Recent vulnerabilities

Recent vulnerabilities from
Select from 70 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-43112
N/A
fs/smb/client: fix out-of-bounds read in cifs_sanitize… Linux
 Linux
 2026-05-06T07:40:38.563Z 2026-05-06T07:40:38.563Z
CVE-2026-43111
N/A
HID: roccat: fix use-after-free in roccat_report_event Linux
 Linux
 2026-05-06T07:40:37.916Z 2026-05-06T07:40:37.916Z
CVE-2026-43110
N/A
wifi: brcmfmac: validate bsscfg indices in IF events Linux
 Linux
 2026-05-06T07:40:37.250Z 2026-05-06T07:40:37.250Z
CVE-2026-43109
N/A
x86: shadow stacks: proper error handling for mmap lock Linux
 Linux
 2026-05-06T07:40:36.532Z 2026-05-06T07:40:36.532Z
CVE-2026-43108
N/A
soc: qcom: pd-mapper: Fix element length in servreg_lo… Linux
 Linux
 2026-05-06T07:40:35.854Z 2026-05-06T07:40:35.854Z
CVE-2026-43107
N/A
xfrm: account XFRMA_IF_ID in aevent size calculation Linux
 Linux
 2026-05-06T07:40:35.068Z 2026-05-06T07:40:35.068Z
CVE-2026-43106
N/A
cachefiles: fix incorrect dentry refcount in cachefile… Linux
 Linux
 2026-05-06T07:40:34.365Z 2026-05-06T07:40:34.365Z
CVE-2026-43105
N/A
drm/vc4: Fix memory leak of BO array in hang state Linux
 Linux
 2026-05-06T07:40:33.706Z 2026-05-06T07:40:33.706Z
CVE-2026-43104
N/A
drm/vc4: Fix a memory leak in hang state error path Linux
 Linux
 2026-05-06T07:40:33.036Z 2026-05-06T07:40:33.036Z
CVE-2026-43103
N/A
net: lapbether: handle NETDEV_PRE_TYPE_CHANGE Linux
 Linux
 2026-05-06T07:40:32.357Z 2026-05-06T07:40:32.357Z
CVE-2026-43102
N/A
net: airoha: Fix memory leak in airoha_qdma_rx_process() Linux
 Linux
 2026-05-06T07:40:31.683Z 2026-05-06T07:40:31.683Z
CVE-2026-43101
N/A
ipv6: ioam: fix potential NULL dereferences in __ioam6… Linux
 Linux
 2026-05-06T07:40:30.969Z 2026-05-06T07:40:30.969Z
CVE-2026-43100
N/A
bridge: guard local VLAN-0 FDB helpers against NULL vl… Linux
 Linux
 2026-05-06T07:40:30.309Z 2026-05-06T07:40:30.309Z
CVE-2026-43099
N/A
ipv4: icmp: fix null-ptr-deref in icmp_build_probe() Linux
 Linux
 2026-05-06T07:40:29.567Z 2026-05-06T07:40:29.567Z
CVE-2026-43098
N/A
nfc: s3fwrn5: allocate rx skb before consuming bytes Linux
 Linux
 2026-05-06T07:40:28.845Z 2026-05-06T07:40:28.845Z
CVE-2026-43097
N/A
PCI: hv: Fix double ida_free in hv_pci_probe error path Linux
 Linux
 2026-05-06T07:40:28.157Z 2026-05-06T07:40:28.157Z
CVE-2026-43096
N/A
mshv: Fix infinite fault loop on permission-denied GPA… Linux
 Linux
 2026-05-06T07:40:27.453Z 2026-05-06T07:40:27.453Z
CVE-2026-43095
N/A
ASoC: SDCA: Fix errors in IRQ cleanup Linux
 Linux
 2026-05-06T07:40:26.743Z 2026-05-06T07:40:26.743Z
CVE-2026-43094
N/A
ixgbevf: add missing negotiate_features op to Hyper-V … Linux
 Linux
 2026-05-06T07:40:25.930Z 2026-05-06T07:40:25.930Z
CVE-2026-43093
N/A
xsk: tighten UMEM headroom validation to account for t… Linux
 Linux
 2026-05-06T07:40:25.266Z 2026-05-06T07:40:25.266Z
CVE-2026-43092
N/A
xsk: validate MTU against usable frame size on bind Linux
 Linux
 2026-05-06T07:40:24.619Z 2026-05-06T07:40:24.619Z
CVE-2026-43091
N/A
xfrm: Wait for RCU readers during policy netns exit Linux
 Linux
 2026-05-06T07:40:23.955Z 2026-05-06T07:40:23.955Z
CVE-2026-43090
N/A
xfrm: fix refcount leak in xfrm_migrate_policy_find Linux
 Linux
 2026-05-06T07:40:23.286Z 2026-05-06T07:40:23.286Z
CVE-2026-43089
N/A
xfrm_user: fix info leak in build_mapping() Linux
 Linux
 2026-05-06T07:40:22.630Z 2026-05-06T07:40:22.630Z
CVE-2026-43088
N/A
net: af_key: zero aligned sockaddr tail in PF_KEY exports Linux
 Linux
 2026-05-06T07:40:21.962Z 2026-05-06T07:40:21.962Z
CVE-2026-43087
N/A
pinctrl: mcp23s08: Disable all pin interrupts during probe Linux
 Linux
 2026-05-06T07:40:21.303Z 2026-05-06T07:40:21.303Z
CVE-2026-43086
N/A
ipvs: fix NULL deref in ip_vs_add_service error path Linux
 Linux
 2026-05-06T07:40:20.631Z 2026-05-06T07:40:20.631Z
CVE-2026-43085
N/A
netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG… Linux
 Linux
 2026-05-06T07:40:19.915Z 2026-05-06T07:40:19.915Z
CVE-2026-43084
N/A
netfilter: nfnetlink_queue: make hash table per queue Linux
 Linux
 2026-05-06T07:40:19.253Z 2026-05-06T07:40:19.253Z
CVE-2026-43083
N/A
net: ioam6: fix OOB and missing lock Linux
 Linux
 2026-05-06T07:40:18.504Z 2026-05-06T07:40:18.504Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-43112
N/A
fs/smb/client: fix out-of-bounds read in cifs_sanitize… Linux
 Linux
 2026-05-06T07:40:38.563Z 2026-05-06T07:40:38.563Z
CVE-2026-43111
N/A
HID: roccat: fix use-after-free in roccat_report_event Linux
 Linux
 2026-05-06T07:40:37.916Z 2026-05-06T07:40:37.916Z
CVE-2026-43110
N/A
wifi: brcmfmac: validate bsscfg indices in IF events Linux
 Linux
 2026-05-06T07:40:37.250Z 2026-05-06T07:40:37.250Z
CVE-2026-43109
N/A
x86: shadow stacks: proper error handling for mmap lock Linux
 Linux
 2026-05-06T07:40:36.532Z 2026-05-06T07:40:36.532Z
CVE-2026-43108
N/A
soc: qcom: pd-mapper: Fix element length in servreg_lo… Linux
 Linux
 2026-05-06T07:40:35.854Z 2026-05-06T07:40:35.854Z
CVE-2026-43107
N/A
xfrm: account XFRMA_IF_ID in aevent size calculation Linux
 Linux
 2026-05-06T07:40:35.068Z 2026-05-06T07:40:35.068Z
CVE-2026-43106
N/A
cachefiles: fix incorrect dentry refcount in cachefile… Linux
 Linux
 2026-05-06T07:40:34.365Z 2026-05-06T07:40:34.365Z
CVE-2026-43105
N/A
drm/vc4: Fix memory leak of BO array in hang state Linux
 Linux
 2026-05-06T07:40:33.706Z 2026-05-06T07:40:33.706Z
CVE-2026-43104
N/A
drm/vc4: Fix a memory leak in hang state error path Linux
 Linux
 2026-05-06T07:40:33.036Z 2026-05-06T07:40:33.036Z
CVE-2026-43103
N/A
net: lapbether: handle NETDEV_PRE_TYPE_CHANGE Linux
 Linux
 2026-05-06T07:40:32.357Z 2026-05-06T07:40:32.357Z
CVE-2026-43102
N/A
net: airoha: Fix memory leak in airoha_qdma_rx_process() Linux
 Linux
 2026-05-06T07:40:31.683Z 2026-05-06T07:40:31.683Z
CVE-2026-43101
N/A
ipv6: ioam: fix potential NULL dereferences in __ioam6… Linux
 Linux
 2026-05-06T07:40:30.969Z 2026-05-06T07:40:30.969Z
CVE-2026-43100
N/A
bridge: guard local VLAN-0 FDB helpers against NULL vl… Linux
 Linux
 2026-05-06T07:40:30.309Z 2026-05-06T07:40:30.309Z
CVE-2026-43099
N/A
ipv4: icmp: fix null-ptr-deref in icmp_build_probe() Linux
 Linux
 2026-05-06T07:40:29.567Z 2026-05-06T07:40:29.567Z
CVE-2026-43098
N/A
nfc: s3fwrn5: allocate rx skb before consuming bytes Linux
 Linux
 2026-05-06T07:40:28.845Z 2026-05-06T07:40:28.845Z
CVE-2026-43097
N/A
PCI: hv: Fix double ida_free in hv_pci_probe error path Linux
 Linux
 2026-05-06T07:40:28.157Z 2026-05-06T07:40:28.157Z
CVE-2026-43096
N/A
mshv: Fix infinite fault loop on permission-denied GPA… Linux
 Linux
 2026-05-06T07:40:27.453Z 2026-05-06T07:40:27.453Z
CVE-2026-43095
N/A
ASoC: SDCA: Fix errors in IRQ cleanup Linux
 Linux
 2026-05-06T07:40:26.743Z 2026-05-06T07:40:26.743Z
CVE-2026-43094
N/A
ixgbevf: add missing negotiate_features op to Hyper-V … Linux
 Linux
 2026-05-06T07:40:25.930Z 2026-05-06T07:40:25.930Z
CVE-2026-43093
N/A
xsk: tighten UMEM headroom validation to account for t… Linux
 Linux
 2026-05-06T07:40:25.266Z 2026-05-06T07:40:25.266Z
CVE-2026-43092
N/A
xsk: validate MTU against usable frame size on bind Linux
 Linux
 2026-05-06T07:40:24.619Z 2026-05-06T07:40:24.619Z
CVE-2026-43091
N/A
xfrm: Wait for RCU readers during policy netns exit Linux
 Linux
 2026-05-06T07:40:23.955Z 2026-05-06T07:40:23.955Z
CVE-2026-43090
N/A
xfrm: fix refcount leak in xfrm_migrate_policy_find Linux
 Linux
 2026-05-06T07:40:23.286Z 2026-05-06T07:40:23.286Z
CVE-2026-43089
N/A
xfrm_user: fix info leak in build_mapping() Linux
 Linux
 2026-05-06T07:40:22.630Z 2026-05-06T07:40:22.630Z
CVE-2026-43088
N/A
net: af_key: zero aligned sockaddr tail in PF_KEY exports Linux
 Linux
 2026-05-06T07:40:21.962Z 2026-05-06T07:40:21.962Z
CVE-2026-43087
N/A
pinctrl: mcp23s08: Disable all pin interrupts during probe Linux
 Linux
 2026-05-06T07:40:21.303Z 2026-05-06T07:40:21.303Z
CVE-2026-43086
N/A
ipvs: fix NULL deref in ip_vs_add_service error path Linux
 Linux
 2026-05-06T07:40:20.631Z 2026-05-06T07:40:20.631Z
CVE-2026-43085
N/A
netfilter: nfnetlink_log: initialize nfgenmsg in NLMSG… Linux
 Linux
 2026-05-06T07:40:19.915Z 2026-05-06T07:40:19.915Z
CVE-2026-43084
N/A
netfilter: nfnetlink_queue: make hash table per queue Linux
 Linux
 2026-05-06T07:40:19.253Z 2026-05-06T07:40:19.253Z
CVE-2026-43083
N/A
net: ioam6: fix OOB and missing lock Linux
 Linux
 2026-05-06T07:40:18.504Z 2026-05-06T07:40:18.504Z
ID Description Published Updated
fkie_cve-2025-55210 FreePBX is an open-source web-based graphical user interface (GUI) that manages Asterisk. Prior to … 2026-02-12T17:16:04.963 2026-02-27T13:05:46.890
fkie_cve-2025-54756 BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 or series 5 prior to v9.0.166… 2026-02-12T17:16:04.793 2026-04-15T00:35:42.020
fkie_cve-2026-26217 Crawl4AI versions prior to 0.8.0 contain a local file inclusion vulnerability in the Docker API dep… 2026-02-12T16:16:17.620 2026-02-20T16:54:08.060
fkie_cve-2026-26216 Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API de… 2026-02-12T16:16:17.447 2026-02-20T16:52:49.807
fkie_cve-2026-26214 Galaxy FDS Android SDK (XiaoMi/galaxy-fds-sdk-android) version 3.0.8 and prior disable TLS hostname… 2026-02-12T16:16:17.183 2026-04-15T00:35:42.020
fkie_cve-2025-70886 An issue in halo v.2.22.4 and before allows a remote attacker to cause a denial of service via a cr… 2026-02-12T16:16:05.920 2026-02-18T15:45:23.433
fkie_cve-2025-69752 An issue in the "My Details" user profile functionality of Ideagen Q-Pulse 7.1.0.32 allows an authe… 2026-02-12T16:16:05.177 2026-04-15T00:35:42.020
fkie_cve-2025-69634 Cross Site Request Forgery vulnerability in Dolibarr ERP & CRM v.22.0.9 allows a remote attacker to… 2026-02-12T16:16:05.013 2026-04-15T00:35:42.020
fkie_cve-2025-56647 npm @farmfe/core before 1.7.6 is Missing Origin Validation in WebSocket. The development (hot modul… 2026-02-12T16:16:03.600 2026-04-15T00:35:42.020
fkie_cve-2026-1104 The FastDup – Fastest WordPress Migration & Duplicator plugin for WordPress is vulnerable to unauth… 2026-02-12T15:16:08.993 2026-04-15T00:35:42.020
fkie_cve-2025-14014 Unrestricted Upload of File with Dangerous Type vulnerability in NTN Information Processing Service… 2026-02-12T15:16:02.657 2026-04-15T00:35:42.020
fkie_cve-2023-31313 An unintended proxy or intermediary in the AMD power management firmware (PMFW) could allow a privi… 2026-02-12T15:16:01.710 2026-04-15T00:35:42.020
fkie_cve-2026-2007 Heap buffer overflow in PostgreSQL pg_trgm allows a database user to achieve unknown impacts via a … 2026-02-12T14:16:02.600 2026-02-20T19:54:44.440
fkie_cve-2026-2006 Missing validation of multibyte character length in PostgreSQL text manipulation allows a database … 2026-02-12T14:16:02.470 2026-02-20T19:54:12.520
fkie_cve-2026-2005 Heap buffer overflow in PostgreSQL pgcrypto allows a ciphertext provider to execute arbitrary code … 2026-02-12T14:16:02.350 2026-02-20T19:54:02.243
fkie_cve-2026-2004 Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function… 2026-02-12T14:16:02.213 2026-02-20T19:53:53.960
fkie_cve-2026-2003 Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few byte… 2026-02-12T14:16:02.067 2026-02-20T19:53:43.333
fkie_cve-2026-1320 The Secure Copy Content Protection and Content Locking plugin for WordPress is vulnerable to Stored… 2026-02-12T14:16:01.623 2026-04-15T00:35:42.020
fkie_cve-2025-13004 Authorization Bypass Through User-Controlled Key vulnerability in Farktor Software E-Commerce Servi… 2026-02-12T14:16:00.860 2026-03-10T18:12:55.743
fkie_cve-2025-13002 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… 2026-02-12T14:16:00.710 2026-03-10T18:12:48.400
fkie_cve-2025-10969 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2026-02-12T14:16:00.540 2026-03-10T18:12:37.077
fkie_cve-2026-1671 The Activity Log for WordPress plugin for WordPress is vulnerable to unauthorized access of data du… 2026-02-12T13:15:49.880 2026-04-15T00:35:42.020
fkie_cve-2026-1316 The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Script… 2026-02-12T13:15:49.707 2026-04-15T00:35:42.020
fkie_cve-2026-2276 Reflected Cross-Site Scripting (XSS) vulnerability in the Wix web application, where the endpoint '… 2026-02-12T11:15:50.113 2026-04-15T00:35:42.020
fkie_cve-2025-15575 The firmware update functionality does not verify the authenticity of the supplied firmware update … 2026-02-12T11:15:49.233 2026-04-15T00:35:42.020
fkie_cve-2025-15574 When connecting to the Solax Cloud MQTT server the username is the "registration number", which is … 2026-02-12T11:15:49.117 2026-04-15T00:35:42.020
fkie_cve-2025-15573 The affected devices do not validate the server certificate when connecting to the SolaX Cloud MQTT… 2026-02-12T11:15:47.780 2026-04-15T00:35:42.020
fkie_cve-2026-1356 The Converter for Media – Optimize images | Convert WebP & AVIF plugin for WordPress is vulnerable … 2026-02-12T10:16:01.517 2026-04-15T00:35:42.020
fkie_cve-2026-21722 Public dashboards with annotations enabled did not limit their annotation timerange to the locked t… 2026-02-12T09:16:08.763 2026-02-27T15:16:27.600
fkie_cve-2025-41117 Stack traces in Grafana's Explore Traces view can be rendered as raw HTML, and thus inject maliciou… 2026-02-12T09:16:07.630 2026-02-26T22:20:42.667
ID Severity Description Published Updated
ghsa-86c9-4w26-qf4c
In the Linux kernel, the following vulnerability has been resolved: net: cpsw_new: Fix potential u… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-864f-qffm-34wc
In the Linux kernel, the following vulnerability has been resolved: atm: fore200e: fix use-after-f… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-7vr5-gjv8-9p58
In the Linux kernel, the following vulnerability has been resolved: media: chips-media: wave5: Fix… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-6cq8-8cqv-fh6c
In the Linux kernel, the following vulnerability has been resolved: net: do not pass flow_id to se… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-69m6-gcw2-m2rp
In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix URB leak i… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-5c3f-mcw3-6q2w
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Add SRCU protection … 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-3629-447p-wp7v
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pci_slot_trylock() er… 2026-05-06T12:30:33Z 2026-05-06T12:30:33Z
ghsa-x85v-hg8f-rh5p
In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer … 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-vcg7-gx5w-x44c
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-rhcj-6wxj-r34p
In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcp… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-rfv7-274m-vphw
In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix a resource… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-qpxp-qjrm-7f7r
In the Linux kernel, the following vulnerability has been resolved: ceph: do not propagate page ar… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-qjw7-wgfm-9frq
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-async: Fix error h… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-h3wc-x575-rqjq
In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Fix swapped par… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-cvxc-xfv3-gf64
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling whi… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-8x8h-4g2v-qpf2
In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: fix heap buffer ov… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-8h7q-934r-3xxv
In the Linux kernel, the following vulnerability has been resolved: soc: ti: pruss: Fix double fre… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-8h5h-g93f-3ff6
In the Linux kernel, the following vulnerability has been resolved: xfs: delete attr leaf freemap … 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-7ghh-wj4j-cfv3
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate user queu… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-7gfx-7jvh-p5vw
In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfs4_file refcount l… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-6g7r-xrvq-rpc8
In the Linux kernel, the following vulnerability has been resolved: net: consume xmit errors of GS… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-3vfw-27w6-rr78
In the Linux kernel, the following vulnerability has been resolved: dm mpath: Add missing dm_put_d… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-395h-h5jq-ggp6
In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_tcpmss: check re… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-2m7x-2cj2-wg69
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adjust PHY FS… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-25mj-mfqw-xqm2
In the Linux kernel, the following vulnerability has been resolved: netconsole: avoid OOB reads, m… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-2439-4xrr-7j2r
In the Linux kernel, the following vulnerability has been resolved: APEI/GHES: ARM processor Error… 2026-05-06T12:30:32Z 2026-05-06T12:30:32Z
ghsa-x976-429q-rjpm
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Move vbus d… 2026-05-06T12:30:31Z 2026-05-06T12:30:31Z
ghsa-vq8h-ghh5-4h7f
In the Linux kernel, the following vulnerability has been resolved: udplite: Fix null-ptr-deref in… 2026-05-06T12:30:31Z 2026-05-06T12:30:31Z
ghsa-vpc5-6pmj-q288
In the Linux kernel, the following vulnerability has been resolved: drm/buddy: Prevent BUG_ON by v… 2026-05-06T12:30:31Z 2026-05-06T12:30:31Z
ghsa-v6h5-rjwv-4cvj
In the Linux kernel, the following vulnerability has been resolved: EFI/CPER: don't dump the entir… 2026-05-06T12:30:31Z 2026-05-06T12:30:31Z
ID Severity Description Package Published Updated
pysec-2023-102
A refcounting issue which leads to potential memory leak was discovered in scipy commit 8… scipy 2023-07-05T17:15:00Z 2023-08-17T13:32:44.929651Z
pysec-2023-98
An issue in langchain v.0.0.199 allows an attacker to execute arbitrary code via the PALC… langchain 2023-07-03T21:15:00Z 2023-08-29T16:40:00.000000Z
pysec-2023-113
Products.CMFCore are the key framework services for the Zope Content Management Framework… products-cmfcore 2023-07-03T17:15:00+00:00 2023-07-17T20:27:51.578279+00:00
pysec-2023-100
In Django 3.2 before 3.2.20, 4 before 4.1.10, and 4.2 before 4.2.3, EmailValidator and UR… django 2023-07-03T13:15:00+00:00 2023-07-11T16:37:11.407533+00:00
pysec-2023-99
A dependency confusion in pipreqs v0.3.0 to v0.4.11 allows attackers to execute arbitrary… pipreqs 2023-06-30T20:15:00+00:00 2023-07-10T18:33:06.804092+00:00
pysec-2023-93
pacparser_find_proxy in Pacparser before 1.4.2 allows JavaScript injection, and possibly … pacparser 2023-06-30T18:15:00+00:00 2023-06-30T20:25:46.450877+00:00
pysec-2023-97
easy-parse v0.1.1 was discovered to contain a XML External Entity Injection (XXE) vulnera… easy-parse 2023-06-29T21:15:00+00:00 2023-07-07T02:41:36.549732+00:00
pysec-2023-96
requests-xml v0.2.3 was discovered to contain an XML External Entity Injection (XXE) vuln… requests-xml 2023-06-29T21:15:00+00:00 2023-07-06T22:29:19.818007+00:00
pysec-2023-95
py-xml v1.0 was discovered to contain an XML External Entity Injection (XXE) vulnerabilit… py-xml 2023-06-29T21:15:00+00:00 2023-07-06T22:29:19.184837+00:00
pysec-2023-94
Flask-AppBuilder is an application development framework, built on top of Flask. Prior to… flask-appbuilder 2023-06-22T23:15:00+00:00 2023-07-03T20:28:23.811646+00:00
pysec-2023-92
Langchain 0.0.171 is vulnerable to Arbitrary code execution in load_prompt. langchain 2023-06-20T15:15:00Z 2023-08-29T18:59:00.000000Z
pysec-2023-89
In Apache Airflow, some potentially sensitive values were being shown to the user in cert… apache-airflow 2023-06-19T09:15:00Z 2023-06-19T10:29:28.607914Z
pysec-2023-91
Langchain 0.0.171 is vulnerable to Arbitrary Code Execution. langchain 2023-06-14T15:15:00Z 2023-08-28T16:50:25.676144Z
pysec-2023-88
The Snowflake Connector for Python provides an interface for developing Python applicatio… snowflake-connector-python 2023-06-08T21:15:00Z 2023-06-16T18:28:10.272383Z
pysec-2023-90
Gradio is an open-source Python library that is used to build machine learning and data s… gradio 2023-06-08T00:15:00Z 2023-06-21T05:27:13.352872Z
pysec-2023-85
Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. A d… matrix-synapse 2023-06-06T19:15:00Z 2023-06-13T20:24:13.764030Z
pysec-2023-84
Synapse is a Matrix protocol homeserver written in Python with the Twisted framework. In … matrix-synapse 2023-06-06T19:15:00Z 2023-06-13T18:28:46.812103Z
pysec-2023-83
Directory traversal vulnerability in Starlette versions 0.13.5 and later and prior to 0.2… starlette 2023-06-01T02:15:00Z 2023-06-08T05:25:54.818459Z
pysec-2023-81
A vulnerability classified as problematic was found in MindSpore 2.0.0-alpha/2.0.0-rc1. T… mindspore 2023-05-30T06:16:00Z 2023-06-16T08:29:55.937187Z
pysec-2023-82
Django-SES is a drop-in mail backend for Django. The django_ses library implements a mail… django-ses 2023-05-26T21:15:00Z 2023-06-06T20:23:42.892470Z
pysec-2023-74
Requests is a HTTP library. Since Requests 2.3.0, Requests has been leaking Proxy-Authori… requests 2023-05-26T18:15:00Z 2023-06-05T01:13:00.534973Z
pysec-2023-67
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… matrix-synapse 2023-05-26T14:15:00Z 2023-06-05T01:12:54.808327Z
pysec-2023-66
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… matrix-synapse 2023-05-26T14:15:00Z 2023-06-05T01:12:54.698222Z
pysec-2023-65
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… matrix-synapse 2023-05-26T14:15:00Z 2023-06-05T01:12:54.592327Z
pysec-2023-75
Open redirect vulnerability in Tornado versions 6.3.1 and earlier allows a remote unauthe… tornado 2023-05-25T10:15:00Z 2023-06-05T01:13:01.694311Z
pysec-2023-80
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In contract… vyper 2023-05-19T20:15:00Z 2023-06-05T01:13:03.140034Z
pysec-2023-73
redis-7.0.10 was discovered to contain a segmentation violation. redis 2023-05-18T20:15:00Z 2023-06-27T18:49:56.911238Z
pysec-2023-299
4.7 (3.1)
Insecure Temporary File in GitHub repository huggingface/transformers prior to 4.30.0. transformers 2023-05-18T17:15:00+00:00 2024-11-21T14:23:01.805729+00:00
pysec-2023-69
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.3.1. mlflow 2023-05-17T21:15:00Z 2023-06-05T01:12:55.503398Z
pysec-2023-71
Planet is software that provides satellite data. The secret file stores the user's Planet… planet 2023-05-12T21:15:00Z 2023-06-05T01:12:57.755283Z
ID Description Updated
ID Description Published Updated
mal-2026-2802 Malicious code in synthetics-sdk-node (npm) 2026-04-16T10:19:13Z 2026-04-23T20:50:52Z
mal-2026-2801 Malicious code in sfx-data (npm) 2026-04-16T10:17:01Z 2026-04-23T20:50:52Z
mal-2026-2800 Malicious code in separadordeinfo (npm) 2026-04-16T10:16:50Z 2026-04-23T20:50:52Z
mal-2026-2799 Malicious code in rtxaspnet (npm) 2026-04-16T10:15:51Z 2026-04-23T20:50:52Z
mal-2026-2798 Malicious code in request-easy-validator (npm) 2026-04-16T10:15:30Z 2026-04-23T20:50:51Z
mal-2026-2797 Malicious code in relion-node (npm) 2026-04-16T10:15:19Z 2026-04-23T20:50:51Z
mal-2026-2796 Malicious code in relion-chain (npm) 2026-04-16T10:15:17Z 2026-04-23T20:50:51Z
mal-2026-2795 Malicious code in react-appfabric-shell (npm) 2026-04-16T10:13:30Z 2026-04-23T20:50:51Z
mal-2026-2794 Malicious code in puzzle-fragment (npm) 2026-04-16T10:12:49Z 2026-04-23T20:50:51Z
mal-2026-2793 Malicious code in pil2-stark-js (npm) 2026-04-16T10:11:12Z 2026-04-23T20:50:51Z
mal-2026-2792 Malicious code in pil2-proofman-js (npm) 2026-04-16T10:11:10Z 2026-04-23T20:50:51Z
mal-2026-2791 Malicious code in payments-ui (npm) 2026-04-16T10:10:48Z 2026-04-23T20:50:51Z
mal-2026-2790 Malicious code in package-with-import-assertions (npm) 2026-04-16T10:09:59Z 2026-04-23T20:50:51Z
mal-2026-2789 Malicious code in otomi-tasks (npm) 2026-04-16T10:09:49Z 2026-04-23T20:50:51Z
mal-2026-2788 Malicious code in otomi-console (npm) 2026-04-16T10:09:47Z 2026-04-23T20:50:51Z
mal-2026-2787 Malicious code in node-syncora (npm) 2026-04-16T10:07:54Z 2026-04-23T20:50:51Z
mal-2026-2786 Malicious code in node-metrica (npm) 2026-04-16T10:07:46Z 2026-04-23T20:50:51Z
mal-2026-2785 Malicious code in nemo-jaws (npm) 2026-04-16T10:07:12Z 2026-04-23T20:50:51Z
mal-2026-2784 Malicious code in nemo-datadrive (npm) 2026-04-16T10:07:10Z 2026-04-23T20:50:51Z
mal-2026-2783 Malicious code in mypeopledoc (npm) 2026-04-16T10:06:28Z 2026-04-23T20:50:51Z
mal-2026-2782 Malicious code in mybibilabu (npm) 2026-04-16T10:06:26Z 2026-04-23T20:50:51Z
mal-2026-2781 Malicious code in minecraft_image_to_blocks (npm) 2026-04-16T10:05:22Z 2026-04-23T20:50:51Z
mal-2026-2780 Malicious code in metrify-node (npm) 2026-04-16T10:05:20Z 2026-04-23T20:50:51Z
mal-2026-2779 Malicious code in metrify-chain (npm) 2026-04-16T10:05:18Z 2026-04-23T20:50:51Z
mal-2026-2778 Malicious code in marketing-analytics (npm) 2026-04-16T10:04:46Z 2026-04-23T20:50:51Z
mal-2026-2777 Malicious code in linode-developers (npm) 2026-04-16T10:03:45Z 2026-04-23T20:50:51Z
mal-2026-2776 Malicious code in int-browsing-gateway (npm) 2026-04-16T10:01:30Z 2026-04-23T20:50:50Z
mal-2026-2775 Malicious code in insomnia-smoke-test (npm) 2026-04-16T10:01:27Z 2026-04-23T20:50:50Z
mal-2026-2774 Malicious code in insomnia-scripting-environment (npm) 2026-04-16T10:01:25Z 2026-04-23T20:50:50Z
mal-2026-2773 Malicious code in insomnia-api (npm) 2026-04-16T10:01:23Z 2026-04-23T20:50:50Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2025-2395 Rancher Manager: Mehrere Schwachstellen 2025-10-23T22:00:00.000+00:00 2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2394 Linux Kernel: Mehrere Schwachstellen 2025-10-22T22:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2392 Internet Systems Consortium BIND: Mehrere Schwachstellen 2025-10-22T22:00:00.000+00:00 2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2391 OpenBao: Mehrere Schwachstellen 2025-10-22T22:00:00.000+00:00 2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2390 PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Manipulation von Dateien 2025-10-22T22:00:00.000+00:00 2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2388 MongoDB: Schwachstelle ermöglicht Privilegieneskalation 2025-10-22T22:00:00.000+00:00 2025-10-23T22:00:00.000+00:00
wid-sec-w-2025-2386 Unbound: Schwachstelle ermöglicht Manipulation von Dateien 2025-10-22T22:00:00.000+00:00 2026-01-07T23:00:00.000+00:00
wid-sec-w-2025-2385 Drupal Module: Mehrere Schwachstellen 2025-10-22T22:00:00.000+00:00 2025-10-29T23:00:00.000+00:00
wid-sec-w-2025-2380 Xen: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2379 Dell BIOS: Schwachstelle ermöglicht Manipulation von Daten 2025-10-21T22:00:00.000+00:00 2025-11-24T23:00:00.000+00:00
wid-sec-w-2025-2375 Google Chrome: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-10-21T22:00:00.000+00:00 2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2370 Oracle Systems: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2365 Oracle Java SE: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2363 Oracle MySQL: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2025-11-20T23:00:00.000+00:00
wid-sec-w-2025-2361 Oracle Communications: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2360 Oracle Communications Applications: Mehrere Schwachstellen 2025-10-21T22:00:00.000+00:00 2025-11-17T23:00:00.000+00:00
wid-sec-w-2025-2350 Linux Kernel: Mehrere Schwachstellen 2025-10-20T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2344 Checkmk: Schwachstelle ermöglicht Cross-Site Scripting 2025-10-20T22:00:00.000+00:00 2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2340 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-10-19T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2339 ImageMagick (BMP decoder): Schwachstelle ermöglicht Denial of Service 2025-10-19T22:00:00.000+00:00 2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2334 Squid: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Offenlegung von Informationen 2025-10-16T22:00:00.000+00:00 2025-11-02T23:00:00.000+00:00
wid-sec-w-2025-2329 cPanel/WHM (PostgreSQL, Perl): Mehrere Schwachstellen 2025-10-16T22:00:00.000+00:00 2026-04-09T22:00:00.000+00:00
wid-sec-w-2025-2327 binutils: Mehrere Schwachstellen ermöglichen Denial of Service 2025-10-16T22:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2325 xpdf: Schwachstelle ermöglicht Denial of Service 2025-10-16T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2322 Samba: Mehrere Schwachstellen 2025-10-15T22:00:00.000+00:00 2025-10-19T22:00:00.000+00:00
wid-sec-w-2025-2317 Ubiquiti UniFi: Schwachstelle ermöglicht Ausführung von Debug-Funktionen 2025-10-15T22:00:00.000+00:00 2025-10-30T23:00:00.000+00:00
wid-sec-w-2025-2315 Mattermost Server und Mobile: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-10-15T22:00:00.000+00:00 2025-10-15T22:00:00.000+00:00
wid-sec-w-2025-2314 HCL BigFix: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen 2025-10-15T22:00:00.000+00:00 2025-10-15T22:00:00.000+00:00
wid-sec-w-2025-2313 IBM App Connect Enterprise: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-10-15T22:00:00.000+00:00 2025-10-15T22:00:00.000+00:00
wid-sec-w-2025-2312 Cisco Mehrere Produkte: Mehrere Schwachstellen 2025-10-15T22:00:00.000+00:00 2025-10-15T22:00:00.000+00:00
ID Description Published Updated
icsa-25-135-03 Siemens BACnet ATEC Devices 2025-05-13T00:00:00.000000Z 2025-05-13T00:00:00.000000Z
icsa-25-135-02 Siemens INTRALOG WMS 2025-05-13T00:00:00.000000Z 2025-05-13T00:00:00.000000Z
icsa-25-135-01 Siemens RUGGEDCOM APE1808 Devices 2025-05-13T00:00:00.000000Z 2026-02-12T07:00:00.000000Z
icsma-25-128-01 Pixmeo OsiriX MD 2025-05-08T06:00:00.000000Z 2025-05-08T06:00:00.000000Z
icsa-25-128-01 Horner Automation Cscape 2025-05-08T06:00:00.000000Z 2025-05-08T06:00:00.000000Z
icsa-25-126-02 Milesight UG65-868M-EA 2025-05-06T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-126-01 Optigo Networks ONS NC600 2025-05-06T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsma-25-121-01 MicroDicom DICOM Viewer 2025-05-01T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-121-01 KUNBUS GmbH Revolution Pi (Update A) 2025-05-01T06:00:00.000000Z 2025-07-10T06:00:00.000000Z
va-25-120-01 Commvault Web Server unspecified vulnerability 2025-04-30T00:00:00Z 2025-04-30T00:00:00Z
va-25-119-01 MSP360 Backup insecure filesystem permissions 2025-04-29T15:59:52Z 2025-05-19T00:00:00Z
icsa-25-196-01 Hitachi Energy Asset Suite 2025-04-29T12:30:00.000000Z 2025-04-29T12:30:00.000000Z
icsa-25-119-02 Delta Electronics ISPSoft 2025-04-29T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-119-01 Rockwell Automation ThinManager 2025-04-29T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-128-03 Mitsubishi Electric Multiple FA Products (Update C) 2025-04-25T03:00:00.000000Z 2026-04-30T06:00:00.000000Z
icsa-25-114-06 Planet Technology Network Products 2025-04-24T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-114-05 Johnson Controls Software House iSTAR Configuration Utility (ICU) Tool 2025-04-24T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-114-04 Nice Linear eMerge E3 2025-04-24T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-114-03 Vestel AC Charger 2025-04-24T06:00:00.000000Z 2025-04-24T06:00:00.000000Z
icsa-25-114-02 ALBEDO Telecom Net.Time - PTP/NTP clock 2025-04-24T06:00:00.000000Z 2025-04-24T06:00:00.000000Z
icsa-25-107-04 Yokogawa Recorder Products 2025-04-17T06:00:00.000000Z 2025-04-17T06:00:00.000000Z
icsa-25-112-02 Siemens TeleControl Server Basic 2025-04-16T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-112-01 Siemens TeleControl Server Basic SQL 2025-04-16T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
va-25-104-01 SicommNet multiple vulnerabilities 2025-04-15T13:49:55Z 2025-04-23T00:00:00Z
icsa-25-105-09 Mitsubishi Electric Europe B.V. smartRTU 2025-04-15T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-105-07 Delta Electronics COMMGR (Update A) 2025-04-15T06:00:00.000000Z 2025-09-04T06:00:00.000000Z
icsa-25-105-06 National Instruments LabVIEW 2025-04-15T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-105-05 Lantronix XPort (Update A) 2025-04-15T06:00:00.000000Z 2025-04-29T06:00:00.000000Z
icsa-25-105-04 Growatt Cloud Applications 2025-04-15T06:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-25-112-04 ABB MV Drives 2025-04-10T08:30:00.000000Z 2025-04-10T08:30:00.000000Z
ID Description Published Updated
cisco-sa-http2-reset-d8kf32vz HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023 2023-10-16T16:00:00+00:00 2023-12-21T17:09:38+00:00
cisco-sa-iosxe-webui-privesc-j22saa4z Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature 2023-10-16T15:00:00+00:00 2023-11-01T15:44:28+00:00
cisco-sa-curl-libcurl-d9ds39cv cURL and libcurl Vulnerability Affecting Cisco Products: October 2023 2023-10-12T16:00:00+00:00 2024-08-27T18:06:16+00:00
cisco-sa-rdocker-uatbukkn Cisco IOx Application Hosting Environment Privilege Escalation Vulnerability 2023-10-04T16:00:00+00:00 2023-10-04T16:00:00+00:00
cisco-sa-cucm-apidos-pgsdcdnf Multiple Cisco Unified Communications Products Unauthenticated API High CPU Utilization Denial of Service Vulnerability 2023-10-04T16:00:00+00:00 2024-05-17T15:07:50+00:00
cisco-sa-cer-priv-esc-b9t3hqk9 Cisco Emergency Responder Static Credentials Vulnerability 2023-10-04T16:00:00+00:00 2023-10-04T16:00:00+00:00
cisco-sa-wlc-wncd-hfgmsfsd Cisco IOS XE Software for Wireless LAN Controllers Wireless Network Control Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-webui-cmdij-fzzaexay Cisco IOS XE Software Web UI Command Injection Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-vmanage-html-3zkh8d6x Cisco Catalyst SD-WAN Manager Web UI HTML Injection Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-sdwan-vman-sc-lrlfu2z Cisco Catalyst SD-WAN Manager Vulnerabilities 2023-09-27T16:00:00+00:00 2023-10-25T16:37:56+00:00
cisco-sa-mlre-h93fswrz Cisco IOS XE Software for ASR 1000 Series Aggregation Services Routers IPv6 Multicast Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-ios-xe-l2tp-dos-eb5tufmv Cisco IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-getvpn-rce-g8qr68sx Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-dnac-ins-acc-con-nhavdrbz Cisco DNA Center API Insufficient Access Control Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-click-ap-dos-wdcxkvnq Cisco Catalyst 9100 Access Points Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-cbw-dos-ysmbuqx3 Cisco Wireless LAN Controller AireOS Software Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-cat3k-dos-zza4gb3r Cisco IOS XE Software for Catalyst 3650 and Catalyst 3850 Series Switches Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-appqoe-utd-dos-p8o57p5y Cisco IOS XE Software Application Quality of Experience and Unified Threat Defense Denial of Service Vulnerability 2023-09-27T16:00:00+00:00 2023-09-27T16:00:00+00:00
cisco-sa-ap-dos-capwap-ddmczs4m Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability 2023-09-27T16:00:00+00:00 2024-12-12T12:27:21+00:00
cisco-sa-aaascp-tyj4fejm Cisco IOS and IOS XE Software Command Authorization Bypass Vulnerability 2023-09-27T16:00:00+00:00 2023-10-13T13:36:50+00:00
cisco-sa-lnt-l9zokbz5 Cisco IOS XR Software Image Verification Vulnerability 2023-09-13T16:00:00+00:00 2023-09-13T16:00:00+00:00
cisco-sa-iosxr-ipxe-sigbypass-pymfyqgb Cisco IOS XR Software iPXE Boot Signature Bypass Vulnerability 2023-09-13T16:00:00+00:00 2024-08-07T15:55:33+00:00
cisco-sa-iosxr-info-gxp7nvcp Cisco IOS XR Software Model-Driven Programmability Behavior with AAA Authorization 2023-09-13T16:00:00+00:00 2023-09-13T16:00:00+00:00
cisco-sa-ios-xr-cfm-3pwn8mkt Cisco IOS XR Software Connectivity Fault Management Denial of Service Vulnerability 2023-09-13T16:00:00+00:00 2023-09-13T16:00:00+00:00
cisco-sa-dnx-acl-pyzdkeyf Cisco IOS XR Software Access Control List Bypass Vulnerability 2023-09-13T16:00:00+00:00 2023-09-13T16:00:00+00:00
cisco-sa-comp3acl-vgmp6bq3 Cisco IOS XR Software Compression ACL Bypass Vulnerability 2023-09-13T16:00:00+00:00 2023-09-13T16:00:00+00:00
cisco-sa-sb-rv-stack-shyv2f5n Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Stack Overflow Vulnerability 2023-09-06T16:00:00+00:00 2023-09-06T16:00:00+00:00
cisco-sa-ise-radius-dos-w7cnn7gt Cisco Identity Services Engine RADIUS Denial of Service Vulnerability 2023-09-06T16:00:00+00:00 2023-09-06T16:00:00+00:00
cisco-sa-ise-priv-esc-kjlp2aw Cisco Identity Services Engine Privilege Escalation Vulnerabilities 2023-09-06T16:00:00+00:00 2024-01-08T19:01:50+00:00
cisco-sa-hyperflex-redirect-uxlgqduf Cisco HyperFlex HX Data Platform Open Redirect Vulnerability 2023-09-06T16:00:00+00:00 2023-09-06T16:00:00+00:00
ID Description Published Updated
msrc_cve-2026-31638 rxrpc: Only put the call ref if one was acquired 2026-04-02T00:00:00.000Z 2026-05-01T14:39:46.000Z
msrc_cve-2026-31637 rxrpc: reject undecryptable rxkad response tickets 2026-04-02T00:00:00.000Z 2026-05-01T14:40:22.000Z
msrc_cve-2026-31634 rxrpc: fix reference count leak in rxrpc_server_keyring() 2026-04-02T00:00:00.000Z 2026-05-01T14:44:08.000Z
msrc_cve-2026-31630 rxrpc: proc: size address buffers for %pISpc output 2026-04-02T00:00:00.000Z 2026-05-06T14:41:46.000Z
msrc_cve-2026-31629 nfc: llcp: add missing return after LLCP_CLOSED checks 2026-04-02T00:00:00.000Z 2026-05-01T14:43:05.000Z
msrc_cve-2026-31628 x86/CPU: Fix FPDSS on Zen1 2026-04-02T00:00:00.000Z 2026-05-01T14:43:12.000Z
msrc_cve-2026-31627 i2c: s3c24xx: check the size of the SMBUS message before using it 2026-04-02T00:00:00.000Z 2026-05-01T14:41:56.000Z
msrc_cve-2026-31626 staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify() 2026-04-02T00:00:00.000Z 2026-05-01T14:40:49.000Z
msrc_cve-2026-31625 HID: alps: fix NULL pointer dereference in alps_raw_event() 2026-04-02T00:00:00.000Z 2026-05-01T14:44:14.000Z
msrc_cve-2026-31624 HID: core: clamp report_size in s32ton() to avoid undefined shift 2026-04-02T00:00:00.000Z 2026-05-01T14:40:29.000Z
msrc_cve-2026-31623 net: usb: cdc-phonet: fix skb frags[] overflow in rx_complete() 2026-04-02T00:00:00.000Z 2026-05-01T14:42:17.000Z
msrc_cve-2026-31622 NFC: digital: Bounds check NFC-A cascade depth in SDD response handler 2026-04-02T00:00:00.000Z 2026-05-01T14:44:34.000Z
msrc_cve-2026-31621 bnge: return after auxiliary_device_uninit() in error path 2026-04-02T00:00:00.000Z 2026-04-29T14:46:38.000Z
msrc_cve-2026-31620 ALSA: usx2y: us144mkii: fix NULL deref on missing interface 0 2026-04-02T00:00:00.000Z 2026-04-29T14:52:49.000Z
msrc_cve-2026-31619 ALSA: fireworks: bound device-supplied status before string array lookup 2026-04-02T00:00:00.000Z 2026-05-01T14:45:03.000Z
msrc_cve-2026-31618 fbdev: tdfxfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 2026-04-02T00:00:00.000Z 2026-05-01T14:39:32.000Z
msrc_cve-2026-31617 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb() 2026-04-02T00:00:00.000Z 2026-04-30T01:51:31.000Z
msrc_cve-2026-31616 usb: gadget: f_phonet: fix skb frags[] overflow in pn_rx_complete() 2026-04-02T00:00:00.000Z 2026-04-30T01:40:49.000Z
msrc_cve-2026-31615 usb: gadget: renesas_usb3: validate endpoint index in standard request handlers 2026-04-02T00:00:00.000Z 2026-05-01T14:41:09.000Z
msrc_cve-2026-31613 smb: client: fix OOB reads parsing symlink error response 2026-04-02T00:00:00.000Z 2026-05-06T14:41:21.000Z
msrc_cve-2026-31612 ksmbd: validate EaNameLength in smb2_get_ea() 2026-04-02T00:00:00.000Z 2026-05-01T14:42:24.000Z
msrc_cve-2026-31611 ksmbd: require 3 sub-authorities before reading sub_auth[2] 2026-04-02T00:00:00.000Z 2026-05-01T14:41:43.000Z
msrc_cve-2026-31610 ksmbd: fix mechToken leak when SPNEGO decode fails after token alloc 2026-04-02T00:00:00.000Z 2026-05-01T14:41:16.000Z
msrc_cve-2026-31609 smb: client: avoid double-free in smbd_free_send_io() after smbd_send_batch_flush() 2026-04-02T00:00:00.000Z 2026-05-01T01:02:29.000Z
msrc_cve-2026-31608 smb: server: avoid double-free in smb_direct_free_sendmsg after smb_direct_flush_send_list() 2026-04-02T00:00:00.000Z 2026-05-02T01:42:00.000Z
msrc_cve-2026-31607 usbip: validate number_of_packets in usbip_pack_ret_submit() 2026-04-02T00:00:00.000Z 2026-05-01T14:39:12.000Z
msrc_cve-2026-31606 usb: gadget: f_hid: don't call cdev_init while cdev in use 2026-04-02T00:00:00.000Z 2026-05-06T14:39:17.000Z
msrc_cve-2026-31605 fbdev: udlfb: avoid divide-by-zero on FBIOPUT_VSCREENINFO 2026-04-02T00:00:00.000Z 2026-05-01T14:40:07.000Z
msrc_cve-2026-31604 wifi: rtw88: fix device leak on probe failure 2026-04-02T00:00:00.000Z 2026-05-01T14:45:22.000Z
msrc_cve-2026-31603 staging: sm750fb: fix division by zero in ps_to_hz() 2026-04-02T00:00:00.000Z 2026-05-01T14:41:36.000Z
ID Description Published Updated
ncsc-2025-0029 Kwetsbaarheid verholpen in SonicWall SMA1000 Appliance 2025-01-23T13:50:32.719670Z 2025-01-23T13:50:32.719670Z
ncsc-2025-0028 Kwetsbaarheden verholpen in Oracle Analytics 2025-01-22T13:36:58.196605Z 2025-01-22T13:36:58.196605Z
ncsc-2025-0027 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2025-01-22T13:36:27.908718Z 2025-01-22T13:36:27.908718Z
ncsc-2025-0026 Kwetsbaarheden verholpen in Oracle JD Edwards 2025-01-22T13:34:42.937250Z 2025-01-22T13:34:42.937250Z
ncsc-2025-0025 Kwetsbaarheden verholpen in Oracle Financial Services 2025-01-22T13:33:00.723963Z 2025-01-22T13:33:00.723963Z
ncsc-2025-0024 Kwetsbaarheden verholpen in Oracle MySQL 2025-01-22T13:32:27.142159Z 2025-01-22T13:32:27.142159Z
ncsc-2025-0023 Kwetsbaarheden verholpen in Oracle PeopleSoft 2025-01-22T13:31:17.380797Z 2025-01-22T13:31:17.380797Z
ncsc-2025-0022 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2025-01-22T13:31:16.019294Z 2025-01-22T13:31:16.019294Z
ncsc-2025-0021 Kwetsbaarheden verholpen in Oracle Communications 2025-01-22T13:30:50.189632Z 2025-01-22T13:30:50.189632Z
ncsc-2025-0020 Kwetsbaarheden verholpen in Oracle Database producten 2025-01-22T13:30:16.354373Z 2025-01-22T13:30:16.354373Z
ncsc-2025-0019 Kwetsbaarheden verholpen in Schneider Electric Modicon 2025-01-16T11:46:16.661689Z 2025-01-16T11:46:16.661689Z
ncsc-2025-0018 Kwetsbaarheden verholpen in Fortinet FortiSwitch, FortiManager, FortiAnalyzer, FortiOS en FortiProxy 2025-01-15T13:25:32.904961Z 2025-01-15T13:25:32.904961Z
ncsc-2025-0017 Kwetsbaarheden verholpen in Ivanti Endpoint Manager 2025-01-15T11:59:32.488132Z 2025-01-15T11:59:32.488132Z
ncsc-2025-0016 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2025-01-15T11:47:27.276959Z 2025-01-15T11:47:27.276959Z
ncsc-2025-0015 Kwetsbaarheden verholpen in Rsync 2025-01-15T07:42:19.351539Z 2025-01-15T07:42:19.351539Z
ncsc-2025-0014 Kwetsbaarheid verholpen in Microsoft Dynamics Power Automate 2025-01-14T19:20:14.753491Z 2025-01-14T19:20:14.753491Z
ncsc-2025-0013 Kwetsbaarheden verholpen in Microsoft Azure 2025-01-14T19:18:00.798473Z 2025-01-14T19:18:00.798473Z
ncsc-2025-0012 Kwetsbaarheden verholpen in Microsoft Office 2025-01-14T19:15:33.729625Z 2025-01-14T19:15:33.729625Z
ncsc-2025-0011 Kwetsbaarheden verholpen in Microsoft Developer Tools 2025-01-14T19:10:44.895101Z 2025-01-14T19:10:44.895101Z
ncsc-2025-0010 Kwetsbaarheden verholpen in Microsoft Windows 2025-01-14T19:09:24.429168Z 2025-01-14T19:09:24.429168Z
ncsc-2025-0009 Kwetsbaarheid verholpen in FortiNet FortiOS en FortiProxy 2025-01-14T14:58:02.272504Z 2025-01-28T10:42:03.747650Z
ncsc-2025-0008 Kwetsbaarheden verholpen in Siemens producten 2025-01-14T11:54:04.658073Z 2025-01-14T11:54:04.658073Z
ncsc-2025-0007 Kwetsbaarheden verholpen in SAP producten 2025-01-14T11:50:16.988268Z 2025-01-14T11:50:16.988268Z
ncsc-2025-0006 Kwetsbaarheden verholpen in Juniper JunOS 2025-01-10T12:14:00.841636Z 2025-01-10T12:14:00.841636Z
ncsc-2025-0005 Kwetsbaarheden verholpen in Ivanti Connect Secure en Policy Secure 2025-01-08T18:55:33.983262Z 2025-01-17T08:54:45.356129Z
ncsc-2025-0004 Kwetsbaarheden verholpen in SonicWall SonicOS 2025-01-08T09:57:24.409437Z 2025-02-18T08:09:28.652034Z
ncsc-2025-0003 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-01-07T12:54:49.261777Z 2025-01-07T12:54:49.261777Z
ncsc-2025-0002 Kwetsbaarheden verholpen in Moxa's cellulaire routers en netwerkbeveiligingsapparaten 2025-01-06T07:49:21.319255Z 2025-01-06T07:49:21.319255Z
ncsc-2025-0001 Kwetsbaarheden verholpen in Ipswitch WhatsUp Gold 2025-01-03T12:01:12.344285Z 2025-01-03T12:01:12.344285Z
ncsc-2024-0500 Kwetsbaarheden verholpen in Foxit PDF Reader en PDF Editor 2024-12-31T09:22:24.145718Z 2024-12-31T09:22:24.145718Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2026:10271-1 libjxl-devel-0.11.2-1.1 on GA media 2026-02-27T00:00:00Z 2026-02-27T00:00:00Z
opensuse-su-2026:10270-1 gosec-2.24.0-1.1 on GA media 2026-02-27T00:00:00Z 2026-02-27T00:00:00Z
opensuse-su-2026:10269-1 cockpit-podman-120-2.1 on GA media 2026-02-27T00:00:00Z 2026-02-27T00:00:00Z
opensuse-su-2026:10268-1 cockpit-356-2.1 on GA media 2026-02-27T00:00:00Z 2026-02-27T00:00:00Z
opensuse-su-2026:10267-1 ImageMagick-7.1.2.15-1.1 on GA media 2026-02-27T00:00:00Z 2026-02-27T00:00:00Z
opensuse-su-2026:20279-1 Security update for containerized-data-importer 2026-02-26T16:03:48Z 2026-02-26T16:03:48Z
opensuse-su-2026:20273-1 Security update for 7zip 2026-02-26T11:53:30Z 2026-02-26T11:53:30Z
opensuse-su-2026:20277-1 Security update for chromium 2026-02-26T11:50:46Z 2026-02-26T11:50:46Z
opensuse-su-2026:20271-1 Security update for python-urllib3_1 2026-02-26T09:45:23Z 2026-02-26T09:45:23Z
opensuse-su-2026:20270-1 Security update for autogen 2026-02-26T09:10:10Z 2026-02-26T09:10:10Z
opensuse-su-2026:10266-1 valkey-9.0.3-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10265-1 qemu-10.2.1-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10264-1 python311-Flask-3.1.3-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10263-1 heroic-games-launcher-2.20.0-2.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10262-1 evolution-data-server-3.58.3-2.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10261-1 docker-29.2.1_ce-37.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10260-1 digger-cli-0.6.143-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10259-1 chromedriver-145.0.7632.116-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10258-1 busybox-1.37.0-10.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:10257-1 MozillaFirefox-148.0-1.1 on GA media 2026-02-26T00:00:00Z 2026-02-26T00:00:00Z
opensuse-su-2026:20275-1 Security update for gimp 2026-02-25T10:52:32Z 2026-02-25T10:52:32Z
opensuse-su-2026:10256-1 regclient-0.11.2-1.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10255-1 docker-stable-24.0.9_ce-17.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10254-1 cockpit-tukit-0.1.7~git0.61e54f1-3.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10253-1 cockpit-subscriptions-14.4-4.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10252-1 cockpit-repos-4.7-4.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10251-1 cockpit-packages-4.1-4.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10250-1 cockpit-machines-348-1.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10249-1 cmctl-2.4.1-1.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
opensuse-su-2026:10248-1 MozillaThunderbird-140.8.0-1.1 on GA media 2026-02-25T00:00:00Z 2026-02-25T00:00:00Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:8878 Red Hat Security Advisory: grafana-pcp security update 2026-04-20T02:38:29+00:00 2026-05-06T15:02:18+00:00
rhsa-2026:8881 Red Hat Security Advisory: grafana security update 2026-04-20T02:37:32+00:00 2026-05-06T15:02:18+00:00
rhsa-2026:8845 Red Hat Security Advisory: grafana-pcp security update 2026-04-20T02:34:54+00:00 2026-05-06T15:02:17+00:00
rhsa-2026:8877 Red Hat Security Advisory: grafana security update 2026-04-20T02:32:39+00:00 2026-05-06T15:02:17+00:00
rhsa-2026:8858 Red Hat Security Advisory: giflib security update 2026-04-20T02:26:19+00:00 2026-04-21T19:40:53+00:00
rhsa-2026:8869 Red Hat Security Advisory: openexr security update 2026-04-20T02:23:59+00:00 2026-04-30T21:34:38+00:00
rhsa-2026:8884 Red Hat Security Advisory: giflib security update 2026-04-20T02:20:40+00:00 2026-04-21T19:40:51+00:00
rhsa-2026:8867 Red Hat Security Advisory: libarchive security update 2026-04-20T02:20:14+00:00 2026-05-05T20:30:47+00:00
rhsa-2026:8855 Red Hat Security Advisory: rhc security update 2026-04-20T02:20:04+00:00 2026-05-06T15:02:16+00:00
rhsa-2026:8875 Red Hat Security Advisory: fontforge security update 2026-04-20T02:12:34+00:00 2026-04-23T07:01:06+00:00
rhsa-2026:8851 Red Hat Security Advisory: rhc security update 2026-04-20T01:48:19+00:00 2026-05-06T15:02:16+00:00
rhsa-2026:8849 Red Hat Security Advisory: grafana security update 2026-04-20T01:29:04+00:00 2026-05-06T15:02:18+00:00
rhsa-2026:8850 Red Hat Security Advisory: thunderbird security update 2026-04-20T01:28:29+00:00 2026-04-28T18:40:43+00:00
rhsa-2026:8852 Red Hat Security Advisory: rhc security update 2026-04-20T01:22:23+00:00 2026-05-06T15:02:16+00:00
rhsa-2026:8853 Red Hat Security Advisory: grafana security update 2026-04-20T01:21:28+00:00 2026-05-06T15:02:16+00:00
rhsa-2026:8841 Red Hat Security Advisory: go-rpm-macros security update 2026-04-20T00:48:03+00:00 2026-05-06T15:02:14+00:00
rhsa-2026:8842 Red Hat Security Advisory: delve security update 2026-04-20T00:37:18+00:00 2026-05-07T07:55:46+00:00
rhsa-2026:8840 Red Hat Security Advisory: go-rpm-macros security update 2026-04-20T00:29:18+00:00 2026-05-06T15:02:14+00:00
rhsa-2026:8838 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T23:15:06+00:00 2026-04-21T13:32:51+00:00
rhsa-2026:8824 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T19:24:04+00:00 2026-05-07T08:27:20+00:00
rhsa-2026:8822 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T18:54:19+00:00 2026-05-07T08:27:19+00:00
rhsa-2026:8814 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T17:04:56+00:00 2026-04-22T16:37:10+00:00
rhsa-2026:8813 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T16:26:53+00:00 2026-04-20T21:33:24+00:00
rhsa-2026:8812 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T16:12:07+00:00 2026-04-20T21:34:30+00:00
rhsa-2026:8756 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T12:05:00+00:00 2026-04-29T18:26:28+00:00
rhsa-2026:8753 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T11:29:33+00:00 2026-04-20T21:35:33+00:00
rhsa-2026:8749 Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update 2026-04-17T11:19:38+00:00 2026-04-25T16:56:44+00:00
rhsa-2026:8748 Red Hat Security Advisory: Red Hat AI Inference Server Model Optimization Tools 3.3.1 (CUDA) 2026-04-17T11:11:06+00:00 2026-05-06T09:07:43+00:00
rhsa-2026:8746 Red Hat Security Advisory: Red Hat AI Inference Server 3.3.1 (CUDA) 2026-04-17T11:10:51+00:00 2026-05-06T09:07:39+00:00
rhsa-2026:8747 Red Hat Security Advisory: Red Hat AI Inference Server 3.3.1 (ROCm) 2026-04-17T11:10:50+00:00 2026-05-06T09:07:38+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ssa-439148 SSA-439148: File Parsing Vulnerabilities in PADS Standard/Plus Viewer 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-433782 SSA-433782: Improper Access Control Vulnerability in Mendix 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-348662 SSA-348662: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-310038 SSA-310038: Multiple Vulnerabilities in SCALANCE X Switch Devices 2022-07-12T00:00:00Z 2023-04-11T00:00:00Z
ssa-243317 SSA-243317 File Parsing Vulnerability in Simcenter Femap and Parasolid 2022-07-12T00:00:00Z 2022-09-13T00:00:00Z
ssa-225578 SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3 2022-07-12T00:00:00Z 2025-11-11T00:00:00Z
ssa-111512 SSA-111512: Client-side Authentication in SIMATIC WinCC OA 2022-06-21T00:00:00Z 2022-06-21T00:00:00Z
ssa-988345 SSA-988345: Local Privilege Escalation Vulnerability in Xpedition Designer 2022-06-14T00:00:00Z 2023-06-13T00:00:00Z
ssa-911567 SSA-911567: Missing HTTP headers in SINEMA Remote Connect Server before V3.0 SP2 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-740594 SSA-740594: Privilege Escalation Vulnerability in Mendix SAML Module 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-712929 SSA-712929: Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Products 2022-06-14T00:00:00.000Z 2026-04-14T00:00:00.000Z
ssa-693555 SSA-693555: Memory Corruption Vulnerability in EN100 Ethernet Module 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-685781 SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products 2022-06-14T00:00:00Z 2022-10-11T00:00:00Z
ssa-631336 SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6 2022-06-14T00:00:00Z 2025-11-11T00:00:00Z
ssa-484086 SSA-484086: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1 2022-06-14T00:00:00Z 2024-07-09T00:00:00Z
ssa-401167 SSA-401167: Cross-site scripting Vulnerability in Teamcenter Active Workspace 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-388239 SSA-388239: Default Password Leakage affecting the Component Shared HIS used in Spectrum Power Systems 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-330556 SSA-330556: PwnKit Vulnerability in SCALANCE LPE9403 and SINUMERIK Edge Products (CVE-2021-4034) 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-222547 SSA-222547: Third-Party Component Vulnerabilities in SCALANCE LPE9403 before V2.0 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-220589 SSA-220589: Hard Coded Default Credential Vulnerability in Teamcenter 2022-06-14T00:00:00Z 2022-08-09T00:00:00Z
ssa-145224 SSA-145224: Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-789162 SSA-789162: Vulnerabilities in Teamcenter 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-736385 SSA-736385: Memory Corruption Vulnerability in OpenV2G 2022-05-10T00:00:00Z 2022-05-10T00:00:00Z
ssa-732250 SSA-732250: Libcurl Vulnerabilities in Industrial Devices 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-662649 SSA-662649: Denial of Service Vulnerability in Desigo DXR and PXC Controllers 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-626968 SSA-626968: Multiple Webserver Vulnerabilities in Desigo PXC and DXR Devices 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-553086 SSA-553086: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization 2022-05-10T00:00:00Z 2022-05-10T00:00:00Z
ssa-480937 SSA-480937: Denial of Service Vulnerability in CP 44x-1 RNA before V1.5.18 2022-05-10T00:00:00Z 2022-05-10T00:00:00Z
ssa-363107 SSA-363107: An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode 2022-05-10T00:00:00Z 2023-11-14T00:00:00Z
ssa-321292 SSA-321292: Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial Products 2022-05-10T00:00:00Z 2024-10-08T00:00:00Z
ID Description Published Updated
suse-su-2026:1303-1 Security update for tigervnc 2026-04-13T16:02:59Z 2026-04-13T16:02:59Z
suse-su-2026:1302-1 Security update for tigervnc 2026-04-13T16:02:16Z 2026-04-13T16:02:16Z
suse-su-2026:1301-1 Security update for tigervnc 2026-04-13T16:01:23Z 2026-04-13T16:01:23Z
suse-su-2026:1300-1 Security update for GraphicsMagick 2026-04-13T15:58:01Z 2026-04-13T15:58:01Z
suse-su-2026:1299-1 Security update for nodejs24 2026-04-13T15:54:45Z 2026-04-13T15:54:45Z
suse-su-2026:21186-1 Security update for openssl-3 2026-04-13T15:48:01Z 2026-04-13T15:48:01Z
suse-su-2026:21107-1 Security update for openssl-3 2026-04-13T15:48:01Z 2026-04-13T15:48:01Z
suse-su-2026:1298-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5) 2026-04-13T15:04:44Z 2026-04-13T15:04:44Z
suse-su-2026:21184-1 Security update for cockpit 2026-04-13T14:11:34Z 2026-04-13T14:11:34Z
suse-su-2026:21106-1 Security update for cockpit 2026-04-13T14:11:34Z 2026-04-13T14:11:34Z
suse-su-2026:1297-1 Security update for the Linux Kernel (Live Patch 71 for SUSE Linux Enterprise 12 SP5) 2026-04-13T12:42:14Z 2026-04-13T12:42:14Z
suse-su-2026:1296-1 Security update for python39 2026-04-13T12:32:48Z 2026-04-13T12:32:48Z
suse-su-2026:21180-1 Security update for webkit2gtk3 2026-04-13T12:16:05Z 2026-04-13T12:16:05Z
suse-su-2026:21181-1 Security update for nodejs24 2026-04-13T10:59:52Z 2026-04-13T10:59:52Z
suse-su-2026:21178-1 Security update for python313 2026-04-13T09:49:38Z 2026-04-13T09:49:38Z
suse-su-2026:21104-1 Security update for python313 2026-04-13T09:49:38Z 2026-04-13T09:49:38Z
suse-su-2026:1294-1 Security update for the Linux Kernel (Live Patch 77 for SUSE Linux Enterprise 12 SP5) 2026-04-13T09:04:33Z 2026-04-13T09:04:33Z
suse-su-2026:21221-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 16) 2026-04-13T09:00:51Z 2026-04-13T09:00:51Z
suse-su-2026:21102-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 16) 2026-04-13T09:00:51Z 2026-04-13T09:00:51Z
suse-su-2026:1293-1 Security update for the Linux Kernel (Live Patch 75 for SUSE Linux Enterprise 12 SP5) 2026-04-13T08:35:44Z 2026-04-13T08:35:44Z
suse-su-2026:1292-1 Security update for python312 2026-04-13T08:10:43Z 2026-04-13T08:10:43Z
suse-su-2026:1291-1 Security update for openssl-1_0_0 2026-04-13T08:09:41Z 2026-04-13T08:09:41Z
suse-su-2026:1290-1 Security update for openssl-1_1 2026-04-13T08:08:54Z 2026-04-13T08:08:54Z
suse-su-2026:1288-1 Security update for the Linux Kernel (Live Patch 74 for SUSE Linux Enterprise 12 SP5) 2026-04-13T06:34:14Z 2026-04-13T06:34:14Z
suse-su-2026:21220-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16) 2026-04-13T03:18:11Z 2026-04-13T03:18:11Z
suse-su-2026:21100-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16) 2026-04-13T03:18:11Z 2026-04-13T03:18:11Z
suse-su-2026:21219-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16) 2026-04-13T02:46:56Z 2026-04-13T02:46:56Z
suse-su-2026:21099-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16) 2026-04-13T02:46:56Z 2026-04-13T02:46:56Z
suse-su-2026:21218-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 16) 2026-04-13T02:14:56Z 2026-04-13T02:14:56Z
suse-su-2026:21098-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 16) 2026-04-13T02:14:56Z 2026-04-13T02:14:56Z
ID Description Published Updated
alsa-2026:0241 Important: libpng security update 2026-01-07T00:00:00Z 2026-01-07T21:34:12Z
alsa-2026:0238 Important: libpng security update 2026-01-07T00:00:00Z 2026-01-07T21:36:21Z
alsa-2026:0237 Important: libpng security update 2026-01-07T00:00:00Z 2026-01-07T21:38:33Z
alsa-2026:0233 Important: mariadb:10.5 security update 2026-01-07T00:00:00Z 2026-01-12T10:45:28Z
alsa-2026:0232 Important: mariadb:10.11 security update 2026-01-07T00:00:00Z 2026-01-12T10:48:54Z
alsa-2026:0225 Important: mariadb:10.3 security update 2026-01-07T00:00:00Z 2026-01-12T10:51:12Z
alsa-2026:0137 Important: mariadb security update 2026-01-06T00:00:00Z 2026-01-07T14:24:03Z
alsa-2026:0136 Important: mariadb10.11 security update 2026-01-06T00:00:00Z 2026-01-12T10:55:58Z
alsa-2026:0130 Moderate: poppler security update 2026-01-06T00:00:00Z 2026-01-07T14:26:34Z
alsa-2026:0128 Moderate: poppler security update 2026-01-06T00:00:00Z 2026-01-07T14:29:22Z
alsa-2026:0126 Moderate: poppler security update 2026-01-06T00:00:00Z 2026-01-07T14:21:37Z
alsa-2026:0125 Important: mingw-libpng security update 2026-01-06T00:00:00Z 2026-01-07T21:32:21Z
alsa-2026:0123 Moderate: python3.12 security update 2026-01-06T00:00:00Z 2026-01-07T14:18:43Z
alsa-2026:0108 Moderate: gcc-toolset-15-binutils security update 2026-01-06T00:00:00Z 2026-01-07T14:17:02Z
alsa-2026:0067 Moderate: tar security update 2026-01-05T00:00:00Z 2026-01-13T08:42:22Z
alsa-2026:0052 Moderate: gcc-toolset-14-binutils security update 2026-01-05T00:00:00Z 2026-01-05T20:18:34Z
alsa-2026:0026 Important: thunderbird security update 2026-01-05T00:00:00Z 2026-01-05T10:18:14Z
alsa-2026:0025 Important: thunderbird security update 2026-01-05T00:00:00Z 2026-01-05T10:10:00Z
alsa-2026:0002 Moderate: tar security update 2026-01-05T00:00:00Z 2026-01-05T09:20:37Z
alsa-2025:23948 Moderate: grafana security update 2025-12-22T00:00:00Z 2025-12-23T13:42:03Z
alsa-2025:23940 Moderate: python3.12 security update 2025-12-22T00:00:00Z 2025-12-23T05:59:49Z
alsa-2025:23932 Important: httpd security update 2025-12-22T00:00:00Z 2025-12-23T06:01:50Z
alsa-2025:23919 Important: httpd security update 2025-12-22T00:00:00Z 2026-01-05T20:20:59Z
alsa-2025:23856 Important: thunderbird security update 2025-12-22T00:00:00Z 2025-12-23T16:45:01Z
alsa-2025:23745 Important: git-lfs security update 2025-12-22T00:00:00Z 2025-12-22T12:34:52Z
alsa-2025:23744 Important: git-lfs security update 2025-12-22T00:00:00Z 2025-12-22T12:38:08Z
alsa-2025:23739 Important: mod_md security update 2025-12-22T00:00:00Z 2025-12-22T13:37:02Z
alsa-2025:23738 Important: mod_md security update 2025-12-22T00:00:00Z 2025-12-22T13:38:35Z
alsa-2025:23732 Important: httpd:2.4 security update 2025-12-22T00:00:00Z 2025-12-22T14:02:23Z
alsa-2025:23729 Important: opentelemetry-collector security update 2025-12-21T00:00:00Z 2025-12-23T13:07:45Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2024-539 Security exception in com.github.javaparser.CommentsInserter.insertComments 2024-06-07T00:08:30.308579Z 2024-07-16T14:19:14.406686Z
osv-2024-538 Use-of-uninitialized-value in QUICVariableInt::size 2024-06-06T00:12:59.950768Z 2024-07-16T14:22:07.747083Z
osv-2024-535 Use-of-uninitialized-value in spvTextEncodeOperand 2024-06-06T00:00:55.007699Z 2024-06-25T14:21:53.898093Z
osv-2024-521 Heap-buffer-overflow in ubidi_writeReordered_76 2024-05-31T00:06:51.180600Z 2024-05-31T00:06:51.181049Z
osv-2024-518 Security exception in com.github.javaparser.CommentsInserter.insertComments 2024-05-30T00:16:42.628026Z 2024-06-24T14:17:55.597576Z
osv-2024-517 Segv on unknown address in od_ec_dec_init 2024-05-30T00:05:57.060200Z 2024-07-16T14:24:59.011170Z
osv-2024-504 Heap-buffer-overflow in ultrahdr::getYuv420Pixel 2024-05-25T00:01:08.542552Z 2024-05-25T00:01:08.543179Z
osv-2024-503 Heap-buffer-overflow in pdf_save_viewer_state 2024-05-24T00:02:37.047119Z 2024-05-24T00:02:37.047771Z
osv-2024-496 UNKNOWN READ in chunk_free_object 2024-05-22T00:06:41.510071Z 2024-05-22T00:06:41.510555Z
osv-2024-495 UNKNOWN READ in chunk_free_object 2024-05-22T00:04:27.058012Z 2024-05-22T00:04:27.058432Z
osv-2024-493 UNKNOWN READ in chunk_free_object 2024-05-22T00:00:49.459478Z 2024-05-22T00:00:49.459808Z
osv-2024-490 Security exception in com.github.javaparser.CommentsInserter.insertComments 2024-05-20T00:07:13.417197Z 2024-05-20T00:07:13.417898Z
osv-2024-477 Heap-buffer-overflow in ultrahdr::gain_map_metadata::decodeGainmapMetadata 2024-05-16T00:07:25.350135Z 2024-05-16T00:07:25.350518Z
osv-2024-476 Heap-buffer-overflow in ultrahdr::getYuv420Pixel 2024-05-16T00:01:52.617825Z 2024-05-16T00:01:52.618175Z
osv-2024-473 Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr 2024-05-15T00:13:12.880068Z 2024-07-16T14:20:15.561933Z
osv-2024-471 Use-of-uninitialized-value in vpx_codec_peek_stream_info 2024-05-15T00:02:46.464995Z 2024-05-15T00:02:46.465573Z
osv-2024-469 Heap-buffer-overflow in check_content_type_and_change_protocol 2024-05-13T00:06:08.552810Z 2024-05-13T00:06:08.553286Z
osv-2024-460 UNKNOWN READ in glslang::TInfoSinkBase::location 2024-05-11T00:04:46.149516Z 2025-01-10T05:21:00.966877Z
osv-2024-456 Heap-buffer-overflow in ih264d_read_coeff4x4_cabac 2024-05-09T00:08:35.451422Z 2024-05-27T14:02:56.983104Z
osv-2024-453 Use-of-uninitialized-value in encode_base64_differential 2024-05-08T00:15:55.868630Z 2024-05-08T00:15:55.868890Z
osv-2024-451 Use-of-uninitialized-value in XpackDynamicTable::_make_space 2024-05-08T00:14:48.544622Z 2026-04-03T14:17:40.819969Z
osv-2024-450 Use-of-uninitialized-value in ink_filepath_merge 2024-05-08T00:13:15.436703Z 2024-05-08T00:13:15.437003Z
osv-2024-449 Use-of-uninitialized-value in YAML::Stream::Stream 2024-05-08T00:10:19.320498Z 2024-05-08T00:10:19.320806Z
osv-2024-440 UNKNOWN READ 2024-05-07T00:06:11.033336Z 2026-04-25T14:18:51.314914Z
osv-2024-434 Use-of-uninitialized-value in validate_bluetooth_device_address 2024-05-05T00:16:24.885047Z 2024-05-05T00:16:24.885336Z
osv-2024-432 Use-of-uninitialized-value in ssl_ctx_make_profiles 2024-05-05T00:15:04.589857Z 2024-05-08T03:26:30Z
osv-2024-431 Use-of-uninitialized-value in Lexer::ReadToken 2024-05-05T00:14:47.078358Z 2024-05-05T00:14:47.078742Z
osv-2024-430 Use-of-uninitialized-value in ssl_str_to_group_ids 2024-05-05T00:14:35.047133Z 2024-05-08T03:26:30Z
osv-2024-423 Use-of-uninitialized-value in Lexer::Error 2024-05-05T00:12:07.769152Z 2024-05-05T00:12:07.769622Z
osv-2024-422 Use-of-uninitialized-value in cdc_task 2024-05-05T00:07:53.114978Z 2024-05-05T00:07:53.115405Z
ID Description Published Updated
rustsec-2023-0036 tree_magic is Unmaintained 2023-04-11T12:00:00Z 2023-04-25T03:08:42Z
rustsec-2023-0031 Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers 2023-03-31T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0030 `Versionize::deserialize` implementation for `FamStructWrapper<T>` is lacking bound checks, potentially leading to out of bounds memory accesses 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0029 TLS certificate common name validation bypass 2023-03-24T12:00:00Z 2023-11-08T09:57:41Z
rustsec-2023-0027 TLS certificate common name validation bypass 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0024 `openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0023 `openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0022 `openssl` `X509NameBuilder::build` returned object is not thread safe 2023-03-24T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0032 Unsound FFI: Wrong API usage causes write past allocated area 2023-03-22T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0021 NULL pointer dereference in `stb_image` 2023-03-19T12:00:00Z 2023-07-15T15:07:13Z
rustsec-2023-0026 Gitoxide has renamed its crates. 2023-03-14T12:00:00Z 2023-03-24T15:33:49Z
rustsec-2023-0025 Gitoxide has renamed its crates. 2023-03-14T12:00:00Z 2023-03-24T15:33:49Z
rustsec-2023-0020 const-cstr is Unmaintained 2023-03-12T12:00:00Z 2023-03-12T18:38:56Z
rustsec-2023-0017 `maligned::align_first` causes incorrect deallocation 2023-03-04T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0093 Miscompilation of `i8x16.select` with the same inputs on x86\_64 2023-03-03T12:00:00Z 2025-05-02T08:23:27Z
rustsec-2023-0090 Guest-controlled out-of-bounds read/write on x86\_64 2023-03-02T12:00:00Z 2025-05-02T08:23:27Z
rustsec-2023-0015 Ascii allows out-of-bounds array indexing in safe code 2023-02-25T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0018 Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU) 2023-02-24T12:00:00Z 2023-03-04T21:50:30Z
rustsec-2023-0043 ftp is unmaintained, use suppaftp instead 2023-02-20T12:00:00Z 2023-06-14T13:23:36Z
rustsec-2023-0016 Possible out-of-bounds read in release mode 2023-02-20T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0081 safemem is unmaintained 2023-02-14T12:00:00Z 2024-03-04T18:47:07Z
rustsec-2023-0014 Miscompilation in cortex-m-rt 0.7.1 and 0.7.2 2023-02-13T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0013 `NULL` dereference during PKCS7 data verification 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0012 `NULL` dereference validating DSA public key 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0011 Invalid pointer dereference in `d2i_PKCS7` functions 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0010 Double free after calling `PEM_read_bio_ex` 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0009 Use-after-free following `BIO_new_NDEF` 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0008 X.509 Name Constraints Read Buffer Overflow 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0007 Timing Oracle in RSA Decryption 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
rustsec-2023-0006 X.400 address type confusion in X.509 `GeneralName` 2023-02-07T12:00:00Z 2023-06-13T13:10:24Z
ID Description Published Updated
bit-parse-2026-33627 Parse Server: Auth data exposed via /users/me endpoint 2026-03-27T07:14:47.660Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33624 Parse Server: MFA recovery code single-use bypass via concurrent requests 2026-03-27T07:14:44.950Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33539 Parse Server: SQL injection via aggregate and distinct field names in PostgreSQL adapter 2026-03-27T07:14:42.086Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33538 Parse Server: Denial of service via unindexed database query for unconfigured auth providers 2026-03-27T07:14:39.195Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33527 Parse Server: Session update endpoint allows overwriting server-generated session fields 2026-03-27T07:14:36.431Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33508 Parse Server: LiveQuery subscription query depth bypass 2026-03-27T07:14:33.818Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33498 Parse Server: Query condition depth bypass via pre-validation transform pipeline 2026-03-27T07:14:30.964Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33429 Parse Server: Protected field change detection oracle via LiveQuery watch parameter 2026-03-27T07:14:28.266Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33421 Parse Server: LiveQuery bypasses CLP pointer permission enforcement 2026-03-27T07:14:25.801Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33409 Parse Server: Auth provider validation bypass on login via partial authData 2026-03-27T07:14:23.276Z 2026-03-27T07:40:55.991Z
bit-parse-2026-33323 Parse Server: Email verification resend page leaks user existence 2026-03-27T07:14:20.379Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33428 Discourse Allows Unauthorized Access to Deleted Posts Index via Group Membership 2026-03-27T07:11:24.928Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33427 Discourse Authorization Page Displays Unvalidated Redirect Domain 2026-03-27T07:11:21.636Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33426 Discourse users can edit or synonymize hidden tags they can't see 2026-03-27T07:11:18.684Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33425 Discourse has inferable private group membership or existence via exclude_groups parameter 2026-03-27T07:11:15.979Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33424 PM access granted through invites after access revocation 2026-03-27T07:11:13.161Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33423 Discourse staff can modify any user's group notification level 2026-03-27T07:11:10.696Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33422 Discourse exposes ip_address of flagged user 2026-03-27T07:11:08.096Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33411 Discourse's solved topic stream has potential stored XSS in topic title 2026-03-27T07:11:05.061Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33410 Discourse hardens chat DM channel creation and expansion 2026-03-27T07:11:02.112Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33408 Discourse has Improper Authorization in "Post Edits" Report For Moderators 2026-03-27T07:10:59.380Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33395 Discourse has stored click‑based XSS via Graphviz SVG javascript: links 2026-03-27T07:10:56.479Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33394 Discourse leaks PM post edits to moderators 2026-03-27T07:10:53.768Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33393 Discourse fixes loose hostname matching in spam host allowlist 2026-03-27T07:10:50.748Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33355 Discourse filters whisper posts from private-posts feed 2026-03-27T07:10:48.005Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33291 Discourse user can create Zendesk tickets even when it does not have access to topic 2026-03-27T07:10:45.396Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-33251 Discourse has a Hidden Solved topics permission bypass 2026-03-27T07:10:42.800Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-32114 Discourse's unscoped status lookups leak restricted metadata 2026-03-27T07:10:39.880Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-32099 Discourse prevents hidden profile data leak via user onebox 2026-03-27T07:10:36.934Z 2026-03-27T07:40:55.991Z
bit-discourse-2026-31869 Discourse: Composer mentions endpoint leaks hidden group membership through PM `allowed_names` check 2026-03-27T07:10:33.910Z 2026-03-27T07:40:55.991Z
ID Description Published Updated
cleanstart-2026-bz58799 Within HostnameError 2026-02-06T00:39:29.590361Z 2026-02-05T12:20:16Z
cleanstart-2026-xr99875 Security fixes for GHSA-389x-839f-4rhx, GHSA-3p8m-j85q-pgmj, GHSA-5jpm-x58v-624v, GHSA-84h7-rjj3-6jx4, GHSA-fghv-69vj-qj49, GHSA-jq43-27x9-3v86, GHSA-qqpg-mvqg-649v applied in versions: 0.1.109-r0, 0.1.113-r1 2026-02-03T16:02:30.597873Z 2026-02-03T11:13:56Z
cleanstart-2026-qn16013 Cancelling a query (e 2026-02-03T16:02:29.512503Z 2026-02-03T11:13:56Z
cleanstart-2026-fc21713 Cancelling a query (e 2026-02-03T16:02:29.570272Z 2026-02-03T11:13:56Z
cleanstart-2026-dg41269 Cancelling a query (e 2026-02-03T16:02:29.326704Z 2026-02-03T11:13:56Z
cleanstart-2026-my73913 Security fixes for GHSA-R6J8-C6R2-37RR applied in versions: 4.12.1-r0 2026-02-03T16:02:28.659120Z 2026-02-03T11:13:56Z
cleanstart-2026-nb26505 Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 4.5.1-r0 2026-02-03T16:02:27.744077Z 2026-02-03T11:13:56Z
cleanstart-2026-am95501 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11 2026-02-03T00:37:00.849369Z 2026-02-02T12:32:10Z
cleanstart-2026-cc08655 Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 0.8.4-r0 2026-02-03T00:36:29.405423Z 2026-02-02T12:32:10Z
cleanstart-2026-el98096 Redis is an open source, in-memory database that persists on disk 2026-01-30T17:35:58.312765Z 2026-01-29T18:58:54Z
cleanstart-2026-wi17406 Redis is an open source, in-memory database that persists on disk 2026-01-30T17:35:28.375848Z 2026-01-29T18:58:54Z
cleanstart-2026-wi75198 vulnerability has been identified in Node 2026-01-30T17:34:27.754206Z 2026-01-29T18:58:54Z
cleanstart-2026-az32516 Within HostnameError 2026-01-30T17:27:26.591189Z 2026-01-29T18:58:54Z
cleanstart-2026-yt18139 issue was discovered in libexpat before 2 2026-01-30T17:26:57.202658Z 2026-01-29T18:58:54Z
cleanstart-2026-zd89666 Within HostnameError 2026-01-30T17:26:56.612763Z 2026-01-29T18:58:54Z
cleanstart-2026-pb78859 ParseAddress function constructs domain-literal address components through repeated string concatenation 2026-01-30T17:25:56.763674Z 2026-01-29T18:58:54Z
cleanstart-2026-jx46109 Within HostnameError 2026-01-30T17:25:26.548568Z 2026-01-29T18:58:54Z
cleanstart-2026-yg94604 Within HostnameError 2026-01-30T17:24:56.864393Z 2026-01-29T18:58:54Z
cleanstart-2026-qz70444 Within HostnameError 2026-01-30T17:24:26.605623Z 2026-01-29T18:58:54Z
cleanstart-2026-az24638 Within HostnameError 2026-01-30T17:22:56.881050Z 2026-01-29T18:58:54Z
cleanstart-2026-hj04971 vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT 2026-01-30T17:21:56.808972Z 2026-01-29T18:58:54Z
cleanstart-2026-ck35256 Within HostnameError 2026-01-30T17:21:56.458213Z 2026-01-29T18:58:54Z
cleanstart-2026-hf39630 potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf 2026-01-30T17:20:56.632450Z 2026-01-29T18:58:54Z
cleanstart-2026-nf19624 ParseAddress function constructs domain-literal address components through repeated string concatenation 2026-01-30T17:20:26.466437Z 2026-01-29T18:58:54Z
cleanstart-2026-fw42039 vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT 2026-01-30T17:19:56.954092Z 2026-01-29T18:58:54Z
cleanstart-2026-ht23337 flaw was found in the way certificate signatures could be forged using collisions found in the SHA-1 algorithm 2026-01-30T17:15:56.746125Z 2026-01-29T18:58:54Z
cleanstart-2026-zz61324 Hunspell 1 2026-01-30T17:14:26.562334Z 2026-01-29T18:58:54Z
cleanstart-2026-ba37192 When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers 2026-01-30T17:14:26.459138Z 2026-01-29T18:58:54Z
cleanstart-2026-xb16901 When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers 2026-01-30T17:13:56.781902Z 2026-01-29T18:58:54Z
cleanstart-2026-zc18474 PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access 2026-01-30T17:04:56.559720Z 2026-01-29T18:58:54Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
CERTA-2009-ALE-007 Vulnérabilité WebDAV sous Microsoft IIS 2009-05-18T00:00:00.000000 2009-06-10T00:00:00.000000
certa-2009-ale-006 Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat 2009-04-28T00:00:00.000000 2009-05-13T00:00:00.000000
CERTA-2009-ALE-006 Multiples vulnérabilités dans Adobe Reader et Adobe Acrobat 2009-04-28T00:00:00.000000 2009-05-13T00:00:00.000000
certa-2009-ale-005 Vulnérabilité de PowerPoint 2009-04-03T00:00:00.000000 2009-05-13T00:00:00.000000
CERTA-2009-ALE-005 Vulnérabilité de PowerPoint 2009-04-03T00:00:00.000000 2009-05-13T00:00:00.000000
certa-2009-ale-004 Vulnérabilité dans Mozilla Firefox 2009-03-27T00:00:00.000000 2009-03-30T00:00:00.000000
CERTA-2009-ALE-004 Vulnérabilité dans Mozilla Firefox 2009-03-27T00:00:00.000000 2009-03-30T00:00:00.000000
certa-2009-ale-003 Vulnérabilité dans Apple Mac OS X 2009-03-24T00:00:00.000000 2009-06-02T00:00:00.000000
CERTA-2009-ALE-003 Vulnérabilité dans Apple Mac OS X 2009-03-24T00:00:00.000000 2009-06-02T00:00:00.000000
certa-2009-ale-002 Vulnérabilité dans Microsoft Excel 2009-02-25T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2009-ALE-002 Vulnérabilité dans Microsoft Excel 2009-02-25T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2009-ale-001 Vulnérabilité dans l'interprétation JBIG2 des produits Adobe 2009-02-20T00:00:00.000000 2009-03-20T00:00:00.000000
CERTA-2009-ALE-001 Vulnérabilité dans l'interprétation JBIG2 des produits Adobe 2009-02-20T00:00:00.000000 2009-03-20T00:00:00.000000
certa-2008-ale-017 Vulnérabilité dans Microsoft SQL Server 2008-12-12T00:00:00.000000 2009-02-11T00:00:00.000000
CERTA-2008-ALE-017 Vulnérabilité dans Microsoft SQL Server 2008-12-12T00:00:00.000000 2009-02-11T00:00:00.000000
certa-2008-ale-016 Vulnérabilité dans Microsoft Internet Explorer 2008-12-10T00:00:00.000000 2008-12-17T00:00:00.000000
certa-2008-ale-015 Vulnérabilité dans le convertisseur de texte de WordPad 2008-12-10T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2008-ALE-016 Vulnérabilité dans Microsoft Internet Explorer 2008-12-10T00:00:00.000000 2008-12-17T00:00:00.000000
CERTA-2008-ALE-015 Vulnérabilité dans le convertisseur de texte de WordPad 2008-12-10T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2008-ale-014 Vulnérabilité dans Opera 2008-11-20T00:00:00.000000 2009-01-06T00:00:00.000000
CERTA-2008-ALE-014 Vulnérabilité dans Opera 2008-11-20T00:00:00.000000 2009-01-06T00:00:00.000000
certa-2008-ale-013 Vulnérabilité du service sadmind de Sun Solaris 2008-10-17T00:00:00.000000 2013-02-21T00:00:00.000000
CERTA-2008-ALE-013 Vulnérabilité du service sadmind de Sun Solaris 2008-10-17T00:00:00.000000 2013-02-21T00:00:00.000000
certa-2008-ale-012 Vulnérabilité dans Microsoft Windows 2008-10-10T00:00:00.000000 2009-04-15T00:00:00.000000
CERTA-2008-ALE-012 Vulnérabilité dans Microsoft Windows 2008-10-10T00:00:00.000000 2009-04-15T00:00:00.000000
certa-2008-ale-011 Vulnérabilité dans Oracle BEA WebLogic Server 2008-07-24T00:00:00.000000 2008-08-08T00:00:00.000000
CERTA-2008-ALE-011 Vulnérabilité dans Oracle BEA WebLogic Server 2008-07-24T00:00:00.000000 2008-08-08T00:00:00.000000
certa-2008-ale-010 Vulnérabilité dans Microsoft Word 2008-07-09T00:00:00.000000 2008-08-13T00:00:00.000000
CERTA-2008-ALE-010 Vulnérabilité dans Microsoft Word 2008-07-09T00:00:00.000000 2008-08-13T00:00:00.000000
certa-2008-ale-009 Vulnérabilité dans Microsoft Access Snapshot Viewer 2008-07-08T00:00:00.000000 2008-08-13T00:00:00.000000
ID Description Published Updated
CERTFR-2026-AVI-0104 Vulnérabilité dans Qnap QTS 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
CERTFR-2026-AVI-0103 Multiples vulnérabilités dans Node.js 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
CERTFR-2026-AVI-0102 Vulnérabilité dans Splunk Enterprise 2026-01-30T00:00:00.000000 2026-01-30T00:00:00.000000
certfr-2026-avi-0101 Multiples vulnérabilités dans les produits Siemens 2026-01-29T00:00:00.000000 2026-01-29T00:00:00.000000
certfr-2026-avi-0100 Multiples vulnérabilités dans les produits WithSecure 2026-01-29T00:00:00.000000 2026-01-29T00:00:00.000000
CERTFR-2026-AVI-0101 Multiples vulnérabilités dans les produits Siemens 2026-01-29T00:00:00.000000 2026-01-29T00:00:00.000000
CERTFR-2026-AVI-0100 Multiples vulnérabilités dans les produits WithSecure 2026-01-29T00:00:00.000000 2026-01-29T00:00:00.000000
certfr-2026-avi-0099 Multiples vulnérabilités dans SolarWinds Web Help Desk 2026-01-28T00:00:00.000000 2026-01-29T00:00:00.000000
certfr-2026-avi-0098 Vulnérabilité dans les produits Symfony 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0097 Vulnérabilité dans les produits Fortinet 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0096 Multiples vulnérabilités dans OpenSSL 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0095 Multiples vulnérabilités dans les produits Mozilla 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0094 Multiples vulnérabilités dans HPE Aruba Networking Fabric Composer 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0093 Multiples vulnérabilités dans Tenable Network Monitor 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0092 Vulnérabilité dans Google Chrome 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0099 Multiples vulnérabilités dans SolarWinds Web Help Desk 2026-01-28T00:00:00.000000 2026-01-29T00:00:00.000000
CERTFR-2026-AVI-0098 Vulnérabilité dans les produits Symfony 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0097 Vulnérabilité dans les produits Fortinet 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0096 Multiples vulnérabilités dans OpenSSL 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0095 Multiples vulnérabilités dans les produits Mozilla 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0094 Multiples vulnérabilités dans HPE Aruba Networking Fabric Composer 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0093 Multiples vulnérabilités dans Tenable Network Monitor 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
CERTFR-2026-AVI-0092 Vulnérabilité dans Google Chrome 2026-01-28T00:00:00.000000 2026-01-28T00:00:00.000000
certfr-2026-avi-0091 Multiples vulnérabilités dans Xen 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
certfr-2026-avi-0090 Multiples vulnérabilités dans Citrix XenServer 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
certfr-2026-avi-0089 Vulnérabilité dans Microsoft Office 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
certfr-2026-avi-0088 Vulnérabilité dans MariaDB 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
CERTFR-2026-AVI-0091 Multiples vulnérabilités dans Xen 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
CERTFR-2026-AVI-0090 Multiples vulnérabilités dans Citrix XenServer 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
CERTFR-2026-AVI-0089 Vulnérabilité dans Microsoft Office 2026-01-27T00:00:00.000000 2026-01-27T00:00:00.000000
ID Description Published Updated
jvndb-2023-000122 Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series 2023-12-11T14:12+09:00 2024-04-22T16:55+09:00
jvndb-2023-009966 FXC wireless LAN routers "AE1021PE" and "AE1021" vulnerable to OS command injection Critical 2023-12-07T15:09+09:00 2023-12-25T16:54+09:00
jvndb-2023-009619 OS command injection vulnerability in DT900 2023-12-06T14:43+09:00 2023-12-06T14:43+09:00
jvndb-2023-000121 RakRak Document Plus vulnerable to path traversal 2023-12-04T13:45+09:00 2024-01-24T12:06+09:00
jvndb-2023-000119 Ruckus Access Point contains a cross-site scripting vulnerability. 2023-12-01T14:58+09:00 2024-04-23T17:51+09:00
jvndb-2023-000117 Multiple vulnerabilities in LuxCal Web Calendar 2023-11-20T17:15+09:00 2023-11-20T17:15+09:00
jvndb-2023-007152 Multiple vulnerabilities in EXPRESSCLUSTER X 2023-11-20T14:09+09:00 2024-05-01T18:10+09:00
jvndb-2023-007150 Multiple vulnerabilities in First Corporation's DVRs 2023-11-17T17:31+09:00 2024-07-11T17:05+09:00
jvndb-2023-000116 Redmine vulnerable to cross-site scripting 2023-11-17T14:32+09:00 2024-05-09T17:55+09:00
jvndb-2023-000118 Multiple vulnerabilities in CubeCart 2023-11-17T14:22+09:00 2024-04-30T18:15+09:00
jvndb-2023-006588 Multiple vulnerabilities in ELECOM and LOGITEC routers 2023-11-15T18:27+09:00 2024-04-26T15:22+09:00
jvndb-2023-006578 ASUSTeK COMPUTER RT-AC87U vulnerable to improper access control 2023-11-15T17:44+09:00 2024-04-30T18:08+09:00
jvndb-2023-000115 OSS Calendar vulnerable to SQL injection 2023-11-14T14:05+09:00 2024-05-01T17:38+09:00
jvndb-2023-006199 Multiple security updates for Trend Micro Apex One and Apex One as a Service (November 2023) 2023-11-13T17:28+09:00 2024-03-13T17:28+09:00
jvndb-2023-000112 Multiple vulnerabilities in Pleasanter 2023-11-13T15:57+09:00 2024-04-22T17:56+09:00
jvndb-2023-000114 Multiple vulnerabilities in Cisco Firepower Management Center Software 2023-11-13T14:01+09:00 2024-05-07T15:07+09:00
jvndb-2023-000113 HOTELDRUID vulnerable to cross-site scripting 2023-11-10T14:41+09:00 2024-05-01T17:47+09:00
jvndb-2023-000111 Remarshal unlimitedly expanding YAML alias nodes 2023-11-10T14:41+09:00 2024-05-08T17:53+09:00
jvndb-2023-000107 EC-CUBE 3 series and 4 series vulnerable to arbitrary code execution 2023-11-07T13:47+09:00 2024-05-09T17:17+09:00
jvndb-2023-004919 FUJIFILM Business Innovation Corp. and Xerox Corporation MFPs export Address Books with insufficient encryption strength 2023-11-02T17:21+09:00 2024-05-07T15:25+09:00
jvndb-2023-000110 Improper restriction of XML external entity references (XXE) in e-Tax software 2023-11-02T13:38+09:00 2024-05-01T18:41+09:00
jvndb-2023-004790 Multiple Vulnerabilities in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer 2023-11-02T12:14+09:00 2023-11-02T12:14+09:00
jvndb-2023-004754 MCL Technologies MCL-Net vulnerable to directory traversal 2023-11-01T16:49+09:00 2023-11-01T16:49+09:00
jvndb-2023-000109 Cybozu Remote Service vulnerable to uncontrolled resource consumption 2023-10-31T13:43+09:00 2024-05-07T15:51+09:00
jvndb-2023-000108 Inkdrop vulnerable to code injection 2023-10-30T13:48+09:00 2024-05-07T16:09+09:00
jvndb-2023-004294 Advanced Micro Devices Windows kernel drivers vulnerable to insufficient access control on its IOCTL 2023-10-27T16:10+09:00 2024-05-20T17:49+09:00
jvndb-2023-000106 Multiple vulnerabilities in baserCMS 2023-10-27T14:46+09:00 2024-05-07T15:59+09:00
jvndb-2023-000105 Movable Type vulnerable to cross-site scripting 2023-10-25T15:18+09:00 2024-05-10T17:47+09:00
jvndb-2023-003956 Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Designer 2023-10-24T16:11+09:00 2024-05-10T17:47+09:00
jvndb-2023-000103 HP ThinUpdate vulnerable to improper server certificate verification 2023-10-23T14:26+09:00 2023-10-23T14:26+09:00
ID Description Published Updated
cnvd-2026-15145 HCL AION信息泄露漏洞(CNVD-2026-15145) 2026-03-19 2026-03-27
cnvd-2026-15144 HCL AION SQL注入漏洞 2026-03-19 2026-03-23
cnvd-2026-14969 WordPress插件WpEvently信息泄露漏洞 2026-03-19 2026-03-26
cnvd-2026-14968 WordPress插件wpDiscuz信息泄露漏洞 2026-03-19 2026-03-26
cnvd-2026-14686 Belkin F9K1122堆栈缓冲区溢出漏洞(CNVD-2026-14686) 2026-03-19 2026-03-24
cnvd-2026-14680 TRENDnet TEW-632BRP缓冲区溢出漏洞 2026-03-19 2026-03-24
cnvd-2026-14390 OpenClaw访问控制错误漏洞(CNVD-2026-14390) 2026-03-19 2026-03-20
cnvd-2026-14389 OpenClaw信息泄露漏洞(CNVD-2026-14389) 2026-03-19 2026-03-20
cnvd-2026-14387 WordPress插件Calculated Fields Form跨站脚本漏洞 2026-03-19 2026-03-20
cnvd-2026-14386 WordPress插件Avada Core跨站脚本漏洞 2026-03-19 2026-03-20
cnvd-2026-14385 WordPress插件Astra Bulk Edit跨站脚本漏洞 2026-03-19 2026-03-20
cnvd-2026-14384 WordPress插件Active Products Tables for WooCommerce跨站脚本漏洞 2026-03-19 2026-03-20
cnvd-2026-14252 Apache Spark反序列化漏洞 2026-03-19 2026-03-19
cnvd-2026-14251 Apache Livy输入验证错误漏洞 2026-03-19 2026-03-19
cnvd-2026-14250 Zephyr缓冲区溢出漏洞 2026-03-19 2026-03-19
cnvd-2026-14249 Open5GS拒绝服务漏洞(CNVD-2026-14249) 2026-03-19 2026-03-19
cnvd-2026-17191 AnythingLLM存在未明漏洞(CNVD-2026-17191) 2026-03-18 2026-04-15
cnvd-2026-17190 AnythingLLM存在未明漏洞 2026-03-18 2026-04-15
cnvd-2026-17189 AnythingLLM代码注入漏洞 2026-03-18 2026-04-15
cnvd-2026-18677 Adobe Commerce授权不当漏洞 2026-03-17 2026-04-27
cnvd-2026-18335 Schneider Electric EcoStruxure Foxboro DCS代码问题漏洞 2026-03-17 2026-04-23
cnvd-2026-18334 Schneider Electric EcoStruxure Automation Expert代码注入漏洞 2026-03-17 2026-04-23
cnvd-2026-18154 StudioCMS存在未明漏洞(CNVD-2026-18154) 2026-03-17 2026-04-22
cnvd-2026-18153 StudioCMS存在未明漏洞(CNVD-2026-18153) 2026-03-17 2026-04-22
cnvd-2026-18152 StudioCMS授权问题漏洞 2026-03-17 2026-04-22
cnvd-2026-18151 StudioCMS存在未明漏洞(CNVD-2026-18151) 2026-03-17 2026-04-22
cnvd-2026-18150 StudioCMS存在未明漏洞(CNVD-2026-18150) 2026-03-17 2026-04-22
cnvd-2026-18149 StudioCMS存在未明漏洞 2026-03-17 2026-04-22
cnvd-2026-17898 Dell Alienware Command Center访问控制错误漏洞 2026-03-17 2026-04-21
cnvd-2026-17889 Siemens SICAM SIAPP SDK路径遍历漏洞 2026-03-17 2026-04-21
ID Description Published Updated
bdu:2026-01183 Уязвимость функции brcmuart_probe() модуля drivers/tty/serial/8250/8250_bcm7271.c драйвер… 04.02.2026 04.02.2026
bdu:2026-01182 Уязвимость функции ext4_xattr_inode_create() модуля fs/ext4/xattr.c файловой системы Ext4… 04.02.2026 04.02.2026
bdu:2026-01181 Уязвимость функции snd_card_ymfpci_probe() модуля sound/pci/ymfpci/ymfpci.c звуковой подс… 04.02.2026 04.02.2026
bdu:2026-01180 Уязвимость функции vtpm_module_init() модуля drivers/char/tpm/tpm_vtpm_proxy.c драйвера а… 04.02.2026 04.02.2026
bdu:2026-01179 Уязвимость функции mptlan_remove() модуля drivers/message/fusion/mptlan.c ядра операционн… 04.02.2026 04.02.2026
bdu:2026-01178 Уязвимость функции bpf_basertt() модуля samples/bpf/tcp_basertt_kern.c ядра операционной … 04.02.2026 04.02.2026
bdu:2026-01177 Уязвимость функции wilc_mac_xmit() модуля drivers/net/wireless/microchip/wilc1000/netdev.… 04.02.2026 04.02.2026
bdu:2026-01176 Уязвимость функции do_ovl_get_acl() модуля fs/overlayfs/inode.c файловой системы Overlayf… 04.02.2026 04.02.2026
bdu:2026-01175 Уязвимость модуля Acroform прикладного программного интерфейса библиотеки для создания PD… 04.02.2026 04.02.2026
bdu:2026-01174 Уязвимость функции af9005_i2c_xfer() модуля drivers/media/usb/dvb-usb/af9005.c драйвера м… 04.02.2026 04.02.2026
bdu:2026-01173 Уязвимость функции pnv_pci_sriov_disable() модуля arch/powerpc/platforms/powernv/pci-srio… 04.02.2026 04.02.2026
bdu:2026-01172 Уязвимость функции ref_scale_init() модуля kernel/rcu/refscale.c подсистемы синхронизации… 04.02.2026 04.02.2026
bdu:2026-01171 Уязвимость функции corrupt_bio_data() модуля drivers/md/dm-flakey.c драйвера нескольких у… 04.02.2026 04.02.2026
bdu:2026-01170 Уязвимость функции smcr_port_add() модуля net/smc/smc_core.c реализации семейства протоко… 04.02.2026 04.02.2026
bdu:2026-01169 Уязвимость функции atmel_pinctrl_probe() модуля drivers/pinctrl/pinctrl-at91-pio4.c драйв… 04.02.2026 04.02.2026
bdu:2026-01168 Уязвимость функции amd_pmc_stb_debugfs_open_v2() модуля drivers/platform/x86/amd/pmc.c др… 04.02.2026 04.02.2026
bdu:2026-01167 Уязвимость функции device_add() модуля drivers/base/core.c драйвера шинных устройства ядр… 04.02.2026 04.02.2026
bdu:2026-01166 Уязвимость функции qat_alg_skcipher_init_com() модуля drivers/crypto/qat/qat_common/qat_a… 04.02.2026 04.02.2026
bdu:2026-01165 Уязвимость функции pci_endpoint_test_remove() модуля drivers/misc/pci_endpoint_test.c ядр… 04.02.2026 04.02.2026
bdu:2026-01164 Уязвимость функции rio_register_mport() модуля drivers/rapidio/rio.c драйвера часов Rapid… 04.02.2026 04.02.2026
bdu:2026-01162 Уязвимость функции cs35l41_hda_read_acpi() модуля sound/hda/codecs/side-codecs/cs35l41_hd… 03.02.2026 03.02.2026
bdu:2026-01161 Уязвимость функции hwdep_read() модуля sound/firewire/motu/motu-hwdep.c звуковой подсисте… 03.02.2026 03.02.2026
bdu:2026-01160 Уязвимость функции __blkdev_issue_zero_pages() модуля block/blk-lib.c поддержки блочного … 03.02.2026 03.02.2026
bdu:2026-01159 Уязвимость функции __iomap_dio_rw() модуля fs/iomap/direct-io.c файловой системы ядра опе… 03.02.2026 03.02.2026
bdu:2026-01158 Уязвимость функции nbd_genl_connect() модуля drivers/block/nbd.c драйвера блочных устройс… 03.02.2026 03.02.2026
bdu:2026-01157 Уязвимость функции recv_work() модуля drivers/block/nbd.c драйвера блочных устройств ядра… 03.02.2026 03.02.2026
bdu:2026-01156 Уязвимость функции mddev_unlock() модуля drivers/md/md.c драйвера нескольких устройств (R… 03.02.2026 03.02.2026
bdu:2026-01155 Уязвимость функции __ns_common_free() модуля include/linux/ns_common.h ядра операционной … 03.02.2026 03.02.2026
bdu:2026-01154 Уязвимость функции asymmetric_key_generate_id() модуля crypto/asymmetric_keys/asymmetric_… 03.02.2026 03.02.2026
bdu:2026-01153 Уязвимость функции rtw89_h2c_tx() модуля drivers/net/wireless/realtek/rtw89/core.c драйве… 03.02.2026 03.02.2026
ID Description Updated
var-200810-0010 The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windo… 2024-07-23T21:21:00.936000Z
var-200608-0041 Buffer overflow in Apple Mac OS X 10.4.7 allows user-assisted attackers to cause a denial… 2024-07-23T21:21:00.588000Z
var-202006-0391 The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the… 2024-07-23T21:20:57.987000Z
var-201804-1202 An issue was discovered in certain Apple products. iOS before 11.2.5 is affected. macOS b… 2024-07-23T21:20:49.328000Z
var-201306-0245 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:20:49.038000Z
var-201009-0241 Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10… 2024-07-23T21:20:47.492000Z
var-201903-0388 An integer overflow flaw which could lead to an out of bounds write was discovered in lib… 2024-07-23T21:20:42.429000Z
var-201404-0592 The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly h… 2024-07-23T21:20:07.305000Z
var-201401-0579 expat 2.1.0 and earlier does not properly handle entities expansion unless an application… 2024-07-23T21:20:07.746000Z
var-202204-0855 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, … 2024-07-23T21:20:06.909000Z
var-200701-0320 The InternalUnpackBits function in Apple QuickDraw, as used by Quicktime 7.1.3 and other … 2024-07-23T21:20:06.280000Z
var-201605-0466 The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2,… 2024-07-23T21:20:02.442000Z
var-201912-0501 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2024-07-23T21:18:18.853000Z
var-202006-1636 An input validation issue was addressed with improved input validation. This issue is fix… 2024-07-23T21:17:58.689000Z
var-201302-0332 The TLS implementation in Mozilla Network Security Services (NSS) does not properly consi… 2024-07-23T21:17:58.592000Z
var-201110-0352 Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… 2024-07-23T21:17:55.274000Z
var-202201-0349 node-fetch is vulnerable to Exposure of Sensitive Information to an Unauthorized Actor. n… 2024-07-23T21:17:54.278000Z
var-201302-0403 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2024-07-23T21:17:54.186000Z
var-202101-0222 A flaw was found in dnsmasq before version 2.83. When receiving a query, dnsmasq does not… 2024-07-23T21:17:22.779000Z
var-201806-1485 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2024-07-23T21:16:48.620000Z
var-201407-0138 The web interface in CUPS before 1.7.4 allows local users in the lp group to read arbitra… 2024-07-23T21:16:45.502000Z
var-201211-0356 Heap-based buffer underflow in the xmlParseAttValueComplex function in parser.c in libxml… 2024-07-23T21:16:44.704000Z
var-201806-1482 An issue was discovered in certain Apple products. iOS before 11.4 is affected. Safari be… 2024-07-23T21:16:40.066000Z
var-201201-0030 The SSL 3.0 implementation in OpenSSL before 0.9.8s and 1.x before 1.0.0f does not proper… 2024-07-23T21:16:40.308000Z
var-201203-0190 Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … 2024-07-23T21:16:39.242000Z
var-200904-0291 udev before 1.4.1 does not verify whether a NETLINK message originates from kernel space,… 2024-07-23T21:16:32.784000Z
var-201904-1341 A memory corruption issue was addressed with improved memory handling. This issue affecte… 2024-07-23T21:16:30.316000Z
var-201912-0122 A logic issue was addressed with improved state management. This issue is fixed in iOS 13… 2024-07-23T21:16:26.258000Z
var-202208-0404 zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in in… 2024-07-23T21:15:51.322000Z
var-201801-0036 jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-doma… 2024-07-23T21:15:42.081000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated