Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-24799	5.2 (4.0)	A heap-based buffer over-read or buffer overflow in da…	davisking	dlib	2026-01-27T08:31:36.371Z	2026-01-27T08:31:36.371Z
CVE-2026-24798	9.3 (4.0)	An Uninitialized stack variable vulnerability in Gaiji…	GaijinEntertainment	DagorEngine	2026-01-27T08:27:10.291Z	2026-01-27T08:27:10.291Z
CVE-2026-24797	6.9 (4.0)	An out of bounds write due to a missing bounds check i…	neka-nat	cupoch	2026-01-27T08:25:17.496Z	2026-01-27T08:25:17.496Z
CVE-2026-24795	5.1 (4.0)	An Out-of-bounds Write in CloverHackyColor/CloverBootloader	CloverHackyColor	CloverBootloader	2026-01-27T08:23:47.447Z	2026-01-27T08:23:47.447Z
CVE-2026-24796	6.9 (4.0)	A Out-of-bounds Read vulnerability in CloverHackyColor…	CloverHackyColor	CloverBootloader	2026-01-27T08:22:20.758Z	2026-01-27T08:22:20.758Z
CVE-2026-24794	9.2 (4.0)	Chunk Unloading Security Vulnerability in CardboardPow…	CardboardPowered	cardboard	2026-01-27T08:21:22.643Z	2026-01-27T08:21:22.643Z
CVE-2026-24793	10 (4.0)	A heap-based buffer over-read or buffer overflow vulne…	azerothcore	azerothcore-wotlk	2026-01-27T08:19:41.350Z	2026-01-27T08:19:41.350Z
CVE-2026-1464	4.6 (4.0)	A possible integer overflow vulnerability in RawThera…	MuntashirAkon	AppManager	2026-01-27T08:18:17.832Z	2026-01-27T08:18:17.832Z
CVE-2026-1465	8.7 (4.0)	A heap-based buffer over-read or buffer overflow in ti…	anyrtcIO-Community	anyRTC-RTMP-OpenSource	2026-01-27T08:15:57.520Z	2026-01-27T08:15:57.520Z
CVE-2025-7195	5.2 (3.1)	Operator-sdk: privilege escalation due to incorrect pe…	operator-framework	operator-sdk	2025-08-07T19:05:08.756Z	2026-01-27T07:48:48.421Z
CVE-2025-13601	7.7 (3.1)	Glib: integer overflow in in g_escape_uri_string()			2025-11-26T14:44:22.680Z	2026-01-27T07:33:15.584Z
CVE-2025-14971	5.3 (3.1)	Link Invoice Payment for WooCommerce <= 2.8.0 - Missin…	linknacional	Link Invoice Payment for WooCommerce	2026-01-27T06:44:13.511Z	2026-01-27T06:44:13.511Z
CVE-2025-59109	5.1 (4.0)	UART Leaking Sensitive Data in dormakaba registration …	dormakaba	dormakaba registration unit 9002	2026-01-26T10:06:45.739Z	2026-01-27T06:06:05.350Z
CVE-2026-21408	7.3 (3.0) 5.4 (4.0)	beat-access for Windows version 3.0.3 and prior c…	FUJIFILM Business Innovation Corp.	beat-access for Windows	2026-01-27T05:08:20.229Z	2026-01-27T05:08:20.229Z
CVE-2025-14756	8.5 (4.0)	Authenticated Command Injection Vulnerability in Arche…	TP-Link Systems Inc.	Archer MR600 v5.0	2026-01-26T18:17:09.220Z	2026-01-27T04:55:38.502Z
CVE-2026-21509	7.8 (3.1)	Microsoft Office Security Feature Bypass Vulnerability	Microsoft	Microsoft Office 2019	2026-01-26T17:06:35.512Z	2026-01-27T04:55:37.429Z
CVE-2018-14634	7.8 (3.0)	An integer overflow flaw was found in the Linux k…	The Linux Foundation	kernel	2018-09-25T21:00:00.000Z	2026-01-27T04:55:36.299Z
CVE-2026-22586	9.8 (3.1)	Hard-coded Cryptographic Key vulnerability in Sal…	Salesforce	Marketing Cloud Engagement	2026-01-24T00:17:08.285Z	2026-01-27T04:55:35.035Z
CVE-2026-22585	9.8 (3.1)	Use of a Broken or Risky Cryptographic Algorithm …	Salesforce	Marketing Cloud Engagement	2026-01-24T00:15:02.891Z	2026-01-27T04:55:33.951Z
CVE-2026-22583	9.8 (3.1)	Improper Neutralization of Argument Delimiters in…	Salesforce	Marketing Cloud Engagement	2026-01-24T00:20:54.718Z	2026-01-27T04:55:32.863Z
CVE-2026-22582	9.8 (3.1)	Improper Neutralization of Argument Delimiters in…	Salesforce	Marketing Cloud Engagement	2026-01-24T00:19:26.449Z	2026-01-27T04:55:31.777Z
CVE-2026-23760	9.3 (4.0)	SmarterTools SmarterMail < Build 9511 Authentication B…	SmarterTools	SmarterMail	2026-01-22T14:35:17.235Z	2026-01-27T04:55:30.702Z
CVE-2026-24061	9.8 (3.1)	telnetd in GNU Inetutils through 2.7 allows remot…	GNU	Inetutils	2026-01-21T06:42:17.134Z	2026-01-27T04:55:29.472Z
CVE-2025-52691	10 (3.1)	Upload Arbitrary Files	SmarterTools	SmarterMail	2025-12-29T02:15:58.200Z	2026-01-27T04:55:28.032Z
CVE-2026-1361	7.8 (3.1)	ASDA-Soft Stack-based Buffer Overflow Vulnerability	Delta Electronics	ASDA-Soft	2026-01-27T03:11:57.514Z	2026-01-27T03:11:57.514Z
CVE-2025-23367	6.5 (3.1)	Org.wildfly.core:wildfly-server: wildfly improper rbac…			2025-01-30T14:30:04.227Z	2026-01-27T02:58:08.576Z
CVE-2024-12369	4.2 (3.1)	Elytron-oidc-client: oidc authorization code injection			2024-12-09T20:53:09.260Z	2026-01-27T02:57:56.422Z
CVE-2026-21264	9.3 (3.1)	Microsoft Account Spoofing Vulnerability	Microsoft	Microsoft Account	2026-01-22T22:47:38.744Z	2026-01-27T01:35:46.207Z
CVE-2026-21521	7.4 (3.1)	Word Copilot Information Disclosure Vulnerability	Microsoft	Microsoft 365 Word Copilot	2026-01-22T22:47:38.118Z	2026-01-27T01:35:45.614Z
CVE-2026-24307	9.3 (3.1)	M365 Copilot Information Disclosure Vulnerability	Microsoft	Microsoft 365 Copilot	2026-01-22T22:47:36.934Z	2026-01-27T01:35:44.102Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-24123	7.4 (3.1)	BentoML has a Path Traversal via Bentofile Configuration	bentoml	BentoML	2026-01-26T22:14:39.709Z	2026-01-26T22:14:39.709Z
CVE-2025-66138	8.8 (3.1)	WordPress Motionger for Elementor plugin <= 2.0.4 - Br…	merkulove	Motionger for Elementor	2026-01-22T16:51:49.895Z	2026-01-26T22:16:48.895Z
CVE-2025-66137	8.8 (3.1)	WordPress Searcher for Elementor plugin <= 1.0.3 - Bro…	merkulove	Searcher for Elementor	2026-01-22T16:51:49.716Z	2026-01-26T22:16:54.218Z
CVE-2025-66136	8.8 (3.1)	WordPress Carter for Elementor plugin <= 1.0.2 - Broke…	merkulove	Carter for Elementor	2026-01-22T16:51:49.525Z	2026-01-26T22:17:00.873Z
CVE-2025-66135	8.8 (3.1)	WordPress Imager for Elementor plugin <= 2.0.4 - Broke…	merkulove	Imager for Elementor	2026-01-22T16:51:49.343Z	2026-01-26T22:17:07.528Z
CVE-2025-64252	9.1 (3.1)	WordPress ANAC XML Viewer plugin <= 1.8.2 - Server Sid…	Marco Milesi	ANAC XML Viewer	2026-01-22T16:51:49.141Z	2026-01-26T22:17:13.081Z
CVE-2025-63051	7.5 (3.1)	WordPress REHub Framework plugin < 19.9.9.4 - Sensitiv…	sizam	REHub Framework	2026-01-22T16:51:48.772Z	2026-01-26T22:17:18.133Z
CVE-2025-63026	5.4 (3.1)	WordPress Grand Restaurant Theme Elements for Elemento…	ThemeGoods	Grand Restaurant Theme Elements for Elementor	2026-01-22T16:51:48.574Z	2026-01-26T22:17:23.615Z
CVE-2025-63019	7.5 (3.1)	WordPress Cookies and Content Security Policy plugin <…	Johan Jonk Stenström	Cookies and Content Security Policy	2026-01-22T16:51:48.371Z	2026-01-26T22:17:29.860Z
CVE-2025-63018	8.8 (3.1)	WordPress Bard theme <= 2.229 - Broken Access Control …	wproyal	Bard	2026-01-22T16:51:48.143Z	2026-01-26T22:17:35.713Z
CVE-2025-63017	9.8 (3.1)	WordPress WerkStatt Plugin plugin <= 1.6.6 - Local Fil…	fuelthemes	WerkStatt Plugin	2026-01-22T16:51:47.887Z	2026-01-26T22:17:41.035Z
CVE-2025-62754	9.1 (3.1)	WordPress Payment Gateway bKash for WC plugin <= 3.1.0…	Kapil Paul	Payment Gateway bKash for WC	2026-01-22T16:51:47.669Z	2026-01-26T22:17:47.076Z
CVE-2025-62741	9.1 (3.1)	WordPress Pool Services theme <= 3.3 - Server Side Req…	SmartDataSoft	Pool Services	2026-01-22T16:51:47.324Z	2026-01-26T22:17:52.581Z
CVE-2025-62106	8.8 (3.1)	WordPress WP-CRM System plugin <= 3.4.5 - Broken Acces…	Mario Peshev	WP-CRM System	2026-01-22T16:51:47.046Z	2026-01-26T22:17:58.022Z
CVE-2025-62077	5.4 (3.1)	WordPress Affiliate Link Tracker plugin <= 0.2 - Cross…	SEOSEON EUROPE S.L	Affiliate Link Tracker	2026-01-22T16:51:46.837Z	2026-01-26T22:18:04.878Z
CVE-2025-62056	9.8 (3.1)	WordPress News Event theme <= 1.0.1 - Arbitrary File U…	blazethemes	News Event	2026-01-22T16:51:46.647Z	2026-01-26T22:18:10.509Z
CVE-2025-62050	9.8 (3.1)	WordPress Blogmatic theme <= 1.0.3 - Arbitrary File Up…	blazethemes	Blogmatic	2026-01-22T16:51:46.432Z	2026-01-26T22:18:16.658Z
CVE-2025-5805	8.8 (3.1)	WordPress Electron theme <= 1.8.2 - Broken Access Cont…	Ninetheme	Electron	2026-01-22T16:51:46.213Z	2026-01-26T22:18:22.789Z
CVE-2025-54003	9.8 (3.1)	WordPress Depot theme <= 1.16 - Local File Inclusion v…	Mikado-Themes	Depot	2026-01-22T16:51:45.965Z	2026-01-26T22:18:28.355Z
CVE-2025-54002	8.8 (3.1)	WordPress xSmart theme <= 1.2.9.4 - Broken Access Cont…	Jthemes	xSmart	2026-01-22T16:51:45.705Z	2026-01-26T22:18:33.964Z
CVE-2025-53240	6.1 (3.1)	WordPress WordPress Photo Gallery plugin <= 1.1.0 - Cr…	adamlabs	WordPress Photo Gallery	2026-01-22T16:51:45.463Z	2026-01-26T22:18:39.894Z
CVE-2025-52762	6.1 (3.1)	WordPress flexo-posts-manager Plugin <= 1.0001 - Cross…	flexostudio	flexo-posts-manager	2026-01-22T16:51:45.234Z	2026-01-26T22:18:45.455Z
CVE-2025-52746	6.1 (3.1)	WordPress Restaurante theme <= 3.0.7 - Cross Site Scri…	ayecode	Restaurante	2026-01-22T16:51:44.944Z	2026-01-26T22:18:51.493Z
CVE-2025-50007	8.8 (3.1)	WordPress xSmart theme <= 1.2.9.4 - Privilege Escalati…	Jthemes	xSmart	2026-01-22T16:51:44.750Z	2026-01-26T22:18:57.104Z
CVE-2025-50006	6.1 (3.1)	WordPress xSmart theme <= 1.2.9.4 - Reflected Cross Si…	Jthemes	xSmart	2026-01-22T16:51:44.554Z	2026-01-26T22:19:03.657Z
CVE-2025-50005	6.1 (3.1)	WordPress tagDiv Composer plugin <= 5.4.2 - Cross Site…	tagDiv	tagDiv Composer	2026-01-22T16:51:44.352Z	2026-01-26T22:19:09.795Z
CVE-2025-50004	9.8 (3.1)	WordPress JupiterX Core plugin <= 4.10.1 - PHP Object …	artbees	JupiterX Core	2026-01-22T16:51:44.164Z	2026-01-26T22:19:15.136Z
CVE-2025-50003	9.8 (3.1)	WordPress Amuli theme <= 2.3.0 - Local File Inclusion …	axiomthemes	Amuli	2026-01-22T16:51:43.965Z	2026-01-26T22:19:20.963Z
CVE-2025-50002	9.8 (3.1)	WordPress Energia theme <= 1.1.2 - Arbitrary File Uplo…	Farost	Energia	2026-01-22T16:51:43.748Z	2026-01-26T22:19:26.522Z
CVE-2025-49994	9.8 (3.1)	WordPress Athens theme <= 1.1.6 - Local File Inclusion…	ovatheme	Athens	2026-01-22T16:51:43.534Z	2026-01-26T22:19:32.051Z

ID	Description	Published	Updated
fkie_cve-2026-24123	BentoML is a Python library for building online serving systems optimized for AI apps and model inf…	2026-01-26T23:16:08.460	2026-01-26T23:16:08.460
fkie_cve-2025-66138	Missing Authorization vulnerability in merkulove Motionger for Elementor motionger-elementor allows…	2026-01-22T17:16:00.723	2026-01-26T23:16:01.823
fkie_cve-2025-66137	Missing Authorization vulnerability in merkulove Searcher for Elementor searcher-elementor allows E…	2026-01-22T17:16:00.600	2026-01-26T23:16:01.660
fkie_cve-2025-66136	Missing Authorization vulnerability in merkulove Carter for Elementor carter-elementor allows Explo…	2026-01-22T17:16:00.473	2026-01-26T23:16:01.507
fkie_cve-2025-66135	Missing Authorization vulnerability in merkulove Imager for Elementor imager-elementor allows Explo…	2026-01-22T17:16:00.343	2026-01-26T23:16:01.350
fkie_cve-2025-64252	Server-Side Request Forgery (SSRF) vulnerability in Marco Milesi ANAC XML Viewer anac-xml-viewer al…	2026-01-22T17:16:00.090	2026-01-26T23:16:01.193
fkie_cve-2025-63051	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam R…	2026-01-22T17:15:59.907	2026-01-26T23:16:01.030
fkie_cve-2025-63026	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:59.790	2026-01-26T23:16:00.873
fkie_cve-2025-63019	Insertion of Sensitive Information Into Sent Data vulnerability in Johan Jonk Stenström Cookies and…	2026-01-22T17:15:59.667	2026-01-26T23:16:00.720
fkie_cve-2025-63018	Missing Authorization vulnerability in wproyal Bard bard allows Exploiting Incorrectly Configured A…	2026-01-22T17:15:59.540	2026-01-26T23:16:00.557
fkie_cve-2025-63017	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T17:15:59.403	2026-01-26T23:16:00.403
fkie_cve-2025-62754	Missing Authorization vulnerability in Kapil Paul Payment Gateway bKash for WC woo-payment-bkash al…	2026-01-22T17:15:59.277	2026-01-26T23:16:00.247
fkie_cve-2025-62741	Server-Side Request Forgery (SSRF) vulnerability in SmartDataSoft Pool Services pool-services allow…	2026-01-22T17:15:59.143	2026-01-26T23:16:00.093
fkie_cve-2025-62106	Missing Authorization vulnerability in Mario Peshev WP-CRM System wp-crm-system allows Exploiting I…	2026-01-22T17:15:59.020	2026-01-26T23:15:59.930
fkie_cve-2025-62077	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:58.893	2026-01-26T23:15:59.763
fkie_cve-2025-62056	Unrestricted Upload of File with Dangerous Type vulnerability in blazethemes News Event news-event.…	2026-01-22T17:15:58.757	2026-01-26T23:15:59.610
fkie_cve-2025-62050	Unrestricted Upload of File with Dangerous Type vulnerability in blazethemes Blogmatic blogmatic.Th…	2026-01-22T17:15:58.630	2026-01-26T23:15:59.453
fkie_cve-2025-5805	Missing Authorization vulnerability in Ninetheme Electron electron allows Exploiting Incorrectly Co…	2026-01-22T17:15:58.497	2026-01-26T23:15:59.290
fkie_cve-2025-54003	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T17:15:58.057	2026-01-26T23:15:59.080
fkie_cve-2025-54002	Missing Authorization vulnerability in Jthemes xSmart xsmart allows Exploiting Incorrectly Configur…	2026-01-22T17:15:57.900	2026-01-26T23:15:58.917
fkie_cve-2025-53240	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:57.757	2026-01-26T23:15:58.767
fkie_cve-2025-52762	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:57.630	2026-01-26T23:15:58.607
fkie_cve-2025-52746	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:57.500	2026-01-26T23:15:58.453
fkie_cve-2025-50007	Incorrect Privilege Assignment vulnerability in Jthemes xSmart xsmart allows Privilege Escalation.T…	2026-01-22T17:15:57.263	2026-01-26T23:15:58.297
fkie_cve-2025-50006	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:57.140	2026-01-26T23:15:58.137
fkie_cve-2025-50005	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T17:15:57.017	2026-01-26T23:15:57.987
fkie_cve-2025-50004	Deserialization of Untrusted Data vulnerability in artbees JupiterX Core jupiterx-core allows Objec…	2026-01-22T17:15:56.897	2026-01-26T23:15:57.830
fkie_cve-2025-50003	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T17:15:56.770	2026-01-26T23:15:57.677
fkie_cve-2025-50002	Unrestricted Upload of File with Dangerous Type vulnerability in Farost Energia energia allows Uplo…	2026-01-22T17:15:56.650	2026-01-26T23:15:57.520
fkie_cve-2025-49994	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T17:15:56.527	2026-01-26T23:15:57.360

ID	Severity	Description	Published	Updated
ghsa-6rwr-c5rg-c3g2	8.8 (3.1)	Missing Authorization vulnerability in merkulove Searcher for Elementor searcher-elementor allows E…	2026-01-22T18:30:33Z	2026-01-27T00:31:12Z
ghsa-6hh3-55pq-pgwq	8.8 (3.1)	Incorrect Privilege Assignment vulnerability in e-plugins Final User final-user allows Privilege Es…	2026-01-22T18:30:39Z	2026-01-27T00:31:12Z
ghsa-6h2x-qqxv-62vv	5.4 (3.1)	Authorization Bypass Through User-Controlled Key vulnerability in Mikado-Themes Holmes holmes allow…	2026-01-22T18:30:40Z	2026-01-27T00:31:12Z
ghsa-6h2f-26q7-fj62	7.5 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T18:30:40Z	2026-01-27T00:31:12Z
ghsa-466m-cgr3-wmg5	7.3 (3.1)	Missing Authorization vulnerability in e-plugins ListingHub listinghub allows Exploiting Incorrectl…	2026-01-22T18:30:39Z	2026-01-27T00:31:12Z
ghsa-wq23-6p2q-rgc7	7.5 (3.1)	Insertion of Sensitive Information Into Sent Data vulnerability in Johan Jonk Stenström Cookies and…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-wfq7-x3p5-6p3r	8.8 (3.1)	Missing Authorization vulnerability in wproyal Bard bard allows Exploiting Incorrectly Configured A…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-rw63-fhw5-h8xf	8.8 (3.1)	Missing Authorization vulnerability in merkulove Carter for Elementor carter-elementor allows Explo…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-rpvq-43pv-vpgx	9.1 (3.1)	Server-Side Request Forgery (SSRF) vulnerability in Marco Milesi ANAC XML Viewer anac-xml-viewer al…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-q5wg-9m77-73x7	7.5 (3.1)	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in sizam R…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-gpxp-fqcq-q358	8.8 (3.1)	Missing Authorization vulnerability in merkulove Imager for Elementor imager-elementor allows Explo…	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-46f2-jw97-m9p4	5.4 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:33Z	2026-01-27T00:31:11Z
ghsa-vg7v-mpp3-w484	9.8 (3.1)	Unrestricted Upload of File with Dangerous Type vulnerability in blazethemes News Event news-event.…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-rhv5-3hrm-5qhp	9.1 (3.1)	Missing Authorization vulnerability in Kapil Paul Payment Gateway bKash for WC woo-payment-bkash al…	2026-01-22T18:30:33Z	2026-01-27T00:31:10Z
ghsa-rfx9-xhfj-575x	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-mv32-8gjm-m39m	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-m3hc-cvmh-fj5g	8.8 (3.1)	Missing Authorization vulnerability in Jthemes xSmart xsmart allows Exploiting Incorrectly Configur…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-j5g5-7mch-jcrp	9.8 (3.1)	Unrestricted Upload of File with Dangerous Type vulnerability in blazethemes Blogmatic blogmatic.Th…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-fx32-vc85-q9x8	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-8qwx-32rr-mphx	9.8 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-01-22T18:30:33Z	2026-01-27T00:31:10Z
ghsa-8fgr-f6c7-2f3p	5.4 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-847h-pfgv-f8c6	8.8 (3.1)	Incorrect Privilege Assignment vulnerability in Jthemes xSmart xsmart allows Privilege Escalation.T…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-7m58-f7rw-34w4	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-73pc-r9cx-r7gr	8.8 (3.1)	Missing Authorization vulnerability in Ninetheme Electron electron allows Exploiting Incorrectly Co…	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-6vh7-qp6r-h896	8.8 (3.1)	Missing Authorization vulnerability in Mario Peshev WP-CRM System wp-crm-system allows Exploiting I…	2026-01-22T18:30:33Z	2026-01-27T00:31:10Z
ghsa-4r5r-p2hf-qwww	9.1 (3.1)	Server-Side Request Forgery (SSRF) vulnerability in SmartDataSoft Pool Services pool-services allow…	2026-01-22T18:30:33Z	2026-01-27T00:31:10Z
ghsa-3qcj-r6mr-vw7f	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-39xv-mjc6-x593	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:10Z
ghsa-x9xh-m4xq-748x	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:09Z
ghsa-wp4h-4vp9-w3v8	6.1 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-01-22T18:30:32Z	2026-01-27T00:31:09Z

ID	Severity	Description	Package	Published	Updated
pysec-2025-53		vLLM is an inference and serving engine for large language models (LLMs). Prior to versio…	vllm	2025-05-29T17:15:21+00:00	2025-06-26T21:23:06.231251+00:00
pysec-2025-51		Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v…	apache-airflow-providers-snowflake	2025-06-24T08:15:24+00:00	2025-06-26T21:23:03.132527+00:00
pysec-2025-50		vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp…	vllm	2025-05-30T18:15:32+00:00	2025-06-19T03:02:28.572160+00:00
pysec-2024-255		Gradio before 4.20 allows credential leakage on Windows.	gradio	2024-05-05T20:15:07+00:00	2025-06-17T19:21:48.983901+00:00
pysec-2024-254	4.2 (3.1)	A session fixation vulnerability exists in the zenml-io/zenml application, where JWT toke…	zenml	2024-04-16T00:15:11+00:00	2025-06-13T00:48:41.806476+00:00
pysec-2025-49	8.8 (3.1)	setuptools is a package that allows users to download, build, install, upgrade, and unins…	setuptools	2025-05-17T16:15:19+00:00	2025-06-12T22:23:11.115559+00:00
pysec-2025-48	9.8 (3.1)	Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2025-03-31T17:15:42+00:00	2025-06-12T22:23:10.476087+00:00
pysec-2024-253		pretix before 2024.1.1 mishandles file validation.	pretix	2024-02-26T16:28:00+00:00	2025-06-11T15:23:51.683422+00:00
pysec-2024-252		PyTorch before v2.2.0 was discovered to contain a heap buffer overflow vulnerability in t…	torch	2024-04-17T19:15:07+00:00	2025-06-10T19:22:08.948962+00:00
pysec-2024-251		Pytorch before version v2.2.0 was discovered to contain a use-after-free vulnerability in…	torch	2024-04-17T19:15:07+00:00	2025-06-10T03:12:59.077932+00:00
pysec-2025-47		An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2…	django	2025-06-05T03:15:25+00:00	2025-06-05T05:23:28.296596+00:00
pysec-2025-46	5.5 (3.1)	A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri…	pypickle	2025-05-26T08:15:19+00:00	2025-06-03T17:36:58.579358+00:00
pysec-2025-45	7.8 (3.1)	A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.…	pypickle	2025-05-26T07:15:26+00:00	2025-06-03T17:36:58.528116+00:00
pysec-2024-250		Pytorch before v2.2.0 has an Out-of-bounds Read vulnerability via the component torch/csr…	torch	2024-04-19T21:15:08+00:00	2025-06-03T15:23:56.072490+00:00
pysec-2023-312	5.9 (3.1)	Redis before 6cbea7d allows a replica to cause an assertion failure in a primary server b…	redis	2023-07-15T23:15:09Z	2025-06-02T11:48:06.372423Z
pysec-2025-44		django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod…	django-helpdesk	2025-05-31T01:15:19+00:00	2025-05-31T03:09:35.357757+00:00
pysec-2025-43		vLLM is an inference and serving engine for large language models (LLMs). In versions sta…	vllm	2025-05-29T17:15:21+00:00	2025-05-29T19:21:01.611587+00:00
pysec-2025-42	9.8 (3.1)	vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver…	vllm	2025-04-30T01:15:51+00:00	2025-05-28T21:23:12.396609+00:00
pysec-2025-41	9.8 (3.1)	PyTorch is a Python package that provides tensor computation with strong GPU acceleration…	torch	2025-04-18T16:15:23+00:00	2025-05-28T15:23:37.843138+00:00
pysec-2025-40	7.5 (3.1)	A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`…	transformers	2025-05-19T12:15:19+00:00	2025-05-21T19:22:10.801823+00:00
pysec-2024-249	6.1 (3.1)	### Summary On all Label Studio versions prior to 1.11.0, data imported via file upload f…	label-studio	2024-02-22T22:15:47+00:00	2025-05-19T11:22:35.312280+00:00
pysec-2024-248	7.8 (3.1)	OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its …	opencanary	2024-10-14T21:15:12+00:00	2025-05-16T14:23:05.150356+00:00
pysec-2025-39		motionEye is an online interface for the software motion, a video surveillance program wi…	motioneye	2025-05-14T16:15:29+00:00	2025-05-14T17:22:51.050788+00:00
pysec-2025-38		OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im…	ironic	2025-05-08T17:16:01Z	2025-05-13T04:24:03.083929Z
pysec-2024-247	9.9 (3.1)	A directory traversal vulnerability exists in the zenml-io/zenml repository, specifically…	zenml	2024-04-16T00:15:11+00:00	2025-05-12T15:23:53.861001+00:00
pysec-2025-37		An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2…	django	2025-05-08T04:17:18+00:00	2025-05-08T05:23:16.210893+00:00
pysec-2025-36	9.8 (3.1)	Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida…	langflow	2025-04-07T15:15:44+00:00	2025-05-07T19:22:44.993642+00:00
pysec-2024-246	5.3 (3.1)	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. Starting in…	vyper	2024-04-25T17:15:50+00:00	2025-05-05T19:21:20.899426+00:00
pysec-2024-111	9.1 (3.1)	A path traversal vulnerability exists in the `getFullPath` method of langchain-ai/langcha…	langchain	2024-10-29T13:15:00Z	2025-05-02T18:39:47.588215Z
pysec-2024-245		Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated user…	apache-airflow	2024-02-29T11:15:08+00:00	2025-05-01T21:22:38.598048+00:00

ID	Description	Updated
gsd-2024-33881	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.886591Z
gsd-2024-33880	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.882744Z
gsd-2024-33879	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.727068Z
gsd-2024-33878	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.850311Z
gsd-2024-33877	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.871220Z
gsd-2024-33876	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.990196Z
gsd-2024-33875	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.862083Z
gsd-2024-33874	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.959238Z
gsd-2024-33873	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.870402Z
gsd-2024-33872	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.839468Z
gsd-2024-33871	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.800751Z
gsd-2024-33870	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.943118Z
gsd-2024-33869	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.784255Z
gsd-2024-33868	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.896638Z
gsd-2024-33867	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.808129Z
gsd-2024-33866	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.819755Z
gsd-2024-33865	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.790923Z
gsd-2024-33864	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.792101Z
gsd-2024-33863	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824810Z
gsd-2024-33862	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.799465Z
gsd-2024-33861	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.958057Z
gsd-2024-33860	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.777612Z
gsd-2024-33859	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.867340Z
gsd-2024-33858	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.848478Z
gsd-2024-33857	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.834866Z
gsd-2024-33856	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.944669Z
gsd-2024-33855	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.741239Z
gsd-2024-33854	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.916266Z
gsd-2024-33853	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.825026Z
gsd-2024-33852	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.824312Z

ID	Description	Published	Updated
mal-2026-528	Malicious code in @shije/new-qs (npm)	2026-01-27T07:55:42Z	2026-01-27T07:55:43Z
mal-2025-41408	Malicious code in symphony-fairvis (npm)	2025-08-23T14:45:03Z	2026-01-27T03:00:15Z
mal-2026-460	Malicious code in pay-by-bank-dashboard-server (npm)	2026-01-22T11:37:45Z	2026-01-27T03:00:14Z
mal-2025-190622	Malicious code in com.unity.xr.visionos (npm)	2025-11-23T11:02:13Z	2026-01-27T03:00:12Z
mal-2026-520	Malicious code in ftm-noderpc (npm)	2026-01-27T02:44:52Z	2026-01-27T02:44:52Z
mal-2026-525	Malicious code in sandbox-hooks (npm)	2026-01-27T02:25:01Z	2026-01-27T02:25:02Z
mal-2026-522	Malicious code in magento-coding-standard-eslint-plugin (npm)	2026-01-27T02:25:01Z	2026-01-27T02:25:02Z
mal-2026-521	Malicious code in hammer-jquery (npm)	2026-01-27T02:25:01Z	2026-01-27T02:25:02Z
mal-2026-524	Malicious code in mapkit-example-vue (npm)	2026-01-27T02:25:01Z	2026-01-27T02:25:01Z
mal-2026-523	Malicious code in mapkit-example-svelte (npm)	2026-01-27T02:25:01Z	2026-01-27T02:25:01Z
mal-2026-519	Malicious code in @afg-ikea/ikea-modals (npm)	2026-01-27T02:11:41Z	2026-01-27T02:11:41Z
mal-2026-518	Malicious code in @afg-ikea/ikea-kiosk-related-components (npm)	2026-01-27T02:11:40Z	2026-01-27T02:11:41Z
mal-2026-517	Malicious code in @afg-ikea/ikea-family-registration-module (npm)	2026-01-27T02:11:40Z	2026-01-27T02:11:41Z
mal-2024-2814	Malicious code in overstock-logger (npm)	2024-06-25T12:54:37Z	2026-01-27T01:55:40Z
mal-2026-515	Malicious code in overstock-jenkins (npm)	2026-01-27T01:45:37Z	2026-01-27T01:45:37Z
mal-2026-513	Malicious code in overstock-component-library-v3 (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:37Z
mal-2026-511	Malicious code in ostk-otel-autoconfig (npm)	2026-01-27T01:45:37Z	2026-01-27T01:45:37Z
mal-2026-516	Malicious code in overstock-login-layer (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-514	Malicious code in overstock-health-express (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-512	Malicious code in overstock-component-library (npm)	2026-01-27T01:45:36Z	2026-01-27T01:45:36Z
mal-2026-510	Malicious code in radishwxm5 (PyPI)	2026-01-26T19:50:28Z	2026-01-26T19:50:28Z
mal-2026-509	Malicious code in @sommos/create-program-template-form-data (npm)	2026-01-26T18:20:46Z	2026-01-26T18:20:46Z
mal-2026-489	Malicious code in rank4222wun (npm)	2026-01-23T08:25:42Z	2026-01-26T17:27:40Z
mal-2026-508	Malicious code in cartos-dds-ui (npm)	2026-01-26T16:41:17Z	2026-01-26T16:41:17Z
mal-2026-507	Malicious code in tripica-library (npm)	2026-01-26T15:31:06Z	2026-01-26T15:31:06Z
mal-2026-492	Malicious code in tableates (PyPI)	2026-01-23T13:57:05Z	2026-01-26T09:47:49Z
mal-2026-490	Malicious code in tabletes (PyPI)	2026-01-23T10:19:25Z	2026-01-26T08:49:11Z
mal-2026-506	Malicious code in selenium-integration (PyPI)	2026-01-25T16:56:33Z	2026-01-25T16:56:33Z
mal-2026-505	Malicious code in flask-hookserver (PyPI)	2026-01-25T11:13:11Z	2026-01-25T11:25:04Z
mal-2026-504	Malicious code in researchpoc (PyPI)	2026-01-25T10:54:30Z	2026-01-25T10:54:30Z

ID	Description	Published	Updated
wid-sec-w-2025-2751	WebKitGTK: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2741	cPython: Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2740	ffmpeg: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-12-03T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2737	libpng: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2025-12-03T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2724	Golang Go: Mehrere Schwachstellen	2025-12-02T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2694	MariaDB: Schwachstelle ermöglicht Codeausführung	2025-11-27T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2663	libpng: Mehrere Schwachstellen	2025-11-23T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2657	WebKitGTK: Mehrere Schwachstellen	2025-11-20T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2645	Golang Go: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2616	libvirt: Schwachstelle ermöglicht Offenlegung von Informationen	2025-11-17T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2607	Red Hat Enterprise Linux (lasso): Eine Schwachstelle ermöglichen Codeausführung	2025-11-16T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2600	PostgreSQL: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-13T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2595	Linux Kernel: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2579	Linux Kernel: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2468	CPython: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2450	Linux Kernel: Mehrere Schwachstellen	2025-10-29T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2449	GIMP: Schwachstelle ermöglicht Codeausführung	2025-10-29T23:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2394	Linux Kernel: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2365	Oracle Java SE: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2298	Linux Kernel: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2269	WebKitGTK: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung	2025-10-13T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2230	Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien	2025-10-07T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2229	Linux Kernel: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2227	Golang Go: Mehrere Schwachstellen	2025-10-07T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2212	OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung	2025-10-06T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2194	Linux Kernel: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2166	OpenSSL und LibreSSL: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2153	VMware Cloud Foundation, vSphere, Aria Operations und Tools: Mehrere Schwachstellen	2025-09-29T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00
wid-sec-w-2025-2144	binutils: Mehrere Schwachstellen	2025-09-28T22:00:00.000+00:00	2026-01-21T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2026-0010	Kwetsbaarheden verholpen in Microsoft Office	2026-01-13T19:18:45.984019Z	2026-01-13T19:18:45.984019Z
ncsc-2026-0009	Kwetsbaarheden verholpen in Microsoft Azure	2026-01-13T19:17:59.629364Z	2026-01-13T19:17:59.629364Z
ncsc-2026-0008	Kwetsbaarheid verholpen in Microsoft SQL Server	2026-01-13T19:17:18.848673Z	2026-01-13T19:17:18.848673Z
ncsc-2026-0007	Kwetsbaarheden verholpen in Microsoft Windows	2026-01-13T19:16:30.720079Z	2026-01-13T19:16:30.720079Z
ncsc-2026-0006	Kwetsbaarheden verholpen in SAP producten	2026-01-13T14:42:24.621603Z	2026-01-13T14:42:24.621603Z
ncsc-2026-0005	Kwetsbaarheden verholpen in Siemens producten	2026-01-13T12:05:57.353070Z	2026-01-13T12:05:57.353070Z
ncsc-2026-0004	Kwetsbaarheden verholpen in Trend Micro Apex Central	2026-01-09T11:14:58.910197Z	2026-01-09T11:14:58.910197Z
ncsc-2026-0003	Kwetsbaarheden verholpen in GitLab	2026-01-09T11:11:48.308357Z	2026-01-09T11:11:48.308357Z
ncsc-2026-0002	Kwetsbaarheid verholpen in n8n	2026-01-08T12:34:29.315681Z	2026-01-08T12:34:29.315681Z
ncsc-2026-0001	Kwetsbaarheden verholpen in Hanwha camera systemen	2026-01-08T12:28:21.446188Z	2026-01-08T12:28:21.446188Z
ncsc-2025-0405	Kwetsbaarheid verholpen in Roundcube Webmail	2025-12-31T14:29:26.821576Z	2025-12-31T14:29:26.821576Z
ncsc-2025-0404	Kwetsbaarheid verholpen in SmarterMail	2025-12-31T14:19:01.847364Z	2025-12-31T14:19:01.847364Z
ncsc-2025-0403	Kwetsbaarheden verholpen in QNAP besturingssystemen	2025-12-29T09:17:28.385450Z	2025-12-29T09:17:28.385450Z
ncsc-2025-0402	Kwetsbaarheid verholpen in MongoDB	2025-12-27T11:38:11.514349Z	2025-12-27T11:38:11.514349Z
ncsc-2025-0399	Kwetsbaarheid verholpen in HPE OneView Software	2025-12-18T18:38:20.794784Z	2025-12-24T11:29:46.123674Z
ncsc-2025-0401	Kwetsbaarheden verholpen in Foxit PDF Reader	2025-12-24T09:14:56.590353Z	2025-12-24T09:14:56.590353Z
ncsc-2025-0400	Kwetsbaarheid verholpen in WatchGuard Firebox	2025-12-19T11:16:01.438518Z	2025-12-19T11:16:01.438518Z
ncsc-2025-0398	Kwetsbaarheid in Cisco AsyncOS	2025-12-17T19:47:00.346651Z	2025-12-17T19:47:00.346651Z
ncsc-2025-0397	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2025-12-15T09:08:39.804149Z	2025-12-15T09:08:39.804149Z
ncsc-2025-0396	Kwetsbaarheden verholpen in Apple macOS	2025-12-15T09:06:36.450655Z	2025-12-15T09:06:36.450655Z
ncsc-2025-0394	Kwetsbaarheden verholpen in React Server Components	2025-12-12T09:04:19.324080Z	2025-12-12T10:46:34.688189Z
ncsc-2025-0395	Kwetsbaarheden verholpen in SAP Software	2025-12-12T09:29:08.429888Z	2025-12-12T09:29:08.429888Z
ncsc-2025-0393	Kwetsbaarheid verholpen in GeoServer	2025-12-12T08:12:18.831044Z	2025-12-12T09:02:27.681292Z
ncsc-2025-0392	Kwetsbaarheid verholpen in Barracuda Service Center	2025-12-11T13:53:23.819008Z	2025-12-11T13:53:23.819008Z
ncsc-2025-0391	Kwetsbaarheden verholpen in Ivanti Endpoint Manager	2025-12-11T13:51:55.178462Z	2025-12-11T13:51:55.178462Z
ncsc-2025-0390	Kwetsbaarheden verholpen in GitLab CE/EE	2025-12-11T09:22:54.841848Z	2025-12-11T09:22:54.841848Z
ncsc-2025-0389	Kwetsbaarheden verholpen in Adobe Experience Manager	2025-12-10T14:59:57.911864Z	2025-12-10T14:59:57.911864Z
ncsc-2025-0388	Kwetsbaarheden verholpen in Adobe Acrobat Reader	2025-12-10T13:35:58.314547Z	2025-12-10T13:35:58.314547Z
ncsc-2025-0387	Kwetsbaarheden verholpen in Adobe ColdFusion	2025-12-10T13:34:08.908897Z	2025-12-10T13:34:08.908897Z
ncsc-2025-0385	Kwetsbaarheden verholpen in Microsoft Exchange	2025-12-09T18:42:32.332749Z	2025-12-09T18:42:32.332749Z

ID	Description	Published	Updated
ssa-673996	SSA-673996: Buffer Overflow Vulnerability in Third-Party Component in SICAM and SITIPE Products	2024-09-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-626856	SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-471761	SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-420375	SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP)	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-416652	SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-408105	SSA-408105: Buffer Overflow Vulnerabilities in OpenSSL 3.0 Affecting Siemens Products	2022-12-13T00:00:00Z	2025-12-09T00:00:00Z
ssa-392859	SSA-392859: Local Arbitrary Code Execution Vulnerability in Siemens Engineering Platforms before V20	2024-12-10T00:00:00Z	2025-12-09T00:00:00Z
ssa-356310	SSA-356310: Multiple Vulnerabilities in Gridscale X Prepay	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-202008	SSA-202008: Multiple Vulnerabilities in Ruggedcom Rox Before V2.17.0	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
ssa-241605	SSA-241605: Out of Bounds Read in PS/IGES Parasolid Translator Component Before V29.0.258	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-190588	SSA-190588: Cross-Site Scripting Vulnerability in Mendix Rich Text Widget	2025-11-17T00:00:00Z	2025-11-17T00:00:00Z
ssa-794185	SSA-794185: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SIPROTEC, SICAM and Related Products	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-770770	SSA-770770: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.7 on RUGGEDCOM APE1808 Devices	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-750499	SSA-750499: Weak Encryption Vulnerability in SIPROTEC 5 Devices	2024-07-09T00:00:00Z	2025-11-11T00:00:00Z
ssa-726617	SSA-726617: Incorrect Privilege Assignment Vulnerability in Mendix OIDC SSO Module	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-711309	SSA-711309: Denial of Service Vulnerability in the OPC UA Implementations of SIMATIC Products	2023-09-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-687955	SSA-687955: Accessible Development Shell via Physical Interface in SIPROTEC 5	2025-02-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-682326	SSA-682326: Multiple Vulnerabilities in COMOS before V10.4.5	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-631336	SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6	2022-06-14T00:00:00Z	2025-11-11T00:00:00Z
ssa-552874	SSA-552874: Denial of Service Vulnerability in SIPROTEC 5 Devices	2022-12-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-522291	SSA-522291: Improper Certificate Validation Vulnerability in Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-514895	SSA-514895: Multiple Vulnerabilities in Altair Grid Engine V2025.1.0	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-365596	SSA-365596: DLL Hijacking Vulnerability in Siemens Software Center and Solid Edge	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-339694	SSA-339694: Multiple Vulnerabilities in Spectrum Power 4 Before v4.70 SP12 Security Patch 2	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-322980	SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices	2023-04-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-301229	SSA-301229: Client-Side Enforcement of Server-Side Security Vulnerabilities in RUGGEDCOM ROX II	2025-05-13T00:00:00Z	2025-11-11T00:00:00Z
ssa-267056	SSA-267056: Multiple Vulnerabilities in LOGO! 8 BM Devices	2025-11-11T00:00:00Z	2025-11-11T00:00:00Z
ssa-225578	SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3	2022-07-12T00:00:00Z	2025-11-11T00:00:00Z
ssa-216014	SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGs	2025-03-11T00:00:00Z	2025-11-11T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:0667	Red Hat Security Advisory: firefox security update	2026-01-15T08:26:09+00:00	2026-01-27T06:58:56+00:00
rhsa-2026:1025	Red Hat Security Advisory: osbuild-composer security update	2026-01-22T16:47:34+00:00	2026-01-27T03:33:02+00:00
rhsa-2026:1072	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.15.1 security update	2026-01-25T22:43:46+00:00	2026-01-27T03:33:01+00:00
rhsa-2026:1071	Red Hat Security Advisory: multicluster engine for Kubernetes v2.10.1 security update	2026-01-25T22:31:05+00:00	2026-01-27T03:33:00+00:00
rhsa-2026:1067	Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.10.1	2026-01-23T16:45:25+00:00	2026-01-27T03:33:00+00:00
rhsa-2026:1027	Red Hat Security Advisory: RHOAI 3.2 - Red Hat OpenShift AI	2026-01-22T16:34:27+00:00	2026-01-27T03:32:59+00:00
rhsa-2026:1026	Red Hat Security Advisory: RHOAI 3.2 - Red Hat OpenShift AI	2026-01-22T16:34:21+00:00	2026-01-27T03:32:58+00:00
rhsa-2026:1018	Red Hat Security Advisory: Red Hat OpenShift GitOps v1.17.4 security update	2026-01-22T15:52:24+00:00	2026-01-27T03:32:57+00:00
rhsa-2026:1017	Red Hat Security Advisory: Red Hat OpenShift GitOps v1.18.3 security update	2026-01-22T15:47:03+00:00	2026-01-27T03:32:57+00:00
rhsa-2026:0671	Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.8.4	2026-01-15T08:34:14+00:00	2026-01-27T03:32:56+00:00
rhsa-2026:0987	Red Hat Security Advisory: osbuild-composer security update	2026-01-22T11:30:22+00:00	2026-01-27T03:32:55+00:00
rhsa-2026:0973	Red Hat Security Advisory: osbuild-composer security update	2026-01-22T05:34:26+00:00	2026-01-27T03:32:55+00:00
rhsa-2026:0414	Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage	2026-01-08T22:34:17+00:00	2026-01-27T03:32:52+00:00
rhsa-2026:0663	Red Hat Security Advisory: OpenShift Container Platform 4.20.11 bug fix and security update	2026-01-22T03:28:29+00:00	2026-01-27T03:32:51+00:00
rhsa-2026:0531	Red Hat Security Advisory: Red Hat Developer Hub 1.8.2 release.	2026-01-13T21:28:08+00:00	2026-01-27T03:32:50+00:00
rhsa-2026:0530	Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.6.12	2026-01-13T20:48:49+00:00	2026-01-27T03:32:50+00:00
rhsa-2026:0527	Red Hat Security Advisory: VolSync v0.14 security fixes and container updates	2026-01-13T16:52:50+00:00	2026-01-27T03:32:49+00:00
rhsa-2026:0477	Red Hat Security Advisory: skopeo security update	2026-01-12T20:03:23+00:00	2026-01-27T03:32:48+00:00
rhsa-2026:0426	Red Hat Security Advisory: buildah security update	2026-01-12T03:32:03+00:00	2026-01-27T03:32:48+00:00
rhsa-2026:0424	Red Hat Security Advisory: podman security update	2026-01-12T02:26:08+00:00	2026-01-27T03:32:47+00:00
rhsa-2026:0245	Red Hat Security Advisory: grafana security update	2026-01-07T14:45:51+00:00	2026-01-27T03:32:47+00:00
rhsa-2026:0314	Red Hat Security Advisory: osbuild-composer security update	2026-01-08T11:35:59+00:00	2026-01-27T03:32:46+00:00
rhsa-2026:0261	Red Hat Security Advisory: Red Hat Developer Hub 1.7.4 release.	2026-01-07T18:34:52+00:00	2026-01-27T03:32:46+00:00
rhsa-2026:0246	Red Hat Security Advisory: grafana security update	2026-01-07T14:46:41+00:00	2026-01-27T03:32:45+00:00
rhsa-2026:0244	Red Hat Security Advisory: grafana security update	2026-01-07T14:38:56+00:00	2026-01-27T03:32:44+00:00
rhsa-2026:0243	Red Hat Security Advisory: grafana security update	2026-01-07T14:43:26+00:00	2026-01-27T03:32:43+00:00
rhsa-2026:0227	Red Hat Security Advisory: osbuild-composer security update	2026-01-07T11:32:40+00:00	2026-01-27T03:32:43+00:00
rhsa-2026:0226	Red Hat Security Advisory: osbuild-composer security update	2026-01-07T12:46:50+00:00	2026-01-27T03:32:43+00:00
rhsa-2026:0050	Red Hat Security Advisory: Red Hat OpenShift Builds 1.6.2	2026-01-05T08:04:03+00:00	2026-01-27T03:32:42+00:00
rhsa-2025:9759	Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update	2025-07-02T17:25:30+00:00	2026-01-27T03:32:42+00:00

ID	Description	Published	Updated
icsa-25-352-07	Rockwell Automation Micro820, Micro850, Micro870	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-06	Advantech WebAccess/SCADA	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-04	Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electrics Products	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-03	National Instruments LabView	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-25-352-01	Inductive Automation Ignition	2025-12-18T07:00:00.000000Z	2025-12-18T07:00:00.000000Z
icsa-24-291-03	Mitsubishi Electric CNC Series (Update C)	2024-10-17T06:00:00.000000Z	2025-12-18T07:00:00.000000Z
va-25-352-01	BullWall Ransomware Containment and Server Intrusion Protection multiple vulnerabilities	2025-12-18T00:00:00Z	2025-12-18T00:00:00Z
icsa-25-350-04	Mitsubishi Electric GT Designer3	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-03	Hitachi Energy AFS, AFR and AFF Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-02	Johnson Controls PowerG, IQPanel and IQHub	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-350-01	Güralp Systems Fortimus Series, Minimus Series, and Certimus Series	2025-12-16T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-308-01	Fuji Electric Monitouch V-SFT-6 (Update A)	2025-11-04T07:00:00.000000Z	2025-12-16T07:00:00.000000Z
icsa-25-224-02	Johnson Controls iSTAR Ultra, iSTAR Ultra SE, iSTAR Ultra G2, iSTAR Ultra G2 SE, iSTAR Edge G2 (Update A)	2025-08-12T06:00:00.000000Z	2025-12-16T07:00:00.000000Z
va-25-345-01	CISA Software Acquisition Guide Supplier Response Web Tool XSS	2025-12-12T20:27:47Z	2025-12-12T20:27:47Z
icsma-25-345-02	Varex Imaging Panoramic Dental Imaging Software	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsma-25-345-01	Grassroots DICOM (GDCM)	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-10	OpenPLC_V3	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-02	Johnson Controls iSTAR Ultra	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
icsa-25-345-01	Johnson Controls iSTAR	2025-12-11T07:00:00.000000Z	2025-12-11T07:00:00.000000Z
va-25-343-01	Windscribe for Linux 'changeMTU' local privilege escalation	2025-12-10T16:46:41Z	2025-12-10T16:46:41Z
icsa-25-343-01	Universal Boot Loader (U-Boot)	2025-12-09T07:00:00.000000Z	2025-12-09T07:00:00.000000Z
icsa-25-343-03	Multiple India-based CCTV Cameras**	2025-12-09T05:00:00.000000Z	2025-12-09T05:00:00.000000Z
icsa-25-345-09	Siemens Gridscale X Prepay	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-08	Siemens Energy Services	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-07	Siemens Building X - Security Manager Edge Controller	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-06	Siemens SINEMA Remote Connect Server	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-05	Siemens Advanced Licensing (SALT) Toolkit	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-345-04	Siemens IAM Client	2025-12-09T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-22	Siemens Web Installer (SSA-282044)	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z
icsa-25-226-11	Siemens SIMATIC S7-PLCSIM	2025-08-12T00:00:00.000000Z	2025-12-09T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-cv-xss-rwrakaj9	Cisco Cyber Vision Center Stored Cross-Site Scripting Vulnerabilities	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cucm-stored-xss-fnj66yly	Cisco Unified Communications Manager Stored Cross-Site Scripting Vulnerability	2025-10-01T16:00:00+00:00	2025-10-01T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-acl-l4k7vxgd	Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-action-frame-inj-qqcncz8h	Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp	Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-snmp-bypass-hhuvujdn	Cisco IOS XE SD-WAN Software Packet Filtering Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-09-22T14:12:28+00:00
cisco-sa-xrsig-uy4zrucg	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-iosxr-arp-storm-ejuu55ym	Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-acl-packetio-swjhhbtz	Cisco IOS XR Software Management Interface ACL Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-fp2k-ipsec-dos-tjwgdzco	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 2100 Series IPv6 over IPsec Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-09T21:22:34+00:00
cisco-sa-webex-xss-55bv8hhm	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-webex-urlredirect-uk8ddjsz	Cisco Webex Meetings URL Redirection Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-phone-write-g3kcc5df	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-imp-xss-xqgu4hsg	Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-xjqzsycp	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-info-dis-zhppmfgz	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epni-arb-file-upload-jjdm2p83	Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-cucm-csrf-w762pryd	Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-3100_4200_tlsdos-2ynscd54	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software for Firepower 3100 and 4200 Series TLS 1.3 Cipher Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-09-03T13:37:50+00:00
cisco-sa-ucs-xss-ey6xhyps	Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00

ID	Description	Published	Updated
sca-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
SCA-2023-0009	Vulnerability in Wibu-Systems CodeMeter Runtime affects multiple SICK products	2023-09-29T10:00:00.000Z	2023-09-29T10:00:00.000Z
sca-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
SCA-2023-0007	Vulnerabilities in SICK LMS5xx	2023-08-25T11:00:00.000Z	2023-08-25T11:00:00.000Z
sca-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
SCA-2023-0006	Vulnerabilities in SICK ICR890-4	2023-07-10T13:00:00.000Z	2023-07-10T13:00:00.000Z
sca-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
SCA-2023-0005	Vulnerabilities in SICK EventCam App	2023-06-19T11:00:00.000Z	2023-06-19T11:00:00.000Z
sca-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
SCA-2023-0004	Vulnerabilities in SICK FTMg	2023-05-11T13:00:00.000Z	2023-05-11T13:00:00.000Z
sca-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
SCA-2023-0003	Vulnerability in SICK Flexi Soft and Flexi Classic Gateways	2023-05-03T13:00:00.000Z	2023-05-03T13:00:00.000Z
sca-2023-0002	Use of Telnet in multiple SICK Flexi Soft and Flexi Classic Gateways	2023-04-11T10:00:00.000Z	2023-04-11T10:00:00.000Z
sca-2023-0001	Bootloader mode vulnerability in Flexi Soft Gateways v3	2023-02-20T14:00:00.000Z	2023-02-20T14:00:00.000Z
sca-2022-0015	Use of a Broken or Risky Cryptographic Algorithm in SICK RFU6xx RADIO FREQUEN. SENSOR	2022-12-08T16:00:00.000Z	2022-12-08T16:00:00.000Z
sca-2022-0013	Password recovery vulnerability affects multiple SICK SIMs	2022-10-21T13:00:00.000Z	2022-11-04T14:00:00.000Z
sca-2022-0014	SICK FlexiCompact affected by Denial of Service vulnerability	2022-10-31T11:00:00.000Z	2022-10-31T11:00:00.000Z
sca-2022-0012	OpenSSL vulnerability affects multiple SICK SIMs	2022-08-08T13:00:00.000Z	2022-08-03T13:00:00.000Z
sca-2022-0010	Vulnerability in SICK Flexi Soft Designer & Safety Designer	2022-05-16T10:00:00.000Z	2022-07-19T10:00:00.000Z
sca-2022-0011	Vulnerabilities in SICK Package Analytics	2022-06-08T15:00:00.000Z	2022-06-08T15:00:00.000Z
sca-2022-0009	Vulnerability in SICK Flexi Soft PROFINET IO Gateway FX0-GPNT and SICK microScan3 PROFINET	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0008	Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0007	Vulnerabilities in SICK MARSIC300	2022-04-21T15:00:00.000Z	2022-04-21T15:00:00.000Z
sca-2022-0006	Vulnerability in SICK MSC800	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0005	Vulnerability in SICK Overall Equipment Effectiveness (OEE)	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0004	Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC	2022-04-11T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0003	Vulnerabilities in SICK FTMg	2022-03-31T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0002	PwnKit vulnerability affects multiple SICK IPCs	2022-02-23T16:00:00.000Z	2022-02-23T16:00:00.000Z
sca-2022-0001	Vulnerability in SICK FieldEcho	2022-02-17T16:00:00.000Z	2022-02-17T16:00:00.000Z
sca-2021-0003	SICK Security Advisory for Apache Log4j (CVE-2021-44228)	2021-12-14T17:00:00.000Z	2021-12-17T12:00:00.000Z

ID	Description	Published	Updated
nn-2023_10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023_1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:9-01	Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:8-01	Session Fixation in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:7-01	DoS via SAML configuration in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:6-01	Partial DoS on Reports section due to null report name in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:4-01	Stored Cross-Site Scripting (XSS) in Threat Intelligence rules in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:3-01	Authenticated Blind SQL Injection on alerts count in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:2-01	Authenticated Blind SQL Injection on sorting in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:11-01	SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2023:1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022_2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022_2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021_2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021_1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021:2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2021:1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020_3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020_2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020:3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2020:2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019_2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019_1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019:2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019:1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2024-26914	drm/amd/display: fix incorrect mpc_combine array size	2024-04-02T07:00:00.000Z	2026-01-20T14:49:44.000Z
msrc_cve-2025-9231	Timing side-channel in SM2 algorithm on 64 bit ARM	2025-09-02T00:00:00.000Z	2026-01-20T14:49:03.000Z
msrc_cve-2025-37822	riscv: uprobes: Add missing fence.i after building the XOL buffer	2025-05-02T00:00:00.000Z	2026-01-20T14:49:00.000Z
msrc_cve-2025-37882	usb: xhci: Fix isochronous Ring Underrun/Overrun event handling	2025-05-02T00:00:00.000Z	2026-01-20T14:48:50.000Z
msrc_cve-2025-37856	btrfs: harden block_group::bg_list against list_del() races	2025-05-02T00:00:00.000Z	2026-01-20T14:48:39.000Z
msrc_cve-2025-37750	smb: client: fix UAF in decryption with multichannel	2025-05-02T00:00:00.000Z	2026-01-20T14:48:29.000Z
msrc_cve-2025-37747	perf: Fix hang while freeing sigtrap event	2025-05-02T00:00:00.000Z	2026-01-20T14:48:19.000Z
msrc_cve-2025-37807	bpf: Fix kmemleak warning for percpu hashmap	2025-05-02T00:00:00.000Z	2026-01-20T14:48:18.000Z
msrc_cve-2025-40300	x86/vmscape: Add conditional IBPB mitigation	2025-09-02T00:00:00.000Z	2026-01-20T14:48:17.000Z
msrc_cve-2024-24856	NULL pointer deference in acpi_db_convert_to_package of Linux acpi module	2024-04-02T07:00:00.000Z	2026-01-20T14:47:47.000Z
msrc_cve-2025-39825	smb: client: fix race with concurrent opens in rename(2)	2025-09-02T00:00:00.000Z	2026-01-20T14:47:36.000Z
msrc_cve-2025-39819	fs/smb: Fix inconsistent refcnt update	2025-09-02T00:00:00.000Z	2026-01-20T14:47:25.000Z
msrc_cve-2025-39812	sctp: initialize more fields in sctp_v6_from_sk()	2025-09-02T00:00:00.000Z	2026-01-20T14:47:14.000Z
msrc_cve-2025-39808	HID: hid-ntrig: fix unable to handle page fault in ntrig_report_version()	2025-09-02T00:00:00.000Z	2026-01-20T14:47:02.000Z
msrc_cve-2025-37745	PM: hibernate: Avoid deadlock in hibernate_compressor_param_set()	2025-05-02T00:00:00.000Z	2026-01-20T14:46:53.000Z
msrc_cve-2025-39800	btrfs: abort transaction on unexpected eb generation at btrfs_copy_root()	2025-09-02T00:00:00.000Z	2026-01-20T14:46:52.000Z
msrc_cve-2025-39798	NFS: Fix the setting of capabilities when automounting a new filesystem	2025-09-02T00:00:00.000Z	2026-01-20T14:46:41.000Z
msrc_cve-2025-39787	soc: qcom: mdt_loader: Ensure we don't read past the ELF header	2025-09-02T00:00:00.000Z	2026-01-20T14:46:32.000Z
msrc_cve-2025-39772	drm/hisilicon/hibmc: fix the hibmc loaded failed bug	2025-09-02T00:00:00.000Z	2026-01-20T14:46:21.000Z
msrc_cve-2025-37826	scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()	2025-05-02T00:00:00.000Z	2026-01-20T14:44:49.000Z
msrc_cve-2025-37877	iommu: Clear iommu-dma ops on cleanup	2025-05-02T00:00:00.000Z	2026-01-20T14:44:38.000Z
msrc_cve-2025-37920	xsk: Fix race condition in AF_XDP generic RX path	2025-05-02T00:00:00.000Z	2026-01-20T14:43:35.000Z
msrc_cve-2025-59825	astral-tokio-tar has a path traversal in tar extraction	2025-09-02T00:00:00.000Z	2026-01-20T14:43:21.000Z
msrc_cve-2025-37870	drm/amd/display: prevent hang on link training fail	2025-05-02T00:00:00.000Z	2026-01-20T14:43:14.000Z
msrc_cve-2025-39859	ptp: ocp: fix use-after-free bugs causing by ptp_ocp_watchdog	2025-09-02T00:00:00.000Z	2026-01-20T14:43:11.000Z
msrc_cve-2025-37834	mm/vmscan: don't try to reclaim hwpoison folio	2025-05-02T00:00:00.000Z	2026-01-20T14:43:05.000Z
msrc_cve-2025-39850	vxlan: Fix NPD in {arp,neigh}_reduce() when using nexthop objects	2025-09-02T00:00:00.000Z	2026-01-20T14:43:00.000Z
msrc_cve-2025-39862	wifi: mt76: mt7915: fix list corruption after hardware restart	2025-09-02T00:00:00.000Z	2026-01-20T14:42:49.000Z
msrc_cve-2025-39851	vxlan: Fix NPD when refreshing an FDB entry with a nexthop object	2025-09-02T00:00:00.000Z	2026-01-20T14:42:38.000Z
msrc_cve-2025-39810	bnxt_en: Fix memory corruption when FW resources change during ifdown	2025-09-02T00:00:00.000Z	2026-01-20T14:42:27.000Z

ID	Description	Published	Updated
2nga002579	ABB Arctic communication solution ARM600 Vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
2nga002427	ABB Arctic ARG600, ARC600, ARR600, ARP600 Arctic Wireless Gateway Modem Module and OpenSSH vulnerabilities	2025-04-07T10:30:00.000Z	2025-04-07T10:30:00.000Z
9akk108470a9494	Low Voltage DC Drives and Power Controllers CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
9akk108470a9491	ABB ACS880 +N8010 Drives CODESYS RTS Vulnerabilities	2025-03-26T00:30:00.000Z	2025-03-27T00:30:00.000Z
sa24p015	B&R APROL Potential Privilege Escalation and Information Disclosure	2025-03-24T00:30:00.000Z	2025-03-24T00:30:00.000Z
9akk108470a8565	RMC-100 Vulnerability in the Web UI (REST Interface)	2025-03-11T00:30:00.000Z	2025-03-11T00:30:00.000Z
9akk108470a5684	FLXeon Controllers Cyber Security Advisory	2025-01-20T00:30:00.000Z	2025-02-14T00:30:00.000Z
7paa012159	System 800xA 5.1.x, 6.0.3.x, 6.1.1.x, 6.2.x - VideONet Camera passwords stored in clear text	2025-02-10T00:30:00.000Z	2025-02-10T00:30:00.000Z
9akk108470a6775	Hardcoded credentials in ASPECT Energy Management System	2025-02-05T00:30:00.000Z	2025-02-06T00:30:00.000Z
sa25p001	Automation Runtime and mapp View Use of insecure algorithm for self-signed certificates	2025-01-15T00:30:00.000Z	2025-01-16T00:30:00.000Z
9akk108470a5466	Drive Composer Path Traversal Vulnerability	2025-02-05T00:30:00.000Z	2025-01-10T00:30:00.000Z
3adr011377	AC500 V3 Multiple vulnerabilities	2025-01-07T00:30:00.000Z	2025-01-07T00:30:00.000Z

ID	Description	Updated
var-202001-0832	A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistic…	2024-07-23T22:37:43.319000Z
var-201208-0222	Multiple stack-based buffer overflows in msg_server.exe in SAP NetWeaver ABAP 7.x allow r…	2024-07-23T22:37:43.393000Z
var-202108-1148	An access issue was addressed with improved access restrictions. This issue is fixed in m…	2024-07-23T22:36:01.656000Z
var-200202-0006	Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause…	2024-07-23T22:34:48.127000Z
var-202007-0395	Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities …	2024-07-23T22:33:57.481000Z
var-201805-1147	WPLSoft in Delta Electronics versions 2.45.0 and prior utilizes a fixed length heap buffe…	2024-07-23T22:32:10.966000Z
var-201902-0647	LCDS Laquis SCADA prior to version 4.1.0.4150 allows execution of script code by opening …	2024-07-23T22:32:09.990000Z
var-201908-0863	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE…	2024-07-23T22:30:33.144000Z
var-201912-0120	A memory corruption issue was addressed with improved validation. This issue is fixed in …	2024-07-23T22:30:32.761000Z
var-201912-0114	A memory corruption issue was addressed with improved validation. This issue is fixed in …	2024-07-23T22:30:32.792000Z
var-202305-1589	D-Link DIR-2150 SetSysEmailSettings EmailTo Command Injection Remote Code Execution Vulne…	2024-07-23T22:30:26.856000Z
var-202407-0235	Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res…	2024-07-23T22:30:24.825000Z
var-202407-0234	Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data …	2024-07-23T22:30:24.699000Z
var-202407-0233	Delta Electronics CNCSoft-G2 lacks proper validation of the length of user-supplied data …	2024-07-23T22:30:24.731000Z
var-202407-0232	Delta Electronics CNCSoft-G2 lacks proper validation of user-supplied data, which can res…	2024-07-23T22:30:24.657000Z
var-201112-0097	Stack-based buffer overflow in the CmpWebServer component in 3S CoDeSys 3.4 SP4 Patch 2 a…	2024-07-23T22:29:05.132000Z
var-201801-0152	An Untrusted Pointer Dereference issue was discovered in Advantech WebAccess versions pri…	2024-07-23T22:28:30.754000Z
var-201801-0151	A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior …	2024-07-23T22:28:30.640000Z
var-201807-0341	ABB Panel Builder 800 all versions has an improper input validation vulnerability which m…	2024-07-23T22:28:27.949000Z
var-201806-1058	Crestron TSW-1060, TSW-760, TSW-560, TSW-1060-NC, TSW-760-NC, and TSW-560-NC devices befo…	2024-07-23T22:28:27.641000Z
var-201906-1029	In WebAccess/SCADA Versions 8.3.5 and prior, multiple untrusted pointer dereference vulne…	2024-07-23T22:28:26.009000Z
var-202004-0077	There are multiple ways an unauthenticated attacker could perform SQL injection on WebAcc…	2024-07-23T22:28:24.545000Z
var-202206-2050	The affected product is vulnerable to multiple SQL injections, which may allow an unautho…	2024-07-23T22:27:49.515000Z
var-202305-1981	D-Link DIR-2150 SetSysEmailSettings AccountName Command Injection Remote Code Execution V…	2024-07-23T22:27:44.287000Z
var-202305-0214	D-Link DIR-2640 HNAP LoginPassword Authentication Bypass Vulnerability. This vulnerabilit…	2024-07-23T22:27:44.496000Z
var-202305-0130	D-Link DIR-2640 EmailFrom Command Injection Remote Code Execution Vulnerability. This vul…	2024-07-23T22:27:44.522000Z
var-202407-0441	A vulnerability has been identified in SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC R…	2024-07-23T22:27:41.577000Z
var-201105-0156	Multiple buffer overflows in the ISSymbol ActiveX control in ISSymbol.ocx 61.6.0.0 and 30…	2024-07-23T22:25:52.955000Z
var-201402-0028	The process_rs function in the router advertisement daemon (radvd) before 1.8.2, when Uni…	2024-07-23T22:25:48.624000Z
var-201402-0027	The process_ra function in the router advertisement daemon (radvd) before 1.8.2 allows re…	2024-07-23T22:25:48.742000Z

ID	Description	Published	Updated
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2024-013260	Multiple vulnerabilities in Edgecross Basic Software for Windows	2024-11-22T10:59+09:00	2025-11-04T16:41+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00
jvndb-2025-000099	Progress Flowmon vulnerable to authenticated OS command injection	2025-11-04T12:47+09:00	2025-11-04T12:47+09:00
jvndb-2025-000096	Installer of WTW EAGLE (for Windows) may insecurely load Dynamic Link Libraries	2025-10-29T14:17+09:00	2025-10-29T14:17+09:00
jvndb-2025-000095	MZK-DP300N uses hard-coded credentials	2025-10-28T14:04+09:00	2025-10-28T14:04+09:00
jvndb-2025-014793	NIHON KOHDEN Central Monitor CNS-6201 vulnerable to NULL pointer dereference	2025-10-01T11:35+09:00	2025-10-27T12:28+09:00
jvndb-2025-000093	Multiple stored cross-site scripting vulnerabilities in Pleasanter	2025-10-24T15:11+09:00	2025-10-24T15:11+09:00
jvndb-2025-000084	GROWI vulnerable to cross-site scripting	2025-10-22T15:44+09:00	2025-10-22T15:44+09:00
jvndb-2025-000090	Multiple stored cross-site scripting vulnerabilities in Movable Type	2025-10-22T13:54+09:00	2025-10-22T13:54+09:00
jvndb-2025-000088	Lanscope Endpoint Manager (On-Premises) vulnerable to improper verification of source of a communication channel	2025-10-20T16:17+09:00	2025-10-22T10:06+09:00
jvndb-2025-000092	ETERNUS SF vulnerable to incorrect default permissions	2025-10-20T14:20+09:00	2025-10-20T14:20+09:00
jvndb-2025-000089	Installer of AutoDownloader may insecurely load Dynamic Link Libraries	2025-10-17T13:38+09:00	2025-10-17T13:38+09:00
jvndb-2025-000074	Multiple vulnerabilities in desknet's NEO	2025-10-16T17:30+09:00	2025-10-16T17:30+09:00

ID	Description	Updated
ts-2023-001	TS-2023-001	2023-01-17T00:00
ts-2022-005	TS-2022-005	2022-11-21T00:00
ts-2022-004	TS-2022-004	2022-11-21T00:00
ts-2022-003	TS-2022-003	2022-06-14T00:00
ts-2022-002	TS-2022-002	2022-05-11T00:00
ts-2022-001	TS-2022-001	2022-02-07T00:00

ID	Description	Published	Updated
suse-su-2026:0122-1	Security update for MozillaFirefox	2026-01-14T08:49:21Z	2026-01-14T08:49:21Z
suse-su-2026:0121-1	Security update for ovmf	2026-01-14T06:47:26Z	2026-01-14T06:47:26Z
suse-su-2026:0120-1	Security update for ovmf	2026-01-14T06:46:44Z	2026-01-14T06:46:44Z
suse-su-2026:0115-1	Security update for util-linux	2026-01-12T15:03:44Z	2026-01-12T15:03:44Z
suse-su-2026:0099-1	Security update for ImageMagick	2026-01-12T10:37:47Z	2026-01-12T10:37:47Z
suse-su-2026:0107-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:47Z	2026-01-12T10:34:47Z
suse-su-2026:0090-1	Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)	2026-01-12T10:34:10Z	2026-01-12T10:34:10Z
suse-su-2026:0087-1	Security update for libheif	2026-01-09T15:19:44Z	2026-01-09T15:19:44Z
suse-su-2026:0086-1	Security update for php8	2026-01-09T15:01:56Z	2026-01-09T15:01:56Z
suse-su-2026:0085-1	Security update for libpng16	2026-01-09T15:01:38Z	2026-01-09T15:01:38Z
suse-su-2026:0073-1	Security update for ImageMagick	2026-01-08T13:22:41Z	2026-01-08T13:22:41Z
suse-su-2026:0072-1	Security update for ImageMagick	2026-01-08T13:22:28Z	2026-01-08T13:22:28Z
suse-su-2026:0071-1	Security update for php8	2026-01-08T13:22:08Z	2026-01-08T13:22:08Z
suse-su-2026:0070-1	Security update for qemu	2026-01-08T13:21:59Z	2026-01-08T13:21:59Z
suse-su-2026:0069-1	Security update for rsync	2026-01-08T13:21:48Z	2026-01-08T13:21:48Z
suse-su-2026:0068-1	Security update for libvirt	2026-01-08T12:22:40Z	2026-01-08T12:22:40Z
suse-su-2026:0067-1	Security update for podman	2026-01-08T12:22:16Z	2026-01-08T12:22:16Z
suse-su-2026:0066-1	Security update for curl	2026-01-08T12:21:35Z	2026-01-08T12:21:35Z
suse-su-2026:0053-1	Security update for libpcap	2026-01-07T11:03:52Z	2026-01-07T11:03:52Z
suse-su-2026:0052-1	Security update for curl	2026-01-07T09:28:37Z	2026-01-07T09:28:37Z
suse-su-2026:0051-1	Security update for curl	2026-01-07T09:28:27Z	2026-01-07T09:28:27Z
suse-su-2026:0050-1	Security update for curl	2026-01-07T09:28:15Z	2026-01-07T09:28:15Z
suse-su-2026:0044-1	Security update for mozjs60	2026-01-06T16:10:16Z	2026-01-06T16:10:16Z
suse-su-2026:0043-1	Security update for qemu	2026-01-06T16:03:07Z	2026-01-06T16:03:07Z
suse-su-2026:0029-1	Security update for the Linux Kernel	2026-01-05T12:59:48Z	2026-01-05T12:59:48Z
suse-su-2026:0028-1	Security update for alloy	2026-01-05T12:53:11Z	2026-01-05T12:53:11Z
suse-su-2026:0027-1	Security update for python3	2026-01-05T12:47:16Z	2026-01-05T12:47:16Z
suse-su-2026:0025-1	Security update for python312	2026-01-05T12:11:09Z	2026-01-05T12:11:09Z
suse-su-2026:0024-1	Security update for python313	2026-01-05T12:10:23Z	2026-01-05T12:10:23Z
suse-su-2026:0023-1	Security update for erlang26	2026-01-05T12:06:04Z	2026-01-05T12:06:04Z

ID	Description	Published	Updated
opensuse-su-2026:10024-1	libsoup-2_4-1-2.74.3-13.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10023-1	libsoup-3_0-0-3.6.5-10.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10022-1	libsodium-devel-1.0.21-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10021-1	coredns-1.14.0-1.1 on GA media	2026-01-09T00:00:00Z	2026-01-09T00:00:00Z
opensuse-su-2026:10015-1	libwget4-2.2.1-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10014-1	python311-cbor2-5.8.0-2.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10013-1	apptainer-1.4.5-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10012-1	ImageMagick-7.1.2.12-1.1 on GA media	2026-01-07T00:00:00Z	2026-01-07T00:00:00Z
opensuse-su-2026:10006-1	dcmtk-3.7.0-1.1 on GA media	2026-01-05T00:00:00Z	2026-01-05T00:00:00Z
opensuse-su-2026:10005-1	python312-Django6-6.0-1.1 on GA media	2026-01-03T00:00:00Z	2026-01-03T00:00:00Z
opensuse-su-2026:10004-1	fluidsynth-2.5.2-1.1 on GA media	2026-01-03T00:00:00Z	2026-01-03T00:00:00Z
opensuse-su-2026:20001-1	Security update for sssd	2026-01-02T16:58:16Z	2026-01-02T16:58:16Z
opensuse-su-2026:20002-1	Security update for MozillaThunderbird	2026-01-02T12:14:18Z	2026-01-02T12:14:18Z
opensuse-su-2026:10002-1	libmatio-devel-1.5.29-1.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2026:10001-1	dirmngr-2.5.16-1.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2026:10000-1	gnu-recutils-1.9-3.1 on GA media	2026-01-01T00:00:00Z	2026-01-01T00:00:00Z
opensuse-su-2025:15853-1	weblate-5.14.3-2.1 on GA media	2025-12-30T00:00:00Z	2025-12-30T00:00:00Z
opensuse-su-2025:15848-1	python311-openapi-core-0.22.0-1.1 on GA media	2025-12-28T00:00:00Z	2025-12-28T00:00:00Z
opensuse-su-2025:15847-1	anubis-1.24.0-1.1 on GA media	2025-12-28T00:00:00Z	2025-12-28T00:00:00Z
opensuse-su-2025:15846-1	python39-3.9.25-2.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15845-1	podman-5.7.1-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15844-1	cpp-httplib-devel-0.28.0-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15843-1	buildah-1.42.2-1.1 on GA media	2025-12-24T00:00:00Z	2025-12-24T00:00:00Z
opensuse-su-2025:15841-1	zk-0.15.2-1.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15840-1	python315-3.15.0~a3-1.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15839-1	python310-3.10.19-3.1 on GA media	2025-12-22T00:00:00Z	2025-12-22T00:00:00Z
opensuse-su-2025:15832-1	coredns-for-k8s1.35-1.13.1-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15831-1	chromedriver-143.0.7499.146-1.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15830-1	alloy-1.12.0-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z
opensuse-su-2025:15829-1	ImageMagick-7.1.2.10-2.1 on GA media	2025-12-19T00:00:00Z	2025-12-19T00:00:00Z

ID	Description	Published	Updated
sevd-2025-014-03	Wind River VxWorks DHCP Server Vulnerability	2025-01-14T05:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2024-163-01	Modicon M340, Modbus/TCP Ethernet Modicon M340 module, and Modbus/TCP Ethernet Modicon M340 FactoryCast module	2024-06-11T00:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2025-189-04	EcoStruxure™ Power Monitoring Expert (PME) and EcoStruxure™ Power Operation (EPO) with Advanced Reporting and Dashboards	2025-07-08T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-189-03	EcoStruxure™ Power Operation	2025-07-08T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-189-02	System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs	2025-07-08T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-189-01	EcoStruxure™ IT Data Center Expert	2025-07-08T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-161-03	EVLink WallBox	2025-06-10T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-161-02	Modicon Controllers M241/M251/M258/LMC058/M262	2025-06-10T04:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2024-254-01	Vijeo Designer	2024-09-10T00:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2025-161-01	Insight Home and Insight Facility	2025-06-10T04:00:00.000Z	2025-06-10T04:00:00.000Z
sevd-2020-287-01	Web Server on Modicon M340, Modicon Quantum and Modicon Premium Legacy offers and their Communication Modules	2020-10-13T00:00:00.000Z	2025-06-10T04:00:00.000Z
sevd-2025-133-04	Schneider Electric PrismaSeT Active - Wireless Panel Server	2025-05-13T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-133-03	EcoStruxure Power Build Rapsody	2025-05-13T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-133-02	Wiser Home Automation	2025-05-13T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-098-01	ConneXium Network Manager Software	2025-04-08T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-014-09	EcoStruxure™ Power Build Rapsody	2025-01-14T00:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2024-282-05	EcoStruxure™ Power Monitoring Expert (PME)	2024-10-08T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2025-098-02	Trio™ Q Licensed Data Radios	2025-04-08T04:00:00.000Z	2025-04-08T04:00:00.000Z
sevd-2025-014-01	Modicon M580 PLCs, BMENOR2200H and EVLink Pro AC	2025-01-14T05:00:00.000Z	2025-04-08T04:00:00.000Z
sevd-2025-070-03	WebHMI Component For EcoStruxure™ Power Automation System User Interface and EcoStruxure™ Microgrid Operation Large	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-070-02	EPAS-UI & EcoSUI	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-070-01	EcoStruxure™ Panel Server	2025-03-11T04:00:00.000Z	2025-03-11T04:00:00.000Z
sevd-2025-042-04	Enerlin'X IFE and eIFE	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2025-042-03	EcoStruxure™ Process Expert, EcoStruxure™ Process Expert for AVEVA System Platform	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2025-042-01	ASCO 5310 / 5350 Remote Annunciator	2025-02-11T06:00:00.000Z	2025-02-11T06:00:00.000Z
sevd-2019-134-11	Modicon Controllers	2019-05-14T08:31:22.000Z	2025-02-11T06:00:00.000Z
sevd-2025-014-08	Power Logic HDPM6000 High-Density Metering System	2025-01-14T00:00:00.000Z	2025-01-14T00:00:00.000Z
sevd-2025-014-04	Web Designer for Modicon Communication Modules	2025-01-14T00:00:00.000Z	2025-01-14T00:00:00.000Z
sevd-2024-345-02	Harmony HMI and Pro-face HMI products	2024-12-10T00:00:00.000Z	2024-12-10T00:00:00.000Z
sevd-2024-345-01	PowerChute Serial Shutdown	2024-12-10T00:00:00.000Z	2024-12-10T00:00:00.000Z

ID	Description	Published	Updated
cnvd-2026-00039	Google Android信息泄露漏洞（CNVD-2026-00039）	2025-09-04	2026-01-04
cnvd-2026-00038	Google Android权限提升漏洞（CNVD-2026-00038）	2025-09-04	2026-01-04
cnvd-2026-00037	Google Android权限提升漏洞（CNVD-2026-00037）	2025-09-04	2026-01-04
cnvd-2026-00036	Google Android权限提升漏洞（CNVD-2026-00036）	2025-09-04	2026-01-04
cnvd-2026-00035	Google Android拒绝服务漏洞（CNVD-2026-00035）	2025-09-04	2026-01-04
cnvd-2026-00034	Google Android权限提升漏洞（CNVD-2026-00034）	2025-09-04	2026-01-04
cnvd-2026-00033	Google Android权限提升漏洞（CNVD-2026-00033）	2025-09-04	2026-01-04
cnvd-2026-00032	Google Android权限提升漏洞（CNVD-2026-00032）	2025-09-04	2026-01-04
cnvd-2026-00031	Google Android权限提升漏洞（CNVD-2026-00031）	2025-09-04	2026-01-04
cnvd-2026-00030	Microsoft Office Visio代码执行漏洞（CNVD-2026-00030）	2025-10-17	2026-01-04
cnvd-2026-00029	WordPress插件Publitio信息泄露漏洞	2025-10-31	2026-01-04
cnvd-2026-00028	Microsoft Office代码执行漏洞（CNVD-2026-00028）	2025-11-14	2026-01-04
cnvd-2026-00027	Microsoft Office代码执行漏洞（CNVD-2026-00027）	2025-11-14	2026-01-04
cnvd-2026-00026	Microsoft Excel信息泄漏漏洞（CNVD-2026-00026）	2025-11-14	2026-01-04
cnvd-2026-00025	Linksys E1200堆栈缓冲区溢出漏洞（CNVD-2026-00025）	2025-11-18	2026-01-04
cnvd-2026-00024	Linksys E1200堆栈缓冲区溢出漏洞（CNVD-2026-00024）	2025-11-18	2026-01-04
cnvd-2026-00023	Apache Kvrocks权限提升漏洞	2025-12-03	2026-01-04
cnvd-2026-00022	Apache bRPC拒绝服务漏洞（CNVD-2026-00022）	2025-12-03	2026-01-04
cnvd-2026-00021	Siemens SIMATIC CN 4100命令注入漏洞	2025-12-15	2026-01-04
cnvd-2026-00020	Siemens RUGGEDCOM ROX II注入漏洞（CNVD-2026-00020）	2025-12-15	2026-01-04
cnvd-2026-00019	Siemens RUGGEDCOM ROX II注入漏洞（CNVD-2026-00019）	2025-12-15	2026-01-04
cnvd-2026-00018	Siemens RUGGEDCOM ROX II注入漏洞（CNVD-2026-00018）	2025-12-15	2026-01-04
cnvd-2026-00017	Siemens RUGGEDCOM ROX II注入漏洞	2025-12-15	2026-01-04
cnvd-2026-00016	Siemens RUGGEDCOM ROX II命令注入漏洞（CNVD-2026-00016）	2025-12-15	2026-01-04
cnvd-2026-00015	Siemens RUGGEDCOM ROX II命令注入漏洞	2025-12-15	2026-01-04
cnvd-2026-00014	Siemens Gridscale X Prepay信息泄露漏洞	2025-12-15	2026-01-04
cnvd-2026-00013	Siemens Gridscale X Prepay安全绕过漏洞	2025-12-15	2026-01-04
cnvd-2026-00012	Microsoft Azure Cosmos DB欺骗漏洞	2025-12-25	2026-01-04
cnvd-2026-00011	Microsoft Azure Cognitive Service for Language权限提升漏洞	2025-12-25	2026-01-04
cnvd-2026-00010	Microsoft Edge (Chromium-based)欺骗漏洞（CNVD-2026-00010）	2025-12-25	2026-01-04

ID	Description	Published	Updated
certfr-2026-avi-0058	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0057	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0056	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0055	Multiples vulnérabilités dans GLPI	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0054	Multiples vulnérabilités dans Centreon Infra Monitoring	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0053	Vulnérabilité dans Traefik	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0052	Multiples vulnérabilités dans Mattermost Server	2026-01-16T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2025-avi-1122	Multiples vulnérabilités dans Mattermost Server	2025-12-18T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2026-avi-0051	Multiples vulnérabilités dans les produits Mozilla	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0050	Multiples vulnérabilités dans les produits Juniper Networks	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0049	Multiples vulnérabilités dans les produits Palo Alto Networks	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0048	Multiples vulnérabilités dans Wireshark	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0047	Vulnérabilité dans F5 NGINX Ingress Controller	2026-01-15T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0038	Multiples vulnérabilités dans les produits Mozilla	2026-01-14T00:00:00.000000	2026-01-15T00:00:00.000000
certfr-2026-avi-0046	Multiples vulnérabilités dans les produits Microsoft	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0045	Multiples vulnérabilités dans Microsoft Azure	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0044	Multiples vulnérabilités dans Microsoft Windows	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0043	Multiples vulnérabilités dans Microsoft Office	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0042	Multiples vulnérabilités dans les produits HPE Aruba Networking	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0041	Multiples vulnérabilités dans les produits Elastic	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0040	Multiples vulnérabilités dans Google Chrome	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0039	Multiples vulnérabilités dans Node.js	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0037	Multiples vulnérabilités dans Typo3	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0036	Multiples vulnérabilités dans Suricata	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0035	Multiples vulnérabilités dans les produits Fortinet	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0034	Multiples vulnérabilités dans les produits SAP	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0033	Multiples vulnérabilités dans les produits Schneider Electric	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0032	Multiples vulnérabilités dans les produits Siemens	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0031	Vulnérabilité dans le greffon VSCode pour Spring CLI	2026-01-14T00:00:00.000000	2026-01-14T00:00:00.000000
certfr-2026-avi-0030	Vulnérabilité dans MISP	2026-01-13T00:00:00.000000	2026-01-13T00:00:00.000000

ID	Description	Published	Updated
CERTFR-2024-ALE-014	[MàJ] Multiples vulnérabilités dans Fortinet FortiManager	2024-10-30T00:00:00.000000	2024-10-23T00:00:00.000000
CERTFR-2024-ALE-013	Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA)	2025-03-31T00:00:00.000000	2024-10-25T00:00:00.000000
certfr-2024-ale-015	[MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000
CERTFR-2024-ALE-015	[MàJ] Multiples vulnérabilités sur l'interface d'administration des équipements Palo Alto Networks	2024-11-15T00:00:00.000000	2024-11-18T00:00:00.000000
certfr-2024-ale-012	[MàJ] Vulnérabilités affectant OpenPrinting CUPS	2024-09-27T00:00:00.000000	2024-11-21T00:00:00.000000
certfr-2024-ale-011	Vulnérabilité dans SonicWall	2024-09-10T00:00:00.000000	2024-11-21T00:00:00.000000
CERTFR-2024-ALE-012	[MàJ] Vulnérabilités affectant OpenPrinting CUPS	2024-09-27T00:00:00.000000	2024-11-21T00:00:00.000000
CERTFR-2024-ALE-011	Vulnérabilité dans SonicWall	2024-09-10T00:00:00.000000	2024-11-21T00:00:00.000000
certfr-2024-ale-010	Multiples vulnérabilités dans Roundcube	2024-08-09T00:00:00.000000	2024-10-07T00:00:00.000000
certfr-2024-ale-009	Vulnérabilité dans OpenSSH	2024-07-01T00:00:00.000000	2024-07-03T00:00:00.000000
CERTFR-2024-ALE-010	Multiples vulnérabilités dans Roundcube	2024-08-09T00:00:00.000000	2024-10-07T00:00:00.000000
CERTFR-2024-ALE-009	Vulnérabilité dans OpenSSH	2024-07-01T00:00:00.000000	2024-07-03T00:00:00.000000
certfr-2024-ale-008	[MàJ] Vulnérabilité dans les produits Check Point	2024-05-30T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-007	Multiples vulnérabilités dans les produits Cisco	2024-04-25T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-006	[MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect	2024-04-12T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-004	[MàJ] Vulnérabilité dans Fortinet FortiOS	2024-02-09T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-008	[MàJ] Vulnérabilité dans les produits Check Point	2024-05-30T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-007	Multiples vulnérabilités dans les produits Cisco	2024-04-25T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-006	[MàJ] Vulnérabilité dans Palo Alto Networks GlobalProtect	2024-04-12T00:00:00.000000	2024-07-01T00:00:00.000000
CERTFR-2024-ALE-004	[MàJ] Vulnérabilité dans Fortinet FortiOS	2024-02-09T00:00:00.000000	2024-07-01T00:00:00.000000
certfr-2024-ale-005	[MàJ] Vulnérabilité dans Microsoft Outlook	2024-02-15T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2024-ale-003	[MàJ] Incident affectant les solutions AnyDesk	2024-02-05T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2024-ale-001	[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways	2024-01-11T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-005	[MàJ] Vulnérabilité dans Microsoft Outlook	2024-02-15T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-003	[MàJ] Incident affectant les solutions AnyDesk	2024-02-05T00:00:00.000000	2024-04-15T00:00:00.000000
CERTFR-2024-ALE-001	[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways	2024-01-11T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2024-ale-002	[MàJ] Multiples Vulnérabilités dans GitLab	2024-01-12T00:00:00.000000	2024-02-22T00:00:00.000000
CERTFR-2024-ALE-002	[MàJ] Multiples Vulnérabilités dans GitLab	2024-01-12T00:00:00.000000	2024-02-22T00:00:00.000000
certfr-2023-ale-013	Vulnérabilité dans Apache Struts 2	2023-12-13T00:00:00.000000	2024-02-16T00:00:00.000000
certfr-2023-ale-012	[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2023-10-23T00:00:00.000000	2024-02-16T00:00:00.000000

ID	CVSS	Description	Vendor	Product	Published	Updated
GCVE-1-2025-0021	9.4 (4.0)	XSS in MISP ReST client in HTML view	misp	misp	2025-11-26T15:55:00.000Z	2025-12-02T08:48:41.869838Z
GCVE-1-2025-0020	9.4 (4.0)	cross-site scripting (XSS) in Galaxy element JSON view	misp	misp	2025-11-26T15:49:00.000Z	2025-12-02T08:47:41.151429Z
GCVE-1-2025-0018	9.4 (4.0)	HTML injection issue was identified in Lookyloo’s web …	lookyloo	lookyloo	2025-11-18T15:33:00.000Z	2025-11-18T20:39:45.579295Z
GCVE-1-2025-0016	6 (4.0)	Local file inclusion in [ImportFromUrl() URL hand…	misp	misp	2025-11-04T09:20:00.000Z	2025-11-04T09:56:38.383646Z
GCVE-1-2025-0015	9 (4.0)	Potential XSS in decaying simulation tool	misp	misp	2025-11-04T09:06:00.000Z	2025-11-04T09:06:59.216121Z
GCVE-1-2025-0014	9.4 (4.0)	XSS in event report via Mermaid diagram	misp	misp	2025-11-04T08:58:00.024516Z	2025-11-04T08:58:00.024516Z
GCVE-1-2025-0013	9.4 (4.0)	Vulnerability in sharing group blueprints allowing sha…	misp	misp	2025-11-04T08:49:21.558087Z	2025-11-04T08:49:21.558087Z
GCVE-1-2025-0012	N/A	Potential vulnerability in file check upload but non-e…	misp	misp	2025-11-04T07:20:00.000Z	2025-11-28T07:16:21.589449Z
GCVE-1-2025-0011	9.4 (4.0)	Arbitrary file inclusion / deletion via import modules…	misp	misp	2025-11-04T07:01:25.464225Z	2025-11-04T07:01:25.464225Z
GCVE-1-2025-0010	6.3 (4.0)	Arbitrary file hash inclusion via templates accessible…	misp	misp	2025-11-04T06:25:11.108987Z	2025-11-04T06:25:11.108987Z
GCVE-1-2025-0009	6.4 (4.0)	A pre-auth user could self-assign a reporter without b…	CIRCL	vulnerability-lookup	2025-10-13T09:20:24.800890Z	2025-10-13T09:20:24.800890Z
GCVE-1-2025-0008	7 (4.0)	Logged users can view vulnerability disclosure comment…	CIRCL	vulnerability-lookup	2025-10-13T09:10:00.000Z	2025-10-13T09:15:31.637686Z
GCVE-1-2025-0007	4.5 (4.0)	Missing email validation on user management	CIRCL	vulnerability-lookup	2025-10-13T08:37:00.000Z	2025-10-13T08:51:37.408861Z
GCVE-1-2025-0006	9.3 (4.0)	Potential XSS in admin CPE in organization model	CIRCL	vulnerability-lookup	2025-10-13T08:29:00.000Z	2025-10-13T08:52:23.411325Z
GCVE-1-2025-0005	9.4 (4.0)	Reflected XSS due to insecure use of Markup	CIRCL	vulnerability-lookup	2025-10-13T08:23:29.812914Z	2025-10-13T08:23:29.812914Z
GCVE-1-2025-0004	10 (4.0)	XSS in Comments, Bundles, and Sightings component of v…	CIRCL	vulnerability-lookup	2025-09-25T14:10:00.000Z	2025-11-19T10:16:47.656802Z
GCVE-1-2025-0003	9.3 (4.0)	Incorrect ACL for user settings edit, which previ…	cerebrate	cerebrate	2025-08-22T12:33:00.000Z	2025-08-23T07:55:10.950332Z
GCVE-1-2025-0002	8.9 (4.0)	Command Injection in Cl0p Exfiltration Python Script	Cl0p ransomware	exfiltration	2025-07-01T08:19:00.000Z	2025-07-01T10:58:58.443468Z
GCVE-1-2025-0001	5.3 (4.0)	The absence of a password confirmation step when deact…	CIRCL	Vulnerability-Lookup	2025-05-27T08:58:00.000Z	2025-05-30T14:27:56.273945Z

ID	CVSS	Description	Vendor	Product	Published	Updated