Recent vulnerabilities

ID	Description	Published	Updated
ghsa-pp53-38w2-ppwc	OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers t…	2025-12-11T18:30:46Z	2025-12-12T18:30:34Z
ghsa-pjmj-gfjh-hg25	OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to exec…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-pj5g-2p26-rmxp	OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 …	2025-12-11T18:30:46Z	2025-12-12T18:30:34Z
ghsa-pj2j-7php-24vx	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-pf6j-gcp7-hx57	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-p2fg-j8w7-v5wj	OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing at…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-hmgq-fpmp-9c77	OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attacke…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-gpxr-vxw4-2gj7	OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to exec…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-fq27-xfx4-j2jj	OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attacke…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-fjxp-pgfq-cfr8	OS Command Injection vulnerability in Ruijie RG-EW1800GX PRO B11P226_EW1800GX-PRO_10223117 allowing…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-fg9w-r84r-mmfg	OS Command Injection vulnerability in Ruijie M18 EW_3.0(1)B11P226_M18_10223116 allowing attackers t…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-cr68-x2mp-wxf4	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitra…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-c565-3j89-9cp4	The Bookit WordPress plugin before 2.5.1 has a publicly accessible REST endpoint that allows unauth…	2025-12-12T12:30:25Z	2025-12-12T18:30:34Z
ghsa-9v24-5q5r-8mf3	OS Command Injection vulnerability in Ruijie RG-EW1800GX B11P226_EW1800GX_10223121 allowing attacke…	2025-12-11T18:30:46Z	2025-12-12T18:30:34Z
ghsa-9c42-gm7j-g2j7	OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing at…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-8xvp-2mfp-hrmp	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-8x78-jw4j-7jp6	OS Command Injection vulnerability in Ruijie RG-YST AP_3.0(1)B11P280YST250F allowing attackers to e…	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-7vwv-xq2j-9f5w	OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 …	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-7m2h-m3fc-4qj7	The WooMulti WordPress plugin through 17 does not validate a file parameter when deleting files, wh…	2025-12-12T12:30:25Z	2025-12-12T18:30:34Z
ghsa-7j5r-3j8p-5r55	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitra…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-7h9g-7r7q-4m67	OS Command Injection vulnerability in Ruijie X60 PRO X60_10212014RG-X60 PRO V1.00/V2.00 allowing at…	2025-12-11T21:31:32Z	2025-12-12T18:30:34Z
ghsa-6743-9rf5-vxm9	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitra…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-4v6j-72ww-qv59	OS Command Injection vulnerability in Ruijie RG-EW1200G PRO RG-EW1200G PRO V1.00/V2.00/V3.00/V4.00 …	2025-12-11T21:31:30Z	2025-12-12T18:30:34Z
ghsa-4qxq-29xm-x943	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR860 allowing attackers to execute arbitra…	2025-12-11T18:30:46Z	2025-12-12T18:30:34Z
ghsa-2rvg-m24j-3h35	OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to exec…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-293q-m4h6-56g9	OS Command Injection vulnerability in Ruijie RG-YST EST, YSTAP_3.0(1)B11P280YST250F V1.xxV2.xx allo…	2025-12-11T21:31:31Z	2025-12-12T18:30:34Z
ghsa-cx29-x3j5-3vjx	OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1…	2025-12-11T18:30:46Z	2025-12-12T18:30:33Z
ghsa-4w99-2gw3-w2p9	OS Command Injection vulnerability in Ruijie RG-EW1200 EW_3.0(1)B11P227_EW1200_11130208RG-EW1200 V1…	2025-12-11T18:30:46Z	2025-12-12T18:30:33Z
ghsa-3cc8-4xq5-f5wq	OS Command Injection vulnerability in Ruijie RG-BCR RG-BCR600W allowing attackers to execute arbitr…	2025-12-11T18:30:46Z	2025-12-12T18:30:33Z
ghsa-xvw2-m4qw-qqh5	OS Command Injection vulnerability in Ruijie X30-PRO X30-PRO-V1_09241521 allowing attackers to exec…	2025-12-11T18:30:46Z	2025-12-12T18:30:32Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-14578		itsourcecode Student Management System update_account.…	itsourcecode	Student Management System	2025-12-12T20:02:06.076Z	2025-12-12T20:02:06.076Z
cve-2025-67734		Frappe Authenticated Users can Execute JavaScript thro…	frappe	lms	2025-12-12T19:48:58.721Z	2025-12-12T20:01:48.581Z
cve-2025-65854	N/A	Insecure permissions in the scheduled tasks featu…	n/a	n/a	2025-12-12T00:00:00.000Z	2025-12-12T19:57:56.229Z
cve-2024-58311	8.7 (v4.0) 9.8 (v3.1)	Dormakaba Saflok System 6000 Key Generation Cryptograp…	dormakaba	Dormakaba Saflok System 6000	2025-12-12T19:57:03.119Z	2025-12-12T19:57:03.119Z
cve-2024-58305	8.6 (v4.0) 8.8 (v3.1)	WonderCMS 4.3.2 Cross-Site Scripting Remote Code Execu…	wondercms	WonderCMS	2025-12-12T19:56:58.058Z	2025-12-12T19:56:58.058Z
cve-2024-58299	9.3 (v4.0) 9.8 (v3.1)	PCMan FTP Server 2.0 Remote Buffer Overflow via 'pwd' …	PCMan	FTP Server	2025-12-12T19:56:39.145Z	2025-12-12T19:56:39.145Z
cve-2024-14010	8.5 (v4.0) 9.8 (v3.1)	Typora 1.7.4 OS Command Injection via Export PDF Preferences	Unknown	Typora	2025-12-12T19:55:03.584Z	2025-12-12T19:56:12.077Z
cve-2025-13665	5.4 (v4.0) 6.7 (v3.1)	Quartus Prime Standard Security Advisory	Altera	Quartus Prime Standard	2025-12-12T02:18:41.288Z	2025-12-12T19:54:41.016Z
cve-2025-13669	5.4 (v4.0) 6.7 (v3.1)	High Level Synthesis Compiler Security Advisory	Altera	High Level Synthesis Compiler	2025-12-12T02:30:28.238Z	2025-12-12T19:53:19.341Z
cve-2025-13670	5.4 (v4.0) 6.7 (v3.1)	High Level Synthesis Compiler Security Advisory	Altera	High Level Synthesis Compiler	2025-12-12T02:34:57.848Z	2025-12-12T19:51:30.180Z
cve-2025-8083	8.6 (v3.1)	Vuetify Prototype Pollution via Preset options	N/A	Vuetify	2025-12-12T19:29:06.926Z	2025-12-12T19:39:20.731Z
cve-2025-66457		Elysia affected by arbitrary code injection through co…	elysiajs	elysia	2025-12-09T20:03:45.918Z	2025-12-12T19:39:02.677Z
cve-2025-58130		Apache Fineract: Server Key not masked	Apache Software Foundation	Apache Fineract	2025-12-12T09:20:06.930Z	2025-12-12T19:38:02.717Z
cve-2025-14335		itsourcecode Student Management System new_school_year…	itsourcecode	Student Management System	2025-12-09T19:02:07.412Z	2025-12-12T19:36:24.114Z
cve-2025-58137		Apache Fineract: IDOR via self-service API	Apache Software Foundation	Apache Fineract	2025-12-12T09:21:00.374Z	2025-12-12T19:35:44.785Z
cve-2025-36745	8.6 (v4.0)	SolarEdge SE3680H contains Linux Kernel vulnerabilities	SolarEdge	SE3680H	2025-12-12T15:05:38.582Z	2025-12-12T19:33:31.099Z
cve-2025-34506	8.6 (v4.0)	WBCE CMS 1.6.3 Authenticated Remote Code Execution via…	WBCE	WBCE CMS	2025-12-11T21:44:03.538Z	2025-12-12T19:33:29.645Z
cve-2025-36744	2.4 (v4.0)	SolarEdge SE3680H - Information Exposure during Bootlo…	SolarEdge	SE3680H	2025-12-12T15:05:39.214Z	2025-12-12T19:31:36.831Z
cve-2025-66450		LibreChat JSON Injection in Chat POST Allows Remote Re…	danny-avila	LibreChat	2025-12-11T22:05:47.384Z	2025-12-12T19:30:38.502Z
cve-2025-66451		LibreChat's Improper Input Validation in Prompt Creati…	danny-avila	LibreChat	2025-12-11T22:33:24.079Z	2025-12-12T19:29:24.539Z
cve-2025-66452		LibreChat's lack of JSON parsing error handling can le…	danny-avila	LibreChat	2025-12-11T22:52:20.442Z	2025-12-12T19:28:19.177Z
cve-2025-54981		Apache StreamPark: Weak Encryption Algorithm in StreamPark	Apache Software Foundation	Apache StreamPark	2025-12-12T15:10:35.562Z	2025-12-12T19:27:16.118Z
cve-2025-67344	N/A	jshERP v3.5 and earlier is affected by a stored C…	n/a	n/a	2025-12-12T00:00:00.000Z	2025-12-12T19:25:45.680Z
cve-2025-67341	N/A	jshERP versions 3.5 and earlier are affected by a…	n/a	n/a	2025-12-12T00:00:00.000Z	2025-12-12T19:25:06.670Z
cve-2025-14568		haxxorsid Stock-Management-System User.php sql injection	haxxorsid	Stock-Management-System	2025-12-12T18:02:06.640Z	2025-12-12T19:24:47.913Z
cve-2025-14569		ggml-org whisper.cpp common-whisper.cpp read_audio_dat…	ggml-org	whisper.cpp	2025-12-12T18:02:09.274Z	2025-12-12T19:22:15.061Z
cve-2025-67342	N/A	RuoYi versions 4.8.1 and earlier is affected by a…	n/a	n/a	2025-12-12T00:00:00.000Z	2025-12-12T19:16:42.421Z
cve-2025-14334		itsourcecode Student Management System new_adviser.php…	itsourcecode	Student Management System	2025-12-09T18:32:07.612Z	2025-12-12T19:15:34.317Z
cve-2025-67818	N/A	An issue was discovered in Weaviate OSS before 1.…	n/a	n/a	2025-12-12T00:00:00.000Z	2025-12-12T19:15:25.886Z
cve-2025-14570		projectworlds Advanced Library Management System view_…	projectworlds	Advanced Library Management System	2025-12-12T18:32:06.354Z	2025-12-12T19:14:59.496Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-14580		Qualitor viewDocumento.php cross site scripting	n/a	Qualitor	2025-12-12T20:32:06.152Z	2025-12-12T20:32:06.152Z
cve-2025-14373	N/A	Inappropriate implementation in Toolbar in Google…	Google	Chrome	2025-12-12T19:20:42.687Z	2025-12-12T20:19:30.172Z
cve-2025-14372	N/A	Use after free in Password Manager in Google Chro…	Google	Chrome	2025-12-12T19:20:42.308Z	2025-12-12T20:27:11.139Z
cve-2025-14174	N/A	Out of bounds memory access in ANGLE in Google Ch…	Google	Chrome	2025-12-12T19:20:41.809Z	2025-12-12T20:37:59.456Z
cve-2024-58316	8.7 (v4.0) 7.5 (v3.1)	Online Shopping System Advanced 1.0 SQL Injection via …	PuneethReddyHC	online-shopping-system-advanced	2025-12-12T20:14:23.741Z	2025-12-12T20:14:23.741Z
cve-2024-58304	5.3 (v4.0) 7.5 (v3.1)	SPA-CART CMS 1.9.0.3 Stored Cross-Site Scripting	SPA-Cart	SPA-CART CMS	2025-12-11T21:40:42.224Z	2025-12-12T20:11:11.682Z

