Recent vulnerabilities

ID	Description	Published	Updated
ghsa-r326-pp3g-7cq4	An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allow…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-jxvc-pvpc-6q2f	A vulnerability was identified in code-projects Assessment Management 1.0. This affects an unknown …	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-jx54-629h-v4m4	Server-Side Request Forgery (SSRF) vulnerability in HETWORKS WordPress Image shrinker allows Server…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-j684-xhfg-8929	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-gjrj-58f4-pgrh	An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attack…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-g3fh-r5q2-x687	An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allow…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-fp65-99h2-h27f	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-fg2q-6f3h-w7w8	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-cw44-2fxg-4q3m	Improper Control of Generation of Code ('Code Injection') vulnerability in Mohammad I. Okfie IF AS …	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-97m2-wmvc-crmh	Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-5qcm-c65c-c4f2	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-59vq-r2p7-239g	A weakness has been identified in code-projects College Notes Uploading System 1.0. This issue affe…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-535h-mv4w-87cj	CWE-434 Unrestricted Upload of File with Dangerous Type	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-4rr4-crgj-v968	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-4gpw-hw2g-ph5w	CWE-601 URL Redirection to Untrusted Site ('Open Redirect')	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-366r-cgmr-hgv3	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-2g7v-6q7q-7mp6	A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and Ne…	2025-12-29T18:30:55Z	2025-12-29T18:30:55Z
ghsa-vjmh-x5rx-92fx	Reflected Cross site scripting (xss) in machsol machpanel 8.0.32 allows attackers to execute arbitr…	2025-12-29T15:30:21Z	2025-12-29T18:30:54Z
ghsa-jrvx-v9w9-54rr	A vulnerability was found in D-Link DIR-600 up to 2.15WWb02. Affected by this vulnerability is an u…	2025-12-29T18:30:54Z	2025-12-29T18:30:54Z
ghsa-h9cp-8vj7-rfrc	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T18:30:54Z	2025-12-29T18:30:54Z
ghsa-fm5v-x688-f2q9	UxPlay 1.72 contains a double free vulnerability in its RTSP request handling. A specially crafted …	2025-12-29T15:30:21Z	2025-12-29T18:30:54Z
ghsa-cvjw-pf3j-qxvj	A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue i…	2025-12-29T18:30:54Z	2025-12-29T18:30:54Z
ghsa-cj5p-mv79-727v	An issue in Fossorial fosrl/pangolin v.1.6.2 and before allows a remote attacker to escalate privil…	2025-12-29T18:30:54Z	2025-12-29T18:30:54Z
ghsa-9g2m-6xr2-f659	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-29T18:30:54Z	2025-12-29T18:30:54Z
ghsa-6c3p-2cc4-9r7p	DOM-based Cross-Site Scripting (XSS) vulnerability in 201206030 novel V3.5.0 allows remote attacker…	2025-12-29T15:30:21Z	2025-12-29T18:30:54Z
ghsa-mfq8-ww9j-9c8g	The YaMaps for WordPress Plugin WordPress plugin before 0.6.40 does not validate and escape some of…	2025-12-29T06:30:24Z	2025-12-29T18:30:51Z
ghsa-74hv-hc8x-rcwg	The Plugin Organizer WordPress plugin before 10.2.4 does not sanitize and escape a parameter before…	2025-12-29T06:30:24Z	2025-12-29T18:30:51Z
ghsa-2pr5-qxg3-pfqf	openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c.	2025-08-07T15:33:13Z	2025-12-29T18:30:18Z
ghsa-hm5p-x4rq-38w4	httparty Has Potential SSRF Vulnerability That Leads to API Key Leakage	2025-12-23T19:31:10Z	2025-12-29T16:57:54Z
ghsa-9p2w-rmx4-9mw7	Command Injection in strapi	2020-09-04T16:54:02Z	2025-12-29T15:34:55Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68431		libheif has Potential Heap Buffer Over-Read	strukturag	libheif	2025-12-29T19:09:54.628Z	2025-12-29T19:09:54.628Z
cve-2025-15087		youlaitech youlai-mall OrderController.java submitOrde…	youlaitech	youlai-mall	2025-12-25T21:02:07.632Z	2025-12-29T19:07:55.386Z
cve-2025-15088		ketr JEPaaS loadPostil postilService.loadPostils sql i…	ketr	JEPaaS	2025-12-25T22:02:06.408Z	2025-12-29T19:07:06.727Z
cve-2025-15089		UTT 进取 512W APSecurity strcpy buffer overflow	UTT	进取 512W	2025-12-25T22:32:07.032Z	2025-12-29T19:06:28.668Z
cve-2025-15090		UTT 进取 512W formConfigNoticeConfig strcpy buffer overflow	UTT	进取 512W	2025-12-25T23:02:05.854Z	2025-12-29T19:05:39.792Z
cve-2025-15119		JeecgBoot list queryPageList improper authorization	n/a	JeecgBoot	2025-12-28T03:32:06.719Z	2025-12-29T19:04:57.949Z
cve-2025-14728	6.8 (v3.1)	Rapid7 Velociraptor Directory Traversal Vulnerability	Rapid7	Velociraptor	2025-12-29T19:04:27.820Z	2025-12-29T19:04:27.820Z
cve-2025-68973	7.8 (v3.1)	In GnuPG through 2.4.8, armor_filter in g10/armor…	GnuPG	GnuPG	2025-12-28T16:19:11.019Z	2025-12-29T19:03:39.496Z
cve-2025-15201		SohuTV CacheCloud WebResourceController.java redirectN…	SohuTV	CacheCloud	2025-12-29T19:02:07.207Z	2025-12-29T19:02:07.207Z
cve-2025-15166		itsourcecode Online Cake Ordering System updatesupplie…	itsourcecode	Online Cake Ordering System	2025-12-29T01:32:07.201Z	2025-12-29T18:57:13.054Z
cve-2025-15129		ChenJinchuang Lin-CMS-TP5 File Upload LocalUploader.ph…	ChenJinchuang	Lin-CMS-TP5	2025-12-28T09:02:10.127Z	2025-12-29T18:55:29.222Z
cve-2025-68861	7.1 (v3.1)	WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Ac…	Plugin Optimizer	Plugin Optimizer	2025-12-29T17:23:08.542Z	2025-12-29T18:54:46.003Z
cve-2025-55064	4.8 (v3.1)	Priority - CWE-79 Improper Neutralization of Input Dur…	Priority	Web	2025-12-29T17:23:31.236Z	2025-12-29T18:54:19.110Z
cve-2025-68706	N/A	A stack-based buffer overflow exists in the GoAhe…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:39:44.855Z
cve-2025-15200		SohuTV CacheCloud AppClientDataShowController.java doI…	SohuTV	CacheCloud	2025-12-29T18:32:06.529Z	2025-12-29T18:32:06.529Z
cve-2025-13592		Advanced Ads <= 2.0.14 - Authenticated (Editor+) Remot…	monetizemore	Advanced Ads – Ad Manager & AdSense	2025-12-29T18:20:50.576Z	2025-12-29T18:20:50.576Z
cve-2025-14280		PixelYourSite <= 11.1.5 - Sensitive Information Exposu…	pixelyoursite	PixelYourSite – Your smart PIXEL (TAG) & API Manager	2025-12-29T18:20:49.929Z	2025-12-29T18:20:49.929Z
cve-2025-67255	N/A	In NagiosXI 2026R1.0.1 build 1762361101, Dashboar…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:14:15.414Z
cve-2025-67254	N/A	NagiosXI 2026R1.0.1 build 1762361101 is vulnerabl…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:13:17.215Z
cve-2025-15198		code-projects College Notes Uploading System login.php…	code-projects	College Notes Uploading System	2025-12-29T17:32:05.041Z	2025-12-29T18:08:48.753Z
cve-2025-14499	8.8 (v3.0)	IceWarp gmaps Cross-Site Scripting Authentication Bypa…	IceWarp	IceWarp	2025-12-23T21:19:13.295Z	2025-12-29T18:05:23.359Z
cve-2025-14501	7.5 (v3.0)	Sante PACS Server HTTP Content-Length Header Handling …	Sante	PACS Server	2025-12-23T21:18:40.087Z	2025-12-29T18:04:50.177Z
cve-2025-14491	7.8 (v3.0)	RealDefense SUPERAntiSpyware Exposed Dangerous Functio…	RealDefense	SUPERAntiSpyware	2025-12-23T21:17:10.386Z	2025-12-29T18:04:07.661Z
cve-2025-14489	7.8 (v3.0)	RealDefense SUPERAntiSpyware Exposed Dangerous Functio…	RealDefense	SUPERAntiSpyware	2025-12-23T21:17:00.522Z	2025-12-29T18:03:31.524Z
cve-2025-55060	6.1 (v3.1)	Priority - CWE-601: URL Redirection to Untrusted Site …	Priority	Web	2025-12-29T17:11:10.544Z	2025-12-29T18:03:14.911Z
cve-2025-14490	7.8 (v3.0)	RealDefense SUPERAntiSpyware Exposed Dangerous Functio…	RealDefense	SUPERAntiSpyware	2025-12-23T21:16:55.806Z	2025-12-29T18:03:05.605Z
cve-2025-55061	8.8 (v3.1)	Priority - CWE-434 Unrestricted Upload of File with Da…	Priority	Web	2025-12-29T17:14:36.328Z	2025-12-29T18:02:34.082Z
cve-2025-15199		code-projects College Notes Uploading System userprofi…	code-projects	College Notes Uploading System	2025-12-29T18:02:06.000Z	2025-12-29T18:02:06.000Z
cve-2025-15130		shanyu SyCms Administrative Panel FileManageController…	shanyu	SyCms	2025-12-28T09:32:10.325Z	2025-12-29T18:01:53.351Z
cve-2025-15131		ZSPACE Z4Pro+ HTTP POST Request status zfilev2_api_Saf…	ZSPACE	Z4Pro+	2025-12-28T10:02:06.337Z	2025-12-29T18:01:13.797Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-49131		FastGPT Sandbox Vulnerable to Sandbox Bypass	labring	FastGPT	2025-06-09T12:42:46.513Z	2025-06-09T14:40:02.668Z
cve-2025-27600		FastGPT SSRF	labring	FastGPT	2025-03-06T19:05:59.684Z	2025-03-06T20:04:06.433Z
cve-2025-62612		FastGPT File Reading Node SSRF Vulnerability	labring	FastGPT	2025-10-22T20:45:17.363Z	2025-10-23T17:34:38.855Z
cve-2025-52552		FastGPT LastRoute Parameter on Login Page Vulnerable t…	labring	FastGPT	2025-06-21T02:15:07.026Z	2025-06-23T17:42:33.181Z
cve-2025-62690	3.1 (v3.1)	Open redirect in error page when link opened in new tab	Mattermost	Mattermost	2025-12-17T12:19:17.658Z	2025-12-17T14:45:57.830Z
cve-2025-62190	4.3 (v3.1)	CSRF Allows Call Initiation and Message Delivery	Mattermost	Mattermost	2025-12-17T12:07:37.516Z	2025-12-17T15:47:20.828Z
cve-2025-13352	3 (v3.1)	Mattermost GitHub Plugin allows unauthorized GitHub re…	Mattermost	Mattermost	2025-12-17T12:11:25.563Z	2025-12-17T16:48:08.118Z
cve-2025-14273	7.2 (v3.1)	Mattermost Jira plugin user spoofing enables Jira requ…	Mattermost	Mattermost	2025-12-22T11:24:55.893Z	2025-12-22T12:59:27.938Z
cve-2025-13324	3.7 (v3.1)	Lack of Invalidation of Legacy Remote Cluster Invite T…	Mattermost	Mattermost	2025-12-17T18:14:13.347Z	2025-12-24T10:16:53.096Z
cve-2025-12689	6.5 (v3.1)	DoS in Calls plugin via malformed UTF-8 in WebSocket request	Mattermost	Mattermost	2025-12-17T18:14:10.973Z	2025-12-17T19:29:54.734Z
cve-2025-12771	7.8 (v3.1)	IBM Concert Software Improper Restriction of Operation…	IBM	Concert	2025-12-26T13:01:23.145Z	2025-12-26T14:44:45.442Z
cve-2025-1721	5.9 (v3.1)	BM Concert Software Improper Clearing of Heap Memory B…	IBM	Concert	2025-12-26T12:55:56.448Z	2025-12-26T14:47:17.326Z
cve-2025-68861	7.1 (v3.1)	WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Ac…	Plugin Optimizer	Plugin Optimizer	2025-12-29T17:23:08.542Z	2025-12-29T18:54:46.003Z
cve-2025-66877	N/A	Buffer overflow vulnerability in function dcputch…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T17:25:42.946Z
cve-2025-55064	4.8 (v3.1)	Priority - CWE-79 Improper Neutralization of Input Dur…	Priority	Web	2025-12-29T17:23:31.236Z	2025-12-29T18:54:19.110Z
cve-2025-55063	4.8 (v3.1)	Priority - CWE-79 Improper Neutralization of Input Dur…	Priority	Web	2025-12-29T17:19:52.718Z	2025-12-29T18:00:32.074Z
cve-2025-55062	4.8 (v3.1)	Priority - CWE-79 Improper Neutralization of Input Dur…	Priority	Web	2025-12-29T17:18:00.526Z	2025-12-29T18:01:06.869Z
cve-2025-55061	8.8 (v3.1)	Priority - CWE-434 Unrestricted Upload of File with Da…	Priority	Web	2025-12-29T17:14:36.328Z	2025-12-29T18:02:34.082Z
cve-2025-55060	6.1 (v3.1)	Priority - CWE-601: URL Redirection to Untrusted Site …	Priority	Web	2025-12-29T17:11:10.544Z	2025-12-29T18:03:14.911Z
cve-2025-15198		code-projects College Notes Uploading System login.php…	code-projects	College Notes Uploading System	2025-12-29T17:32:05.041Z	2025-12-29T18:08:48.753Z
cve-2025-36228	3.8 (v3.1)	Incorrect Execution-Assigned Permissions in IBM Aspera…	IBM	Aspera Faspex 5	2025-12-26T14:11:45.492Z	2025-12-26T15:15:06.304Z
cve-2025-36229	3.1 (v3.1)	Exposure of Sensitive System Information to an Unautho…	IBM	Aspera Faspex 5	2025-12-26T14:15:03.417Z	2025-12-26T15:14:58.269Z
cve-2025-36230	5.4 (v3.1)	XSS in IBM Aspera Faspex	IBM	Aspera Faspex 5	2025-12-26T14:22:46.035Z	2025-12-26T15:14:53.108Z
cve-2025-64645	7.7 (v3.1)	Time-of-check Time-of-use (TOCTOU) in IBM Concert Software.	IBM	Concert	2025-12-26T14:24:57.880Z	2025-12-26T15:14:47.822Z
cve-2025-26866		Apache HugeGraph-Server: RAFT and deserialization vuln…	Apache Software Foundation	Apache HugeGraph-Server	2025-12-12T09:23:07.681Z	2025-12-13T04:55:17.667Z
cve-2025-11621	8.1 (v3.1)	Vault AWS auth method bypass due to AWS client cache	HashiCorp	Vault	2025-10-23T19:08:54.989Z	2025-10-24T03:55:22.629Z
cve-2024-12289	5.9 (v3.1)	Boundary Controller Incorrectly Handles HTTP Requests …	HashiCorp	Boundary	2024-12-12T22:42:01.595Z	2024-12-13T19:35:10.676Z
cve-2024-10975	7.7 (v3.1)	Nomad Vulnerable To Cross-Namespace Volume Creation Ab…	HashiCorp	Nomad	2024-11-07T21:04:43.804Z	2024-11-07T21:22:50.668Z
cve-2024-7625	5.8 (v3.1)	Nomad Vulnerable to Allocation Directory Escape On Non…	HashiCorp	Nomad	2024-08-14T23:20:17.888Z	2025-01-09T19:19:01.219Z
cve-2025-69206		Hemmelig has SSRF Filter bypass in Secret Request func…	HemmeligOrg	Hemmelig.app	2025-12-29T15:55:12.761Z	2025-12-29T16:50:43.152Z

ID	Description	Published	Updated
fkie_cve-2025-13324	Mattermost versions 10.11.x <= 10.11.5, 11.0.x <= 11.0.4, 10.12.x <= 10.12.2 fail to invalidate rem…	2025-12-17T19:16:01.093	2025-12-29T18:46:13.530
fkie_cve-2025-12689	Mattermost versions 11.0.x <= 11.0.4, 10.12.x <= 10.12.2, 10.11.x <= 10.11.6 fail to check WebSocke…	2025-12-17T19:16:00.537	2025-12-29T18:44:33.540
fkie_cve-2025-12771	IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper …	2025-12-26T13:15:45.407	2025-12-29T18:23:39.203
fkie_cve-2025-1721	IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from …	2025-12-26T13:15:46.440	2025-12-29T18:15:52.283
fkie_cve-2025-68861	Missing Authorization vulnerability in Plugin Optimizer allows Exploiting Incorrectly Configured Ac…	2025-12-29T18:15:43.740	2025-12-29T18:15:43.740
fkie_cve-2025-66877	Buffer overflow vulnerability in function dcputchar in decompile.c in libming 0.4.8.	2025-12-29T18:15:43.633	2025-12-29T18:15:43.633
fkie_cve-2025-55064	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:15:43.500	2025-12-29T18:15:43.500
fkie_cve-2025-55063	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:15:43.350	2025-12-29T18:15:43.350
fkie_cve-2025-55062	CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')	2025-12-29T18:15:43.210	2025-12-29T18:15:43.210
fkie_cve-2025-55061	CWE-434 Unrestricted Upload of File with Dangerous Type	2025-12-29T18:15:43.070	2025-12-29T18:15:43.070
fkie_cve-2025-55060	CWE-601 URL Redirection to Untrusted Site ('Open Redirect')	2025-12-29T18:15:42.913	2025-12-29T18:15:42.913
fkie_cve-2025-15198	A weakness has been identified in code-projects College Notes Uploading System 1.0. This issue affe…	2025-12-29T18:15:42.333	2025-12-29T18:15:42.333
fkie_cve-2025-36228	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user inte…	2025-12-26T15:15:46.540	2025-12-29T18:15:10.767
fkie_cve-2025-36229	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive i…	2025-12-26T15:15:46.697	2025-12-29T18:10:45.550
fkie_cve-2025-36230	IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 is vulnerable to HTML injection. A remote attacker could…	2025-12-26T15:15:46.830	2025-12-29T17:42:46.707
fkie_cve-2025-64645	IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race…	2025-12-26T15:15:47.213	2025-12-29T17:38:35.060
fkie_cve-2025-26866	A remote code execution vulnerability exists where a malicious Raft node can exploit insecure Hessi…	2025-12-12T10:15:49.053	2025-12-29T17:20:58.370
fkie_cve-2025-11621	Vault and Vault Enterprise’s (“Vault”) AWS Auth method may be susceptible to authentication bypass …	2025-10-23T19:15:48.893	2025-12-29T17:17:56.107
fkie_cve-2024-12289	Boundary Community Edition and Boundary Enterprise (“Boundary”) incorrectly handle HTTP requests du…	2024-12-12T23:15:10.500	2025-12-29T17:17:19.510
fkie_cve-2024-10975	Nomad Community and Nomad Enterprise ("Nomad") volume specification is vulnerable to arbitrary cros…	2024-11-07T21:15:06.383	2025-12-29T17:17:03.110
fkie_cve-2024-7625	In HashiCorp Nomad and Nomad Enterprise from 0.6.1 up to 1.6.13, 1.7.10, and 1.8.2, the archive unp…	2024-08-15T00:15:13.127	2025-12-29T17:16:05.853
fkie_cve-2025-69206	Hemmelig is a messing app with with client-side encryption and self-destructing messages. Prior to …	2025-12-29T16:15:44.090	2025-12-29T17:15:48.313
fkie_cve-2025-68972	In GnuPG through 2.4.8, if a signed message has \f at the end of a plaintext line, an adversary can…	2025-12-27T23:15:40.900	2025-12-29T17:15:47.977
fkie_cve-2025-68948	SiYuan is self-hosted, open source personal knowledge management software. In versions 3.5.1 and pr…	2025-12-27T01:15:42.720	2025-12-29T17:15:47.817
fkie_cve-2025-68932	FreshRSS is a free, self-hostable RSS aggregator. Prior to version 1.28.0, FreshRSS uses cryptograp…	2025-12-27T00:15:42.633	2025-12-29T17:15:47.707
fkie_cve-2025-68927	Libredesk is a self-hosted customer support desk. Prior to version 0.8.6-beta, LibreDesk is vulnera…	2025-12-27T01:15:42.570	2025-12-29T17:15:47.500
fkie_cve-2025-68870	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2025-12-29T17:15:47.067	2025-12-29T17:15:47.067
fkie_cve-2025-68868	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T17:15:46.903	2025-12-29T17:15:46.903
fkie_cve-2025-68148	FreshRSS is a free, self-hostable RSS aggregator. From version 1.27.0 to before 1.28.0, An attacker…	2025-12-27T00:15:42.167	2025-12-29T17:15:46.700
fkie_cve-2025-66869	Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.	2025-12-29T17:15:46.603	2025-12-29T17:15:46.603

ID	Description	Package	Published	Updated
pysec-2025-35	Weblate is a web based localization tool. Prior to version 5.11, when creating a new comp…	weblate	2025-04-15T21:16:04+00:00	2025-04-30T17:22:51.467257+00:00
pysec-2025-34	The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_…	picklescan	2025-04-24T01:15:49+00:00	2025-04-24T03:08:15.436691+00:00
pysec-2025-33	Vyper is a Pythonic Smart Contract Language for the EVM. When the Vyper Compiler uses the…	vyper	2025-01-14T18:16:05+00:00	2025-04-23T21:23:01.322686+00:00
pysec-2025-32	BentoML is a Python library for building online serving systems optimized for AI apps and…	bentoml	2025-04-09T16:15:25+00:00	2025-04-22T19:21:34.073355+00:00
pysec-2025-31	vyper is a Pythonic Smart Contract Language for the EVM. Vyper handles AugAssign statemen…	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.116292+00:00
pysec-2025-30	vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single …	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.064106+00:00
pysec-2025-29	vyper is a Pythonic Smart Contract Language for the EVM. Vyper `sqrt()` builtin uses the …	vyper	2025-02-21T22:15:13+00:00	2025-04-09T17:27:28.005382+00:00
pysec-2025-28	The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.772920+00:00
pysec-2025-27	The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.711157+00:00
pysec-2025-26	The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.645758+00:00
pysec-2021-891	CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 S…	salt	2021-03-03T10:15:13+00:00	2025-04-09T17:27:27.582884+00:00
pysec-2025-25	Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middle…	rembg	2025-03-03T17:15:14+00:00	2025-04-09T17:27:27.532849+00:00
pysec-2025-24	Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove…	rembg	2025-03-03T17:15:14+00:00	2025-04-09T17:27:27.486485+00:00
pysec-2025-23	Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Inform…	ray	2025-03-06T05:15:16+00:00	2025-04-09T17:27:27.434099+00:00
pysec-2022-43179	Poetry is a dependency manager for Python. To handle dependencies that come from a Git re…	poetry	2022-09-07T19:15:08+00:00	2025-04-09T17:27:27.255151+00:00
pysec-2025-22	A vulnerability, that could result in Remote Code Execution (RCE), has been found in Plot…	plotai	2025-03-10T14:15:24+00:00	2025-04-09T17:27:27.203714+00:00
pysec-2023-311	plone.namedfile allows users to handle `File` and `Image` fields targeting, but not depen…	plone-namedfile	2023-09-21T15:15:10+00:00	2025-04-09T17:27:27.153848+00:00
pysec-2025-21	picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model arch…	picklescan	2025-03-10T12:15:12+00:00	2025-04-09T17:27:27.016747+00:00
pysec-2025-20	picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes i…	picklescan	2025-03-10T12:15:10+00:00	2025-04-09T17:27:26.966215+00:00
pysec-2025-19	picklescan before 0.0.22 only considers standard pickle file extensions in the scope for …	picklescan	2025-03-03T19:15:34+00:00	2025-04-09T17:27:26.916350+00:00
pysec-2025-18	picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craf…	picklescan	2025-02-26T15:15:24+00:00	2025-04-09T17:27:26.867210+00:00
pysec-2023-310	Mobile Security Framework (MobSF) <=v3.7.8 Beta is vulnerable to Insecure Permissions. NO…	mobsf	2023-09-21T22:15:11+00:00	2025-04-09T17:27:26.663665+00:00
pysec-2025-17	In mlflow/mlflow version 2.18, an admin is able to create a new user account without sett…	mlflow	2025-03-20T10:15:54+00:00	2025-04-09T17:27:26.322333+00:00
pysec-2023-309	Path Traversal in GitHub repository mlflow/mlflow prior to 2.9.2.	mlflow	2023-12-13T00:15:07+00:00	2025-04-09T17:27:26.271200+00:00
pysec-2023-308	Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0.	mlflow	2023-07-19T01:15:10+00:00	2025-04-09T17:27:26.223213+00:00
pysec-2025-16	LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vu…	lnbits	2025-04-06T20:15:15+00:00	2025-04-09T17:27:25.872691+00:00
pysec-2025-15	Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilde…	flask-appbuilder	2025-03-03T16:15:41+00:00	2025-04-09T17:27:25.227116+00:00
pysec-2025-14	An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normal…	django	2025-04-02T13:15:44+00:00	2025-04-09T17:27:25.169049+00:00
pysec-2025-13	An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2…	django	2025-03-06T19:15:27+00:00	2025-04-09T17:27:25.095679+00:00
pysec-2022-43178	An exponential ReDoS (Regular Expression Denial of Service) can be triggered in the cleo …	cleo	2022-11-09T20:15:10+00:00	2025-04-09T17:27:24.793038+00:00

ID	Description	Updated
gsd-2024-33855	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.741239Z
gsd-2024-33851	phpecc, as used in paragonie/phpecc before 2.0.1, has a branch-based timing leak in Point…	2024-04-28T05:02:07.732559Z
gsd-2024-33879	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:07.727068Z
gsd-2024-4294	A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Ap…	2024-04-28T05:02:06.079201Z
gsd-2024-4292	A vulnerability classified as critical has been found in Contemporary Controls BASrouter …	2024-04-28T05:02:06.073286Z
gsd-2024-4295	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:02:06.068263Z
gsd-2024-4291	A vulnerability was found in Tenda A301 15.13.08.12_multi_TDE01. It has been rated as cri…	2024-04-28T05:02:06.058388Z
gsd-2024-4293	A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Mana…	2024-04-28T05:02:06.052534Z
gsd-2023-52722	An issue was discovered in Artifex Ghostscript through 10.01.0. psi/zmisc1.c, when SAFER …	2024-04-28T05:01:28.746814Z
gsd-2022-48685	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:00:27.870720Z
gsd-2022-48684	The format of the source doesn't require a description, click on the link for more details.	2024-04-28T05:00:27.715598Z
gsd-2024-24777	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:24.547536Z
gsd-2024-28875	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:20.401696Z
gsd-2024-33786	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.606155Z
gsd-2024-33697	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln…	2024-04-27T05:02:18.598872Z
gsd-2024-33722	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.598142Z
gsd-2024-33784	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.595808Z
gsd-2024-33788	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.591276Z
gsd-2024-33814	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.590797Z
gsd-2024-33701	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.589032Z
gsd-2024-33776	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.587852Z
gsd-2024-33712	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.587066Z
gsd-2024-33840	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.586722Z
gsd-2024-33838	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.585807Z
gsd-2024-33749	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.584613Z
gsd-2024-33839	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.579161Z
gsd-2024-33733	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.577869Z
gsd-2024-33845	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.569462Z
gsd-2024-33741	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.568527Z
gsd-2024-33738	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.562140Z

ID	Description	Published	Updated
mal-2025-191857	Malicious code in requtils (PyPI)	2025-11-18T00:29:33Z	2025-12-24T10:09:32Z
mal-2025-191841	Malicious code in python-rootpath (PyPI)	2025-11-12T20:57:18Z	2025-12-24T10:09:32Z
mal-2025-191837	Malicious code in pyrtp (PyPI)	2025-11-24T23:32:59Z	2025-12-24T10:09:32Z
mal-2025-191835	Malicious code in pylibcugraph (PyPI)	2025-11-13T19:46:03Z	2025-12-24T10:09:32Z
mal-2025-191814	Malicious code in perfviewer (PyPI)	2025-11-16T21:33:31Z	2025-12-24T10:09:32Z
mal-2025-191813	Malicious code in peptest2 (PyPI)	2025-11-20T14:01:54Z	2025-12-24T10:09:32Z
mal-2025-191812	Malicious code in peptest (PyPI)	2025-11-20T11:33:54Z	2025-12-24T10:09:32Z
mal-2025-191794	Malicious code in mongland (PyPI)	2025-11-24T06:37:26Z	2025-12-24T10:09:32Z
mal-2025-191792	Malicious code in minizip (PyPI)	2025-11-23T12:20:46Z	2025-12-24T10:09:32Z
mal-2025-191791	Malicious code in minemeld-core (PyPI)	2025-11-14T17:22:38Z	2025-12-24T10:09:32Z
mal-2025-191790	Malicious code in mescouilles (PyPI)	2025-11-23T23:19:36Z	2025-12-24T10:09:32Z
mal-2025-191760	Malicious code in hooktest1 (PyPI)	2025-11-23T16:26:36Z	2025-12-24T10:09:32Z
mal-2025-191758	Malicious code in hexdecnet (PyPI)	2025-11-23T00:42:49Z	2025-12-24T10:09:32Z
mal-2025-191757	Malicious code in hexdeclink (PyPI)	2025-12-01T07:04:01Z	2025-12-24T10:09:32Z
mal-2025-191753	Malicious code in hexadec (PyPI)	2025-11-14T07:58:44Z	2025-12-24T10:09:32Z
mal-2025-191742	Malicious code in gptall (PyPI)	2025-11-27T07:07:24Z	2025-12-24T10:09:32Z
mal-2025-191718	Malicious code in discord-selfsbotsx (PyPI)	2025-11-27T23:24:51Z	2025-12-24T10:09:32Z
mal-2025-191717	Malicious code in dev-server-python (PyPI)	2025-11-27T07:09:15Z	2025-12-24T10:09:32Z
mal-2025-191702	Malicious code in chromifypro (PyPI)	2025-11-07T22:43:23Z	2025-12-24T10:09:32Z
mal-2025-191700	Malicious code in chicopute (PyPI)	2025-11-24T21:59:47Z	2025-12-24T10:09:32Z
mal-2025-191699	Malicious code in chat-prompt-logger (PyPI)	2025-11-30T00:34:30Z	2025-12-24T10:09:32Z
mal-2025-191686	Malicious code in aws-enumerateiam (PyPI)	2025-11-18T23:47:36Z	2025-12-24T10:09:32Z
mal-2025-191682	Malicious code in aounitaounit2 (PyPI)	2025-11-24T22:02:21Z	2025-12-24T10:09:32Z
mal-2025-191675	Malicious code in aiostreams (PyPI)	2025-11-24T21:58:24Z	2025-12-24T10:09:32Z
mal-2025-191674	Malicious code in aiogram-msgeffect (PyPI)	2025-11-22T16:25:53Z	2025-12-24T10:09:32Z
mal-2025-191535	Malicious code in tableate (PyPI)	2025-11-25T11:06:37Z	2025-12-24T10:09:32Z
mal-2025-191534	Malicious code in tablates (PyPI)	2025-11-26T10:20:42Z	2025-12-24T10:09:32Z
mal-2024-6103	Malicious code in termcolour (PyPI)	2024-06-25T13:43:19Z	2025-12-24T10:09:32Z
mal-2024-5721	Malicious code in pyhttpproxifier (PyPI)	2024-06-25T13:40:09Z	2025-12-24T10:09:32Z
mal-2024-5326	Malicious code in libsocks5 (PyPI)	2024-06-25T13:36:56Z	2025-12-24T10:09:32Z

ID	Description	Published	Updated
wid-sec-w-2025-2840	Exim: Schwachstelle ermöglicht Codeausführung	2025-12-14T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2825	MediaWiki: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2025-12-10T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2814	Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2025-12-10T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2798	Red Hat OpenShift Service Mesh: Mehrere Schwachstellen	2025-12-09T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2751	WebKitGTK: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2737	libpng: Schwachstelle ermöglicht Denial of Service und Offenlegung von Informationen	2025-12-03T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2663	libpng: Mehrere Schwachstellen	2025-11-23T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2657	WebKitGTK: Mehrere Schwachstellen	2025-11-20T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2586	Red Hat Enterprise Linux (python-kdcproxy): Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2537	BusyBox (wget): Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen	2025-11-10T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2409	Xen: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-26T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2407	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-26T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2298	Linux Kernel: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2268	Linux Kernel: Mehrere Schwachstellen	2025-10-13T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2198	MediaWiki: Mehrere Schwachstellen	2025-10-05T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2170	Linux Kernel: Mehrere Schwachstellen	2025-09-30T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2144	binutils: Mehrere Schwachstellen	2025-09-28T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2115	WordPress Core: Mehrere Schwachstellen	2025-09-23T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2099	Linux Kernel: Mehrere Schwachstellen	2025-09-21T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2045	expat: Schwachstelle ermöglicht Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1898	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-08-24T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1870	Keycloak: Schwachstelle ermöglicht Versand beliebiger E-Mails	2025-08-19T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1833	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2025-08-13T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1822	Ruby on Rails: Mehrere Schwachstellen	2025-08-13T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1807	IBM WebSphere Application Server Liberty: Mehrere Schwachstellen	2025-08-12T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1757	Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsmechanismen	2025-08-11T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1591	IBM WebSphere Application Server: Schwachstelle ermöglicht Offenlegung von Informationen	2025-07-17T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1582	IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service	2025-07-16T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1460	PHP: Mehrere Schwachstellen	2025-07-03T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-1335	Apache Tomcat: Mehrere Schwachstellen	2025-06-16T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-318832	SSA-318832: SQL Injection Vulnerability in SINEC NMS	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-279823	SSA-279823: Cross-Site Scripting Vulnerability in SIMATIC S7-1200 CPU V2/V3 Before V3.0.2	2012-10-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-265688	SSA-265688: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1	2024-04-09T00:00:00Z	2025-10-14T00:00:00Z
ssa-240718	SSA-240718: Insecure Storage of HTTPS CA Certificate in SIMATIC S7-1200 CPU V2	2012-09-13T00:00:00Z	2025-10-14T00:00:00Z
ssa-186293	SSA-186293: XML External Entity (XXE) Injection Vulnerability in SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTER	2025-08-12T00:00:00Z	2025-10-14T00:00:00Z
ssa-083019	SSA-083019: Multiple Vulnerabilities in RUGGEDCOM ROS Devices	2025-07-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-062309	SSA-062309: Information Disclosure Vulnerability in TeleControl Server Basic V3.1	2025-10-14T00:00:00Z	2025-10-14T00:00:00Z
ssa-054046	SSA-054046: Unauthenticated Information Disclosure in Web Server of SIMATIC S7-1500 CPUs	2024-10-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-039007	SSA-039007: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-09-10T00:00:00Z	2025-10-14T00:00:00Z
ssa-916339	SSA-916339: Information Disclosure Vulnerability in Apogee PXC and Talon TC Devices	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-712929	SSA-712929: Denial of Service Vulnerability in OpenSSL (CVE-2022-0778) Affecting Industrial Products	2022-06-14T00:00:00Z	2025-09-09T00:00:00Z
ssa-691715	SSA-691715: Vulnerability in OPC Foundation Local Discovery Server Affecting Siemens Products	2023-04-11T00:00:00Z	2025-09-09T00:00:00Z
ssa-640476	SSA-640476: Denial of Service Vulnerability in Industrial Edge Management	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-563922	SSA-563922: Local Privilege Escalation Vulnerability in SIMOTION Tools	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-534283	SSA-534283: Insecure File Share Vulnerability in SIMATIC Virtualization as a Service (SIVaaS)	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-503939	SSA-503939: Vulnerabilities in the BIOS of the SIMATIC S7-1500 TM MFP	2025-03-11T00:00:00Z	2025-09-09T00:00:00Z
ssa-494539	SSA-494539: Multiple Vulnerabilities in SINEC OS	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-366067	SSA-366067: Multiple Vulnerabilities in Fortigate NGFW Before V7.4.1 on RUGGEDCOM APE1808 Devices	2024-03-12T00:00:00Z	2025-09-09T00:00:00Z
ssa-331739	SSA-331739: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting Siemens Products	2025-08-12T00:00:00Z	2025-09-09T00:00:00Z
ssa-027652	SSA-027652: Privilege Escalation Vulnerability in SINAMICS Drives	2025-09-09T00:00:00Z	2025-09-09T00:00:00Z
ssa-707630	SSA-707630: Multiple Vulnerabilities in SIMATIC RTLS Locating Manager Before V3.3	2025-08-12T00:00:00Z	2025-08-26T00:00:00Z
ssa-201595	SSA-201595: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager	2025-08-14T00:00:00Z	2025-08-19T00:00:00Z
ssa-395458	SSA-395458: Account Hijacking Vulnerability in Mendix SAML Module	2025-08-14T00:00:00Z	2025-08-14T00:00:00Z
ssa-028723	SSA-028723: Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17	2025-08-12T00:00:00Z	2025-08-13T00:00:00Z
ssa-994087	SSA-994087: Multiple SQLite Vulnerabilities in RUGGEDCOM CROSSBOW Station Access Controller Before V5.7	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-914892	SSA-914892: Race Condition Vulnerability in Basic Authentication Implementation of Mendix Runtime	2024-11-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-908185	SSA-908185: Mirror Port Isolation Vulnerability in RUGGEDCOM ROS Devices	2023-08-08T00:00:00Z	2025-08-12T00:00:00Z
ssa-894058	SSA-894058: Improper Bandwidth Limitation of Network Packets Over Local USB Port Vulnerability in SIPROTEC 5	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-856721	SSA-856721: Vulnerability in RUGGEDCOM Discovery Protocol (RCDP) of Industrial Communication Devices	2017-09-28T00:00:00Z	2025-08-12T00:00:00Z
ssa-840800	SSA-840800: Code Injection Vulnerability in RUGGEDCOM ROS	2022-07-12T00:00:00Z	2025-08-12T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:4669	Red Hat Security Advisory: osbuild-composer security update	2025-05-07T14:59:09+00:00	2025-11-29T06:54:32+00:00
rhsa-2025:4666	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.7 container updates	2025-05-07T16:17:54+00:00	2025-11-29T06:54:32+00:00
rhsa-2025:4605	Red Hat Security Advisory: multicluster Engine for Kubernetes 2.6.7 container updates	2025-05-07T03:32:30+00:00	2025-11-29T06:54:31+00:00
rhsa-2025:4569	Red Hat Security Advisory: osbuild-composer security update	2025-05-06T16:43:52+00:00	2025-11-29T06:54:29+00:00
rhsa-2025:4511	Red Hat Security Advisory: RHODF-4.18-RHEL-9 security update	2025-05-06T07:14:59+00:00	2025-11-29T06:54:29+00:00
rhsa-2025:4502	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.10.8 container updates	2025-05-06T06:29:57+00:00	2025-11-29T06:54:28+00:00
rhsa-2025:4473	Red Hat Security Advisory: multicluster Engine for Kubernetes 2.5.9 container updates	2025-05-05T23:34:14+00:00	2025-11-29T06:54:27+00:00
rhsa-2025:4462	Red Hat Security Advisory: osbuild-composer security update	2025-05-05T14:35:59+00:00	2025-11-29T06:54:26+00:00
rhsa-2025:4427	Red Hat Security Advisory: OpenShift Container Platform 4.18.12 bug fix and security update	2025-05-09T04:31:09+00:00	2025-11-29T06:54:24+00:00
rhsa-2025:4211	Red Hat Security Advisory: OpenShift Container Platform 4.18.11 bug fix and security update	2025-05-01T03:08:42+00:00	2025-11-29T06:54:24+00:00
rhsa-2025:4422	Red Hat Security Advisory: OpenShift Container Platform 4.15.50 bug fix and security update	2025-05-08T19:55:32+00:00	2025-11-29T06:54:23+00:00
rhsa-2025:4409	Red Hat Security Advisory: OpenShift Container Platform 4.12.76 bug fix and security update	2025-05-08T19:54:33+00:00	2025-11-29T06:54:23+00:00
rhsa-2025:4250	Red Hat Security Advisory: RHSA: Submariner 0.19.4 - bug fix and enhancement update	2025-04-28T16:10:25+00:00	2025-11-29T06:54:20+00:00
rhsa-2025:4204	Red Hat Security Advisory: OpenShift Container Platform 4.17.27 bug fix and security update	2025-04-30T03:47:47+00:00	2025-11-29T06:54:20+00:00
rhsa-2025:4188	Red Hat Security Advisory: Red Hat OpenShift Builds 1.2	2025-04-24T13:21:19+00:00	2025-11-29T06:54:18+00:00
rhsa-2025:4171	Red Hat Security Advisory: Red Hat OpenShift Builds 1.3	2025-04-24T11:52:49+00:00	2025-11-29T06:54:18+00:00
rhsa-2025:4019	Red Hat Security Advisory: OpenShift Container Platform 4.18.10 bug fix and security update	2025-04-22T23:52:01+00:00	2025-11-29T06:54:18+00:00
rhsa-2025:4012	Red Hat Security Advisory: OpenShift Container Platform 4.17.26 bug fix and security update	2025-04-23T12:41:37+00:00	2025-11-29T06:54:18+00:00
rhsa-2025:3993	Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.15.1-6 Update	2025-04-17T14:42:51+00:00	2025-11-29T06:54:17+00:00
rhsa-2025:3932	Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.20.0 release	2025-04-16T02:48:23+00:00	2025-11-29T06:54:15+00:00
rhsa-2025:3930	Red Hat Security Advisory: RHACS 4.7 security update	2025-04-15T20:29:23+00:00	2025-11-29T06:54:15+00:00
rhsa-2025:3929	Red Hat Security Advisory: ACS 4.6 enhancement and security update	2025-04-15T19:52:32+00:00	2025-11-29T06:54:15+00:00
rhsa-2025:3928	Red Hat Security Advisory: ACS 4.5 enhancement and security update	2025-04-15T19:46:07+00:00	2025-11-29T06:54:15+00:00
rhsa-2025:3906	Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.13	2025-04-16T10:29:32+00:00	2025-11-29T06:54:13+00:00
rhsa-2025:3905	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.7	2025-04-16T14:51:29+00:00	2025-11-29T06:54:13+00:00
rhsa-2025:3886	Red Hat Security Advisory: RHOAI 2.19.0 - Red Hat OpenShift AI	2025-04-15T07:52:02+00:00	2025-11-29T06:54:13+00:00
rhsa-2025:3833	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-04-14T09:21:59+00:00	2025-11-29T06:54:13+00:00
rhsa-2025:3863	Red Hat Security Advisory: Red Hat multicluster global hub 1.3.3 bug fixes and container update	2025-04-14T18:00:47+00:00	2025-11-29T06:54:11+00:00
rhsa-2025:3820	Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release	2025-04-10T17:22:43+00:00	2025-11-29T06:54:11+00:00
rhsa-2025:3814	Red Hat Security Advisory: RHTAS 1.1.2 - Red Hat Trusted Artifact Signer Release	2025-04-10T15:20:44+00:00	2025-11-29T06:54:09+00:00

ID	Description	Published	Updated
msrc_cve-2025-38400	nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails.	2025-07-02T00:00:00.000Z	2025-12-25T01:01:51.000Z
msrc_cve-2025-38399	scsi: target: Fix NULL pointer dereference in core_scsi3_decode_spec_i_port()	2025-07-02T00:00:00.000Z	2025-12-25T01:01:45.000Z
msrc_cve-2025-38395	regulator: gpio: Fix the out-of-bounds access to drvdata::gpiods	2025-07-02T00:00:00.000Z	2025-12-25T01:01:40.000Z
msrc_cve-2025-38393	NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN	2025-07-02T00:00:00.000Z	2025-12-25T01:01:35.000Z
msrc_cve-2025-38391	usb: typec: altmodes/displayport: do not index invalid pin_assignments	2025-07-02T00:00:00.000Z	2025-12-25T01:01:30.000Z
msrc_cve-2025-61915	OpenPrinting CUPS vulnerable to stack based out-of-bound write	2025-11-02T00:00:00.000Z	2025-12-24T14:35:41.000Z
msrc_cve-2025-58436	OpenPrinting CUPS slow client can halt cupsd, leading to a possible DoS attack	2025-11-02T00:00:00.000Z	2025-12-24T14:35:34.000Z
msrc_cve-2025-12105	Libsoup: heap use-after-free in libsoup message queue handling during http/2 read completion	2025-10-02T00:00:00.000Z	2025-12-24T01:38:08.000Z
msrc_cve-2024-7883	CMSE secure state may leak from stack to floating-point registers	2024-10-01T07:00:00.000Z	2025-12-24T01:05:01.000Z
msrc_cve-2025-68343	can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing header	2025-12-02T00:00:00.000Z	2025-12-24T01:04:56.000Z
msrc_cve-2025-68340	team: Move team device type change at the end of team_port_add	2025-12-02T00:00:00.000Z	2025-12-24T01:04:51.000Z
msrc_cve-2025-68342	can: gs_usb: gs_usb_receive_bulk_callback(): check actual_length before accessing data	2025-12-02T00:00:00.000Z	2025-12-24T01:04:45.000Z
msrc_cve-2025-68338	net: dsa: microchip: Don't free uninitialized ksz_irq	2025-12-02T00:00:00.000Z	2025-12-24T01:04:35.000Z
msrc_cve-2025-68339	atm/fore200e: Fix possible data race in fore200e_open()	2025-12-02T00:00:00.000Z	2025-12-24T01:04:29.000Z
msrc_cve-2025-38476	rpl: Fix use-after-free in rpl_do_srh_inline().	2025-07-02T00:00:00.000Z	2025-12-24T01:04:23.000Z
msrc_cve-2025-38474	usb: net: sierra: check for no status endpoint	2025-07-02T00:00:00.000Z	2025-12-24T01:04:18.000Z
msrc_cve-2025-38473	Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb()	2025-07-02T00:00:00.000Z	2025-12-24T01:04:14.000Z
msrc_cve-2025-38470	net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime	2025-07-02T00:00:00.000Z	2025-12-24T01:04:08.000Z
msrc_cve-2025-38468	net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree	2025-07-02T00:00:00.000Z	2025-12-24T01:04:03.000Z
msrc_cve-2025-38467	drm/exynos: exynos7_drm_decon: add vblank check in IRQ handling	2025-07-02T00:00:00.000Z	2025-12-24T01:03:58.000Z
msrc_cve-2025-38466	perf: Revert to requiring CAP_SYS_ADMIN for uprobes	2025-07-02T00:00:00.000Z	2025-12-24T01:03:53.000Z
msrc_cve-2025-38465	netlink: Fix wraparounds of sk->sk_rmem_alloc.	2025-07-02T00:00:00.000Z	2025-12-24T01:03:48.000Z
msrc_cve-2025-38464	tipc: Fix use-after-free in tipc_conn_close().	2025-07-02T00:00:00.000Z	2025-12-24T01:03:43.000Z
msrc_cve-2025-38462	vsock: Fix transport_{g2h,h2g} TOCTOU	2025-07-02T00:00:00.000Z	2025-12-24T01:03:38.000Z
msrc_cve-2025-38461	vsock: Fix transport_* TOCTOU	2025-07-02T00:00:00.000Z	2025-12-24T01:03:33.000Z
msrc_cve-2025-38460	atm: clip: Fix potential null-ptr-deref in to_atmarpd().	2025-07-02T00:00:00.000Z	2025-12-24T01:03:28.000Z
msrc_cve-2025-38459	atm: clip: Fix infinite recursive call of clip_push().	2025-07-02T00:00:00.000Z	2025-12-24T01:03:23.000Z
msrc_cve-2025-38458	atm: clip: Fix NULL pointer dereference in vcc_sendmsg()	2025-07-02T00:00:00.000Z	2025-12-24T01:03:18.000Z
msrc_cve-2025-38457	net/sched: Abort __tc_modify_qdisc if parent class does not exist	2025-07-02T00:00:00.000Z	2025-12-24T01:03:13.000Z
msrc_cve-2025-38448	usb: gadget: u_serial: Fix race condition in TTY wakeup	2025-07-02T00:00:00.000Z	2025-12-24T01:03:08.000Z

ID	Description	Published	Updated
icsa-25-329-04	Opto 22 groov View	2025-11-25T06:00:00.000000Z	2025-11-25T06:00:00.000000Z
icsa-25-324-06	Emerson Appleton UPSMON-PRO	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-01	Automated Logic WebCTRL Premium Server	2025-11-20T07:00:00.000000Z	2025-11-20T07:00:00.000000Z
icsa-25-324-03	Opto 22 GRV-EPIC and groov RIO	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-324-02	ICAM365 CCTV Camera Multiple Models	2025-11-20T06:00:00.000000Z	2025-11-20T06:00:00.000000Z
icsa-25-322-05	METZ CONNECT EWIO2	2025-11-18T12:00:00.000000Z	2025-11-18T12:00:00.000000Z
icsa-25-322-03	Shelly Pro 3EM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-322-02	Shelly Pro 4PM	2025-11-18T07:00:00.000000Z	2025-11-18T07:00:00.000000Z
icsa-25-317-12	Siemens Spectrum Power 4	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-11	Siemens SICAM P850 family and SICAM P855 family	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-10	Rockwell Automation AADvance-Trusted SIS Workstation	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-09	Rockwell Automation FactoryTalk Policy Manager	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-07	Rockwell Automation FactoryTalk DataMosaix Private Cloud	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-06	Rockwell Automation Studio 5000 Simulation Interface	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-05	Rockwell Automation Verve Asset Manager	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-04	Brightpick Mission Control / Internal Logic Control	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-03	AVEVA Edge	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-02	AVEVA Application Server IDE	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-317-01	Mitsubishi Electric MELSEC iQ-F Series	2025-11-13T07:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-273-04	Festo Controller CECC-S,-LK,-D Family Firmware (Update A)	2025-09-30T06:00:00.000000Z	2025-11-13T07:00:00.000000Z
icsa-25-322-04	Schneider Electric PowerChute Serial Shutdown	2025-11-11T08:00:00.000000Z	2025-11-11T08:00:00.000000Z
icsa-25-322-01	Schneider Electric EcoStruxure Machine SCADA Expert & Pro-face BLUE Open Studio	2025-11-11T08:00:00.000000Z	2025-11-11T08:00:00.000000Z
icsa-25-224-03	Schneider Electric EcoStruxure Power Monitoring Expert	2025-08-12T04:00:00.000000Z	2025-11-11T08:00:00.000000Z
icsa-25-317-17	Siemens Software Center and Solid Edge	2025-11-11T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-317-16	Siemens Altair Grid Engine	2025-11-11T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-317-15	Siemens COMOS	2025-11-11T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-317-14	Siemens Solid Edge	2025-11-11T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-317-13	Siemens LOGO! 8 BM Devices	2025-11-11T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-135-17	Siemens RUGGEDCOM ROX II	2025-05-13T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-135-15	Siemens Mendix OIDC SSO	2025-05-13T00:00:00.000000Z	2025-11-11T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-ise-file-upload-qksx6c8g	Cisco Identity Services Engine Arbitrary File Upload Vulnerability	2025-08-20T16:00:00+00:00	2025-08-20T16:43:01+00:00
cisco-sa-pi-epnm-tet4gxbx	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Sensitive Information Disclosure Vulnerability	2025-08-20T16:00:00+00:00	2025-08-20T16:00:00+00:00
cisco-sa-authproxlog-sxczxq63	Cisco Duo Authentication Proxy Information Disclosure Vulnerability	2025-08-20T16:00:00+00:00	2025-08-20T16:00:00+00:00
cisco-sa-20180328-smi2	Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability	2018-03-28T16:00:00+00:00	2025-08-20T14:26:26+00:00
cisco-sa-asaftd-ssltls-dos-ehw76vze	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software SSL/TLS Certificate Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-19T16:32:05+00:00
cisco-sa-ftd-ravpn-geobypass-9h38m37z	Cisco Secure Firewall Threat Defense Software Geolocation Remote Access VPN Bypass Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-ftd-dos-svkhtjgt	Cisco Secure Firewall Threat Defense Software Snort 3 Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-xss-jtnmcusp	Cisco Secure Firewall Management Center Software Cross-Site Scripting Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-xpathinj-corthdmb	Cisco Secure Firewall Management Center Software XPATH Injection Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-radius-rce-tnbkf79	Cisco Secure Firewall Management Center Software RADIUS Remote Code Execution Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-html-inj-mqjrzrny	Cisco Secure Firewall Management Center Software HTML Injection Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-ftd-cmdinj-phe7kmt	Cisco Secure Firewall Management Center and Secure Firewall Threat Defense Software Command Injection Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-cmd-inj-hcrlpfyn	Cisco Secure Firewall Management Center Software Command Injection Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-fmc-authz-bypass-m7xhnau	Cisco Secure Firewall Management Center Software Authorization Bypass Vulnerabilities	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-vpnwebs-dos-hjbhmbsx	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access VPN Web Server Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-vpn-dos-mfpeka6e	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerabilities	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-nat-dns-dos-bqhynhtm	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Network Address Translation DNS Inspection Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-http-file-huyx2jl4	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Server Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-dhcp-qj7ngs4n	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software DHCP Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asaftd-cmdinj-vehfezq3	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Authenticated Command Injection Vulnerabilities	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asa-ftd-ios-dos-doeshwhy	Cisco IOS, IOS XE, Secure Firewall Adaptive Security Appliance, and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerabilities	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asa-ftd-acl-bypass-mtpze9yh	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Access Control Rules Bypass Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-asa-buffer-overflow-pyruhwbc	Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Web Services Denial of Service Vulnerability	2025-08-14T16:00:00+00:00	2025-08-14T16:00:00+00:00
cisco-sa-webex-join-ynxfqhk4	Cisco Webex Meeting Client Join Certificate Validation Vulnerability	2025-08-06T16:00:00+00:00	2025-08-06T16:00:00+00:00
cisco-sa-ise_xss_acc_cont-ysr4ut4u	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerabilities	2025-08-06T16:00:00+00:00	2025-08-06T16:00:00+00:00
cisco-sa-20170629-snmp	SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software	2017-06-29T16:00:00+00:00	2025-07-30T16:27:06+00:00
cisco-sa-ise-unauth-rce-zad2gnj6	Cisco Identity Services Engine Unauthenticated Remote Code Execution Vulnerabilities	2025-06-25T16:00:00+00:00	2025-07-24T23:30:31+00:00
cisco-sa-piepnm-bsi-25jjqsbb	Cisco Prime Infrastructure and Evolved Programmable Network Manager Blind SQL Injection Vulnerability	2025-07-16T16:00:00+00:00	2025-07-16T16:00:00+00:00
cisco-sa-ise-multi-3vpsxoxo	Cisco Identity Services Engine Authenticated Remote Code Execution and Authorization Bypass Vulnerabilities	2025-07-16T16:00:00+00:00	2025-07-16T16:00:00+00:00
cisco-sa-cuis-ssrf-jsudjev	Cisco Unified Intelligence Center Server-Side Request Forgery Vulnerability	2025-07-16T16:00:00+00:00	2025-07-16T16:00:00+00:00

ID	Description	Published	Updated
SCA-2022-0008	Vulnerability in SICK Gateways for Flexi Soft, Flexi Compact, SICK EFI Gateway UE4740, SICK microScan3 and outdoorScan3	2022-04-29T15:00:00.000Z	2022-04-29T15:00:00.000Z
sca-2022-0007	Vulnerabilities in SICK MARSIC300	2022-04-21T15:00:00.000Z	2022-04-21T15:00:00.000Z
SCA-2022-0007	Vulnerabilities in SICK MARSIC300	2022-04-21T15:00:00.000Z	2022-04-21T15:00:00.000Z
sca-2022-0006	Vulnerability in SICK MSC800	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0005	Vulnerability in SICK Overall Equipment Effectiveness (OEE)	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
SCA-2022-0006	Vulnerability in SICK MSC800	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
SCA-2022-0005	Vulnerability in SICK Overall Equipment Effectiveness (OEE)	2022-04-11T15:00:00.000Z	2022-04-11T15:00:00.000Z
sca-2022-0004	Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC	2022-04-11T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0003	Vulnerabilities in SICK FTMg	2022-03-31T15:00:00.000Z	2022-03-31T15:00:00.000Z
SCA-2022-0004	Microsoft vulnerability affects multiple SICK IPCs with SICK MEAC	2022-04-11T15:00:00.000Z	2022-03-31T15:00:00.000Z
SCA-2022-0003	Vulnerabilities in SICK FTMg	2022-03-31T15:00:00.000Z	2022-03-31T15:00:00.000Z
sca-2022-0002	PwnKit vulnerability affects multiple SICK IPCs	2022-02-23T16:00:00.000Z	2022-02-23T16:00:00.000Z
SCA-2022-0002	PwnKit vulnerability affects multiple SICK IPCs	2022-02-23T16:00:00.000Z	2022-02-23T16:00:00.000Z
sca-2022-0001	Vulnerability in SICK FieldEcho	2022-02-17T16:00:00.000Z	2022-02-17T16:00:00.000Z
SCA-2022-0001	Vulnerability in SICK FieldEcho	2022-02-17T16:00:00.000Z	2022-02-17T16:00:00.000Z
sca-2021-0003	SICK Security Advisory for Apache Log4j (CVE-2021-44228)	2021-12-14T17:00:00.000Z	2021-12-17T12:00:00.000Z
SCA-2021-0003	SICK Security Advisory for Apache Log4j (CVE-2021-44228)	2021-12-14T17:00:00.000Z	2021-12-17T12:00:00.000Z
sca-2021-0004	Vulnerabilities in SICK SOPAS ET	2021-12-16T08:00:00.000Z	2021-12-17T08:00:00.000Z
SCA-2021-0004	Vulnerabilities in SICK SOPAS ET	2021-12-16T08:00:00.000Z	2021-12-17T08:00:00.000Z
sca-2021-0002	MEAC affected by Windows SMBv1 vulnerability	2021-08-04T10:00:00.000Z	2021-08-04T10:00:00.000Z
SCA-2021-0002	MEAC affected by Windows SMBv1 vulnerability	2021-08-04T10:00:00.000Z	2021-08-04T10:00:00.000Z
sca-2021-0001	Inadequate SSH configuration in SICK Visionary-S CX	2021-06-25T10:00:00.000Z	2021-06-25T10:00:00.000Z
SCA-2021-0001	Inadequate SSH configuration in SICK Visionary-S CX	2021-06-25T10:00:00.000Z	2021-06-25T10:00:00.000Z
sca-2020-0005	Package Analytics affected by Windows TCP/IP vulnerability	2020-10-29T11:00:00.000Z	2020-10-29T11:00:00.000Z
SCA-2020-0005	Package Analytics affected by Windows TCP/IP vulnerability	2020-10-29T11:00:00.000Z	2020-10-29T11:00:00.000Z
sca-2020-0004	Vulnerability in Platform Mechanism AutoIP	2020-08-31T10:00:00.000Z	2020-08-31T10:00:00.000Z
SCA-2020-0004	Vulnerability in Platform Mechanism AutoIP	2020-08-31T10:00:00.000Z	2020-08-31T10:00:00.000Z
sca-2020-0003	MEAC affected by Windows SMBv3 vulnerability	2020-08-07T10:00:00.000Z	2020-08-07T10:00:00.000Z
SCA-2020-0003	MEAC affected by Windows SMBv3 vulnerability	2020-08-07T10:00:00.000Z	2020-08-07T10:00:00.000Z
sca-2020-0002	Vulnerabilities in SICK Package Analytics	2020-08-07T10:00:00.000Z	2020-07-28T10:00:00.000Z

ID	Description	Published	Updated
NN-2023:10-01	DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0	2023-09-18T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2022:2-02	Authenticated RCE on project configuration import in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
NN-2022:2-01	Authenticated RCE on logo report upload in Guardian/CMC before 22.0.0	2022-02-14T11:00:00.000Z	2024-09-19T11:00:00.000Z
nn-2023_5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023_16-01	Path traversal via 'zip slip' in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023_14-01	Unsafe temporary data privileges on Unix systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023_13-01	Missing authentication for local web interface in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023_1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023:5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023:16-01	Path traversal via 'zip slip' in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023:14-01	Unsafe temporary data privileges on Unix systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023:13-01	Missing authentication for local web interface in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2023:1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2021_2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2021_1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2021:2-01	Authenticated command path traversal on timezone settings in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2021:1-01	Authenticated command injection when changing date settings or hostname in Guardian/CMC before 20.0.7.4	2021-02-22T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2020_3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2020_2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2020:3-01	Angular template injection on custom report name field	2020-05-26T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2020:2-01	Cross-site request forgery attack on change password form	2020-05-26T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2019_2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2019_1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2019:2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2024-05-20T11:00:00.000Z
nn-2019:1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2024-05-20T11:00:00.000Z
NN-2023:5-01	Information disclosure via the debug function in assertions in Guardian/CMC before 22.6.2	2023-08-09T11:00:00.000Z	2024-05-20T11:00:00.000Z
NN-2023:16-01	Path traversal via 'zip slip' in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
NN-2023:14-01	Unsafe temporary data privileges on Unix systems in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
NN-2023:13-01	Missing authentication for local web interface in Arc before v1.6.0	2024-05-15T11:00:00.000Z	2024-05-20T11:00:00.000Z
NN-2023:1-01	Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2	2023-05-03T11:00:00.000Z	2024-05-20T11:00:00.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-202106-0541	A CWE-640: Weak Password Recovery Mechanism for Forgotten Password vulnerability exists i…	2024-11-29T22:41:05.395000Z
var-201404-0398	Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 an…	2024-11-29T22:40:03.814000Z
var-201512-0325	The xmlSAX2TextNode function in SAX2.c in the push interface in the HTML parser in libxml…	2024-11-29T22:39:27.935000Z
var-201110-0442	ospf_packet.c in ospfd in Quagga before 0.99.19 allows remote attackers to cause a denial…	2024-11-29T22:39:20.695000Z
var-202108-1249	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2024-11-29T22:39:20.492000Z
var-201908-0266	Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a den…	2024-11-29T22:39:19.970000Z
var-201401-0010	The get_free_port function in Xen allows local authenticated DomU users to cause a denial…	2024-11-29T22:39:13.941000Z
var-201903-0441	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:39:13.461000Z
var-202205-1313	A memory corruption issue was addressed with improved state management. This issue is fix…	2024-11-29T22:39:12.582000Z
var-202104-0160	An out-of-bounds write issue was addressed with improved bounds checking. This issue is f…	2024-11-29T22:39:12.341000Z
var-201912-0584	A memory corruption issue was addressed with improved input validation. This issue is fix…	2024-11-29T22:39:12.042000Z
var-202010-1294	A use after free issue was addressed with improved memory management. This issue is fixed…	2024-11-29T22:39:02.841000Z
var-201505-0337	The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorit…	2024-11-29T22:38:58.066000Z
var-202206-1157	Incomplete cleanup in specific special register write operations for some Intel(R) Proces…	2024-11-29T22:38:27.104000Z
var-201912-0589	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:38:26.505000Z
var-202201-0304	A logic issue was addressed with improved state management. This issue is fixed in iOS 15…	2024-11-29T22:38:25.432000Z
var-202203-0129	A cookie management issue was addressed with improved state management. This issue is fix…	2024-11-29T22:38:19.652000Z
var-201103-0294	Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800…	2024-11-29T22:38:19.331000Z
var-202210-0997	An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML docum…	2024-11-29T22:38:18.877000Z
var-202105-0131	A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packe…	2024-11-29T22:37:42.279000Z
var-201210-0272	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:37:41.281000Z
var-201904-1323	A memory corruption issue was addressed with improved memory handling. This issue affecte…	2024-11-29T22:37:41.181000Z
var-200604-0209	Unspecified vulnerability in Microsoft Internet Explorer 5.01 through 6 allows remote att…	2024-11-29T22:37:40.335000Z
var-200809-0184	Race condition in Login Window in Apple Mac OS X 10.5 through 10.5.4, when a blank-passwo…	2024-11-29T22:37:38.416000Z
var-200110-0170	The Legion of the Bouncy Castle Java Cryptography API before release 1.38, as used in Cry…	2024-11-29T22:37:36.551000Z
var-201509-0438	Buffer overflow in the gethostbyname_r and other unspecified NSS functions in the GNU C L…	2024-11-29T22:37:33.901000Z
var-202003-1785	FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali…	2024-11-29T22:37:30.055000Z
var-201912-0593	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:36:43.180000Z
var-201009-0241	Adobe Flash Player 10.1.82.76 and earlier on Windows, Mac OS X, Linux, and Solaris and 10…	2024-11-29T22:36:42.881000Z
var-201912-0605	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:36:42.789000Z

ID	Description	Published	Updated
jvndb-2025-014081	Multiple Brother and its OEM products with weak initial administrator passwords	2025-09-19T10:52+09:00	2025-09-19T10:52+09:00
jvndb-2025-000079	UNIVERGE IX/IX-R/IX-V series routers provided by NEC Corporation vulnerable to cross-site scripting	2025-09-18T17:43+09:00	2025-09-18T17:43+09:00
jvndb-2025-000078	Century HW RAID Manager registers a Windows service with an unquoted file path	2025-09-17T13:45+09:00	2025-09-17T13:45+09:00
jvndb-2025-000048	WTW-EAGLE App vulnerable to improper server certificate validation	2025-09-12T13:57+09:00	2025-09-12T13:57+09:00
jvndb-2025-000070	"Gunosy" App vulnerable to insertion of sensitive information into sent data	2025-09-02T14:20+09:00	2025-09-09T09:51+09:00
jvndb-2025-000072	Obsidian GitHub Copilot Plugin stores sensitive information in cleartext	2025-09-05T16:52+09:00	2025-09-05T16:52+09:00
jvndb-2025-000073	RATOC RAID Monitoring Manager for Windows registers a Windows service with an unquoted file path	2025-09-05T16:20+09:00	2025-09-05T16:20+09:00
jvndb-2025-000071	"Yahoo! Shopping" App for Android fails to restrict custom URL schemes properly	2025-09-05T15:12+09:00	2025-09-05T15:12+09:00
jvndb-2025-000075	Multiple vulnerabilities in TkEasyGUI	2025-09-05T14:53+09:00	2025-09-05T14:53+09:00
jvndb-2025-000069	Web Caster V130 vulnerable to cross-site request forgery	2025-09-03T14:23+09:00	2025-09-03T14:23+09:00
jvndb-2025-000068	Seiko Solutions SkyBridge BASIC MB-A130 vulnerable to OS command injection	2025-09-01T16:21+09:00	2025-09-01T16:21+09:00
jvndb-2025-012659	Denial-of-service (DoS) vulnerability in Konica Minolta bizhub series	2025-09-01T15:22+09:00	2025-09-01T15:22+09:00
jvndb-2025-000067	Multiple vulnerabilities in multiple iND products	2025-08-29T14:47+09:00	2025-08-29T14:47+09:00
jvndb-2025-000064	Multiple vulnerabilities in SS1	2025-08-27T15:13+09:00	2025-08-27T15:13+09:00
jvndb-2025-000065	ScanSnap Manager installers vulnerable to privilege escalation	2025-08-27T14:22+09:00	2025-08-27T14:22+09:00
jvndb-2025-011884	FUJIFILM Healthcare Americas Synapse Mobility vulnerable to Privilege Escalation	2025-08-21T11:49+09:00	2025-08-25T10:38+09:00
jvndb-2025-000063	Western Digital Kitfox registers a Windows service with an unquoted file path	2025-08-22T13:37+09:00	2025-08-22T13:37+09:00
jvndb-2025-000062	Multiple vulnerabilities in Group-Office	2025-08-21T14:03+09:00	2025-08-21T14:03+09:00
jvndb-2025-000061	Multiple vulnerabilities in Movable Type	2025-08-20T15:30+09:00	2025-08-20T15:30+09:00
jvndb-2025-000059	Seagate Toolkit registers a Windows service with an unquoted file path	2025-08-14T12:32+09:00	2025-08-19T14:40+09:00
jvndb-2025-010854	Trend Micro Endpoint security products for enterprises vulnerable to multiple OS command injection	2025-08-07T12:25+09:00	2025-08-19T11:36+09:00
jvndb-2025-007521	Multiple Brother driver installers for Windows vulnerable to privilege escalation	2025-06-27T09:37+09:00	2025-08-19T11:29+09:00
jvndb-2025-000060	PgManage vulnerable to injection	2025-08-18T13:40+09:00	2025-08-18T13:40+09:00
jvndb-2025-000058	WordPress plugin "Advanced Custom Fields" vulnerable to HTML injection	2025-08-08T15:29+09:00	2025-08-08T15:29+09:00
jvndb-2025-010972	Multiple SEIKO EPSON products use weak initial passwords	2025-08-08T14:50+09:00	2025-08-08T14:50+09:00
jvndb-2025-000057	Multiple vulnerabilities in Mubit Powered BLUE 870	2025-08-08T14:47+09:00	2025-08-08T14:47+09:00
jvndb-2025-000056	Multiple vulnerabilities in Sato label printers CL4/6NX Plus and CL4/6NX-J Plus series	2025-08-06T16:38+09:00	2025-08-06T16:38+09:00
jvndb-2025-010603	Out-of-bounds write vulnerability in FUJIFILM Business Innovation MFPs	2025-08-05T11:29+09:00	2025-08-05T11:29+09:00
jvndb-2025-010408	Multiple vulnerabilities in PowerCMS	2025-08-01T12:05+09:00	2025-08-01T12:05+09:00
jvndb-2025-000055	ZXHN-F660T and ZXHN-F660A use a common credential for all installations	2025-07-31T15:12+09:00	2025-07-31T15:12+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated