Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-0695	8.7 (3.1)	Stored XSS in Time Entry Audit Trail	ConnectWise	PSA	2026-01-16T13:34:42.833Z	2026-01-27T12:14:38.371Z
CVE-2026-0696	6.5 (3.1)	Session Cookies Missing HttpOnly Attribute	ConnectWise	PSA	2026-01-16T13:34:49.042Z	2026-01-27T12:14:05.158Z
CVE-2025-7195	5.2 (3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2026-01-27T12:12:37.159Z
CVE-2025-12387	6.9 (4.0)	Denial of Service in Pix-Link LV-WR21Q	Pix-Link	LV-WR21Q	2026-01-27T11:57:55.609Z	2026-01-27T11:58:39.702Z
CVE-2025-12386	6.9 (4.0)	Missing Authentication for Critical Endpoint in Pix-Li…	Pix-Link	LV-WR21Q	2026-01-27T11:57:50.084Z	2026-01-27T11:58:30.484Z
CVE-2025-41728	5.3 (3.1)	Beckhoff: Information leak via Beckhoff Device Manager	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:37:55.689Z	2026-01-27T11:37:55.689Z
CVE-2025-41727	7.8 (3.1)	Beckhoff: Performing privileged operations and gainin…	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:36:54.619Z	2026-01-27T11:36:54.619Z
CVE-2025-41726	8.8 (3.1)	Beckhoff: Arbitrary code execution within privileged p…	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:35:37.391Z	2026-01-27T11:35:37.391Z
CVE-2024-12085	7.5 (3.1)	Rsync: info leak via uninitialized stack contents			2025-01-14T17:37:16.036Z	2026-01-27T11:11:51.513Z
CVE-2023-40550	5.5 (3.1)	Shim: out-of-bound read in verify_buffer_sbat()	Red Hat	Red Hat Enterprise Linux 7	2024-01-29T16:29:23.050Z	2026-01-27T10:55:03.902Z
CVE-2023-3019	6 (3.1)	Qemu: e1000e: heap use-after-free in e1000e_write_pack…	Red Hat	Red Hat Enterprise Linux 8	2023-07-24T15:19:19.804Z	2026-01-27T10:54:54.278Z
CVE-2026-24348	7.4 (4.0)	Multiple cross-site scripting vulnerabilities in EZCas…	EZCast	EZCast Pro II	2026-01-27T09:31:19.110Z	2026-01-27T09:31:19.110Z
CVE-2026-24830	9.8 (3.1)	Integer Overflow or Wraparound in IronOS	Ralim	IronOS	2026-01-27T09:28:07.853Z	2026-01-27T09:28:07.853Z
CVE-2026-21417	7 (3.1)	Dell CloudBoost Virtual Appliance, versions prior…	Dell	CloudBoost Virtual Appliance	2026-01-27T09:28:01.023Z	2026-01-27T09:28:01.023Z
CVE-2026-24347	5.7 (4.0)	Arbitrary file write to /tmp directory in EZCast Pro I…	EZCast	EZCast Pro II	2026-01-27T09:22:38.550Z	2026-01-27T09:22:38.550Z
CVE-2026-24346	7.6 (4.0)	Use of well-known default credentials in EZCast Pro II…	EZCast	EZCast Pro II	2026-01-27T09:18:57.833Z	2026-01-27T09:18:57.833Z
CVE-2026-1467	6.1 (3.1)	Libsoup: libsoup: http header injection via specially …	Red Hat	Red Hat Enterprise Linux 10	2026-01-27T09:17:44.535Z	2026-01-27T09:17:44.535Z
CVE-2026-24829	6.5 (3.1)	Out-of-bounds write in is-Engine	Is-Daouda	is-Engine	2026-01-27T09:15:31.354Z	2026-01-27T09:15:31.354Z
CVE-2025-13601	7.7 (3.1)	Glib: integer overflow in in g_escape_uri_string()			2025-11-26T14:44:22.680Z	2026-01-27T09:14:35.996Z
CVE-2026-24828	7.5 (3.1)	Memory leak in is-Engine	Is-Daouda	is-Engine	2026-01-27T09:14:16.784Z	2026-01-27T09:14:16.784Z
CVE-2026-24345	6.8 (4.0)	Cross-Site Request Forgery in EZCast Pro II Dongle	EZCast	EZCast Pro II	2026-01-27T09:13:27.664Z	2026-01-27T09:13:27.664Z
CVE-2026-24827	7.5 (3.1)	Out-of-bounds write in Commander-Genius	gerstrong	Commander-Genius	2026-01-27T09:12:55.728Z	2026-01-27T09:12:55.728Z
CVE-2026-24826	10 (4.0)	Out-of-bounds write in turso3d	cadaver	turso3d	2026-01-27T09:11:27.233Z	2026-01-27T09:11:27.233Z
CVE-2025-41115	10 (3.1)	Incorrect privilege assignment	Grafana	Grafana Enterprise	2025-11-21T14:25:38.945Z	2026-01-27T09:07:56.587Z
CVE-2026-21721	8.1 (3.1)	Dashboard Permissions Scope Bypass Enables Cross‑Dashb…	Grafana	grafana/grafana	2026-01-27T09:07:55.160Z	2026-01-27T09:07:55.160Z
CVE-2026-21720	7.5 (3.1)	Unauthenticated DoS: avatar cache leaks goroutines whe…	Grafana	grafana/grafana-enterprise	2026-01-27T09:07:04.758Z	2026-01-27T09:07:04.758Z
CVE-2026-24344	7.3 (4.0)	Multiple Buffer Overflows in EZCast Pro II Dongle	EZCast	EZCast Pro II	2026-01-27T09:04:34.750Z	2026-01-27T09:04:34.750Z
CVE-2026-24825	6.9 (4.0)	a memory leak in ydb-platform/ydb with use of yajl_tre…	ydb-platform	ydb	2026-01-27T09:02:51.165Z	2026-01-27T09:02:51.165Z
CVE-2026-24824	6.9 (4.0)	A XSS in yacy/yacy_search_server	yacy	yacy_search_server	2026-01-27T09:01:06.551Z	2026-01-27T09:01:06.551Z
CVE-2026-24823	10 (4.0)	A heap-based buffer over-read or buffer overflow vulne…	FASTSHIFT	X-TRACK	2026-01-27T08:59:58.271Z	2026-01-27T08:59:58.271Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-21509	7.8 (3.1)	Microsoft Office Security Feature Bypass Vulnerability	Microsoft	Microsoft Office 2019	2026-01-26T17:06:35.512Z	2026-01-27T04:55:37.429Z
CVE-2026-0696	6.5 (3.1)	Session Cookies Missing HttpOnly Attribute	ConnectWise	PSA	2026-01-16T13:34:49.042Z	2026-01-27T12:14:05.158Z
CVE-2026-0695	8.7 (3.1)	Stored XSS in Time Entry Audit Trail	ConnectWise	PSA	2026-01-16T13:34:42.833Z	2026-01-27T12:14:38.371Z
CVE-2025-41728	5.3 (3.1)	Beckhoff: Information leak via Beckhoff Device Manager	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:37:55.689Z	2026-01-27T11:37:55.689Z
CVE-2025-41727	7.8 (3.1)	Beckhoff: Performing privileged operations and gainin…	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:36:54.619Z	2026-01-27T11:36:54.619Z
CVE-2025-41726	8.8 (3.1)	Beckhoff: Arbitrary code execution within privileged p…	Beckhoff Automation	Beckhoff.Device.Manager.XAR	2026-01-27T11:35:37.391Z	2026-01-27T11:35:37.391Z
CVE-2025-12387	6.9 (4.0)	Denial of Service in Pix-Link LV-WR21Q	Pix-Link	LV-WR21Q	2026-01-27T11:57:55.609Z	2026-01-27T11:58:39.702Z
CVE-2025-12386	6.9 (4.0)	Missing Authentication for Critical Endpoint in Pix-Li…	Pix-Link	LV-WR21Q	2026-01-27T11:57:50.084Z	2026-01-27T11:58:30.484Z
CVE-2026-24830	9.8 (3.1)	Integer Overflow or Wraparound in IronOS	Ralim	IronOS	2026-01-27T09:28:07.853Z	2026-01-27T09:28:07.853Z
CVE-2026-24829	6.5 (3.1)	Out-of-bounds write in is-Engine	Is-Daouda	is-Engine	2026-01-27T09:15:31.354Z	2026-01-27T09:15:31.354Z
CVE-2026-24828	7.5 (3.1)	Memory leak in is-Engine	Is-Daouda	is-Engine	2026-01-27T09:14:16.784Z	2026-01-27T09:14:16.784Z
CVE-2026-24827	7.5 (3.1)	Out-of-bounds write in Commander-Genius	gerstrong	Commander-Genius	2026-01-27T09:12:55.728Z	2026-01-27T09:12:55.728Z
CVE-2026-24826	10 (4.0)	Out-of-bounds write in turso3d	cadaver	turso3d	2026-01-27T09:11:27.233Z	2026-01-27T09:11:27.233Z
CVE-2026-24348	7.4 (4.0)	Multiple cross-site scripting vulnerabilities in EZCas…	EZCast	EZCast Pro II	2026-01-27T09:31:19.110Z	2026-01-27T09:31:19.110Z
CVE-2026-24347	5.7 (4.0)	Arbitrary file write to /tmp directory in EZCast Pro I…	EZCast	EZCast Pro II	2026-01-27T09:22:38.550Z	2026-01-27T09:22:38.550Z
CVE-2026-24346	7.6 (4.0)	Use of well-known default credentials in EZCast Pro II…	EZCast	EZCast Pro II	2026-01-27T09:18:57.833Z	2026-01-27T09:18:57.833Z
CVE-2026-24345	6.8 (4.0)	Cross-Site Request Forgery in EZCast Pro II Dongle	EZCast	EZCast Pro II	2026-01-27T09:13:27.664Z	2026-01-27T09:13:27.664Z
CVE-2026-21417	7 (3.1)	Dell CloudBoost Virtual Appliance, versions prior…	Dell	CloudBoost Virtual Appliance	2026-01-27T09:28:01.023Z	2026-01-27T09:28:01.023Z
CVE-2026-1467	6.1 (3.1)	Libsoup: libsoup: http header injection via specially …	Red Hat	Red Hat Enterprise Linux 10	2026-01-27T09:17:44.535Z	2026-01-27T09:17:44.535Z
CVE-2025-13601	7.7 (3.1)	Glib: integer overflow in in g_escape_uri_string()			2025-11-26T14:44:22.680Z	2026-01-27T09:14:35.996Z
CVE-2026-24825	6.9 (4.0)	a memory leak in ydb-platform/ydb with use of yajl_tre…	ydb-platform	ydb	2026-01-27T09:02:51.165Z	2026-01-27T09:02:51.165Z
CVE-2026-24824	6.9 (4.0)	A XSS in yacy/yacy_search_server	yacy	yacy_search_server	2026-01-27T09:01:06.551Z	2026-01-27T09:01:06.551Z
CVE-2026-24823	10 (4.0)	A heap-based buffer over-read or buffer overflow vulne…	FASTSHIFT	X-TRACK	2026-01-27T08:59:58.271Z	2026-01-27T08:59:58.271Z
CVE-2026-24822	10 (4.0)	a heap-based buffer overflow vulnerability in ttttupup…	ttttupup	wxhelper	2026-01-27T08:58:45.455Z	2026-01-27T08:58:45.455Z
CVE-2026-24821	9.3 (4.0)	A heap-based buffer over-read that might affect a syst…	turanszkij	WickedEngine	2026-01-27T08:57:26.461Z	2026-01-27T08:57:26.461Z
CVE-2026-24820	5.1 (4.0)	A stack overflow vulnerability in turanszkij/WickedEngine	turanszkij	WickedEngine	2026-01-27T08:56:34.369Z	2026-01-27T08:56:34.369Z
CVE-2026-24819	6.3 (4.0)	An out-of-memory (OOM) issue in foxinmy/weixin4j	foxinmy	weixin4j	2026-01-27T08:55:54.605Z	2026-01-27T08:55:54.605Z
CVE-2026-24818	6.9 (4.0)	A heap-based buffer over-read that might affect a syst…	praydog	UEVR	2026-01-27T08:54:30.701Z	2026-01-27T08:54:30.701Z
CVE-2026-24817	8.7 (4.0)	A potential heap-buffer overflow in praydog/UEVR	praydog	UEVR	2026-01-27T08:53:44.618Z	2026-01-27T08:53:44.618Z
CVE-2026-24816	10 (4.0)	Cookie Security Vulnerabilities in datavane/tis	datavane	tis	2026-01-27T08:53:03.785Z	2026-01-27T08:53:03.785Z

ID	Description	Published	Updated
fkie_cve-2025-41728	A low privileged remote attacker may be able to disclose confidential information from the memory o…	2026-01-27T12:15:57.717	2026-01-27T12:15:57.717
fkie_cve-2025-41727	A local low privileged attacker can bypass the authentication of the Device Manager user interface,…	2026-01-27T12:15:57.573	2026-01-27T12:15:57.573
fkie_cve-2025-41726	A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to t…	2026-01-27T12:15:57.400	2026-01-27T12:15:57.400
fkie_cve-2025-12387	A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigge…	2026-01-27T12:15:57.243	2026-01-27T12:15:57.243
fkie_cve-2025-12386	Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo.…	2026-01-27T12:15:56.473	2026-01-27T12:15:56.473
fkie_cve-2026-24830	Integer Overflow or Wraparound vulnerability in Ralim IronOS.This issue affects IronOS: before v2.23-rc2.	2026-01-27T10:15:50.053	2026-01-27T10:15:50.053
fkie_cve-2026-24829	Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in Is-Daouda is-Engine.This issue aff…	2026-01-27T10:15:49.917	2026-01-27T10:15:49.917
fkie_cve-2026-24828	Missing Release of Memory after Effective Lifetime vulnerability in Is-Daouda is-Engine.This issue …	2026-01-27T10:15:49.780	2026-01-27T10:15:49.780
fkie_cve-2026-24827	Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius…	2026-01-27T10:15:49.650	2026-01-27T10:15:49.650
fkie_cve-2026-24826	Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out-o…	2026-01-27T10:15:49.507	2026-01-27T10:15:49.507
fkie_cve-2026-24348	Multiple cross-site scripting vulnerabilities in Admin UI of EZCast Pro II version 1.17478.146 allo…	2026-01-27T10:15:49.360	2026-01-27T10:15:49.360
fkie_cve-2026-24347	Improper input validation in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to mani…	2026-01-27T10:15:49.220	2026-01-27T10:15:49.220
fkie_cve-2026-24346	Use of well-known default credentials in Admin UI of EZCast Pro II version 1.17478.146 allows attac…	2026-01-27T10:15:49.073	2026-01-27T10:15:49.073
fkie_cve-2026-24345	Cross-Site Request Forgery in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to byp…	2026-01-27T10:15:48.937	2026-01-27T10:15:48.937
fkie_cve-2026-21417	Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Pas…	2026-01-27T10:15:48.763	2026-01-27T10:15:48.763
fkie_cve-2026-1467	A flaw was found in libsoup, an HTTP client library. This vulnerability, known as CRLF (Carriage Re…	2026-01-27T10:15:48.597	2026-01-27T10:15:48.597
fkie_cve-2025-13601	A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer s…	2025-11-26T15:15:51.723	2026-01-27T10:15:48.420
fkie_cve-2026-24825	Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb (contrib/libs/…	2026-01-27T09:15:53.347	2026-01-27T09:15:53.347
fkie_cve-2026-24824	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-01-27T09:15:53.203	2026-01-27T09:15:53.203
fkie_cve-2026-24823	Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera…	2026-01-27T09:15:53.067	2026-01-27T09:15:53.067
fkie_cve-2026-24822	Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in ttttupup wxhelper (src modules). T…	2026-01-27T09:15:52.937	2026-01-27T09:15:52.937
fkie_cve-2026-24821	Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEngine/LUA modules). This vulner…	2026-01-27T09:15:52.797	2026-01-27T09:15:52.797
fkie_cve-2026-24820	Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEngine/LUA modules). This vulner…	2026-01-27T09:15:52.663	2026-01-27T09:15:52.663
fkie_cve-2026-24819	Improperly Controlled Sequential Memory Allocation vulnerability in foxinmy weixin4j (weixin4j-base…	2026-01-27T09:15:52.520	2026-01-27T09:15:52.520
fkie_cve-2026-24818	Out-of-bounds Read vulnerability in praydog UEVR (dependencies/lua/src modules). This vulnerability…	2026-01-27T09:15:52.383	2026-01-27T09:15:52.383
fkie_cve-2026-24817	Out-of-bounds Write vulnerability in praydog UEVR (dependencies/lua/src modules). This vulnerabilit…	2026-01-27T09:15:52.247	2026-01-27T09:15:52.247
fkie_cve-2026-24816	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in datavane tis (tis-console/s…	2026-01-27T09:15:52.110	2026-01-27T09:15:52.110
fkie_cve-2026-24815	Unrestricted Upload of File with Dangerous Type, Deserialization of Untrusted Data vulnerability in…	2026-01-27T09:15:51.967	2026-01-27T09:15:51.967
fkie_cve-2026-24814	Integer Overflow or Wraparound vulnerability in swoole swoole-src (thirdparty/hiredis modules). Thi…	2026-01-27T09:15:51.830	2026-01-27T09:15:51.830
fkie_cve-2026-24813	NULL Pointer Dereference vulnerability in abcz316 SKRoot-linuxKernelRoot (testRoot/jni/utils module…	2026-01-27T09:15:51.680	2026-01-27T09:15:51.680

ID	Severity	Description	Published	Updated
ghsa-xr9j-2jxx-p2h8	9.8 (3.1)	Integer Overflow or Wraparound vulnerability in Ralim IronOS.This issue affects IronOS: before v2.23-rc2.	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-w299-fq8v-qvg7	7.5 (3.1)	Missing Release of Memory after Effective Lifetime vulnerability in Is-Daouda is-Engine.This issue …	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-v6c5-9mp4-mwq4	7.7 (3.1)	A heap-based buffer overflow problem was found in glib through an incorrect calculation of buffer s…	2025-11-26T15:34:12Z	2026-01-27T12:31:18Z
ghsa-rx39-3p86-f4v2	7.5 (3.1)	Out-of-bounds Write vulnerability in gerstrong Commander-Genius.This issue affects Commander-Genius…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-rq8q-2gpw-5fr2	7.4 (4.0)	Multiple cross-site scripting vulnerabilities in Admin UI of EZCast Pro II version 1.17478.146 allo…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-f6mf-xjgg-34j8	7.8 (3.1)	A local low privileged attacker can bypass the authentication of the Device Manager user interface,…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-cq4v-33m4-7gj5	7.6 (4.0)	Use of well-known default credentials in Admin UI of EZCast Pro II version 1.17478.146 allows attac…	2026-01-27T12:31:17Z	2026-01-27T12:31:18Z
ghsa-9x3w-xc3m-rx49	10.0 (4.0)	Out-of-bounds Write, Divide By Zero, NULL Pointer Dereference, Use of Uninitialized Resource, Out-o…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-8283-g649-xjrh	8.8 (3.1)	A low privileged remote attacker can execute arbitrary code by sending specially crafted calls to t…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-4hm5-jmp9-7g72	6.9 (4.0)	Pix-Link LV-WR21Q does not enforce any form of authentication for endpoint /goform/getHomePageInfo.…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-45hq-rq49-xwcf	5.7 (4.0)	Improper input validation in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to mani…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-3gh2-3c3q-2933	5.3 (3.1)	A low privileged remote attacker may be able to disclose confidential information from the memory o…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-382v-76mx-pqx3	6.5 (3.1)	Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in Is-Daouda is-Engine.This issue aff…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-292q-v67v-f66g	6.9 (4.0)	A vulnerability in the Pix-Link LV-WR21Q router's language module allows remote attackers to trigge…	2026-01-27T12:31:18Z	2026-01-27T12:31:18Z
ghsa-pqh8-v6gf-267q	7.0 (3.1)	Dell CloudBoost Virtual Appliance, versions prior to 19.14.0.0, contains a Plaintext Storage of Pas…	2026-01-27T12:31:17Z	2026-01-27T12:31:17Z
ghsa-cr4v-m7hf-7hvj	6.8 (4.0)	Cross-Site Request Forgery in Admin UI of EZCast Pro II version 1.17478.146 allows attackers to byp…	2026-01-27T12:31:17Z	2026-01-27T12:31:17Z
ghsa-8pm5-xr39-vfv3	6.1 (3.1)	A flaw was found in libsoup, an HTTP client library. This vulnerability, known as CRLF (Carriage Re…	2026-01-27T12:31:17Z	2026-01-27T12:31:17Z
ghsa-xg4q-g85w-x6x5	6.9 (4.0)	Missing Release of Memory after Effective Lifetime vulnerability in ydb-platform ydb (contrib/libs/…	2026-01-27T09:30:31Z	2026-01-27T09:30:31Z
ghsa-mvcg-wp8g-8fcv	10.0 (4.0)	Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera…	2026-01-27T09:30:31Z	2026-01-27T09:30:31Z
ghsa-49v6-p72m-p687	6.9 (4.0)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera…	2026-01-27T09:30:31Z	2026-01-27T09:30:31Z
ghsa-3vcc-ghcj-6f52	10.0 (4.0)	Out-of-bounds Write, Heap-based Buffer Overflow vulnerability in ttttupup wxhelper (src modules). T…	2026-01-27T09:30:31Z	2026-01-27T09:30:31Z
ghsa-w586-qrfw-4qhv	8.7 (4.0)	Out-of-bounds Write vulnerability in praydog UEVR (dependencies/lua/src modules). This vulnerabilit…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-vx2x-xf93-9fw9	9.2 (4.0)	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in coolsnowwolf lede (package/…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-v546-jrfg-ph8q	8.3 (4.0)	Integer Overflow or Wraparound vulnerability in RawTherapee (rtengine modules). This vulnerability …	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-mvr7-j94c-mhvx	10.0 (4.0)	Out-of-bounds Write, Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-mjw4-g269-g6rc	6.9 (4.0)	Vulnerability in Ralim IronOS (source/Core/BSP/Pinecilv2/bl_mcu_sdk/components/ble/ble_stack/common…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-mhvc-rf83-29wq	10.0 (4.0)	Unrestricted Upload of File with Dangerous Type, Deserialization of Untrusted Data vulnerability in…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-mfmq-rvc6-qmj6	9.3 (4.0)	Out-of-bounds Read vulnerability in turanszkij WickedEngine (WickedEngine/LUA modules). This vulner…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-hcx3-3q5c-r5v6	5.3 (4.0)	Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in briandilley jsonrpc4j (src/…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z
ghsa-fm67-x2fw-2g76	9.3 (4.0)	Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with p…	2026-01-27T09:30:30Z	2026-01-27T09:30:30Z

ID	Severity	Description	Package	Published	Updated
pysec-2024-85	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-01-21T10:56:13.383317Z
pysec-2024-84	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.3.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-01-21T10:56:13.282670Z
pysec-2024-83	7.5 (3.1)	Deserialization of untrusted data can occur in versions 23.10.2.0 and newer of the MindsD…	mindsdb	2024-09-12T13:15:00Z	2026-01-21T10:56:13.179465Z
pysec-2024-82	8.8 (3.1)	Deserialization of untrusted data can occur in versions 23.3.2.0 and newer of the MindsDB…	mindsdb	2024-09-12T13:15:00Z	2026-01-21T10:56:13.080953Z
pysec-2023-278	5.3 (3.1)	MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1…	mindsdb	2023-12-11T21:15:00Z	2026-01-21T10:56:12.965425Z
pysec-2025-52		gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation.	mlflow	2025-06-23T15:15:29Z	2025-12-05T13:25:55.146081Z
pysec-2020-220		A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage coll…	ansible	2020-10-05T14:15:00Z	2025-10-31T04:43:53.616247Z
pysec-2025-72		The `num2words` project was compromised via a phishing attack and two new versions were u…	num2words		2025-07-31T14:34:47+00:00
pysec-2025-71		Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas…	cadwyn	2025-07-21T21:15:25+00:00	2025-07-23T15:24:03.825615+00:00
pysec-2025-70	10.0 (3.1)	A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen…	langchain-community	2025-06-23T21:15:25+00:00	2025-07-16T21:23:40.211079+00:00
pysec-2024-259	9.8 (3.1)	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-258		In scrapy/scrapy, an issue was identified where the Authorization header is not removed d…	scrapy	2024-05-20T08:15:08+00:00	2025-07-15T17:37:50.051730+00:00
pysec-2025-69		In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem…	roundup	2025-07-13T20:15:25+00:00	2025-07-13T21:23:01.161315+00:00
pysec-2025-68	8.0 (3.1)	A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.449399+00:00
pysec-2025-67	9.8 (3.1)	A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil…	upsonic	2025-06-19T21:15:27+00:00	2025-07-08T19:22:27.385619+00:00
pysec-2025-66		Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-65		A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0…	llama-index	2025-07-07T13:15:28+00:00	2025-07-07T15:23:42.730681+00:00
pysec-2025-61		Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap …	pillow	2025-07-01T19:15:27Z	2025-07-07T14:12:46.226030Z
pysec-2025-64	9.8 (3.1)	A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0…	python-a2a	2025-06-17T07:15:18+00:00	2025-07-02T21:23:13.806273+00:00
pysec-2025-63		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-62		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-60		Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform…	apache-iotdb	2025-05-14T11:16:28+00:00	2025-07-01T21:22:47.232036+00:00
pysec-2025-59		Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack…	apache-iotdb	2025-05-14T11:15:47+00:00	2025-07-01T21:22:47.177405+00:00
pysec-2024-257	7.5 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-03-22T23:15:07+00:00	2025-06-30T15:23:50.085549+00:00
pysec-2025-58	8.8 (3.1)	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-57		A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-56	4.3 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t…	octoprint	2025-04-22T18:15:59+00:00	2025-06-27T17:22:53.513680+00:00
pysec-2024-256		Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2025-55		vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.407481+00:00
pysec-2025-54		vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8…	vllm	2025-05-30T19:15:30+00:00	2025-06-26T21:23:06.319321+00:00

ID	Description	Updated
gsd-2024-33903	In CARLA through 0.9.15.2, the collision sensor mishandles some situations involving pede…	2024-04-29T05:02:07.295775Z
gsd-2024-33902	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.486429Z
gsd-2024-33901	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.525896Z
gsd-2024-33900	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.290639Z
gsd-2024-33899	RARLAB WinRAR before 7.00, on Linux and UNIX platforms, allows attackers to spoof the scr…	2024-04-29T05:02:07.400574Z
gsd-2024-33898	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287632Z
gsd-2024-33897	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.283756Z
gsd-2024-33896	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.313250Z
gsd-2024-33895	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.493081Z
gsd-2024-33894	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.488420Z
gsd-2024-33893	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.381761Z
gsd-2024-33892	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.378170Z
gsd-2024-33891	Delinea Secret Server before 11.7.000001 allows attackers to bypass authentication via th…	2024-04-29T05:02:07.412035Z
gsd-2024-33890	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.344384Z
gsd-2024-33889	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.392587Z
gsd-2024-33888	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.468423Z
gsd-2024-33887	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.503613Z
gsd-2024-33886	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.287167Z
gsd-2024-33885	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.441746Z
gsd-2024-33884	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:07.534455Z
gsd-2024-33883	The ejs (aka Embedded JavaScript templates) package before 3.1.10 for Node.js lacks certa…	2024-04-29T05:02:07.271727Z
gsd-2024-4303	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.716348Z
gsd-2024-4302	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.603637Z
gsd-2024-4301	The format of the source doesn't require a description, click on the link for more details.	2024-04-29T05:02:05.678292Z
gsd-2024-4300	E-WEBInformationCo. FS-EZViewer(Web) exposes sensitive information in the service. A remo…	2024-04-29T05:02:05.715239Z
gsd-2024-4299	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSheroc…	2024-04-29T05:02:05.606402Z
gsd-2024-4298	The email search interface of HGiga iSherlock (including MailSherlock, SpamSherock, Audit…	2024-04-29T05:02:05.598531Z
gsd-2024-4297	The system configuration interface of HGiga iSherlock (including MailSherlock, SpamSherlo…	2024-04-29T05:02:05.700888Z
gsd-2024-4296	The account management interface of HGiga iSherlock (including MailSherlock, SpamSherlock…	2024-04-29T05:02:05.621428Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z

ID	Description	Published	Updated
mal-2026-547	Malicious code in solhint-plugin-hyperlane (PyPI)	2026-01-27T09:15:48Z	2026-01-27T09:15:48Z
mal-2026-198	Malicious code in shopee-chat (npm)	2026-01-11T13:21:17Z	2026-01-27T08:27:34Z
mal-2026-480	Malicious code in kwp-shared-components-production-system (npm)	2026-01-23T01:13:12Z	2026-01-27T08:27:32Z
mal-2026-266	Malicious code in @wbgo/shared (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:30Z
mal-2026-265	Malicious code in @wb-team/uikit-myteam-web (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:30Z
mal-2026-263	Malicious code in @spx-workforceops/shared-vue (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:29Z
mal-2026-262	Malicious code in @spx-smartsorting/vue (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:29Z
mal-2026-261	Malicious code in @spx-delivery/react (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:29Z
mal-2026-260	Malicious code in @servicepoint/vue-project (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:29Z
mal-2026-259	Malicious code in @riag-libs/pattern-library-react-hooks (npm)	2026-01-16T00:10:24Z	2026-01-27T08:27:29Z
mal-2026-249	Malicious code in @flipster/utils (npm)	2026-01-13T08:19:50Z	2026-01-27T08:27:29Z
mal-2026-527	Malicious code in @santandergroup-uk/edgehome-components (npm)	2026-01-27T08:16:51Z	2026-01-27T08:16:51Z
mal-2026-534	Malicious code in internallib_v828 (npm)	2026-01-27T08:12:56Z	2026-01-27T08:12:57Z
mal-2026-535	Malicious code in knex.js (npm)	2026-01-27T08:11:31Z	2026-01-27T08:11:39Z
mal-2026-542	Malicious code in stylus.js (npm)	2026-01-27T08:11:31Z	2026-01-27T08:11:32Z
mal-2026-541	Malicious code in pump.js (npm)	2026-01-27T08:11:31Z	2026-01-27T08:11:32Z
mal-2026-537	Malicious code in mysql2.js (npm)	2026-01-27T08:11:31Z	2026-01-27T08:11:31Z
mal-2026-536	Malicious code in morgan.js (npm)	2026-01-27T08:11:31Z	2026-01-27T08:11:31Z
mal-2026-530	Malicious code in grepleaks (npm)	2026-01-27T08:09:32Z	2026-01-27T08:09:32Z
mal-2026-546	Malicious code in xhjxhjhiagent (npm)	2026-01-27T08:09:00Z	2026-01-27T08:09:00Z
mal-2026-545	Malicious code in testxhjhka (npm)	2026-01-27T08:09:00Z	2026-01-27T08:09:00Z
mal-2026-544	Malicious code in testxhjhk (npm)	2026-01-27T08:09:00Z	2026-01-27T08:09:00Z
mal-2026-533	Malicious code in hiagentxhjrceme (npm)	2026-01-27T08:08:59Z	2026-01-27T08:09:00Z
mal-2026-532	Malicious code in hiagentxhjrce (npm)	2026-01-27T08:08:59Z	2026-01-27T08:09:00Z
mal-2026-531	Malicious code in hackerxhj (npm)	2026-01-27T08:09:00Z	2026-01-27T08:09:00Z
mal-2026-526	Malicious code in @row-components/pricing-embedded-sui (npm)	2026-01-27T08:01:02Z	2026-01-27T08:01:02Z
mal-2026-543	Malicious code in tailwind-components-cli (npm)	2026-01-27T07:59:05Z	2026-01-27T07:59:05Z
mal-2026-539	Malicious code in n8n-nodes-gg-udhasudsh-hgjkhg-official (npm)	2026-01-27T07:57:56Z	2026-01-27T07:57:57Z
mal-2026-540	Malicious code in n8n-nodes-xkwqpzrt-jmflhvbn-dsyocgxwmkelpt (npm)	2026-01-27T07:57:56Z	2026-01-27T07:57:56Z
mal-2026-538	Malicious code in n8n-nodes-gasdhgfuy-rejerw-ytjsadx (npm)	2026-01-27T07:57:56Z	2026-01-27T07:57:56Z

ID	Description	Published	Updated
wid-sec-w-2026-0098	Node.js: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-01-26T23:00:00.000+00:00
wid-sec-w-2026-0183	InetUtils (telnetd): Schwachstelle ermöglicht Erlangen von Administratorrechten	2026-01-20T23:00:00.000+00:00	2026-01-25T23:00:00.000+00:00
wid-sec-w-2026-0176	Google Chrome/Microsoft Edge: Schwachstelle ermöglicht Codeausführung	2026-01-20T23:00:00.000+00:00	2026-01-25T23:00:00.000+00:00
wid-sec-w-2026-0190	vllm: Mehrere Schwachstellen	2026-01-21T23:00:00.000+00:00	2026-01-22T23:00:00.000+00:00
wid-sec-w-2026-0133	SmarterTools SmarterMail: Mehrere Schwachstellen	2026-01-15T23:00:00.000+00:00	2026-01-22T23:00:00.000+00:00
wid-sec-w-2026-0185	M-Files M-Files Server: Schwachstelle ermöglicht Denial of Service	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0184	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0182	Apache Solr: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0174	Oracle Systems: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0172	Oracle Virtualization: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0168	Oracle MySQL: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0164	Oracle Java SE: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0159	Oracle E-Business Suite: Mehrere Schwachstellen	2026-01-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0148	ImageMagick: Mehrere Schwachstellen	2026-01-19T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0114	Red Hat OpenShift (github.com/sirupsen/logrus): Schwachstelle ermöglicht Denial of Service	2026-01-14T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0090	Mozilla Firefox und Thunderbird: Mehrere Schwachstellen	2026-01-13T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0068	libpng (API-Funktionen): Mehrere Schwachstellen ermöglichen DoS und Offenlegung von Informationen	2026-01-12T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0062	Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen und Datenmanipulation	2026-01-11T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0008	Red Hat Enterprise Linux: Mehrere Schwachstellen	2026-01-04T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2934	ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-29T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2928	GnuPG: Mehrere Schwachstellen	2025-12-28T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2927	NetApp ActiveIQ Unified Manager: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-28T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2916	Net-SNMP: Schwachstelle ermöglicht Codeausführung und DoS	2025-12-23T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2888	ImageMagick: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2887	PHP: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2871	GIMP: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-17T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2868	Linux Kernel: Mehrere Schwachstellen	2025-12-16T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2812	Mozilla Firefox: Mehrere Schwachstellen	2025-12-09T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2756	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-07T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2026-0040	Kwetsbaarheid verholpen in SmarterTools SmarterMail	2026-01-27T10:51:39.476320Z	2026-01-27T10:51:39.476320Z
ncsc-2026-0039	ZeroDay kwetsbaarheid verholpen in Microsoft Office	2026-01-27T07:27:52.867415Z	2026-01-27T07:27:52.867415Z
ncsc-2025-0386	Kwetsbaarheden verholpen in Fortinet producten	2025-12-10T09:51:34.918202Z	2026-01-23T13:20:09.704113Z
ncsc-2026-0038	Kwetsbaarheid verholpen in BIND 9	2026-01-23T08:54:43.506215Z	2026-01-23T08:54:43.506215Z
ncsc-2026-0037	Kwetsbaarheden verholpen in GitLab Community Edition en Enterprise Edition	2026-01-22T12:35:30.505659Z	2026-01-22T12:35:30.505659Z
ncsc-2026-0036	Kwetsbaarheden verholpen in Cisco Unified Communications producten	2026-01-22T09:49:39.156365Z	2026-01-22T09:49:39.156365Z
ncsc-2026-0035	Kwetsbaarheid verholpen in Palo Alto Networks PAN-OS	2026-01-22T09:22:36.433609Z	2026-01-22T09:22:36.433609Z
ncsc-2026-0034	Kwetsbaarheden verholpen in Atlassian producten	2026-01-22T09:03:42.667958Z	2026-01-22T09:03:42.667958Z
ncsc-2026-0033	Kwetsbaarheid verholpen in GNU Inetutils telnetd	2026-01-21T14:15:46.424529Z	2026-01-21T14:15:46.424529Z
ncsc-2026-0032	Kwetsbaarheden verholpen in Oracle MySQL	2026-01-21T10:12:24.844869Z	2026-01-21T10:12:24.844869Z
ncsc-2026-0031	Kwetsbaarheden verholpen in Oracle JD Edwards	2026-01-21T10:12:00.674214Z	2026-01-21T10:12:00.674214Z
ncsc-2026-0030	Kwetsbaarheden verholpen in Oracle Java	2026-01-21T10:11:39.759123Z	2026-01-21T10:11:39.759123Z
ncsc-2026-0029	Kwetsbaarheden verholpen in Oracle Hyperion	2026-01-21T10:10:46.297433Z	2026-01-21T10:10:46.297433Z
ncsc-2026-0028	Kwetsbaarheden verholpen in Oracle Analytics	2026-01-21T10:10:15.985753Z	2026-01-21T10:10:15.985753Z
ncsc-2026-0027	Kwetsbaarheden verholpen in Oracle Fusion Middleware	2026-01-21T10:08:59.379774Z	2026-01-21T10:08:59.379774Z
ncsc-2026-0026	Kwetsbaarheden verholpen in Oracle Enterprise Manager	2026-01-21T10:06:27.920991Z	2026-01-21T10:06:27.920991Z
ncsc-2026-0025	Kwetsbaarheden verholpen in Oracle Financial Services	2026-01-21T09:55:33.889125Z	2026-01-21T09:55:33.889125Z
ncsc-2026-0024	Kwetsbaarheden verholpen in Oracle E-Business Suite	2026-01-21T09:29:38.334428Z	2026-01-21T09:29:38.334428Z
ncsc-2026-0023	Kwetsbaarheden verholpen in Oracle PeopleSoft	2026-01-21T09:27:58.715578Z	2026-01-21T09:27:58.715578Z
ncsc-2026-0022	Kwetsbaarheden verholpen in Oracle Communications producten	2026-01-21T09:25:39.876330Z	2026-01-21T09:25:39.876330Z
ncsc-2026-0021	Kwetsbaarheden verholpen in Oracle Database Server producten	2026-01-21T09:19:00.000449Z	2026-01-21T09:19:00.000449Z
ncsc-2026-0020	Kwetsbaarheden verholpen in Oracle Commerce	2026-01-21T09:18:16.268788Z	2026-01-21T09:18:16.268788Z
ncsc-2026-0019	Kwetsbaarheid verholpen in Fortinet FortiSIEM	2026-01-16T13:34:34.467426Z	2026-01-16T13:34:34.467426Z
ncsc-2026-0018	Kwetsbaarheden verholpen in TYPO3 CMS	2026-01-16T10:11:37.524826Z	2026-01-16T10:11:37.524826Z
ncsc-2026-0017	Kwetsbaarheden verholpen in Juniper Networks JunOS	2026-01-16T10:07:39.310560Z	2026-01-16T10:07:39.310560Z
ncsc-2026-0016	Kwetsbaarheden verholpen in Aruba Networks ArubaOS	2026-01-16T09:44:20.575860Z	2026-01-16T09:44:20.575860Z
ncsc-2026-0015	Kwetsbaarheid verholpen in Fortinet FortiOS	2026-01-15T12:31:57.265723Z	2026-01-15T12:31:57.265723Z
ncsc-2026-0014	Kwetsbaarheden verholpen in Adobe Illustrator	2026-01-15T12:16:05.427141Z	2026-01-15T12:16:05.427141Z
ncsc-2026-0013	Kwetsbaarheden verholpen in Adobe InDesign Desktop	2026-01-14T13:45:48.530782Z	2026-01-14T13:45:48.530782Z
ncsc-2026-0012	Kwetsbaarheden verholpen in Adobe Dreamweaver Desktop	2026-01-14T13:41:56.261778Z	2026-01-14T13:41:56.261778Z

ID	Description	Published	Updated
ssa-864900	SSA-864900: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00Z	2026-01-22T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-928984	SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-12-16T00:00:00Z	2026-01-13T00:00:00Z
ssa-912274	SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17	2025-12-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-858251	SSA-858251: Authentication Bypass Vulnerabilities in OPC UA	2025-03-11T00:00:00Z	2026-01-13T00:00:00Z
ssa-832273	SSA-832273: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.3 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-827968	SSA-827968: Vulnerability in Nozomi Guardian/CMC on RUGGEDCOM APE1808 Devices	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-698820	SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices	2024-07-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2026-01-13T00:00:00Z
ssa-674753	SSA-674753: Denial-of-Service Vulnerability in ET 200SP	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-366067	SSA-366067: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.1 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-365200	SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products	2025-10-14T00:00:00Z	2026-01-13T00:00:00Z
ssa-364175	SSA-364175: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1	2024-07-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-212953	SSA-212953: Multiple Vulnerabilities in COMOS	2025-12-09T00:00:00Z	2026-01-13T00:00:00Z
ssa-201595	SSA-201595: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager	2025-08-14T00:00:00Z	2026-01-13T00:00:00Z
ssa-192617	SSA-192617: Local Privilege Escalation Vulnerability in TeleControl Server Basic Before V3.1.2.4	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-082556	SSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5	2025-06-10T00:00:00Z	2026-01-13T00:00:00Z
ssa-014678	SSA-014678: Authorization Bypass Vulnerability in Industrial Edge Device Kit	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-001536	SSA-001536: Authorization Bypass Vulnerability in Siemens Industrial Edge Devices	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
ssa-512988	SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
ssa-915282	SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-882673	SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-868571	SSA-868571: Missing Server Certificate Validation in IAM Client	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-800126	SSA-800126: Deserialization Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-763474	SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-734261	SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-723487	SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related Products	2024-07-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-710408	SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2026-01-27T13:03:11+00:00
rhsa-2025:9646	Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update	2025-06-25T14:06:29+00:00	2026-01-27T13:03:11+00:00
rhsa-2025:9541	Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates	2025-06-24T14:31:21+00:00	2026-01-27T13:03:11+00:00
rhsa-2025:9167	Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release	2025-06-17T09:27:34+00:00	2026-01-27T13:03:10+00:00
rhsa-2025:8556	Red Hat Security Advisory: OpenShift Container Platform 4.16.42 bug fix and security update	2025-06-13T05:16:43+00:00	2026-01-27T13:03:10+00:00
rhsa-2025:8544	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15.14 Bug Fix Update	2025-06-04T20:11:19+00:00	2026-01-27T13:03:09+00:00
rhsa-2025:8510	Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.7 security and bug fix update	2025-06-04T12:26:00+00:00	2026-01-27T13:03:07+00:00
rhsa-2025:8390	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes	2025-06-02T17:37:18+00:00	2026-01-27T13:03:07+00:00
rhsa-2025:8299	Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update	2025-06-04T12:16:12+00:00	2026-01-27T13:03:07+00:00
rhsa-2025:8284	Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update	2025-06-03T10:16:45+00:00	2026-01-27T13:03:07+00:00
rhsa-2025:4810	Red Hat Security Advisory: RHSA: Submariner 0.18.5 - bug and security update	2025-05-12T15:04:37+00:00	2026-01-27T13:03:07+00:00
rhsa-2025:8280	Red Hat Security Advisory: OpenShift Container Platform 4.17.32 bug fix and security update	2025-06-04T09:19:59+00:00	2026-01-27T13:03:06+00:00
rhsa-2025:8274	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update	2025-05-28T20:39:49+00:00	2026-01-27T13:03:05+00:00
rhsa-2025:7863	Red Hat Security Advisory: OpenShift Container Platform 4.18.14 bug fix and security update	2025-05-20T17:17:48+00:00	2026-01-27T13:03:05+00:00
rhsa-2025:7753	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update	2025-05-15T17:09:32+00:00	2026-01-27T13:03:05+00:00
rhsa-2025:7616	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update	2025-05-14T14:49:22+00:00	2026-01-27T13:03:05+00:00
rhsa-2025:7479	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T17:18:27+00:00	2026-01-27T13:03:04+00:00
rhsa-2025:7407	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T13:53:53+00:00	2026-01-27T13:03:03+00:00
rhsa-2025:4666	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.7 container updates	2025-05-07T16:17:54+00:00	2026-01-27T13:03:03+00:00
rhsa-2025:4605	Red Hat Security Advisory: multicluster Engine for Kubernetes 2.6.7 container updates	2025-05-07T03:32:30+00:00	2026-01-27T13:03:03+00:00
rhsa-2025:4511	Red Hat Security Advisory: RHODF-4.18-RHEL-9 security update	2025-05-06T07:14:59+00:00	2026-01-27T13:03:03+00:00
rhsa-2025:4473	Red Hat Security Advisory: multicluster Engine for Kubernetes 2.5.9 container updates	2025-05-05T23:34:14+00:00	2026-01-27T13:03:02+00:00
rhsa-2025:4250	Red Hat Security Advisory: RHSA: Submariner 0.19.4 - bug fix and enhancement update	2025-04-28T16:10:25+00:00	2026-01-27T13:03:01+00:00
rhsa-2025:4002	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.12.3 container image updates	2025-04-17T22:09:36+00:00	2026-01-27T13:03:01+00:00
rhsa-2025:3987	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.7.4 security updates	2025-04-17T17:18:55+00:00	2026-01-27T13:03:01+00:00
rhsa-2025:3959	Red Hat Security Advisory: VolSync 0.11.2 security fixes and enhancements for RHEL 9	2025-04-16T21:10:52+00:00	2026-01-27T13:03:01+00:00
rhsa-2025:3932	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release	2025-04-16T02:48:23+00:00	2026-01-27T13:03:00+00:00
rhsa-2025:3886	Red Hat Security Advisory: RHOAI 2.19.0 - Red Hat OpenShift AI	2025-04-15T07:52:02+00:00	2026-01-27T13:03:00+00:00
rhsa-2025:3863	Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update	2025-04-14T18:00:47+00:00	2026-01-27T13:02:59+00:00
rhsa-2025:3820	Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release	2025-04-10T17:22:43+00:00	2026-01-27T13:02:59+00:00

ID	Description	Published	Updated
icsa-26-022-01	Schneider Electric	2026-01-13T08:00:00.000000Z	2026-01-22T17:29:46.950679Z
icsa-26-022-08	EVMAPA	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-24-326-04	Schneider Electric Modicon M340, MC80, and Momentum Unity M1E (Update B)	2024-11-12T05:00:00.000000Z	2026-01-20T15:49:53.166459Z
icsa-26-020-01	Schneider Electric EcoStruxure Foxboro DCS	2025-12-09T08:00:00.000000Z	2026-01-20T15:49:52.728135Z
icsa-25-070-01	Schneider Electric Uni-Telway Driver (Update B)	2025-02-11T05:00:00.000000Z	2026-01-20T15:49:52.295431Z
icsa-26-020-02	Schneider Electric devices using CODESYS Runtime	2023-07-11T07:15:18.000000Z	2026-01-20T15:49:51.778731Z
icsa-26-020-03	Rockwell Automation Verve Asset Manager	2026-01-20T07:00:00.000000Z	2026-01-20T07:00:00.000000Z
icsa-25-184-03	Mitsubishi Electric MELSOFT Update Manager (Update A)	2025-07-03T06:00:00.000000Z	2026-01-20T07:00:00.000000Z
va-26-015-01	NOAA PMEL Live Access Server (LAS) command injection	2026-01-15T19:59:37Z	2026-01-15T19:59:37Z
icsa-26-013-03	YoSmart YoLink Smart Hub	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-26-013-02	Rockwell Automation FactoryTalk DataMosaix Private Cloud	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-26-013-01	Rockwell Automation 432ES-IG3 Series A	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-25-212-01	Güralp Systems FMUS Series and MIN Series Devices (Update B)	2025-07-31T06:00:00.000000Z	2026-01-13T07:00:00.000000Z
va-26-013-01	NSecKrnl driver terminates system processes with crafted IOCTL requests	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
icsa-25-345-03	AzeoTech DAQFactory (Update A)	2025-12-11T07:00:00.000000Z	2026-01-12T07:00:00.000000Z
va-26-008-01	OPEXUS eCASE	2026-01-08T16:36:15Z	2026-01-08T16:36:15Z
icsa-24-338-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update A)	2024-12-03T07:00:00.000000Z	2026-01-08T07:00:00.000000Z
icsa-24-296-01	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update B)	2024-10-22T06:00:00.000000Z	2026-01-08T07:00:00.000000Z
icsa-24-184-03	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update B)	2024-07-02T06:00:00.000000Z	2026-01-08T07:00:00.000000Z
icsa-22-020-01	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric HMI SCADA (Update A)	2022-01-20T07:00:00.000000Z	2026-01-08T07:00:00.000000Z
icsa-25-140-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update C)	2025-05-20T05:00:00.000000Z	2026-01-08T06:00:00.000000Z
va-26-008-03	Ideagen DevonWay stored XSS	2026-01-08T00:00:00Z	2026-01-08T00:00:00Z
icsa-26-008-01	Hitachi Energy Asset Suite	2025-12-09T00:00:00.000000Z	2026-01-07T21:26:16.381953Z
va-26-008-02	OPEXUS eComplaint and eCasePortal IDOR	2026-01-07T16:35:11Z	2026-01-07T16:35:11Z
icsa-26-006-01	Columbia Weather Systems MicroServer	2026-01-06T07:00:00.000000Z	2026-01-06T07:00:00.000000Z
icsma-25-364-01	WHILL Model C2 Electric Wheelchairs and Model F Power Chairs	2025-12-30T07:00:00.000000Z	2025-12-30T07:00:00.000000Z
icsa-25-177-01	Mitsubishi Electric Air Conditioning Systems (Update B)	2025-06-26T06:00:00.000000Z	2025-12-23T07:00:00.000000Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-352-08	Axis Communications Camera Station Pro, Camera Station, and Device Manager	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-voice-rce-morhqy4b	Cisco Unified Communications Products Remote Code Execution Vulnerability	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-ucce-pcce-xss-2jvyg3ud	Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-intersight-privesc-p6tbm6jk	Cisco Intersight Virtual Appliance Privilege Escalation Vulnerability	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-iec6400-pem5uq7v	Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability	2026-01-21T16:00:00+00:00	2026-01-21T16:00:00+00:00
cisco-sa-sma-attack-n9bf4	Reports About Cyberattacks Against Cisco Secure Email Gateway And Cisco Secure Email and Web Manager	2025-12-17T16:00:00+00:00	2026-01-15T16:01:43+00:00
cisco-sa-ise-xss-9tdh2kx	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-ise-xss-964cdxw5	Cisco Identity Services Engine Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-gekx8ywk	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2026-01-15T16:00:00+00:00	2026-01-15T16:00:00+00:00
cisco-sa-snort3-dcerpc-vulns-j9hnf4th	Multiple Cisco Products Snort 3 Distributed Computing Environment/Remote Procedure Call Vulnerabilities	2026-01-07T16:00:00+00:00	2026-01-07T16:00:00+00:00
cisco-sa-ise-xxe-jwsbsdkt	Cisco Identity Services Engine XML External Entity Processing Information Disclosure Vulnerability	2026-01-07T16:00:00+00:00	2026-01-07T16:00:00+00:00
cisco-sa-react-flight-tyw32ddb	Remote Code Execution Vulnerability in React and Next.js Frameworks: December 2025	2025-12-04T16:00:00+00:00	2025-12-17T22:37:17+00:00
cisco-sa-ise-multiple-vulns-o9beswjh	Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Disclosure Vulnerabilities	2025-11-05T16:00:00+00:00	2025-12-04T14:23:54+00:00
cisco-sa-cc-mult-vuln-gk4tfxsn	Multiple Cisco Contact Center Products Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-18T14:49:09+00:00
cisco-sa-privesc-catc-ryjreelu	Cisco Catalyst Center Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-xss-wextvz59	Cisco Catalyst Center Cross-Site Scripting Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-dnac-ci-zwlqvswt	Cisco Catalyst Center REST API Command Injection Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-priv-esc-vs8eecux	Cisco Catalyst Center Virtual Appliance Privilege Escalation Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-catc-open-redirect-3w5bk3je	Cisco Catalyst Center Virtual Appliance HTTP Open Redirect Vulnerability	2025-11-13T16:00:00+00:00	2025-11-13T16:00:00+00:00
cisco-sa-cc-unauth-rce-qen8h7mq	Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities	2025-11-05T16:00:00+00:00	2025-11-13T12:48:42+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-http-code-exec-wmfp3h3o	Cisco Secure Firewall Adaptive Security Appliance Software, Secure Firewall Threat Defense Software, IOS Software, IOS XE Software, and IOS XR Software Web Services Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:51+00:00
cisco-sa-ise-radsupress-dos-8yf3jthh	Cisco Identity Services Engine RADIUS Suppression Denial of Service Vulnerability	2025-11-05T16:00:00+00:00	2025-11-05T16:00:00+00:00
cisco-sa-broadworks-xss-o696ymra	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2025-07-02T16:00:00+00:00	2025-10-21T15:13:31+00:00
cisco-sa-snort3-mime-vulns-ttl8pgvh	Multiple Cisco Products Snort 3 MIME Denial of Service Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-roomos-inf-disc-qggsbxam	Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-phone-dos-fpyjlv7a	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-10-15T16:00:00+00:00	2025-10-15T16:00:00+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00

ID	Description	Published	Updated
sca-2026-0003	Vulnerability affecting SICK nanoScan3 and microScan3	2026-01-26T14:00:00.000Z	2026-01-26T14:00:00.000Z
sca-2026-0002	Vulnerabilities affecting SICK Incoming Goods Suite	2026-01-15T14:00:00.000Z	2026-01-22T19:00:00.000Z
sca-2026-0001	Vulnerabilities affecting SICK TDC-X401GL	2026-01-15T14:00:00.000Z	2026-01-15T14:00:00.000Z
sca-2025-0013	Vulnerabilities affecting SICK TLOC100-100	2025-10-27T14:00:00.000Z	2025-11-11T14:00:00.000Z
sca-2025-0014	CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC	2025-11-03T11:00:00.000Z	2025-11-03T14:00:00.000Z
sca-2025-0012	Sudo vulnerability affects SICK SID products	2025-10-27T11:00:00.000Z	2025-10-27T14:00:00.000Z
sca-2025-0011	Vulnerabilities affecting Endress+Hauser SSG-E210GC	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0010	Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products	2025-10-02T13:00:00.000Z	2025-10-02T13:00:00.000Z
sca-2025-0009	Vulnerabilities affecting SICK TDC-E210GC	2025-08-01T13:00:00.000Z	2025-08-01T13:00:00.000Z
sca-2025-0008	Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4	2025-07-03T13:00:00.000Z	2025-07-03T13:00:00.000Z
sca-2025-0007	Multiple vulnerabilities in SICK Field Analytics and SICK Media Server	2025-06-12T13:00:00.000Z	2025-06-12T13:00:00.000Z
sca-2025-0003	FreeRTOS Vulnerabilities have no impact on SICK Products	2025-02-28T00:00:00.000Z	2025-05-20T11:00:00.000Z
sca-2025-0006	Vulnerability affecting picoScan and multiScan	2025-04-28T13:00:00.000Z	2025-04-28T13:00:00.000Z
sca-2025-0005	Vulnerabilities in SICK Flexi Compact	2025-04-28T10:00:00.000Z	2025-04-28T10:00:00.000Z
sca-2025-0004	Critical vulnerabilities in SICK DL100-2xxxxxxx	2025-03-14T11:00:00.000Z	2025-03-14T11:00:00.000Z
sca-2025-0001	Multiple vulnerabilities in SICK MEAC300	2025-02-14T14:00:00.000Z	2025-02-21T14:00:00.000Z
sca-2025-0002	Vulnerability in SICK Lector8xx and SICK InspectorP8xx	2025-02-14T10:19:00.000Z	2025-02-14T10:19:00.000Z
sca-2024-0007	Vulnerability in SICK OLM	2024-12-31T00:00:00.000Z	2024-12-31T00:00:00.000Z
sca-2024-0006	Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx	2024-12-06T00:00:00.000Z	2024-12-06T00:00:00.000Z
sca-2024-0005	Vulnerability in SICK Incoming Goods Suite	2024-11-19T00:00:00.000Z	2024-11-19T00:00:00.000Z
sca-2024-0004	Third party vulnerabilities in SICK CDE-100	2024-11-07T12:00:00.000Z	2024-11-07T12:00:00.000Z
sca-2024-0003	Critical vulnerability in multiple SICK products	2024-10-17T13:00:00.000Z	2024-10-17T13:00:00.000Z
sca-2024-0002	Vulnerability in SICK MSC800	2024-09-11T23:00:00.000Z	2024-09-11T23:00:00.000Z
sca-2024-0001	Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics	2024-01-29T00:00:00.000Z	2024-01-29T00:00:00.000Z
sca-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
SCA-2023-0011	Vulnerability in multiple SICK Flexi Soft Gateways	2023-10-23T11:00:00.000Z	2023-10-23T11:00:00.000Z
sca-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
SCA-2023-0010	Vulnerabilities in SICK Application Processing Unit	2023-10-09T11:00:00.000Z	2023-10-09T11:00:00.000Z
sca-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z
SCA-2023-0008	Vulnerability in SICK SIM1012	2023-09-29T13:00:00.000Z	2023-09-29T13:00:00.000Z

ID	Description	Published	Updated
nn-2025:15-01	Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:14-01	HTML injection in Asset List in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:13-01	Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:12-01	HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0	2025-12-18T11:00:00.000Z	2025-12-18T11:00:00.000Z
nn-2025:11-01	Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0	2025-11-25T11:00:00.000Z	2025-11-26T11:00:00.000Z
nn-2025:9-01	Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:8-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:7-01	Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:6-01	Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:5-01	Incorrect authorization for CLI in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:4-01	Client-side path traversal in Guardian/CMC before 25.2.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:10-01	Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0	2025-10-07T11:00:00.000Z	2025-10-07T11:00:00.000Z
nn-2025:3-01	Incorrect authorization for traces request/download in CMC before 25.1.0	2025-08-26T11:00:00.000Z	2025-08-26T11:00:00.000Z
nn-2025:2-01	Privilege escalation in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2025:1-01	Authenticated RCE in update functionality in Guardian/CMC before 24.6.0	2025-06-10T11:00:00.000Z	2025-06-10T11:00:00.000Z
nn-2023_17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-11T11:00:00.000Z
nn-2024_1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-04-10T11:00:00.000Z
nn-2023_12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-01-16T11:00:00.000Z
nn-2023_9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
oxdc-adv-2025-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001	2025-10-31T00:00:00+00:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0003	OX App Suite Security Advisory OXAS-ADV-2025-0003	2025-09-24T00:00:00+02:00	2025-11-27T00:00:00+00:00
oxas-adv-2025-0002	OX App Suite Security Advisory OXAS-ADV-2025-0002	2025-08-12T00:00:00+02:00	2025-10-31T00:00:00+00:00
oxas-adv-2025-0001	OX App Suite Security Advisory OXAS-ADV-2025-0001	2025-01-27T00:00:00+01:00	2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002	2024-09-10T00:00:00+02:00	2024-09-10T00:00:00+00:00
oxas-adv-2024-0005	OX App Suite Security Advisory OXAS-ADV-2024-0005	2024-07-08T00:00:00+02:00	2024-09-09T00:00:00+00:00
oxdc-adv-2024-0001	OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001	2024-09-02T00:00:00+02:00	2024-09-06T00:00:00+00:00
oxas-adv-2024-0004	OX App Suite Security Advisory OXAS-ADV-2024-0004	2024-06-13T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0003	OX App Suite Security Advisory OXAS-ADV-2024-0003	2024-04-24T00:00:00+02:00	2024-08-19T00:00:00+00:00
oxas-adv-2024-0002	OX App Suite Security Advisory OXAS-ADV-2024-0002	2024-03-06T00:00:00+01:00	2024-05-06T00:00:00+00:00
oxas-adv-2024-0001	OX App Suite Security Advisory OXAS-ADV-2024-0001	2024-02-08T00:00:00+01:00	2024-04-25T00:00:00+00:00
oxas-adv-2023-0007	OX App Suite Security Advisory OXAS-ADV-2023-0007	2023-12-11T00:00:00+01:00	2024-02-16T00:00:00+00:00
oxas-adv-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
oxas-adv-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2026-21509	Microsoft Office Security Feature Bypass Vulnerability	2026-01-13T08:00:00.000Z	2026-01-26T08:00:00.000Z
msrc_cve-2026-20805	Desktop Window Manager Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-23T08:00:00.000Z
msrc_cve-2026-24307	M365 Copilot Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-24306	Azure Front Door Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-24305	Azure Entra ID Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-24304	Azure Resource Manager Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-21524	Azure Data Explorer Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-21521	Word Copilot Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-21520	Copilot Studio Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-21264	Microsoft Account Spoofing Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2026-21227	Azure Logic Apps Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-22T08:00:00.000Z
msrc_cve-2025-39828	atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control().	2025-09-02T00:00:00.000Z	2026-01-21T01:42:47.000Z
msrc_cve-2025-39826	net: rose: convert 'use' field to refcount_t	2025-09-02T00:00:00.000Z	2026-01-21T01:42:37.000Z
msrc_cve-2025-39790	bus: mhi: host: Detect events pointing to unexpected TREs	2025-09-02T00:00:00.000Z	2026-01-21T01:42:25.000Z
msrc_cve-2025-39788	scsi: ufs: exynos: Fix programming of HCI_UTRL_NEXUS_TYPE	2025-09-02T00:00:00.000Z	2026-01-21T01:42:15.000Z
msrc_cve-2025-9230	Out-of-bounds read & write in RFC 3211 KEK Unwrap	2025-09-02T00:00:00.000Z	2026-01-21T01:06:47.000Z
msrc_cve-2025-9232	Out-of-bounds read in HTTP client no_proxy handling	2025-09-02T00:00:00.000Z	2026-01-21T01:06:20.000Z
msrc_cve-2025-4575	The x509 application adds trusted use instead of rejected use	2025-05-02T00:00:00.000Z	2026-01-21T01:06:08.000Z
msrc_cve-2025-4207	PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation	2025-05-02T00:00:00.000Z	2026-01-21T01:05:40.000Z
msrc_cve-2025-39853	i40e: Fix potential invalid access when MAC list is empty	2025-09-02T00:00:00.000Z	2026-01-21T01:04:23.000Z
msrc_cve-2025-39848	ax25: properly unshare skbs in ax25_kiss_rcv()	2025-09-02T00:00:00.000Z	2026-01-21T01:04:15.000Z
msrc_cve-2025-39847	ppp: fix memory leak in pad_compress_skb	2025-09-02T00:00:00.000Z	2026-01-21T01:04:06.000Z
msrc_cve-2025-39846	pcmcia: Fix a NULL pointer dereference in __iodyn_find_io_region()	2025-09-02T00:00:00.000Z	2026-01-21T01:03:58.000Z
msrc_cve-2025-39845	x86/mm/64: define ARCH_PAGE_TABLE_SYNC_MASK and arch_sync_kernel_mappings()	2025-09-02T00:00:00.000Z	2026-01-21T01:03:49.000Z
msrc_cve-2025-39844	mm: move page table sync declarations to linux/pgtable.h	2025-09-02T00:00:00.000Z	2026-01-21T01:03:40.000Z
msrc_cve-2025-39841	scsi: lpfc: Fix buffer free/clear order in deferred receive path	2025-09-02T00:00:00.000Z	2026-01-21T01:03:31.000Z
msrc_cve-2025-39839	batman-adv: fix OOB read/write in network-coding decode	2025-09-02T00:00:00.000Z	2026-01-21T01:03:23.000Z
msrc_cve-2024-58241	Bluetooth: hci_core: Disable works on hci_unregister_dev	2025-09-02T00:00:00.000Z	2026-01-20T14:51:36.000Z
msrc_cve-2025-37945	net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY	2025-05-02T00:00:00.000Z	2026-01-20T14:50:22.000Z
msrc_cve-2025-37907	accel/ivpu: Fix locking order in ivpu_job_submit	2025-05-02T00:00:00.000Z	2026-01-20T14:50:01.000Z

ID	Description	Published	Updated
7paa013309	System 800xA SECURITY Advisory - ABB 800xA Base 6.0.x, 6.1.x CSLib communication DoS vulnerability	2024-06-05T00:30:00.000Z	2026-01-23T00:30:00.000Z
sa25p005	B&R Automation Runtime Improper Handling of Flooding conditions on ANSL Server	2026-01-19T00:30:00.000Z	2026-01-19T00:30:00.000Z
sa25p004	Automation Studio Insufficient Server Certificate Validation	2026-01-19T00:30:00.000Z	2026-01-19T00:30:00.000Z
9akk108472a1331	ABB Ability™ OPTIMAX® Authentication Bypass in Single-Sign On with Azure Active Directory	2026-01-16T00:30:00.000Z	2026-01-16T00:30:00.000Z
2crt000009	WebPro SNMP Card PowerValue Multiple Vulnerabilities	2026-01-07T00:30:00.000Z	2026-01-07T00:30:00.000Z
9akk108471a8107	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-09-16T00:30:00.000Z	2025-11-28T08:00:00.000Z
4hzm000603	ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC)	2025-11-27T00:30:00.000Z	2025-11-28T00:30:00.000Z
7paa022088	Edgenius Management Portal Authentication Bypass	2025-11-20T00:30:00.000Z	2025-11-20T00:30:00.000Z
2nga002813	PCM600 SharpZip library vulnerability	2025-11-03T00:30:00.000Z	2025-11-03T00:30:00.000Z
4tz00000006007	ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations	2025-10-20T00:30:00.000Z	2025-10-23T00:30:00.000Z
9akk108471a8948	Terra AC wallbox Heap Memory Corruption Vulnerability	2025-10-20T00:30:00.000Z	2025-10-21T00:30:00.000Z
3kxg200000r4801	CoreSense™ HM and CoreSense™ M10 File Path Traversal Vulnerability	2025-04-16T00:30:00.000Z	2025-10-20T00:30:00.000Z
sa25p003	B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-14T00:30:00.000Z
4tz00000006008	LVS MConfig Insecure memory handling	2025-10-08T00:30:00.000Z	2025-10-08T00:30:00.000Z
sa25p002	B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM)	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7808	EIBPORT Reflected XSS	2025-10-07T00:30:00.000Z	2025-10-07T00:30:00.000Z
9akk108471a7121	FLXeon Controllers Multiple vulnerabilities	2025-09-09T00:30:00.000Z	2025-09-18T00:30:00.000Z
9akk108471a4462	ELSB/BLBA ASPECT advisory several CVEs	2025-08-11T00:30:00.000Z	2025-09-04T00:30:00.000Z
9akk108471a3623	RMC - 100 Vulnerabilities in web UI (REST Interface)	2025-07-03T00:30:00.000Z	2025-08-18T00:30:00.000Z
2nga002743	ABB AbilityTM zenon Remote Transport Vulnerability	2025-08-12T00:30:00.000Z	2025-08-12T00:30:00.000Z
3adr011407	ABB Automation Builder Vulnerabilities in user management and access control	2025-04-30T00:00:00.000Z	2025-07-25T00:00:00.000Z
3adr011432	AC500 V2 Buffer overread on Modbus protocol	2025-07-23T00:30:00.000Z	2025-07-23T00:30:00.000Z
9akk108471a4556	Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode.	2025-07-21T00:30:00.000Z	2025-07-21T00:30:00.000Z
2crt000008	Lite Panel Pro Vulnerability in Session Management	2025-06-26T00:30:00.000Z	2025-06-26T00:30:00.000Z
9akk108470a8948	ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway.	2025-05-29T00:30:00.000Z	2025-06-05T00:30:00.000Z
9akk108471a1621	EIBPORT Session Management Fail	2025-06-02T00:30:00.000Z	2025-06-04T00:30:00.000Z
9akk108471a0021	ELSB/BLBA ASPECT advisory several CVEs	2025-05-22T00:30:00.000Z	2025-05-23T10:30:00.000Z
2crt000006	ANC – ABB Network Card Multiple vulnerabilities in ANC	2025-04-30T00:30:00.000Z	2025-04-30T00:30:00.000Z
2crt000007	Ekip Com IEC61850 Vulnerability in 3rd Party Library	2025-04-29T00:30:00.000Z	2025-04-29T00:30:00.000Z
9akk108470a9989	ABB MV Drives Affected by CODESYS RTS (Runtime System) Vulnerabilities	2025-04-10T08:30:00.000Z	2025-04-10T08:30:00.000Z

ID	Description	Updated
var-202407-2188	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:32.699000Z
var-202406-3119	Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s…	2024-07-23T22:46:22.685000Z
var-202407-1740	NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha…	2024-07-23T22:46:18.378000Z
var-202407-1417	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:07.784000Z
var-202407-1103	Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita…	2024-07-23T22:46:01.992000Z
var-202407-0957	WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile…	2024-07-23T22:45:59.391000Z
var-202407-0819	SIMATIC S7-1500 is a modular control system suitable for various automation applications …	2024-07-23T22:45:56.958000Z
var-202407-0818	NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6…	2024-07-23T22:45:56.946000Z
var-202407-0779	Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of …	2024-07-23T22:45:56.150000Z
var-202407-0778	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:56.131000Z
var-202407-0745	Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera…	2024-07-23T22:45:55.498000Z
var-202305-1479	D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution …	2024-07-23T22:45:09.335000Z
var-202108-1158	A race condition was addressed with improved locking. This issue is fixed in macOS Monter…	2024-07-23T22:44:06.976000Z
var-201109-0089	Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used…	2024-07-23T22:43:49.590000Z
var-200702-0378	Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 …	2024-07-23T22:43:25.614000Z
var-201011-0225	Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent …	2024-07-23T22:41:43.584000Z
var-201112-0297	Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne…	2024-07-23T22:41:20.004000Z
var-201507-0645	D-Link is an internationally renowned provider of network equipment and solutions, includ…	2024-07-23T22:41:18.832000Z
var-201803-1810	A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial …	2024-07-23T22:41:17.171000Z
var-201809-0087	WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul…	2024-07-23T22:41:16.554000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-07-23T22:41:04.279000Z
var-201702-0423	An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft…	2024-07-23T22:40:53.160000Z
var-202305-1588	D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit…	2024-07-23T22:40:05.297000Z
var-201112-0173	The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, …	2024-07-23T22:39:32.535000Z
var-201103-0371	SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d…	2024-07-23T22:39:32.874000Z
var-201706-0017	In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie…	2024-07-23T22:38:34.494000Z
var-202305-1520	D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul…	2024-07-23T22:38:26.576000Z
var-202407-0490	A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP …	2024-07-23T22:38:24.768000Z
var-201810-0396	Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili…	2024-07-23T22:37:44.850000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-07-23T22:37:43.471000Z

ID	Description	Published	Updated
jvndb-2026-001732	Multiple Brother software installers may insecurely load Dynamic Link Libraries	2026-01-26T16:04+09:00	2026-01-26T16:04+09:00
jvndb-2026-000010	Command injection vulnerability in ASUS routers	2026-01-23T15:22+09:00	2026-01-23T15:22+09:00
jvndb-2026-001663	"iRMC S5/S6" implemented in PRIMERGY vulnerable to incorrect authorization	2026-01-23T11:29+09:00	2026-01-23T11:29+09:00
jvndb-2026-001662	Multiple vulnerabilities in Trend Micro Apex Central (January 2026)	2026-01-23T11:29+09:00	2026-01-23T11:29+09:00
jvndb-2026-000009	Installer of Fujitsu ServerView Agents for Windows may insecurely load Dynamic Link Libraries	2026-01-21T15:17+09:00	2026-01-21T15:17+09:00
jvndb-2026-000008	Ruijie Networks AP180 series vulnerable to OS command injection	2026-01-21T15:17+09:00	2026-01-21T15:17+09:00
jvndb-2026-001582	Security information for Hitachi Disk Array Systems	2026-01-21T12:11+09:00	2026-01-21T12:11+09:00
jvndb-2026-001578	ETERNUS SF vulnerable to insertion of sensitive information into maintenance data	2026-01-20T20:00+09:00	2026-01-20T20:00+09:00
jvndb-2026-001380	Multiple vulnerabilities in Canon Small Office Multifunction Printers and Laser Printers	2026-01-19T10:08+09:00	2026-01-19T10:08+09:00
jvndb-2026-000007	Multiple Vulnerabilities in TOA Network Cameras TRIFORA 3 series	2026-01-16T15:06+09:00	2026-01-16T15:06+09:00
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2026-01-15T11:10+09:00
jvndb-2026-000006	Chainlit vulnerable to improper access restriction	2026-01-14T17:03+09:00	2026-01-14T17:03+09:00
jvndb-2026-000002	Multiple vulnerabilities in multiple NEC branded projectors manufactured by Sharp Display Solutions, Ltd.	2026-01-07T14:10+09:00	2026-01-14T16:54+09:00
jvndb-2026-000005	Multiple vulnerabilities in EATON UPS Companion	2026-01-13T19:01+09:00	2026-01-13T19:01+09:00
jvndb-2026-000003	RICOH Streamline NX vulnerable to improper authorization	2026-01-09T18:17+09:00	2026-01-09T18:17+09:00
jvndb-2026-000004	The installers for multiple PIONEER products may insecurely load Dynamic Link Libraries	2026-01-08T13:47+09:00	2026-01-08T13:47+09:00
jvndb-2026-000001	Origin validation error vulnerability in Fujitsu Security Solution AuthConductor Client Basic V2	2026-01-07T14:19+09:00	2026-01-07T14:19+09:00
jvndb-2026-001001	Authentication bypass vulnerability in OpenBlocks series	2026-01-07T10:46+09:00	2026-01-07T10:46+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-12-23T14:36+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2021-000081	Multiple vulnerabilities in Sharp NEC Display Solutions' public displays	2021-09-17T15:13+09:00	2025-12-10T10:24+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00

ID	Description	Updated
ts-2026-001	TS-2026-001	2026-01-15T00:00
ts-2025-008	TS-2025-008	2025-11-19T00:00
ts-2025-007	TS-2025-007	2025-11-07T00:00
ts-2025-006	TS-2025-006	2025-10-28T00:00
ts-2025-005	TS-2025-005	2025-08-07T00:00
ts-2025-004	TS-2025-004	2025-05-27T00:00
ts-2025-003	TS-2025-003	2025-05-21T00:00
ts-2025-002	TS-2025-002	2025-05-15T00:00
ts-2025-001	TS-2025-001	2025-03-07T00:00
ts-2024-013	TS-2024-013	2024-12-04T00:00
ts-2024-012	TS-2024-012	2024-10-02T00:00
ts-2024-011	TS-2024-011	2024-07-22T00:00
ts-2024-010	TS-2024-010	2024-07-19T00:00
ts-2024-009	TS-2024-009	2024-06-27T00:00
ts-2024-008	TS-2024-008	2024-06-14T00:00
ts-2024-007	TS-2024-007	2024-06-12T00:00
ts-2024-006	TS-2024-006	2024-05-22T00:00
ts-2024-005	TS-2024-005	2024-05-08T00:00
ts-2024-004	TS-2024-004	2024-05-06T00:00
ts-2024-003	TS-2024-003	2024-04-23T00:00
ts-2024-002	TS-2024-002	2024-01-30T00:00
ts-2024-001	TS-2024-001	2024-01-08T00:00
ts-2023-009	TS-2023-009	2023-12-22T00:00
ts-2023-008	TS-2023-008	2023-11-01T00:00
ts-2023-007	TS-2023-007	2023-10-26T00:00
ts-2023-006	TS-2023-006	2023-08-22T00:00
ts-2023-005	TS-2023-005	2023-04-28T00:00
ts-2023-004	TS-2023-004	2023-04-04T00:00
ts-2023-003	TS-2023-003	2023-03-22T00:00
ts-2023-002	TS-2023-002	2023-01-24T00:00

ID	Description	Published	Updated
suse-su-2026:0280-1	Security update for openvswitch	2026-01-23T15:33:56Z	2026-01-23T15:33:56Z
suse-su-2026:0279-1	Security update for libvirt	2026-01-23T15:09:05Z	2026-01-23T15:09:05Z
suse-su-2026:0278-1	Security update for the Linux Kernel	2026-01-23T15:08:32Z	2026-01-23T15:08:32Z
suse-su-2026:0274-1	Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise 15 SP6)	2026-01-23T12:04:25Z	2026-01-23T12:04:25Z
suse-su-2026:0273-1	Security update for azure-cli-core	2026-01-23T11:26:43Z	2026-01-23T11:26:43Z
suse-su-2026:0270-1	Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP6)	2026-01-23T10:33:38Z	2026-01-23T10:33:38Z
suse-su-2026:0269-1	Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise 15 SP6)	2026-01-23T10:04:12Z	2026-01-23T10:04:12Z
suse-su-2026:0268-1	Security update for python	2026-01-23T09:40:47Z	2026-01-23T09:40:47Z
suse-su-2026:0267-1	Recommended update for kernel-firmware	2026-01-23T09:40:29Z	2026-01-23T09:40:29Z
suse-su-2026:0266-1	Security update for glib2	2026-01-23T08:55:04Z	2026-01-23T08:55:04Z
suse-su-2026:0265-1	Security update for libsoup	2026-01-23T07:08:44Z	2026-01-23T07:08:44Z
suse-su-2026:0264-1	Security update for glib2	2026-01-23T04:33:57Z	2026-01-23T04:33:57Z
suse-su-2026:0263-1	Security update for the Linux Kernel	2026-01-22T21:15:02Z	2026-01-22T21:15:02Z
suse-su-2026:0209-1	Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7)	2026-01-21T18:03:57Z	2026-01-21T18:03:57Z
suse-su-2026:0206-1	Security update for the Linux Kernel (Live Patch 23 for SUSE Linux Enterprise 15 SP5)	2026-01-21T15:38:11Z	2026-01-21T15:38:11Z
suse-su-2026:0202-1	Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 15 SP7)	2026-01-21T14:35:49Z	2026-01-21T14:35:49Z
suse-su-2026:0204-1	Security update for the Linux Kernel (Live Patch 16 for SUSE Linux Enterprise 15 SP6)	2026-01-21T13:33:35Z	2026-01-21T13:33:35Z
suse-su-2026:0203-1	Security update for the Linux Kernel (Live Patch 15 for SUSE Linux Enterprise 15 SP6)	2026-01-21T13:04:03Z	2026-01-21T13:04:03Z
suse-su-2026:0200-1	Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)	2026-01-21T12:17:09Z	2026-01-21T12:17:09Z
suse-su-2026:0188-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-01-20T14:06:23Z	2026-01-20T14:06:23Z
suse-su-2026:0166-1	Security update for the Linux Kernel (Live Patch 35 for SUSE Linux Enterprise 15 SP4)	2026-01-19T15:05:22Z	2026-01-19T15:05:22Z
suse-su-2026:0163-1	Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP4)	2026-01-19T14:34:24Z	2026-01-19T14:34:24Z
suse-su-2026:0155-1	Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)	2026-01-19T12:11:10Z	2026-01-19T12:11:10Z
suse-su-2026:0154-1	Security update for the Linux Kernel (Live Patch 63 for SUSE Linux Enterprise 12 SP5)	2026-01-19T12:08:42Z	2026-01-19T12:08:42Z
suse-su-2026:0153-1	Security update for MozillaThunderbird	2026-01-19T11:14:01Z	2026-01-19T11:14:01Z
suse-su-2026:0151-1	Security update for libsoup	2026-01-19T09:56:33Z	2026-01-19T09:56:33Z
suse-su-2026:0148-1	Security update for the Linux Kernel RT (Live Patch 0 for SUSE Linux Enterprise 15 SP7)	2026-01-17T12:04:20Z	2026-01-17T12:04:20Z
suse-su-2026:0133-1	Security update for python	2026-01-16T09:19:41Z	2026-01-16T09:19:41Z
suse-su-2026:0125-1	Security update for podman	2026-01-14T16:57:37Z	2026-01-14T16:57:37Z
suse-su-2026:0123-1	Security update for libsoup	2026-01-14T13:47:28Z	2026-01-14T13:47:28Z

ID	Description	Published	Updated
opensuse-su-2026:20099-1	Security update for coredns	2026-01-24T09:09:32Z	2026-01-24T09:09:32Z
opensuse-su-2026:20103-1	Security update for chromium	2026-01-24T01:00:21Z	2026-01-24T01:00:21Z
opensuse-su-2026:20097-1	Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 16)	2026-01-23T16:43:58Z	2026-01-23T16:43:58Z
opensuse-su-2026:10083-1	vlang-0.5-2.1 on GA media	2026-01-22T00:00:00Z	2026-01-22T00:00:00Z
opensuse-su-2026:10082-1	libsuricata8_0_3-8.0.3-1.1 on GA media	2026-01-22T00:00:00Z	2026-01-22T00:00:00Z
opensuse-su-2026:10081-1	libsubid-devel-4.19.2-2.1 on GA media	2026-01-22T00:00:00Z	2026-01-22T00:00:00Z
opensuse-su-2026:10080-1	bind-9.20.18-1.1 on GA media	2026-01-22T00:00:00Z	2026-01-22T00:00:00Z
opensuse-su-2026:20062-1	Security update for rust1.91, rust1.92	2026-01-19T19:43:51Z	2026-01-19T19:43:51Z
opensuse-su-2026:20064-1	Security update for ffmpeg-4	2026-01-19T14:05:53Z	2026-01-19T14:05:53Z
opensuse-su-2026:10065-1	harfbuzz-devel-12.3.0-2.1 on GA media	2026-01-18T00:00:00Z	2026-01-18T00:00:00Z
opensuse-su-2026:10064-1	go1.25-1.25.6-1.1 on GA media	2026-01-18T00:00:00Z	2026-01-18T00:00:00Z
opensuse-su-2026:10063-1	go1.24-1.24.12-1.1 on GA media	2026-01-18T00:00:00Z	2026-01-18T00:00:00Z
opensuse-su-2026:20057-1	Security update for docker	2026-01-17T13:20:26Z	2026-01-17T13:20:26Z
opensuse-su-2026:10057-1	chromedriver-144.0.7559.59-1.1 on GA media	2026-01-16T00:00:00Z	2026-01-16T00:00:00Z
opensuse-su-2026:10050-1	rke2-1.34-1.34.3+rke2r1-1.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10049-1	python311-urllib3-2.6.3-1.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10048-1	openCryptoki-3.26.0-3.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10047-1	libcryptopp-devel-8.9.0-6.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10046-1	MozillaFirefox-147.0-1.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10035-1	teleport-17.7.13-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10034-1	python311-Authlib-1.6.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10033-1	libtasn1-6-32bit-4.21.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10032-1	libpcap-devel-1.10.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10031-1	kubelogin-0.2.14-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10030-1	k6-1.5.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10029-1	istioctl-1.28.2-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10028-1	ffmpeg-7-7.1.3-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10027-1	ffmpeg-4-4.4.6-10.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10026-1	python311-urllib3-2.6.2-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10025-1	python311-aiohttp-3.13.3-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z

ID	Description	Published	Updated
sevd-2026-013-04	Multiple Vulnerabilities on EcoStruxure Power Build Rapsody	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-03	Multiple Vulnerabilities on Zigbee Products	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-02	Incorrect Default Permissions Vulnerability on EcoStruxure™ Process Expert	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2026-013-01	Multiple Third-Party Vulnerabilities on ProLeiT Plant iT/Brewmaxx	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-042-02	Improper Input Validation Vulnerability in Uni-Telway Driver	2025-02-11T05:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-014-06	RemoteConnect and SCADAPack™ x70 Utilities	2025-01-14T00:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2024-317-03	Modicon Controllers M340 / Momentum / MC80	2024-11-12T05:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-343-02	EcoStruxure™ Foxboro DCS Advisor	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
sevd-2025-343-01	EcoStruxure™ Foxboro DCS	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
sevd-2025-252-01	Multiple Altivar Process Drives and Communication Modules	2025-09-09T04:00:00.000Z	2025-12-09T08:00:00.000Z
sevd-2023-192-04	CODESYS Runtime Vulnerabilities	2023-07-11T07:15:18.000Z	2025-12-09T08:00:00.000Z
sevd-2021-159-04	ISaGRAF Vulnerabilities in IEC 61131-3 Programming and Engineering Tools	2021-06-08T04:36:25.000Z	2025-11-15T00:00:00.000Z
sevd-2022-284-03	ISaGRAF Workbench for SAGE RTU	2022-10-10T22:13:16.000Z	2025-11-14T06:30:00.000Z
sevd-2025-315-02	EcoStruxure™ Machine SCADA Expert & Pro-face BLUE Open Studio	2025-11-11T08:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-315-01	PowerChute™ Serial Shutdown	2025-11-11T08:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-224-02	EcoStruxure™ Power Monitoring Expert Software & EcoStruxure™ Power Operation (EPO) and EcoStruxure™ Power SCADA Operation (PSO)	2025-08-12T04:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-224-01	Saitel DR & Saitel DP Remote Terminal Unit	2025-08-12T04:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-014-07	FlexNet Publisher Vulnerability	2025-01-14T07:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-287-01	EcoStruxure™ OPC UA Server Expert and EcoStruxure™ Modicon Communication Server	2025-10-14T07:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2025-133-01	Modicon Controllers M241/M251/M258/LMC058	2025-05-13T04:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-345-03	Modicon M241 / M251 / M258 / LMC058	2024-12-10T05:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-191-04	Modicon Controllers M241/ M251, M258 / LMC058 and M262	2024-07-09T00:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2025-133-05	Galaxy VS, Galaxy VL, Galaxy VXL	2025-05-13T04:00:00.000Z	2025-09-24T04:00:00.000Z
sevd-2025-252-02	Saitel DR & Saitel DP Remote Terminal Unit	2025-09-09T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-224-04	EcoStruxure™ Building Operation Enterprise Server, EcoStruxure™ Building Operation Enterprise Central, and EcoStruxure™ Workstation	2025-08-12T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-224-03	Schneider Electric Software Update	2025-08-12T04:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-014-02	Pro-face GP-Pro EX and Remote HMI	2025-01-14T00:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2021-313-05	BadAlloc Vulnerabilities	2021-11-09T05:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2025-224-05	Modicon M340 Controller and Communication Modules	2025-08-12T04:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2025-014-05	Web Server on Modicon M340, Modbus/TCP Ethernet Modicon M340 module, Modbus/TCP Ethernet Modicon M340 FactoryCast module and Ethernet / Serial RTU communication modules	2025-01-14T00:00:00.000Z	2025-08-12T04:00:00.000Z

ID	Description	Published	Updated
cnvd-2026-00125	Men Salon Management System /admin/edit-customer-detailed.php文件SQL注入漏洞	2025-04-22	2026-01-04
cnvd-2026-00124	Men Salon Management System /admin/edit-services.php文件SQL注入漏洞	2025-04-22	2026-01-04
cnvd-2026-00123	TOTOLINK N200RE UploadFirmwareFile函数命令注入漏洞	2024-01-11	2026-01-04
cnvd-2026-00122	TOTOLINK N200RE setTracerouteCfg函数命令注入漏洞	2024-01-11	2026-01-04
cnvd-2026-00121	TOTOLINK N200RE setDiagnosisCfg函数命令注入漏洞	2024-01-11	2026-01-04
cnvd-2026-00120	TOTOLINK N200RE setLanguageCfg函数堆栈缓冲区溢出漏洞	2024-01-30	2026-01-04
cnvd-2026-00119	TOTOLINK N200RE setIpPortFilterRules函数堆栈缓冲区溢出漏洞	2024-01-30	2026-01-04
cnvd-2026-00118	TOTOLINK CP450硬编码密码漏洞	2024-05-22	2026-01-04
cnvd-2026-00117	TOTOLINK CPE CP450 setWebWlanIdx方法命令注入漏洞	2024-05-22	2026-01-04
cnvd-2026-00116	TOTOLINK CP450 setUrlFilterRules方法堆栈缓冲区溢出漏洞	2024-05-22	2026-01-04
cnvd-2026-00115	TOTOLINK CPE CP450 setUpgradeFW方法命令注入漏洞	2024-05-22	2026-01-04
cnvd-2026-00114	TOTOLINK CP450 setStaticDhcpConfig方法堆栈缓冲区溢出漏洞	2024-05-22	2026-01-04
cnvd-2026-00113	TOTOLINK CP450 SetPortForwardRules方法堆栈缓冲区溢出漏洞	2024-05-22	2026-01-04
cnvd-2026-00112	WordPress Real 3D FlipBook plugin跨站脚本漏洞	2025-12-30	2026-01-04
cnvd-2026-00111	WordPress User Submitted Posts plugin开放重定向漏洞	2025-12-30	2026-01-04
cnvd-2026-00110	WordPress Docket Cache plugin文件包含漏洞	2025-12-30	2026-01-04
cnvd-2026-00109	WordPress Diza plugin文件包含漏洞	2025-12-30	2026-01-04
cnvd-2026-00108	WordPress Chakra test plugin缺少授权漏洞	2025-12-30	2026-01-04
cnvd-2026-00107	WordPress Brave plugin缺少授权漏洞	2025-12-30	2026-01-04
cnvd-2026-00106	WordPress Brands for WooCommerce Plugin SQL注入漏洞	2025-12-30	2026-01-04
cnvd-2026-00105	WordPress Bold Timeline Lite plugin跨站脚本漏洞	2025-12-30	2026-01-04
cnvd-2026-00104	WordPress AutomatorWP plugin SQL注入漏洞	2025-12-30	2026-01-04
cnvd-2026-00103	WordPress Astra Widgets plugin跨站脚本漏洞	2025-12-30	2026-01-04
cnvd-2026-00046	Siemens SIMATIC CN 4100访问控制错误漏洞	2025-12-15	2026-01-04
cnvd-2026-00045	Microsoft AutoUpdate for Mac权限提升漏洞（CNVD-2026-00045）	2025-01-17	2026-01-04
cnvd-2026-00044	Microsoft Outlook代码执行漏洞（CNVD-2026-00044）	2025-02-14	2026-01-04
cnvd-2026-00043	Microsoft Outlook代码执行漏洞（CNVD-2026-00043）	2025-02-14	2026-01-04
cnvd-2026-00042	Microsoft Visual Studio代码执行漏洞（CNVD-2026-00042）	2025-02-24	2026-01-04
cnvd-2026-00041	Apache InLong安全绕过漏洞（CNVD-2026-00041）	2025-06-11	2026-01-04
cnvd-2026-00040	Google Android权限提升漏洞（CNVD-2026-00040）	2025-09-04	2026-01-04

ID	Description	Published	Updated
certfr-2026-avi-0087	Vulnérabilité dans les produits Belden	2026-01-26T00:00:00.000000	2026-01-26T00:00:00.000000
certfr-2026-avi-0086	Vulnérabilité dans CPython	2026-01-26T00:00:00.000000	2026-01-26T00:00:00.000000
certfr-2026-avi-0085	Multiples vulnérabilités dans NetApp Brocade SAN Navigator	2026-01-26T00:00:00.000000	2026-01-26T00:00:00.000000
certfr-2026-avi-0084	Vulnérabilité dans Microsoft Edge	2026-01-26T00:00:00.000000	2026-01-26T00:00:00.000000
certfr-2026-avi-0083	Multiples vulnérabilités dans les produits IBM	2026-01-23T00:00:00.000000	2026-01-23T00:00:00.000000
certfr-2026-avi-0082	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-01-23T00:00:00.000000	2026-01-23T00:00:00.000000
certfr-2026-avi-0081	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-01-23T00:00:00.000000	2026-01-23T00:00:00.000000
certfr-2026-avi-0080	Vulnérabilité dans Broadcom Web Security Services Agent	2026-01-23T00:00:00.000000	2026-01-23T00:00:00.000000
certfr-2025-avi-0970	Multiples vulnérabilités dans Synacor Zimbra Collaboration	2025-11-06T00:00:00.000000	2026-01-23T00:00:00.000000
certfr-2026-avi-0079	Vulnérabilité dans Python	2026-01-22T00:00:00.000000	2026-01-22T00:00:00.000000
certfr-2026-avi-0078	Vulnérabilité dans Ceph	2026-01-22T00:00:00.000000	2026-01-22T00:00:00.000000
certfr-2026-avi-0077	Multiples vulnérabilités dans les produits Symantec	2026-01-22T00:00:00.000000	2026-01-22T00:00:00.000000
certfr-2026-avi-0076	Vulnérabilité dans les produits Cisco	2026-01-22T00:00:00.000000	2026-01-22T00:00:00.000000
certfr-2026-avi-0075	Multiples vulnérabilités dans GitLab	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0074	Multiples vulnérabilités dans Oracle Weblogic	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0073	Multiples vulnérabilités dans Oracle Virtualization	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0072	Multiples vulnérabilités dans Oracle Systems	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0071	Multiples vulnérabilités dans Oracle PeopleSoft	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0070	Multiples vulnérabilités dans Oracle MySQL	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0069	Multiples vulnérabilités dans Oracle Java SE	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0068	Multiples vulnérabilités dans Oracle Database Server	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0067	Multiples vulnérabilités dans Python	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0066	Vulnérabilité dans Google Chrome	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0065	Multiples vulnérabilités dans les produits Atlassian	2026-01-21T00:00:00.000000	2026-01-21T00:00:00.000000
certfr-2026-avi-0064	Vulnérabilité Microsoft Power Apps	2026-01-19T00:00:00.000000	2026-01-19T00:00:00.000000
certfr-2026-avi-0063	Multiples vulnérabilités dans Microsoft Edge	2026-01-19T00:00:00.000000	2026-01-19T00:00:00.000000
certfr-2026-avi-0062	Vulnérabilité dans Mattermost Desktop App	2026-01-19T00:00:00.000000	2026-01-19T00:00:00.000000
certfr-2026-avi-0061	Multiples vulnérabilités dans les produits IBM	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0060	Vulnérabilité dans Apache Struts	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0059	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000

ID	Description	Published	Updated
certfr-2025-ale-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2025-12-08T00:00:00.000000
CERTFR-2025-ALE-014	[MàJ] Vulnérabilité dans React Server Components	2025-12-05T00:00:00.000000	2025-12-08T00:00:00.000000
certfr-2025-ale-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013	[MàJ] Multiples vulnérabilités dans Cisco ASA et FTD	2025-09-25T00:00:00.000000	2025-10-06T00:00:00.000000
certfr-2025-ale-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012	Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2025-08-26T00:00:00.000000	2025-09-26T00:00:00.000000
certfr-2025-ale-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010	[MàJ] Multiples vulnérabilités dans Microsoft SharePoint	2025-07-21T00:00:00.000000	2025-08-26T00:00:00.000000
certfr-2025-ale-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
certfr-2025-ale-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
CERTFR-2025-ALE-011	Incidents de sécurité dans les pare-feux SonicWall	2025-08-05T00:00:00.000000	2025-08-18T00:00:00.000000
CERTFR-2025-ALE-009	Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway	2025-07-01T00:00:00.000000	2025-07-17T00:00:00.000000
certfr-2025-ale-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004	Activités de post-exploitation dans Fortinet FortiGate	2025-04-11T00:00:00.000000	2025-08-07T00:00:00.000000
certfr-2025-ale-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008	[MàJ] Vulnérabilité dans Roundcube	2025-06-05T00:00:00.000000	2025-07-21T00:00:00.000000
certfr-2025-ale-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
certfr-2025-ale-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
CERTFR-2025-ALE-007	Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM)	2025-05-14T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006	Vulnérabilité dans les produits Fortinet	2025-05-13T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005	Vulnérabilité dans SAP NetWeaver	2025-04-28T00:00:00.000000	2025-06-24T00:00:00.000000
CERTFR-2025-ALE-003	[MàJ] Vulnérabilité dans les produits Ivanti	2025-04-04T00:00:00.000000	2025-04-11T00:00:00.000000
certfr-2025-ale-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
certfr-2025-ale-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
CERTFR-2025-ALE-002	[MàJ] Vulnérabilité dans les produits Fortinet	2025-05-07T00:00:00.000000	2025-01-14T00:00:00.000000
CERTFR-2025-ALE-001	[MàJ] Vulnérabilité dans les produits Ivanti	2025-01-09T00:00:00.000000	2025-04-01T00:00:00.000000
certfr-2024-ale-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
certfr-2024-ale-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2026-0007	10 (4.0)	GNU InetUtils Security Advisory: remote authentication…	gnu	InetUtils	2026-01-20T20:57:00.000Z	2026-01-26T16:32:40.831364Z
GCVE-1-2026-0006	8.5 (4.0)	Improper Access Control in Cerebrate AuthKey and Encry…	cerebrate	cerebrate	2026-01-13T15:37:17.337254Z	2026-01-13T15:37:17.337254Z
GCVE-1-2026-0005	8.5 (4.0)	Improper Access Control in Cerebrate Alignment Model A…	cerebrate	cerebrate	2026-01-13T15:31:00.000Z	2026-01-13T15:38:02.888546Z
GCVE-1-2026-0004	8.5 (4.0)	Authorization Bypass in Cerebrate IndividualsControlle…	cerebrate	cerebrate	2026-01-13T15:28:00.000Z	2026-01-13T15:38:37.744618Z
GCVE-1-2026-0003	6.3 (4.0)	Stored/Reflected XSS via Unsanitized Parameters in URL…	misp	misp	2026-01-13T10:50:00.000Z	2026-01-13T10:54:13.659223Z
GCVE-1-2026-0002	10 (4.0)	Heap-buffer-overflow in EXIF writer for extra IFD tags	ffmpeg	ffmpeg	2026-01-02T19:50:00.000Z	2026-01-02T20:05:27.269877Z
GCVE-1-2026-0001	N/A	Bundle reference to gpg.fail	gnupg	gnupg	2026-01-02T10:20:00.000Z	2026-01-02T13:31:14.359346Z
GCVE-1-2025-0041	6.4 (4.0)	[online services] Reflected Cross-Site Scripting (XSS)…	typo3	typo3	2025-12-19T14:25:00.000Z	2025-12-19T14:54:51.594645Z
GCVE-1-2025-0031	7.1 (4.0)	A cross-site scripting (XSS) vulnerability was identif…	misp	misp	2025-12-03T10:58:00.000Z	2025-12-16T09:36:09.594750Z
GCVE-1-2025-0040	7.2 (4.0)	A cross-site scripting (XSS) vulnerability was id…	misp	misp	2025-12-13T08:44:32.378924Z	2025-12-13T08:44:32.378924Z
GCVE-1-2025-0039	8.5 (4.0)	XSS Reintroduced in MISP Dashboard World Map Widget Du…	misp	misp	2025-12-10T14:33:52.856734Z	2025-12-10T14:33:52.856734Z
GCVE-1-2025-0038	5 (4.0)	Reflected XSS in MISP Template Tag Removal and MISP Ad…	misp	misp	2025-12-10T14:10:00.000Z	2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037	7 (4.0)	Reflected XSS in MISP Dashboard Widgets via Unescaped …	misp	misp	2025-12-10T14:01:03.200804Z	2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036	8.3 (4.0)	A reflected cross-site scripting (XSS) vulnerability w…	misp	misp	2025-12-10T13:46:07.170083Z	2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035	8.3 (4.0)	Insufficient sanitization of bundle metadata (availabl…	CIRCL	vulnerability-lookup	2025-12-08T10:25:00.000Z	2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034	7 (4.0)	Missing CSRF protection on state-changing endpoints in…	CIRCL	vulnerability-lookup	2025-12-08T10:19:00.000Z	2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033	8.1 (4.0)	Vulnerability-lookup did not track or limit failed One…	CIRCL	vulnerability-lookup	2025-12-08T10:11:00.000Z	2025-12-08T12:12:53.235996Z
GCVE-1-2025-0032	10 (4.0)	The default configuration of WatchGuard Firebox device…	watchguard	firebox	2025-12-03T16:25:00.000Z	2025-12-19T13:48:34.570799Z
GCVE-1-2025-0030	6.2 (4.0)	A cross-site scripting (XSS) vulnerability in the MISP…	misp	misp	2025-12-03T10:53:00.000Z	2025-12-03T10:58:55.845341Z
GCVE-1-2025-0019	4 (4.0)	Path traversal vulnerability in EventReport for site-admin	misp	misp	2025-11-26T14:47:00.000Z	2025-11-28T07:27:42.721350Z
GCVE-1-2025-0017	9.4 (4.0)	Privilege escalation in Cerebrate allows an authentica…	cerebrate	cerebrate	2025-11-12T08:15:00.000Z	2025-11-28T07:22:08.205835Z
GCVE-1-2025-0029	6.3 (4.0)	Reflected cross-site scripting (XSS) vulnerabilities i…	misp	misp	2025-11-27T12:41:00.000Z	2025-11-27T12:48:51.085860Z
GCVE-1-2025-0027	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-27T07:17:00.000Z	2025-12-02T08:51:04.323899Z
GCVE-1-2025-0028	8.5 (4.0)	Information leakage vulnerability in the MISP Feed con…	misp	misp	2025-11-27T07:23:00.000Z	2025-12-02T08:51:35.429494Z
GCVE-1-2025-0026	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:35:00.000Z	2025-12-02T08:50:46.381572Z
GCVE-1-2025-0025	9.4 (4.0)	Reflected cross-site scripting (XSS) vulnerability in …	misp	misp	2025-11-26T16:27:00.000Z	2025-12-02T08:50:18.897756Z
GCVE-1-2025-0024	9.4 (4.0)	cross-site scripting (XSS) vulnerability in the MISP s…	misp	misp	2025-11-26T16:14:00.000Z	2025-12-02T08:50:01.482327Z
GCVE-1-2025-0023	9.4 (4.0)	XSS in MISP server comparison tool	misp	misp	2025-11-26T16:10:00.000Z	2025-12-02T08:49:24.626168Z
GCVE-1-2025-0022	9.4 (4.0)	Clarified setting's impact on download_attachments_on_load	misp	misp	2025-11-26T16:04:00.000Z	2025-12-02T08:49:04.510294Z

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011	9.1 (3.1)	HexStrike AI MCP Server Command Injection	0x4m4	HexStrike AI	2025-11-30T21:27:56.057Z	2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100	6.5 (3.1)	Abilis CPX Fallback Shell Connection Relay	Abilis	CPX	2025-11-04T00:23:23.924Z	2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010	7.3 (3.1)	Unitree Multiple Robotic Products Command Injection	Unitree	Go2	2025-09-26T06:53:49.585Z	2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001	4.3 (3.1)	Unauthenticated leak of sensitive information affectin…	Brother Industries, Ltd	HL-L8260CDN	2025-08-12T15:23:00.577Z	2025-08-15T05:53:23.017Z