-03-06T16:00:00+00:00	2024-03-12T14:17:07+00:00
cisco-sa-sb-wap-multi-85g83crb	Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection and Buffer Overflow Vulnerabilities	2024-03-06T16:00:00+00:00	2024-03-06T16:00:00+00:00
cisco-sa-duo-win-bypass-pn42kkbm	Cisco Duo Authentication for Windows Logon and RDP Authentication Bypass Vulnerability	2024-03-06T16:00:00+00:00	2024-03-06T16:00:00+00:00
cisco-sa-duo-infodisc-rlceqm6t	Cisco Duo Authentication for Windows Logon and RDP Information Disclosure Vulnerability	2024-03-06T16:00:00+00:00	2024-03-08T18:23:38+00:00
cisco-sa-appd-xss-3jwqsmnt	Cisco AppDynamics Controller Cross-Site Scripting Vulnerability	2024-03-06T16:00:00+00:00	2024-03-06T16:00:00+00:00
cisco-sa-appd-traversal-m7n8mzpf	Cisco AppDynamics Controller Path Traversal Vulnerability	2024-03-06T16:00:00+00:00	2024-03-06T16:00:00+00:00
cisco-sa-ucsfi-imm-syn-p6kztdqc	Cisco UCS 6400 and 6500 Series Fabric Interconnects Intersight Managed Mode Denial of Service Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-nxos-po-acl-tkyepgvl	Cisco Nexus 3000 and 9000 Series Switches Port Channel ACL Programming Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-nxos-lldp-dos-z7pnctgt	Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2026-20809	Windows Kernel Memory Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20808	Windows File Explorer Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20805	Desktop Window Manager Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-27T08:00:00.000Z
msrc_cve-2026-20804	Windows Hello Tampering Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20803	Microsoft SQL Server Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-0386	Windows Deployment Services Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-24821	A heap-based buffer over-read that might affect a system that compiles untrusted Lua code in turanszkij/WickedEngine.	2026-01-02T00:00:00.000Z	2026-03-06T01:38:03.000Z
msrc_cve-2026-23490	pyasn1 has a DoS vulnerability in decoder	2026-01-02T00:00:00.000Z	2026-02-18T15:03:58.000Z
msrc_cve-2026-23000	net/mlx5e: Fix crash on profile change rollback failure	2026-01-02T00:00:00.000Z	2026-03-03T14:55:28.000Z
msrc_cve-2026-22999	net/sched: sch_qfq: do not free existing class in qfq_change_class()	2026-01-02T00:00:00.000Z	2026-03-03T14:37:23.000Z
msrc_cve-2026-22998	nvme-tcp: fix NULL pointer dereferences in nvmet_tcp_build_pdu_iovec	2026-01-02T00:00:00.000Z	2026-03-03T14:36:56.000Z
msrc_cve-2026-22997	net: can: j1939: j1939_xtp_rx_rts_session_active(): deactivate session upon receiving the second rts	2026-01-02T00:00:00.000Z	2026-03-03T14:36:29.000Z
msrc_cve-2026-22996	net/mlx5e: Don't store mlx5e_priv in mlx5e_dev devlink priv	2026-01-02T00:00:00.000Z	2026-03-03T14:36:04.000Z
msrc_cve-2026-22992	libceph: return the handler error from mon_handle_auth_done()	2026-01-02T00:00:00.000Z	2026-03-03T15:05:07.000Z
msrc_cve-2026-22991	libceph: make free_choose_arg_map() resilient to partial allocation	2026-01-02T00:00:00.000Z	2026-03-03T15:05:01.000Z
msrc_cve-2026-22990	libceph: replace overzealous BUG_ON in osdmap_apply_incremental()	2026-01-02T00:00:00.000Z	2026-03-03T15:04:54.000Z
msrc_cve-2026-22984	libceph: prevent potential out-of-bounds reads in handle_auth_done()	2026-01-02T00:00:00.000Z	2026-03-03T15:04:48.000Z
msrc_cve-2026-22982	net: mscc: ocelot: Fix crash when adding interface under a lag	2026-01-02T00:00:00.000Z	2026-03-03T15:04:40.000Z
msrc_cve-2026-22980	nfsd: provide locking for v4_end_grace	2026-01-02T00:00:00.000Z	2026-03-03T15:04:31.000Z
msrc_cve-2026-22979	net: fix memory leak in skb_segment_list for GRO packets	2026-01-02T00:00:00.000Z	2026-03-03T15:04:19.000Z
msrc_cve-2026-22978	wifi: avoid kernel-infoleak from struct iw_point	2026-01-02T00:00:00.000Z	2026-03-03T15:04:06.000Z
msrc_cve-2026-22977	net: sock: fix hardened usercopy panic in sock_recv_errqueue	2026-01-02T00:00:00.000Z	2026-03-03T15:03:44.000Z
msrc_cve-2026-22976	net/sched: sch_qfq: Fix NULL deref when deactivating inactive aggregate in qfq_reset	2026-01-02T00:00:00.000Z	2026-03-03T15:03:23.000Z
msrc_cve-2026-22801	LIBPNG has an integer truncation causing heap buffer over-read in png_image_write_*	2026-01-02T00:00:00.000Z	2026-02-18T14:10:26.000Z
msrc_cve-2026-22702	virtualenv Has TOCTOU Vulnerabilities in Directory Creation	2026-01-02T00:00:00.000Z	2026-02-21T03:51:39.000Z
msrc_cve-2026-22701	filelock Time-of-Check-Time-of-Use (TOCTOU) Symlink Vulnerability in SoftFileLock	2026-01-02T00:00:00.000Z	2026-03-07T01:01:21.000Z
msrc_cve-2026-22695	LIBPNG has a heap buffer over-read in png_image_read_direct_scaled (regression from CVE-2025-65018 fix)	2026-01-02T00:00:00.000Z	2026-01-21T14:36:38.000Z
msrc_cve-2026-22693	Null Pointer Dereference in SubtableUnicodesCache::create leading to DoS	2026-01-02T00:00:00.000Z	2026-01-20T14:47:26.000Z
msrc_cve-2026-22185	OpenLDAP <= 2.6.10 LMDB mdb_load Heap Buffer Underflow in readline()	2026-01-02T00:00:00.000Z	2026-01-09T01:08:20.000Z
msrc_cve-2026-22184	zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname()	2026-01-02T00:00:00.000Z	2026-01-12T14:37:58.000Z

ID	Description	Published	Updated
ncsc-2025-0113	Kwetsbaarheid verholpen in FortiSwitch	2025-04-09T06:49:51.895137Z	2025-04-09T06:49:51.895137Z
ncsc-2025-0112	Kwetsbaarheden verholpen in Microsoft Windows	2025-04-08T18:57:53.660384Z	2025-04-08T18:57:53.660384Z
ncsc-2025-0111	Kwetsbaarheid verholpen in Microsoft Dynamics	2025-04-08T18:56:16.386532Z	2025-04-08T18:56:16.386532Z
ncsc-2025-0110	Kwetsbaarheden verholpen in Microsoft Developer Tools	2025-04-08T18:54:30.631706Z	2025-04-08T18:54:30.631706Z
ncsc-2025-0109	Kwetsbaarheden verholpen in Microsoft Azure	2025-04-08T18:53:20.624247Z	2025-04-08T18:53:20.624247Z
ncsc-2025-0108	Kwetsbaarheid verholpen in Microsoft System Center	2025-04-08T18:52:22.999321Z	2025-04-08T18:52:22.999321Z
ncsc-2025-0107	Kwetsbaarheden verholpen in Microsoft Office	2025-04-08T18:50:53.931519Z	2025-04-08T18:50:53.931519Z
ncsc-2025-0106	Kwetsbaarheden verholpen in Siemens producten	2025-04-08T13:57:11.959816Z	2025-04-08T13:57:11.959816Z
ncsc-2025-0105	Kwetsbaarheid verholpen in Ivanti Connect Secure, Policy Secure en ZTA Gateways	2025-04-03T14:19:37.560619Z	2025-04-03T14:19:37.560619Z
ncsc-2025-0104	Kwetsbaarheid verholpen in Cisco Enterprise Chat and Email	2025-04-03T08:04:22.928655Z	2025-04-03T08:04:22.928655Z
ncsc-2025-0103	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2025-04-01T08:42:27.059536Z	2025-04-01T08:42:27.059536Z
ncsc-2025-0102	Kwetsbaarheden verholpen in Apple macOS	2025-04-01T08:41:09.934597Z	2025-04-01T08:41:09.934597Z
ncsc-2025-0101	Kwetsbaarheid verholpen in CrushFTP	2025-04-01T07:47:50.425419Z	2025-04-07T14:03:59.372671Z
ncsc-2025-0100	Kwetsbaarheden verholpen in GitLab EE/CE	2025-03-27T14:49:34.316050Z	2025-03-27T14:49:34.316050Z
ncsc-2025-0099	Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform	2025-03-27T09:18:30.331072Z	2025-03-27T09:18:30.331072Z
ncsc-2025-0098	Kwetsbaarheid verholpen in Google Chrome	2025-03-26T12:45:59.434386Z	2025-03-26T12:45:59.434386Z
ncsc-2025-0097	Kwetsbaarheid verholpen in NetApp SnapCenter	2025-03-25T08:41:39.996819Z	2025-03-25T08:41:39.996819Z
ncsc-2025-0096	Kwetsbaarheid verholpen in Next.js	2025-03-25T08:38:53.524904Z	2025-03-25T08:38:53.524904Z
ncsc-2025-0095	Kwetsbaarheden verholpen in Kubernetes Ingress NGINX Controller	2025-03-25T07:13:08.093318Z	2025-03-27T14:41:30.387171Z
ncsc-2025-0094	Kwetsbaarheid verholpen in Veeam Backup & Replication	2025-03-20T14:10:16.806777Z	2025-03-20T14:10:16.806777Z
ncsc-2025-0093	Kwetsbaarheid verholpen in IBM InfoSphere Information Server	2025-03-20T13:17:45.897480Z	2025-03-20T13:17:45.897480Z
ncsc-2025-0092	Kwetsbaarheden verholpen in IBM AIX	2025-03-20T13:13:43.163579Z	2025-03-20T13:13:43.163579Z
ncsc-2025-0091	Kwetsbaarheid verholpen in Synology DiskStation Manager	2025-03-19T15:03:23.414509Z	2025-03-19T15:03:23.414509Z
ncsc-2025-0090	Kwetsbaarheid verholpen in Synology Replication Service en Synology Unified Controller	2025-03-19T15:02:46.122619Z	2025-03-19T15:02:46.122619Z
ncsc-2025-0089	Kwetsbaarheid verholpen in Apache Tomcat	2025-03-17T18:36:12.978021Z	2025-03-17T18:36:12.978021Z
ncsc-2025-0088	Kwetsbaarheden verholpen in Autodesk AutoCAD	2025-03-14T10:10:13.263645Z	2025-03-14T10:10:13.263645Z
ncsc-2025-0087	Kwetsbaarheden verholpen in GitLab	2025-03-14T09:14:59.775984Z	2025-03-14T09:14:59.775984Z
ncsc-2025-0086	Kwetsbaarheid verholpen in Apple iOS, iPadOS, macOS Sequoia, visionOS en Safari	2025-03-12T13:48:59.223945Z	2025-03-12T13:48:59.223945Z
ncsc-2025-0085	Kwetsbaarheid verholpen in Ivanti Secure Access Client	2025-03-12T11:00:45.614633Z	2025-03-12T11:00:45.614633Z
ncsc-2025-0084	Kwetsbaarheden verholpen in Adobe Acrobat Reader	2025-03-12T10:56:00.883114Z	2025-03-12T10:56:00.883114Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2026:10107-1	freerdp-3.21.0-1.1 on GA media	2026-01-28T00:00:00Z	2026-01-28T00:00:00Z
opensuse-su-2026:10106-1	assertj-core-3.27.7-1.1 on GA media	2026-01-28T00:00:00Z	2026-01-28T00:00:00Z
opensuse-su-2026:20117-1	Security update for cockpit-subscriptions	2026-01-27T20:37:55Z	2026-01-27T20:37:55Z
opensuse-ru-2026:20161-1	Recommended update for hauler	2026-01-27T17:25:17Z	2026-01-27T17:25:17Z
opensuse-su-2026:10105-1	teleport-17.7.14-1.1 on GA media	2026-01-27T00:00:00Z	2026-01-27T00:00:00Z
opensuse-su-2026:10104-1	python311-sigstore-4.2.0-1.1 on GA media	2026-01-27T00:00:00Z	2026-01-27T00:00:00Z
opensuse-su-2026:10103-1	python311-orjson-3.11.5-1.1 on GA media	2026-01-27T00:00:00Z	2026-01-27T00:00:00Z
opensuse-su-2026:10102-1	libopencc1_2-1.2.0-1.1 on GA media	2026-01-27T00:00:00Z	2026-01-27T00:00:00Z
opensuse-su-2026:10101-1	coredns-1.14.1-1.1 on GA media	2026-01-27T00:00:00Z	2026-01-27T00:00:00Z
opensuse-su-2026:20113-1	Security update for php8	2026-01-26T12:37:41Z	2026-01-26T12:37:41Z
opensuse-su-2026:20112-1	Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 16)	2026-01-26T11:03:44Z	2026-01-26T11:03:44Z
opensuse-su-2026:20110-1	Security update for avahi	2026-01-26T10:20:39Z	2026-01-26T10:20:39Z
opensuse-su-2026:20108-1	Security update for the Linux Kernel RT (Live Patch 2 for SUSE Linux Enterprise 16)	2026-01-26T09:12:02Z	2026-01-26T09:12:02Z
opensuse-su-2026:10100-1	zot-registry-2.1.14-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10099-1	zli-2.1.14-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10098-1	tlp-1.8.0-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10097-1	qemu-10.2.0-2.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10096-1	python311-urllib3_1-1.26.20-5.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10095-1	libopenjp2-7-2.5.4-2.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10094-1	libmatio-devel-1.5.30-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10093-1	java-21-openjdk-21.0.10.0-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10092-1	java-17-openjdk-17.0.18.0-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10091-1	java-11-openjdk-11.0.30.0-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10090-1	google-osconfig-agent-20260119.00-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10089-1	gio-branding-upstream-2.86.3-2.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:10088-1	cups-2.4.16-1.1 on GA media	2026-01-26T00:00:00Z	2026-01-26T00:00:00Z
opensuse-su-2026:20099-1	Security update for coredns	2026-01-24T09:09:32Z	2026-01-24T09:09:32Z
opensuse-su-2026:20103-1	Security update for chromium	2026-01-24T01:00:21Z	2026-01-24T01:00:21Z
opensuse-su-2026:20097-1	Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 16)	2026-01-23T16:43:58Z	2026-01-23T16:43:58Z
opensuse-su-2026:20095-1	Security update for python-jaraco.context	2026-01-23T10:43:43Z	2026-01-23T10:43:43Z

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:3187	Red Hat Security Advisory: grafana-pcp security update	2026-02-24T11:39:51+00:00	2026-03-18T11:10:29+00:00
rhsa-2026:3188	Red Hat Security Advisory: grafana security update	2026-02-24T11:39:36+00:00	2026-03-18T11:10:30+00:00
rhsa-2026:2984	Red Hat Security Advisory: OpenShift Container Platform 4.21.3 bug fix and security update	2026-02-24T11:26:58+00:00	2026-03-17T14:17:44+00:00
rhsa-2026:3165	Red Hat Security Advisory: qemu-kvm security update	2026-02-24T10:13:28+00:00	2026-03-18T03:14:59+00:00
rhsa-2026:3164	Red Hat Security Advisory: edk2 security update	2026-02-24T10:08:21+00:00	2026-03-18T03:09:01+00:00
rhsa-2026:3184	Red Hat Security Advisory: RHTAS - Tech Preview Release Of the Policy Controller Operator	2026-02-24T09:58:16+00:00	2026-03-18T11:10:29+00:00
rhsa-2026:3124	Red Hat Security Advisory: kernel security update	2026-02-24T00:53:29+00:00	2026-03-18T03:18:31+00:00
rhsa-2026:3122	Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 director Operator container images	2026-02-23T21:51:31+00:00	2026-03-18T06:58:26+00:00
rhsa-2026:2994	Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP3 security update	2026-02-23T19:20:23+00:00	2026-03-18T03:09:00+00:00
rhsa-2026:2995	Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP3 security update	2026-02-23T19:19:20+00:00	2026-03-18T03:09:00+00:00
rhsa-2026:3110	Red Hat Security Advisory: kernel-rt security update	2026-02-23T17:45:43+00:00	2026-03-18T03:18:37+00:00
rhsa-2026:3111	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.2.2	2026-02-23T17:39:45+00:00	2026-03-18T11:10:29+00:00
rhsa-2026:3109	Red Hat Security Advisory: Kiali 2.17.4 for Red Hat OpenShift Service Mesh 3.2	2026-02-23T17:26:20+00:00	2026-03-12T12:42:32+00:00
rhsa-2026:3108	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.5	2026-02-23T17:24:11+00:00	2026-03-18T11:10:28+00:00
rhsa-2026:3107	Red Hat Security Advisory: Kiali 1.73.27 for Red Hat OpenShift Service Mesh 2.6	2026-02-23T17:16:07+00:00	2026-03-18T11:10:31+00:00
rhsa-2026:3106	Red Hat Security Advisory: Kiali 2.4.13 for Red Hat OpenShift Service Mesh 3.0	2026-02-23T17:14:27+00:00	2026-03-12T12:42:30+00:00
rhsa-2026:3105	Red Hat Security Advisory: Kiali 2.11.7 for Red Hat OpenShift Service Mesh 3.1	2026-02-23T17:14:20+00:00	2026-03-12T12:42:30+00:00
rhsa-2026:3104	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.8	2026-02-23T17:13:34+00:00	2026-03-18T11:10:29+00:00
rhsa-2026:3102	Red Hat Security Advisory: AMQ Clients 2026.Q1	2026-02-23T16:31:20+00:00	2026-03-18T03:18:47+00:00
rhsa-2026:3095	Red Hat Security Advisory: protobuf security update	2026-02-23T16:22:42+00:00	2026-03-18T03:17:18+00:00
rhsa-2026:3099	Red Hat Security Advisory: OpenShift Container Platform 4.12.82 CNF vRAN extras topology aware lifecycle manager update	2026-02-23T16:14:26+00:00	2026-03-17T13:51:32+00:00
rhsa-2026:3097	Red Hat Security Advisory: protobuf security update	2026-02-23T16:02:27+00:00	2026-03-18T03:18:39+00:00
rhsa-2026:3094	Red Hat Security Advisory: protobuf security update	2026-02-23T15:47:47+00:00	2026-03-18T03:17:17+00:00
rhsa-2026:3092	Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update	2026-02-23T15:34:28+00:00	2026-03-18T11:10:28+00:00
rhsa-2026:3088	Red Hat Security Advisory: kernel security update	2026-02-23T15:20:37+00:00	2026-03-18T03:18:21+00:00
rhsa-2026:3089	Red Hat Security Advisory: Red Hat Developer Hub 1.8.4 release.	2026-02-23T14:46:08+00:00	2026-03-18T11:10:28+00:00
rhsa-2026:3087	Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release	2026-02-23T13:35:49+00:00	2026-03-18T11:10:27+00:00
rhsa-2026:3083	Red Hat Security Advisory: kernel security update	2026-02-23T13:25:32+00:00	2026-03-18T03:18:38+00:00
rhsa-2026:3077	Red Hat Security Advisory: qemu-kvm security update	2026-02-23T11:47:18+00:00	2026-03-18T03:11:10+00:00
rhsa-2026:3078	Red Hat Security Advisory: grafana security update	2026-02-23T11:43:01+00:00	2026-03-18T03:18:49+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-482956	SSA-482956: Information Disclosure Vulnerability in SIMOTION before V5.5	2023-06-13T00:00:00Z	2023-06-13T00:00:00Z
ssa-042050	SSA-042050: Know-How Protection Mechanism Failure in TIA Portal	2023-06-13T00:00:00Z	2024-12-10T00:00:00Z
ssa-932528	SSA-932528: Multiple File Parsing Vulnerabilities in Solid Edge	2023-05-09T00:00:00Z	2023-08-08T00:00:00Z
ssa-892048	SSA-892048: Third-Party Component Vulnerabilities in SINEC NMS before V1.0.3.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-789345	SSA-789345: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-555292	SSA-555292: Security Vulnerabilities Fixed in SIMATIC Cloud Connect 7 V2.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-516174	SSA-516174: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D	2023-05-09T00:00:00Z	2023-10-10T00:00:00Z
ssa-325383	SSA-325383: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1	2023-05-09T00:00:00Z	2023-05-09T00:00:00Z
ssa-813746	SSA-813746: BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families	2023-04-11T00:00:00Z	2024-08-13T00:00:00Z
ssa-699404	SSA-699404: Observable Response Discrepancy in Mendix Forgot Password Module	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-691715	SSA-691715: Vulnerability in OPC Foundation Local Discovery Server Affecting Siemens Products	2023-04-11T00:00:00Z	2025-09-09T00:00:00Z
ssa-642810	SSA-642810: JT File Parsing Vulnerability in JT Open and JT Utilities	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-632164	SSA-632164: External Entity Injection Vulnerability in Polarion ALM	2023-04-11T00:00:00Z	2023-05-09T00:00:00Z
ssa-629917	SSA-629917: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-572164	SSA-572164: Luxion KeyShot Vulnerability in Solid Edge	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-566905	SSA-566905: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products	2023-04-11T00:00:00Z	2024-09-10T00:00:00Z
ssa-558014	SSA-558014: Third-Party Component Vulnerabilities in SCALANCE XCM332 before V2.2	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-511182	SSA-511182: Use of Static TLS Certificate Known Hard Coded Private Keys in Adaptec Maxview Application	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-479249	SSA-479249: Weak Encryption Vulnerability in SCALANCE X-200IRT Devices	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-472454	SSA-472454: Command Injection Vulnerability in CPCI85 Firmware of SICAM A8000 Devices	2023-04-11T00:00:00Z	2023-04-11T00:00:00Z
ssa-322980	SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices	2023-04-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-116924	SSA-116924: Path Traversal Vulnerability in TIA Portal	2023-04-11T00:00:00Z	2024-08-13T00:00:00Z
ssa-851884	SSA-851884: Authentication Bypass Vulnerability in Mendix SAML Module	2023-03-14T00:00:00Z	2023-08-08T00:00:00Z
ssa-726834	SSA-726834: Denial of Service Vulnerability in the RADIUS Client of SIPROTEC 5 Devices	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-565386	SSA-565386: Third-Party Component Vulnerabilities in SCALANCE W-700 IEEE 802.11ax devices before V2.0	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-419740	SSA-419740: Multiple Third-Party Component Vulnerabilities in RUGGEDCOM and SCALANCE Products before V7.2	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-320629	SSA-320629: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-260625	SSA-260625: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2	2023-03-14T00:00:00Z	2023-03-14T00:00:00Z
ssa-203374	SSA-203374: Multiple OpenSSL Vulnerabilities in SCALANCE W1750D Devices	2023-03-14T00:00:00Z	2024-04-09T00:00:00Z
ssa-953464	SSA-953464: Multiple Vulnerabilites in Siemens Brownfield Connectivity - Client before V2.15	2023-02-14T00:00:00Z	2023-02-14T00:00:00Z

ID	Description	Published	Updated
suse-su-2026:0506-1	Security update for cargo-auditable	2026-02-13T14:32:17Z	2026-02-13T14:32:17Z
suse-su-2026:0505-1	Security update for cargo-auditable	2026-02-13T14:31:50Z	2026-02-13T14:31:50Z
suse-su-2026:0504-1	Security update for java-1_8_0-openjdk	2026-02-13T14:24:00Z	2026-02-13T14:24:00Z
suse-su-2026:0503-1	Security update for ImageMagick	2026-02-13T14:23:00Z	2026-02-13T14:23:00Z
suse-su-2026:20429-1	Security update for go1.24	2026-02-13T11:58:52Z	2026-02-13T11:58:52Z
suse-su-2026:0499-1	Security update for glibc-livepatches	2026-02-13T11:42:17Z	2026-02-13T11:42:17Z
suse-su-2026:0498-1	Security update for openssl1	2026-02-13T10:56:54Z	2026-02-13T10:56:54Z
suse-su-2026:0497-1	Security update for libsoup2	2026-02-13T10:56:05Z	2026-02-13T10:56:05Z
suse-su-2026:0496-1	Security update for the Linux Kernel	2026-02-13T10:52:18Z	2026-02-13T10:52:18Z
suse-su-2026:0495-1	Security update for the Linux Kernel	2026-02-13T10:52:00Z	2026-02-13T10:52:00Z
suse-su-2026:20428-1	Security update for go1.25	2026-02-13T10:08:20Z	2026-02-13T10:08:20Z
suse-su-2026:0494-1	Security update for curl	2026-02-13T09:59:28Z	2026-02-13T09:59:28Z
suse-su-2026:0491-1	Security update for the Linux Kernel RT (Live Patch 4 for SUSE Linux Enterprise 15 SP7)	2026-02-13T06:04:19Z	2026-02-13T06:04:19Z
suse-su-2026:0490-1	Security update for the Linux Kernel RT (Live Patch 3 for SUSE Linux Enterprise 15 SP7)	2026-02-13T06:04:16Z	2026-02-13T06:04:16Z
suse-su-2026:0489-1	Security update for the Linux Kernel RT (Live Patch 2 for SUSE Linux Enterprise 15 SP7)	2026-02-13T06:04:12Z	2026-02-13T06:04:12Z
suse-su-2026:0487-1	Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 15 SP7)	2026-02-13T06:04:09Z	2026-02-13T06:04:09Z
suse-su-2026:0484-1	Security update for munge	2026-02-12T18:22:45Z	2026-02-12T18:22:45Z
suse-su-2026:0483-1	Security update for zabbix	2026-02-12T16:34:19Z	2026-02-12T16:34:19Z
suse-su-2026:0482-1	Security update for libsodium	2026-02-12T16:04:29Z	2026-02-12T16:04:29Z
suse-su-2026:0481-1	Security update for openCryptoki	2026-02-12T16:04:14Z	2026-02-12T16:04:14Z
suse-su-2026:0480-1	Security update for helm	2026-02-12T15:35:07Z	2026-02-12T15:35:07Z
suse-su-2026:0479-1	Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container, virt-synchronization-controller-container	2026-02-12T15:34:08Z	2026-02-12T15:34:08Z
suse-su-2026:20426-1	Security update for rust1.93	2026-02-12T15:15:49Z	2026-02-12T15:15:49Z
suse-su-2026:20349-1	Security update for openssl-3	2026-02-12T14:47:03Z	2026-02-12T14:47:03Z
suse-su-2026:20347-1	Security update for curl	2026-02-12T14:05:28Z	2026-02-12T14:05:28Z
suse-su-2026:20425-1	Security update for python-aiohttp, python-Brotli	2026-02-12T13:59:27Z	2026-02-12T13:59:27Z
suse-su-2026:20346-1	Security update for util-linux	2026-02-12T13:57:47Z	2026-02-12T13:57:47Z
suse-su-2026:0477-1	Security update for xrdp	2026-02-12T11:45:18Z	2026-02-12T11:45:18Z
suse-su-2026:0476-1	Security update for python-azure-core	2026-02-12T11:44:24Z	2026-02-12T11:44:24Z
suse-su-2026:0475-1	Security update for the Linux Kernel	2026-02-12T11:32:54Z	2026-02-12T11:32:54Z

ID	Description	Published	Updated
alsa-2025:21220	Important: podman security update	2025-11-13T00:00:00Z	2025-11-25T10:45:01Z
alsa-2025:21142	Important: python-kdcproxy security update	2025-11-12T00:00:00Z	2025-11-24T12:51:27Z
alsa-2025:21140	Important: idm:DL1 security update	2025-11-12T00:00:00Z	2025-11-20T09:13:27Z
alsa-2025:21139	Important: python-kdcproxy security update	2025-11-12T00:00:00Z	2025-11-19T09:41:31Z
alsa-2025:21111	Important: bind9.18 security update	2025-11-12T00:00:00Z	2025-12-01T08:06:30Z
alsa-2025:21110	Important: bind security update	2025-11-12T00:00:00Z	2025-11-19T09:39:10Z
alsa-2025:21038	Important: kea security update	2025-11-11T00:00:00Z	2025-12-05T08:28:57Z
alsa-2025:21036	Important: pcs security update	2025-11-11T00:00:00Z	2025-12-05T08:31:28Z
alsa-2025:21035	Moderate: xorg-x11-server-Xwayland security update	2025-11-11T00:00:00Z	2025-11-24T09:01:21Z
alsa-2025:21034	Important: bind security update	2025-11-11T00:00:00Z	2025-11-24T09:00:19Z
alsa-2025:21032	Important: libsoup3 security update	2025-11-11T00:00:00Z	2025-11-24T08:58:48Z
alsa-2025:21030	Important: expat security update	2025-11-11T00:00:00Z	2025-11-24T08:57:33Z
alsa-2025:21020	Important: sssd security update	2025-11-11T00:00:00Z	2026-01-14T12:41:29Z
alsa-2025:21015	Moderate: vim security update	2025-11-11T00:00:00Z	2025-11-24T08:56:33Z
alsa-2025:21013	Moderate: libssh security update	2025-11-11T00:00:00Z	2025-11-24T08:54:57Z
alsa-2025:21002	Important: squid security update	2025-11-11T00:00:00Z	2025-11-24T08:53:45Z
alsa-2025:20998	Important: libtiff security update	2025-11-11T00:00:00Z	2025-11-24T08:51:54Z
alsa-2025:20994	Important: ipa security update	2025-11-11T00:00:00Z	2025-12-05T09:05:25Z
alsa-2025:20983	Important: podman security update	2025-11-11T00:00:00Z	2025-11-25T10:54:40Z
alsa-2025:20963	Moderate: qt5-qt3d security update	2025-11-11T00:00:00Z	2025-11-19T09:37:23Z
alsa-2025:20962	Important: pcs security update	2025-11-11T00:00:00Z	2025-12-01T08:09:09Z
alsa-2025:20961	Moderate: xorg-x11-server security update	2025-11-11T00:00:00Z	2025-11-19T09:36:21Z
alsa-2025:20960	Moderate: xorg-x11-server-Xwayland security update	2025-11-11T00:00:00Z	2025-11-19T09:34:47Z
alsa-2025:20959	Important: libsoup security update	2025-11-11T00:00:00Z	2025-11-19T09:32:27Z
alsa-2025:20958	Important: tigervnc security update	2025-11-11T00:00:00Z	2025-12-01T08:10:34Z
alsa-2025:20957	Important: runc security update	2025-11-11T00:00:00Z	2025-11-19T09:31:22Z
alsa-2025:20956	Important: libtiff security update	2025-11-11T00:00:00Z	2025-11-19T09:30:24Z
alsa-2025:20955	Important: redis:7 security update	2025-11-11T00:00:00Z	2025-11-19T09:42:38Z
alsa-2025:20954	Important: sssd security update	2025-11-11T00:00:00Z	2025-12-01T08:13:09Z
alsa-2025:20945	Moderate: vim security update	2025-11-11T00:00:00Z	2025-11-19T09:26:44Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2024-947	Heap-buffer-overflow in pcpp::SomeIpSdEntry::SomeIpSdEntry	2024-08-16T00:13:30.824621Z	2025-04-03T14:42:12.138019Z
osv-2024-939	Security exception in org.apache.poi.util.LZWDecompresser.decompress	2024-08-16T00:13:05.088720Z	2024-08-16T00:13:05.089105Z
osv-2024-925	Index-out-of-bounds in derive_collocated_motion_vectors	2024-08-16T00:11:02.964872Z	2024-08-16T00:11:02.965320Z
osv-2024-919	Heap-buffer-overflow in validate_relpath	2024-08-16T00:09:34.461792Z	2025-03-06T14:20:56.754046Z
osv-2024-914	UNKNOWN READ in boost::re_detail_500::basic_regex_formatter<std::__1::ostream_iterator<char, cha	2024-08-16T00:08:20.277708Z	2026-03-11T14:30:35.738187Z
osv-2024-883	Security exception in com.puppycrawl.tools.checkstyle.JavaAstVisitor.getInnerBopAst	2024-08-16T00:06:29.139503Z	2024-08-16T00:06:29.139893Z
osv-2024-879	Security exception in java.base/java.util.Arrays.copyOf	2024-08-16T00:06:11.887593Z	2024-08-16T00:06:11.888006Z
osv-2024-867	Use-of-uninitialized-value in std::__1::ostreambuf_iterator<char, std::__1::char_traits<char>> std::__1::__pad	2024-08-16T00:05:38.614485Z	2025-03-19T14:29:11.494602Z
osv-2024-861	UNKNOWN READ in chunk_free_object	2024-08-16T00:05:25.024909Z	2024-08-16T00:05:25.025249Z
osv-2024-859	Heap-double-free in libssh2_default_free	2024-08-16T00:05:16.221580Z	2024-08-16T00:05:16.221993Z
osv-2024-856	Use-of-uninitialized-value in cups_fill	2024-08-16T00:05:10.919440Z	2024-08-16T00:05:10.919721Z
osv-2024-853	UNKNOWN READ in chunk_free_object	2024-08-16T00:04:58.897243Z	2025-01-10T05:30:16.360095Z
osv-2024-852	UNKNOWN READ in jvp_object_free	2024-08-16T00:04:43.641868Z	2024-08-16T00:04:43.642269Z
osv-2024-847	Null-dereference READ in _libssh2_packet_add	2024-08-16T00:04:07.189033Z	2025-02-01T14:27:03.602163Z
osv-2024-838	Bad-cast to RDKit::AtomRDKit::ROMol::initFromOther	2024-08-16T00:03:32.029853Z	2026-03-07T14:34:10.603763Z
osv-2024-833	UNKNOWN READ in chunk_free_object	2024-08-16T00:03:18.896326Z	2024-08-16T00:03:18.896644Z
osv-2024-832	UNKNOWN READ in Pistache::Http::Header::Expect::parseRaw	2024-08-16T00:03:13.834235Z	2025-01-10T05:18:27.558670Z
osv-2024-831	Heap-buffer-overflow in jv_parse	2024-08-16T00:03:12.871175Z	2025-03-07T14:24:40.166702Z
osv-2024-830	UNKNOWN READ in ShadingImage::generateAxialBitmap	2024-08-16T00:03:09.951294Z	2024-08-16T00:03:09.951596Z
osv-2024-828	Use-of-uninitialized-value in packet_parse	2024-08-16T00:03:08.665359Z	2024-08-16T00:03:08.665719Z
osv-2024-817	Use-of-uninitialized-value in pcapint_filter_with_aux_data	2024-08-16T00:02:39.185747Z	2025-01-08T14:19:40.985698Z
osv-2024-816	Use-of-uninitialized-value in pcpp::SSLClientHelloMessage::ClientHelloTLSFingerprint::toString	2024-08-16T00:02:36.618439Z	2025-12-22T14:21:20.173609Z
osv-2024-812	Use-of-uninitialized-value in pcpp::PcapFileWriterDevice::writePacket	2024-08-16T00:02:26.387902Z	2025-12-22T14:21:19.473015Z
osv-2024-805	Use-of-uninitialized-value in pcpp::NflogLayer::parseNextLayer	2024-08-16T00:02:19.436836Z	2024-08-16T00:02:19.437200Z
osv-2024-801	UNKNOWN READ in PointerVector.h	2024-08-16T00:02:10.140304Z	2025-04-16T14:27:34.855775Z
osv-2024-793	Heap-buffer-overflow in H5HL__fl_deserialize	2024-08-16T00:01:45.237305Z	2025-12-31T14:19:11.515108Z
osv-2024-792	Index-out-of-bounds in AAHD::make_ahd_rb_hv	2024-08-16T00:01:41.357755Z	2024-08-16T00:01:41.358066Z
osv-2024-777	Global-buffer-overflow in vte_write_debug	2024-08-16T00:00:55.259153Z	2024-08-16T00:00:55.259408Z
osv-2024-772	UNKNOWN READ in H5SL_search	2024-08-16T00:00:44.075617Z	2025-08-14T14:39:54.764895Z
osv-2024-764	Use-of-uninitialized-value in _cupsStrAlloc	2024-08-16T00:00:28.318434Z	2024-08-16T00:00:28.318983Z

ID	Description	Published	Updated
rustsec-2023-0034	Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)	2023-04-14T12:00:00Z	2023-04-20T19:17:55Z
rustsec-2023-0033	Parsing borsh messages with ZST which are not-copy/clone is unsound	2023-04-12T12:00:00Z	2024-09-23T15:02:17Z
rustsec-2023-0050	multipart is Unmaintained	2023-04-11T12:00:00Z	2023-08-18T20:38:40Z
rustsec-2023-0036	tree_magic is Unmaintained	2023-04-11T12:00:00Z	2023-04-25T03:08:42Z
rustsec-2023-0031	Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers	2023-03-31T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0030	`Versionize::deserialize` implementation for `FamStructWrapper<T>` is lacking bound checks, potentially leading to out of bounds memory accesses	2023-03-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0029	TLS certificate common name validation bypass	2023-03-24T12:00:00Z	2023-11-08T09:57:41Z
rustsec-2023-0027	TLS certificate common name validation bypass	2023-03-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0024	`openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference	2023-03-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0023	`openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read	2023-03-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0022	`openssl` `X509NameBuilder::build` returned object is not thread safe	2023-03-24T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0032	Unsound FFI: Wrong API usage causes write past allocated area	2023-03-22T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0021	NULL pointer dereference in `stb_image`	2023-03-19T12:00:00Z	2023-07-15T15:07:13Z
rustsec-2023-0026	Gitoxide has renamed its crates.	2023-03-14T12:00:00Z	2023-03-24T15:33:49Z
rustsec-2023-0025	Gitoxide has renamed its crates.	2023-03-14T12:00:00Z	2023-03-24T15:33:49Z
rustsec-2023-0020	const-cstr is Unmaintained	2023-03-12T12:00:00Z	2023-03-12T18:38:56Z
rustsec-2023-0017	`maligned::align_first` causes incorrect deallocation	2023-03-04T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0093	Miscompilation of `i8x16.select` with the same inputs on x86\_64	2023-03-03T12:00:00Z	2025-05-02T08:23:27Z
rustsec-2023-0090	Guest-controlled out-of-bounds read/write on x86\_64	2023-03-02T12:00:00Z	2025-05-02T08:23:27Z
rustsec-2023-0015	Ascii allows out-of-bounds array indexing in safe code	2023-02-25T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0018	Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU)	2023-02-24T12:00:00Z	2023-03-04T21:50:30Z
rustsec-2023-0043	ftp is unmaintained, use suppaftp instead	2023-02-20T12:00:00Z	2023-06-14T13:23:36Z
rustsec-2023-0016	Possible out-of-bounds read in release mode	2023-02-20T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0081	safemem is unmaintained	2023-02-14T12:00:00Z	2024-03-04T18:47:07Z
rustsec-2023-0014	Miscompilation in cortex-m-rt 0.7.1 and 0.7.2	2023-02-13T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0013	`NULL` dereference during PKCS7 data verification	2023-02-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0012	`NULL` dereference validating DSA public key	2023-02-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0011	Invalid pointer dereference in `d2i_PKCS7` functions	2023-02-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0010	Double free after calling `PEM_read_bio_ex`	2023-02-07T12:00:00Z	2023-06-13T13:10:24Z
rustsec-2023-0009	Use-after-free following `BIO_new_NDEF`	2023-02-07T12:00:00Z	2023-06-13T13:10:24Z

ID	Description	Published	Updated
bit-jenkins-2025-67639		2025-12-12T11:23:52.749Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67638		2025-12-12T11:23:47.516Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67637		2025-12-12T11:23:42.761Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67636		2025-12-12T11:23:36.617Z	2025-12-12T11:51:34.315Z
bit-jenkins-2025-67635		2025-12-12T11:23:31.286Z	2025-12-12T11:51:34.315Z
bit-mongodb-2025-13644	MongoDB may be susceptible to Invariant Failure due to batched delete	2025-12-12T11:19:13.963Z	2026-01-08T18:07:34.629Z
bit-mongodb-2025-13643	MongoDB Server may allow queries to be terminated by unauthorized users	2025-12-12T11:19:08.903Z	2026-01-08T18:07:34.629Z
bit-mastodon-2025-67500	Mastodon Error Handling Discrepancy Enables Private Status Existence Enumeration	2025-12-11T11:41:16.693Z	2026-01-08T18:07:34.629Z
bit-django-2025-64460	Potential denial-of-service vulnerability in XML serializer text extraction	2025-12-11T11:37:12.400Z	2025-12-11T12:06:55.559Z
bit-python-2025-12084	Quadratic complexity in node ID cache clearing	2025-12-10T17:49:06.243Z	2026-01-27T09:14:53.416Z
bit-libpython-2025-12084	Quadratic complexity in node ID cache clearing	2025-12-10T17:41:46.450Z	2026-01-27T09:14:53.416Z
bit-gitlab-2024-9183	Time-of-check Time-of-use (TOCTOU) Race Condition in GitLab	2025-12-09T12:02:49.276Z	2025-12-11T12:06:55.559Z
bit-apache-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-09T11:38:20.150Z	2025-12-09T12:08:00.393Z
bit-apache-2025-65082	Apache HTTP Server: CGI environment variable override	2025-12-09T11:38:18.501Z	2025-12-09T12:08:00.393Z
bit-apache-2025-59775	Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF	2025-12-09T11:38:16.754Z	2025-12-09T12:08:00.393Z
bit-apache-2025-58098	Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...	2025-12-09T11:38:15.033Z	2025-12-09T12:08:00.393Z
bit-apache-2025-55753	Apache HTTP Server: mod_md (ACME), unintended retry intervals	2025-12-09T11:38:13.178Z	2025-12-09T12:08:00.393Z
bit-pgbouncer-2025-12819	Untrusted search path in auth_query connection in PgBouncer	2025-12-06T11:44:20.875Z	2025-12-28T12:07:40.562Z
bit-mongodb-2025-13507	Time-series operations may cause internal BSON size limit to be exceed	2025-12-06T11:42:49.537Z	2025-12-06T12:06:23.267Z
bit-mongodb-2025-12893	Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server	2025-12-06T11:42:47.994Z	2025-12-06T12:06:23.267Z
bit-mongodb-2025-11979	Use-after-free in the MongoDB server query planner may lead to crash or undefined behavior	2025-12-06T11:42:46.232Z	2025-12-06T12:06:23.267Z
bit-golang-2025-61727	Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509	2025-12-06T11:41:09.464Z	2025-12-06T12:06:23.267Z
bit-envoy-2025-66220	Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte	2025-12-06T11:38:21.122Z	2025-12-09T12:08:00.393Z
bit-envoy-2025-64763	Envoy forwards early CONNECT data in TCP proxy mode	2025-12-06T11:38:19.488Z	2025-12-09T12:08:00.393Z
bit-envoy-2025-64527	Envoy crashes when JWT authentication is configured with the remote JWKS fetching	2025-12-06T11:38:17.923Z	2025-12-09T12:08:00.393Z
bit-python-2025-6075	Quadratic complexity in os.path.expandvars() with user-controlled template	2025-12-05T11:13:34.373Z	2025-12-05T11:40:36.013Z
bit-python-2025-13837	Out-of-memory when loading Plist	2025-12-05T11:13:08.742Z	2026-03-04T14:21:20.421Z
bit-python-2025-13836	Excessive read buffering DoS in http.client	2025-12-05T11:13:05.077Z	2026-01-27T09:14:53.416Z
bit-libpython-2025-6075	Quadratic complexity in os.path.expandvars() with user-controlled template	2025-12-05T11:08:28.184Z	2025-12-05T11:40:36.013Z
bit-libpython-2025-13837	Out-of-memory when loading Plist	2025-12-05T11:07:43.325Z	2026-03-04T14:21:20.421Z

ID	Description	Published	Updated
cleanstart-2026-ju65303	Redis is an open source, in-memory database that persists on disk	2026-01-30T14:18:21.426991Z	2026-01-29T18:58:54Z
cleanstart-2026-nj87139	vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device	2026-01-30T14:17:21.473350Z	2026-01-29T18:58:54Z
cleanstart-2026-yl27116	tar	2026-01-30T14:08:51.064236Z	2026-01-29T18:58:54Z
cleanstart-2026-py85990	tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character (/) as self-closing	2026-01-30T14:07:50.722290Z	2026-01-29T18:58:54Z
cleanstart-2026-ym28538	Prometheus Blackbox Exporter through 0	2026-01-30T14:06:20.601766Z	2026-01-29T18:58:54Z
cleanstart-2026-zl24388	Prometheus Blackbox Exporter through 0	2026-01-30T14:05:50.598465Z	2026-01-29T18:58:54Z
cleanstart-2026-la13761	vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device	2026-01-30T14:05:50.594365Z	2026-01-29T18:58:54Z
cleanstart-2026-xz45798	Within HostnameError	2026-01-30T14:05:20.961893Z	2026-01-29T18:58:54Z
cleanstart-2026-th00404	Within HostnameError	2026-01-30T14:04:20.735662Z	2026-01-29T18:58:54Z
cleanstart-2026-xb70091	Within HostnameError	2026-01-30T14:03:50.560679Z	2026-01-29T18:58:54Z
cleanstart-2026-pd99018	Within HostnameError	2026-01-30T14:02:50.913977Z	2026-01-29T18:58:54Z
cleanstart-2026-kg18353	Within HostnameError	2026-01-30T14:02:50.542288Z	2026-01-29T18:58:54Z
cleanstart-2026-yk82785	Within HostnameError	2026-01-30T14:01:20.108833Z	2026-01-29T18:58:54Z
cleanstart-2026-cd92481	Within HostnameError	2026-01-30T14:01:20.457302Z	2026-01-29T18:58:54Z
cleanstart-2026-sg80587	It was found that the cookie used for CSRF prevention in Keycloak was not unique to each session	2026-01-30T14:00:21.027172Z	2026-01-29T18:58:54Z
cleanstart-2026-gy69323	Moby is an open-source project created by Docker for software containerization	2026-01-30T14:00:20.037168Z	2026-01-29T18:58:54Z
cleanstart-2026-bk59402	Moby is an open-source project created by Docker for software containerization	2026-01-30T14:00:20.262469Z	2026-01-29T18:58:54Z
cleanstart-2026-mj64494	Redis is an open source, in-memory database that persists on disk	2026-01-30T13:59:20.370058Z	2026-01-29T18:58:54Z
cleanstart-2025-yj25356	Security fixes for CVE-2025-61729 applied in versions: 1.40.2-r0	2026-01-16T12:00:45.358320Z	2025-12-06T13:34:11Z
cleanstart-2025-jl63399	Security fixes for CVE-2025-61729 applied in versions: 0.20.2-r1	2026-01-16T12:00:43.312220Z	2025-12-06T13:34:11Z
cleanstart-2025-cn65903	Security fixes for GHSA-6v2p-p543-phr9, GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.5.0-r0, 1.7.0-r0	2026-01-16T12:00:42.667592Z	2025-09-29T13:20:40Z
cleanstart-2025-az51267	Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.0-r0	2026-01-16T12:00:40.997706Z	2025-09-29T13:20:59Z
cleanstart-2025-eu07511	Security fixes for CVE-2025-47912, CVE-2025-58183, CVE-2025-58185, CVE-2025-58186, CVE-2025-58187, CVE-2025-58188, CVE-2025-58189, CVE-2025-61723, CVE-2025-61724, CVE-2025-61725, CVE-2025-61729 applied in versions: 1.7.0-r0, 1.7.1-r0	2026-01-16T11:58:32.440192Z	2025-12-06T13:34:11Z
cleanstart-2025-us16386	Security fixes for GHSA-qxp5-gwg8-xv66, GHSA-vvgc-356p-c3xw applied in versions: 1.7.2-r0	2026-01-16T11:58:18.007779Z	2025-12-23T06:02:25Z
cleanstart-2025-ob44035	Security fixes for CVE-2025-61729, GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 1.16.2-r2	2026-01-16T11:28:43.176297Z	2025-12-13T08:34:16Z

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
CERTA-2013-ALE-004	Vulnérabilité dans Adobe ColdFusion	2013-05-10T00:00:00.000000	2013-05-15T00:00:00.000000
certa-2013-ale-003	Vulnérabilité dans Microsoft Internet Explorer 8	2013-05-06T00:00:00.000000	2013-05-15T00:00:00.000000
CERTA-2013-ALE-003	Vulnérabilité dans Microsoft Internet Explorer 8	2013-05-06T00:00:00.000000	2013-05-15T00:00:00.000000
certa-2013-ale-002	Vulnérabilités dans Adobe Reader et Acrobat	2013-02-14T00:00:00.000000	2013-02-21T00:00:00.000000
CERTA-2013-ALE-002	Vulnérabilités dans Adobe Reader et Acrobat	2013-02-14T00:00:00.000000	2013-02-21T00:00:00.000000
certa-2013-ale-001	Vulnérabilités dans Oracle Java	2013-01-10T00:00:00.000000	2013-01-15T00:00:00.000000
CERTA-2013-ALE-001	Vulnérabilités dans Oracle Java	2013-01-10T00:00:00.000000	2013-01-15T00:00:00.000000
certa-2012-ale-010	Vulnérabilité dans Internet Explorer	2012-12-31T00:00:00.000000	2013-01-15T00:00:00.000000
CERTA-2012-ALE-010	Vulnérabilité dans Internet Explorer	2012-12-31T00:00:00.000000	2013-01-15T00:00:00.000000
certa-2012-ale-009	Vulnérabilité dans les pilotes NVidia	2012-12-26T00:00:00.000000	2013-01-07T00:00:00.000000
CERTA-2012-ALE-009	Vulnérabilité dans les pilotes NVidia	2012-12-26T00:00:00.000000	2013-01-07T00:00:00.000000
certa-2012-ale-008	Vulnérabilité dans certains terminaux Samsung	2012-12-18T00:00:00.000000	2012-12-18T00:00:00.000000
CERTA-2012-ALE-008	Vulnérabilité dans certains terminaux Samsung	2012-12-18T00:00:00.000000	2012-12-18T00:00:00.000000
certa-2012-ale-007	Vulnérabilité dans MySQL	2012-12-06T00:00:00.000000	2013-01-07T00:00:00.000000
CERTA-2012-ALE-007	Vulnérabilité dans MySQL	2012-12-06T00:00:00.000000	2013-01-07T00:00:00.000000
certa-2012-ale-006	Vulnérabilité dans Internet Explorer	2012-09-18T00:00:00.000000	2012-09-21T00:00:00.000000
CERTA-2012-ALE-006	Vulnérabilité dans Internet Explorer	2012-09-18T00:00:00.000000	2012-09-21T00:00:00.000000
certa-2012-ale-005	Vulnérabilité dans Oracle Java	2012-08-27T00:00:00.000000	2012-08-31T00:00:00.000000
CERTA-2012-ALE-005	Vulnérabilité dans Oracle Java	2012-08-27T00:00:00.000000	2012-08-31T00:00:00.000000
certa-2012-ale-004	Vulnérabilité dans Microsoft Exchange et Fast Search Server 2010	2012-07-25T00:00:00.000000	2012-08-16T00:00:00.000000
CERTA-2012-ALE-004	Vulnérabilité dans Microsoft Exchange et Fast Search Server 2010	2012-07-25T00:00:00.000000	2012-08-16T00:00:00.000000
certa-2012-ale-003	Vulnérabilité dans Microsoft XML Core Services	2012-06-14T00:00:00.000000	2012-08-17T00:00:00.000000
CERTA-2012-ALE-003	Vulnérabilité dans Microsoft XML Core Services	2012-06-14T00:00:00.000000	2012-08-17T00:00:00.000000
certa-2012-ale-002	Vulnérabilité dans Windows RDP	2012-03-14T00:00:00.000000	2012-04-13T00:00:00.000000
CERTA-2012-ALE-002	Vulnérabilité dans Windows RDP	2012-03-14T00:00:00.000000	2012-04-13T00:00:00.000000
certa-2012-ale-001	Vulnérabilité dans Cisco IronPort	2012-02-01T00:00:00.000000	2013-02-05T00:00:00.000000
CERTA-2012-ALE-001	Vulnérabilité dans Cisco IronPort	2012-02-01T00:00:00.000000	2013-02-05T00:00:00.000000
certa-2011-ale-008	Vulnérabilité dans Adobe Reader et Acrobat	2011-12-07T00:00:00.000000	2012-01-10T00:00:00.000000
CERTA-2011-ALE-008	Vulnérabilité dans Adobe Reader et Acrobat	2011-12-07T00:00:00.000000	2012-01-10T00:00:00.000000
certa-2011-ale-007	Vulnérabilité dans ftpd et ProFTPD sur FreeBSD	2011-12-02T00:00:00.000000	2011-12-26T00:00:00.000000

ID	Description	Published	Updated
certfr-2026-avi-0044	Multiples vulnérabilités dans Microsoft Windows	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0043	Multiples vulnérabilités dans Microsoft Office	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0042	Multiples vulnérabilités dans les produits HPE Aruba Networking	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0041	Multiples vulnérabilités dans les produits Elastic	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0040	Multiples vulnérabilités dans Google Chrome	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0039	Multiples vulnérabilités dans Node.js	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0038	Multiples vulnérabilités dans les produits Mozilla	2026-01-14T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0037	Multiples vulnérabilités dans Typo3	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0036	Multiples vulnérabilités dans Suricata	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0035	Multiples vulnérabilités dans les produits Fortinet	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0034	Multiples vulnérabilités dans les produits SAP	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0033	Multiples vulnérabilités dans les produits Schneider Electric	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0032	Multiples vulnérabilités dans les produits Siemens	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0031	Vulnérabilité dans le greffon VSCode pour Spring CLI	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0046	Multiples vulnérabilités dans les produits Microsoft	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0045	Multiples vulnérabilités dans Microsoft Azure	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0044	Multiples vulnérabilités dans Microsoft Windows	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0043	Multiples vulnérabilités dans Microsoft Office	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0042	Multiples vulnérabilités dans les produits HPE Aruba Networking	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0041	Multiples vulnérabilités dans les produits Elastic	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0040	Multiples vulnérabilités dans Google Chrome	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0039	Multiples vulnérabilités dans Node.js	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0038	Multiples vulnérabilités dans les produits Mozilla	2026-01-14T00:00:00.000000	2026-01-15T00:00:00.000000
CERTFR-2026-AVI-0037	Multiples vulnérabilités dans Typo3	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0036	Multiples vulnérabilités dans Suricata	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0035	Multiples vulnérabilités dans les produits Fortinet	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0034	Multiples vulnérabilités dans les produits SAP	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0033	Multiples vulnérabilités dans les produits Schneider Electric	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0032	Multiples vulnérabilités dans les produits Siemens	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
CERTFR-2026-AVI-0031	Vulnérabilité dans le greffon VSCode pour Spring CLI	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000

ID	Description	Published	Updated
jvndb-2022-017175	Proscend Communications M330-W and M330-W5 vulnerable to OS command injection	2024-04-16T14:30+09:00	2024-04-16T14:30+09:00
jvndb-2024-000040	Multiple vulnerabilities in BUFFALO wireless LAN routers	2024-04-15T16:29+09:00	2024-04-15T16:29+09:00
jvndb-2024-000039	Multiple vulnerabilities in a-blog cms	2024-04-10T13:55+09:00	2024-04-10T13:55+09:00
jvndb-2024-000038	Multiple vulnerabilities in WordPress Plugin "Ninja Forms"	2024-04-08T13:44+09:00	2024-04-08T13:44+09:00
jvndb-2024-003068	Multiple vulnerabilities in Cente middleware	2024-04-05T15:36+09:00	2024-09-24T15:00+09:00
jvndb-2024-000037	Multiple vulnerabilities in NEC Aterm series	2024-04-05T14:53+09:00	2024-04-05T14:53+09:00
jvndb-2024-003067	Multiple vulnerabilities in PLANEX COMMUNICATIONS wireless LAN routers	2024-04-05T14:17+09:00	2024-04-05T14:17+09:00
jvndb-2024-003051	FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password	2024-04-02T18:03+09:00	2024-04-02T18:03+09:00
jvndb-2024-003050	KEYENCE VT STUDIO may insecurely load Dynamic Link Libraries	2024-04-01T14:44+09:00	2024-04-01T14:44+09:00
jvndb-2024-003049	Multiple vulnerabilities in KEYENCE KV STUDIO, KV REPLAY VIEWER, and VT5-WX15/WX12	2024-04-01T12:31+09:00	2024-09-25T13:51+09:00
jvndb-2024-000036	"Yahoo! JAPAN" App vulnerable to cross-site scripting	2024-03-29T13:28+09:00	2024-03-29T13:28+09:00
jvndb-2024-003047	SEEnergy SVR-116 vulnerable to OS command injection	2024-03-28T11:38+09:00	2024-03-28T11:38+09:00
jvndb-2024-003026	Security information for Hitachi Disk Array Systems	2024-03-27T15:52+09:00	2024-03-27T15:52+09:00
jvndb-2024-000035	Multiple vulnerabilities in WordPress Plugin "Survey Maker"	2024-03-27T14:48+09:00	2024-03-27T14:48+09:00
jvndb-2024-000034	SonicDICOM Media Viewer may insecurely load Dynamic Link Libraries	2024-03-27T14:31+09:00	2024-03-27T14:31+09:00
jvndb-2024-003025	Multiple vulnerabilities in ELECOM wireless LAN routers	2024-03-27T14:26+09:00	2024-11-27T14:34+09:00
jvndb-2024-000905	Mini Thread vulnerable to cross-site scripting	2024-03-26T17:43+09:00	2024-03-26T17:43+09:00
jvndb-2024-000906	ffBull vulnerable to OS command injection	2024-03-26T16:07+09:00	2024-03-26T16:07+09:00
jvndb-2024-000900	"EasyRange" may insecurely load executable files	2024-03-26T15:50+09:00	2024-03-26T15:50+09:00
jvndb-2024-000907	0ch BBS Script (0ch) vulnerable to cross-site scripting	2024-03-26T15:35+09:00	2024-03-26T15:35+09:00
jvndb-2024-000902	TvRock vulnerable to cross-site scripting	2024-03-26T14:27+09:00	2024-03-26T14:27+09:00
jvndb-2024-000904	WebProxy vulnerable to OS command injection	2024-03-26T14:19+09:00	2024-03-26T14:19+09:00
jvndb-2023-025113	BUFFALO LinkStation 200 series vulnerable to arbitrary code execution	2024-03-25T18:16+09:00	2024-03-25T18:16+09:00
jvndb-2024-003016	Multiple vulnerabilities in home gateway HGW BL1500HM	2024-03-25T17:28+09:00	2025-03-28T12:01+09:00
jvndb-2024-000033	WordPress Plugin "easy-popup-show" vulnerable to cross-site request forgery	2024-03-25T13:31+09:00	2024-03-25T13:31+09:00
jvndb-2024-003008	Sangoma Technologies CG/MG family driver cg6kwin2k.sys vulnerable to insufficient access control on its IOCTL	2024-03-22T13:50+09:00	2024-04-24T11:45+09:00
jvndb-2024-000032	Multiple vulnerabilities in FitNesse	2024-03-18T14:08+09:00	2024-03-19T11:02+09:00
jvndb-2024-000031	"ABEMA" App for Android fails to restrict access permissions	2024-03-15T16:37+09:00	2024-03-15T16:37+09:00
jvndb-2024-002961	Information Exposure Vulnerability in Cosminexus Component Container	2024-03-13T12:10+09:00	2024-03-13T12:10+09:00
jvndb-2024-000030	a-blog cms vulnerable to directory traversal	2024-03-08T15:27+09:00	2024-03-08T15:27+09:00

ID	Description	Published	Updated
cnvd-2026-07939	iccDEV XML解析器空指针引用漏洞	2026-01-19	2026-01-26
cnvd-2026-07938	iccDEV ToneMap解析器堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07937	iccDEV IccTagXml函数堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07936	iccDEV CIccXmlArrayType::ParseText函数堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07935	iccDEV CIccLocalizedUnicode::GetText函数堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07934	iccDEV CIccCLUT::Init函数堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07933	iccDEV堆缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07553	WordPress插件EventPrime信息泄露漏洞	2026-01-19	2026-01-28
cnvd-2026-07552	WordPress插件PDF Resume Parser信息泄露漏洞	2026-01-19	2026-01-28
cnvd-2026-07551	WordPress插件LottieFiles – Lottie block for Gutenberg信息泄露漏洞	2026-01-19	2026-01-28
cnvd-2026-07206	Microsoft SharePoint Server远程代码执行漏洞（CNVD-2026-07206）	2026-01-19	2026-01-27
cnvd-2026-07205	Microsoft SharePoint Server欺骗漏洞（CNVD-2026-07205）	2026-01-19	2026-01-27
cnvd-2026-07204	Microsoft SharePoint远程代码执行漏洞（CNVD-2026-07204）	2026-01-19	2026-01-27
cnvd-2026-07203	Microsoft SharePoint信息泄露漏洞（CNVD-2026-07203）	2026-01-19	2026-01-27
cnvd-2026-07202	Microsoft SharePoint Server远程代码执行漏洞（CNVD-2026-07202）	2026-01-19	2026-01-27
cnvd-2026-07201	Microsoft Office代码执行漏洞（CNVD-2026-07201）	2026-01-19	2026-01-27
cnvd-2026-07200	Microsoft Office代码执行漏洞（CNVD-2026-07200）	2026-01-19	2026-01-27
cnvd-2026-07199	Microsoft Office Click-To-Run代码执行漏洞	2026-01-19	2026-01-27
cnvd-2026-07198	Microsoft Excel代码执行漏洞（CNVD-2026-07198）	2026-01-19	2026-01-27
cnvd-2026-07197	Microsoft Excel代码执行漏洞（CNVD-2026-07197）	2026-01-19	2026-01-27
cnvd-2026-07196	Microsoft Excel代码执行漏洞（CNVD-2026-07196）	2026-01-19	2026-01-26
cnvd-2026-07195	Adobe Substance3D Stager资源管理错误漏洞（CNVD-2026-07195）	2026-01-19	2026-01-26
cnvd-2026-07194	Adobe Substance3D Modeler越界读取漏洞（CNVD-2026-07194）	2026-01-19	2026-01-26
cnvd-2026-07193	Adobe Substance3D Modeler越界读取漏洞（CNVD-2026-07193）	2026-01-19	2026-01-26
cnvd-2026-07192	Adobe Substance3D Designer越界读取漏洞	2026-01-19	2026-01-26
cnvd-2026-07191	Adobe Substance3D Designer缓冲区溢出漏洞	2026-01-19	2026-01-26
cnvd-2026-07190	Adobe Illustrator代码问题漏洞（CNVD-2026-07190）	2026-01-19	2026-01-26
cnvd-2026-07189	Adobe Illustrator代码问题漏洞	2026-01-19	2026-01-26
cnvd-2026-07188	Adobe Dreamweaver Desktop输入验证错误漏洞（CNVD-2026-07188）	2026-01-19	2026-01-26
cnvd-2026-07187	Adobe Dreamweaver Desktop输入验证错误漏洞	2026-01-19	2026-01-26

ID	Description	Published	Updated
bdu:2026-01304	Уязвимость функции bus_error030 () ядра операционной системы Linux, позволяющая нарушител…	06.02.2026	06.02.2026
bdu:2026-01303	Уязвимость функции ov5675_init_controls() ядра операционной системы Linux, позволяющая на…	06.02.2026	06.02.2026
bdu:2026-01302	Уязвимость функции adreno_gpu_init() модуля drivers/gpu/drm/msm/adreno/adreno_gpu.c драйв…	06.02.2026	06.02.2026
bdu:2026-01301	Уязвимость функции ntfs_new_inode() модуля fs/ntfs3/fsntfs.c файловой системы NTFS 3 ядра…	06.02.2026	06.02.2026
bdu:2026-01300	Уязвимость функции gdlm_put_lock() модуля fs/gfs2/lock_dlm.c файловой системы GFS2 ядра о…	06.02.2026	06.02.2026
bdu:2026-01299	Уязвимость функции __replace_atomic_write_block() модуля fs/f2fs/segment.c файловой систе…	06.02.2026	06.02.2026
bdu:2026-01298	Уязвимость функции nonstatic_release_resource_db() модуля drivers/pcmcia/rsrc_nonstatic.c…	06.02.2026	06.02.2026
bdu:2026-01297	Уязвимость функции isert_wait_conn() модуля drivers/infiniband/ulp/isert/ib_isert.c драйв…	06.02.2026	06.02.2026
bdu:2026-01296	Уязвимость функции xfrm_state_delete_tunnel() модуля net/xfrm/xfrm_state.c ядра операцион…	06.02.2026	06.02.2026
bdu:2026-01295	Уязвимость функции kcm_sendmsg() в модуле net/kcm/kcmsock.c реализации сетевых функций яд…	06.02.2026	06.02.2026
bdu:2026-01294	Уязвимость функции vmw_cmd_dma() модуля drivers/gpu/drm/vmwgfx/vmwgfx_execbuf.c драйвера …	06.02.2026	06.02.2026
bdu:2026-01293	Уязвимость функции ipcomp_free_scratches() модуля net/xfrm/xfrm_ipcomp.c реализации сетев…	06.02.2026	06.02.2026
bdu:2026-01291	Уязвимость функции dbMount() модуля fs/jfs/jfs_dmap.c файловой системы JFS ядра операцион…	06.02.2026	06.02.2026
bdu:2026-01290	Уязвимость функции brcmf_fw_alloc_request() модуля drivers/net/wireless/broadcom/brcm8021…	06.02.2026	06.02.2026
bdu:2026-01289	Уязвимость функции si470x_usb_driver_probe() модуля drivers/media/radio/si470x/radio-si47…	06.02.2026	06.02.2026
bdu:2026-01288	Уязвимость функций smb_inherit_dacl() и smb_check_perm_dacl() модуля fs/smb/server/smbacl…	06.02.2026	06.02.2026
bdu:2026-01287	Уязвимость контроллера входящего трафика в кластере Kubernetes ingress-nginx, связанная с…	06.02.2026	06.02.2026
bdu:2026-01286	Уязвимость функции управления сертификатами веб-интерфейса платформы планирования и прове…	06.02.2026	06.02.2026
bdu:2026-01285	Уязвимость функции kernfs_remove_by_name_ns() модуля fs/kernfs/dir.c файловой системы ядр…	06.02.2026	06.02.2026
bdu:2026-01284	Уязвимость платформы для автоматизации рабочих процессов n8n, связанная с недостаточным к…	06.02.2026	06.02.2026
bdu:2026-01283	Уязвимость функции btrfs_quota_enable() модуля fs/btrfs/qgroup.c файловой системы btrfs я…	06.02.2026	06.02.2026
bdu:2026-01282	Уязвимость функции dml21_map_dc_state_into_dml_display_cfg() модуля drivers/gpu/drm/amd/d…	06.02.2026	06.02.2026
bdu:2026-01281	Уязвимость пакетов npm React Router и Remix, связанная с непринятием мер по защите структ…	05.02.2026	05.02.2026
bdu:2026-01280	Уязвимость функции pinmux_func_name_to_selector() модуля drivers/pinctrl/pinmux.c драйвер…	05.02.2026	05.02.2026
bdu:2026-01279	Уязвимость расширения vscode-go редактора исходного кода Visual Studio Code, позволяющая …	05.02.2026	05.02.2026
bdu:2026-01278	Уязвимость функции target_lu_gp_members_show() модуля drivers/target/target_core_configfs…	05.02.2026	05.02.2026
bdu:2026-01277	Уязвимость функции essiv_aead_crypt() компонента essiv ядра операционной системы Linux, п…	05.02.2026	05.02.2026
bdu:2026-01276	Уязвимость функции smb_break_all_levII_oplock() модуля fs/smb/server/oplock.c сервера SMB…	05.02.2026	05.02.2026
bdu:2026-01275	Уязвимость функции rcu_read_unlock_special() модуля kernel/rcu/tree_plugin.h ядра операци…	05.02.2026	05.02.2026
bdu:2026-01274	Уязвимость PHP-фреймворка Laravel, связанная с непринятием мер по нейтрализации подстанов…	05.02.2026	05.02.2026

ID	Description	Updated
var-201605-0467	Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4…	2024-07-23T21:36:25.410000Z
var-201306-0147	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T21:36:25.133000Z
var-202310-0175	The HTTP/2 protocol allows a denial of service (server resource consumption) because requ…	2024-07-23T21:36:24.758000Z
var-201110-0479	Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted re…	2024-07-23T21:36:24.394000Z
var-201804-1181	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2024-07-23T21:36:20.913000Z
var-202210-1070	An issue was discovered in libxml2 before 2.10.3. Certain invalid XML entity definitions …	2024-07-23T21:36:19.928000Z
var-200501-0287	Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a…	2024-07-23T21:36:19.004000Z
var-202105-1311	A flaw was found in Wildfly in versions before 23.0.2.Final while creating a new role in …	2024-07-23T21:35:12.003000Z
var-201804-1180	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2024-07-23T21:35:11.789000Z
var-201304-0300	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-07-23T21:35:11.273000Z
var-201006-1169	Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug…	2024-07-23T21:35:11.733000Z
var-202105-0131	A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packe…	2024-07-23T21:35:10.562000Z
var-201710-1404	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-07-23T21:35:10.631000Z
var-201711-0455	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2024-07-23T21:35:06.798000Z
var-201504-0478	The sqlite3VdbeExec function in vdbe.c in SQLite before 3.8.9 does not properly implement…	2024-07-23T21:35:06.207000Z
var-200704-0215	Use-after-free vulnerability in Libinfo in Apple Mac OS X 10.3.9 through 10.4.9 allows re…	2024-07-23T21:35:06.142000Z
var-201912-0584	A memory corruption issue was addressed with improved input validation. This issue is fix…	2024-07-23T21:35:05.474000Z
var-201512-0007	Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 al…	2024-07-23T21:35:01.063000Z
var-202005-0397	json-c through 0.14 has an integer overflow and out-of-bounds write via a large JSON file…	2024-07-23T21:34:58.765000Z
var-200909-0801	The ap_proxy_ftp_handler function in modules/proxy/proxy_ftp.c in the mod_proxy_ftp modul…	2024-07-23T21:34:26.443000Z
var-201105-0094	The fnmatch implementation in apr_fnmatch.c in the Apache Portable Runtime (APR) library …	2024-07-23T21:34:14.063000Z
var-201805-0950	A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Softw…	2024-07-23T21:34:13.151000Z
var-201707-1188	An issue was discovered in certain Apple products. iOS before 10.3.3 is affected. Safari …	2024-07-23T21:34:09.280000Z
var-201007-0318	WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 through 10.6 and Windows, and before…	2024-07-23T21:34:09.881000Z
var-202010-1327	A logic issue was addressed with improved validation. This issue is fixed in iCloud for W…	2024-07-23T21:34:07.225000Z
var-201711-0448	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2024-07-23T21:34:05.466000Z
var-201710-1402	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2024-07-23T21:34:05.823000Z
var-202106-0345	Domain-bypass transient execution vulnerability in some Intel Atom(R) Processors may allo…	2024-07-23T21:34:00.818000Z
var-201004-1006	Heap-based buffer overflow in vmnc.dll in the VMnc media codec in VMware Movie Decoder be…	2024-07-23T21:33:58.659000Z
var-201404-0377	Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51,…	2024-07-23T21:33:23.504000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated