Recent vulnerabilities
Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-20219 |
5.1 (4.0)
6.1 (3.1)
|
Serviio PRO 1.8 DOM-based Cross-Site Scripting via med… |
Serviio |
Serviio PRO |
2026-03-15T18:34:27.373Z | 2026-03-16T14:20:17.702Z |
| CVE-2017-20218 |
8.5 (4.0)
7.8 (3.1)
|
Serviio PRO 1.8 Local Privilege Escalation via Unquoted Path |
Serviio |
Serviio PRO |
2026-03-15T18:34:25.800Z | 2026-03-16T14:20:17.881Z |
| CVE-2017-20217 |
8.7 (4.0)
7.5 (3.1)
|
Serviio PRO 1.8 REST API Information Disclosure |
Serviio |
Serviio PRO |
2026-03-15T18:34:24.635Z | 2026-03-16T14:20:18.020Z |
| CVE-2016-20036 |
5.1 (4.0)
6.1 (3.1)
|
Wowza Streaming Engine 4.5.0 Multiple Cross-Site Scrip… |
Wowza Media Systems, LLC. |
Wowza Streaming Engine |
2026-03-15T18:34:23.829Z | 2026-03-16T14:30:29.820Z |
| CVE-2016-20035 |
6.9 (4.0)
5.3 (3.1)
|
Wowza Streaming Engine 4.5.0 CSRF via user edit endpoint |
Wowza Media Systems, LLC. |
Wowza Streaming Engine |
2026-03-15T18:34:22.874Z | 2026-03-16T14:30:30.121Z |
| CVE-2016-20034 |
8.7 (4.0)
8.8 (3.1)
|
Wowza Streaming Engine 4.5.0 Privilege Escalation via … |
Wowza Media Systems, LLC. |
Wowza Streaming Engine |
2026-03-15T18:34:22.034Z | 2026-03-16T14:30:30.300Z |
| CVE-2016-20033 |
8.5 (4.0)
7.8 (3.1)
|
Wowza Streaming Engine 4.5.0 Local Privilege Escalatio… |
Wowza Media Systems, LLC. |
Wowza Streaming Engine |
2026-03-15T18:34:21.181Z | 2026-03-16T14:30:30.462Z |
| CVE-2015-20121 |
8.8 (4.0)
8.2 (3.1)
|
RealtyScript 4.0.2 SQL Injection via u_id and agent Pa… |
Next Click Ventures |
RealtyScripts |
2026-03-15T18:34:19.926Z | 2026-03-16T14:30:30.626Z |
| CVE-2015-20119 |
5.1 (4.0)
6.4 (3.1)
|
RealtyScript 4.0.2 Stored Cross-Site Scripting via tex… |
Next Click Ventures |
RealtyScript |
2026-03-15T18:34:17.708Z | 2026-03-16T14:30:30.762Z |
| CVE-2015-20118 |
5.1 (4.0)
7.2 (3.1)
|
RealtyScript 4.0.2 Stored Cross-Site Scripting via loc… |
Next Click Ventures |
RealtyScript |
2026-03-15T18:34:16.830Z | 2026-03-16T14:30:30.949Z |
| CVE-2015-20117 |
6.9 (4.0)
5.3 (3.1)
|
RealtyScript 4.0.2 Cross-Site Request Forgery Unauthor… |
Next Click Ventures |
RealtyScript |
2026-03-15T18:34:16.030Z | 2026-03-16T14:30:31.130Z |
| CVE-2015-20116 |
5.1 (4.0)
6.1 (3.1)
|
RealtyScript 4.0.2 Stored Cross-Site Scripting via CSV… |
Next Click Ventures |
RealtyScript |
2026-03-15T18:34:14.443Z | 2026-03-16T14:30:31.280Z |
| CVE-2015-20115 |
5.1 (4.0)
7.2 (3.1)
|
RealtyScript 4.0.2 Stored Cross-Site Scripting via Fil… |
Next Click Ventures |
RealtyScript |
2026-03-15T18:34:13.697Z | 2026-03-16T14:30:31.420Z |
| CVE-2015-20114 |
5.1 (4.0)
6.1 (3.1)
|
RealtyScript 4.0.2 Cross-Site Scripting via Multiple P… |
Next Click Ventuers |
RealtyScript |
2026-03-15T18:34:12.468Z | 2026-03-16T14:20:18.259Z |
| CVE-2015-20113 |
6.9 (4.0)
5.3 (3.1)
|
RealtyScript 4.0.2 Multiple Cross-Site Request Forgery… |
Next Click Ventuers |
RealtyScript |
2026-03-15T18:34:11.692Z | 2026-03-16T14:20:18.451Z |
| CVE-2013-20006 |
8.7 (4.0)
7.5 (3.1)
|
Qool CMS Multiple Persistent Cross-Site Scripting Vuln… |
Qool |
Qool CMS |
2026-03-15T18:34:10.910Z | 2026-03-16T14:20:18.616Z |
| CVE-2013-20005 |
6.9 (4.0)
5.3 (3.1)
|
Qool CMS 2.0 RC2 Cross-Site Request Forgery via adduser |
Qool |
Qool CMS |
2026-03-15T18:34:09.977Z | 2026-03-16T14:20:18.785Z |
| CVE-2026-4185 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
GPAC MP4Box swf_parse.c swf_def_bits_jpeg stack-based … |
n/a |
GPAC |
2026-03-15T18:32:08.668Z | 2026-03-17T15:18:42.115Z |
| CVE-2026-4184 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
D-Link DIR-816 goahead form2Wl5BasicSetup.cgi stack-ba… |
D-Link |
DIR-816 |
2026-03-15T17:32:09.843Z | 2026-03-16T14:40:34.929Z |
| CVE-2026-4183 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
D-Link DIR-816 goahead form2WlanBasicSetup.cgi stack-b… |
D-Link |
DIR-816 |
2026-03-15T16:32:09.354Z | 2026-03-16T14:40:34.375Z |
| CVE-2026-4182 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
D-Link DIR-816 goahead form2Wl5RepeaterStep2.cgi stack… |
D-Link |
DIR-816 |
2026-03-15T16:02:15.731Z | 2026-03-16T14:40:34.130Z |
| CVE-2026-4181 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
D-Link DIR-816 goahead form2RepeaterStep2.cgi stack-ba… |
D-Link |
DIR-816 |
2026-03-15T16:02:10.609Z | 2026-03-16T14:40:33.964Z |
| CVE-2026-28522 |
7.1 (4.0)
6.5 (3.1)
|
arduino-TuyaOpen WiFiUDP Null Pointer Dereference Deni… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:36:52.798Z | 2026-03-16T14:20:18.964Z |
| CVE-2026-28519 |
8.7 (4.0)
8.8 (3.1)
|
arduino-TuyaOpen DnsServer Heap-Based Buffer Overflow … |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:36:47.991Z | 2026-03-16T14:20:19.096Z |
| CVE-2026-28521 |
7 (4.0)
7.7 (3.1)
|
arduino-TuyaOpen TuyaIoT Out-of-Bounds Memory Read Inf… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:35:46.217Z | 2026-03-16T14:20:19.227Z |
| CVE-2026-28520 |
8.6 (4.0)
8.4 (3.1)
|
arduino-TuyaOpen WiFiMulti Single-Byte Buffer Overflow… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:35:42.482Z | 2026-03-16T14:20:19.411Z |
| CVE-2016-20032 |
5.1 (4.0)
7.2 (3.1)
|
ZKTeco ZKAccess Security System 5.3.1 Stored XSS |
ZKTeco Inc. |
ZKTeco ZKAccess Security System |
2026-03-15T13:35:36.942Z | 2026-03-16T14:20:19.748Z |
| CVE-2016-20031 |
6.8 (4.0)
5.5 (3.1)
|
ZKTeco ZKBioSecurity 3.0 Local Authorization Bypass vi… |
ZKTeco Inc. |
ZKTeco ZKBioSecurity |
2026-03-15T13:35:35.350Z | 2026-03-16T14:20:19.921Z |
| CVE-2016-20030 |
9.3 (4.0)
9.8 (3.1)
|
ZKTeco ZKBioSecurity 3.0 User Enumeration via authLogi… |
ZKTeco Inc. |
ZKTeco ZKBioSecurity |
2026-03-15T13:35:32.348Z | 2026-03-16T14:20:20.095Z |
| CVE-2016-20029 |
6.9 (4.0)
6.2 (3.1)
|
ZKTeco ZKBioSecurity 3.0 File Path Manipulation Vulner… |
ZKTeco Inc. |
ZKTeco ZKBioSecurity |
2026-03-15T13:35:26.328Z | 2026-03-16T14:20:20.265Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-32627 |
8.7 (3.1)
|
cpp-httplib has a Silent TLS Certificate Verification … |
yhirose |
cpp-httplib |
2026-03-13T20:48:14.442Z | 2026-03-16T15:41:05.578Z |
| CVE-2026-32626 |
9.7 (3.1)
|
AnythingLLM has a Streaming Phase XSS to RCE via LLM … |
Mintplex-Labs |
anything-llm |
2026-03-13T20:14:30.437Z | 2026-03-16T20:13:43.696Z |
| CVE-2026-32621 |
9.9 (3.1)
|
Apollo Federation has prototype pollution via incomple… |
@apollo |
federation-internals |
2026-03-13T20:29:54.875Z | 2026-03-16T20:14:57.335Z |
| CVE-2026-32617 |
7.1 (3.1)
|
AnythingLLM Permissable CORS policy |
Mintplex-Labs |
anything-llm |
2026-03-13T20:07:57.446Z | 2026-03-16T20:09:19.009Z |
| CVE-2026-32616 |
8.2 (3.1)
|
Pigeon has a Host Header Injection in email verificati… |
kasuganosoras |
Pigeon |
2026-03-13T21:12:40.529Z | 2026-03-16T16:46:32.353Z |
| CVE-2026-32614 |
7.5 (3.1)
|
Go ShangMi SM9 Infinity-Point Ciphertext Forgery Vulne… |
emmansun |
gmsm |
2026-03-13T20:14:05.750Z | 2026-03-16T20:12:09.389Z |
| CVE-2026-32600 |
8.2 (3.1)
|
xml-security is Missing AES-GCM Authentication Tag Val… |
simplesamlphp |
xml-security |
2026-03-13T19:58:41.692Z | 2026-03-16T14:03:17.811Z |
| CVE-2026-32594 |
6.9 (4.0)
|
Parse Server GraphQL WebSocket endpoint bypasses secur… |
parse-community |
parse-server |
2026-03-13T19:56:42.155Z | 2026-03-16T13:57:44.809Z |
| CVE-2026-32314 |
8.7 (4.0)
|
Yamux remote Panic via malformed Data frame with SYN s… |
libp2p |
rust-yamux |
2026-03-13T19:53:08.823Z | 2026-03-16T13:48:29.665Z |
| CVE-2026-32313 |
8.2 (3.1)
|
xmlseclibs is Missing AES-GCM Authentication Tag Valid… |
robrichards |
xmlseclibs |
2026-03-13T19:50:48.530Z | 2026-03-16T13:45:07.031Z |
| CVE-2026-31386 |
7.2 (3.0)
8.6 (4.0)
|
OpenLiteSpeed and LSWS Enterprise provided by Lit… |
LiteSpeed Technologies |
OpenLiteSpeed |
2026-03-16T05:21:13.948Z | 2026-03-16T15:29:03.838Z |
| CVE-2026-2923 |
7.8 (3.0)
|
GStreamer DVB Subtitles Out-Of-Bounds Write Remote Cod… |
GStreamer |
GStreamer |
2026-03-13T20:39:01.199Z | 2026-03-17T03:55:38.806Z |
| CVE-2026-2922 |
7.8 (3.0)
|
GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote… |
GStreamer |
GStreamer |
2026-03-13T20:38:49.124Z | 2026-03-18T03:55:38.961Z |
| CVE-2026-2921 |
7.8 (3.0)
|
GStreamer RIFF Palette Integer Overflow Remote Code Ex… |
GStreamer |
GStreamer |
2026-03-13T20:41:50.780Z | 2026-03-18T03:55:40.080Z |
| CVE-2026-2920 |
7.8 (3.0)
|
GStreamer ASF Demuxer Heap-based Buffer Overflow Remot… |
GStreamer |
GStreamer |
2026-03-13T20:38:27.802Z | 2026-03-18T03:55:37.859Z |
| CVE-2026-2578 |
4.3 (3.1)
|
Information Disclosure via WebSocket Event When Deleti… |
Mattermost |
Mattermost |
2026-03-16T11:58:09.834Z | 2026-03-16T13:49:55.812Z |
| CVE-2026-2493 |
7.5 (3.0)
|
IceWarp collaboration Directory Traversal Information … |
IceWarp |
IceWarp |
2026-03-13T20:42:38.658Z | 2026-03-16T15:41:05.952Z |
| CVE-2026-2491 |
6.3 (3.0)
|
Socomec DIRIS A-40 HTTP API Authentication Bypass Vuln… |
Socomec |
DIRIS A-40 |
2026-03-13T20:43:15.417Z | 2026-03-16T15:41:05.821Z |
| CVE-2026-2476 |
7.6 (3.1)
|
MS Teams plugin sensitive config values not properly m… |
Mattermost |
Mattermost |
2026-03-16T11:11:07.387Z | 2026-03-16T13:49:58.500Z |
| CVE-2026-2463 |
4.3 (3.1)
|
Unauthorized access to invite ID during team creation |
Mattermost |
Mattermost |
2026-03-16T11:13:57.575Z | 2026-03-16T13:49:58.332Z |
| CVE-2026-2462 |
6.6 (3.1)
|
Admin RCE via Malicious Plugin Upload on CI Test Instances |
Mattermost |
Mattermost |
2026-03-16T12:00:21.069Z | 2026-03-17T03:55:27.849Z |
| CVE-2026-2461 |
4.3 (3.1)
|
Missing authorization check allows unauthorized modifi… |
Mattermost |
Mattermost |
2026-03-16T11:16:32.720Z | 2026-03-16T13:49:57.924Z |
| CVE-2026-2458 |
4.3 (3.1)
|
Unauthorized channel enumeration in private teams afte… |
Mattermost |
Mattermost |
2026-03-16T11:27:49.310Z | 2026-03-16T13:49:57.631Z |
| CVE-2026-2457 |
4.3 (3.1)
|
WebSocket Message Spoofing via Permalink Embed Manipulation |
Mattermost |
Mattermost |
2026-03-16T11:20:25.335Z | 2026-03-16T13:49:57.761Z |
| CVE-2026-2456 |
5.3 (3.1)
|
Denial of Service via Unbounded Memory Allocation in I… |
Mattermost |
Mattermost |
2026-03-16T11:06:44.920Z | 2026-03-16T13:49:58.650Z |
| CVE-2026-2326 |
N/A
|
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage. | N/A | N/A | 2026-03-16T11:59:12.474Z | |
| CVE-2026-28522 |
7.1 (4.0)
6.5 (3.1)
|
arduino-TuyaOpen WiFiUDP Null Pointer Dereference Deni… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:36:52.798Z | 2026-03-16T14:20:18.964Z |
| CVE-2026-28521 |
7 (4.0)
7.7 (3.1)
|
arduino-TuyaOpen TuyaIoT Out-of-Bounds Memory Read Inf… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:35:46.217Z | 2026-03-16T14:20:19.227Z |
| CVE-2026-28520 |
8.6 (4.0)
8.4 (3.1)
|
arduino-TuyaOpen WiFiMulti Single-Byte Buffer Overflow… |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:35:42.482Z | 2026-03-16T14:20:19.411Z |
| CVE-2026-28519 |
8.7 (4.0)
8.8 (3.1)
|
arduino-TuyaOpen DnsServer Heap-Based Buffer Overflow … |
Tuya |
arduino-TuyaOpen |
2026-03-15T13:36:47.991Z | 2026-03-16T14:20:19.096Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-26250 | Rejected reason: Not used | 2026-02-13T04:15:53.690 | 2026-02-13T04:15:53.690 |
| fkie_cve-2026-26249 | Rejected reason: Not used | 2026-02-13T04:15:53.607 | 2026-02-13T04:15:53.607 |
| fkie_cve-2026-25108 | FileZen contains an OS command injection vulnerability. When FileZen Antivirus Check Option is enab… | 2026-02-13T04:15:53.410 | 2026-02-24T21:38:18.607 |
| fkie_cve-2026-1721 | Summary A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the AI Playground's… | 2026-02-13T03:15:52.467 | 2026-02-27T15:16:27.243 |
| fkie_cve-2025-9293 | A vulnerability in the certificate validation logic may allow applications to accept untrusted or i… | 2026-02-13T02:16:46.523 | 2026-02-13T23:16:08.470 |
| fkie_cve-2025-9292 | A permissive web security configuration may allow cross-origin restrictions enforced by modern brow… | 2026-02-13T02:16:45.937 | 2026-02-13T23:16:08.353 |
| fkie_cve-2025-40905 | WWW::OAuth 1.000 and earlier for Perl uses the rand() function as the default source of entropy, wh… | 2026-02-13T00:16:03.280 | 2026-03-10T17:07:16.893 |
| fkie_cve-2024-21961 | Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow a… | 2026-02-13T00:16:02.633 | 2026-02-13T14:23:48.007 |
| fkie_cve-2026-26188 | Solspace Freeform plugin for Craft CMS 5.x is a super flexible form-building tool. An authenticated… | 2026-02-12T23:16:09.760 | 2026-02-20T21:08:10.347 |
| fkie_cve-2025-70092 | A cross-site scripting (XSS) vulnerability in the Item Kits function of OpenSourcePOS v3.4.1 allows… | 2026-02-12T23:16:09.247 | 2026-02-18T15:45:45.157 |
| fkie_cve-2020-37167 | ClamAV versions prior to 0.103.0-rc contain a vulnerability in function name processing through the… | 2026-02-12T23:16:08.887 | 2026-02-27T22:16:20.217 |
| fkie_cve-2019-25342 | Centova Cast 3.2.12 contains a denial of service vulnerability that allows attackers to overwhelm t… | 2026-02-12T23:16:08.697 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25341 | iNetTools for iOS 8.20 contains a denial of service vulnerability in the Whois feature that allows … | 2026-02-12T23:16:08.520 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25340 | SpotAuditor 5.3.2 contains a denial of service vulnerability in its Base64 decryption feature that … | 2026-02-12T23:16:08.240 | 2026-02-20T21:09:38.997 |
| fkie_cve-2019-25339 | GHIA CamIP 1.2 for iOS contains a denial of service vulnerability in the password input field that … | 2026-02-12T23:16:07.953 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25338 | DokuWiki 2018-04-22b contains a username enumeration vulnerability in its password reset functional… | 2026-02-12T23:16:07.670 | 2026-03-02T15:16:22.633 |
| fkie_cve-2019-25337 | OwnCloud 8.1.8 contains a username enumeration vulnerability that allows remote attackers to discov… | 2026-02-12T23:16:07.367 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25336 | SpotAuditor 5.3.2 contains a local buffer overflow vulnerability in the Base64 Encrypted Password t… | 2026-02-12T23:16:07.097 | 2026-02-20T21:10:31.730 |
| fkie_cve-2019-25335 | PRO-7070 Hazır Profesyonel Web Sitesi version 1.0 contains an authentication bypass vulnerability i… | 2026-02-12T23:16:06.813 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25334 | Product Key Explorer 4.2.0.0 contains a denial of service vulnerability that allows local attackers… | 2026-02-12T23:16:06.540 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25333 | Bullwark Momentum Series JAWS 1.0 contains a directory traversal vulnerability that allows unauthen… | 2026-02-12T23:16:06.267 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25332 | FTP Commander Pro 8.03 contains a local stack overflow vulnerability that allows attackers to execu… | 2026-02-12T23:16:06.017 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25331 | AVS Audio Converter 9.1 contains a local buffer overflow vulnerability that allows local attackers … | 2026-02-12T23:16:05.770 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25330 | SurfOffline Professional 2.2.0.103 contains a structured exception handler (SEH) overflow vulnerabi… | 2026-02-12T23:16:05.490 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25329 | FTP Navigator 8.03 contains a denial of service vulnerability that allows attackers to crash the ap… | 2026-02-12T23:16:05.163 | 2026-03-03T00:21:02.917 |
| fkie_cve-2019-25328 | XnConvert 1.82 contains a denial of service vulnerability in its registration code input field that… | 2026-02-12T23:16:04.790 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25327 | Prime95 version 29.8 build 6 contains a buffer overflow vulnerability in the user ID input field th… | 2026-02-12T23:16:04.617 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25325 | Thrive Smart Home 1.1 contains an SQL injection vulnerability in the checklogin.php endpoint that a… | 2026-02-12T23:16:04.413 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25324 | RICOH Web Image Monitor 1.09 contains an HTML injection vulnerability in the address configuration … | 2026-02-12T23:16:04.237 | 2026-02-13T14:23:48.007 |
| fkie_cve-2019-25323 | Heatmiser Netmonitor v3.03 contains an HTML injection vulnerability in the outputSetup.htm page tha… | 2026-02-12T23:16:04.070 | 2026-02-13T14:23:48.007 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-9rpf-mhcj-gv7r |
4.0 (3.1)
|
libexpat before 2.7.5 allows an infinite loop while parsing DTD content. | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-9qp5-q937-cpvv |
5.3 (4.0)
|
Non-relational SQL injection vulnerability (NoSQLi) in the Wakyma web application, specifically in … | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-832q-9r5f-ppx5 |
8.6 (4.0)
|
Identity based authorization bypass vulnerability (IDOR) that allows an attacker to modify the data… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-7q24-fxcq-rmwc |
6.3 (3.1)
|
Socomec DIRIS A-40 HTTP API Authentication Bypass Vulnerability. This vulnerability allows network-… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-679f-wmrg-qf57 |
4.3 (3.1)
|
Mattermost allows a removed team member to enumerate all public channels within a private team | 2026-03-16T15:30:43Z | 2026-03-17T20:01:40Z |
| ghsa-5p6r-4c7p-96fh |
3.4 (3.1)
|
telnet in GNU inetutils through 2.7 allows servers to read arbitrary environment variables from cli… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-52ch-r2h3-gxrq |
7.8 (3.1)
|
GStreamer DVB Subtitles Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-4ppj-6chv-5pgc |
7.6 (3.1)
|
Mattermost Plugins versions <=2.0.3.0 fail to properly mask sensitive configuration values which al… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-3rhr-jr63-hwq5 |
4.3 (3.1)
|
Mattermost fails to preserve the redacted state of burn-on-read posts during deletion | 2026-03-16T15:30:43Z | 2026-03-17T20:02:36Z |
| ghsa-3gr9-8p27-7f3p |
7.2 (3.1)
8.6 (4.0)
|
OpenLiteSpeed and LSWS Enterprise provided by LiteSpeed Technologies contain an OS command injectio… | 2026-03-16T15:30:43Z | 2026-03-16T15:30:43Z |
| ghsa-34g8-9fpp-46ch |
5.3 (3.1)
|
Mattermost fails to limit the size of responses from integration action endpoints | 2026-03-16T15:30:43Z | 2026-03-17T20:01:22Z |
| ghsa-26hg-xq22-5254 |
4.8 (4.0)
|
Stored Cross-Site Scripting (XSS) vulnerability in the Wakyma web application, specifically in the … | 2026-03-16T15:30:43Z | 2026-03-16T15:30:44Z |
| ghsa-xvr9-fr69-g722 |
5.3 (3.1)
|
The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registra… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-xv2p-wchj-qjhp |
4.3 (3.1)
|
Mattermost fails to bound memory allocation when processing DOC files | 2026-03-16T15:30:42Z | 2026-03-17T19:59:29Z |
| ghsa-x8wx-px39-c6qg |
5.1 (3.1)
|
IBM CICS Transaction Gateway for Multiplatforms 9.3 and 10.1 could allow a user to transfer or view… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-wx9p-57x7-7rh9 |
6.1 (3.1)
5.1 (4.0)
|
Raytha CMS is vulnerable to Reflected XSS via returnUrl parameter in logon functionality. An attack… | 2026-03-16T15:30:42Z | 2026-03-16T21:34:32Z |
| ghsa-w8w9-p22v-m9jp |
4.3 (3.1)
|
The Wicked Folders – Folder Organizer for Pages, Posts, and Custom Post Types plugin for WordPress … | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-vpvf-7jf8-3gpw |
6.7 (4.0)
|
Improper privilege management in ThemeManager prior to SMR Mar-2026 Release 1 allows local privileg… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-rjf5-cxrf-4rvw |
7.1 (3.1)
|
AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-rcpf-m3cr-fh99 |
7.1 (4.0)
|
Use of a broken or risky cryptographic algorithm in Smart Switch prior to version 3.7.69.15 allows … | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-r7p7-x56g-w5cp |
7.0 (4.0)
|
Improper access control in Galaxy Store prior to version 4.6.03.8 allows local attacker to create f… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-r5w6-89h4-6hw8 |
4.8 (4.0)
|
Improper authorization in Settings prior to SMR Mar-2026 Release 1 allows local attacker to disable… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-r4wm-392x-hfg5 |
7.7 (3.1)
7.0 (4.0)
|
arduino-TuyaOpen before version 1.2.1 contains an out-of-bounds memory read vulnerability in the Tu… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-r4p8-phpj-5pvw |
3.7 (3.1)
|
Mumble before 1.6.870 is prone to an out-of-bounds array access, which may result in denial of serv… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-qvpq-w84x-6pgh |
8.4 (4.0)
|
Improper export of android application components in Secure Folder prior to SMR Mar-2026 Release 1 … | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-q28g-7mpq-xfp7 |
6.9 (4.0)
|
Improper authentication in Smart Switch prior to version 3.7.69.15 allows adjacent attackers to tri… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-ph22-fw5m-w2q9 |
4.3 (3.1)
|
Mattermost allows attackers to spoof permalink embeds | 2026-03-16T15:30:42Z | 2026-03-17T20:00:12Z |
| ghsa-p88h-9fmr-wj9q |
5.3 (4.0)
|
Improper verification of cryptographic signature in Smart Switch prior to version 3.7.69.15 allows … | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-mmmv-gm94-x5x3 |
4.8 (4.0)
|
Improper export of android application components in Samsung Assistant prior to version 9.3.10.7 al… | 2026-03-16T15:30:42Z | 2026-03-16T15:30:42Z |
| ghsa-m5rv-56xx-hfc6 |
7.5 (3.1)
|
Mattermost fails to properly handle very long passwords | 2026-03-16T15:30:42Z | 2026-03-17T19:59:16Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2023-189 |
7.5 (3.1)
|
Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication s… | asyncua | 2023-10-03T05:15:00+00:00 | 2023-10-04T18:37:48.328804+00:00 |
| pysec-2023-187 |
|
An issue was discovered in pretix before 2023.7.1. Incorrect parsing of configuration fil… | pretix | 2023-10-02T20:15:00+00:00 | 2023-10-02T22:26:51.461030+00:00 |
| pysec-2023-188 |
7.5 (3.1)
|
When deserializing untrusted or corrupted data, it is possible for a reader to consume me… | avro | 2023-09-29T17:15:00+00:00 | 2023-10-03T22:26:25.361706+00:00 |
| pysec-2023-186 |
8.8 (3.1)
|
Allocation of Resources Without Limits or Throttling in GitHub repository ikus060/rdiffwe… | rdiffweb | 2023-09-29T14:15:00+00:00 | 2023-10-02T20:24:26.790735+00:00 |
| pysec-2023-179 |
|
This affects versions of the package pydash before 6.0.0. A number of pydash methods such… | pydash | 2023-09-28T05:15:00+00:00 | 2023-09-28T10:29:02.604249+00:00 |
| pysec-2023-191 |
7.5 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the EVM. The `_abi_decode()` function doe… | vyper | 2023-09-27T15:19:00+00:00 | 2023-10-04T20:26:42.494872+00:00 |
| pysec-2023-185 |
3.7 (3.1)
|
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… | matrix-synapse | 2023-09-27T15:19:00+00:00 | 2023-09-30T05:24:54.158504+00:00 |
| pysec-2023-180 |
4.3 (3.1)
|
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… | matrix-synapse | 2023-09-27T15:19:00+00:00 | 2023-09-29T20:23:39.578838+00:00 |
| pysec-2023-177 |
|
An issue in Gevent before version 23.9.0 allows a remote attacker to escalate privileges … | gevent | 2023-09-25T12:15:00+00:00 | 2023-09-25T14:28:09.019811+00:00 |
| pysec-2023-310 |
7.5 (3.1)
|
Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions. NO… | mobsf | 2023-09-21T22:15:11+00:00 | 2025-04-09T17:27:26.663665+00:00 |
| pysec-2023-311 |
5.4 (3.1)
|
plone.namedfile allows users to handle `File` and `Image` fields targeting, but not depen… | plone-namedfile | 2023-09-21T15:15:10+00:00 | 2025-04-09T17:27:27.153848+00:00 |
| pysec-2023-178 |
7.5 (3.1)
|
plone.rest allows users to use HTTP verbs such as GET, POST, PUT, DELETE, etc. in Plone. … | plone-rest | 2023-09-21T15:15:00Z | 2023-10-28T20:22:08.431825Z |
| pysec-2023-306 |
8.1 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). In ve… | vyper | 2023-09-18T21:16:00+00:00 | 2024-11-21T14:23:02.752932+00:00 |
| pysec-2023-305 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Start… | vyper | 2023-09-18T21:16:00+00:00 | 2024-11-21T14:23:02.698147+00:00 |
| pysec-2023-176 |
6.5 (3.1)
|
GeoNode is an open source platform that facilitates the creation, sharing, and collaborat… | geonode | 2023-09-15T21:15:00+00:00 | 2023-09-20T17:25:44.504117+00:00 |
| pysec-2023-173 |
5.3 (3.1)
|
Piccolo is an ORM and query builder which supports asyncio. In versions 0.120.0 and prior… | piccolo | 2023-09-12T21:15:00+00:00 | 2023-09-19T05:26:00.954782+00:00 |
| pysec-2023-171 |
|
Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authent… | apache-airflow | 2023-09-12T12:15:00+00:00 | 2023-09-12T14:27:23.735580+00:00 |
| pysec-2023-170 |
|
Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authent… | apache-airflow | 2023-09-12T12:15:00+00:00 | 2023-09-12T14:27:23.660908+00:00 |
| pysec-2023-172 |
4.3 (3.1)
|
The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, … | hana-ml | 2023-09-12T02:15:00Z | 2023-09-29T22:26:12.812435Z |
| pysec-2023-169 |
7.8 (3.1)
|
Git Providers can read from the wrong environment because they get the same cache directo… | salt | 2023-09-05T11:15:00+00:00 | 2023-09-08T20:23:17.288300+00:00 |
| pysec-2023-166 |
5.3 (3.1)
|
Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving se… | salt | 2023-09-05T11:15:00+00:00 | 2023-09-07T20:23:20.197102+00:00 |
| pysec-2023-168 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language. In affected versions the order of evaluation… | vyper | 2023-09-04T18:15:00+00:00 | 2023-09-08T16:30:59.497777+00:00 |
| pysec-2023-167 |
5.3 (3.1)
|
Vyper is a Pythonic Smart Contract Language. For the following (probably non-exhaustive) … | vyper | 2023-09-04T18:15:00+00:00 | 2023-09-08T15:22:00.929480+00:00 |
| pysec-2023-163 |
9.8 (3.1)
|
An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary… | numexpr | 2023-09-01T16:15:00Z | 2025-02-20T09:11:38.521949Z |
| pysec-2023-162 |
9.8 (3.1)
|
An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary… | langchain | 2023-09-01T16:15:00Z | 2023-10-04T16:56:57.465474Z |
| pysec-2023-165 |
6.5 (3.1)
|
GitPython is a python library used to interact with Git repositories. In order to resolv… | gitpython | 2023-08-30T22:15:00+00:00 | 2023-09-07T14:33:25.683922+00:00 |
| pysec-2023-164 |
4.7 (3.1)
|
borgbackup is an opensource, deduplicating archiver with compression and authenticated en… | borgbackup | 2023-08-30T18:15:00+00:00 | 2023-09-06T16:31:20.448538+00:00 |
| pysec-2023-159 |
7.7 (3.1)
|
RestrictedPython is a restricted execution environment for Python to run untrusted code. … | restrictedpython | 2023-08-30T18:15:00+00:00 | 2023-09-05T16:32:17.658660+00:00 |
| pysec-2023-157 |
6.1 (3.1)
|
jupyter-server is the backend for Jupyter web applications. Improper cross-site credentia… | jupyter-server | 2023-08-28T21:15:00+00:00 | 2023-09-01T20:23:47.344401+00:00 |
| pysec-2023-155 |
6.1 (3.1)
|
jupyter-server is the backend for Jupyter web applications. Open Redirect Vulnerability. … | jupyter-server | 2023-08-28T21:15:00+00:00 | 2023-09-01T16:31:48.441782+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-1160 | Malicious code in xpack-subscription (npm) | 2026-03-03T04:08:34Z | 2026-03-08T01:39:48Z |
| mal-2026-1159 | Malicious code in xpack-per-device (npm) | 2026-03-03T04:08:34Z | 2026-03-08T01:39:48Z |
| mal-2026-1152 | Malicious code in pool-check (npm) | 2026-03-03T04:07:11Z | 2026-03-08T01:39:46Z |
| mal-2026-1149 | Malicious code in hackpreinstall (npm) | 2026-03-03T04:02:41Z | 2026-03-08T01:39:44Z |
| mal-2026-1144 | Malicious code in roku-aihub (PyPI) | 2026-03-02T23:51:19Z | 2026-03-12T00:30:43Z |
| mal-2026-1136 | Malicious code in amigapythonupdater (PyPI) | 2026-03-02T18:49:05Z | 2026-03-02T18:49:05Z |
| mal-2026-1142 | Malicious code in wisecloudcyberark (PyPI) | 2026-03-02T18:48:31Z | 2026-03-02T18:48:31Z |
| mal-2026-1140 | Malicious code in heimdal-credentials (PyPI) | 2026-03-02T18:48:28Z | 2026-03-02T18:48:28Z |
| mal-2026-1143 | Malicious code in wisecloudsecrets (PyPI) | 2026-03-02T18:48:25Z | 2026-03-02T18:48:25Z |
| mal-2026-1137 | Malicious code in fwk-amigapython (PyPI) | 2026-03-02T18:48:22Z | 2026-03-02T18:48:22Z |
| mal-2026-1138 | Malicious code in fwk-amigapython-amigamlserver (PyPI) | 2026-03-02T18:48:18Z | 2026-03-02T18:48:18Z |
| mal-2026-1139 | Malicious code in fwk-amigapython-rest-server (PyPI) | 2026-03-02T18:48:10Z | 2026-03-02T18:48:10Z |
| mal-2026-1141 | Malicious code in identityapi (PyPI) | 2026-03-02T18:47:02Z | 2026-03-02T18:47:03Z |
| mal-2026-1128 | Malicious code in colorize-console (npm) | 2026-03-02T15:56:58Z | 2026-03-08T01:39:43Z |
| mal-2026-1120 | Malicious code in @nazi-team/libsignal-node (npm) | 2026-03-02T15:56:58Z | 2026-03-08T01:39:42Z |
| mal-2026-1119 | Malicious code in @nazi-team/baileys (npm) | 2026-03-02T15:56:58Z | 2026-03-08T01:39:42Z |
| mal-2026-1122 | Malicious code in @sanzxcode/libsignal-node (npm) | 2026-03-02T15:55:38Z | 2026-03-08T01:39:42Z |
| mal-2026-1121 | Malicious code in @sanzxcode/baileys (npm) | 2026-03-02T15:55:38Z | 2026-03-08T01:39:42Z |
| mal-2026-1118 | Malicious code in @daffadeveloper/libsignal-node (npm) | 2026-03-02T15:54:17Z | 2026-03-08T01:39:42Z |
| mal-2026-1117 | Malicious code in @daffadeveloper/baileys (npm) | 2026-03-02T15:54:17Z | 2026-03-08T01:39:42Z |
| mal-2026-1135 | Malicious code in yuji-baileys (npm) | 2026-03-02T15:48:43Z | 2026-03-08T01:39:48Z |
| mal-2026-1133 | Malicious code in sukuna-baileys (npm) | 2026-03-02T15:48:43Z | 2026-03-08T01:39:47Z |
| mal-2026-1131 | Malicious code in ngaturkids (npm) | 2026-03-02T15:48:43Z | 2026-03-08T01:39:46Z |
| mal-2026-1129 | Malicious code in danzxz (npm) | 2026-03-02T15:48:43Z | 2026-03-08T01:39:43Z |
| mal-2026-1130 | Malicious code in kazumarii (npm) | 2026-03-02T15:48:42Z | 2026-03-08T01:39:45Z |
| mal-2026-1134 | Malicious code in ts-big-number (npm) | 2026-03-02T15:46:42Z | 2026-03-08T01:39:48Z |
| mal-2026-1132 | Malicious code in npm-doc-builder (npm) | 2026-03-02T15:46:42Z | 2026-03-08T01:39:46Z |
| mal-2026-1127 | Malicious code in @yaoii-bails/yaoii-baileys (npm) | 2026-03-02T15:45:27Z | 2026-03-08T01:39:42Z |
| mal-2026-1126 | Malicious code in @yaoii-bails/socket (npm) | 2026-03-02T15:45:27Z | 2026-03-08T01:39:42Z |
| mal-2026-1125 | Malicious code in @yaoii-bails/libsignall-node (npm) | 2026-03-02T15:45:27Z | 2026-03-08T01:39:42Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2133 | Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2025-09-25T22:00:00.000+00:00 | 2025-09-25T22:00:00.000+00:00 |
| wid-sec-w-2025-2132 | Linux Kernel: Mehrere Schwachstellen | 2025-09-24T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2129 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-09-24T22:00:00.000+00:00 | 2026-02-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2126 | Drupal Module: Mehrere Schwachstellen | 2025-09-24T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2122 | Cisco Aironet Access Point: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-09-24T22:00:00.000+00:00 | 2025-09-24T22:00:00.000+00:00 |
| wid-sec-w-2025-2121 | Cisco Aironet Access Point: Schwachstelle ermöglicht Manipulation | 2025-09-24T22:00:00.000+00:00 | 2025-09-24T22:00:00.000+00:00 |
| wid-sec-w-2025-2120 | Cisco SD-WAN: Schwachstelle ermöglicht Umgehung von Sicherheitsmaßnahmen | 2025-09-24T22:00:00.000+00:00 | 2025-09-24T22:00:00.000+00:00 |
| wid-sec-w-2025-2119 | Cisco Industrial Ethernet Switches: Schwachstelle ermöglicht Denial of Service | 2025-09-24T22:00:00.000+00:00 | 2025-09-24T22:00:00.000+00:00 |
| wid-sec-w-2025-2117 | Google Chrome / Microsoft Edge: Mehrere Schwachstellen | 2025-09-23T22:00:00.000+00:00 | 2025-09-29T22:00:00.000+00:00 |
| wid-sec-w-2025-2115 | WordPress Core: Mehrere Schwachstellen | 2025-09-23T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2114 | Dell PowerEdge BIOS und iDRAC9: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-09-23T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2111 | Proxmox Virtual Environment: Schwachstelle ermöglicht unbekannte Auswirkungen | 2025-09-22T22:00:00.000+00:00 | 2025-09-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2110 | LibTiff: Schwachstelle ermöglicht Codeausführung | 2025-09-22T22:00:00.000+00:00 | 2026-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2109 | Autodesk Produkte: Schwachstelle ermöglicht Codeausführung | 2025-09-22T22:00:00.000+00:00 | 2025-11-09T23:00:00.000+00:00 |
| wid-sec-w-2025-2107 | Linux Kernel: Mehrere Schwachstellen | 2025-09-22T22:00:00.000+00:00 | 2026-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2104 | WebKitGTK: Mehrere Schwachstellen | 2025-09-22T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2101 | Ghostscript: Schwachstellen ermöglichen Codeausführung | 2025-09-21T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2099 | Linux Kernel: Mehrere Schwachstellen | 2025-09-21T22:00:00.000+00:00 | 2026-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2098 | IBM SPSS: Mehrere Schwachstellen | 2025-09-21T22:00:00.000+00:00 | 2026-01-28T23:00:00.000+00:00 |
| wid-sec-w-2025-2092 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-09-18T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2089 | Tor: Schwachstelle ermöglicht Denial of Service | 2025-09-18T22:00:00.000+00:00 | 2025-09-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2087 | Linux Kernel: Mehrere Schwachstellen | 2025-09-17T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2086 | Jenkins: Mehrere Schwachstellen | 2025-09-17T22:00:00.000+00:00 | 2025-09-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2085 | Red Hat OpenShift Service Mesh: Mehrere Schwachstellen | 2025-09-17T22:00:00.000+00:00 | 2026-01-05T23:00:00.000+00:00 |
| wid-sec-w-2025-2083 | Ruby: Schwachstelle ermöglicht Denial of Service | 2025-09-17T22:00:00.000+00:00 | 2026-01-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2079 | JetBrains TeamCity: Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2025-09-17T22:00:00.000+00:00 |
| wid-sec-w-2025-2078 | Red Hat Enterprise Linux (Developer Hub): Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2026-02-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2077 | Linux Kernel: Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2026-01-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2076 | Liferay Portal: Mehrere Schwachstellen | 2025-09-16T22:00:00.000+00:00 | 2025-09-17T22:00:00.000+00:00 |
| wid-sec-w-2025-2075 | Podman: Schwachstelle ermöglicht Manipulation von Dateien | 2025-09-16T22:00:00.000+00:00 | 2025-10-01T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-140-03 | Danfoss AK-SM 8xxA Series (Update A) | 2025-05-20T06:00:00.000000Z | 2025-08-26T06:00:00.000000Z |
| icsa-25-140-02 | National Instruments Circuit Design Suite | 2025-05-20T06:00:00.000000Z | 2025-05-20T06:00:00.000000Z |
| icsa-25-140-01 | ABUP IoT Cloud Platform | 2025-05-20T06:00:00.000000Z | 2025-05-20T06:00:00.000000Z |
| icsa-25-140-04 | Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update E) | 2025-05-20T04:00:00.000000Z | 2026-02-12T05:00:00.000000Z |
| va-25-136-01 | IBM Security Guardium stored cross-site scripting | 2025-05-16T20:14:51Z | 2025-06-16T00:00:00Z |
| icsa-25-135-20 | Schneider Electric EcoStruxure Power Build Rapsody | 2025-05-15T06:00:00.000000Z | 2025-05-15T06:00:00.000000Z |
| icsa-25-135-19 | ECOVACS DEEBOT Vacuum and Base Station (Update A) | 2025-05-15T06:00:00.000000Z | 2025-07-10T06:00:00.000000Z |
| icsa-25-140-05 | Siemens Siveillance Video | 2025-05-14T00:00:00.000000Z | 2025-05-14T00:00:00.000000Z |
| icsa-25-133-04 | ABB Automation Builder | 2025-05-13T06:00:00.000000Z | 2025-05-13T06:00:00.000000Z |
| icsa-25-153-02 | Schneider Electric EcoStruxure Power Build Rapsody | 2025-05-13T04:00:00.000000Z | 2025-05-13T04:00:00.000000Z |
| icsa-25-140-08 | Schneider Electric Modicon Controllers (Update B) | 2025-05-13T04:00:00.000000Z | 2025-10-14T07:00:00.000000Z |
| icsa-25-140-07 | Schneider Electric Galaxy VS, Galaxy VL, Galaxy VXL (Update A) | 2025-05-13T04:00:00.000000Z | 2025-09-24T04:00:00.000000Z |
| icsa-25-140-06 | Schneider Electric PrismaSeT Active - Wireless Panel Server | 2025-05-13T04:00:00.000000Z | 2025-05-13T04:00:00.000000Z |
| icsa-25-148-02 | Siemens SiPass Integrated | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-18 | Siemens SCALANCE LPE9403 | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-17 | Siemens RUGGEDCOM ROX II | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-135-16 | Siemens MS/TP Point Pickup Module | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-15 | Siemens Mendix OIDC SSO | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-135-14 | Siemens APOGEE PXC and TALON TC Series | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-13 | Siemens SIRIUS | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-12 | Siemens SIMATIC PCS | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-11 | Siemens Polarion | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-10 | Siemens OZW Web Servers | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-09 | Siemens User Management Component (UMC) | 2025-05-13T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-25-135-08 | Siemens VersiCharge AC Series EV Chargers | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-07 | Siemens SIMATIC IPC RS-828A | 2025-05-13T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-25-135-06 | Siemens Teamcenter Visualization | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-05 | Siemens SIPROTEC and SICAM | 2025-05-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-135-04 | Siemens Desigo | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-135-03 | Siemens BACnet ATEC Devices | 2025-05-13T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-nxos-ebgp-dos-l3qcwvj | Cisco NX-OS Software External Border Gateway Protocol Denial of Service Vulnerability | 2024-02-28T16:00:00+00:00 | 2024-02-28T16:00:00+00:00 |
| cisco-sa-ipv6-mpls-dos-r9ycxkwm | Cisco NX-OS Software MPLS Encapsulated IPv6 Denial of Service Vulnerability | 2024-02-28T16:00:00+00:00 | 2024-02-28T16:00:00+00:00 |
| cisco-sa-cuic-access-control-jjszqmjj | Cisco Unified Intelligence Center Insufficient Access Control Vulnerability | 2024-02-21T16:00:00+00:00 | 2024-02-21T16:00:00+00:00 |
| cisco-sa-expressway-csrf-knnzdmj3 | Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities | 2024-02-07T16:00:00+00:00 | 2024-02-12T17:55:43+00:00 |
| cisco-sa-clamav-hdffu6t | ClamAV OLE2 File Format Parsing Denial of Service Vulnerability | 2024-02-07T16:00:00+00:00 | 2024-02-13T17:57:43+00:00 |
| cisco-sa-sb-bus-acl-bypass-5zn9hnjk | Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability | 2024-01-24T16:00:00+00:00 | 2024-01-24T16:00:00+00:00 |
| cisco-sa-cucm-rce-bwnzqcum | Cisco Unified Communications Products Remote Code Execution Vulnerability | 2024-01-24T16:00:00+00:00 | 2024-01-30T19:16:46+00:00 |
| cisco-sa-cuc-xss-9tfuu5ms | Cisco Unity Connection Cross-Site Scripting Vulnerability | 2024-01-24T16:00:00+00:00 | 2024-01-24T16:00:00+00:00 |
| cisco-sa-tms-portal-xss-axnevg3s | Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities | 2024-01-10T16:00:00+00:00 | 2024-01-12T15:18:40+00:00 |
| cisco-sa-thouseyes-privesc-dmzhg3qv | Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability | 2024-01-10T16:00:00+00:00 | 2024-01-10T16:00:00+00:00 |
| cisco-sa-sb-wap-inject-bhstwgxo | Cisco WAP371 Wireless Access Point Command Injection Vulnerability | 2024-01-10T16:00:00+00:00 | 2024-01-10T16:00:00+00:00 |
| cisco-sa-pi-epnm-wkzjeyeq | Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities | 2024-01-10T16:00:00+00:00 | 2024-01-10T16:00:00+00:00 |
| cisco-sa-ise-xss-bl4vtml | Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability | 2024-01-10T16:00:00+00:00 | 2024-01-10T16:00:00+00:00 |
| cisco-sa-cuc-unauth-afu-froyscsd | Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability | 2024-01-10T16:00:00+00:00 | 2024-02-05T17:23:14+00:00 |
| cisco-sa-broadworks-xss-6syj82ju | Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability | 2024-01-10T16:00:00+00:00 | 2024-01-23T17:43:55+00:00 |
| cisco-sa-struts-c2kcmkmt | Apache Struts Vulnerability Affecting Cisco Products: December 2023 | 2023-12-12T16:00:00+00:00 | 2023-12-21T22:23:04+00:00 |
| cisco-sa-asa-ssl-vpn-y88qom77 | Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability | 2023-12-05T16:00:00+00:00 | 2023-12-05T16:00:00+00:00 |
| cisco-sa-uipphone-xss-ncmuykqa | Cisco IP Phone Stored Cross-Site Scripting Vulnerability | 2023-11-15T16:00:00+00:00 | 2023-11-15T16:00:00+00:00 |
| cisco-sa-secure-endpoint-dos-rzogfknd | Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability | 2023-11-15T16:00:00+00:00 | 2023-11-15T16:00:00+00:00 |
| cisco-sa-ise-mult-j-kxpnynr | Cisco Identity Services Engine Vulnerabilities | 2023-11-15T16:00:00+00:00 | 2023-11-15T16:00:00+00:00 |
| cisco-sa-appd-php-authpriv-gebwtvu5 | Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability | 2023-11-15T16:00:00+00:00 | 2023-11-15T16:00:00+00:00 |
| cisco-sa-accsc-dos-9slzkz8 | Cisco Secure Client Software Denial of Service Vulnerabilities | 2023-11-15T16:00:00+00:00 | 2023-11-15T16:00:00+00:00 |
| cisco-sa-snort-ftd-zxytnjom | Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-sa-ftd-snort3-urldos-occfqtex | Cisco Firepower Threat Defense Software SSL/TLS URL Category and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ise-injection-qexegrcw | Cisco Identity Services Engine Command Injection Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ise-file-upload-fcelp4xs | Cisco Identity Services Engine Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftdsnort3sip-bypass-lmz2thkn | Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-snort3acp-bypass-3bdr2beh | Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability | 2023-11-01T16:00:00+00:00 | 2024-02-06T18:30:17+00:00 |
| cisco-sa-ftd-snort3-uanuntcv | Cisco Firepower Threat Defense Software Snort 3 Detection Engine Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-snort3-8u4hhxh8 | Cisco Firepower Threat Defense Software SSL and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2026-21895 | rsa crate has potential panic on a prime being equal to 1 | 2026-01-02T00:00:00.000Z | 2026-01-20T14:47:37.000Z |
| msrc_cve-2026-21860 | Werkzeug safe_join() allows Windows special device names with compound extensions | 2026-01-02T00:00:00.000Z | 2026-02-21T03:49:22.000Z |
| msrc_cve-2026-21444 | libtpms returns wrong initialization vector when certain symmetric ciphers are used | 2026-01-02T00:00:00.000Z | 2026-01-13T01:37:01.000Z |
| msrc_cve-2026-21441 | urllib3 vulnerable to decompression-bomb safeguard bypass when following HTTP redirects (streaming API) | 2026-01-02T00:00:00.000Z | 2026-02-19T01:13:26.000Z |
| msrc_cve-2026-0992 | Libxml2: libxml2: denial of service via crafted xml catalogs | 2026-01-02T00:00:00.000Z | 2026-03-04T14:35:49.000Z |
| msrc_cve-2026-0990 | Libxml2: libxml2: denial of service via uncontrolled recursion in xml catalog processing | 2026-01-02T00:00:00.000Z | 2026-03-04T14:35:40.000Z |
| msrc_cve-2026-0989 | Libxml2: unbounded relaxng include recursion leading to stack overflow | 2026-01-02T00:00:00.000Z | 2026-03-04T14:35:58.000Z |
| msrc_cve-2026-0915 | getnetbyaddr and getnetbyaddr_r leak stack contents to DNS resovler | 2026-01-02T00:00:00.000Z | 2026-02-18T14:49:58.000Z |
| msrc_cve-2026-0897 | Denial of Service in Keras via Excessive Memory Allocation in HDF5 Metadata | 2026-01-02T00:00:00.000Z | 2026-02-18T14:49:12.000Z |
| msrc_cve-2026-0861 | Integer overflow in memalign leads to heap corruption | 2026-01-02T00:00:00.000Z | 2026-02-18T14:37:56.000Z |
| msrc_cve-2026-0719 | Libsoup: signed to unsigned conversion error leading to stack-based buffer overflow in libsoup ntlm authentication | 2026-01-02T00:00:00.000Z | 2026-01-13T01:45:18.000Z |
| msrc_cve-2026-0716 | Libsoup: out-of-bounds read in libsoup websocket frame processing | 2026-01-02T00:00:00.000Z | 2026-03-04T14:35:29.000Z |
| msrc_cve-2025-71163 | dmaengine: idxd: fix device leaks on compat bind and unbind | 2026-01-02T00:00:00.000Z | 2026-03-03T15:03:00.000Z |
| msrc_cve-2025-71162 | dmaengine: tegra-adma: Fix use-after-free | 2026-01-02T00:00:00.000Z | 2026-03-03T01:39:16.000Z |
| msrc_cve-2025-71161 | dm-verity: disable recursive forward error correction | 2026-01-02T00:00:00.000Z | 2026-03-03T15:02:38.000Z |
| msrc_cve-2025-71160 | netfilter: nf_tables: avoid chain re-validation if possible | 2026-01-02T00:00:00.000Z | 2026-03-03T15:02:19.000Z |
| msrc_cve-2025-71154 | net: usb: rtl8150: fix memory leak on usb_submit_urb() failure | 2026-01-02T00:00:00.000Z | 2026-03-03T15:02:02.000Z |
| msrc_cve-2025-71152 | net: dsa: properly keep track of conduit reference | 2026-01-02T00:00:00.000Z | 2026-03-03T15:01:41.000Z |
| msrc_cve-2025-71150 | ksmbd: Fix refcount leak when invalid session is found on session lookup | 2026-01-02T00:00:00.000Z | 2026-03-03T15:01:24.000Z |
| msrc_cve-2025-71147 | KEYS: trusted: Fix a memory leak in tpm2_load_cmd | 2026-01-02T00:00:00.000Z | 2026-03-03T15:01:05.000Z |
| msrc_cve-2025-71143 | clk: samsung: exynos-clkout: Assign .num before accessing .hws | 2026-01-02T00:00:00.000Z | 2026-02-21T04:16:38.000Z |
| msrc_cve-2025-71138 | drm/msm/dpu: Add missing NULL pointer check for pingpong interface | 2026-01-02T00:00:00.000Z | 2026-02-18T14:46:38.000Z |
| msrc_cve-2025-71137 | octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" | 2026-01-02T00:00:00.000Z | 2026-02-18T14:41:20.000Z |
| msrc_cve-2025-71136 | media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() | 2026-01-02T00:00:00.000Z | 2026-02-18T14:38:41.000Z |
| msrc_cve-2025-71133 | RDMA/irdma: avoid invalid read in irdma_net_event | 2026-01-02T00:00:00.000Z | 2026-02-21T04:26:01.000Z |
| msrc_cve-2025-71132 | smc91x: fix broken irq-context in PREEMPT_RT | 2026-01-02T00:00:00.000Z | 2026-02-18T14:40:28.000Z |
| msrc_cve-2025-71131 | crypto: seqiv - Do not use req->iv after crypto_aead_encrypt | 2026-01-02T00:00:00.000Z | 2026-02-18T14:44:07.000Z |
| msrc_cve-2025-71130 | drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer | 2026-01-02T00:00:00.000Z | 2026-02-18T14:44:46.000Z |
| msrc_cve-2025-71129 | LoongArch: BPF: Sign extend kfunc call arguments | 2026-01-02T00:00:00.000Z | 2026-02-18T14:42:51.000Z |
| msrc_cve-2025-71127 | wifi: mac80211: Discard Beacon frames to non-broadcast address | 2026-01-02T00:00:00.000Z | 2026-02-18T14:44:12.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0083 | Kwetsbaarheden verholpen in Fortinet FortiSandbox | 2025-03-12T10:51:18.487649Z | 2025-03-12T10:51:18.487649Z |
| ncsc-2025-0082 | Kwetsbaarheden verholpen in FortiOS, FortiProxy, FortiPAM, FortiSRA en FortiWeb. | 2025-03-12T10:46:38.451715Z | 2025-03-12T10:46:38.451715Z |
| ncsc-2025-0081 | Kwetsbaarheden verholpen in Microsoft Azure | 2025-03-11T18:45:19.628300Z | 2025-03-11T18:45:19.628300Z |
| ncsc-2025-0080 | Kwetsbaarheden verholpen in Microsoft Office | 2025-03-11T18:44:43.336447Z | 2025-03-11T18:44:43.336447Z |
| ncsc-2025-0079 | Kwetsbaarheden verholpen in Microsoft Developer Tools | 2025-03-11T18:44:07.766518Z | 2025-03-11T18:44:07.766518Z |
| ncsc-2025-0078 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-03-11T18:43:14.505624Z | 2025-03-11T18:43:14.505624Z |
| ncsc-2025-0077 | Kwetsbaarheden verholpen in Siemens producten | 2025-03-11T12:30:29.277759Z | 2025-03-11T12:30:29.277759Z |
| ncsc-2025-0076 | Kwetsbaarheden verholpen in SAP software | 2025-03-11T12:20:06.258896Z | 2025-03-11T12:20:06.258896Z |
| ncsc-2025-0075 | Kwetsbaarheid verholpen in Elastic Kibana | 2025-03-07T13:51:51.509917Z | 2025-03-07T13:51:51.509917Z |
| ncsc-2025-0074 | Kwetsbaarheden verholpen in IBM Storage producten | 2025-03-04T14:14:48.398751Z | 2025-03-04T14:14:48.398751Z |
| ncsc-2025-0073 | Kwetsbaarheden verholpen in VMware producten | 2025-03-04T14:11:56.959153Z | 2025-03-04T14:11:56.959153Z |
| ncsc-2025-0072 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-03-04T10:15:32.203439Z | 2025-03-04T10:15:32.203439Z |
| ncsc-2025-0071 | Kwetsbaarheid verholpen in Zohocorp ManageEngine ADSelfService Plus | 2025-03-03T14:11:46.709999Z | 2025-03-03T14:11:46.709999Z |
| ncsc-2025-0070 | Kwetsbaarheden verholpen in GitLab | 2025-03-03T14:10:30.120360Z | 2025-03-03T14:10:30.120360Z |
| ncsc-2025-0069 | Kwetsbaarheid verholpen in MITRE Caldera | 2025-02-25T07:42:48.535179Z | 2025-02-25T07:42:48.535179Z |
| ncsc-2025-0068 | Kwetsbaarheden verholpen in Mattermost | 2025-02-24T12:04:19.392654Z | 2025-02-24T12:04:19.392654Z |
| ncsc-2025-0067 | Kwetsbaarheid verholpen in Exim | 2025-02-21T12:54:32.376733Z | 2025-02-21T12:54:32.376733Z |
| ncsc-2025-0066 | Kwetsbaarheid verholpen in XWiki | 2025-02-21T12:33:24.503983Z | 2025-02-21T12:33:24.503983Z |
| ncsc-2025-0065 | Kwetsbaarheden verholpen in Nagios XI | 2025-02-21T12:32:41.120020Z | 2025-02-21T12:32:41.120020Z |
| ncsc-2025-0064 | Kwetsbaarheden verholpen in IBM Cognos Controller | 2025-02-21T08:40:26.849797Z | 2025-02-21T08:40:26.849797Z |
| ncsc-2025-0063 | Kwetsbaarheid verholpen in PostgreSQL | 2025-02-19T09:11:55.511966Z | 2025-02-19T09:11:55.511966Z |
| ncsc-2025-0062 | Kwetsbaarheid verholpen in Juniper Session Smart Router | 2025-02-18T14:25:56.916762Z | 2025-02-18T14:25:56.916762Z |
| ncsc-2025-0061 | Kwetsbaarheden verholpen in Siemens producten | 2025-02-14T08:46:28.240775Z | 2025-02-14T08:46:28.240775Z |
| ncsc-2025-0060 | Kwetsbaarheid verholpen in Veeam | 2025-02-13T09:48:03.729080Z | 2025-02-13T09:48:03.729080Z |
| ncsc-2025-0059 | Kwetsbaarheid verholpen in Fortinet FortiOS | 2025-02-13T09:29:35.625977Z | 2025-02-13T09:29:35.625977Z |
| ncsc-2025-0058 | Kwetsbaarheden verholpen in Palo Alto Networks PAN-OS | 2025-02-13T09:28:54.459828Z | 2025-02-21T08:08:58.513404Z |
| ncsc-2025-0057 | Kwetsbaarheden verholpen in GitLab CE/EE | 2025-02-13T09:09:26.087113Z | 2025-02-13T09:09:26.087113Z |
| ncsc-2025-0056 | Kwetsbaarheden verholpen in Schneider Electric ASCO | 2025-02-13T09:07:55.191514Z | 2025-02-13T09:07:55.191514Z |
| ncsc-2025-0055 | Kwetsbaarheid verholpen in CrowdStrike Falcon sensor | 2025-02-13T08:22:07.880125Z | 2025-02-13T08:22:07.880125Z |
| ncsc-2025-0054 | Kwetsbaarheden verholpen in Adobe Commerce en Magento | 2025-02-13T06:46:08.560650Z | 2025-02-13T06:46:08.560650Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2026:20105-1 | Security update for sbctl | 2026-01-23T10:02:42Z | 2026-01-23T10:02:42Z |
| opensuse-su-2026:10087-1 | tdom-0.9.6-1.1 on GA media | 2026-01-23T00:00:00Z | 2026-01-23T00:00:00Z |
| opensuse-su-2026:10086-1 | openCryptoki-3.26.0-4.1 on GA media | 2026-01-23T00:00:00Z | 2026-01-23T00:00:00Z |
| opensuse-su-2026:10085-1 | libxml2-16-2.14.5-2.1 on GA media | 2026-01-23T00:00:00Z | 2026-01-23T00:00:00Z |
| opensuse-su-2026:10084-1 | chromedriver-144.0.7559.96-1.1 on GA media | 2026-01-23T00:00:00Z | 2026-01-23T00:00:00Z |
| opensuse-su-2026:20091-1 | Security update for bind | 2026-01-22T16:45:35Z | 2026-01-22T16:45:35Z |
| opensuse-su-2026:20090-1 | Security update for busybox | 2026-01-22T16:45:35Z | 2026-01-22T16:45:35Z |
| opensuse-su-2026:20089-1 | Security update for python-pyasn1 | 2026-01-22T16:42:14Z | 2026-01-22T16:42:14Z |
| opensuse-su-2026:20088-1 | Security update for python-urllib3 | 2026-01-22T15:55:37Z | 2026-01-22T15:55:37Z |
| opensuse-su-2026:20086-1 | Security update for python-virtualenv | 2026-01-22T15:55:37Z | 2026-01-22T15:55:37Z |
| opensuse-su-2026:20087-1 | Security update for python-marshmallow | 2026-01-22T15:55:36Z | 2026-01-22T15:55:36Z |
| opensuse-su-2026:20085-1 | Security update for go1.25 | 2026-01-22T15:49:20Z | 2026-01-22T15:49:20Z |
| opensuse-su-2026:20084-1 | Security update for gdk-pixbuf | 2026-01-22T14:36:57Z | 2026-01-22T14:36:57Z |
| opensuse-su-2026:20083-1 | Security update for libpng16 | 2026-01-22T14:29:42Z | 2026-01-22T14:29:42Z |
| opensuse-su-2026:20082-1 | Security update for rabbitmq-server | 2026-01-22T13:47:27Z | 2026-01-22T13:47:27Z |
| opensuse-su-2026:20081-1 | Security update for python313 | 2026-01-22T13:47:27Z | 2026-01-22T13:47:27Z |
| opensuse-su-2026:20080-1 | Security update for buildah | 2026-01-22T13:00:13Z | 2026-01-22T13:00:13Z |
| opensuse-su-2026:20077-1 | Security update for go1.24 | 2026-01-22T12:53:33Z | 2026-01-22T12:53:33Z |
| opensuse-su-2026:20076-1 | Security update for libheif | 2026-01-22T11:00:42Z | 2026-01-22T11:00:42Z |
| opensuse-su-2026:20075-1 | Security update for libpcap | 2026-01-22T10:13:12Z | 2026-01-22T10:13:12Z |
| opensuse-su-2026:10083-1 | vlang-0.5-2.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10082-1 | libsuricata8_0_3-8.0.3-1.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10081-1 | libsubid-devel-4.19.2-2.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:10080-1 | bind-9.20.18-1.1 on GA media | 2026-01-22T00:00:00Z | 2026-01-22T00:00:00Z |
| opensuse-su-2026:20100-1 | Security update for gimp | 2026-01-21T13:31:29Z | 2026-01-21T13:31:29Z |
| opensuse-su-2026:20072-1 | Security update for podman | 2026-01-21T11:06:30Z | 2026-01-21T11:06:30Z |
| opensuse-su-2026:10079-1 | python311-weasyprint-68.0-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10078-1 | python311-pyasn1-0.6.2-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10077-1 | python311-jaraco.context-6.1.0-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| opensuse-su-2026:10076-1 | python311-FontTools-4.61.1-1.1 on GA media | 2026-01-21T00:00:00Z | 2026-01-21T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2026:3094 | Red Hat Security Advisory: protobuf security update | 2026-02-23T15:47:47+00:00 | 2026-03-18T03:17:17+00:00 |
| rhsa-2026:3092 | Red Hat Security Advisory: golang-github-openprinting-ipp-usb security update | 2026-02-23T15:34:28+00:00 | 2026-03-18T16:29:15+00:00 |
| rhsa-2026:3088 | Red Hat Security Advisory: kernel security update | 2026-02-23T15:20:37+00:00 | 2026-03-18T03:18:21+00:00 |
| rhsa-2026:3089 | Red Hat Security Advisory: Red Hat Developer Hub 1.8.4 release. | 2026-02-23T14:46:08+00:00 | 2026-03-18T16:29:14+00:00 |
| rhsa-2026:3087 | Red Hat Security Advisory: RHTAS 1.3.2 - Red Hat Trusted Artifact Signer Release | 2026-02-23T13:35:49+00:00 | 2026-03-18T16:29:12+00:00 |
| rhsa-2026:3083 | Red Hat Security Advisory: kernel security update | 2026-02-23T13:25:32+00:00 | 2026-03-18T03:18:38+00:00 |
| rhsa-2026:3077 | Red Hat Security Advisory: qemu-kvm security update | 2026-02-23T11:47:18+00:00 | 2026-03-18T03:11:10+00:00 |
| rhsa-2026:3078 | Red Hat Security Advisory: grafana security update | 2026-02-23T11:43:01+00:00 | 2026-03-18T03:18:49+00:00 |
| rhsa-2026:3067 | Red Hat Security Advisory: freerdp security update | 2026-02-23T10:55:26+00:00 | 2026-03-18T03:18:50+00:00 |
| rhsa-2026:3066 | Red Hat Security Advisory: kernel security update | 2026-02-23T10:50:56+00:00 | 2026-03-18T03:18:52+00:00 |
| rhsa-2026:3068 | Red Hat Security Advisory: freerdp security update | 2026-02-23T10:17:46+00:00 | 2026-03-18T03:18:50+00:00 |
| rhsa-2026:3059 | Red Hat Security Advisory: protobuf security update | 2026-02-23T08:32:48+00:00 | 2026-03-18T03:18:03+00:00 |
| rhsa-2026:3058 | Red Hat Security Advisory: ImageMagick security update | 2026-02-23T06:48:41+00:00 | 2026-03-18T03:18:04+00:00 |
| rhsa-2026:3053 | Red Hat Security Advisory: butane security update | 2026-02-23T06:47:46+00:00 | 2026-03-18T16:29:11+00:00 |
| rhsa-2026:3034 | Red Hat Security Advisory: munge security update | 2026-02-23T02:17:05+00:00 | 2026-03-18T03:18:48+00:00 |
| rhsa-2026:3040 | Red Hat Security Advisory: grafana-pcp security update | 2026-02-23T02:14:35+00:00 | 2026-03-18T16:29:17+00:00 |
| rhsa-2026:3042 | Red Hat Security Advisory: openssl security update | 2026-02-23T02:11:15+00:00 | 2026-03-18T16:34:40+00:00 |
| rhsa-2026:3037 | Red Hat Security Advisory: freerdp security update | 2026-02-23T01:59:00+00:00 | 2026-03-18T03:18:47+00:00 |
| rhsa-2026:3032 | Red Hat Security Advisory: munge security update | 2026-02-23T01:53:05+00:00 | 2026-03-18T03:18:52+00:00 |
| rhsa-2026:3031 | Red Hat Security Advisory: libpng15 security update | 2026-02-23T01:47:30+00:00 | 2026-03-18T03:18:52+00:00 |
| rhsa-2026:3041 | Red Hat Security Advisory: freerdp security update | 2026-02-23T01:46:55+00:00 | 2026-03-18T03:18:36+00:00 |
| rhsa-2026:3036 | Red Hat Security Advisory: freerdp security update | 2026-02-23T01:45:20+00:00 | 2026-03-18T03:18:48+00:00 |
| rhsa-2026:2746 | Red Hat Security Advisory: Red Hat build of MicroShift 4.17.49 security update | 2026-02-23T01:36:40+00:00 | 2026-03-18T16:07:30+00:00 |
| rhsa-2026:3039 | Red Hat Security Advisory: freerdp security update | 2026-02-23T01:35:55+00:00 | 2026-03-18T03:18:43+00:00 |
| rhsa-2026:3038 | Red Hat Security Advisory: freerdp security update | 2026-02-23T01:35:10+00:00 | 2026-03-18T03:18:47+00:00 |
| rhsa-2026:3033 | Red Hat Security Advisory: munge security update | 2026-02-23T01:32:20+00:00 | 2026-03-18T03:18:48+00:00 |
| rhsa-2026:3035 | Red Hat Security Advisory: grafana-pcp security update | 2026-02-23T01:30:21+00:00 | 2026-03-18T16:29:11+00:00 |
| rhsa-2026:3010 | Red Hat Security Advisory: munge security update | 2026-02-19T16:47:00+00:00 | 2026-03-18T03:18:44+00:00 |
| rhsa-2026:3013 | Red Hat Security Advisory: munge security update | 2026-02-19T16:24:11+00:00 | 2026-03-18T03:18:40+00:00 |
| rhsa-2026:3012 | Red Hat Security Advisory: munge security update | 2026-02-19T16:22:01+00:00 | 2026-03-18T03:18:40+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-847261 | SSA-847261: Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2023-02-14T00:00:00Z | 2023-03-14T00:00:00Z |
| ssa-836777 | SSA-836777: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-744259 | SSA-744259: Golang Vulnerabilities in Brownfield Connectivity - Gateway before V1.10.1 | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-686975 | SSA-686975: IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs | 2023-02-14T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-658793 | SSA-658793: Command Injection Vulnerability in SiPass integrated AC5102 / ACC-G2 and ACC-AP | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-640968 | SSA-640968: Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Multiuser Server | 2023-02-14T00:00:00Z | 2024-08-13T00:00:00Z |
| ssa-617755 | SSA-617755: Denial of Service Vulnerability in the SNMP Agent of SCALANCE X-200IRT Products | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-565356 | SSA-565356: X_T File Parsing Vulnerabilities in Simcenter Femap before V2023.1 | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-491245 | SSA-491245: Multiple File Parsing Vulnerabilities in Solid Edge | 2023-02-14T00:00:00Z | 2023-03-14T00:00:00Z |
| ssa-450613 | SSA-450613: Insyde BIOS Vulnerabilities in RUGGEDCOM APE1808 Product Family | 2023-02-14T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-252808 | SSA-252808: XPath Constraint Vulnerability in Mendix Runtime | 2023-02-14T00:00:00Z | 2023-02-14T00:00:00Z |
| ssa-997779 | SSA-997779: File Parsing Vulnerability in Solid Edge before V2023 MP1 | 2023-01-10T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-936212 | SSA-936212: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Solid Edge | 2023-01-10T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-496604 | SSA-496604: Cross-Site Scripting Vulnerability in Mendix SAML Module | 2023-01-10T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-482757 | SSA-482757: Missing Immutable Root of Trust in S7-1500 CPU devices | 2023-01-10T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-476715 | SSA-476715: Two Vulnerabilities in Automation License Manager | 2023-01-10T00:00:00Z | 2023-03-14T00:00:00Z |
| ssa-332410 | SSA-332410: Multiple Vulnerabilities in SINEC INS before V1.0 SP2 Update 1 | 2023-01-10T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-930100 | SSA-930100: Privilege Escalation Vulnerability in Simcenter STAR-CCM+ | 2022-12-13T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-849072 | SSA-849072: Several Vulnerabilities in SICAM PAS before V8.06 | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-792594 | SSA-792594: Host Header Injection Vulnerability in Polarion ALM | 2022-12-13T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-700053 | SSA-700053: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2022-12-13T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-588101 | SSA-588101: Multiple File Parsing Vulnerabilities in Parasolid | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-552874 | SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2022-12-13T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-547714 | SSA-547714: Argument Injection Vulnerability in SIMATIC WinCC OA Ultralight Client | 2022-12-13T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-436469 | SSA-436469: TCP Vulnerability in APOGEE/TALON Field Panels | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-413565 | SSA-413565: Multiple Vulnerabilities in SCALANCE Products | 2022-12-13T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-412672 | SSA-412672: Multiple OpenSSL and OpenSSH Vulnerabilities in SCALANCE X-200RNA Switch Devices before V3.2.7 | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ssa-408105 | SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products | 2022-12-13T00:00:00Z | 2025-12-09T00:00:00Z |
| ssa-382653 | SSA-382653: Multiple Denial of Service Vulnerabilities in Industrial Products | 2022-12-13T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-363821 | SSA-363821: Multiple Vulnerabilities in SCALANCE X-200RNA Switch Devices before V3.2.7 | 2022-12-13T00:00:00Z | 2022-12-13T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2026:0474-1 | Security update for the Linux Kernel | 2026-02-12T11:28:48Z | 2026-02-12T11:28:48Z |
| suse-su-2026:0473-1 | Security update for the Linux Kernel | 2026-02-12T11:26:33Z | 2026-02-12T11:26:33Z |
| suse-su-2026:0472-1 | Security update for the Linux Kernel | 2026-02-12T11:26:05Z | 2026-02-12T11:26:05Z |
| suse-su-2026:0471-1 | Security update for the Linux Kernel | 2026-02-12T11:25:44Z | 2026-02-12T11:25:44Z |
| suse-su-2026:0470-1 | Security update for rust-keylime | 2026-02-12T11:22:07Z | 2026-02-12T11:22:07Z |
| suse-su-2026:0469-1 | Security update for libsoup | 2026-02-12T11:21:36Z | 2026-02-12T11:21:36Z |
| suse-su-2026:0460-1 | Security update for python-wheel | 2026-02-11T23:30:06Z | 2026-02-11T23:30:06Z |
| suse-su-2026:0459-1 | Security update for nvidia-modprobe.cuda, nvidia-open-driver-G06-signed, nvidia-persistenced.cuda | 2026-02-11T23:29:36Z | 2026-02-11T23:29:36Z |
| suse-su-2026:0458-1 | Security update for glib2 | 2026-02-11T23:29:03Z | 2026-02-11T23:29:03Z |
| suse-su-2026:0457-1 | Security update for nodejs20 | 2026-02-11T22:21:23Z | 2026-02-11T22:21:23Z |
| suse-su-2026:0456-1 | Security update for nvidia-modprobe.cuda, nvidia-open-driver-G06-signed, nvidia-persistenced.cuda | 2026-02-11T22:21:03Z | 2026-02-11T22:21:03Z |
| suse-su-2026:20423-1 | Security update for python-pip | 2026-02-11T19:21:28Z | 2026-02-11T19:21:28Z |
| suse-su-2026:20422-1 | Security update for openjpeg2 | 2026-02-11T19:16:36Z | 2026-02-11T19:16:36Z |
| suse-su-2026:0453-1 | Security update for rust-keylime | 2026-02-11T16:17:25Z | 2026-02-11T16:17:25Z |
| suse-su-2026:0452-1 | Security update for rust-keylime | 2026-02-11T16:17:16Z | 2026-02-11T16:17:16Z |
| suse-su-2026:0451-1 | Security update for munge | 2026-02-11T16:15:59Z | 2026-02-11T16:15:59Z |
| suse-su-2026:0450-1 | Security update for munge | 2026-02-11T15:46:23Z | 2026-02-11T15:46:23Z |
| suse-su-2026:0449-1 | Security update for freerdp2 | 2026-02-11T14:53:55Z | 2026-02-11T14:53:55Z |
| suse-su-2026:0448-1 | Security update for munge | 2026-02-11T14:51:56Z | 2026-02-11T14:51:56Z |
| suse-su-2026:0447-1 | Security update for the Linux Kernel | 2026-02-11T14:05:07Z | 2026-02-11T14:05:07Z |
| suse-su-2026:0445-1 | Security update for qemu | 2026-02-11T10:20:02Z | 2026-02-11T10:20:02Z |
| suse-su-2026:0444-1 | Security update for uriparser | 2026-02-11T09:59:34Z | 2026-02-11T09:59:34Z |
| suse-su-2026:0443-1 | Security update for python-urllib3 | 2026-02-11T09:46:50Z | 2026-02-11T09:46:50Z |
| suse-su-2026:0442-1 | Security update for gimp | 2026-02-11T09:44:57Z | 2026-02-11T09:44:57Z |
| suse-su-2026:0441-1 | Security update for java-1_8_0-openjdk | 2026-02-11T09:43:39Z | 2026-02-11T09:43:39Z |
| suse-su-2026:0440-1 | Security update for python-Django | 2026-02-11T09:38:06Z | 2026-02-11T09:38:06Z |
| suse-su-2026:0439-1 | Security update for apptainer | 2026-02-11T09:30:02Z | 2026-02-11T09:30:02Z |
| suse-su-2026:0438-1 | Security update for ImageMagick | 2026-02-11T09:29:28Z | 2026-02-11T09:29:28Z |
| suse-su-2026:0437-1 | Security update for ImageMagick | 2026-02-11T09:28:49Z | 2026-02-11T09:28:49Z |
| suse-su-2026:0436-1 | Security update for qemu | 2026-02-11T09:26:28Z | 2026-02-11T09:26:28Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:20943 | Moderate: libssh security update | 2025-11-11T00:00:00Z | 2025-11-19T09:28:35Z |
| alsa-2025:20936 | Important: sqlite security update | 2025-11-11T00:00:00Z | 2025-11-19T09:25:24Z |
| alsa-2025:20935 | Important: squid security update | 2025-11-11T00:00:00Z | 2025-11-19T09:24:20Z |
| alsa-2025:20928 | Important: ipa security update | 2025-11-11T00:00:00Z | 2025-12-01T08:16:32Z |
| alsa-2025:20926 | Important: redis security update | 2025-11-11T00:00:00Z | 2025-11-19T09:23:20Z |
| alsa-2025:20922 | Important: webkit2gtk3 security update | 2025-11-11T00:00:00Z | 2025-11-19T09:22:06Z |
| alsa-2025:20909 | Important: podman security update | 2025-11-11T00:00:00Z | 2025-11-24T12:26:34Z |
| alsa-2025:20838 | Moderate: zziplib security update | 2025-11-11T00:00:00Z | 2025-11-19T09:20:52Z |
| alsa-2025:20559 | Low: shadow-utils security update | 2025-11-11T00:00:00Z | 2025-11-19T09:19:16Z |
| alsa-2025:20532 | Moderate: grub2 security update | 2025-11-11T00:00:00Z | 2025-11-19T09:18:10Z |
| alsa-2025:20518 | Moderate: kernel security update | 2025-11-11T00:00:00Z | 2025-11-19T09:15:54Z |
| alsa-2025:20478 | Moderate: zziplib security update | 2025-11-11T00:00:00Z | 2025-11-24T10:49:03Z |
| alsa-2025:20181 | Important: pam security update | 2025-11-11T00:00:00Z | 2025-11-24T10:46:53Z |
| alsa-2025:20155 | Moderate: binutils security update | 2025-11-11T00:00:00Z | 2025-11-24T10:47:58Z |
| alsa-2025:20145 | Low: shadow-utils security update | 2025-11-11T00:00:00Z | 2025-11-24T10:50:07Z |
| alsa-2025:20126 | Moderate: openssh security update | 2025-11-11T00:00:00Z | 2025-11-24T10:51:19Z |
| alsa-2025:20095 | Moderate: kernel security update | 2025-11-11T00:00:00Z | 2025-11-24T10:55:21Z |
| alsa-2025:20034 | Important: libtiff security update | 2025-11-10T00:00:00Z | 2025-11-11T12:31:49Z |
| alsa-2025:19950 | Important: bind9.18 security update | 2025-11-10T00:00:00Z | 2025-11-19T09:11:13Z |
| alsa-2025:19932 | Moderate: kernel-rt security update | 2025-11-10T00:00:00Z | 2025-11-11T12:37:42Z |
| alsa-2025:19931 | Moderate: kernel security update | 2025-11-10T00:00:00Z | 2025-11-11T14:31:40Z |
| alsa-2025:19930 | Moderate: kernel security update | 2025-11-10T00:00:00Z | 2025-11-12T09:59:32Z |
| alsa-2025:19927 | Important: runc security update | 2025-11-07T00:00:00Z | 2025-11-10T12:59:59Z |
| alsa-2025:19912 | Important: bind security update | 2025-11-06T00:00:00Z | 2025-11-10T13:13:44Z |
| alsa-2025:19909 | Important: tigervnc security update | 2025-11-06T00:00:00Z | 2025-11-07T13:19:40Z |
| alsa-2025:19906 | Important: mingw-libtiff security update | 2025-11-06T00:00:00Z | 2025-11-07T13:28:57Z |
| alsa-2025:19835 | Important: bind security update | 2025-11-05T00:00:00Z | 2025-11-07T07:49:33Z |
| alsa-2025:19793 | Important: bind9.16 security update | 2025-11-05T00:00:00Z | 2025-11-07T08:08:22Z |
| alsa-2025:19772 | Important: qt6-qtsvg security update | 2025-11-05T00:00:00Z | 2025-11-07T08:19:22Z |
| alsa-2025:19719 | Important: pcs security update | 2025-11-04T00:00:00Z | 2025-11-20T09:07:50Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2024-748 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-08-13T00:04:40.789098Z | 2024-08-13T00:04:40.789448Z |
| osv-2024-747 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-08-13T00:03:34.008550Z | 2024-08-13T00:03:34.008929Z |
| osv-2024-728 | Negative-size-param in pdf_resize_resource_arrays | 2024-08-08T00:09:33.935595Z | 2026-03-18T14:32:58.071449Z |
| osv-2024-719 | Heap-buffer-overflow in hevc_ref_pic_lists_modification | 2024-08-07T00:05:22.699506Z | 2026-03-05T14:35:24.195250Z |
| osv-2024-714 | Segv on unknown address in lwan_request_get_cookie | 2024-08-04T00:01:49.853424Z | 2025-06-17T14:38:11.268036Z |
| osv-2024-698 | Heap-use-after-free in xmlCharEncCloseFunc | 2024-07-31T00:12:19.254629Z | 2026-03-04T14:22:14.763970Z |
| osv-2024-696 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-07-31T00:03:10.056663Z | 2026-03-01T14:15:15.222358Z |
| osv-2024-695 | Stack-buffer-overflow in gf_vvc_parse_nalu_bs | 2024-07-31T00:02:35.217594Z | 2026-03-04T14:22:49.364730Z |
| osv-2024-680 | Security exception in com.github.javaparser.GeneratedJavaParser.Expression | 2024-07-26T00:06:29.761307Z | 2026-01-13T04:46:21.094915Z |
| osv-2024-679 | Heap-buffer-overflow in readImage4v2 | 2024-07-25T00:14:34.485446Z | 2026-03-14T14:26:34.498018Z |
| osv-2024-678 | Use-of-uninitialized-value in FLAC__replaygain_synthesis__apply_gain | 2024-07-25T00:09:08.389428Z | 2025-02-11T14:21:01.793416Z |
| osv-2024-677 | Segv on unknown address in gs_gc_reclaim | 2024-07-25T00:06:43.762625Z | 2026-03-18T14:32:20.684770Z |
| osv-2024-675 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-07-24T00:07:37.523933Z | 2026-01-13T04:45:52.716176Z |
| osv-2024-668 | Security exception in jflex.core.NFA.insertNFA | 2024-07-20T00:01:48.807354Z | 2024-07-20T00:01:48.807879Z |
| osv-2024-664 | Heap-buffer-overflow in gf_dash_group_get_template | 2024-07-18T00:13:55.576218Z | 2026-03-04T14:23:21.913306Z |
| osv-2024-662 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-07-18T00:06:40.832938Z | 2026-01-13T04:48:14.077313Z |
| osv-2024-661 | Security exception in java.base/java.util.ArrayList.<init> | 2024-07-18T00:05:57.665844Z | 2025-12-01T14:21:01.321021Z |
| osv-2024-659 | Index-out-of-bounds in gf_vvc_parse_nalu_bs | 2024-07-18T00:01:18.765548Z | 2026-03-04T14:23:09.585855Z |
| osv-2024-655 | Stack-buffer-overflow in UnrollChunkyBytes | 2024-07-17T00:06:15.877340Z | 2025-05-23T07:44:18.608203Z |
| osv-2024-641 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-07-14T00:06:37.034414Z | 2026-03-01T14:16:13.241262Z |
| osv-2024-640 | Null-dereference READ | 2024-07-13T00:15:12.997693Z | 2024-07-13T00:15:12.998025Z |
| osv-2024-638 | Heap-buffer-overflow in ih264d_format_convert | 2024-07-13T00:12:13.793261Z | 2024-07-16T14:18:45.507955Z |
| osv-2024-637 | Heap-buffer-overflow in ih264d_format_convert | 2024-07-13T00:08:20.097992Z | 2024-07-16T14:17:43.815608Z |
| osv-2024-636 | Null-dereference READ in evp_mac_final | 2024-07-13T00:04:18.446520Z | 2024-07-13T00:04:18.446812Z |
| osv-2024-635 | Null-dereference READ in do_evp_kdf | 2024-07-13T00:03:44.593921Z | 2024-07-13T00:03:44.594307Z |
| osv-2024-634 | Heap-buffer-overflow in htmlCurrentChar | 2024-07-13T00:03:44.049545Z | 2024-07-13T00:03:44.049863Z |
| osv-2024-627 | Heap-buffer-overflow in gf_hevc_parse_nalu_bs | 2024-07-12T00:01:41.960899Z | 2024-07-12T00:01:41.961272Z |
| osv-2024-602 | Heap-buffer-overflow in ultrahdr::getYuv420Pixel | 2024-06-29T00:09:20.554523Z | 2024-06-29T00:09:20.554958Z |
| osv-2024-592 | UNKNOWN READ in spvtools::disassemble::InstructionDisassembler::EmitInstruction | 2024-06-27T00:03:46.520119Z | 2025-01-10T05:00:09.280885Z |
| osv-2024-577 | Heap-use-after-free in sputs | 2024-06-22T00:14:08.186738Z | 2024-06-22T00:14:08.187320Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2023-0008 | X.509 Name Constraints Read Buffer Overflow | 2023-02-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0007 | Timing Oracle in RSA Decryption | 2023-02-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0006 | X.400 address type confusion in X.509 `GeneralName` | 2023-02-07T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0028 | buf_redux is Unmaintained | 2023-01-24T12:00:00Z | 2023-03-24T15:42:41Z |
| rustsec-2023-0019 | `kuchiki` is unmaintained | 2023-01-21T12:00:00Z | 2023-05-23T20:17:25Z |
| rustsec-2023-0003 | git2 does not verify SSH keys by default | 2023-01-20T12:00:00Z | 2023-01-20T23:06:55Z |
| rustsec-2023-0002 | git2 Rust package suppresses ssh host key checking | 2023-01-12T12:00:00Z | 2023-02-09T03:11:29Z |
| rustsec-2023-0005 | `tokio::io::ReadHalf<T>::unsplit` is Unsound | 2023-01-11T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0004 | bzip2 Denial of Service (DoS) | 2023-01-09T12:00:00Z | 2023-02-04T13:29:07Z |
| rustsec-2023-0001 | reject_remote_clients Configuration corruption | 2023-01-04T12:00:00Z | 2023-02-09T03:11:29Z |
| rustsec-2022-0072 | Location header incorporates user input, allowing open redirect | 2022-12-23T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0073 | crate has been renamed to `embedded-alloc` | 2022-12-21T12:00:00Z | 2022-12-23T16:46:57Z |
| rustsec-2022-0077 | `claim` is Unmaintained | 2022-12-04T12:00:00Z | 2023-02-04T10:58:43Z |
| rustsec-2022-0074 | Force cast a &Vec<T> to &[T] | 2022-12-02T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0080 | parity-util-mem Unmaintained | 2022-11-30T12:00:00Z | 2023-01-16T09:26:23Z |
| rustsec-2022-0070 | Unsound API in `secp256k1` allows use-after-free and invalid deallocation from safe code | 2022-11-30T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0069 | Improper validation of Windows paths could lead to directory traversal attack | 2022-11-30T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0068 | out-of-bounds read possible when setting list-of-pointers | 2022-11-30T12:00:00Z | 2022-11-30T22:16:39Z |
| rustsec-2022-0094 | Mimalloc Can Allocate Memory with Bad Alignment | 2022-11-23T12:00:00Z | 2025-10-28T06:02:18Z |
| rustsec-2022-0089 | `aliyun-oss-client` secret exposure | 2022-11-19T12:00:00Z | 2023-02-07T22:07:40Z |
| rustsec-2022-0076 | Bug in Wasmtime implementation of pooling instance allocator | 2022-11-10T12:00:00Z | 2023-03-15T23:49:40Z |
| rustsec-2022-0075 | Bug in pooling instance allocator | 2022-11-10T12:00:00Z | 2023-01-14T00:56:30Z |
| rustsec-2022-0097 | Out of bounds write in `wasmtime_trap_code` C API function | 2022-11-07T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2022-0102 | Out of bounds read/write with zero-memory-pages configuration | 2022-11-05T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2022-0098 | Data leakage between instances in the pooling allocator | 2022-11-05T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2022-0065 | X.509 Email Address Variable Length Buffer Overflow | 2022-11-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0064 | X.509 Email Address 4-byte Buffer Overflow | 2022-11-01T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0079 | ELF header parsing library doesn't check for valid offset | 2022-10-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2022-0066 | Denial of Service from unchecked request length | 2022-10-30T12:00:00Z | 2022-11-02T22:38:38Z |
| rustsec-2022-0083 | evm incorrect state transition | 2022-10-25T12:00:00Z | 2023-02-02T11:20:42Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-libpython-2025-13836 | Excessive read buffering DoS in http.client | 2025-12-05T11:07:36.854Z | 2026-01-27T09:14:53.416Z |
| bit-golang-2025-61729 | Excessive resource consumption when printing error string for host certificate validation in crypto/x509 | 2025-12-04T11:41:52.637Z | 2025-12-04T12:07:39.656Z |
| bit-activemq-2025-27533 | Apache ActiveMQ: Unchecked buffer length can cause excessive memory allocation | 2025-12-03T14:35:40.173Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2023-46604 | Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack | 2025-12-03T14:35:38.733Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2022-41678 | Apache ActiveMQ: Insufficient API restrictions on Jolokia allow authenticated users to perform RCE | 2025-12-03T14:35:37.010Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-26117 | ActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind | 2025-12-03T14:35:35.296Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21351 | XStream is vulnerable to an Arbitrary Code Execution attack | 2025-12-03T14:35:33.786Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21350 | XStream is vulnerable to an Arbitrary Code Execution attack | 2025-12-03T14:35:32.295Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21349 | A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host | 2025-12-03T14:35:30.789Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21348 | XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos) | 2025-12-03T14:35:29.299Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21347 | XStream is vulnerable to an Arbitrary Code Execution attack | 2025-12-03T14:35:27.664Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21346 | XStream is vulnerable to an Arbitrary Code Execution attack | 2025-12-03T14:35:26.027Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21345 | XStream is vulnerable to a Remote Command Execution attack | 2025-12-03T14:35:24.382Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21344 | XStream is vulnerable to an Arbitrary Code Execution attack | 2025-12-03T14:35:22.678Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21343 | XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights | 2025-12-03T14:35:21.073Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21342 | A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host | 2025-12-03T14:35:19.481Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2021-21341 | XStream can cause a Denial of Service | 2025-12-03T14:35:17.881Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2020-26217 | Remote Code Execution in XStream | 2025-12-03T14:35:16.352Z | 2025-12-03T15:08:24.036Z |
| bit-activemq-2020-1941 | 2025-12-03T14:35:14.779Z | 2025-12-03T15:08:24.036Z | |
| bit-activemq-2020-13947 | 2025-12-03T14:35:13.393Z | 2025-12-03T15:08:24.036Z | |
| bit-activemq-2020-13920 | 2025-12-03T14:35:12.171Z | 2025-12-03T15:08:24.036Z | |
| bit-activemq-2020-11998 | 2025-12-03T14:35:10.504Z | 2025-12-03T15:08:24.036Z | |
| bit-flux-2022-39272 | Flux2 vulnerable to Denial of Service due to Improper use of metav1.Duration | 2025-12-02T17:37:01.043Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-36049 | Flux2 Helm Controller denial of service | 2025-12-02T17:36:59.799Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-36035 | Flux CLI Workload Injection | 2025-12-02T17:36:58.339Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-24878 | Improper path handling in Kustomization files allows for denial of service | 2025-12-02T17:36:56.954Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-24877 | Improper path handling in kustomization files allows path traversal | 2025-12-02T17:36:55.459Z | 2025-12-02T18:06:28.296Z |
| bit-flux-2022-24817 | Improper kubeconfig validation allows arbitrary code execution | 2025-12-02T17:36:53.808Z | 2025-12-02T18:06:28.296Z |
| bit-gitlab-2025-7449 | Allocation of Resources Without Limits or Throttling in GitLab | 2025-12-02T12:05:42.978Z | 2025-12-11T12:06:55.559Z |
| bit-gitlab-2025-6195 | Direct Request ('Forced Browsing') in GitLab | 2025-12-02T12:05:25.518Z | 2025-12-11T12:06:55.559Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTA-2011-ALE-007 | Vulnérabilité dans ftpd et ProFTPD sur FreeBSD | 2011-12-02T00:00:00.000000 | 2011-12-26T00:00:00.000000 |
| certa-2011-ale-006 | Exploitation d'une vulnérabilité dans la gestion des polices TrueType sur Windows | 2011-11-04T00:00:00.000000 | 2011-12-14T00:00:00.000000 |
| CERTA-2011-ALE-006 | Exploitation d'une vulnérabilité dans la gestion des polices TrueType sur Windows | 2011-11-04T00:00:00.000000 | 2011-12-14T00:00:00.000000 |
| certa-2011-ale-005 | Exploitation malveillante d'une fonctionnalité du protocole SSL afin de provoquer un déni de service | 2011-10-27T00:00:00.000000 | 2011-10-27T00:00:00.000000 |
| CERTA-2011-ALE-005 | Exploitation malveillante d'une fonctionnalité du protocole SSL afin de provoquer un déni de service | 2011-10-27T00:00:00.000000 | 2011-10-27T00:00:00.000000 |
| certa-2011-ale-004 | Vulnérabilités dans Apple iOS | 2011-07-05T00:00:00.000000 | 2011-07-18T00:00:00.000000 |
| CERTA-2011-ALE-004 | Vulnérabilités dans Apple iOS | 2011-07-05T00:00:00.000000 | 2011-07-18T00:00:00.000000 |
| certa-2011-ale-003 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2011-04-12T00:00:00.000000 | 2011-06-20T00:00:00.000000 |
| CERTA-2011-ALE-003 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2011-04-12T00:00:00.000000 | 2011-06-20T00:00:00.000000 |
| certa-2011-ale-002 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2011-03-15T00:00:00.000000 | 2011-03-22T00:00:00.000000 |
| CERTA-2011-ALE-002 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2011-03-15T00:00:00.000000 | 2011-03-22T00:00:00.000000 |
| certa-2011-ale-001 | Vulnérabilité dans le moteur de rendu graphique de Windows | 2011-01-05T00:00:00.000000 | 2011-02-10T00:00:00.000000 |
| CERTA-2011-ALE-001 | Vulnérabilité dans le moteur de rendu graphique de Windows | 2011-01-05T00:00:00.000000 | 2011-02-10T00:00:00.000000 |
| certa-2010-ale-021 | Vulnérabilité dans Microsoft Internet Explorer | 2010-12-22T00:00:00.000000 | 2011-02-09T00:00:00.000000 |
| CERTA-2010-ALE-021 | Vulnérabilité dans Microsoft Internet Explorer | 2010-12-22T00:00:00.000000 | 2011-02-09T00:00:00.000000 |
| certa-2010-ale-020 | Vulnérabilité dans Adobe Reader et Acrobat | 2010-11-05T00:00:00.000000 | 2010-11-17T00:00:00.000000 |
| CERTA-2010-ALE-020 | Vulnérabilité dans Adobe Reader et Acrobat | 2010-11-05T00:00:00.000000 | 2010-11-17T00:00:00.000000 |
| certa-2010-ale-019 | Vulnérabilité dans Microsoft Internet Explorer | 2010-11-03T00:00:00.000000 | 2010-12-17T00:00:00.000000 |
| CERTA-2010-ALE-019 | Vulnérabilité dans Microsoft Internet Explorer | 2010-11-03T00:00:00.000000 | 2010-12-17T00:00:00.000000 |
| certa-2010-ale-018 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2010-10-28T00:00:00.000000 | 2010-11-18T00:00:00.000000 |
| CERTA-2010-ALE-018 | Vulnérabilité dans Adobe Flash Player, Adobe Reader et Acrobat | 2010-10-28T00:00:00.000000 | 2010-11-18T00:00:00.000000 |
| certa-2010-ale-017 | Vulnérabilité dans Mozilla Firefox | 2010-10-27T00:00:00.000000 | 2010-10-28T00:00:00.000000 |
| CERTA-2010-ALE-017 | Vulnérabilité dans Mozilla Firefox | 2010-10-27T00:00:00.000000 | 2010-10-28T00:00:00.000000 |
| certa-2010-ale-016 | Vulnérabilité Adobe Shockwave Player | 2010-10-22T00:00:00.000000 | 2010-10-29T00:00:00.000000 |
| CERTA-2010-ALE-016 | Vulnérabilité Adobe Shockwave Player | 2010-10-22T00:00:00.000000 | 2010-10-29T00:00:00.000000 |
| certa-2010-ale-015 | Vulnérabilité dans Adobe Flash Player | 2010-09-14T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| CERTA-2010-ALE-015 | Vulnérabilité dans Adobe Flash Player | 2010-09-14T00:00:00.000000 | 2010-09-21T00:00:00.000000 |
| certa-2010-ale-014 | Vulnérabilité dans Adobe Reader et Adobe Acrobat | 2010-09-09T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| CERTA-2010-ALE-014 | Vulnérabilité dans Adobe Reader et Adobe Acrobat | 2010-09-09T00:00:00.000000 | 2010-10-06T00:00:00.000000 |
| certa-2010-ale-013 | Vulnérabilité dans le contrôle ActiveX Apple QuickTime | 2010-08-31T00:00:00.000000 | 2010-09-17T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2026-AVI-0038 | Multiples vulnérabilités dans les produits Mozilla | 2026-01-14T00:00:00.000000 | 2026-01-15T00:00:00.000000 |
| CERTFR-2026-AVI-0037 | Multiples vulnérabilités dans Typo3 | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0036 | Multiples vulnérabilités dans Suricata | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0035 | Multiples vulnérabilités dans les produits Fortinet | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0034 | Multiples vulnérabilités dans les produits SAP | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0033 | Multiples vulnérabilités dans les produits Schneider Electric | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0032 | Multiples vulnérabilités dans les produits Siemens | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| CERTFR-2026-AVI-0031 | Vulnérabilité dans le greffon VSCode pour Spring CLI | 2026-01-14T00:00:00.000000 | 2026-01-14T00:00:00.000000 |
| certfr-2026-avi-0030 | Vulnérabilité dans MISP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0029 | Multiples vulnérabilités dans VMware Tanzu Gemfire | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0028 | Multiples vulnérabilités dans MariaDB | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0027 | Vulnérabilité dans NetApp ONTAP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0026 | Vulnérabilité dans Google Pixel | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| CERTFR-2026-AVI-0030 | Vulnérabilité dans MISP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| CERTFR-2026-AVI-0029 | Multiples vulnérabilités dans VMware Tanzu Gemfire | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| CERTFR-2026-AVI-0028 | Multiples vulnérabilités dans MariaDB | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| CERTFR-2026-AVI-0027 | Vulnérabilité dans NetApp ONTAP | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| CERTFR-2026-AVI-0026 | Vulnérabilité dans Google Pixel | 2026-01-13T00:00:00.000000 | 2026-01-13T00:00:00.000000 |
| certfr-2026-avi-0025 | Vulnérabilité dans Microsoft Edge | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0024 | Multiples vulnérabilités dans VMware Tanzu Greenplum Backup and Restore | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0023 | Multiples vulnérabilités dans les produits Axis | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| CERTFR-2026-AVI-0025 | Vulnérabilité dans Microsoft Edge | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| CERTFR-2026-AVI-0024 | Multiples vulnérabilités dans VMware Tanzu Greenplum Backup and Restore | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| CERTFR-2026-AVI-0023 | Multiples vulnérabilités dans les produits Axis | 2026-01-12T00:00:00.000000 | 2026-01-12T00:00:00.000000 |
| certfr-2026-avi-0022 | Multiples vulnérabilités dans les produits Microsoft | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0021 | Vulnérabilité dans Microsoft Edge | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0020 | Multiples vulnérabilités dans les produits IBM | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0019 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0018 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| certfr-2026-avi-0017 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2026-01-09T00:00:00.000000 | 2026-01-09T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-002942 | OMRON NJ/NX series vulnerable to path traversal | 2024-03-08T14:16+09:00 | 2024-03-08T14:16+09:00 |
| jvndb-2024-000028 | Multiple vulnerabilities in SKYSEA Client View | 2024-03-07T16:09+09:00 | 2024-07-29T18:13+09:00 |
| jvndb-2024-000027 | FUJIFILM Business Innovation Corp. printers vulnerable to cross-site request forgery | 2024-03-06T18:24+09:00 | 2024-03-06T18:24+09:00 |
| jvndb-2024-000026 | Multiple vulnerabilities in printers and scanners which implement BROTHER Web Based Management | 2024-03-06T18:12+09:00 | 2024-03-06T18:12+09:00 |
| jvndb-2024-000029 | Toyoko Inn official App vulnerable to improper server certificate verification | 2024-03-06T13:53+09:00 | 2024-03-06T13:53+09:00 |
| jvndb-2024-000025 | Protection mechanism failure in RevoWorks | 2024-02-29T15:40+09:00 | 2024-02-29T15:40+09:00 |
| jvndb-2024-000024 | OET-213H-BTS1 missing authorization check in the initial configuration | 2024-02-29T14:59+09:00 | 2024-02-29T14:59+09:00 |
| jvndb-2024-000023 | OpenPNE plugin "opTimelinePlugin" vulnerable to cross-site scripting | 2024-02-29T13:12+09:00 | 2024-02-29T13:12+09:00 |
| jvndb-2024-000022 | Multiple vulnerabilities in baserCMS | 2024-02-27T14:25+09:00 | 2024-02-27T14:25+09:00 |
| jvndb-2024-002831 | ELECOM wireless LAN routers vulnerable to OS command injection | 2024-02-22T08:15+09:00 | 2026-02-04T12:02+09:00 |
| jvndb-2024-002832 | EL Injection Vulnerability in Hitachi Global Link Manager | 2024-02-21T15:53+09:00 | 2024-02-21T15:53+09:00 |
| jvndb-2024-000020 | Multiple vulnerabilities in ELECOM wireless LAN routers and wireless LAN repeater | 2024-02-20T14:14+09:00 | 2024-11-26T15:26+09:00 |
| jvndb-2024-002560 | Android App "Mopria Print Service" vulnerable to improper intent handling | 2024-02-15T15:26+09:00 | 2024-02-15T15:26+09:00 |
| jvndb-2024-000019 | a-blog cms vulnerable to URL spoofing | 2024-02-15T14:12+09:00 | 2024-02-15T14:12+09:00 |
| jvndb-2024-002050 | Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers | 2024-02-07T15:39+09:00 | 2024-03-08T18:05+09:00 |
| jvndb-2024-001882 | Sharp NEC Display Solutions' public displays vulnerable to local file inclusion | 2024-02-07T14:25+09:00 | 2024-07-11T14:27+09:00 |
| jvndb-2020-013805 | Zeroshell vulnerable to OS command injection | 2024-02-07T13:38+09:00 | 2024-02-07T13:38+09:00 |
| jvndb-2024-001804 | Multiple buffer overflow vulnerabilities in HOME SPOT CUBE2 | 2024-02-06T15:02+09:00 | 2024-03-11T17:32+09:00 |
| jvndb-2024-001785 | Incorrect permission assignment vulnerability in Trend Micro uiAirSupport | 2024-02-06T14:46+09:00 | 2024-03-11T17:42+09:00 |
| jvndb-2024-000017 | Cybozu KUNAI for Android vulnerable to denial-of-service (DoS) | 2024-02-06T13:25+09:00 | 2024-06-27T13:28+09:00 |
| jvndb-2024-001462 | File and Directory Permissions Vulnerability in Hitachi Tuning Manager | 2024-02-05T14:54+09:00 | 2024-02-05T14:54+09:00 |
| jvndb-2024-000016 | Group Office vulnerable to cross-site scripting | 2024-02-01T13:48+09:00 | 2024-03-11T18:04+09:00 |
| jvndb-2024-000015 | Payment EX vulnerable to information disclosure | 2024-02-01T13:41+09:00 | 2024-03-11T17:42+09:00 |
| jvndb-2024-001161 | Multiple vulnerabilities in SHARP Energy Management Controller with Cloud Services | 2024-01-31T16:01+09:00 | 2024-01-31T16:01+09:00 |
| jvndb-2024-001160 | File and Directory Permissions Vulnerability in Hitachi Storage Plug-in for VMware vCenter | 2024-01-31T15:25+09:00 | 2024-03-11T17:41+09:00 |
| jvndb-2024-001062 | Yamaha wireless LAN access point devices vulnerable to active debug code | 2024-01-24T17:16+09:00 | 2024-03-13T17:24+09:00 |
| jvndb-2024-001061 | ELECOM wireless LAN routers vulnerable to OS command injection | 2024-01-24T17:16+09:00 | 2025-02-13T14:31+09:00 |
| jvndb-2024-000014 | Oracle WebLogic Server vulnerable to HTTP header injection | 2024-01-24T13:53+09:00 | 2024-01-24T13:53+09:00 |
| jvndb-2024-000005 | "Mercari" App for Android fails to restrict custom URL schemes properly | 2024-01-24T13:46+09:00 | 2024-03-04T18:01+09:00 |
| jvndb-2024-000008 | Improper restriction of XML external entity references (XXE) in MLIT "Electronic Delivery Check System" and "Electronic delivery item Inspection Support System" | 2024-01-23T16:57+09:00 | 2024-03-13T17:40+09:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-07159 | Intern Membership Management System /add_admin.php文件SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-07158 | Intern Membership Management System /add_activity.php文件SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-07040 | WordPress WP-Members Membership plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07039 | WordPress WP-CRM System plugin未经授权访问漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07027 | WordPress Uploadify plugin代码问题漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07026 | WordPress Testimonials Creator plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07025 | WordPress Supreme Modules Lite plugin代码问题漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07012 | WordPress Stopwords for comments plugin跨站请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-07004 | WordPress SpiceForms Form Builder plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06988 | WordPress Sosh Share Buttons plugin跨站请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06987 | WordPress SocialChamp with WordPress plugin跨站请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06986 | WordPress Short Link plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06985 | WordPress Shipping Rate By Cities plugin SQL注入漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06984 | WordPress SearchWiz plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06913 | WordPress Responsive Accordion Slider plugin未经授权的数据修改漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06912 | WordPress LinkedIn SC plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06911 | WordPress Kunze Law plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06910 | WordPress Internal Link Builder plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06909 | WordPress Gotham Block Extra Light plugin路径遍历漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06908 | WordPress Gotham Block Extra Light plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06907 | WordPress GetContentFromURL plugin服务端请求伪造漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06906 | WordPress Float Payment Gateway plugin未经授权的数据修改漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06905 | WordPress Flat Shipping Rate by City for WooCommerce plugin SQL注入漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06904 | WordPress Electric Studio Download Counter plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06903 | WordPress Aplazo Payment Gateway plugin缺少权限漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06902 | WordPress AJS Footnotes plugin跨站脚本漏洞 | 2026-01-19 | 2026-01-23 |
| cnvd-2026-06808 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06807 | Cyber Cafe Management System add-users.php端点跨站脚本漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06806 | Cyber Cafe Management System add-users.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| cnvd-2026-06805 | Cyber Cafe Management System adminprofile.php端点SQL注入漏洞 | 2026-01-19 | 2026-01-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2026-01273 | Уязвимость функции smb2_reconnect_server() модуля fs/smb/client/smb2pdu.c поддержки клие… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01272 | Уязвимость функции amd_iommu_report_page_fault() модуля drivers/iommu/amd/iommu.c драйвер… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01271 | Уязвимость функции parse_features() модуля drivers/md/dm-flakey.c драйвера нескольких уст… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01270 | Уязвимость функции mt7921_usb_sdio_tx_prepare_skb() модуля drivers/net/wireless/mediatek/… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01269 | Уязвимость функции txBegin() модуля fs/jfs/jfs_txnmgr.c файловой системы JFS ядра операци… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01268 | Уязвимость функции btracker_destroy() модуля drivers/md/dm-cache-background-tracker.c дра… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01267 | Уязвимость функции usbtmc_ioctl_request() модуля drivers/usb/class/usbtmc.c драйвера устр… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01266 | Уязвимость функции brcmf_set_pmk() модуля drivers/net/wireless/broadcom/brcm80211/brcmfma… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01265 | Уязвимость функции nfs_set_pgio_error() модуля fs/nfs/pagelist.c поддержки клиентов NFS я… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01264 | Уязвимость функции alloc_event_waiters() модуля drivers/gpu/drm/amd/amdkfd/kfd_events.c д… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01263 | Уязвимость функции vmbus_bus_init() модуля drivers/hv/vmbus_drv.c драйвера поддержки гост… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01262 | Уязвимость функции longhaul_exit() модуля drivers/cpufreq/longhaul.c драйвера масштабиров… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01261 | Уязвимость функции dcn401_init_hw() модуля drivers/gpu/drm/amd/display/dc/hwss/dcn401/dcn… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01260 | Уязвимость функции hci_conn_complete_evt() модуля net/bluetooth/hci_event.c ядра операцио… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01259 | Уязвимость функции binder_inc_ref_for_node() модуля drivers/android/binder.c драйвера свя… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01258 | Уязвимость функции pm8001_chip_fw_flash_update_req() модуля drivers/scsi/pm8001/pm8001_hw… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01257 | Уязвимость функции interrupt_preinit_v3_hw() модуля drivers/scsi/hisi_sas/hisi_sas_v3_hw.… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01256 | Уязвимость функции ill_acc_of_setup() модуля arch/mips/ralink/ill_acc.c поддержки архитек… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01255 | Уязвимость функции gc_worker_can_early_drop() модуля net/netfilter/nf_conntrack_core.c ко… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01254 | Уязвимость функции _nfs42_proc_copy_notify() модуля fs/nfs/nfs42proc.c поддержки клиентов… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01253 | Уязвимость функций init() и fini() модуля drivers/char/virtio_console.c драйвера поддержк… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01252 | Уязвимость функции ext4_bmap() модуля fs/ext4/inode.c файловой системы Ext4 ядра операцио… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01251 | Уязвимость функции exfat_find() модуля fs/exfat/namei.c файловой системы exFAT ядра опера… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01250 | Уязвимость функции virtio_net_hdr_to_skb() модуля include/linux/virtio_net.h ядра операци… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01249 | Уязвимость функции asm () модуля kernel/kheaders.c ядра операционной системы Linux, позво… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01248 | Уязвимость функции ffa_device_remove() модуля drivers/firmware/arm_ffa/bus.c драйвера про… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01247 | Уязвимость функции batch_clear_carry() модуля drivers/iommu/iommufd/pages.c драйвера IOMM… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01246 | Уязвимость функции ext4_xattr_move_to_block() модуля fs/ext4/xattr.c файловой системы Ext… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01245 | Уязвимость функции ssif_info_find() модуля drivers/char/ipmi/ipmi_ssif.c драйвера алфавит… | 05.02.2026 | 05.02.2026 |
| bdu:2026-01244 | Уязвимость функции gl861_i2c_master_xfer() модуля drivers/media/usb/dvb-usb-v2/gl861.c д… | 05.02.2026 | 05.02.2026 |
| ID | Description | Updated |
|---|---|---|
| var-200704-0220 | Buffer overflow in natd in network_cmds in Apple Mac OS X 10.3.9 through 10.4.9, when Int… | 2024-07-23T21:33:23.970000Z |
| var-200810-0141 | Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for c… | 2024-07-23T21:33:22.791000Z |
| var-201203-0199 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … | 2024-07-23T21:32:49.621000Z |
| var-201210-0179 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2024-07-23T21:32:41.649000Z |
| var-200603-0274 | FileVault in Mac OS X 10.4.5 and earlier does not properly mount user directories when cr… | 2024-07-23T21:32:41.957000Z |
| var-202105-1428 | An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi… | 2024-07-23T21:32:40.302000Z |
| var-202004-0530 | In filter.c in slapd in OpenLDAP before 2.4.50, LDAP search filters with nested boolean e… | 2024-07-23T21:32:40.951000Z |
| var-201507-0303 | Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlie… | 2024-07-23T21:32:40.217000Z |
| var-201208-0141 | Multiple cross-site scripting (XSS) vulnerabilities in the make_variant_list function in … | 2024-07-23T21:32:40.141000Z |
| var-200904-0813 | The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.1… | 2024-07-23T21:32:40.678000Z |
| var-201203-0181 | Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows … | 2024-07-23T21:32:39.897000Z |
| var-202102-1092 | An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_a… | 2024-07-23T21:32:38.477000Z |
| var-201605-0491 | The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, … | 2024-07-23T21:31:34.358000Z |
| var-201207-0279 | ISC BIND 9.4.x, 9.5.x, 9.6.x, and 9.7.x before 9.7.6-P2; 9.8.x before 9.8.3-P2; 9.9.x bef… | 2024-07-23T21:31:34.437000Z |
| var-201006-1149 | Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… | 2024-07-23T21:31:33.583000Z |
| var-201711-0474 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… | 2024-07-23T21:31:29.650000Z |
| var-201408-0081 | The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 1.0.1 before 1.0.1i allows m… | 2024-07-23T21:31:18.574000Z |
| var-200106-0149 | Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows rem… | 2024-07-23T21:31:18.052000Z |
| var-202101-0218 | A flaw was found in dnsmasq before 2.83. A buffer overflow vulnerability was discovered i… | 2024-07-23T21:31:17.324000Z |
| var-200609-1341 | The VPN service in Apple Mac OS X 10.3.x through 10.3.9 and 10.4.x through 10.4.8 does no… | 2024-07-23T21:31:15.642000Z |
| var-202109-1900 | An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be explo… | 2024-07-23T21:31:14.809000Z |
| var-201906-1176 | Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragme… | 2024-07-23T21:31:12.688000Z |
| var-201304-0062 | Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, T… | 2024-07-23T21:31:12.868000Z |
| var-201111-0207 | The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64… | 2024-07-23T21:30:39.002000Z |
| var-200107-0175 | GoAhead webserver 2.1 allows remote attackers to cause a denial of service via an HTTP re… | 2024-07-23T21:30:38.108000Z |
| var-200703-0027 | Unspecified vulnerability in Apple Mac OS X 10.3.9 and 10.4 through 10.4.8 creates files … | 2024-07-23T21:30:34.312000Z |
| var-201912-0624 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2024-07-23T21:30:33.534000Z |
| var-200609-1325 | Unspecified vulnerability in CFNetwork in Mac OS 10.4.8 and earlier allows user-assisted … | 2024-07-23T21:30:33.425000Z |
| var-201806-1444 | An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… | 2024-07-23T21:30:32.366000Z |
| var-201408-0089 | Memory leak in d1_both.c in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8zb, 1.0.… | 2024-07-23T21:30:26.317000Z |