ID	Description	Published	Updated
fkie_cve-2023-53400	In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix Oops by 9.1 sur…	2025-09-18T14:15:43.293	2025-12-12T20:27:21.593
fkie_cve-2023-53402	In the Linux kernel, the following vulnerability has been resolved: kernel/printk/index.c: fix mem…	2025-09-18T14:15:43.527	2025-12-12T20:26:22.010
fkie_cve-2023-53403	In the Linux kernel, the following vulnerability has been resolved: time/debug: Fix memory leak wi…	2025-09-18T14:15:43.643	2025-12-12T20:26:15.283
fkie_cve-2023-53404	In the Linux kernel, the following vulnerability has been resolved: USB: fotg210: fix memory leak …	2025-09-18T14:15:43.760	2025-12-12T20:26:09.863
fkie_cve-2023-53405	In the Linux kernel, the following vulnerability has been resolved: USB: gadget: gr_udc: fix memor…	2025-09-18T14:15:43.900	2025-12-12T20:26:05.570
fkie_cve-2024-56057	Unrestricted Upload of File with Dangerous Type vulnerability in VibeThemes WPLMS allows Upload a W…	2024-12-18T19:15:13.417	2025-12-12T20:25:21.407
fkie_cve-2023-53406	In the Linux kernel, the following vulnerability has been resolved: USB: gadget: pxa25x_udc: fix m…	2025-09-18T14:15:44.040	2025-12-12T20:20:23.827
fkie_cve-2024-12678	Nomad Community and Nomad Enterprise ("Nomad") allocations are vulnerable to privilege escalation w…	2024-12-20T02:15:05.500	2025-12-12T20:19:49.517
fkie_cve-2025-8083	The Preset configuration https://v2.vuetifyjs.com/en/features/presets feature of Vuetify is vulne…	2025-12-12T20:15:43.250	2025-12-12T20:15:43.250
fkie_cve-2025-67819	An issue was discovered in Weaviate OSS before 1.33.4. Due to a lack of validation of the fileName …	2025-12-12T17:15:45.697	2025-12-12T20:15:42.917
fkie_cve-2025-67818	An issue was discovered in Weaviate OSS before 1.33.4. An attacker with access to insert data into …	2025-12-12T17:15:45.583	2025-12-12T20:15:42.770
fkie_cve-2025-67734	Frappe Learning Management System (LMS) is a learning system that helps users structure their conte…	2025-12-12T20:15:42.623	2025-12-12T20:15:42.623
fkie_cve-2025-67344	jshERP v3.5 and earlier is affected by a stored Cross Site Scripting (XSS) vulnerability via the /m…	2025-12-12T16:15:45.297	2025-12-12T20:15:42.473
fkie_cve-2025-67342	RuoYi versions 4.8.1 and earlier is affected by a stored XSS vulnerability in the /system/menu/edit…	2025-12-12T17:15:45.477	2025-12-12T20:15:42.327
fkie_cve-2025-67341	jshERP versions 3.5 and earlier are affected by a stored XSS vulnerability. This vulnerability allo…	2025-12-12T16:15:45.150	2025-12-12T20:15:42.163
fkie_cve-2025-66457	Elysia is a Typescript framework for request validation, type inference, OpenAPI documentation and …	2025-12-09T20:15:54.913	2025-12-12T20:15:42.057
fkie_cve-2025-66430	Plesk 18.0 has Incorrect Access Control.	2025-12-12T16:15:44.980	2025-12-12T20:15:41.747
fkie_cve-2025-65854	Insecure permissions in the scheduled tasks feature of MineAdmin v3.x allows attackers to execute a…	2025-12-12T16:15:44.843	2025-12-12T20:15:41.597
fkie_cve-2025-58137	Authorization Bypass Through User-Controlled Key vulnerability in Apache Fineract. This issue affe…	2025-12-12T10:15:49.370	2025-12-12T20:15:41.420
fkie_cve-2025-58130	Insufficiently Protected Credentials vulnerability in Apache Fineract. This issue affects Apache F…	2025-12-12T10:15:49.223	2025-12-12T20:15:41.243
fkie_cve-2025-54981	Weak Encryption Algorithm in StreamPark, The use of an AES cipher in ECB mode and a weak random num…	2025-12-12T15:15:53.703	2025-12-12T20:15:41.043
fkie_cve-2025-14578	A weakness has been identified in itsourcecode Student Management System 1.0. The affected element …	2025-12-12T20:15:40.630	2025-12-12T20:15:40.630
fkie_cve-2025-14572	A vulnerability was found in UTT 进取 512W up to 1.7.7-171114. This affects an unknown part of the fi…	2025-12-12T20:15:40.450	2025-12-12T20:15:40.450
fkie_cve-2025-14373	Inappropriate implementation in Toolbar in Google Chrome on Android prior to 143.0.7499.110 allowed…	2025-12-12T20:15:40.023	2025-12-12T20:15:40.023
fkie_cve-2025-14372	Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attack…	2025-12-12T20:15:39.897	2025-12-12T20:15:39.897
fkie_cve-2025-14174	Out of bounds memory access in ANGLE in Google Chrome on Mac prior to 143.0.7499.110 allowed a remo…	2025-12-12T20:15:39.663	2025-12-12T20:15:39.663
fkie_cve-2024-58314	Atcom 100M IP Phones firmware version 2.7.x.x contains an authenticated command injection vulnerabi…	2025-12-12T20:15:39.327	2025-12-12T20:15:39.327
fkie_cve-2024-58311	Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers …	2025-12-12T20:15:39.170	2025-12-12T20:15:39.170
fkie_cve-2024-58305	WonderCMS 4.3.2 contains a cross-site scripting vulnerability that allows attackers to inject malic…	2025-12-12T20:15:39.020	2025-12-12T20:15:39.020
fkie_cve-2024-58304	Online Shopping System Advanced 1.0 contains a SQL injection vulnerability in the payment_success.p…	2025-12-11T22:15:51.853	2025-12-12T20:15:38.870

ID	Description	Package	Published	Updated
pysec-2025-53	vLLM is an inference and serving engine for large language models (LLMs). Prior to versio…	vllm	2025-05-29T17:15:21+00:00	2025-06-26T21:23:06.231251+00:00
pysec-2025-51	Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v…	apache-airflow-providers-snowflake	2025-06-24T08:15:24+00:00	2025-06-26T21:23:03.132527+00:00
pysec-2025-50	vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp…	vllm	2025-05-30T18:15:32+00:00	2025-06-19T03:02:28.572160+00:00
pysec-2024-255	Gradio before 4.20 allows credential leakage on Windows.	gradio	2024-05-05T20:15:07+00:00	2025-06-17T19:21:48.983901+00:00
pysec-2024-254	A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke…	zenml	2024-04-16T00:15:11+00:00	2025-06-13T00:48:41.806476+00:00
pysec-2025-49	setuptools is a package that allows users to download, build, install, upgrade, and unins…	setuptools	2025-05-17T16:15:19+00:00	2025-06-12T22:23:11.115559+00:00
pysec-2025-48	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2025-03-31T17:15:42+00:00	2025-06-12T22:23:10.476087+00:00
pysec-2024-253	pretix before 2024.1.1 mishandles file validation.	pretix	2024-02-26T16:28:00+00:00	2025-06-11T15:23:51.683422+00:00
pysec-2024-252	PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t…	torch	2024-04-17T19:15:07+00:00	2025-06-10T19:22:08.948962+00:00
pysec-2024-251	Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in…	torch	2024-04-17T19:15:07+00:00	2025-06-10T03:12:59.077932+00:00
pysec-2025-47	An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2…	django	2025-06-05T03:15:25+00:00	2025-06-05T05:23:28.296596+00:00
pysec-2025-46	A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri…	pypickle	2025-05-26T08:15:19+00:00	2025-06-03T17:36:58.579358+00:00
pysec-2025-45	A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.…	pypickle	2025-05-26T07:15:26+00:00	2025-06-03T17:36:58.528116+00:00
pysec-2024-250	Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr…	torch	2024-04-19T21:15:08+00:00	2025-06-03T15:23:56.072490+00:00
pysec-2023-312	Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b…	redis	2023-07-15T23:15:09Z	2025-06-02T11:48:06.372423Z
pysec-2025-44	django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod…	django-helpdesk	2025-05-31T01:15:19+00:00	2025-05-31T03:09:35.357757+00:00
pysec-2025-43	vLLM is an inference and serving engine for large language models (LLMs). In versions sta…	vllm	2025-05-29T17:15:21+00:00	2025-05-29T19:21:01.611587+00:00
pysec-2025-42	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver…	vllm	2025-04-30T01:15:51+00:00	2025-05-28T21:23:12.396609+00:00
pysec-2025-41	PyTorch is a Python package that provides tensor computation with strong GPU acceleration…	torch	2025-04-18T16:15:23+00:00	2025-05-28T15:23:37.843138+00:00
pysec-2025-40	A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`…	transformers	2025-05-19T12:15:19+00:00	2025-05-21T19:22:10.801823+00:00
pysec-2024-249	### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f…	label-studio	2024-02-22T22:15:47+00:00	2025-05-19T11:22:35.312280+00:00
pysec-2024-248	OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its …	opencanary	2024-10-14T21:15:12+00:00	2025-05-16T14:23:05.150356+00:00
pysec-2025-39	motionEye is an online interface for the software motion, a video surveillance program wi…	motioneye	2025-05-14T16:15:29+00:00	2025-05-14T17:22:51.050788+00:00
pysec-2025-38	OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im…	ironic	2025-05-08T17:16:01Z	2025-05-13T04:24:03.083929Z
pysec-2024-247	A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically…	zenml	2024-04-16T00:15:11+00:00	2025-05-12T15:23:53.861001+00:00
pysec-2025-37	An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2…	django	2025-05-08T04:17:18+00:00	2025-05-08T05:23:16.210893+00:00
pysec-2025-36	Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida…	langflow	2025-04-07T15:15:44+00:00	2025-05-07T19:22:44.993642+00:00
pysec-2024-246	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in…	vyper	2024-04-25T17:15:50+00:00	2025-05-05T19:21:20.899426+00:00
pysec-2024-111	A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha…	langchain	2024-10-29T13:15:00Z	2025-05-02T18:39:47.588215Z
pysec-2024-245	Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user…	apache-airflow	2024-02-29T11:15:08+00:00	2025-05-01T21:22:38.598048+00:00

ID	Description	Updated
gsd-2024-33874	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.959238Z
gsd-2024-33861	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.958057Z
gsd-2024-33850	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.952536Z
gsd-2024-33856	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.944669Z
gsd-2024-33870	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.943118Z
gsd-2024-33849	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.924449Z
gsd-2024-33854	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.916266Z
gsd-2024-33868	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.896638Z
gsd-2024-33881	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.886591Z
gsd-2024-33880	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.882744Z
gsd-2024-33877	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.871220Z
gsd-2024-33873	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.870402Z
gsd-2024-33859	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.867340Z
gsd-2024-33875	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.862083Z
gsd-2024-33878	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.850311Z
gsd-2024-33858	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.848478Z
gsd-2024-33872	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.839468Z
gsd-2024-33857	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.834866Z
gsd-2024-33853	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.825026Z
gsd-2024-33863	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824810Z
gsd-2024-33852	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824312Z
gsd-2024-33866	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.819755Z
gsd-2024-33867	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.808129Z
gsd-2024-33882	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.803998Z
gsd-2024-33871	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.800751Z
gsd-2024-33862	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.799465Z
gsd-2024-33864	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.792101Z
gsd-2024-33865	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.790923Z
gsd-2024-33869	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.784255Z
gsd-2024-33860	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.777612Z

ID	Description	Published	Updated
mal-2025-192545	Malicious code in bfruitmaliciousxmlparser (npm)	2025-12-12T02:25:26Z	2025-12-12T02:25:26Z
mal-2025-192544	Malicious code in afruitmaliciousxmlparser (npm)	2025-12-12T02:25:26Z	2025-12-12T02:25:26Z
mal-2025-192434	Malicious code in @cheqplease/structured-logger (npm)	2025-12-10T16:58:18Z	2025-12-12T01:54:52Z
mal-2025-192540	Malicious code in elf-stats-twinkling-wishlist-283 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192539	Malicious code in elf-stats-twinkling-bell-867 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192538	Malicious code in elf-stats-tinsel-sleigh-669 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192537	Malicious code in elf-stats-tinsel-cookiejar-315 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192536	Malicious code in elf-stats-sugarplum-wishlist-141 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192535	Malicious code in elf-stats-sugarplum-toolkit-176 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192534	Malicious code in elf-stats-sugarplum-snowman-116 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192533	Malicious code in elf-stats-sprucey-train-710 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192532	Malicious code in elf-stats-sparkly-toolkit-821 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192531	Malicious code in elf-stats-sparkly-fir-398 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192530	Malicious code in elf-stats-snuggly-nutcracker-187 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192529	Malicious code in elf-stats-snowdusted-saddlebag-127 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192528	Malicious code in elf-stats-snowdusted-marshmallow-228 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192527	Malicious code in elf-stats-snowdusted-bell-846 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192526	Malicious code in elf-stats-sleighing-drum-467 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192525	Malicious code in elf-stats-silvered-wishlist-708 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192524	Malicious code in elf-stats-silvered-cushion-811 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192523	Malicious code in elf-stats-rooftop-wishlist-723 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192522	Malicious code in elf-stats-peppermint-wishlist-307 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192521	Malicious code in elf-stats-peppermint-fir-730 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192520	Malicious code in elf-stats-nutmeg-candy-869 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192519	Malicious code in elf-stats-northbound-cocoa-368 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192518	Malicious code in elf-stats-northbound-bauble-535 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192517	Malicious code in elf-stats-mistletoe-mailbag-834 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192516	Malicious code in elf-stats-midnight-rocket-499 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192515	Malicious code in elf-stats-merry-hammer-791 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z
mal-2025-192514	Malicious code in elf-stats-merry-cookiejar-796 (npm)	2025-12-11T19:46:09Z	2025-12-11T19:46:09Z

ID	Description	Published	Updated
wid-sec-w-2025-2651	GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-19T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2638	Grub: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2608	Golang Go: Schwachstelle ermöglicht Denial of Service	2025-11-16T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2441	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-29T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2407	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-26T23:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2386	Unbound: Schwachstelle ermöglicht Manipulation von Dateien	2025-10-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2350	Linux Kernel: Mehrere Schwachstellen	2025-10-20T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2322	Samba: Mehrere Schwachstellen	2025-10-15T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2298	Linux Kernel: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2269	WebKitGTK: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung	2025-10-13T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2268	Linux Kernel: Mehrere Schwachstellen	2025-10-13T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2246	Linux Kernel: Mehrere Schwachstellen	2025-10-08T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2230	Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien	2025-10-07T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2227	Golang Go: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2212	OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung	2025-10-06T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2196	Redis: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2194	Linux Kernel: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2170	Linux Kernel: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2110	LibTiff: Schwachstelle ermöglicht Codeausführung	2025-09-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2107	Linux Kernel: Mehrere Schwachstellen	2025-09-22T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2099	Linux Kernel: Mehrere Schwachstellen	2025-09-21T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2077	Linux Kernel: Mehrere Schwachstellen	2025-09-16T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2051	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-14T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2045	expat: Schwachstelle ermöglicht Denial of Service	2025-09-14T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2040	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-11T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2023	cURL: Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-09-09T22:00:00.000+00:00	2025-11-27T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-750499	SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-726617	SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-711309	SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products	2023-09-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-698820	SSA-698820: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.4 on RUGGEDCOM APE1808 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-687955	SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-682326	SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-631336	SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6	2022-06-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-552874	SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices	2022-12-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-522291	SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-514895	SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-365596	SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-339694	SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-322980	SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices	2023-04-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-301229	SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-267056	SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-225578	SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3	2022-07-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-216014	SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs	2025-03-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-201498	SSA-201498: Multiple Vulnerabilities in the Web Server of SICAM P850 and SICAM P855 Devices Before V3.11	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-194557	SSA-194557: Improper Limitation of Filesystem Access through Web Server Vulnerability in SIPROTEC 5	2025-01-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-876787	SSA-876787: Open Redirect Vulnerability in SIMATIC S7-1500 and S7-1200 CPUs	2024-10-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-722410	SSA-722410: Multiple Vulnerabilities in User Management Component (UMC)	2025-09-09T00:00:00Z	2025-10-14T00:00:00Z
ssa-625789	SSA-625789: Multiple Vulnerabilities in SIMATIC S7-1200 CPU V1/V2 Devices	2011-06-10T00:00:00Z	2025-10-14T00:00:00Z
ssa-614723	SSA-614723: Denial of Service Vulnerabilities in User Management Component (UMC)	2025-05-13T00:00:00Z	2025-10-14T00:00:00Z
ssa-599451	SSA-599451: Multiple Vulnerabilities in SiPass integrated Before V3.0	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-541582	SSA-541582: Multiple File Parsing Vulnerabilities in Solid Edge	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-513708	SSA-513708: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices	2025-06-10T00:00:00Z	2025-10-14T00:00:00Z
ssa-486936	SSA-486936: Authentication Vulnerability in SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-373591	SSA-373591: Buffer Overflow Vulnerability in RUGGEDCOM ROS Devices	2021-07-13T00:00:00Z	2025-10-14T00:00:00Z
ssa-367714	SSA-367714: Improper Integrity Check of Firmware Updates in SiPass integrated AC5102 / ACC-G2 and ACC-AP	2025-05-23T00:00:00Z	2025-10-14T00:00:00Z
ssa-365200	SSA-365200: Google Chrome Type Confusion Vulnerability in Siemens Products	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:8267	Red Hat Security Advisory: osbuild-composer security update	2025-05-28T15:24:18+00:00	2025-11-29T06:54:51+00:00
rhsa-2025:8244	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.21.0 release	2025-05-28T02:39:39+00:00	2025-11-29T06:54:51+00:00
rhsa-2025:8224	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.18.1 product release	2025-05-27T17:21:15+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:8075	Red Hat Security Advisory: osbuild-composer security update	2025-05-21T15:37:30+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:7863	Red Hat Security Advisory: OpenShift Container Platform 4.18.14 bug fix and security update	2025-05-20T17:17:48+00:00	2025-11-29T06:54:49+00:00
rhsa-2025:8059	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.7 Bug Fix Update	2025-05-21T06:13:16+00:00	2025-11-29T06:54:48+00:00
rhsa-2025:7967	Red Hat Security Advisory: osbuild-composer security update	2025-05-19T09:52:50+00:00	2025-11-29T06:54:47+00:00
rhsa-2025:7753	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update	2025-05-15T17:09:32+00:00	2025-11-29T06:54:46+00:00
rhsa-2025:7702	Red Hat Security Advisory: OpenShift Container Platform 4.14.52 bug fix and security update	2025-05-21T14:54:27+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7698	Red Hat Security Advisory: OpenShift Container Platform 4.15.51 bug fix and security update	2025-05-21T14:00:14+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7669	Red Hat Security Advisory: OpenShift Container Platform 4.17.30 bug fix and security update	2025-05-21T13:50:02+00:00	2025-11-29T06:54:45+00:00
rhsa-2025:7616	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update	2025-05-14T14:49:22+00:00	2025-11-29T06:54:44+00:00
rhsa-2025:7503	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T17:31:03+00:00	2025-11-29T06:54:43+00:00
rhsa-2025:7484	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-05-13T16:00:36+00:00	2025-11-29T06:54:43+00:00
rhsa-2025:7479	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T17:18:27+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7475	Red Hat Security Advisory: grafana security update	2025-05-13T16:00:56+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7425	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T13:57:39+00:00	2025-11-29T06:54:42+00:00
rhsa-2025:7467	Red Hat Security Advisory: skopeo security update	2025-05-13T17:18:51+00:00	2025-11-29T06:54:41+00:00
rhsa-2025:7462	Red Hat Security Advisory: podman security update	2025-05-13T16:04:06+00:00	2025-11-29T06:54:41+00:00
rhsa-2025:7459	Red Hat Security Advisory: buildah security update	2025-05-13T17:19:11+00:00	2025-11-29T06:54:40+00:00
rhsa-2025:7416	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-05-13T13:59:06+00:00	2025-11-29T06:54:39+00:00
rhsa-2025:7407	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T13:53:53+00:00	2025-11-29T06:54:39+00:00
rhsa-2025:7397	Red Hat Security Advisory: skopeo security update	2025-05-13T13:31:37+00:00	2025-11-29T06:54:38+00:00
rhsa-2025:7404	Red Hat Security Advisory: grafana security update	2025-05-13T13:59:07+00:00	2025-11-29T06:54:37+00:00
rhsa-2025:7391	Red Hat Security Advisory: podman security update	2025-05-13T13:31:19+00:00	2025-11-29T06:54:37+00:00
rhsa-2025:7389	Red Hat Security Advisory: buildah security update	2025-05-13T13:28:19+00:00	2025-11-29T06:54:36+00:00
rhsa-2025:4810	Red Hat Security Advisory: RHSA: Submariner 0.18.5 - bug and security update	2025-05-12T15:04:37+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4731	Red Hat Security Advisory: OpenShift Container Platform 4.16.40 bug fix and security update	2025-05-15T00:44:29+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4712	Red Hat Security Advisory: OpenShift Container Platform 4.18.13 bug fix and security update	2025-05-14T02:10:27+00:00	2025-11-29T06:54:34+00:00
rhsa-2025:4677	Red Hat Security Advisory: OpenShift Container Platform 4.13.58 bug fix and security update	2025-05-15T16:34:38+00:00	2025-11-29T06:54:33+00:00

ID	Description	Published	Updated
msrc_cve-2025-66471	urllib3 Streaming API improperly handles highly compressed data	2025-12-02T00:00:00.000Z	2025-12-11T01:01:41.000Z
msrc_cve-2025-66418	urllib3 allows an unbounded number of links in the decompression chain	2025-12-02T00:00:00.000Z	2025-12-11T01:01:31.000Z
msrc_cve-2025-40337	net: stmmac: Correctly handle Rx checksum offload errors	2025-12-02T00:00:00.000Z	2025-12-10T01:02:44.000Z
msrc_cve-2025-40340	drm/xe: Fix oops in xe_gem_fault when running core_hotunplug test.	2025-12-02T00:00:00.000Z	2025-12-10T01:02:33.000Z
msrc_cve-2025-40333	f2fs: fix infinite loop in __insert_extent_tree()	2025-12-02T00:00:00.000Z	2025-12-10T01:02:28.000Z
msrc_cve-2025-40329	drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb	2025-12-02T00:00:00.000Z	2025-12-10T01:02:22.000Z
msrc_cve-2025-40342	nvme-fc: use lock accessing port_state and rport state	2025-12-02T00:00:00.000Z	2025-12-10T01:02:17.000Z
msrc_cve-2025-40332	drm/amdkfd: Fix mmap write lock not release	2025-12-02T00:00:00.000Z	2025-12-10T01:02:09.000Z
msrc_cve-2025-40328	smb: client: fix potential UAF in smb2_close_cached_fid()	2025-12-02T00:00:00.000Z	2025-12-10T01:01:57.000Z
msrc_cve-2025-40339	drm/amdgpu: fix nullptr err of vm_handle_moved	2025-12-02T00:00:00.000Z	2025-12-10T01:01:52.000Z
msrc_cve-2025-40335	drm/amdgpu: validate userq input args	2025-12-02T00:00:00.000Z	2025-12-10T01:01:46.000Z
msrc_cve-2025-40331	sctp: Prevent TOCTOU out-of-bounds write	2025-12-02T00:00:00.000Z	2025-12-10T01:01:41.000Z
msrc_cve-2025-40343	nvmet-fc: avoid scheduling association deletion twice	2025-12-02T00:00:00.000Z	2025-12-10T01:01:35.000Z
msrc_cve-2025-40341	futex: Don't leak robust_list pointer on exec race	2025-12-02T00:00:00.000Z	2025-12-10T01:01:29.000Z
msrc_cve-2025-64680	Windows DWM Core Library Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64679	Windows DWM Core Library Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64678	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64673	Windows Storage VSP Driver Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64672	Microsoft SharePoint Server Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64671	GitHub Copilot for Jetbrains Remote Code Execution Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64670	Windows DirectX Information Disclosure Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64667	Microsoft Exchange Server Spoofing Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64666	Microsoft Exchange Server Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64661	Windows Shell Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-64658	Windows File Explorer Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62573	DirectX Graphics Kernel Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62572	Application Information Service Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62571	Windows Installer Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62570	Windows Camera Frame Server Monitor Information Disclosure Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z
msrc_cve-2025-62569	Microsoft Brokering File System Elevation of Privilege Vulnerability	2025-12-09T08:00:00.000Z	2025-12-09T08:00:00.000Z

ID	Description	Published	Updated
icsa-25-148-03	Consilium Safety CS5000 Fire Panel (Update A)	2025-05-29T06:00:00.000000Z	2025-12-04T07:00:00.000000Z
icsma-25-336-01	Mirion Medical EC2 Software NMIS BioDose	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-02	Iskra iHUB and iHUB Lite	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-336-01	Industrial Video & Control Longwatch	2025-12-02T07:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-205-01	Mitsubishi Electric CNC Series (Update A)	2025-07-24T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-23-157-02	Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C)	2023-06-06T06:00:00.000000Z	2025-12-02T07:00:00.000000Z
icsa-25-329-06	SiRcom SMART Alert (SiSA)	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-05	Festo Compact Vision System, Control Block, Controller, and Operator Unit products	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-03	Zenitel TCIV-3+	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-02	Rockwell Automation Arena Simulation	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-01	Ashlar-Vellum Cobalt, Xenon, Argon, Lithium, Cobalt Share	2025-11-25T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-22-333-05	Mitsubishi Electric FA Engineering Software (Update C)	2022-12-05T07:00:00.000000Z	2025-11-25T07:00:00.000000Z
icsa-25-329-04	Opto 22 groov View	2025-11-25T06:00:00.000000Z	2025-11-25T06:00:00.000000Z
icsa-25-324-06	Emerson Appleton UPSMON-PRO	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-01	Automated Logic WebCTRL Premium Server	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-03	Opto 22 GRV-EPIC and groov RIO	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-324-02	ICAM365 CCTV Camera Multiple Models	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-322-05	METZ CONNECT EWIO2	2025-11-18T12:00:00.000000Z	2025-11-18T12:00:00.000000Z
icsa-25-322-03	Shelly Pro 3EM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-322-02	Shelly Pro 4PM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-317-12	Siemens Spectrum Power 4	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-11	Siemens SICAM P850 family and SICAM P855 family	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-10	Rockwell Automation AADvance-Trusted SIS Workstation	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-09	Rockwell Automation FactoryTalk Policy Manager	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-07	Rockwell Automation FactoryTalk DataMosaix Private Cloud	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-06	Rockwell Automation Studio 5000 Simulation Interface	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-05	Rockwell Automation Verve Asset Manager	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-04	Brightpick Mission Control / Internal Logic Control	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-03	AVEVA Edge	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-02	AVEVA Application Server IDE	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-acl-l4k7vxgd	Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-action-frame-inj-qqcncz8h	Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp	Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-snmp-bypass-hhuvujdn	Cisco IOS XE SD-WAN Software Packet Filtering Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-09-22T14:12:28+00:00
cisco-sa-xrsig-uy4zrucg	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-iosxr-arp-storm-ejuu55ym	Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-acl-packetio-swjhhbtz	Cisco IOS XR Software Management Interface ACL Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-fp2k-ipsec-dos-tjwgdzco	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-09T21:22:34+00:00
cisco-sa-webex-xss-55bv8hhm	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-webex-urlredirect-uk8ddjsz	Cisco Webex Meetings URL Redirection Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-phone-write-g3kcc5df	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-imp-xss-xqgu4hsg	Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-xjqzsycp	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-info-dis-zhppmfgz	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epni-arb-file-upload-jjdm2p83	Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-cucm-csrf-w762pryd	Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-3100_4200_tlsdos-2ynscd54	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-03T13:37:50+00:00
cisco-sa-ucs-xss-ey6xhyps	Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-vkvmorv-cnkrv7hk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Open Redirect Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-multi-cmdinj-e4ukjyrz	Cisco UCS Manager Software Command Injection Vulnerabilities	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ucs-kvmsxss-6h7anuyk	Cisco Integrated Management Controller Virtual Keyboard Video Monitor Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxospc-pim6-vg4jfph	Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxos-infodis-tectysfg	Cisco NX-OS Software Sensitive Log Information Disclosure Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nxos-cmdinj-qhnze5ss	Cisco NX-OS Software Command Injection Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nshs-urapi-gjubvfpu	Cisco Nexus Dashboard and Nexus Dashboard Fabric Controller Unauthorized REST API Vulnerabilities	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-nd-ptrs-xu2fm2wb	Cisco Nexus Dashboard Path Traversal Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-n39k-isis-dos-jhja8rfx	Cisco Nexus 3000 and 9000 Series Switches Intermediate System-to-Intermediate System Denial of Service Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00
cisco-sa-ise-file-upload-qksx6c8g	Cisco Identity Services Engine Arbitrary File Upload Vulnerability	2025-08-20T16:00:00+00:00	2025-08-20T16:43:01+00:00

ID	Description	Published	Updated
SCA-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
SCA-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
sca-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
SCA-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
sca-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
SCA-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
sca-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
SCA-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
sca-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
SCA-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
sca-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
SCA-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
sca-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
SCA-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
sca-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
SCA-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
sca-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
SCA-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
sca-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
SCA-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
sca-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
SCA-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
sca-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
SCA-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
sca-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
SCA-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
sca-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0008	Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
SCA-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z

ID	Description	Published	Updated
nn-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022_2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022_2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2024:2-01	Incorrect authorization for Reports configuration in Guardian/CMC before 24.2.0	2024-09-11T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2024:1-01	DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:17-01	Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1	2024-04-10T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:15-01	Sensitive data exfiltration via unsafe permissions on Windows systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:12-01	Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0	2024-01-15T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-05-20T11:00:00.000Z

ID	Description	Published	Updated
OXAS-ADV-2023-0006	OX App Suite Security Advisory OXAS-ADV-2023-0006	2023-09-25T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0005	OX App Suite Security Advisory OXAS-ADV-2023-0005	2023-09-19T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0004	OX App Suite Security Advisory OXAS-ADV-2023-0004	2023-08-01T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0003	OX App Suite Security Advisory OXAS-ADV-2023-0003	2023-05-02T00:00:00+02:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0002	OX App Suite Security Advisory OXAS-ADV-2023-0002	2023-03-20T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2023-0001	OX App Suite Security Advisory OXAS-ADV-2023-0001	2023-02-06T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2022-0002	OX App Suite Security Advisory OXAS-ADV-2022-0002	2022-11-02T00:00:00+01:00	2024-01-22T00:00:00+00:00
OXAS-ADV-2022-0001	OX App Suite Security Advisory OXAS-ADV-2022-0001	2022-08-10T00:00:00+02:00	2024-01-22T00:00:00+00:00

ID	Description	Updated
var-201801-0152	An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri…	2024-11-29T22:49:44.989000Z
var-202004-0077	There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc…	2024-11-29T22:49:10.471000Z
var-202411-1369	A parameter within a command does not properly validate input within myPRO Manager which …	2024-11-29T22:48:08.493000Z
var-202411-1372	The web application uses a weak authentication mechanism to verify that a request is comi…	2024-11-29T22:48:08.477000Z
var-202411-1370	An OS Command Injection vulnerability exists within myPRO Manager. A parameter within a c…	2024-11-29T22:48:08.461000Z
var-202411-1371	The administrative interface listens by default on all interfaces on a TCP port and does …	2024-11-29T22:48:08.445000Z
var-202411-1373	The back-end does not sufficiently verify the user-controlled filename parameter which ma…	2024-11-29T22:48:08.429000Z
var-200512-0300	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-11-29T22:47:57.596000Z
var-200512-0643	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-11-29T22:47:55.749000Z
var-200512-0297	Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbit…	2024-11-29T22:47:55.685000Z
var-200512-0611	Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and…	2024-11-29T22:47:55.607000Z
var-200512-0294	Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr…	2024-11-29T22:47:55.530000Z
var-201112-0097	Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a…	2024-11-29T22:47:02.572000Z
var-201805-1143	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-11-29T22:46:30.150000Z
var-201805-1144	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-11-29T22:46:30.043000Z
var-201806-1058	Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo…	2024-11-29T22:46:29.795000Z
var-201902-0647	LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening …	2024-11-29T22:46:28.037000Z
var-200202-0006	Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause…	2024-11-29T22:46:09.598000Z
var-200107-0035	slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cau…	2024-11-29T22:45:37.258000Z
var-200607-0396	Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b…	2024-11-29T22:45:25.291000Z
var-201601-0038	Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote atta…	2024-11-29T22:42:17.893000Z
var-201801-0394	TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbi…	2024-11-29T22:41:34.504000Z
var-201805-1147	WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe…	2024-11-29T22:41:28.661000Z
var-201904-0181	Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow…	2024-11-29T22:41:17.815000Z
var-202001-0833	A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo…	2024-11-29T22:41:12.131000Z
var-202001-0832	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic…	2024-11-29T22:41:12.054000Z
var-201208-0222	Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r…	2024-11-29T22:41:11.980000Z
var-202005-0008	Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buf…	2024-11-29T22:41:10.312000Z
var-202007-0395	Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities …	2024-11-29T22:41:08.364000Z
var-202106-0542	A CWE-287: Improper Authentication vulnerability exists in PowerLogic PM55xx, PowerLogic …	2024-11-29T22:41:05.439000Z

ID	Description	Published	Updated
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00
jvndb-2025-000074	Multiple vulnerabilities in desknet's NEO	2025-10-16T17:30+09:00	2025-10-16T17:30+09:00
jvndb-2025-000076	Multiple vulnerabilities in ChatLuck	2025-10-16T17:17+09:00	2025-10-16T17:17+09:00
jvndb-2025-000087	Ruijie Networks RG-EST300 undocumented SSH functionality	2025-10-16T14:19+09:00	2025-10-16T14:19+09:00
jvndb-2025-016124	Buffalo Wi-Fi router WXR9300BE6P series vulnerable to path traversal	2025-10-16T11:16+09:00	2025-10-16T11:16+09:00
jvndb-2025-000085	Multiple RSUPPORT products may insecurely load Dynamic Link Libraries	2025-10-15T15:55+09:00	2025-10-15T15:55+09:00
jvndb-2025-000086	Phoenix Contact CHARX SEC-3xxx vulnerable to code injection	2025-10-15T15:54+09:00	2025-10-15T15:54+09:00
jvndb-2025-000083	BUFFALO NAS Navigator2 registers a Windows service with an unquoted file path	2025-10-10T13:56+09:00	2025-10-10T13:56+09:00
jvndb-2025-015451	Multiple vulnerabilities in FUJI Electric V-SFT	2025-10-09T13:39+09:00	2025-10-09T13:39+09:00
jvndb-2025-000081	DataSpider Servista improper restriction of XML external entity references	2025-09-29T14:44+09:00	2025-10-07T16:54+09:00
jvndb-2025-000082	The installers of DENSO TEN drive recorder viewer may insecurely load Dynamic Link Libraries	2025-10-06T15:38+09:00	2025-10-06T15:38+09:00
jvndb-2025-015061	Trend Micro Antivirus for Mac vulnerable to Local Privilege Escalation	2025-10-06T13:52+09:00	2025-10-06T13:52+09:00
jvndb-2025-014967	Multiple vulnerabilities in multiple Keyence products	2025-10-03T11:19+09:00	2025-10-03T11:19+09:00
jvndb-2025-000044	Denial-of-service (DoS) vulnerabilities in multiple Apache products	2025-06-26T14:41+09:00	2025-10-01T14:18+09:00
jvndb-2025-014642	Multiple vulnerabilities in Canon Printer Drivers for Production Printers, Office/Small Office Multifunction Printers and Laser Printers	2025-09-30T11:50+09:00	2025-09-30T11:50+09:00
jvndb-2025-000066	Improper file access permission settings in multiple i-FILTER products	2025-08-27T19:50+09:00	2025-09-29T13:45+09:00
jvndb-2025-000077	RICOH Streamline NX vulnerable to tampering with operation history	2025-09-08T13:42+09:00	2025-09-24T16:53+09:00
jvndb-2025-007519	Multiple vulnerabilities in multiple BROTHER products	2025-06-26T18:15+09:00	2025-09-22T10:16+09:00
jvndb-2025-014105	OMRON SOCIAL SOLUTIONS Uninterruptible Power Supply (UPS) management application registers a Windows service with an unquoted file path	2025-09-19T16:21+09:00	2025-09-19T16:21+09:00
jvndb-2025-014104	Multiple vulnerabilities in I-O DATA wireless LAN routers	2025-09-19T14:58+09:00	2025-09-19T14:58+09:00
jvndb-2025-014081	Multiple Brother and its OEM products with weak initial administrator passwords	2025-09-19T10:52+09:00	2025-09-19T10:52+09:00
jvndb-2025-000079	UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation vulnerable to cross-site scripting	2025-09-18T17:43+09:00	2025-09-18T17:43+09:00
jvndb-2025-000078	Century HW RAID Manager registers a Windows service with an unquoted file path	2025-09-17T13:45+09:00	2025-09-17T13:45+09:00
jvndb-2025-000048	WTW-EAGLE App vulnerable to improper server certificate validation	2025-09-12T13:57+09:00	2025-09-12T13:57+09:00
jvndb-2025-000070	"Gunosy" App vulnerable to insertion of sensitive information into sent data	2025-09-02T14:20+09:00	2025-09-09T09:51+09:00

ID	Description	Updated
ts-2022-005	TS-2022-005	2022-11-21T00:00
ts-2022-004	TS-2022-004	2022-11-21T00:00
ts-2022-003	TS-2022-003	2022-06-14T00:00
ts-2022-002	TS-2022-002	2022-05-11T00:00
ts-2022-001	TS-2022-001	2022-02-07T00:00

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated