Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-24736	9.1 (3.1)	Squidex has Server-Side Request Forgery (SSRF) Issue i…	Squidex	squidex	2026-01-27T20:54:51.489Z	2026-01-27T20:54:51.489Z
CVE-2026-1504	6.5 (3.1)	Inappropriate implementation in Background Fetch …	Google	Chrome	2026-01-27T20:46:35.796Z	2026-01-27T21:16:21.039Z
CVE-2025-21589	9.8 (3.1) 9.3 (4.0)	Session Smart Router, Session Smart Conductor, WAN Ass…	Juniper Networks	Session Smart Router	2026-01-27T20:32:13.334Z	2026-01-27T21:28:02.560Z
CVE-2025-14988	10 (4.0)	Incorrect Permission Assignment for Critical Resource …	iba Systems	ibaPDA	2026-01-27T20:08:54.853Z	2026-01-27T20:51:36.885Z
CVE-2025-12810	5.3 (4.0)	Failure in Password Rotation and Check-in Mechanism in…	Delinea Inc.	Secret Server On-Prem	2026-01-27T19:46:04.677Z	2026-01-27T20:51:42.590Z
CVE-2026-24688	5.1 (4.0)	pypdf has possible Infinite Loop when processing outli…	py-pdf	pypdf	2026-01-27T19:44:06.173Z	2026-01-27T20:51:48.030Z
CVE-2026-24771	4.7 (3.1)	Hono has a Cross-site Scripting vulnerability	honojs	hono	2026-01-27T19:41:33.773Z	2026-01-27T20:51:54.145Z
CVE-2026-24473	6.3 (4.0)	Hono has an Arbitrary Key Read in Serve static Middlew…	honojs	hono	2026-01-27T19:37:52.012Z	2026-01-27T20:51:59.157Z
CVE-2026-24472	5.3 (3.1)	Hono cache middleware ignores "Cache-Control: private"…	honojs	hono	2026-01-27T19:34:33.065Z	2026-01-27T20:52:05.494Z
CVE-2026-24858	9.4 (3.1)	An Authentication Bypass Using an Alternate Path …	Fortinet	FortiAnalyzer	2026-01-27T19:18:23.591Z	2026-01-27T22:00:45.567Z
CVE-2026-24398	4.8 (3.1)	Hono's IPv4 address validation bypass in IP Restrictio…	honojs	hono	2026-01-27T19:06:42.792Z	2026-01-27T19:20:35.594Z
CVE-2026-24116	4.1 (4.0)	Wasmtime segfault or unused out-of-sandbox load with f…	bytecodealliance	wasmtime	2026-01-27T18:58:52.349Z	2026-01-27T19:23:09.391Z
CVE-2020-36983	8.5 (4.0) 7.8 (3.1)	Quick 'n Easy FTP Service 3.2 - Unquoted Service Path	Pablosoftwaresolutions	Quick 'n Easy FTP Service	2026-01-27T18:52:02.835Z	2026-01-27T20:14:20.284Z
CVE-2020-36982	8.5 (4.0) 7.8 (3.1)	Motorola Device Manager 2.5.4 - 'MotoHelperService.exe…	Motorola-Device-Manager	Motorola Device Manager	2026-01-27T18:51:05.706Z	2026-01-27T20:26:30.583Z
CVE-2020-36981	8.5 (4.0) 7.8 (3.1)	Motorola Device Manager 2.4.5 - 'ForwardDaemon.exe ' U…	Filehorse	Motorola Device Manager	2026-01-27T18:51:05.291Z	2026-01-27T20:35:16.942Z
CVE-2020-36980	8.5 (4.0) 7.8 (3.1)	SAntivirus IC 10.0.21.61 - 'SAntivirusIC' Unquoted Ser…	Segurazo	SAntivirus IC	2026-01-27T18:51:04.921Z	2026-01-27T18:51:04.921Z
CVE-2020-36979	8.5 (4.0) 7.8 (3.1)	Atheros Coex Service Application 8.0.0.255 -'ZAtheros …	Atheros	Coex Service Application	2026-01-27T18:51:04.513Z	2026-01-27T18:51:04.513Z
CVE-2020-36978	5.1 (4.0) 6.4 (3.1)	Froxlor Froxlor Server Management Panel 0.10.16 - Pers…	Froxlor	Froxlor Froxlor Server Management Panel	2026-01-27T18:51:04.145Z	2026-01-27T18:51:04.145Z
CVE-2020-36977	8.5 (4.0) 7.8 (3.1)	Wondershare Driver Install Service help 10.7.1.321 - '…	Wondershare	Wondershare Driver Install Service help	2026-01-27T18:51:03.705Z	2026-01-27T18:51:03.705Z
CVE-2020-36976	8.5 (4.0) 7.8 (3.1)	Global Registration Service 1.0.0.3 - 'GREGsvc.exe' U…	Acer	Global Registration Service	2026-01-27T18:51:03.257Z	2026-01-27T18:51:03.257Z
CVE-2020-36975	8.5 (4.0) 7.8 (3.1)	EPSON Status Monitor 3 'EPSON_PM_RPCV4_06' - Unquoted …	SEIKO EPSON Corp	Status Monitor 3	2026-01-27T18:51:02.299Z	2026-01-27T18:51:02.299Z
CVE-2020-36974	8.5 (4.0) 7.8 (3.1)	Realtek Andrea RT Filters 1.0.64.7 - 'AERTSr64.EXE' Un…	Realtek	Realtek Andrea RT Filters	2026-01-27T18:51:01.383Z	2026-01-27T18:51:01.383Z
CVE-2026-24883	3.7 (3.1)	In GnuPG before 2.5.17, a long signature packet l…	GnuPG	GnuPG	2026-01-27T18:43:18.883Z	2026-01-27T20:02:38.338Z
CVE-2026-24882	8.4 (3.1)	In GnuPG before 2.5.17, a stack-based buffer over…	GnuPG	GnuPG	2026-01-27T18:40:18.166Z	2026-01-27T20:07:38.876Z
CVE-2026-24881	8.1 (3.1)	In GnuPG before 2.5.17, a crafted CMS (S/MIME) En…	GnuPG	GnuPG	2026-01-27T18:36:56.727Z	2026-01-27T20:08:54.449Z
CVE-2026-23892	6 (4.0)	OctoPrint has Timing Side-Channel Vulnerability in API…	OctoPrint	OctoPrint	2026-01-27T18:35:31.370Z	2026-01-27T19:14:50.643Z
CVE-2026-22264	7.4 (3.1)	Suricata detect/alert: heap-use-after-free on alert qu…	OISF	suricata	2026-01-27T18:33:50.354Z	2026-01-27T18:33:50.354Z
CVE-2026-0746	6.4 (3.1)	AI Engine <= 3.3.2 - Authenticated (Subscriber+) Serve…	tigroumeow	AI Engine – The Chatbot and AI Framework for WordPress	2026-01-27T18:27:55.920Z	2026-01-27T18:27:55.920Z
CVE-2026-22263	5.3 (3.1)	Suricata http1: quadratic complexity in headers parsin…	OISF	suricata	2026-01-27T18:27:45.351Z	2026-01-27T19:56:34.976Z
CVE-2026-22262	5.9 (3.1)	Suricata datasets: stack overflow when saving a set	OISF	suricata	2026-01-27T18:18:52.922Z	2026-01-27T19:30:42.782Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-14988	10 (4.0)	Incorrect Permission Assignment for Critical Resource …	iba Systems	ibaPDA	2026-01-27T20:08:54.853Z	2026-01-27T20:51:36.885Z
CVE-2025-12810	5.3 (4.0)	Failure in Password Rotation and Check-in Mechanism in…	Delinea Inc.	Secret Server On-Prem	2026-01-27T19:46:04.677Z	2026-01-27T20:51:42.590Z
CVE-2026-24883	3.7 (3.1)	In GnuPG before 2.5.17, a long signature packet l…	GnuPG	GnuPG	2026-01-27T18:43:18.883Z	2026-01-27T20:02:38.338Z
CVE-2026-24882	8.4 (3.1)	In GnuPG before 2.5.17, a stack-based buffer over…	GnuPG	GnuPG	2026-01-27T18:40:18.166Z	2026-01-27T20:07:38.876Z
CVE-2026-24881	8.1 (3.1)	In GnuPG before 2.5.17, a crafted CMS (S/MIME) En…	GnuPG	GnuPG	2026-01-27T18:36:56.727Z	2026-01-27T20:08:54.449Z
CVE-2026-24398	4.8 (3.1)	Hono's IPv4 address validation bypass in IP Restrictio…	honojs	hono	2026-01-27T19:06:42.792Z	2026-01-27T19:20:35.594Z
CVE-2026-24116	4.1 (4.0)	Wasmtime segfault or unused out-of-sandbox load with f…	bytecodealliance	wasmtime	2026-01-27T18:58:52.349Z	2026-01-27T19:23:09.391Z
CVE-2026-23892	6 (4.0)	OctoPrint has Timing Side-Channel Vulnerability in API…	OctoPrint	OctoPrint	2026-01-27T18:35:31.370Z	2026-01-27T19:14:50.643Z
CVE-2026-22264	7.4 (3.1)	Suricata detect/alert: heap-use-after-free on alert qu…	OISF	suricata	2026-01-27T18:33:50.354Z	2026-01-27T18:33:50.354Z
CVE-2026-22263	5.3 (3.1)	Suricata http1: quadratic complexity in headers parsin…	OISF	suricata	2026-01-27T18:27:45.351Z	2026-01-27T19:56:34.976Z
CVE-2026-22262	5.9 (3.1)	Suricata datasets: stack overflow when saving a set	OISF	suricata	2026-01-27T18:18:52.922Z	2026-01-27T19:30:42.782Z
CVE-2026-22261	3.7 (3.1)	Suricata eve/alert: http1 xff handling can lead to den…	OISF	suricata	2026-01-27T18:10:27.881Z	2026-01-27T18:24:24.317Z
CVE-2026-0746	6.4 (3.1)	AI Engine <= 3.3.2 - Authenticated (Subscriber+) Serve…	tigroumeow	AI Engine – The Chatbot and AI Framework for WordPress	2026-01-27T18:27:55.920Z	2026-01-27T18:27:55.920Z
CVE-2020-36983	8.5 (4.0) 7.8 (3.1)	Quick 'n Easy FTP Service 3.2 - Unquoted Service Path	Pablosoftwaresolutions	Quick 'n Easy FTP Service	2026-01-27T18:52:02.835Z	2026-01-27T20:14:20.284Z
CVE-2020-36982	8.5 (4.0) 7.8 (3.1)	Motorola Device Manager 2.5.4 - 'MotoHelperService.exe…	Motorola-Device-Manager	Motorola Device Manager	2026-01-27T18:51:05.706Z	2026-01-27T20:26:30.583Z
CVE-2020-36981	8.5 (4.0) 7.8 (3.1)	Motorola Device Manager 2.4.5 - 'ForwardDaemon.exe ' U…	Filehorse	Motorola Device Manager	2026-01-27T18:51:05.291Z	2026-01-27T20:35:16.942Z
CVE-2020-36980	8.5 (4.0) 7.8 (3.1)	SAntivirus IC 10.0.21.61 - 'SAntivirusIC' Unquoted Ser…	Segurazo	SAntivirus IC	2026-01-27T18:51:04.921Z	2026-01-27T18:51:04.921Z
CVE-2020-36979	8.5 (4.0) 7.8 (3.1)	Atheros Coex Service Application 8.0.0.255 -'ZAtheros …	Atheros	Coex Service Application	2026-01-27T18:51:04.513Z	2026-01-27T18:51:04.513Z
CVE-2020-36978	5.1 (4.0) 6.4 (3.1)	Froxlor Froxlor Server Management Panel 0.10.16 - Pers…	Froxlor	Froxlor Froxlor Server Management Panel	2026-01-27T18:51:04.145Z	2026-01-27T18:51:04.145Z
CVE-2020-36977	8.5 (4.0) 7.8 (3.1)	Wondershare Driver Install Service help 10.7.1.321 - '…	Wondershare	Wondershare Driver Install Service help	2026-01-27T18:51:03.705Z	2026-01-27T18:51:03.705Z
CVE-2020-36976	8.5 (4.0) 7.8 (3.1)	Global Registration Service 1.0.0.3 - 'GREGsvc.exe' U…	Acer	Global Registration Service	2026-01-27T18:51:03.257Z	2026-01-27T18:51:03.257Z
CVE-2020-36975	8.5 (4.0) 7.8 (3.1)	EPSON Status Monitor 3 'EPSON_PM_RPCV4_06' - Unquoted …	SEIKO EPSON Corp	Status Monitor 3	2026-01-27T18:51:02.299Z	2026-01-27T18:51:02.299Z
CVE-2020-36974	8.5 (4.0) 7.8 (3.1)	Realtek Andrea RT Filters 1.0.64.7 - 'AERTSr64.EXE' Un…	Realtek	Realtek Andrea RT Filters	2026-01-27T18:51:01.383Z	2026-01-27T18:51:01.383Z
CVE-2026-23593	7.5 (3.1)	Unauthenticated Limited File Read allows Data Exposure…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:58:35.889Z	2026-01-27T18:41:30.740Z
CVE-2026-23592	7.2 (3.1)	Insecure File Handling allows Remote Code Execution in…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:57:57.364Z	2026-01-27T18:44:00.846Z
CVE-2026-22260	7.5 (3.1)	Suricata http1: infinite recursion in decompression	OISF	suricata	2026-01-27T17:30:39.582Z	2026-01-27T17:57:27.806Z
CVE-2026-1315	7.1 (4.0)	Unauthenticated Denial of Service via Firmware Update …	TP-Link Systems Inc.	Tapo C220 v1	2026-01-27T17:53:29.242Z	2026-01-27T18:11:48.097Z
CVE-2026-0919	7.1 (4.0)	Unauthenticated Denial of Service via Oversized URL in…	TP-Link Systems Inc.	Tapo C220 v1	2026-01-27T17:52:39.170Z	2026-01-27T18:10:00.577Z
CVE-2026-0918	7.1 (4.0)	Null Pointer Dereference in Tapo SmartCam HTTP Service…	TP-Link Systems Inc.	Tapo C220 v1	2026-01-27T17:52:04.348Z	2026-01-27T18:07:32.574Z
CVE-2025-33234	7.8 (3.1)	NVIDIA runx contains a vulnerability where an att…	NVIDIA	NVIDIA runx	2026-01-27T17:58:09.530Z	2026-01-27T19:59:42.925Z

ID	Description	Published	Updated
fkie_cve-2025-13393	The Featured Image from URL (FIFU) plugin for WordPress is vulnerable to Server-Side Request Forger…	2026-01-10T14:15:49.907	2026-01-13T14:03:18.990
fkie_cve-2025-12379	The Shortcodes and extra features for Phlox theme plugin for WordPress is vulnerable to Stored Cros…	2026-01-10T14:15:49.690	2026-01-13T14:03:18.990
fkie_cve-2026-0821	A vulnerability was determined in quickjs-ng quickjs up to 0.11.0. This vulnerability affects the f…	2026-01-10T13:15:49.040	2026-01-15T22:22:36.770
fkie_cve-2025-14555	The Countdown Timer – Widget Countdown plugin for WordPress is vulnerable to Stored Cross-Site Scri…	2026-01-10T13:15:48.353	2026-01-13T14:03:18.990
fkie_cve-2025-15504	A security flaw has been discovered in lief-project LIEF up to 0.17.1. Affected by this issue is th…	2026-01-10T12:15:49.570	2026-01-22T21:36:45.240
fkie_cve-2025-14506	The ConvertForce Popup Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting vi…	2026-01-10T12:15:48.563	2026-01-13T14:03:18.990
fkie_cve-2026-0831	The Templately plugin for WordPress is vulnerable to Arbitrary File Write in all versions up to, an…	2026-01-10T10:15:50.960	2026-01-13T14:03:18.990
fkie_cve-2025-62235	Authentication Bypass by Spoofing vulnerability in Apache NimBLE. Receiving specially crafted Secu…	2026-01-10T10:15:50.820	2026-01-14T17:45:58.133
fkie_cve-2025-53477	NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection comp…	2026-01-10T10:15:50.660	2026-01-14T17:38:58.047
fkie_cve-2025-53470	Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could…	2026-01-10T10:15:50.493	2026-01-14T17:38:48.897
fkie_cve-2025-52435	J2EE Misconfiguration: Data Transmission Without Encryption vulnerability in Apache NimBLE. Improp…	2026-01-10T10:15:50.320	2026-01-14T16:30:55.960
fkie_cve-2025-15503	A security flaw has been discovered in Sangfor Operation and Maintenance Management System up to 3.…	2026-01-10T09:15:49.850	2026-01-22T19:47:37.580
fkie_cve-2025-14976	The User Registration & Membership – Custom Registration Form Builder, Custom Login Form, User Prof…	2026-01-10T09:15:48.863	2026-01-13T14:03:18.990
fkie_cve-2025-15502	A vulnerability was identified in Sangfor Operation and Maintenance Management System up to 3.0.8. …	2026-01-10T08:15:48.753	2026-01-22T19:43:53.410
fkie_cve-2026-22777	ComfyUI-Manager is an extension designed to enhance the usability of ComfyUI. Prior to versions 3.3…	2026-01-10T07:16:03.680	2026-01-13T14:03:18.990
fkie_cve-2026-22773	vLLM is an inference and serving engine for large language models (LLMs). In versions from 0.6.4 to…	2026-01-10T07:16:03.527	2026-01-27T21:03:47.017
fkie_cve-2026-22705	RustCrypto: Signatures offers support for digital signatures, which provide authentication of data …	2026-01-10T07:16:03.363	2026-01-13T14:03:18.990
fkie_cve-2026-22704	HAX CMS helps manage microsite universe with PHP or NodeJs backends. In versions 11.0.6 to before 2…	2026-01-10T07:16:03.200	2026-01-13T15:16:01.087
fkie_cve-2026-22703	Cosign provides code signing and transparency for containers and binaries. Prior to versions 2.6.2 …	2026-01-10T07:16:03.030	2026-01-13T14:03:18.990
fkie_cve-2026-22702	virtualenv is a tool for creating isolated virtual python environments. Prior to version 20.36.1, T…	2026-01-10T07:16:02.857	2026-01-13T14:03:18.990
fkie_cve-2025-14948	The miniOrange OTP Verification and SMS Notification for WooCommerce plugin for WordPress is vulner…	2026-01-10T07:16:02.673	2026-01-13T14:03:18.990
fkie_cve-2025-14943	The Blog2Social: Social Media Auto Post & Scheduler plugin for WordPress is vulnerable to Sensitive…	2026-01-10T07:16:02.343	2026-01-13T14:03:18.990
fkie_cve-2026-22701	filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race con…	2026-01-10T06:15:52.673	2026-01-13T14:03:18.990
fkie_cve-2026-22700	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.517	2026-01-22T14:53:48.393
fkie_cve-2026-22699	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.377	2026-01-22T14:53:30.840
fkie_cve-2026-22698	RustCrypto: Elliptic Curves is general purpose Elliptic Curve Cryptography (ECC) support, including…	2026-01-10T06:15:52.220	2026-01-13T14:03:18.990
fkie_cve-2026-22693	HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerabilit…	2026-01-10T06:15:52.063	2026-01-13T14:03:18.990
fkie_cve-2026-22689	Mailpit is an email testing tool and API for developers. Prior to version 1.28.2, the Mailpit WebSo…	2026-01-10T06:15:51.900	2026-01-13T14:03:18.990
fkie_cve-2026-22685	DevToys is a desktop app for developers. In versions from 2.0.0.0 to before 2.0.9.0, a path travers…	2026-01-10T06:15:51.743	2026-01-13T14:03:18.990
fkie_cve-2026-22611	AWS SDK for .NET works with Amazon Web Services to help build scalable solutions with Amazon S3, Am…	2026-01-10T06:15:51.270	2026-01-13T14:03:18.990

ID	Severity	Description	Published	Updated
ghsa-xg4x-w2j3-57h6	6.0 (4.0)	OctoPrint has Timing Side-Channel Vulnerability in API Key Authentication	2026-01-27T18:33:50Z	2026-01-27T18:33:50Z
ghsa-xfvm-r8pw-cxvj	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-w58q-63hq-xff3	9.1 (3.1)	Access of Resource Using Incompatible Type ('Type Confusion') vulnerability in themrdemonized xray-…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-rhgx-mp3p-86fm	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-r8w3-p4p4-x3j6		code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-qrmx-3vq8-q3gp	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-pmf7-jg2w-c5f4	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-pc4j-j33v-hr73	6.5 (3.1) 7.1 (4.0)	User-controlled chunkSize metadata from MongoDB lacks appropriate validation allowing malformed Gri…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-mwfw-2px5-7mxx	7.2 (3.1)	Insecure file operations in HPE Aruba Networking Fabric Composerâ€™s backup functionality could all…	2026-01-27T18:32:17Z	2026-01-27T18:32:18Z
ghsa-jg4f-v223-p93j	7.8 (3.1)	Integer Overflow or Wraparound vulnerability in yoyofr modizer.This issue affects modizer: before 4.1.1.	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-j944-6mc9-5q8q	6.7 (3.1)	Local privilege escalation due to insecure folder permissions. The following products are affected:…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-h3px-p99h-9f2w		code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /insertmessage.ph…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-gmcg-299h-2cgx	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-g9c2-p6j5-8cv4	7.1 (4.0)	By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device …	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-frpc-c3p2-p9mf	7.8 (3.1)	NVIDIA runx contains a vulnerability where an attacker could cause a code injection. A successful e…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-ffwx-rgqv-xv4m	7.1 (4.0)	The Tapo C220 v1 and C520WS v2 cameras’ HTTP service does not safely handle POST requests containin…	2026-01-27T18:32:17Z	2026-01-27T18:32:18Z
ghsa-cq8v-x2f4-24hh	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-c73v-g24x-7qv8	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-9f6w-ch9g-g63p	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-988m-j4v5-8xc7	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-8pgr-h8jj-q62w		code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExLogin.php via …	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-8fmp-6g38-h9j8	7.5 (3.1)	A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could…	2026-01-27T18:32:17Z	2026-01-27T18:32:18Z
ghsa-7ff9-hxc6-hrqm	7.1 (4.0)	The HTTP parser of Tapo C220 v1 and C520WS v2 cameras improperly handles requests containing an exc…	2026-01-27T18:32:17Z	2026-01-27T18:32:18Z
ghsa-6c9g-6gr7-3mm5		code-projects Computer Book Store 1.0 is vulnerable to File Upload in admin_add.php.	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-666j-xph8-7cjh	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-5xj3-mjvp-h43q	5.5 (3.1)	The kernel driver of CPUID CPU-Z v2.17 and earlier does not validate user-supplied values passed vi…	2026-01-27T18:32:17Z	2026-01-27T21:31:46Z
ghsa-5qm9-82hf-78rm	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-5h8x-gvjr-j2p4	9.3 (4.0)	An out-of-band SQL injection vulnerability (OOB SQLi) has been detected in the Performance Evaluati…	2026-01-27T18:32:17Z	2026-01-27T18:32:17Z
ghsa-x77r-97gw-wh89		Issue summary: Calling PKCS12_get_friendlyname() function on a maliciously crafted PKCS#12 file wit…	2026-01-27T18:32:16Z	2026-01-27T18:32:16Z
ghsa-wh8r-3r39-mcjj	9.8 (3.1)	Out-of-bounds Write vulnerability in ixray-team ixray-1.6-stcop.This issue affects ixray-1.6-stcop:…	2026-01-27T18:32:16Z	2026-01-27T18:32:16Z

ID	Severity	Description	Package	Published	Updated
pysec-2025-35	7.5 (3.1)	Weblate is a web based localization tool. Prior to version 5.11, when creating a new comp…	weblate	2025-04-15T21:16:04+00:00	2025-04-30T17:22:51.467257+00:00
pysec-2025-32	9.8 (3.1)	BentoML is a Python library for building online serving systems optimized for AI apps and…	bentoml	2025-04-09T16:15:25+00:00	2025-04-22T19:21:34.073355+00:00
pysec-2025-36	9.8 (3.1)	Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida…	langflow	2025-04-07T15:15:44+00:00	2025-05-07T19:22:44.993642+00:00
pysec-2025-16	7.5 (3.1)	LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vu…	lnbits	2025-04-06T20:15:15+00:00	2025-04-09T17:27:25.872691+00:00
pysec-2025-14		An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normal…	django	2025-04-02T13:15:44+00:00	2025-04-09T17:27:25.169049+00:00
pysec-2025-48	9.8 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2025-03-31T17:15:42+00:00	2025-06-12T22:23:10.476087+00:00
pysec-2025-17	5.5 (3.1)	In mlflow/mlflow version 2.18, an admin is able to create a new user account without sett…	mlflow	2025-03-20T10:15:54+00:00	2025-04-09T17:27:26.322333+00:00
pysec-2025-57		A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent…	zenml	2025-03-20T10:15:48+00:00	2025-06-27T17:22:55.175431+00:00
pysec-2025-10	9.1 (3.1)	A vulnerability in the `download_model` function of the onnx/onnx framework, before and i…	onnx	2025-03-20T10:15:37+00:00	2025-03-26T19:21:38.843396+00:00
pysec-2025-11	5.9 (3.1)	A vulnerability in the `KnowledgeBaseWebReader` class of the run-llama/llama_index reposi…	llama-index	2025-03-20T10:15:31+00:00	2025-04-01T23:22:47.294256+00:00
pysec-2025-9		A remote code execution vulnerability exists in invoke-ai/invokeai versions 5.3.1 through…	invokeai	2025-03-20T10:15:26+00:00	2025-03-20T11:21:37.872971+00:00
pysec-2025-63		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe…	vllm	2025-03-19T16:15:32+00:00	2025-07-01T23:22:49.176005+00:00
pysec-2025-22	9.8 (3.1)	A vulnerability, that could result in Remote Code Execution (RCE), has been found in Plot…	plotai	2025-03-10T14:15:24+00:00	2025-04-09T17:27:27.203714+00:00
pysec-2025-21	9.8 (3.1)	picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model arch…	picklescan	2025-03-10T12:15:12+00:00	2025-04-09T17:27:27.016747+00:00
pysec-2025-20	6.5 (3.1)	picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes i…	picklescan	2025-03-10T12:15:10+00:00	2025-04-09T17:27:26.966215+00:00
pysec-2025-13		An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2…	django	2025-03-06T19:15:27+00:00	2025-04-09T17:27:25.095679+00:00
pysec-2025-23		Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Inform…	ray	2025-03-06T05:15:16+00:00	2025-04-09T17:27:27.434099+00:00
pysec-2025-19	9.8 (3.1)	picklescan before 0.0.22 only considers standard pickle file extensions in the scope for …	picklescan	2025-03-03T19:15:34+00:00	2025-04-09T17:27:26.916350+00:00
pysec-2025-25	6.5 (3.1)	Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middle…	rembg	2025-03-03T17:15:14+00:00	2025-04-09T17:27:27.532849+00:00
pysec-2025-24	7.5 (3.1)	Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove…	rembg	2025-03-03T17:15:14+00:00	2025-04-09T17:27:27.486485+00:00
pysec-2025-15	5.3 (3.1)	Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilde…	flask-appbuilder	2025-03-03T16:15:41+00:00	2025-04-09T17:27:25.227116+00:00
pysec-2025-66		Improper privilege management in a REST interface allowed registered users to access unau…	streampipes	2025-03-03T11:15:11+00:00	2025-07-08T15:23:46.628375+00:00
pysec-2025-18		picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craf…	picklescan	2025-02-26T15:15:24+00:00	2025-04-09T17:27:26.867210+00:00
pysec-2025-31		vyper is a Pythonic Smart Contract Language for the EVM. Vyper handles AugAssign statemen…	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.116292+00:00
pysec-2025-30		vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single …	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.064106+00:00
pysec-2025-29		vyper is a Pythonic Smart Contract Language for the EVM. Vyper `sqrt()` builtin uses the …	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.005382+00:00
pysec-2025-62		vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal…	vllm	2025-02-07T20:15:34+00:00	2025-07-01T23:22:49.083695+00:00
pysec-2025-28		The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.772920+00:00
pysec-2025-27		The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.711157+00:00
pysec-2025-26		The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.645758+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-01-27T02:11:41Z
mal-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-01-27T02:11:41Z
mal-2026-515	Malicious code in overstock-jenkins (npm)	2026-01-27T01:45:37Z	2026-01-27T01:45:37Z
mal-2026-511	Malicious code in ostk-otel-autoconfig (npm)	2026-01-27T01:45:37Z	2026-01-27T01:45:37Z
mal-2026-516	Malicious code in overstock-login-layer (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-514	Malicious code in overstock-health-express (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-513	Malicious code in overstock-component-library-v3 (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:37Z
mal-2026-512	Malicious code in overstock-component-library (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-510	Malicious code in radishwxm5 (PyPI)	2026-01-26T19:50:28Z	2026-01-26T19:50:28Z
mal-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-01-26T18:20:46Z
mal-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-01-26T16:41:17Z
mal-2026-507	Malicious code in tripica-library (npm)	2026-01-26T15:31:06Z	2026-01-26T15:31:06Z
mal-2026-506	Malicious code in selenium-integration (PyPI)	2026-01-25T16:56:33Z	2026-01-25T16:56:33Z
mal-2026-505	Malicious code in flask-hookserver (PyPI)	2026-01-25T11:13:11Z	2026-01-25T11:25:04Z
mal-2026-504	Malicious code in researchpoc (PyPI)	2026-01-25T10:54:30Z	2026-01-25T10:54:30Z
mal-2026-501	Malicious code in system-integration-toxi (PyPI)	2026-01-25T10:15:36Z	2026-01-25T10:15:36Z
mal-2026-502	Malicious code in test-poc-package-for-session (PyPI)	2026-01-25T10:08:47Z	2026-01-25T10:08:47Z
mal-2026-503	Malicious code in test-poc-package-for-session-2 (PyPI)	2026-01-25T10:04:44Z	2026-01-25T10:04:44Z
mal-2026-500	Malicious code in zabittest11 (npm)	2026-01-25T06:56:37Z	2026-01-25T06:56:37Z
mal-2026-499	Malicious code in system-integration (PyPI)	2026-01-25T00:57:28Z	2026-01-25T10:42:32Z
mal-2026-498	Malicious code in instascan-pro (PyPI)	2026-01-24T16:15:55Z	2026-01-24T16:15:55Z
mal-2026-497	Malicious code in test-on-other (npm)	2026-01-23T18:12:42Z	2026-01-23T18:12:42Z
mal-2026-496	Malicious code in hemi-btc-staking-actions (npm)	2026-01-23T18:12:42Z	2026-01-23T18:12:42Z
mal-2026-495	Malicious code in h-jsencrypt (npm)	2026-01-23T18:12:42Z	2026-01-23T18:12:42Z
mal-2026-494	Malicious code in eits (npm)	2026-01-23T18:12:42Z	2026-01-23T18:12:42Z
mal-2026-493	Malicious code in oxnoxon (npm)	2026-01-23T17:23:01Z	2026-01-23T18:48:56Z
mal-2026-492	Malicious code in tableates (PyPI)	2026-01-23T13:57:05Z	2026-01-27T18:50:00Z
mal-2026-491	Malicious code in test-on-other-again (npm)	2026-01-23T12:02:07Z	2026-01-23T18:48:56Z
mal-2026-490	Malicious code in tabletes (PyPI)	2026-01-23T10:19:25Z	2026-01-27T18:50:00Z
mal-2026-489	Malicious code in rank4222wun (npm)	2026-01-23T08:25:42Z	2026-01-26T17:27:40Z

ID	Description	Published	Updated
wid-sec-w-2026-0040	n8n: Mehrere Schwachstellen	2026-01-07T23:00:00.000+00:00	2026-01-08T23:00:00.000+00:00
wid-sec-w-2026-0037	GitLab CE und EE: Mehrere Schwachstellen	2026-01-07T23:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2026-0036	OpenLDAP: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2026-01-07T23:00:00.000+00:00	2026-01-08T23:00:00.000+00:00
wid-sec-w-2026-0035	MediaWiki Erweiterungen: Mehrere Schwachstellen	2026-01-07T23:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2026-0034	Keycloak: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2026-01-07T23:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2026-0030	cURL: Mehrere Schwachstellen	2026-01-06T23:00:00.000+00:00	2026-01-08T23:00:00.000+00:00
wid-sec-w-2026-0026	HCL BigFix: Mehrere Schwachstellen	2026-01-06T23:00:00.000+00:00	2026-01-07T23:00:00.000+00:00
wid-sec-w-2026-0020	Google Chrome/Microsoft Edge: Schwachstelle ermöglicht nicht spezifizierten Angriff	2026-01-06T23:00:00.000+00:00	2026-01-11T23:00:00.000+00:00
wid-sec-w-2026-0019	Red Hat Enterprise Linux (Quarkus): Mehrere Schwachstellen	2026-01-06T23:00:00.000+00:00	2026-01-19T23:00:00.000+00:00
wid-sec-w-2026-0018	MailPit: Schwachstelle ermöglicht Offenlegung von Informationen	2026-01-06T23:00:00.000+00:00	2026-01-19T23:00:00.000+00:00
wid-sec-w-2026-0017	Veeam Backup & Replication: Mehrere Schwachstellen	2026-01-05T23:00:00.000+00:00	2026-01-12T23:00:00.000+00:00
wid-sec-w-2026-0010	Samsung Exynos: Mehrere Schwachstellen	2026-01-04T23:00:00.000+00:00	2026-01-06T23:00:00.000+00:00
wid-sec-w-2026-0009	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2026-01-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0008	Red Hat Enterprise Linux: Mehrere Schwachstellen	2026-01-04T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2026-0006	OpenCTI: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen, Manipulation von Daten, Denial of Service	2026-01-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0003	Vaadin: Schwachstelle ermöglicht Cross-Site Scripting	2026-01-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2938	Arista EOS: Schwachstelle ermöglicht Denial of Service	2025-12-30T23:00:00.000+00:00	2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-2934	ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-29T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2928	GnuPG: Mehrere Schwachstellen	2025-12-28T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2927	NetApp ActiveIQ Unified Manager: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-28T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2916	Net-SNMP: Schwachstelle ermöglicht Codeausführung und DoS	2025-12-23T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2911	Synacor Zimbra: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2909	IBM App Connect Enterprise: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2904	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2897	Apache log4j: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2026-01-19T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2888	ImageMagick: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2887	PHP: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2026-0010	Kwetsbaarheden verholpen in Microsoft Office	2026-01-13T19:18:45.984019Z	2026-01-13T19:18:45.984019Z
ncsc-2026-0009	Kwetsbaarheden verholpen in Microsoft Azure	2026-01-13T19:17:59.629364Z	2026-01-13T19:17:59.629364Z
ncsc-2026-0008	Kwetsbaarheid verholpen in Microsoft SQL Server	2026-01-13T19:17:18.848673Z	2026-01-13T19:17:18.848673Z
ncsc-2026-0007	Kwetsbaarheden verholpen in Microsoft Windows	2026-01-13T19:16:30.720079Z	2026-01-13T19:16:30.720079Z
ncsc-2026-0006	Kwetsbaarheden verholpen in SAP producten	2026-01-13T14:42:24.621603Z	2026-01-13T14:42:24.621603Z
ncsc-2026-0005	Kwetsbaarheden verholpen in Siemens producten	2026-01-13T12:05:57.353070Z	2026-01-13T12:05:57.353070Z
ncsc-2026-0004	Kwetsbaarheden verholpen in Trend Micro Apex Central	2026-01-09T11:14:58.910197Z	2026-01-09T11:14:58.910197Z
ncsc-2026-0003	Kwetsbaarheden verholpen in GitLab	2026-01-09T11:11:48.308357Z	2026-01-09T11:11:48.308357Z
ncsc-2026-0002	Kwetsbaarheid verholpen in n8n	2026-01-08T12:34:29.315681Z	2026-01-08T12:34:29.315681Z
ncsc-2026-0001	Kwetsbaarheden verholpen in Hanwha camera systemen	2026-01-08T12:28:21.446188Z	2026-01-08T12:28:21.446188Z
ncsc-2025-0405	Kwetsbaarheid verholpen in Roundcube Webmail	2025-12-31T14:29:26.821576Z	2025-12-31T14:29:26.821576Z
ncsc-2025-0404	Kwetsbaarheid verholpen in SmarterMail	2025-12-31T14:19:01.847364Z	2025-12-31T14:19:01.847364Z
ncsc-2025-0403	Kwetsbaarheden verholpen in QNAP besturingssystemen	2025-12-29T09:17:28.385450Z	2025-12-29T09:17:28.385450Z
ncsc-2025-0402	Kwetsbaarheid verholpen in MongoDB	2025-12-27T11:38:11.514349Z	2025-12-27T11:38:11.514349Z
ncsc-2025-0401	Kwetsbaarheden verholpen in Foxit PDF Reader	2025-12-24T09:14:56.590353Z	2025-12-24T09:14:56.590353Z
ncsc-2025-0400	Kwetsbaarheid verholpen in WatchGuard Firebox	2025-12-19T11:16:01.438518Z	2025-12-19T11:16:01.438518Z
ncsc-2025-0399	Kwetsbaarheid verholpen in HPE OneView Software	2025-12-18T18:38:20.794784Z	2025-12-24T11:29:46.123674Z
ncsc-2025-0398	Kwetsbaarheid in Cisco AsyncOS	2025-12-17T19:47:00.346651Z	2025-12-17T19:47:00.346651Z
ncsc-2025-0397	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2025-12-15T09:08:39.804149Z	2025-12-15T09:08:39.804149Z
ncsc-2025-0396	Kwetsbaarheden verholpen in Apple macOS	2025-12-15T09:06:36.450655Z	2025-12-15T09:06:36.450655Z
ncsc-2025-0395	Kwetsbaarheden verholpen in SAP Software	2025-12-12T09:29:08.429888Z	2025-12-12T09:29:08.429888Z
ncsc-2025-0394	Kwetsbaarheden verholpen in React Server Components	2025-12-12T09:04:19.324080Z	2025-12-12T10:46:34.688189Z
ncsc-2025-0393	Kwetsbaarheid verholpen in GeoServer	2025-12-12T08:12:18.831044Z	2025-12-12T09:02:27.681292Z
ncsc-2025-0392	Kwetsbaarheid verholpen in Barracuda Service Center	2025-12-11T13:53:23.819008Z	2025-12-11T13:53:23.819008Z
ncsc-2025-0391	Kwetsbaarheden verholpen in Ivanti Endpoint Manager	2025-12-11T13:51:55.178462Z	2025-12-11T13:51:55.178462Z
ncsc-2025-0390	Kwetsbaarheden verholpen in GitLab CE/EE	2025-12-11T09:22:54.841848Z	2025-12-11T09:22:54.841848Z
ncsc-2025-0389	Kwetsbaarheden verholpen in Adobe Experience Manager	2025-12-10T14:59:57.911864Z	2025-12-10T14:59:57.911864Z
ncsc-2025-0388	Kwetsbaarheden verholpen in Adobe Acrobat Reader	2025-12-10T13:35:58.314547Z	2025-12-10T13:35:58.314547Z
ncsc-2025-0387	Kwetsbaarheden verholpen in Adobe ColdFusion	2025-12-10T13:34:08.908897Z	2025-12-10T13:34:08.908897Z
ncsc-2025-0386	Kwetsbaarheden verholpen in Fortinet producten	2025-12-10T09:51:34.918202Z	2026-01-23T13:20:09.704113Z

ID	Description	Published	Updated
ssa-541582	SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-486936	SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-365200	SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products	2025-10-14T00:00:00Z	2026-01-13T00:00:00Z
ssa-318832	SSA-318832: SQL Injection Vulnerability in SINEC NMS	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-062309	SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-916339	SSA-916339: Information Disclosure Vulnerability in Apogee PXC and Talon TC Devices	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-722410	SSA-722410: Multiple Vulnerabilities in User Management Component (UMC)	2025-09-09T00:00:00Z	2025-10-14T00:00:00Z
ssa-640476	SSA-640476: Denial of Service Vulnerability in Industrial Edge Management	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-563922	SSA-563922: Local Privilege Escalation Vulnerability in SIMOTION Tools	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-534283	SSA-534283: Insecure File Share Vulnerability in SIMATIC Virtualization as a Service (SIVaaS)	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-494539	SSA-494539: Multiple Vulnerabilities in SINEC OS	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-027652	SSA-027652: Privilege Escalation Vulnerability in SINAMICS Drives	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-395458	SSA-395458: Account Hijacking Vulnerability in Mendix SAML Module	2025-08-14T00:00:00Z	2025-08-14T00:00:00Z
ssa-201595	SSA-201595: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager	2025-08-14T00:00:00Z	2026-01-13T00:00:00Z
ssa-994087	SSA-994087: Multiple SQLite Vulnerabilities in RUGGEDCOM CROSSBOW Station Access Controller Before V5.7	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-978177	SSA-978177: Vulnerability in Nozomi Guardian/CMC Before 25.4.0 on RUGGEDCOM APE1808 Devices	2025-08-12T00:00:00Z	2026-01-13T00:00:00Z
ssa-894058	SSA-894058: Improper Bandwidth Limitation of Network Packets Over Local USB Port Vulnerability in SIPROTEC 5	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-769791	SSA-769791: Local Arbitrary Code Execution Vulnerability in COMOS Before V10.6	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-707630	SSA-707630: Multiple Vulnerabilities in SIMATIC RTLS Locating Manager Before V3.3	2025-08-12T00:00:00Z	2025-08-26T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-674084	SSA-674084: File Parsing Vulnerabilities in Simcenter Femap Before V2506	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-665108	SSA-665108: Arbitrary File Upload Vulnerability in RUGGEDCOM ROX II	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-613116	SSA-613116: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.1	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-529291	SSA-529291: Information Disclosure Vulnerabilities in SICAM Q100/Q200	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-517338	SSA-517338: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V3.0	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-493787	SSA-493787: Arbitrary Code Execution Vulnerability in SIMATIC RTLS Locating Manager Before V3.2	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-400089	SSA-400089: Denial of Service Vulnerability in SIPROTEC 4 and SIPROTEC 4 Compact	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-382999	SSA-382999: Multiple Vulnerabilities in Opcenter Quality Before V2506	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-355557	SSA-355557: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:1332	Red Hat Security Advisory: fence-agents security update	2026-01-27T09:10:08+00:00	2026-01-27T15:49:39+00:00
rhsa-2026:1331	Red Hat Security Advisory: fence-agents security update	2026-01-27T09:04:37+00:00	2026-01-27T15:49:36+00:00
rhsa-2026:1329	Red Hat Security Advisory: fence-agents security update	2026-01-27T08:39:01+00:00	2026-01-27T15:49:36+00:00
rhsa-2026:1330	Red Hat Security Advisory: fence-agents security update	2026-01-27T08:38:11+00:00	2026-01-27T15:49:36+00:00
rhsa-2026:1326	Red Hat Security Advisory: glib2 security update	2026-01-27T07:46:31+00:00	2026-01-27T09:14:36+00:00
rhsa-2026:1327	Red Hat Security Advisory: glib2 security update	2026-01-27T07:32:51+00:00	2026-01-27T09:14:37+00:00
rhsa-2026:1324	Red Hat Security Advisory: glib2 security update	2026-01-27T07:16:01+00:00	2026-01-27T09:14:37+00:00
rhsa-2026:1323	Red Hat Security Advisory: glib2 security update	2026-01-27T07:08:41+00:00	2026-01-27T09:14:36+00:00
rhsa-2026:1320	Red Hat Security Advisory: thunderbird security update	2026-01-27T06:58:16+00:00	2026-01-27T21:03:30+00:00
rhsa-2026:1248	Red Hat Security Advisory: MTV RHEL9 Images	2026-01-26T18:31:11+00:00	2026-01-27T10:37:46+00:00
rhsa-2026:1236	Red Hat Security Advisory: kernel security update	2026-01-26T16:39:04+00:00	2026-01-28T00:34:48+00:00
rhsa-2026:0932	Red Hat Security Advisory: java-1.8.0-openjdk security update	2026-01-26T16:34:29+00:00	2026-01-27T10:37:43+00:00
rhsa-2026:1229	Red Hat Security Advisory: gnupg2 security update	2026-01-26T16:26:39+00:00	2026-01-26T21:14:02+00:00
rhsa-2026:1230	Red Hat Security Advisory: gnupg2 security update	2026-01-26T16:16:34+00:00	2026-01-26T21:14:03+00:00
rhsa-2026:0933	Red Hat Security Advisory: java-25-openjdk security update	2026-01-26T16:09:29+00:00	2026-01-27T10:37:43+00:00
rhsa-2026:1143	Red Hat Security Advisory: kernel security update	2026-01-26T14:47:56+00:00	2026-01-28T00:34:46+00:00
rhsa-2026:1194	Red Hat Security Advisory: kernel security update	2026-01-26T14:32:56+00:00	2026-01-28T00:34:51+00:00
rhsa-2026:1084	Red Hat Security Advisory: podman security update	2026-01-26T14:25:50+00:00	2026-01-26T21:14:03+00:00
rhsa-2026:0931	Red Hat Security Advisory: java-1.8.0-openjdk security update	2026-01-26T14:21:52+00:00	2026-01-26T21:12:25+00:00
rhsa-2026:1142	Red Hat Security Advisory: kernel security update	2026-01-26T13:44:48+00:00	2026-01-28T00:34:45+00:00
rhsa-2026:0901	Red Hat Security Advisory: OpenJDK 25.0.2 Security Update for Portable Linux Builds	2026-01-26T13:42:41+00:00	2026-01-27T10:37:42+00:00
rhsa-2026:0900	Red Hat Security Advisory: OpenJDK 21.0.10 Security Update for Windows Builds	2026-01-26T13:41:51+00:00	2026-01-26T21:12:49+00:00
rhsa-2026:0899	Red Hat Security Advisory: OpenJDK 21.0.10 Security Update for Portable Linux Builds	2026-01-26T13:41:39+00:00	2026-01-27T10:37:42+00:00
rhsa-2026:0898	Red Hat Security Advisory: OpenJDK 17.0.18 Security Update for Windows Builds	2026-01-26T13:39:49+00:00	2026-01-26T21:12:47+00:00
rhsa-2026:0897	Red Hat Security Advisory: OpenJDK 17.0.18 Security Update for Portable Linux Builds	2026-01-26T13:39:39+00:00	2026-01-27T10:37:42+00:00
rhsa-2026:0895	Red Hat Security Advisory: OpenJDK 8u482 Security Update for Portable Linux Builds	2026-01-26T13:38:53+00:00	2026-01-27T10:37:42+00:00
rhsa-2026:0896	Red Hat Security Advisory: OpenJDK 8u482 Windows Security Update	2026-01-26T13:38:38+00:00	2026-01-26T21:12:50+00:00
rhsa-2026:1190	Red Hat Security Advisory: php:8.3 security update	2026-01-26T13:00:21+00:00	2026-01-27T21:02:53+00:00
rhsa-2026:1090	Red Hat Security Advisory: poppler security update	2026-01-26T12:42:08+00:00	2026-01-26T15:41:26+00:00
rhsa-2026:1091	Red Hat Security Advisory: poppler security update	2026-01-26T12:36:38+00:00	2026-01-26T15:44:00+00:00

ID	Description	Published	Updated
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-26-020-01	Schneider Electric EcoStruxure Foxboro DCS	2025-12-09T08:00:00.000000Z	2026-01-20T15:49:52.728135Z
icsa-25-352-02	Schneider Electric EcoStruxure Foxboro DCS Advisor	2025-12-09T08:00:00.000000Z	2025-12-18T18:23:06.311869Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-26-008-01	Hitachi Energy Asset Suite	2025-12-09T00:00:00.000000Z	2026-01-07T21:26:16.381953Z
icsa-25-352-05	Siemens Interniche IP-Stack	2025-12-09T00:00:00.000000Z	2025-12-18T18:13:59.515670Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-06	Siemens SINEMA Remote Connect Server	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-05	Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-04	Siemens IAM Client	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-338-07	Advantech iView	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-06	SolisCloud Monitoring Platform	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-05	Sunbird DCIM dcTrack and Power IQ	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-04	Johnson Controls iSTAR	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-03	Johnson Controls OpenBlue Mobile Web Application for OpenBlue Workplace	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-02	MAXHUB Pivot	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsa-25-338-01	Mitsubishi Electric GX Works2	2025-12-04T07:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsma-25-336-01	Mirion Medical EC2 Software NMIS BioDose	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-02	Iskra iHUB and iHUB Lite	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-01	Industrial Video & Control Longwatch	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-329-06	SiRcom SMART Alert (SiSA)	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-05	Festo Compact Vision System, Control Block, Controller, and Operator Unit products	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-03	Zenitel TCIV-3+	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-02	Rockwell Automation Arena Simulation	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-cat9k-acl-l4k7vxgd	Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-action-frame-inj-qqcncz8h	Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp	Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-xrsig-uy4zrucg	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-iosxr-arp-storm-ejuu55ym	Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-acl-packetio-swjhhbtz	Cisco IOS XR Software Management Interface ACL Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-webex-xss-55bv8hhm	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-webex-urlredirect-uk8ddjsz	Cisco Webex Meetings URL Redirection Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-phone-write-g3kcc5df	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-imp-xss-xqgu4hsg	Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-xjqzsycp	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-info-dis-zhppmfgz	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epni-arb-file-upload-jjdm2p83	Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-cucm-csrf-w762pryd	Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-ucs-xss-ey6xhyps	Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-vkvmorv-cnkrv7hk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Open Redirect Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-multi-cmdinj-e4ukjyrz	Cisco UCS Manager Software Command Injection Vulnerabilities	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-kvmsxss-6h7anuyk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxospc-pim6-vg4jfph	Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00

ID	Description	Published	Updated
sca-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
sca-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
sca-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
sca-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
sca-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
sca-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
sca-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
sca-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
sca-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
sca-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
sca-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
sca-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0008	Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0007	Vulnerabilities in SICK MARSIC300	2022-04-21T15:00:00.000Z	2022-04-21T15:00:00.000Z
sca-2022-0006	Vulnerability in SICK MSC800	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0005	Vulnerability in SICK Overall Equipment Effectiveness (OEE)	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0004	Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC	2022-04-11T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0003	Vulnerabilities in SICK FTMg	2022-03-31T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0002	PwnKit vulnerability affects multiple SICK IPCs	2022-02-23T16:00:00.000Z	2022-02-23T16:00:00.000Z
sca-2022-0001	Vulnerability in SICK FieldEcho	2022-02-17T16:00:00.000Z	2022-02-17T16:00:00.000Z
sca-2021-0004	Vulnerabilities in SICK SOPAS ET	2021-12-16T08:00:00.000Z	2021-12-17T08:00:00.000Z
sca-2021-0003	SICK Security Advisory for Apache Log4j (CVE-2021-44228)	2021-12-14T17:00:00.000Z	2021-12-17T12:00:00.000Z
sca-2021-0002	MEAC affected by Windows SMBv1 vulnerability	2021-08-04T10:00:00.000Z	2021-08-04T10:00:00.000Z
sca-2021-0001	Inadequate SSH configuration in SICK Visionary-S CX	2021-06-25T10:00:00.000Z	2021-06-25T10:00:00.000Z
sca-2020-0005	Package Analytics affected by Windows TCP/IP vulnerability	2020-10-29T11:00:00.000Z	2020-10-29T11:00:00.000Z
sca-2020-0004	Vulnerability in Platform Mechanism AutoIP	2020-08-31T10:00:00.000Z	2020-08-31T10:00:00.000Z
sca-2020-0003	MEAC affected by Windows SMBv3 vulnerability	2020-08-07T10:00:00.000Z	2020-08-07T10:00:00.000Z
sca-2020-0002	Vulnerabilities in SICK Package Analytics	2020-08-07T10:00:00.000Z	2020-07-28T10:00:00.000Z
sca-2020-0001	Security Information Regarding "Profile Programming"	2020-05-31T10:00:00.000Z	2020-05-31T10:00:00.000Z
sca-2019-0002	Vulnerability in SICK FX0-GENT00000 and SICK FX0-GPNT00000	2019-09-20T10:00:00.000Z	2019-09-20T10:00:00.000Z

ID	Description	Published	Updated
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022_2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022_2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021_2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021_1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021:2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021:1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020_3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020_2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020:3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020:2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019_2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019_1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019:2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019:1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2026-20948	Microsoft Word Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20947	Microsoft SharePoint Server Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20946	Microsoft Excel Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20944	Microsoft Word Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20943	Microsoft Office Click-To-Run Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-20T08:00:00.000Z
msrc_cve-2026-20941	Host Process for Windows Tasks Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20940	Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20939	Windows File Explorer Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20938	Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20937	Windows File Explorer Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20936	Windows NDIS Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20935	Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20934	Windows SMB Server Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20932	Windows File Explorer Information Disclosure Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20931	Windows Telephony Service Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20929	Windows HTTP.sys Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20927	Windows SMB Server Denial of Service Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20926	Windows SMB Server Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20925	NTLM Hash Disclosure Spoofing Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20924	Windows Management Services Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20923	Windows Management Services Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20922	Windows NTFS Remote Code Execution Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20921	Windows SMB Server Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20920	Win32k Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20919	Windows SMB Server Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20918	Windows Management Services Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20877	Windows Management Services Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20876	Windows Virtualization-Based Security (VBS) Enclave Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20875	Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z
msrc_cve-2026-20874	Windows Management Services Elevation of Privilege Vulnerability	2026-01-13T08:00:00.000Z	2026-01-13T08:00:00.000Z

ID	Description	Published	Updated
2nga002427	ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
9akk108470a9494	Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
9akk108470a9491	ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
sa24p015	B&R APROL Potential Privilege Escalation and Information Disclosure	2025-03-24T00:30:00.000Z	2025-03-24T00:30:00.000Z
9akk108470a8565	RMC-100 Vulnerability in the Web UI (REST Interface)	2025-03-11T00:30:00.000Z	2025-03-11T00:30:00.000Z
7paa012159	System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text	2025-02-10T00:30:00.000Z	2025-02-10T00:30:00.000Z
9akk108470a6775	Hardcoded credentials in ASPECT Energy Management System	2025-02-05T00:30:00.000Z	2025-02-06T00:30:00.000Z
9akk108470a5466	Drive Composer Path Traversal Vulnerability	2025-02-05T00:30:00.000Z	2025-01-10T00:30:00.000Z
9akk108470a5684	FLXeon Controllers Cyber Security Advisory	2025-01-20T00:30:00.000Z	2025-02-14T00:30:00.000Z
sa25p001	Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates	2025-01-15T00:30:00.000Z	2025-01-16T00:30:00.000Z
3adr011377	AC500 V3 Multiple vulnerabilities	2025-01-07T00:30:00.000Z	2025-01-07T00:30:00.000Z
7paa013309	System 800xA SECURITY Advisory - ABB 800xA Base 6.0.x, 6.1.x CSLib communication DoS vulnerability	2024-06-05T00:30:00.000Z	2026-01-23T00:30:00.000Z

ID	Description	Updated
var-202001-0832	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic…	2024-07-23T22:37:43.319000Z
var-201208-0222	Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r…	2024-07-23T22:37:43.393000Z
var-202108-1148	An access issue was addressed with improved access restrictions. This issue is fixed in m…	2024-07-23T22:36:01.656000Z
var-200202-0006	Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause…	2024-07-23T22:34:48.127000Z
var-202007-0395	Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities …	2024-07-23T22:33:57.481000Z
var-201805-1147	WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe…	2024-07-23T22:32:10.966000Z
var-201902-0647	LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening …	2024-07-23T22:32:09.990000Z
var-201908-0863	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE…	2024-07-23T22:30:33.144000Z
var-201912-0120	A memory corruption issue was addressed with improved validation. This issue is fixed in …	2024-07-23T22:30:32.761000Z
var-201912-0114	A memory corruption issue was addressed with improved validation. This issue is fixed in …	2024-07-23T22:30:32.792000Z
var-202305-1589	D-Link DIR-2150 SetSysEmailSettings EmailTo Command Injection Remote Code Execution Vulne…	2024-07-23T22:30:26.856000Z
var-202407-0235	Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res…	2024-07-23T22:30:24.825000Z
var-202407-0234	Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data …	2024-07-23T22:30:24.699000Z
var-202407-0233	Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data …	2024-07-23T22:30:24.731000Z
var-202407-0232	Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res…	2024-07-23T22:30:24.657000Z
var-201112-0097	Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a…	2024-07-23T22:29:05.132000Z
var-201801-0152	An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri…	2024-07-23T22:28:30.754000Z
var-201801-0151	A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior …	2024-07-23T22:28:30.640000Z
var-201807-0341	ABB Panel Builder 800 all versions has an improper input validation vulnerability which m…	2024-07-23T22:28:27.949000Z
var-201806-1058	Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo…	2024-07-23T22:28:27.641000Z
var-201906-1029	In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne…	2024-07-23T22:28:26.009000Z
var-202004-0077	There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc…	2024-07-23T22:28:24.545000Z
var-202206-2050	The affected product is vulnerable to multiple SQL injections, which may allow an unautho…	2024-07-23T22:27:49.515000Z
var-202305-1981	D-Link DIR-2150 SetSysEmailSettings AccountName Command Injection Remote Code Execution V…	2024-07-23T22:27:44.287000Z
var-202305-0214	D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerabilit…	2024-07-23T22:27:44.496000Z
var-202305-0130	D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vul…	2024-07-23T22:27:44.522000Z
var-202407-0441	A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC R…	2024-07-23T22:27:41.577000Z
var-201105-0156	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30…	2024-07-23T22:25:52.955000Z
var-201402-0028	The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni…	2024-07-23T22:25:48.624000Z
var-201402-0027	The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re…	2024-07-23T22:25:48.742000Z

ID	Description	Published	Updated
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00
jvndb-2025-000099	Progress Flowmon vulnerable to authenticated OS command injection	2025-11-04T12:47+09:00	2025-11-04T12:47+09:00
jvndb-2025-000096	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	2025-10-29T14:17+09:00	2025-10-29T14:17+09:00
jvndb-2025-000095	MZK-DP300N uses hard-coded credentials	2025-10-28T14:04+09:00	2025-10-28T14:04+09:00
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000091	Multiple I-O DATA NAS management applications register Windows services with unquoted file paths	2025-10-22T15:04+09:00	2025-12-10T16:20+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00
jvndb-2025-000074	Multiple vulnerabilities in desknet's NEO	2025-10-16T17:30+09:00	2025-10-16T17:30+09:00
jvndb-2025-000076	Multiple vulnerabilities in ChatLuck	2025-10-16T17:17+09:00	2025-10-16T17:17+09:00
jvndb-2025-000087	Ruijie Networks RG-EST300 undocumented SSH functionality	2025-10-16T14:19+09:00	2025-10-16T14:19+09:00
jvndb-2025-016124	Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal	2025-10-16T11:16+09:00	2025-10-16T11:16+09:00
jvndb-2025-000085	Multiple RSUPPORT products may insecurely load Dynamic Link Libraries	2025-10-15T15:55+09:00	2025-10-15T15:55+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2026:0163-1	Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP4)	2026-01-19T14:34:24Z	2026-01-19T14:34:24Z
suse-su-2026:0155-1	Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)	2026-01-19T12:11:10Z	2026-01-19T12:11:10Z
suse-su-2026:0154-1	Security update for the Linux Kernel (Live Patch 63 for SUSE Linux Enterprise 12 SP5)	2026-01-19T12:08:42Z	2026-01-19T12:08:42Z
suse-su-2026:0153-1	Security update for MozillaThunderbird	2026-01-19T11:14:01Z	2026-01-19T11:14:01Z
suse-su-2026:0151-1	Security update for libsoup	2026-01-19T09:56:33Z	2026-01-19T09:56:33Z
suse-su-2026:0148-1	Security update for the Linux Kernel RT (Live Patch 0 for SUSE Linux Enterprise 15 SP7)	2026-01-17T12:04:20Z	2026-01-17T12:04:20Z
suse-su-2026:0133-1	Security update for python	2026-01-16T09:19:41Z	2026-01-16T09:19:41Z
suse-su-2026:0125-1	Security update for podman	2026-01-14T16:57:37Z	2026-01-14T16:57:37Z
suse-su-2026:0123-1	Security update for libsoup	2026-01-14T13:47:28Z	2026-01-14T13:47:28Z
suse-su-2026:0122-1	Security update for MozillaFirefox	2026-01-14T08:49:21Z	2026-01-14T08:49:21Z
suse-su-2026:0121-1	Security update for ovmf	2026-01-14T06:47:26Z	2026-01-14T06:47:26Z
suse-su-2026:0120-1	Security update for ovmf	2026-01-14T06:46:44Z	2026-01-14T06:46:44Z
suse-su-2026:0115-1	Security update for util-linux	2026-01-12T15:03:44Z	2026-01-12T15:03:44Z
suse-su-2026:0099-1	Security update for ImageMagick	2026-01-12T10:37:47Z	2026-01-12T10:37:47Z
suse-su-2026:0107-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:47Z	2026-01-12T10:34:47Z
suse-su-2026:0090-1	Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:10Z	2026-01-12T10:34:10Z
suse-su-2026:0087-1	Security update for libheif	2026-01-09T15:19:44Z	2026-01-09T15:19:44Z
suse-su-2026:0086-1	Security update for php8	2026-01-09T15:01:56Z	2026-01-09T15:01:56Z
suse-su-2026:0085-1	Security update for libpng16	2026-01-09T15:01:38Z	2026-01-09T15:01:38Z
suse-su-2026:0073-1	Security update for ImageMagick	2026-01-08T13:22:41Z	2026-01-08T13:22:41Z
suse-su-2026:0072-1	Security update for ImageMagick	2026-01-08T13:22:28Z	2026-01-08T13:22:28Z
suse-su-2026:0071-1	Security update for php8	2026-01-08T13:22:08Z	2026-01-08T13:22:08Z
suse-su-2026:0070-1	Security update for qemu	2026-01-08T13:21:59Z	2026-01-08T13:21:59Z
suse-su-2026:0069-1	Security update for rsync	2026-01-08T13:21:48Z	2026-01-08T13:21:48Z
suse-su-2026:0068-1	Security update for libvirt	2026-01-08T12:22:40Z	2026-01-08T12:22:40Z
suse-su-2026:0067-1	Security update for podman	2026-01-08T12:22:16Z	2026-01-08T12:22:16Z
suse-su-2026:0066-1	Security update for curl	2026-01-08T12:21:35Z	2026-01-08T12:21:35Z
suse-su-2026:0053-1	Security update for libpcap	2026-01-07T11:03:52Z	2026-01-07T11:03:52Z
suse-su-2026:0052-1	Security update for curl	2026-01-07T09:28:37Z	2026-01-07T09:28:37Z
suse-su-2026:0051-1	Security update for curl	2026-01-07T09:28:27Z	2026-01-07T09:28:27Z

ID	Description	Published	Updated
opensuse-su-2026:10047-1	libcryptopp-devel-8.9.0-6.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10046-1	MozillaFirefox-147.0-1.1 on GA media	2026-01-14T00:00:00Z	2026-01-14T00:00:00Z
opensuse-su-2026:10035-1	teleport-17.7.13-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10034-1	python311-Authlib-1.6.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10033-1	libtasn1-6-32bit-4.21.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10032-1	libpcap-devel-1.10.6-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10031-1	kubelogin-0.2.14-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10030-1	k6-1.5.0-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10029-1	istioctl-1.28.2-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10028-1	ffmpeg-7-7.1.3-1.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10027-1	ffmpeg-4-4.4.6-10.1 on GA media	2026-01-12T00:00:00Z	2026-01-12T00:00:00Z
opensuse-su-2026:10026-1	python311-urllib3-2.6.2-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10025-1	python311-aiohttp-3.13.3-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10024-1	libsoup-2_4-1-2.74.3-13.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10023-1	libsoup-3_0-0-3.6.5-10.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10022-1	libsodium-devel-1.0.21-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10021-1	coredns-1.14.0-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10015-1	libwget4-2.2.1-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10014-1	python311-cbor2-5.8.0-2.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10013-1	apptainer-1.4.5-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10012-1	ImageMagick-7.1.2.12-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10006-1	dcmtk-3.7.0-1.1 on GA media	2026-01-05T00:00:00Z	2026-01-05T00:00:00Z
opensuse-su-2026:10005-1	python312-Django6-6.0-1.1 on GA media	2026-01-03T00:00:00Z	2026-01-03T00:00:00Z
opensuse-su-2026:10004-1	fluidsynth-2.5.2-1.1 on GA media	2026-01-03T00:00:00Z	2026-01-03T00:00:00Z
opensuse-su-2026:20001-1	Security update for sssd	2026-01-02T16:58:16Z	2026-01-02T16:58:16Z
opensuse-su-2026:20002-1	Security update for MozillaThunderbird	2026-01-02T12:14:18Z	2026-01-02T12:14:18Z
opensuse-su-2026:10002-1	libmatio-devel-1.5.29-1.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2026:10001-1	dirmngr-2.5.16-1.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2026:10000-1	gnu-recutils-1.9-3.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2025:15853-1	weblate-5.14.3-2.1 on GA media	2025-12-30T00:00:00Z	2025-12-30T00:00:00Z

ID	Description	Published	Updated
sevd-2025-070-03	WebHMI Component For EcoStruxure™ Power Automation System User Interface and EcoStruxure™ Microgrid Operation Large	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-070-02	EPAS-UI & EcoSUI	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-070-01	EcoStruxure™ Panel Server	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-042-04	Enerlin'X IFE and eIFE	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2025-042-03	EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2025-042-01	ASCO 5310 / 5350 Remote Annunciator	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2025-042-02	Improper Input Validation Vulnerability in Uni-Telway Driver	2025-02-11T05:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-014-07	FlexNet Publisher Vulnerability	2025-01-14T07:00:00.000Z	2025-11-11T08:00:00.000Z
sevd-2025-014-03	Wind River VxWorks DHCP Server Vulnerability	2025-01-14T05:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2025-014-01	Modicon M580 PLCs, BMENOR2200H and EVLink Pro AC	2025-01-14T05:00:00.000Z	2025-04-08T04:00:00.000Z
sevd-2025-014-09	EcoStruxure™ Power Build Rapsody	2025-01-14T00:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-014-08	Power Logic HDPM6000 High-Density Metering System	2025-01-14T00:00:00.000Z	2025-01-14T00:00:00.000Z
sevd-2025-014-06	RemoteConnect and SCADAPack™ x70 Utilities	2025-01-14T00:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2025-014-05	Web Server on Modicon M340, Modbus/TCP Ethernet Modicon M340 module, Modbus/TCP Ethernet Modicon M340 FactoryCast module and Ethernet / Serial RTU communication modules	2025-01-14T00:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2025-014-04	Web Designer for Modicon Communication Modules	2025-01-14T00:00:00.000Z	2025-01-14T00:00:00.000Z
sevd-2025-014-02	Pro-face GP-Pro EX and Remote HMI	2025-01-14T00:00:00.000Z	2025-09-09T04:00:00.000Z
sevd-2024-345-03	Modicon M241 / M251 / M258 / LMC058	2024-12-10T05:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-345-02	Harmony HMI and Pro-face HMI products	2024-12-10T00:00:00.000Z	2024-12-10T00:00:00.000Z
sevd-2024-345-01	PowerChute Serial Shutdown	2024-12-10T00:00:00.000Z	2024-12-10T00:00:00.000Z
sevd-2024-317-03	Modicon Controllers M340 / Momentum / MC80	2024-11-12T05:00:00.000Z	2026-01-13T08:00:00.000Z
sevd-2024-317-04	EcoStruxure™ IT Gateway	2024-11-12T00:00:00.000Z	2024-11-12T00:00:00.000Z
sevd-2024-317-02	Modicon Controllers M340 / Momentum / MC80	2024-11-12T00:00:00.000Z	2024-11-12T00:00:00.000Z
sevd-2024-317-01	PowerLogic PM5300 Series	2024-11-12T00:00:00.000Z	2024-11-12T00:00:00.000Z
sevd-2024-282-05	EcoStruxure™ Power Monitoring Expert (PME)	2024-10-08T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2024-282-08	EcoStruxure EV Charging Expert	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-07	System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-06	Zelio Soft 2	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-04	EVlink Home Smart and Schneider Charge	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-03	Easergy Studio	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-02	Harmony iPC – HMIBSC IIoT Edge Box Core	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z

ID	Description	Published	Updated
cnvd-2025-31330	WordPress Freshchat plugin跨站请求伪造漏洞	2025-12-22	2025-12-25
cnvd-2025-31329	WordPress Fix Media Library plugin信息泄露漏洞	2025-12-22	2025-12-25
cnvd-2025-31328	WordPress Filebird Plugin缺少授权漏洞	2025-12-22	2025-12-25
cnvd-2025-31327	WordPress FileBird Pro plugin缺失授权漏洞	2025-12-22	2025-12-25
cnvd-2025-31115	WordPress Fancy Product Designer plugin信息泄露漏洞	2025-12-22	2025-12-23
cnvd-2025-31114	WordPress Fancy Product Designer plugin服务器端请求伪造漏洞	2025-12-22	2025-12-23
cnvd-2025-31113	WordPress Events Manager Plugin信息泄露漏洞	2025-12-22	2025-12-23
cnvd-2025-31154	Apple macOS Tahoe权限问题漏洞	2025-12-19	2025-12-22
cnvd-2025-31153	Apple macOS Tahoe符号链接处理不当漏洞（CNVD-2025-3115302）	2025-12-19	2025-12-22
cnvd-2025-31152	Apple macOS Tahoe注入漏洞	2025-12-19	2025-12-22
cnvd-2025-31151	Apple macOS Tahoe内存处理不当漏洞	2025-12-19	2025-12-22
cnvd-2025-31150	Apple macOS Tahoe沙盒限制不足漏洞	2025-12-19	2025-12-22
cnvd-2025-31149	Apple macOS Tahoe逻辑限制不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31148	Apple macOS Tahoe符号链接验证不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31147	Apple macOS Tahoe验证不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31146	Apple macOS Tahoe检查不足漏洞（CNVD-2025-3114612）	2025-12-19	2025-12-23
cnvd-2025-31145	Apple macOS Tahoe权限限制不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31144	Apple macOS Tahoe检查不足漏洞	2025-12-19	2025-12-23
cnvd-2025-31547	IBM Aspera Orchestrator拒绝服务漏洞	2025-12-18	2025-12-30
cnvd-2025-31546	IBM Aspera Orchestrator未验证的密码更改漏洞	2025-12-18	2025-12-30
cnvd-2025-31116	WordPress Addon Elements for Elementor跨站脚本漏洞	2025-12-18	2025-12-26
cnvd-2025-31121	WordPress Video Merchant跨站请求伪造漏洞	2025-12-16	2025-12-26
cnvd-2025-31120	WordPress Wp Job Portal任意文件读取漏洞	2025-12-16	2025-12-26
cnvd-2025-31119	WordPress RSS Aggregator by Feedzy代码问题漏洞	2025-12-16	2025-12-26
cnvd-2025-31118	WordPress WP CarDealer权限提升漏洞	2025-12-16	2025-12-26
cnvd-2025-31117	WordPress List category posts SQL注入漏洞	2025-12-16	2025-12-26
cnvd-2025-30834	帆软软件有限公司FineReport、FineBI及FineDataLink存在命令注入漏洞	2025-12-16	2025-12-17
cnvd-2026-00046	Siemens SIMATIC CN 4100访问控制错误漏洞	2025-12-15	2026-01-04
cnvd-2026-00021	Siemens SIMATIC CN 4100命令注入漏洞	2025-12-15	2026-01-04
cnvd-2026-00020	Siemens RUGGEDCOM ROX II注入漏洞（CNVD-2026-00020）	2025-12-15	2026-01-04

ID	Description	Published	Updated
certfr-2026-avi-0061	Multiples vulnérabilités dans les produits IBM	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0060	Vulnérabilité dans Apache Struts	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0059	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0058	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0057	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0056	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0055	Multiples vulnérabilités dans GLPI	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0054	Multiples vulnérabilités dans Centreon Infra Monitoring	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0053	Vulnérabilité dans Traefik	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0052	Multiples vulnérabilités dans Mattermost Server	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0051	Multiples vulnérabilités dans les produits Mozilla	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0050	Multiples vulnérabilités dans les produits Juniper Networks	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0049	Multiples vulnérabilités dans les produits Palo Alto Networks	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0048	Multiples vulnérabilités dans Wireshark	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0047	Vulnérabilité dans F5 NGINX Ingress Controller	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0046	Multiples vulnérabilités dans les produits Microsoft	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0045	Multiples vulnérabilités dans Microsoft Azure	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0044	Multiples vulnérabilités dans Microsoft Windows	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0043	Multiples vulnérabilités dans Microsoft Office	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0042	Multiples vulnérabilités dans les produits HPE Aruba Networking	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0041	Multiples vulnérabilités dans les produits Elastic	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0040	Multiples vulnérabilités dans Google Chrome	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0039	Multiples vulnérabilités dans Node.js	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0038	Multiples vulnérabilités dans les produits Mozilla	2026-01-14T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0037	Multiples vulnérabilités dans Typo3	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0036	Multiples vulnérabilités dans Suricata	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0035	Multiples vulnérabilités dans les produits Fortinet	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0034	Multiples vulnérabilités dans les produits SAP	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0033	Multiples vulnérabilités dans les produits Schneider Electric	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0032	Multiples vulnérabilités dans les produits Siemens	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000

ID	Description	Published	Updated
certfr-2024-ale-015	[MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000
CERTFR-2024-ALE-015	[MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-ale-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
CERTFR-2024-ALE-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
certfr-2024-ale-012	[MàJ] Vulnérabilités affectant OpenPrinting CUPS	2024-09-27T00:00:00.000000	2024-11-21T00:00:00.000000
CERTFR-2024-ALE-012	[MàJ] Vulnérabilités affectant OpenPrinting CUPS	2024-09-27T00:00:00.000000	2024-11-21T00:00:00.000000
certfr-2024-ale-011	Vulnérabilité dans SonicWall	2024-09-10T00:00:00.000000	2024-11-21T00:00:00.000000
CERTFR-2024-ALE-011	Vulnérabilité dans SonicWall	2024-09-10T00:00:00.000000	2024-11-21T00:00:00.000000
certfr-2024-ale-010	Multiples vulnérabilités dans Roundcube	2024-08-09T00:00:00.000000	2024-10-07T00:00:00.000000
CERTFR-2024-ALE-010	Multiples vulnérabilités dans Roundcube	2024-08-09T00:00:00.000000	2024-10-07T00:00:00.000000
certfr-2024-ale-009	Vulnérabilité dans OpenSSH	2024-07-01T00:00:00.000000	2024-07-03T00:00:00.000000
CERTFR-2024-ALE-009	Vulnérabilité dans OpenSSH	2024-07-01T00:00:00.000000	2024-07-03T00:00:00.000000
certfr-2024-ale-008	[MàJ] Vulnérabilité dans les produits Check Point	2024-05-30T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-008	[MàJ] Vulnérabilité dans les produits Check Point	2024-05-30T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-007	Multiples vulnérabilités dans les produits Cisco	2024-04-25T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-007	Multiples vulnérabilités dans les produits Cisco	2024-04-25T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-006	[MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect	2024-04-12T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-006	[MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect	2024-04-12T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-005	[MàJ] Vulnérabilité dans Microsoft Outlook	2024-02-15T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-005	[MàJ] Vulnérabilité dans Microsoft Outlook	2024-02-15T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2024-ale-004	[MàJ] Vulnérabilité dans Fortinet FortiOS	2024-02-09T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-004	[MàJ] Vulnérabilité dans Fortinet FortiOS	2024-02-09T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-003	[MàJ] Incident affectant les solutions AnyDesk	2024-02-05T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-003	[MàJ] Incident affectant les solutions AnyDesk	2024-02-05T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2024-ale-002	[MàJ] Multiples Vulnérabilités dans GitLab	2024-01-12T00:00:00.000000	2024-02-22T00:00:00.000000
CERTFR-2024-ALE-002	[MàJ] Multiples Vulnérabilités dans GitLab	2024-01-12T00:00:00.000000	2024-02-22T00:00:00.000000
certfr-2024-ale-001	[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways	2024-01-11T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-001	[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways	2024-01-11T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2023-ale-013	Vulnérabilité dans Apache Struts 2	2023-12-13T00:00:00.000000	2024-02-16T00:00:00.000000
CERTFR-2023-ALE-013	Vulnérabilité dans Apache Struts 2	2023-12-13T00:00:00.000000	2024-02-16T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2025-0013	9.4 (4.0)	Vulnerability in sharing group blueprints allowing sha…	misp	misp	2025-11-04T08:49:21.558087Z	2025-11-04T08:49:21.558087Z
GCVE-1-2025-0012	N/A	Potential vulnerability in file check upload but non-e…	misp	misp	2025-11-04T07:20:00.000Z	2025-11-28T07:16:21.589449Z
GCVE-1-2025-0011	9.4 (4.0)	Arbitrary file inclusion / deletion via import modules…	misp	misp	2025-11-04T07:01:25.464225Z	2025-11-04T07:01:25.464225Z
GCVE-1-2025-0010	6.3 (4.0)	Arbitrary file hash inclusion via templates accessible…	misp	misp	2025-11-04T06:25:11.108987Z	2025-11-04T06:25:11.108987Z
GCVE-1-2025-0009	6.4 (4.0)	A pre-auth user could self-assign a reporter without b…	CIRCL	vulnerability-lookup	2025-10-13T09:20:24.800890Z	2025-10-13T09:20:24.800890Z
GCVE-1-2025-0008	7 (4.0)	Logged users can view vulnerability disclosure comment…	CIRCL	vulnerability-lookup	2025-10-13T09:10:00.000Z	2025-10-13T09:15:31.637686Z
GCVE-1-2025-0007	4.5 (4.0)	Missing email validation on user management	CIRCL	vulnerability-lookup	2025-10-13T08:37:00.000Z	2025-10-13T08:51:37.408861Z
GCVE-1-2025-0006	9.3 (4.0)	Potential XSS in admin CPE in organization model	CIRCL	vulnerability-lookup	2025-10-13T08:29:00.000Z	2025-10-13T08:52:23.411325Z
GCVE-1-2025-0005	9.4 (4.0)	Reflected XSS due to insecure use of Markup	CIRCL	vulnerability-lookup	2025-10-13T08:23:29.812914Z	2025-10-13T08:23:29.812914Z
GCVE-1-2025-0004	10 (4.0)	XSS in Comments, Bundles, and Sightings component of v…	CIRCL	vulnerability-lookup	2025-09-25T14:10:00.000Z	2025-11-19T10:16:47.656802Z
GCVE-1-2025-0003	9.3 (4.0)	Incorrect ACL for user settings edit, which previ…	cerebrate	cerebrate	2025-08-22T12:33:00.000Z	2025-08-23T07:55:10.950332Z
GCVE-1-2025-0002	8.9 (4.0)	Command Injection in Cl0p Exfiltration Python Script	Cl0p ransomware	exfiltration	2025-07-01T08:19:00.000Z	2025-07-01T10:58:58.443468Z
GCVE-1-2025-0001	5.3 (4.0)	The absence of a password confirmation step when deact…	CIRCL	Vulnerability-Lookup	2025-05-27T08:58:00.000Z	2025-05-30T14:27:56.273945Z

ID	CVSS	Description	Vendor	Product	Published	Updated