Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-31949	6.5 (3.1)	LibreChat Denial of Service (DoS) via Unhandled Except…	danny-avila	LibreChat	2026-03-13T19:47:24.653Z	2026-03-13T19:47:24.653Z
CVE-2026-31944	7.6 (3.1)	LibreChat MCP OAuth callback does not validate browser…	danny-avila	LibreChat	2026-03-13T19:44:30.850Z	2026-03-13T19:44:30.850Z
CVE-2026-31899	7.5 (3.1)	CairoSVG vulnerable to Exponential DoS via recursive <…	Kozea	CairoSVG	2026-03-13T19:38:43.990Z	2026-03-13T19:38:43.990Z
CVE-2025-36368	6.5 (3.1)	IBM Sterling B2B Integrator and IBM Sterling File Gate…	IBM	Sterling B2B Integrator	2026-03-13T19:35:46.030Z	2026-03-13T19:36:14.607Z
CVE-2026-31886	9.1 (3.1)	Dagu has a Path Traversal via `dagRunId` in Inline DAG…	dagu-org	dagu	2026-03-13T19:32:09.415Z	2026-03-13T19:43:18.359Z
CVE-2026-31882	7.5 (3.1)	Dagu SSE Authentication Bypass in Basic Auth Mode	dagu-org	dagu	2026-03-13T19:28:25.615Z	2026-03-13T19:43:56.406Z
CVE-2023-40693	5.4 (3.1)	IBM Sterling B2B Integrator and IBM Sterling File Gate…	IBM	Sterling B2B Integrator	2026-03-13T19:25:02.688Z	2026-03-13T19:44:18.750Z
CVE-2026-31864	6.8 (3.1)	JumpServer has a Server-Side Template Injection Leadin…	jumpserver	jumpserver	2026-03-13T19:22:05.168Z	2026-03-13T19:44:51.850Z
CVE-2026-31814	8.7 (4.0)	Yamux remote Panic via malformed WindowUpdate credit	libp2p	rust-yamux	2026-03-13T19:19:41.879Z	2026-03-13T19:38:02.290Z
CVE-2026-31798	5 (3.1)	JumpServer Improper Certificate Validation in Custom S…	jumpserver	jumpserver	2026-03-13T19:15:26.081Z	2026-03-13T19:38:35.576Z
CVE-2025-14483	4.3 (3.1)	IBM Sterling B2B Integrator and IBM Sterling File Gate…	IBM	Sterling B2B Integrator	2026-03-13T19:15:11.844Z	2026-03-13T19:37:32.919Z
CVE-2026-30961	4.3 (3.1)	Gokapi's File Request MaxSize Limit Bypassed via Multi…	Forceu	Gokapi	2026-03-13T19:09:38.427Z	2026-03-13T19:39:14.146Z
CVE-2025-14504	5.4 (3.1)	IBM Sterling B2B Integrator and IBM Sterling File Gate…	IBM	Sterling B2B Integrator	2026-03-13T19:08:37.702Z	2026-03-13T19:37:07.983Z
CVE-2026-30955	6.5 (3.1)	Gokapi vulnerable to DoS in E2E Metadata Parser	Forceu	Gokapi	2026-03-13T19:07:55.836Z	2026-03-13T19:39:58.108Z
CVE-2026-30943	4.1 (3.1)	Gokapi has Privilege Escalation in File Replace	Forceu	Gokapi	2026-03-13T19:07:01.576Z	2026-03-13T19:40:38.395Z
CVE-2026-30915	5.3 (4.0)	SFTPGo improperly sanitizes placeholders in group home…	drakkan	sftpgo	2026-03-13T19:04:36.856Z	2026-03-13T19:41:17.258Z
CVE-2026-30914	5.3 (4.0)	SFTPGo has a Path Traversal and Permission Bypass via …	drakkan	sftpgo	2026-03-13T19:02:28.270Z	2026-03-13T19:41:55.916Z
CVE-2026-30853	5 (3.1)	calibre has a Path Traversal Leading to Arbitrary File Write	kovidgoyal	calibre	2026-03-13T19:00:09.925Z	2026-03-13T19:42:26.573Z
CVE-2026-0835	5.4 (3.1)	IBM Sterling B2B Integrator and IBM Sterling File…	IBM	Sterling B2B Integrator	2026-03-13T18:57:35.435Z	2026-03-13T19:36:39.022Z
CVE-2025-71263	7.4 (3.1)	In UNIX Fourth Research Edition (v4), the su comm…	AT&T Bell Labs	UNIX	2026-03-13T18:38:07.721Z	2026-03-13T19:36:17.585Z
CVE-2025-13702	6.1 (3.1)	IBM Sterling Partner Engagement Manager Cross-Site Scripting	IBM	Sterling Partner Engagement Manager	2026-03-13T18:33:12.740Z	2026-03-13T19:35:38.848Z
CVE-2025-13718	3.7 (3.1)	IBM Sterling Partner Engagement Manager Information Di…	IBM	Sterling Partner Engagement Manager	2026-03-13T18:33:07.785Z	2026-03-13T19:35:14.971Z
CVE-2025-13723	5.3 (3.1)	IBM Sterling Partner Engagement Manager Information Di…	IBM	Sterling Partner Engagement Manager	2026-03-13T18:32:45.559Z	2026-03-13T19:34:50.670Z
CVE-2025-12453	5.1 (4.0)	Improper neutralization of input during web page gener…	OpenText™	Vertica	2026-03-13T18:30:53.495Z	2026-03-13T19:34:21.690Z
CVE-2025-12454	5.1 (4.0)	Improper neutralization of input during web page gener…	OpenText™	Vertica	2026-03-13T18:30:40.822Z	2026-03-13T19:33:59.150Z
CVE-2025-12455	5.1 (4.0)	Username Enumeration Observable Response Discrepancy v…	OpenText™	Vertica	2026-03-13T18:30:27.903Z	2026-03-13T19:33:40.096Z
CVE-2025-13726	5.3 (3.1)	IBM Sterling Partner Engagement Manager Information Di…	IBM	Sterling Partner Engagement Manager	2026-03-13T18:26:34.401Z	2026-03-13T19:33:11.395Z
CVE-2025-14811	3.1 (3.1)	IBM Sterling Partner Engagement Manager Information Di…	IBM	Sterling Partner Engagement Manager	2026-03-13T18:22:00.496Z	2026-03-13T18:44:03.621Z
CVE-2026-31897	0 (3.1)	FreeRDP has an out-of-bounds read in `freerdp_bitmap_d…	FreeRDP	FreeRDP	2026-03-13T17:42:11.932Z	2026-03-13T18:10:06.909Z
CVE-2026-31806	9.3 (4.0)	FreeRDP has a Heap Buffer Overflow in nsc_process_mess…	FreeRDP	FreeRDP	2026-03-13T17:40:19.920Z	2026-03-13T17:40:19.920Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-32419	5.9 (3.1)	WordPress List category posts plugin <= 0.93.1 - Cross…	Fernando Briano	List category posts	2026-03-13T11:42:15.955Z	2026-03-13T18:59:46.765Z
CVE-2026-32418	7.6 (3.1)	WordPress Meow Gallery plugin <= 5.4.4 - SQL Injection…	Jordy Meow	Meow Gallery	2026-03-13T11:42:15.769Z	2026-03-13T18:15:07.795Z
CVE-2026-32417	5.4 (3.1)	WordPress Pochipp plugin < 1.18.9 - Broken Access Cont…	wppochipp	Pochipp	2026-03-13T11:42:15.593Z	2026-03-13T18:54:48.842Z
CVE-2026-32416	5.4 (3.1)	WordPress PDF Poster plugin <= 2.4.0 - Broken Access C…	bPlugins	PDF Poster	2026-03-13T11:42:15.425Z	2026-03-13T18:19:12.356Z
CVE-2026-32415	N/A	WordPress Squeeze plugin <= 1.7.7 - Directory Traversa…	Bogdan Bendziukov	Squeeze	2026-03-13T11:42:15.203Z	2026-03-13T11:42:15.203Z
CVE-2026-32414	7.2 (3.1)	WordPress Advanced Woo Labels plugin <= 2.36 - Remote …	ILLID	Advanced Woo Labels	2026-03-13T11:42:14.914Z	2026-03-13T18:21:55.131Z
CVE-2026-32413	5.3 (3.1)	WordPress Permalink Manager Lite plugin < 2.5.3 - Brok…	Maciej Bis	Permalink Manager Lite	2026-03-13T11:42:14.732Z	2026-03-13T18:53:32.824Z
CVE-2026-32412	5.4 (3.1)	WordPress Gift Up Gift Cards for WordPress and WooComm…	Gift Up!	Gift Up Gift Cards for WordPress and WooCommerce	2026-03-13T11:42:14.544Z	2026-03-13T18:27:03.463Z
CVE-2026-32411	6.5 (3.1)	WordPress Embed Calendly plugin <= 4.4 - Cross Site Sc…	Simpma	Embed Calendly	2026-03-13T11:42:14.354Z	2026-03-13T19:23:48.148Z
CVE-2026-32410	5.3 (3.1)	WordPress WBW Currency Switcher for WooCommerce plugin…	WBW Plugins	WBW Currency Switcher for WooCommerce	2026-03-13T11:42:14.149Z	2026-03-13T18:30:00.729Z
CVE-2026-32409	5.3 (3.1)	WordPress Forminator plugin <= 1.50.2 - Broken Access …	WPMU DEV - Your All-in-One WordPress Platform	Forminator	2026-03-13T11:42:13.977Z	2026-03-13T18:53:32.678Z
CVE-2026-32408	4.3 (3.1)	WordPress Brizy plugin <= 2.7.23 - Broken Access Contr…	themefusecom	Brizy	2026-03-13T11:42:13.798Z	2026-03-13T18:52:34.197Z
CVE-2026-32407	4.3 (3.1)	WordPress WPC Smart Wishlist for WooCommerce plugin <=…	WPClever	WPC Smart Wishlist for WooCommerce	2026-03-13T11:42:13.638Z	2026-03-13T18:55:19.154Z
CVE-2026-32406	4.3 (3.1)	WordPress WPC Product Bundles for WooCommerce plugin <…	WPClever	WPC Product Bundles for WooCommerce	2026-03-13T11:42:13.454Z	2026-03-13T18:56:03.247Z
CVE-2026-32405	N/A	WordPress WoodMart theme <= 8.3.9 - Sensitive Data Exp…	xtemos	WoodMart	2026-03-13T11:42:13.263Z	2026-03-13T11:42:13.263Z
CVE-2026-32404	5.3 (3.1)	WordPress Studio99 WP Monitor plugin <= 1.0.3 - Broken…	Studio99	Studio99 WP Monitor	2026-03-13T11:42:13.050Z	2026-03-13T19:00:10.097Z
CVE-2026-32403	6.5 (3.1)	WordPress Toocheke Companion plugin <= 1.194 - Cross S…	toocheke	Toocheke Companion	2026-03-13T11:42:12.862Z	2026-03-13T19:23:48.283Z
CVE-2026-32402	5.3 (3.1)	WordPress Image Slider by Ays plugin <= 2.7.1 - Broken…	Ays Pro	Image Slider by Ays	2026-03-13T11:42:12.702Z	2026-03-13T19:05:11.122Z
CVE-2026-32401	N/A	WordPress Client Invoicing by Sprout Invoices plugin <…	BoldGrid	Client Invoicing by Sprout Invoices	2026-03-13T11:42:12.509Z	2026-03-13T11:42:12.509Z
CVE-2026-32400	7.5 (3.1)	WordPress Boldman theme <= 7.7 - Local File Inclusion …	ThemetechMount	Boldman	2026-03-13T11:42:12.279Z	2026-03-13T19:08:21.061Z
CVE-2026-32399	8.5 (3.1)	WordPress Media LIbrary Assistant plugin <= 3.32 - SQL…	David Lingren	Media LIbrary Assistant	2026-03-13T11:42:12.062Z	2026-03-13T19:33:50.703Z
CVE-2026-32398	N/A	WordPress TeraWallet – For WooCommerce plugin <= 1.5.1…	Subrata Mal	TeraWallet – For WooCommerce	2026-03-13T11:42:11.880Z	2026-03-13T11:42:11.880Z
CVE-2026-32397	5.3 (3.1)	WordPress Filter & Grids plugin <= 3.5.1 - Broken Acce…	YMC	Filter & Grids	2026-03-13T11:42:11.696Z	2026-03-13T18:53:32.512Z
CVE-2026-32396	5.3 (3.1)	WordPress Team plugin <= 5.0.13 - Broken Access Contro…	RadiusTheme	Team	2026-03-13T11:42:11.496Z	2026-03-13T20:27:54.314Z
CVE-2026-32395	5.3 (3.1)	WordPress Xpro Addons For Beaver Builder – Lite plugin…	Xpro	Xpro Addons For Beaver Builder – Lite	2026-03-13T11:42:11.324Z	2026-03-13T18:53:32.118Z
CVE-2026-32394	N/A	WordPress PublishPress Capabilities plugin <= 2.31.0 -…	PublishPress	PublishPress Capabilities	2026-03-13T11:42:11.143Z	2026-03-13T11:42:11.143Z
CVE-2026-32393	N/A	WordPress Greenly Theme Addons plugin < 8.2 - Local Fi…	Creatives_Planet	Greenly Theme Addons	2026-03-13T11:42:10.976Z	2026-03-13T11:42:10.976Z
CVE-2026-32392	N/A	WordPress Greenly theme <= 8.1 - Local File Inclusion …	Creatives_Planet	Greenly	2026-03-13T11:42:10.798Z	2026-03-13T11:42:10.798Z
CVE-2026-32391	5.4 (3.1)	WordPress SmartFix theme < 1.2.4 - Broken Access Contr…	linethemes	SmartFix	2026-03-13T11:42:10.625Z	2026-03-13T18:55:45.889Z
CVE-2026-32390	N/A	WordPress Nanosoft theme < 1.3.2 - Broken Access Contr…	linethemes	Nanosoft	2026-03-13T11:42:10.444Z	2026-03-13T11:42:10.444Z

ID	Description	Published	Updated
fkie_cve-2026-2577	The WhatsApp bridge component in Nanobot binds the WebSocket server to all network interfaces (0.0.…	2026-02-16T10:16:08.827	2026-02-18T17:52:22.253
fkie_cve-2026-2550	A vulnerability was found in EFM iptime A6004MX 14.18.2. Affected is the function commit_vpncli_fil…	2026-02-16T10:16:08.623	2026-02-18T17:52:22.253
fkie_cve-2026-2549	A vulnerability has been found in zhanghuanhao LibrarySystem 图书馆管理系统 up to 1.1.1. This impacts an u…	2026-02-16T10:16:08.403	2026-02-18T17:52:22.253
fkie_cve-2026-0999	Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 fail to properly validat…	2026-02-16T10:16:08.140	2026-02-18T20:20:07.833
fkie_cve-2026-0998	Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 and Mattermost Plugin Zo…	2026-02-16T10:16:07.983	2026-02-18T20:22:51.917
fkie_cve-2026-0997	Mattermost versions 11.1.x <= 11.1.2, 10.11.x <= 10.11.9, 11.2.x <= 11.2.1 and Mattermost Plugin Zo…	2026-02-16T10:16:07.793	2026-02-18T20:23:34.847
fkie_cve-2025-59905	Cross-Site Scripting (XSS) vulnerability reflected in Kubysoft, which occurs through multiple param…	2026-02-16T10:16:07.390	2026-03-09T20:44:34.220
fkie_cve-2025-59904	Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, which is triggered through multiple pa…	2026-02-16T10:16:07.240	2026-03-09T20:44:29.440
fkie_cve-2025-59903	Stored Cross-Site Scripting (XSS) vulnerability in Kubysoft, where uploaded SVG images are not prop…	2026-02-16T10:16:06.980	2026-03-09T20:01:14.500
fkie_cve-2026-2548	A flaw has been found in WAYOS FBM-220G 24.10.19. This affects the function sub_40F820 of the file …	2026-02-16T09:16:08.853	2026-02-18T17:52:22.253
fkie_cve-2026-2547	A vulnerability was detected in LigeroSmart up to 6.1.26. The impacted element is the function Agen…	2026-02-16T09:16:08.660	2026-02-18T21:45:21.910
fkie_cve-2026-2546	A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an …	2026-02-16T09:16:08.437	2026-02-19T19:39:34.103
fkie_cve-2026-2545	A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the …	2026-02-16T08:16:05.587	2026-02-19T19:39:45.443
fkie_cve-2026-2544	A security flaw has been discovered in yued-fe LuLu UI up to 3.0.0. This issue affects the function…	2026-02-16T08:16:05.287	2026-02-18T17:52:22.253
fkie_cve-2026-2543	A vulnerability was identified in vichan-devel vichan up to 5.1.5. This vulnerability affects unkno…	2026-02-16T07:17:01.007	2026-02-18T17:52:22.253
fkie_cve-2026-2542	A weakness has been identified in Total VPN 0.5.29.0 on Windows. Affected by this vulnerability is …	2026-02-16T07:17:00.803	2026-02-18T17:52:22.253
fkie_cve-2026-2538	A security flaw has been discovered in Flos Freeware Notepad2 4.2.22/4.2.23/4.2.24/4.2.25. Affected…	2026-02-16T07:17:00.537	2026-02-18T17:52:22.253
fkie_cve-2026-0929	The RegistrationMagic WordPress plugin before 6.0.7.2 does not have proper capability checks, allo…	2026-02-16T07:17:00.197	2026-02-18T17:52:22.253
fkie_cve-2026-2537	A vulnerability was identified in Comfast CF-E4 2.6.0.1. This impacts an unknown function of the fi…	2026-02-16T06:16:22.320	2026-02-25T15:29:36.473
fkie_cve-2026-2536	A vulnerability was determined in opencc JFlow up to 20260129. This affects the function Imp_Done o…	2026-02-16T06:16:22.063	2026-02-18T17:52:22.253
fkie_cve-2026-2535	A vulnerability was found in Comfast CF-N1 V2 2.6.0.2. The impacted element is the function sub_44A…	2026-02-16T05:16:07.777	2026-02-19T19:40:56.853
fkie_cve-2026-2534	A vulnerability has been found in Comfast CF-N1 V2 2.6.0.2. The affected element is the function su…	2026-02-16T04:15:52.470	2026-02-19T19:41:31.960
fkie_cve-2026-2533	A flaw has been found in Tosei Self-service Washing Machine 4.02. Impacted is an unknown function o…	2026-02-16T04:15:52.283	2026-02-18T17:52:22.253
fkie_cve-2026-2532	A vulnerability was detected in lintsinghua DeepAudit up to 3.0.3. This issue affects some unknown …	2026-02-16T04:15:52.093	2026-02-28T00:38:08.223
fkie_cve-2026-2531	A security vulnerability has been detected in MindsDB up to 25.14.1. This vulnerability affects the…	2026-02-16T04:15:51.897	2026-02-19T19:47:37.377
fkie_cve-2026-2530	A weakness has been identified in Wavlink WL-WN579A3 up to 20210219. This affects the function AddM…	2026-02-16T04:15:51.677	2026-02-18T19:43:36.320
fkie_cve-2026-2529	A security flaw has been discovered in Wavlink WL-WN579A3 up to 20210219. Affected by this issue is…	2026-02-16T02:16:07.000	2026-02-18T20:02:39.143
fkie_cve-2026-2528	A vulnerability was identified in Wavlink WL-WN579A3 up to 20210219. Affected by this vulnerability…	2026-02-16T02:16:06.807	2026-02-18T20:04:38.627
fkie_cve-2026-2527	A vulnerability was determined in Wavlink WL-WN579A3 up to 20210219. Affected is an unknown functio…	2026-02-16T02:16:06.620	2026-02-18T20:11:33.500
fkie_cve-2026-2526	A vulnerability was found in Wavlink WL-WN579A3 up to 20210219. This impacts the function multi_ssi…	2026-02-16T02:16:06.423	2026-02-18T19:07:21.820

ID	Severity	Description	Published	Updated
ghsa-rhj3-mf5j-8rx2		Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-r84h-59vq-9r9m		Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-qqmm-f2gc-79g5	6.5 (3.1)	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-qfm4-6rv5-rvj6		Missing Authorization vulnerability in Noor Alam Checkout for PayPal checkout-for-paypal allows Exp…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-ppqc-83r5-8qrf	5.4 (3.1)	Missing Authorization vulnerability in bPlugins PDF Poster pdf-poster allows Exploiting Incorrectly…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-mc7c-82xm-pvm6	5.4 (3.1)	Missing Authorization vulnerability in linethemes SmartFix smartfix allows Exploiting Incorrectly C…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-m639-8g2x-jq6f	5.4 (3.1)	Server-Side Request Forgery (SSRF) vulnerability in Gift Up! Gift Up Gift Cards for WordPress and W…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-jmhc-6q49-9x2g	7.6 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-03-13T21:31:49Z	2026-03-13T21:31:50Z
ghsa-j3w6-h89g-gv3p	5.4 (3.1)	Cross-Site Request Forgery (CSRF) vulnerability in Ruben Garcia GamiPress gamipress allows Cross Si…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-h2w6-59pq-4hf5		Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnera…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-gphm-7mrm-r227	5.3 (3.1)	Missing Authorization vulnerability in Studio99 Studio99 WP Monitor studio99-wp-monitor allows Expl…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-ghj3-qm3p-98mw	4.3 (3.1)	Missing Authorization vulnerability in WPClever WPC Smart Wishlist for WooCommerce woo-smart-wishli…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-g434-qwq8-gfp9		Missing Authorization vulnerability in linethemes Nanosoft nanosoft allows Exploiting Incorrectly C…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-fqxp-pq5c-xc96	4.3 (3.1)	Missing Authorization vulnerability in themefusecom Brizy brizy allows Exploiting Incorrectly Confi…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-f2cx-fh2v-c92p		Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-cm76-wpcg-hp8m		Missing Authorization vulnerability in Metagauss RegistrationMagic custom-registration-form-builder…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-c67f-f43r-q9pr	5.3 (3.1)	Missing Authorization vulnerability in Ays Pro Image Slider by Ays ays-slider allows Exploiting Inc…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-9cmf-qgf8-jfxf		Path Traversal: '.../...//' vulnerability in Bogdan Bendziukov Squeeze squeeze allows Path Traversa…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-8xx7-4vc6-7h4v	7.5 (3.1)	Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-8m2p-fr6c-jpjw		Missing Authorization vulnerability in RadiusTheme Team tlp-team allows Exploiting Incorrectly Conf…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-8gpq-6m2x-fjpf	5.4 (3.1)	Missing Authorization vulnerability in EnvoThemes Envo Extra envo-extra allows Exploiting Incorrect…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-7rgq-5gwv-qv9h	4.3 (3.1)	Missing Authorization vulnerability in WPClever WPC Product Bundles for WooCommerce woo-product-bun…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-728p-wcpv-h54h	5.3 (3.1)	Missing Authorization vulnerability in WPMU DEV - Your All-in-One WordPress Platform Forminator for…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-6mw4-4wcp-xqg4	7.2 (3.1)	Improper Control of Generation of Code ('Code Injection') vulnerability in ILLID Advanced Woo Label…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-62gf-39q3-mfcg	5.4 (3.1)	Missing Authorization vulnerability in linethemes GLB glb allows Exploiting Incorrectly Configured …	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-44rx-344j-ccv5	5.3 (3.1)	Missing Authorization vulnerability in YMC Filter & Grids ymc-smart-filter allows Exploiting Incorr…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-3prj-hghv-hc4r	5.3 (3.1)	Missing Authorization vulnerability in Xpro Xpro Addons For Beaver Builder – Lite xpro-addons…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-3j6r-48qr-rm3p	8.5 (3.1)	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-372g-q4vh-mcfm	5.4 (3.1)	Missing Authorization vulnerability in wppochipp Pochipp pochipp allows Exploiting Incorrectly Conf…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z
ghsa-2vm4-q57w-7x2c	5.3 (3.1)	Missing Authorization vulnerability in Maciej Bis Permalink Manager Lite permalink-manager allows E…	2026-03-13T21:31:49Z	2026-03-13T21:31:49Z

ID	Severity	Description	Package	Published	Updated
pysec-2025-26		The Snowflake Connector for Python provides an interface for developing Python applicatio…	snowflake-connector-python	2025-01-29T21:15:21+00:00	2025-04-09T17:27:27.645758+00:00
pysec-2025-58	8.8 (3.1)	vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl…	vllm	2025-01-27T18:15:41+00:00	2025-06-27T21:22:36.583615+00:00
pysec-2025-12		CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St…	codechecker	2025-01-21T15:15:13+00:00	2025-04-08T10:23:23.899726+00:00
pysec-2025-1		An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2…	django	2025-01-14T19:15:32+00:00	2025-01-14T21:22:18.665005+00:00
pysec-2025-33	7.5 (3.1)	Vyper is a Pythonic Smart Contract Language for the EVM. When the Vyper Compiler uses the…	vyper	2025-01-14T18:16:05+00:00	2025-04-23T21:23:01.322686+00:00
pysec-2024-158		Versions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when …	djoser	2024-12-13T05:15:07+00:00	2025-01-14T05:22:11.856636+00:00
pysec-2024-159		Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Arc…	luigi	2024-12-10T05:15:07+00:00	2025-01-14T05:22:17.204098+00:00
pysec-2024-157		An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2…	django	2024-12-06T12:15:18+00:00	2025-01-14T05:22:11.817473+00:00
pysec-2024-156		An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2…	django	2024-12-06T12:15:17+00:00	2025-01-14T05:22:11.736011+00:00
pysec-2024-256		Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm…	mobsf	2024-12-03T16:15:24+00:00	2025-06-27T17:22:53.325430+00:00
pysec-2024-161		Deserialization of untrusted data in IPC and Parquet readers in the Apache Arrow R packag…	pyarrow	2024-11-28T17:15:48+00:00	2025-01-14T05:22:20.554292+00:00
pysec-2024-224	7.0 (3.1)	Excessive directory permissions in MLflow leads to local privilege escalation when using …	mlflow	2024-11-25T14:15:06+00:00	2025-02-03T16:23:40.409646+00:00
pysec-2024-187	9.8 (3.1)	virtualenv before 20.26.6 allows command injection through the activation scripts for a v…	virtualenv	2024-11-24T16:15:06+00:00	2025-01-19T04:23:01.784352+00:00
pysec-2024-229	8.8 (3.1)	Hugging Face Transformers Trax Model Deserialization of Untrusted Data Remote Code Execut…	transformers	2024-11-22T22:15:07+00:00	2025-02-10T23:22:41.499413+00:00
pysec-2024-228	8.8 (3.1)	Hugging Face Transformers MaskFormer Model Deserialization of Untrusted Data Remote Code …	transformers	2024-11-22T22:15:07+00:00	2025-02-10T23:22:41.449105+00:00
pysec-2024-227	8.8 (3.1)	Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execu…	transformers	2024-11-22T22:15:06+00:00	2025-02-10T23:22:41.399021+00:00
pysec-2024-178	7.5 (3.1)	Litestar is an Asynchronous Server Gateway Interface (ASGI) framework. Prior to version 2…	litestar	2024-11-20T21:15:08+00:00	2025-01-19T01:52:23.772726+00:00
pysec-2024-160	6.1 (3.1)	lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.cle…	lxml-html-clean	2024-11-19T22:15:21+00:00	2025-01-14T05:22:17.244267+00:00
pysec-2024-124	4.8 (3.1)	Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting…	django-cms	2024-11-18T12:15:00Z	2024-11-20T16:23:43.554559Z
pysec-2024-123	6.1 (3.1)	An open redirection vulnerability exists in pyload/pyload version 0.5.0. The vulnerabilit…	pyload-ng	2024-11-15T11:15:00+00:00	2024-11-19T22:22:34.280606+00:00
pysec-2024-182		Apache Airflow versions before 2.10.3 contain a vulnerability that could expose sensitive…	apache-airflow	2024-11-15T09:15:14+00:00	2025-01-19T04:22:59.398988+00:00
pysec-2024-204	8.1 (3.1)	TorchGeo Remote Code Execution Vulnerability	torchgeo	2024-11-12T18:15:45+00:00	2025-01-19T19:19:01.299352+00:00
pysec-2024-231	8.1 (3.1)	LightGBM Remote Code Execution Vulnerability	lightgbm	2024-11-12T18:15:28+00:00	2025-02-15T07:20:34.246161+00:00
pysec-2024-238		CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St…	codechecker	2024-11-06T15:15:11+00:00	2025-04-08T10:23:23.857960+00:00
pysec-2024-183		CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St…	codechecker	2024-11-06T15:15:11+00:00	2025-01-19T04:22:59.576907+00:00
pysec-2024-202	6.5 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:07+00:00	2025-01-19T16:22:59.212853+00:00
pysec-2024-201	6.1 (3.1)	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:05+00:00	2025-01-19T16:22:59.154645+00:00
pysec-2024-115	9.8 (3.1)	A vulnerability in the GraphCypherQAChain class of langchain-ai/langchain-community versi…	langchain	2024-11-05T16:04:14Z	2024-11-12T19:19:57.535206Z
pysec-2024-259	9.8 (3.1)	In PyTorch <=2.4.1, the RemoteModule has Deserialization RCE. NOTE: this is disputed by m…	torch	2024-10-29T21:15:04+00:00	2025-07-16T03:09:57.748865+00:00
pysec-2024-211	7.5 (3.1)	Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote clien…	waitress	2024-10-29T15:15:12+00:00	2025-01-19T19:19:01.852094+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-1359	Malicious code in libsignal-mod (npm)	2026-03-12T02:18:02Z	2026-03-12T02:18:02Z
mal-2026-1358	Malicious code in dappa-libsignal (npm)	2026-03-12T02:18:02Z	2026-03-12T02:18:02Z
mal-2026-1355	Malicious code in @dappaoffc/baileys-mod (npm)	2026-03-12T02:18:01Z	2026-03-12T02:18:02Z
mal-2026-1354	Malicious code in @dappaoffc/baileys (npm)	2026-03-12T02:18:01Z	2026-03-12T02:18:01Z
mal-2026-1363	Malicious code in react-svg-anchor (npm)	2026-03-12T02:12:32Z	2026-03-12T02:12:33Z
mal-2026-1360	Malicious code in npm-doc-build (npm)	2026-03-12T02:07:51Z	2026-03-12T02:07:52Z
mal-2026-1357	Malicious code in bign.ts (npm)	2026-03-12T02:07:51Z	2026-03-12T02:07:52Z
mal-2026-1356	Malicious code in b2b-common-cb-lib (npm)	2026-03-12T01:56:30Z	2026-03-12T01:56:31Z
mal-2026-1364	Malicious code in svg-safety-tool (npm)	2026-03-12T01:54:01Z	2026-03-12T01:54:01Z
mal-2026-1353	Malicious code in restrict-imports (npm)	2026-03-12T01:46:24Z	2026-03-12T01:46:25Z
mal-2026-1352	Malicious code in jinja-template (npm)	2026-03-12T01:46:24Z	2026-03-12T01:46:25Z
mal-2026-1351	Malicious code in faaladorcli (PyPI)	2026-03-11T23:31:55Z	2026-03-11T23:31:55Z
mal-2026-1350	Malicious code in falador (PyPI)	2026-03-11T23:30:12Z	2026-03-12T00:30:43Z
mal-2026-1347	Malicious code in f0-abstraction-resolver (npm)	2026-03-11T21:06:33Z	2026-03-13T01:40:01Z
mal-2026-1348	Malicious code in locale-clamp-middleware (npm)	2026-03-11T21:05:46Z	2026-03-11T21:05:46Z
mal-2026-1349	Malicious code in mabibilabub (npm)	2026-03-11T20:55:51Z	2026-03-11T20:55:51Z
mal-2026-1346	Malicious code in ts-lint-builder (npm)	2026-03-11T16:48:00Z	2026-03-11T16:48:00Z
mal-2026-1345	Malicious code in npm-builders (npm)	2026-03-11T16:48:00Z	2026-03-11T16:48:00Z
mal-2026-1344	Malicious code in bignum-ts (npm)	2026-03-11T16:48:00Z	2026-03-11T16:48:00Z
mal-2026-1343	Malicious code in chai-as-flex (npm)	2026-03-11T13:24:37Z	2026-03-11T13:24:37Z
mal-2026-1342	Malicious code in collectables (PyPI)	2026-03-11T12:41:02Z	2026-03-11T12:41:02Z
mal-2026-1341	Malicious code in collects (PyPI)	2026-03-11T10:17:52Z	2026-03-11T10:17:53Z
mal-2026-1339	Malicious code in anontest123 (PyPI)	2026-03-11T07:44:14Z	2026-03-11T07:44:14Z
mal-2026-1340	Malicious code in safetest123 (PyPI)	2026-03-11T07:43:06Z	2026-03-11T07:43:06Z
mal-2026-1338	Malicious code in vite-chunker (npm)	2026-03-11T06:26:49Z	2026-03-11T06:26:49Z
mal-2026-1336	Malicious code in tailwindcss-forms-bundler (npm)	2026-03-11T06:26:49Z	2026-03-11T06:26:49Z
mal-2026-1335	Malicious code in tailwindcss-animate-framer (npm)	2026-03-11T06:26:49Z	2026-03-11T06:26:59Z
mal-2026-1333	Malicious code in polygon-gamma-api (npm)	2026-03-11T06:26:49Z	2026-03-11T06:26:49Z
mal-2026-1328	Malicious code in gamma-api-provider (npm)	2026-03-11T06:26:49Z	2026-03-11T06:26:49Z
mal-2026-1332	Malicious code in mui-path-imports (npm)	2026-03-11T06:19:33Z	2026-03-11T06:19:33Z

ID	Description	Published	Updated

ID	Description	Published	Updated
wid-sec-w-2026-0355	PowerDNS Recursor: Mehrere Schwachstellen ermöglichen Denial of Service	2026-02-09T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2026-0353	libpng: Schwachstelle ermöglicht Codeausführung	2026-02-09T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0347	Red Hat Build of Keycloak: Mehrere Schwachstellen	2026-02-09T23:00:00.000+00:00	2026-02-19T23:00:00.000+00:00
wid-sec-w-2026-0345	Golang Go: Mehrere Schwachstellen	2026-02-08T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0335	vim: Schwachstelle ermöglicht Codeausführung	2026-02-05T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2026-0331	BeyondTrust Privileged Remote Access und Remote Support: Schwachstelle ermöglicht Codeausführung	2026-02-05T23:00:00.000+00:00	2026-02-25T23:00:00.000+00:00
wid-sec-w-2026-0326	Red Hat Self-service automation portal for Ansible Automation Platform: Schwachstelle ermöglicht Manipulation von Dateien	2026-02-05T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0324	Linux Kernel: Mehrere Schwachstellen	2026-02-04T23:00:00.000+00:00	2026-03-02T23:00:00.000+00:00
wid-sec-w-2026-0318	n8n: Mehrere Schwachstellen	2026-02-04T23:00:00.000+00:00	2026-02-05T23:00:00.000+00:00
wid-sec-w-2026-0310	Cisco TelePresence Collaboration Endpoint Software: Schwachstelle ermöglicht Denial of Service	2026-02-04T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0309	NGINX OSS und NGINX Plus: Schwachstelle ermöglicht Manipulation von Dateien	2026-02-04T23:00:00.000+00:00	2026-02-12T23:00:00.000+00:00
wid-sec-w-2026-0308	Cisco Evolved Programmable Network Manager und Prime Infrastructure: Schwachstelle ermöglicht Darstellen falscher Informationen	2026-02-04T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0307	Cisco Prime Infrastructure: Schwachstelle ermöglicht Cross-Site Scripting	2026-02-04T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0306	Red Hat Enterprise Linux (pyasn1): Schwachstelle ermöglicht Denial of Service	2026-02-04T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0305	Red Hat Enterprise Linux (libsoup): Mehrere Schwachstellen	2026-02-04T23:00:00.000+00:00	2026-03-02T23:00:00.000+00:00
wid-sec-w-2026-0303	OpenClaw: Schwachstelle ermöglicht Offenlegung von Informationen	2026-02-03T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0302	Red Hat Enterprise Linux (python-wheel): Schwachstelle ermöglicht Privilegieneskalation und Codeausführung	2026-02-03T23:00:00.000+00:00	2026-02-16T23:00:00.000+00:00
wid-sec-w-2026-0297	Django: Mehrere Schwachstellen	2026-02-03T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0291	OpenClaw/Clawdbot: Mehrere Schwachstellen ermöglichen Codeausführung	2026-02-02T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0290	Samsung Android: Mehrere Schwachstellen	2026-02-02T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0289	Kubernetes (ingress-nginx): Mehrere Schwachstellen	2026-02-02T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0284	libxml2 (xmllint): Schwachstelle ermöglicht Denial of Service	2026-02-02T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
bsi-2026-0001	Unauthorized access affects VibroLine and AvibiaLine devices	2026-02-02T13:00:00.000Z	2026-02-02T13:00:00.000Z
wid-sec-w-2026-0278	OpenClaw: Schwachstelle ermöglicht Codeausführung	2026-02-01T23:00:00.000+00:00	2026-03-01T23:00:00.000+00:00
wid-sec-w-2026-0271	Keycloak (Admin API): Schwachstelle ermöglicht Offenlegung von Informationen	2026-02-01T23:00:00.000+00:00	2026-02-02T23:00:00.000+00:00
wid-sec-w-2026-0265	expat: Schwachstelle ermöglicht Codeausführung	2026-01-29T23:00:00.000+00:00	2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0258	Red Hat Enterprise Linux (iperf3): Schwachstelle ermöglicht Codeausführung	2026-01-29T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2026-0250	Drupal Canvas und CAS: Mehrere Schwachstellen	2026-01-28T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0246	Lexmark Laser Printers: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Benutzerrechten	2026-01-28T23:00:00.000+00:00	2026-02-04T23:00:00.000+00:00
wid-sec-w-2026-0244	FreeRDP: Mehrere Schwachstellen	2026-01-27T23:00:00.000+00:00	2026-02-23T23:00:00.000+00:00

ID	Description	Published	Updated
icsa-26-029-03	Rockwell Automation ControlLogix	2026-01-29T07:00:00.000000Z	2026-01-29T07:00:00.000000Z
icsa-26-029-02	Rockwell Automation ArmorStart LT	2026-01-29T07:00:00.000000Z	2026-01-29T07:00:00.000000Z
icsa-26-029-01	KiloView Encoder Series (Update A)	2026-01-29T07:00:00.000000Z	2026-02-05T07:00:00.000000Z
icsa-26-043-06	Siemens SINEC OS	2026-01-28T00:00:00.000000Z	2026-02-25T07:00:00.000000Z
icsa-26-027-04	Johnson Controls Metasys Products	2026-01-27T07:00:00.000000Z	2026-01-27T07:00:00.000000Z
icsa-26-027-01	iba Systems ibaPDA	2026-01-27T07:00:00.000000Z	2026-02-25T07:00:00.000000Z
icsa-26-043-09	Hitachi Energy SuprOS	2026-01-27T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsa-26-036-06	Hitachi Energy FOX61x	2026-01-27T00:00:00.000000Z	2026-02-05T07:00:00.000000Z
icsa-26-036-05	Hitachi Energy XMC20	2026-01-27T00:00:00.000000Z	2026-02-05T07:00:00.000000Z
icsa-26-022-08	EVMAPA	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-07	Delta Electronics DIAView	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-06	Hubitat Elevation Hubs	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-05	Weintek cMT X Series HMI EasyWeb Service	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-04	Johnson Controls Inc. iSTAR Configuration Utility (ICU) tool	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-03	Rockwell Automation CompactLogix 5370	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-022-02	AutomationDirect CLICK Programmable Logic Controller	2026-01-22T07:00:00.000000Z	2026-01-22T07:00:00.000000Z
icsa-26-020-03	Rockwell Automation Verve Asset Manager	2026-01-20T07:00:00.000000Z	2026-01-20T07:00:00.000000Z
va-26-015-01	NOAA PMEL Live Access Server (LAS) command injection	2026-01-15T19:59:37Z	2026-01-15T19:59:37Z
icsa-26-015-01	AVEVA Process Optimization	2026-01-15T07:00:00.000000Z	2026-01-15T07:00:00.000000Z
icsa-26-027-03	Schneider Electric Zigbee Products	2026-01-13T08:00:00.000000Z	2026-01-27T20:13:34.637968Z
icsa-26-022-01	Schneider Electric	2026-01-13T08:00:00.000000Z	2026-01-22T17:29:46.950679Z
icsa-26-015-10	Schneider Electric EcoStruxure Power Build Rapsody	2026-01-13T08:00:00.000000Z	2026-01-14T22:35:43.622072Z
icsa-26-013-03	YoSmart YoLink Smart Hub	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-26-013-02	Rockwell Automation FactoryTalk DataMosaix Private Cloud	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
icsa-26-013-01	Rockwell Automation 432ES-IG3 Series A	2026-01-13T07:00:00.000000Z	2026-01-13T07:00:00.000000Z
va-26-013-01	NSecKrnl driver terminates system processes with crafted IOCTL requests	2026-01-13T00:00:00Z	2026-01-13T00:00:00Z
icsa-26-015-09	Siemens Industrial Edge Device Kit	2026-01-13T00:00:00.000000Z	2026-01-14T21:54:58.722065Z
icsa-26-015-08	Siemens Industrial Edge Devices	2026-01-13T00:00:00.000000Z	2026-01-14T23:03:52.355094Z
icsa-26-015-07	Siemens RUGGEDCOM APE1808 Devices	2026-01-13T00:00:00.000000Z	2026-01-14T22:35:44.478578Z
icsa-26-015-04	Siemens SIMATIC and SIPLUS products	2026-01-13T00:00:00.000000Z	2026-02-12T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-asaftd-webvpn-z5xp8eub	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:54+00:00
cisco-sa-asaftd-webvpn-yrootuw	Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Unauthorized Access Vulnerability	2025-09-25T16:00:00+00:00	2025-11-06T15:50:55+00:00
cisco-sa-webui-xss-vwydgjou	Cisco IOS XE Software Web Authentication Reflected Cross-Site Scripting Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:50+00:00
cisco-sa-snmpwred-x3mjyf5m	Cisco IOS XE Software Simple Network Management Protocol Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-snmp-x4lphte	Cisco IOS and IOS XE Software SNMP Denial of Service and Remote Code Execution Vulnerability	2025-09-24T16:00:00+00:00	2025-10-06T18:27:02+00:00
cisco-sa-secboot-uqfd8avc	Cisco IOS XE Software Secure Boot Bypass Vulnerabilities	2025-09-24T16:00:00+00:00	2025-10-15T15:57:29+00:00
cisco-sa-nbar-dos-lavwtmet	Cisco IOS XE Software Network-Based Application Recognition Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-iosxe-arg-inject-eyddbh4e	Cisco IOS XE Software CLI Argument Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-xe-cmd-inject-rpjm8bgl	Cisco IOS XE Software HTTP API Command Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-tacacs-hdb7thjw	Cisco IOS and IOS XE Software TACACS+ Authentication Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-10-01T16:39:50+00:00
cisco-sa-ios-invalid-url-dos-nvxszf6u	Cisco IOS Software Industrial Ethernet Switch Device Manager Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ios-cli-eb7cz6yo	Cisco IOS and IOS XE Software CLI Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-defaultacl-psjk9nvf	Cisco SD-WAN vEdge Software Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-cat9k-ptmd7bgy	Cisco IOS XE Software for Catalyst 9000 Series Switches Denial of Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-30T14:26:46+00:00
cisco-sa-cat9k-acl-l4k7vxgd	Cisco IOS XE Software on Cisco Catalyst 9500X and 9600X Series Switches Virtual Interface Access Control List Bypass Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-ap-ipv6-gw-tuazpn9o	Cisco Access Point Software Intermittent IPv6 Gateway Change Vulnerability	2025-09-24T16:00:00+00:00	2025-09-26T16:35:51+00:00
cisco-sa-action-frame-inj-qqcncz8h	Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-9800cl-openscep-sb4xtxzp	Cisco IOS XE Software for Catalyst 9800 Series Wireless Controller for Cloud Unauthenticated Access to Certificate Enrollment Service Vulnerability	2025-09-24T16:00:00+00:00	2025-09-24T16:00:00+00:00
cisco-sa-xrsig-uy4zrucg	Cisco IOS XR Software Image Verification Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-iosxr-arp-storm-ejuu55ym	Cisco IOS XR ARP Broadcast Storm Denial of Service Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-acl-packetio-swjhhbtz	Cisco IOS XR Software Management Interface ACL Bypass Vulnerability	2025-09-10T16:00:00+00:00	2025-09-10T16:00:00+00:00
cisco-sa-webex-xss-55bv8hhm	Cisco Webex Meetings Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-webex-urlredirect-uk8ddjsz	Cisco Webex Meetings URL Redirection Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-phone-write-g3kcc5df	Cisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Software Vulnerabilities	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-imp-xss-xqgu4hsg	Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-pi-stored-xss-xjqzsycp	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epnm-info-dis-zhppmfgz	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Information Disclosure Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-epni-arb-file-upload-jjdm2p83	Cisco Evolved Programmable Network Manager Arbitrary File Upload Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-cucm-csrf-w762pryd	Cisco Unified Communications Manager Cross-Site Request Forgery Vulnerability	2025-09-03T16:00:00+00:00	2025-09-03T16:00:00+00:00
cisco-sa-ucs-xss-ey6xhyps	Cisco UCS Manager Software Stored Cross-Site Scripting Vulnerability	2025-08-27T16:00:00+00:00	2025-08-27T16:00:00+00:00

ID	Description	Published	Updated
msrc_cve-2026-24283	Multiple UNC Provider Kernel Driver Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-24282	Push message Routing Service Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23674	MapUrlToZone Security Feature Bypass Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23673	Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23672	Windows Universal Disk Format File System Driver (UDFS) Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23671	Windows Bluetooth RFCOM Protocol Driver Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23669	Windows Print Spooler Remote Code Execution Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23668	Windows Graphics Component Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23667	Broadcast DVR Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23665	Linux Azure Diagnostic extension (LAD) Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23664	Azure IoT Explorer Information Disclosure Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23662	Azure IoT Explorer Information Disclosure Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23661	Azure IoT Explorer Information Disclosure Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23660	Windows Admin Center in Azure Portal Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-23654	GitHub: Zero Shot SCFoundation Remote Code Execution Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-21262	SQL Server Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-20967	System Center Operations Manager (SCOM) Elevation of Privilege Vulnerability	2026-03-10T07:00:00.000Z	2026-03-10T07:00:00.000Z
msrc_cve-2026-0385	Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability	2026-03-10T07:00:00.000Z	2026-03-13T07:00:00.000Z
msrc_cve-2026-26125	Payment Orchestrator Service Elevation of Privilege Vulnerability	2026-03-05T08:00:00.000Z	2026-03-05T08:00:00.000Z
msrc_cve-2026-26124	Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	2026-03-05T08:00:00.000Z	2026-03-06T08:00:00.000Z
msrc_cve-2026-26122	Microsoft ACI Confidential Containers Information Disclosure Vulnerability	2026-03-05T08:00:00.000Z	2026-03-06T08:00:00.000Z
msrc_cve-2026-23651	Microsoft ACI Confidential Containers Elevation of Privilege Vulnerability	2026-03-05T08:00:00.000Z	2026-03-06T08:00:00.000Z
msrc_cve-2026-21536	Microsoft Devices Pricing Program Remote Code Execution Vulnerability	2026-03-05T08:00:00.000Z	2026-03-05T08:00:00.000Z
msrc_cve-2026-3904	CVE-2026-3904	2026-03-02T00:00:00.000Z	2026-03-13T01:03:00.000Z
msrc_cve-2026-3805	use after free in SMB connection reuse	2026-03-02T00:00:00.000Z	2026-03-13T01:03:13.000Z
msrc_cve-2026-3784	wrong proxy connection reuse with credentials	2026-03-02T00:00:00.000Z	2026-03-13T01:02:44.000Z
msrc_cve-2026-3783	token leak with redirect and netrc	2026-03-02T00:00:00.000Z	2026-03-13T01:02:16.000Z
msrc_cve-2026-3731	libssh SFTP Extension Name sftp.c sftp_extensions_get_data out-of-bounds	2026-03-02T00:00:00.000Z	2026-03-11T01:01:46.000Z
msrc_cve-2026-3713	pnggroup libpng pnm2png pnm2png.c do_pnm2png heap-based overflow	2026-03-02T00:00:00.000Z	2026-03-11T01:03:59.000Z
msrc_cve-2026-3494	MariaDB Server Audit Plugin Comment Handling Bypass	2026-03-02T00:00:00.000Z	2026-03-11T01:01:52.000Z

ID	Description	Published	Updated
ncsc-2026-0038	Kwetsbaarheid verholpen in BIND 9	2026-01-23T08:54:43.506215Z	2026-01-23T08:54:43.506215Z
ncsc-2026-0037	Kwetsbaarheden verholpen in GitLab Community Edition en Enterprise Edition	2026-01-22T12:35:30.505659Z	2026-01-22T12:35:30.505659Z
ncsc-2026-0036	Kwetsbaarheden verholpen in Cisco Unified Communications producten	2026-01-22T09:49:39.156365Z	2026-01-22T09:49:39.156365Z
ncsc-2026-0035	Kwetsbaarheid verholpen in Palo Alto Networks PAN-OS	2026-01-22T09:22:36.433609Z	2026-01-22T09:22:36.433609Z
ncsc-2026-0034	Kwetsbaarheden verholpen in Atlassian producten	2026-01-22T09:03:42.667958Z	2026-01-22T09:03:42.667958Z
ncsc-2026-0033	Kwetsbaarheid verholpen in GNU Inetutils telnetd	2026-01-21T14:15:46.424529Z	2026-01-21T14:15:46.424529Z
ncsc-2026-0032	Kwetsbaarheden verholpen in Oracle MySQL	2026-01-21T10:12:24.844869Z	2026-01-21T10:12:24.844869Z
ncsc-2026-0031	Kwetsbaarheden verholpen in Oracle JD Edwards	2026-01-21T10:12:00.674214Z	2026-01-21T10:12:00.674214Z
ncsc-2026-0030	Kwetsbaarheden verholpen in Oracle Java	2026-01-21T10:11:39.759123Z	2026-01-21T10:11:39.759123Z
ncsc-2026-0029	Kwetsbaarheden verholpen in Oracle Hyperion	2026-01-21T10:10:46.297433Z	2026-01-21T10:10:46.297433Z
ncsc-2026-0028	Kwetsbaarheden verholpen in Oracle Analytics	2026-01-21T10:10:15.985753Z	2026-01-21T10:10:15.985753Z
ncsc-2026-0027	Kwetsbaarheden verholpen in Oracle Fusion Middleware	2026-01-21T10:08:59.379774Z	2026-01-21T10:08:59.379774Z
ncsc-2026-0026	Kwetsbaarheden verholpen in Oracle Enterprise Manager	2026-01-21T10:06:27.920991Z	2026-01-21T10:06:27.920991Z
ncsc-2026-0025	Kwetsbaarheden verholpen in Oracle Financial Services	2026-01-21T09:55:33.889125Z	2026-01-21T09:55:33.889125Z
ncsc-2026-0024	Kwetsbaarheden verholpen in Oracle E-Business Suite	2026-01-21T09:29:38.334428Z	2026-01-21T09:29:38.334428Z
ncsc-2026-0023	Kwetsbaarheden verholpen in Oracle PeopleSoft	2026-01-21T09:27:58.715578Z	2026-01-21T09:27:58.715578Z
ncsc-2026-0022	Kwetsbaarheden verholpen in Oracle Communications producten	2026-01-21T09:25:39.876330Z	2026-01-21T09:25:39.876330Z
ncsc-2026-0021	Kwetsbaarheden verholpen in Oracle Database Server producten	2026-01-21T09:19:00.000449Z	2026-01-21T09:19:00.000449Z
ncsc-2026-0020	Kwetsbaarheden verholpen in Oracle Commerce	2026-01-21T09:18:16.268788Z	2026-01-21T09:18:16.268788Z
ncsc-2026-0019	Kwetsbaarheid verholpen in Fortinet FortiSIEM	2026-01-16T13:34:34.467426Z	2026-01-16T13:34:34.467426Z
ncsc-2026-0018	Kwetsbaarheden verholpen in TYPO3 CMS	2026-01-16T10:11:37.524826Z	2026-01-16T10:11:37.524826Z
ncsc-2026-0017	Kwetsbaarheden verholpen in Juniper Networks JunOS	2026-01-16T10:07:39.310560Z	2026-01-16T10:07:39.310560Z
ncsc-2026-0016	Kwetsbaarheden verholpen in Aruba Networks ArubaOS	2026-01-16T09:44:20.575860Z	2026-01-16T09:44:20.575860Z
ncsc-2026-0015	Kwetsbaarheid verholpen in Fortinet FortiOS	2026-01-15T12:31:57.265723Z	2026-01-15T12:31:57.265723Z
ncsc-2026-0014	Kwetsbaarheden verholpen in Adobe Illustrator	2026-01-15T12:16:05.427141Z	2026-01-15T12:16:05.427141Z
ncsc-2026-0013	Kwetsbaarheden verholpen in Adobe InDesign Desktop	2026-01-14T13:45:48.530782Z	2026-01-14T13:45:48.530782Z
ncsc-2026-0012	Kwetsbaarheden verholpen in Adobe Dreamweaver Desktop	2026-01-14T13:41:56.261778Z	2026-01-14T13:41:56.261778Z
ncsc-2026-0011	Kwetsbaarheid verholpen in Microsoft Developer Tools	2026-01-13T19:19:27.690900Z	2026-01-13T19:19:27.690900Z
ncsc-2026-0010	Kwetsbaarheden verholpen in Microsoft Office	2026-01-13T19:18:45.984019Z	2026-01-13T19:18:45.984019Z
ncsc-2026-0009	Kwetsbaarheden verholpen in Microsoft Azure	2026-01-13T19:17:59.629364Z	2026-01-13T19:17:59.629364Z

ID	Description	Published	Updated
nn-2019:2-01	CSV Injection on node label	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z
nn-2019:1-01	Stored XSS in field name data model	2019-11-11T11:00:00.000Z	2023-11-16T11:00:00.000Z

ID	Description	Published	Updated
opensuse-su-2026:10245-1	libsoup-3_0-0-3.6.6-1.1 on GA media	2026-02-24T00:00:00Z	2026-02-24T00:00:00Z
opensuse-su-2026:10244-1	libsignal-protocol-c-devel-2.3.3-2.1 on GA media	2026-02-24T00:00:00Z	2026-02-24T00:00:00Z
opensuse-su-2026:10243-1	freerdp2-2.11.7-5.1 on GA media	2026-02-24T00:00:00Z	2026-02-24T00:00:00Z
opensuse-su-2026:10242-1	firefox-esr-140.8.0-1.1 on GA media	2026-02-24T00:00:00Z	2026-02-24T00:00:00Z
opensuse-su-2026:10241-1	cacti-1.2.30+git231.bca15e70c-1.1 on GA media	2026-02-24T00:00:00Z	2026-02-24T00:00:00Z
opensuse-su-2026:20261-1	Security update for openQA, os-autoinst, openQA-devel-container	2026-02-23T19:35:27Z	2026-02-23T19:35:27Z
opensuse-su-2026:20260-1	Security update for mosquitto	2026-02-23T18:17:43Z	2026-02-23T18:17:43Z
opensuse-su-2026:10240-1	weblate-5.16-1.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:10239-1	warewulf4-4.6.5-2.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:10238-1	python311-PyPDF2-2.11.1-4.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:10237-1	libopenssl-3-devel-3.5.3-2.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:10236-1	heroic-games-launcher-2.20.0-1.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:10235-1	cosign-3.0.5-1.1 on GA media	2026-02-23T00:00:00Z	2026-02-23T00:00:00Z
opensuse-su-2026:20258-1	Security update for chromium	2026-02-21T02:15:40Z	2026-02-21T02:15:40Z
opensuse-su-2026:10234-1	chromedriver-145.0.7632.109-1.1 on GA media	2026-02-21T00:00:00Z	2026-02-21T00:00:00Z
opensuse-su-2026:10233-1	kyverno-1.17.1-1.1 on GA media	2026-02-20T00:00:00Z	2026-02-20T00:00:00Z
opensuse-su-2026:10232-1	cosign-3.0.4-2.1 on GA media	2026-02-20T00:00:00Z	2026-02-20T00:00:00Z
opensuse-su-2026:10231-1	busybox-1.37.0-9.1 on GA media	2026-02-20T00:00:00Z	2026-02-20T00:00:00Z
opensuse-su-2026:20257-1	Security update for python-Authlib	2026-02-19T13:21:50Z	2026-02-19T13:21:50Z
opensuse-su-2026:20253-1	Security update for MozillaFirefox	2026-02-19T11:09:58Z	2026-02-19T11:09:58Z
opensuse-su-2026:20254-1	Security update for python313	2026-02-19T10:31:04Z	2026-02-19T10:31:04Z
opensuse-su-2026:20248-1	Security update for chromium	2026-02-19T02:43:57Z	2026-02-19T02:43:57Z
opensuse-su-2026:10230-1	vexctl-0.4.1+git78.f951e3a-1.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:10229-1	ucode-intel-20260210-1.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:10228-1	syft-1.42.1-1.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:10227-1	python311-py7zr-1.1.0-1.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:10226-1	python311-nltk-3.9.1-3.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:10225-1	MozillaFirefox-147.0.4-1.1 on GA media	2026-02-19T00:00:00Z	2026-02-19T00:00:00Z
opensuse-su-2026:20252-1	Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16)	2026-02-18T16:14:15Z	2026-02-18T16:14:15Z
opensuse-su-2026:20251-1	Security update for cockpit-repos	2026-02-18T11:22:31Z	2026-02-18T11:22:31Z

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:3871	Red Hat Security Advisory: OpenShift Container Platform 4.12.86 security and extras update	2026-03-12T01:10:46+00:00	2026-03-13T01:03:03+00:00
rhsa-2026:4306	Red Hat Security Advisory: mingw-libpng security update	2026-03-11T11:23:12+00:00	2026-03-13T12:47:30+00:00
rhsa-2026:4285	Red Hat Security Advisory: Red Hat build of Debezium 3.2.7 release	2026-03-11T10:47:34+00:00	2026-03-12T05:19:08+00:00
rhsa-2026:4276	Red Hat Security Advisory: RHTAS 1.3.2 - Tech Preview Release Of the Model Validation Operator	2026-03-11T09:11:34+00:00	2026-03-14T00:38:25+00:00
rhsa-2026:4271	Red Hat Security Advisory: RHTAS 1.3.2 - Tech Preview Release of Model Transparency	2026-03-11T09:02:58+00:00	2026-03-14T00:59:11+00:00
rhsa-2026:4270	Red Hat Security Advisory: OpenShift Source To Image 1.6.0	2026-03-11T07:52:06+00:00	2026-03-14T00:38:25+00:00
rhsa-2026:4267	Red Hat Security Advisory: opentelemetry-collector security update	2026-03-11T07:39:06+00:00	2026-03-14T00:38:25+00:00
rhsa-2026:4266	Red Hat Security Advisory: php security update	2026-03-11T06:56:11+00:00	2026-03-12T19:09:23+00:00
rhsa-2026:4264	Red Hat Security Advisory: opentelemetry-collector security update	2026-03-11T06:05:36+00:00	2026-03-14T00:38:24+00:00
rhsa-2026:4260	Red Hat Security Advisory: thunderbird security update	2026-03-11T05:56:46+00:00	2026-03-12T19:09:23+00:00
rhsa-2026:3851	Red Hat Security Advisory: OpenShift Container Platform 4.20.16 packages and security update	2026-03-11T05:24:06+00:00	2026-03-14T00:38:06+00:00
rhsa-2026:4256	Red Hat Security Advisory: opentelemetry-collector security update	2026-03-11T05:17:15+00:00	2026-03-14T00:38:24+00:00
rhsa-2026:3875	Red Hat Security Advisory: OpenShift Container Platform 4.18.35 packages and security update	2026-03-11T05:09:45+00:00	2026-03-14T00:38:10+00:00
rhsa-2026:3876	Red Hat Security Advisory: OpenShift Container Platform 4.18.35 bug fix and security update	2026-03-11T05:01:57+00:00	2026-03-12T19:15:09+00:00
rhsa-2026:3855	Red Hat Security Advisory: OpenShift Container Platform 4.20.16 bug fix and security update	2026-03-11T04:54:31+00:00	2026-03-14T00:38:08+00:00
rhsa-2026:3905	Red Hat Security Advisory: OpenShift Container Platform 4.18.35 bug fix and security update	2026-03-11T04:27:58+00:00	2026-03-14T00:38:13+00:00
rhsa-2026:3906	Red Hat Security Advisory: OpenShift Container Platform 4.18.35 security and extras update	2026-03-11T03:54:55+00:00	2026-03-14T00:38:13+00:00
rhsa-2026:3856	Red Hat Security Advisory: OpenShift Container Platform 4.20.16 security and extras update	2026-03-11T03:54:47+00:00	2026-03-14T00:38:08+00:00
rhsa-2026:4254	Red Hat Security Advisory: postgresql:15 security update	2026-03-11T03:43:15+00:00	2026-03-13T00:37:45+00:00
rhsa-2026:4246	Red Hat Security Advisory: kernel security update	2026-03-11T01:14:40+00:00	2026-03-12T19:03:21+00:00
rhsa-2026:4243	Red Hat Security Advisory: kernel security update	2026-03-11T00:55:20+00:00	2026-03-12T19:08:29+00:00
rhsa-2026:4242	Red Hat Security Advisory: kernel security update	2026-03-11T00:49:15+00:00	2026-03-12T19:08:27+00:00
rhsa-2026:4245	Red Hat Security Advisory: kernel security update	2026-03-11T00:49:10+00:00	2026-03-12T19:08:32+00:00
rhsa-2026:4244	Red Hat Security Advisory: kernel-rt security update	2026-03-11T00:12:55+00:00	2026-03-12T19:08:32+00:00
rhsa-2026:4188	Red Hat Security Advisory: gnutls security update	2026-03-10T23:45:15+00:00	2026-03-12T19:08:00+00:00
rhsa-2026:4235	Red Hat Security Advisory: nginx:1.26 security update	2026-03-10T22:41:04+00:00	2026-03-12T14:52:32+00:00
rhsa-2026:4216	Red Hat Security Advisory: python3.11 security update	2026-03-10T22:38:00+00:00	2026-03-12T19:09:18+00:00
rhsa-2026:4211	Red Hat Security Advisory: osbuild-composer security update	2026-03-10T22:25:59+00:00	2026-03-14T00:38:22+00:00
rhsa-2026:4207	Red Hat Security Advisory: 389-ds-base security update	2026-03-10T22:08:24+00:00	2026-03-10T22:10:27+00:00
rhsa-2026:4177	Red Hat Security Advisory: opentelemetry-collector security update	2026-03-10T19:22:05+00:00	2026-03-14T00:38:22+00:00

ID	Description	Published	Updated
sevd-2024-317-01	PowerLogic PM5300 Series	2024-11-12T00:00:00.000Z	2024-11-12T00:00:00.000Z
sevd-2024-282-05	EcoStruxure™ Power Monitoring Expert (PME)	2024-10-08T04:00:00.000Z	2025-05-13T04:00:00.000Z
sevd-2024-282-08	EcoStruxure EV Charging Expert	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-07	System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-06	Zelio Soft 2	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-04	EVlink Home Smart and Schneider Charge	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-03	Easergy Studio	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-02	Harmony iPC – HMIBSC IIoT Edge Box Core	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-282-01	Data Center Expert	2024-10-08T00:00:00.000Z	2024-10-08T00:00:00.000Z
sevd-2024-254-02	EcoStruxure™ Power Monitoring Expert and EcoStruxure™ Power Operation or EcoStruxure™ Power SCADA Operation with Advanced Reporting and Dashboards	2024-09-10T00:00:00.000Z	2024-09-10T00:00:00.000Z
sevd-2024-254-01	Vijeo Designer	2024-09-10T00:00:00.000Z	2025-07-08T04:00:00.000Z
sevd-2024-226-02	EcoStruxure™ Machine SCADA Expert / BLUE Open Studio	2024-08-13T00:00:00.000Z	2024-08-13T00:00:00.000Z
sevd-2024-226-01	Accutech Manager	2024-08-13T00:00:00.000Z	2024-08-13T00:00:00.000Z
sevd-2024-191-04	Modicon Controllers M241/ M251, M258 / LMC058 and M262	2024-07-09T00:00:00.000Z	2025-10-14T07:00:00.000Z
sevd-2024-191-03	EcoStruxure Foxboro SCADA FoxRTU Station	2024-07-09T00:00:00.000Z	2024-07-09T00:00:00.000Z
sevd-2024-191-02	EcoStruxureTM Foxboro DCS Core Control Services	2024-07-09T00:00:00.000Z	2024-07-09T00:00:00.000Z
sevd-2024-191-01	Wiser Home Controller WHC-5918A	2024-07-09T00:00:00.000Z	2024-07-09T00:00:00.000Z
sevd-2024-163-05	SAGE RTU	2024-06-11T00:00:00.000Z	2024-07-09T00:00:00.000Z
sevd-2024-163-04	SpaceLogic AS-P and AS-B Automation Servers	2024-06-11T00:00:00.000Z	2024-06-11T00:00:00.000Z
sevd-2024-163-03	EVlink Home Smart	2024-06-11T00:00:00.000Z	2024-06-11T00:00:00.000Z
sevd-2024-163-02	PowerLogic P5	2024-06-11T00:00:00.000Z	2024-09-10T00:00:00.000Z
sevd-2024-163-01	Modicon M340, Modbus/TCP Ethernet Modicon M340 module, and Modbus/TCP Ethernet Modicon M340 FactoryCast module	2024-06-11T00:00:00.000Z	2025-08-12T04:00:00.000Z
sevd-2024-100-01	Easergy Studio	2024-04-09T00:00:00.000Z	2024-04-09T00:00:00.000Z
sevd-2024-072-01	Easergy T200 Multiple Vulnerabilities	2024-03-12T07:02:04.000Z	2024-03-12T07:02:04.000Z
sevd-2024-072-02	EcoStruxure Power Design - Ecodial	2024-03-12T05:00:00.000Z	2024-03-12T05:00:00.000Z
sevd-2024-044-01	EcoStruxure™ Control Expert, EcoStruxure™ Process Expert and Modicon M340, M580 and M580 Safety PLCs	2024-02-13T12:41:43.000Z	2024-07-09T00:00:00.000Z
sevd-2024-044-03	EcoStruxure IT Gateway	2024-02-13T12:21:44.000Z	2024-02-13T12:21:44.000Z
sevd-2024-044-02	Harmony Relay NFC	2024-02-13T04:05:07.000Z	2024-02-13T04:05:07.000Z
sevd-2024-009-02	Easergy Studio	2024-01-09T14:51:40.000Z	2024-01-09T14:51:40.000Z
sevd-2023-346-03	Easy UPS Online Monitoring Software	2023-12-12T00:00:00.000Z	2023-12-12T00:00:00.000Z

ID	Description	Published	Updated
sca-2020-0002	Vulnerabilities in SICK Package Analytics	2020-08-07T10:00:00.000Z	2020-07-28T10:00:00.000Z
sca-2020-0001	Security Information Regarding "Profile Programming"	2020-05-31T10:00:00.000Z	2020-05-31T10:00:00.000Z
sca-2019-0002	Vulnerability in SICK FX0-GENT00000 and SICK FX0-GPNT00000	2019-09-20T10:00:00.000Z	2019-09-20T10:00:00.000Z
sca-2019-0001	MSC800 affected by hard-coded credentials vulnerability	2019-06-21T10:00:00.000Z	2019-06-21T10:00:00.000Z

ID	Description	Published	Updated
ssa-769791	SSA-769791: Local Arbitrary Code Execution Vulnerability in COMOS Before V10.6	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-707630	SSA-707630: Multiple Vulnerabilities in SIMATIC RTLS Locating Manager Before V3.3	2025-08-12T00:00:00Z	2025-08-26T00:00:00Z
ssa-693808	SSA-693808: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-674084	SSA-674084: File Parsing Vulnerabilities in Simcenter Femap Before V2506	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-665108	SSA-665108: Arbitrary File Upload Vulnerability in RUGGEDCOM ROX II	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-613116	SSA-613116: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.1	2025-08-12T00:00:00Z	2026-02-24T00:00:00Z
ssa-529291	SSA-529291: Information Disclosure Vulnerabilities in SICAM Q100/Q200	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-517338	SSA-517338: Multiple Vulnerabilities in SINEC Traffic Analyzer Before V3.0	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-493787	SSA-493787: Arbitrary Code Execution Vulnerability in SIMATIC RTLS Locating Manager Before V3.2	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-493396	SSA-493396: Deserialization Vulnerability in Siemens Engineering Platforms	2025-08-12T00:00:00Z	2025-12-09T00:00:00Z
ssa-400089	SSA-400089: Denial of Service Vulnerability in SIPROTEC 4 and SIPROTEC 4 Compact	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-382999	SSA-382999: Multiple Vulnerabilities in Opcenter Quality Before V2506	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-355557	SSA-355557: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.2	2025-08-12T00:00:00Z	2026-02-24T00:00:00Z
ssa-331739	SSA-331739: Privilege Escalation Vulnerability in WIBU CodeMeter Runtime Affecting Siemens Products	2025-08-12T00:00:00Z	2025-09-09T00:00:00Z
ssa-282044	SSA-282044: DLL Hijacking Vulnerability in Siemens Web Installer used by the Online Software Delivery	2025-08-12T00:00:00.000Z	2026-03-10T00:00:00.000Z
ssa-186293	SSA-186293: XML External Entity (XXE) Injection Vulnerability in SIMOTION SCOUT, SIMOTION SCOUT TIA and SINAMICS STARTER	2025-08-12T00:00:00Z	2025-10-14T00:00:00Z
ssa-177847	SSA-177847: Improper VNC Password Check Vulnerability in SINUMERIK Controllers	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-094954	SSA-094954: Authentication Bypass Vulnerability in BIST mode of RUGGEDCOM ROX II	2025-08-12T00:00:00Z	2025-08-12T00:00:00Z
ssa-028723	SSA-028723: Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17	2025-08-12T00:00:00Z	2025-08-13T00:00:00Z
ssa-938066	SSA-938066: Remote Code Execution Vulnerability in SENTRON Powermanager and Desigo CC	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-904646	SSA-904646: Sensitive Data Exposure Vulnerability in SIPROTEC 5 Devices	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-626991	SSA-626991: Denial of Service Vulnerability in SIMATIC CN 4100 before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-573669	SSA-573669: Multiple Vulnerabilities in TIA Administrator Before V3.0.6	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-460466	SSA-460466: Denial of Service Vulnerability in TIA Project-Server and TIA Portal	2025-07-08T00:00:00Z	2025-08-12T00:00:00Z
ssa-183963	SSA-183963: Certificate Validation Vulnerabilities in SICAM TOOLBOX II Before V07.11	2025-07-08T00:00:00Z	2025-07-18T00:00:00Z
ssa-091753	SSA-091753: Multiple Vulnerabilities in Solid Edge Before SE2025 Update 5	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-083019	SSA-083019: Multiple Vulnerabilities in RUGGEDCOM ROS Devices	2025-07-08T00:00:00Z	2025-10-14T00:00:00Z
ssa-078892	SSA-078892: Multiple Vulnerabilities in SINEC NMS Before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-627195	SSA-627195: Zip Path Traversal Vulnerability in Mendix Studio Pro's Module Installation Process	2025-06-12T00:00:00Z	2025-07-08T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2026-01-13T00:00:00Z

ID	Description	Published	Updated
suse-su-2026:0741-1	Security update for shim	2026-03-02T08:11:15Z	2026-03-02T08:11:15Z
suse-su-2026:0740-1	Security update for mozilla-nss	2026-03-02T08:10:37Z	2026-03-02T08:10:37Z
suse-su-2026:0736-1	Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7)	2026-03-02T07:04:29Z	2026-03-02T07:04:29Z
suse-su-2026:0734-1	Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP5)	2026-03-01T19:33:48Z	2026-03-01T19:33:48Z
suse-su-2026:0731-1	Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5)	2026-03-01T16:35:28Z	2026-03-01T16:35:28Z
suse-su-2026:0694-1	Security update for gpg2	2026-02-27T15:14:36Z	2026-02-27T15:14:36Z
suse-su-2026:0693-1	Security update for python311	2026-02-27T15:14:09Z	2026-02-27T15:14:09Z
suse-su-2026:0692-1	Security update for MozillaThunderbird	2026-02-27T15:12:00Z	2026-02-27T15:12:00Z
suse-su-2026:0690-1	Security update for libsoup	2026-02-27T15:11:03Z	2026-02-27T15:11:03Z
suse-su-2026:0689-1	Security update for libsoup	2026-02-27T15:10:48Z	2026-02-27T15:10:48Z
suse-su-2026:0688-1	Security update for the Linux Kernel	2026-02-27T15:09:04Z	2026-02-27T15:09:04Z
suse-su-2026:0687-1	Security update for go1	2026-02-27T15:08:16Z	2026-02-27T15:08:16Z
suse-su-2026:0670-1	Security update for ucode-intel	2026-02-26T15:21:41Z	2026-02-26T15:21:41Z
suse-su-2026:0669-1	Security update for ucode-intel	2026-02-26T15:21:31Z	2026-02-26T15:21:31Z
suse-su-2026:0668-1	Security update for ucode-intel	2026-02-26T15:21:13Z	2026-02-26T15:21:13Z
suse-su-2026:0667-1	Security update for redis7	2026-02-26T15:19:55Z	2026-02-26T15:19:55Z
suse-su-2026:0666-1	Security update for docker	2026-02-26T15:17:25Z	2026-02-26T15:17:25Z
suse-su-2026:0665-1	Security update for frr	2026-02-26T15:16:24Z	2026-02-26T15:16:24Z
suse-su-2026:0664-1	Security update for python3	2026-02-26T15:15:20Z	2026-02-26T15:15:20Z
suse-su-2026:0663-1	Security update for python	2026-02-26T15:13:11Z	2026-02-26T15:13:11Z
suse-su-2026:0662-1	Security update for qemu	2026-02-26T15:12:26Z	2026-02-26T15:12:26Z
suse-su-2026:0661-1	Security update for erlang	2026-02-26T15:10:09Z	2026-02-26T15:10:09Z
suse-su-2026:0659-1	Security update for docker-stable	2026-02-26T15:08:37Z	2026-02-26T15:08:37Z
suse-su-2026:0658-1	Security update for libsoup	2026-02-26T15:07:42Z	2026-02-26T15:07:42Z
suse-su-2026:0657-1	Security update for libsoup2	2026-02-26T15:07:11Z	2026-02-26T15:07:11Z
suse-su-2026:0656-1	Security update for freerdp	2026-02-26T15:06:36Z	2026-02-26T15:06:36Z
suse-su-2026:0642-1	Security update for python313	2026-02-26T11:53:34Z	2026-02-26T11:53:34Z
suse-su-2026:0650-1	Security update for redis	2026-02-25T16:33:31Z	2026-02-25T16:33:31Z
suse-su-2026:0649-1	Security update for freerdp	2026-02-25T16:31:37Z	2026-02-25T16:31:37Z
suse-su-2026:0648-1	Security update for libjxl	2026-02-25T16:30:57Z	2026-02-25T16:30:57Z

ID	Description	Published	Updated
alsa-2026:3188	Important: grafana security update	2026-02-24T00:00:00Z	2026-02-24T17:11:47Z
alsa-2026:3187	Important: grafana-pcp security update	2026-02-24T00:00:00Z	2026-02-24T17:14:01Z
alsa-2026:3110	Important: kernel-rt security update	2026-02-23T00:00:00Z	2026-02-24T13:03:08Z
alsa-2026:3095	Important: protobuf security update	2026-02-23T00:00:00Z	2026-02-24T00:13:34Z
alsa-2026:3094	Important: protobuf security update	2026-02-23T00:00:00Z	2026-02-24T00:07:41Z
alsa-2026:3092	Important: golang-github-openprinting-ipp-usb security update	2026-02-23T00:00:00Z	2026-02-26T10:33:21Z
alsa-2026:3083	Important: kernel security update	2026-02-23T00:00:00Z	2026-02-24T12:59:25Z
alsa-2026:3068	Important: freerdp security update	2026-02-23T00:00:00Z	2026-02-26T10:34:44Z
alsa-2026:3067	Important: freerdp security update	2026-02-23T00:00:00Z	2026-02-26T10:36:11Z
alsa-2026:3066	Moderate: kernel security update	2026-02-23T00:00:00Z	2026-02-26T10:43:00Z
alsa-2026:3042	Moderate: openssl security update	2026-02-23T00:00:00Z	2026-02-23T09:07:14Z
alsa-2026:3040	Important: grafana-pcp security update	2026-02-23T00:00:00Z	2026-03-10T20:11:50Z
alsa-2026:3035	Important: grafana-pcp security update	2026-02-23T00:00:00Z	2026-02-26T10:48:18Z
alsa-2026:3034	Important: munge security update	2026-02-23T00:00:00Z	2026-02-26T10:49:31Z
alsa-2026:3033	Important: munge security update	2026-02-23T00:00:00Z	2026-02-26T10:51:19Z
alsa-2026:3032	Important: munge security update	2026-02-23T00:00:00Z	2026-02-23T14:44:19Z
alsa-2026:3031	Important: libpng15 security update	2026-02-23T00:00:00Z	2026-02-26T10:52:26Z
alsa-2026:2920	Important: grafana security update	2026-02-18T00:00:00Z	2026-02-19T10:58:19Z
alsa-2026:2914	Important: grafana security update	2026-02-18T00:00:00Z	2026-02-19T18:04:08Z
alsa-2026:2821	Moderate: kernel-rt security update	2026-02-17T00:00:00Z	2026-02-18T13:25:58Z
alsa-2026:2799	Moderate: php security update	2026-02-17T00:00:00Z	2026-02-18T13:30:42Z
alsa-2026:2786	Moderate: glibc security update	2026-02-17T00:00:00Z	2026-02-18T13:44:36Z
alsa-2026:2783	Important: nodejs:20 security update	2026-02-17T00:00:00Z	2026-02-23T13:24:32Z
alsa-2026:2782	Important: nodejs:22 security update	2026-02-17T00:00:00Z	2026-02-23T13:22:00Z
alsa-2026:2781	Important: nodejs:24 security update	2026-02-17T00:00:00Z	2026-02-18T13:51:36Z
alsa-2026:2776	Moderate: edk2 security update	2026-02-17T00:00:00Z	2026-02-18T13:48:45Z
alsa-2026:2722	Moderate: kernel security update	2026-02-16T00:00:00Z	2026-02-23T13:18:53Z
alsa-2026:2721	Moderate: kernel security update	2026-02-16T00:00:00Z	2026-02-23T13:34:16Z
alsa-2026:2720	Moderate: kernel security update	2026-02-16T00:00:00Z	2026-02-23T13:27:24Z
alsa-2026:2719	Important: gnupg2 security update	2026-02-16T00:00:00Z	2026-02-18T13:46:37Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2025-965	Stack-use-after-scope in Assimp::FBX::FBXExportProperty::FBXExportProperty	2025-12-04T00:10:11.975493Z	2025-12-04T00:10:11.975920Z
osv-2025-959	Heap-buffer-overflow in re_parse_term	2025-11-29T00:18:54.036831Z	2025-11-29T00:18:54.037236Z
osv-2025-955	Use-of-uninitialized-value in decoder_context::construct_reference_picture_lists	2025-11-29T00:15:46.812919Z	2025-11-29T00:15:46.813402Z
osv-2025-938	Use-of-uninitialized-value in comp_func_SourceOver_avx2	2025-11-23T00:03:38.943405Z	2025-11-23T00:03:38.943780Z
osv-2025-932	Heap-use-after-free in password_file__cleanup	2025-11-22T00:01:32.642847Z	2025-11-22T00:01:32.643269Z
osv-2025-926	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.statement	2025-11-21T00:05:31.621567Z	2025-11-21T00:05:31.621958Z
osv-2025-906	Use-of-uninitialized-value in QImage::pixel	2025-11-18T00:08:20.557059Z	2025-11-18T00:08:20.557392Z
osv-2025-901	Heap-use-after-free in apache::thrift::protocol::TCompactProtocolT<apache::thrift::transport::TMemoryBu	2025-11-17T00:02:08.125421Z	2025-11-17T00:02:08.125970Z
osv-2025-900	Heap-buffer-overflow in DecodeFrame	2025-11-15T00:18:33.800030Z	2025-11-15T00:18:33.800379Z
osv-2025-890	Heap-buffer-overflow in icalmemory_tmp_copy	2025-11-10T00:03:23.954817Z	2025-11-10T00:03:23.955223Z
osv-2025-884	Heap-use-after-free in JS_DefineProperty	2025-11-08T00:17:46.632315Z	2025-11-08T00:17:46.633033Z
osv-2025-879	Use-of-uninitialized-value in JS_DefineProperty	2025-11-06T00:00:41.075031Z	2025-11-06T00:00:41.075637Z
osv-2025-876	Stack-buffer-overflow in snmp_input	2025-11-04T00:06:41.671822Z	2025-11-04T00:06:41.672467Z
osv-2025-871	UNKNOWN READ in ojph::local::param_cod::~param_cod	2025-11-03T00:01:55.461376Z	2025-11-16T14:04:09.695272Z
osv-2025-865	Heap-buffer-overflow in generic_unpack	2025-10-31T00:01:02.631036Z	2025-11-05T14:31:24.646623Z
osv-2025-858	Use-of-uninitialized-value in pcpp::byteArrayToHexString	2025-10-26T00:13:16.483999Z	2025-10-26T00:13:16.484559Z
osv-2025-857	Global-buffer-overflow in void jxl::N_AVX2::WriteToOutputStage::StoreUnsignedRow<unsigned char>	2025-10-25T00:05:52.218420Z	2025-10-25T00:05:52.218807Z
osv-2025-855	Use-of-uninitialized-value in AlphaReplace_SSE2	2025-10-24T00:16:50.919877Z	2025-10-24T00:16:50.920218Z
osv-2025-852	Heap-buffer-overflow in std::__1::pair<int, arrow::util::RleBitPackedParser::ControlFlow> arrow::util::R	2025-10-23T00:13:16.148747Z	2025-10-24T14:23:38.843951Z
osv-2025-846	Use-of-uninitialized-value in js_create_function	2025-10-20T00:03:40.943765Z	2025-10-20T00:03:40.944363Z
osv-2025-845	Global-buffer-overflow in icaltime_day_of_year	2025-10-19T00:19:40.541109Z	2025-10-19T00:19:40.541746Z
osv-2025-835	Heap-use-after-free in JS_DefineProperty	2025-10-14T00:11:08.472824Z	2025-10-14T00:11:08.473391Z
osv-2025-834	Heap-buffer-overflow in std::__1::pair<int, arrow::util::RleBitPackedParser::ControlFlow> arrow::util::R	2025-10-14T00:10:52.861723Z	2025-10-24T14:22:07.938287Z
osv-2025-827	Global-buffer-overflow in void jxl::N_SSE4::WriteToOutputStage::StoreUnsignedRow<unsigned char>	2025-10-10T00:09:16.816189Z	2025-10-10T00:09:16.816846Z
osv-2025-825	UNKNOWN WRITE in RescalerImportRowExpand_SSE2	2025-10-09T00:14:42.650822Z	2025-10-09T00:14:42.651395Z
osv-2025-824	Use-of-uninitialized-value in JS_DefineProperty	2025-10-08T00:04:16.630040Z	2025-10-08T00:04:16.630688Z
osv-2025-819	Use-of-uninitialized-value in HasAlpha32b_SSE2	2025-10-07T00:04:07.544365Z	2025-10-07T00:04:07.544831Z
osv-2025-818	Heap-buffer-overflow in std::__1::pair<int, arrow::util::RleBitPackedParser::ControlFlow> arrow::util::R	2025-10-07T00:03:45.262747Z	2025-10-10T14:38:33.479652Z
osv-2025-809	Use-of-uninitialized-value in WebPCleanupTransparentArea	2025-10-05T00:04:29.576718Z	2025-10-05T00:04:29.577250Z
osv-2025-808	Use-of-uninitialized-value in WebPMultRow_C	2025-10-04T00:07:11.139186Z	2025-10-04T00:07:11.139704Z

ID	Description	Published	Updated
rustsec-2025-0125	Resource Exhaustion (Memory and Handle Leaks) on Windows and macOS	2025-11-22T12:00:00Z	2025-11-22T12:29:36Z
rustsec-2025-0153	hexchat crate is unsound and unmaintained	2025-11-17T12:00:00Z	2026-02-26T06:11:28Z
rustsec-2025-0124	rand_os crate is unmaintained	2025-11-17T12:00:00Z	2025-11-19T20:48:42Z
rustsec-2025-0123	opentelemetry-jaeger crate is unmaintained	2025-11-17T12:00:00Z	2025-11-18T12:07:07Z
rustsec-2025-0122	cargo-asm crate is unmaintained	2025-11-17T12:00:00Z	2025-11-18T09:02:31Z
rustsec-2025-0121	gcc crate is unmaintained	2025-11-17T12:00:00Z	2025-11-18T08:52:10Z
rustsec-2025-0119	number_prefix crate is unmaintained	2025-11-17T12:00:00Z	2025-11-18T08:13:56Z
rustsec-2025-0120	json5 crate is unmaintained	2025-11-16T12:00:00Z	2025-11-30T00:15:16Z
rustsec-2025-0118	Unsound API access to a WebAssembly shared linear memory	2025-11-11T12:00:00Z	2025-11-13T16:55:40Z
rustsec-2025-0117	tandem is unmaintained	2025-11-10T12:00:00Z	2025-11-10T11:31:14Z
rustsec-2025-0116	tandem_garble_interop is unmaintained	2025-11-10T12:00:00Z	2025-11-10T11:31:14Z
rustsec-2025-0115	tandem_http_server is unmaintained	2025-11-10T12:00:00Z	2025-11-10T11:31:14Z
rustsec-2025-0114	tandem_http_client is unmaintained	2025-11-10T12:00:00Z	2025-11-10T11:31:14Z
rustsec-2025-0136	Underflow in aes_key_unwrap function	2025-11-07T12:00:00Z	2025-12-17T06:01:32Z
rustsec-2025-0131	Lack of sufficient checks in public API	2025-10-31T12:00:00Z	2025-12-02T06:03:09Z
rustsec-2025-0111	`tokio-tar` parses PAX extended headers incorrectly, allows file smuggling	2025-10-21T12:00:00Z	2026-01-17T07:44:05Z
rustsec-2025-0110	astral-tokio-tar Vulnerable to PAX Header Desynchronization	2025-10-21T12:00:00Z	2025-10-25T11:18:52Z
rustsec-2025-0109	Out-of-bounds memory access in binary_read_to_ref and binary_write_from_ref	2025-10-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2025-0108	Uninitialized memory exposure in string reading functions	2025-10-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2025-0107	Uninitialized memory exposure in any_as_u8_slice	2025-10-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2025-0106	Undefined behavior in index_of_ptr with empty slices	2025-10-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2025-0105	Uninitialized memory exposure in create_ring_buffer	2025-10-21T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2025-0142	Segmentation fault and invalid memory read in `mnl::cb_run`	2025-10-18T12:00:00Z	2026-02-10T13:23:41Z
rustsec-2025-0126	Heap-buffer-overflow in nftnl::Batch::with_page_size (nftnl-rs)	2025-10-18T12:00:00Z	2025-11-27T21:53:33Z
rustsec-2025-0104	`unic-ucd-segment` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z
rustsec-2025-0103	`unic-ucd-core` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z
rustsec-2025-0102	`unic-ucd-age` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z
rustsec-2025-0101	`unic-ucd-common` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z
rustsec-2025-0100	`unic-ucd-ident` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z
rustsec-2025-0099	`unic-ucd-block` is unmaintained	2025-10-18T12:00:00Z	2025-10-21T11:12:59Z

ID	Description	Published	Updated
bit-golang-2026-27137	Incorrect enforcement of email constraints in crypto/x509	2026-03-10T08:44:11.145Z	2026-03-11T09:11:40.352Z
bit-golang-2026-25679	Incorrect parsing of IPv6 host literals in net/url	2026-03-10T08:44:09.300Z	2026-03-11T09:11:40.352Z
bit-maven-2021-26291	block repositories using http by default	2026-03-10T08:44:08.742Z	2026-03-10T09:11:39.609Z
bit-ghost-2026-29784	Ghost: Incomplete CSRF protections around OTC use	2026-03-10T08:40:17.691Z	2026-03-10T09:11:39.609Z
bit-ghost-2026-29053	Ghost Vulnerable to Remote Code Execution via Malicious Themes	2026-03-07T08:42:59.400Z	2026-03-10T09:11:39.609Z
bit-moodle-2025-67847	Moodle: moodle: remote code execution via insufficient restore input validation	2026-03-06T08:50:20.446Z	2026-03-06T09:10:26.160Z
bit-python-2026-2297	SourcelessFileLoader does not use io.open_code()	2026-03-06T08:50:18.397Z	2026-03-06T09:10:26.160Z
bit-moodle-2021-47857	Moodle 3.10.3 - 'label' Persistent Cross Site Scripting	2026-03-06T08:46:28.845Z	2026-03-06T09:10:26.160Z
bit-libpython-2026-2297	SourcelessFileLoader does not use io.open_code()	2026-03-06T08:43:26.501Z	2026-03-06T09:10:26.160Z
bit-django-2026-25674	Potential incorrect permissions on newly created file system objects	2026-03-06T08:38:51.644Z	2026-03-06T09:10:26.160Z
bit-django-2026-25673	Potential denial-of-service vulnerability in URLField via Unicode normalization on Windows	2026-03-06T08:38:49.880Z	2026-03-06T09:10:26.160Z
bit-activemq-2025-66168	Apache ActiveMQ, Apache ActiveMQ All Module, Apache ActiveMQ MQTT Module: MQTT control packet remaining length field is not properly validated	2026-03-06T08:36:37.326Z	2026-03-06T09:10:26.160Z
bit-discourse-2026-28227	Discourse Vulnerable to Unauthorized Topic Creation in Staff-Only Categories via Topic Timer publish_to_category	2026-03-03T13:29:32.408Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-28219	Privilege Escalation via Mass Assignment Allows Regular Users to Set Topics as Global Banners	2026-03-03T13:29:30.555Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-28218	Discourse's Fail-Open Access Control in Data Explorer Plugin Allows Unauthorized SQL Query Execution	2026-03-03T13:29:28.795Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27162	DIscourse doesn't prevent whispers to leak in excerpts	2026-03-03T13:29:27.139Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27154	Discourse has XSS when editing a malicious post	2026-03-03T13:29:25.328Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27153	Discourse doesn't prevent moderators from exporting user Chat DMs	2026-03-03T13:29:23.447Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27152	DIscourse has DM communication-preference bypass when adding members	2026-03-03T13:29:21.569Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27151	Discourse doesn't validate destination topic when moving posts	2026-03-03T13:29:19.608Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27150	Discourse doesn't ensure guardian check when creating QueryGroupBookmark	2026-03-03T13:29:17.871Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27149	Discourse has SQL injection in PM tag filtering	2026-03-03T13:29:16.239Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-27021	Discourse: Poll voters endpoint lacked post visibility checks	2026-03-03T13:29:14.621Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26979	Discourse: TL4 users are able to change status of restricted topics	2026-03-03T13:29:12.870Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26973	Discourse doesn't scope reviewable notes to user-visible reviewables	2026-03-03T13:29:10.861Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26265	Discourse has IDOR vulnerability in the directory items endpoint	2026-03-03T13:29:08.511Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26207	DIscourse's discourse-policy plugin lacks post access check	2026-03-03T13:29:06.818Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26078	Discourse has authentication bypass vulnerability in the Patreon plugin webhook endpoint	2026-03-03T13:29:04.991Z	2026-03-03T13:59:21.562Z
bit-discourse-2026-26077	Discourse doesn't ensure webhooks require a token	2026-03-03T13:29:03.296Z	2026-03-03T13:59:21.562Z
bit-kibana-2026-26938	Improper Neutralization of Special Elements Used in a Template Engine in Kibana Workflows Leading to Server-Side Request Forgery (SSRF)	2026-03-03T08:43:31.139Z	2026-03-03T09:19:06.344Z

ID	Description	Published	Updated
cleanstart-2026-pn58989	Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate	2026-02-24T00:45:20.977848Z	2026-02-23T12:58:32Z
cleanstart-2026-sp64433	Security fixes for GHSA-6rw7-vpxm-498p, GHSA-73rr-hh4g-fpgx, GHSA-8qq5-rm4j-mr97 applied in versions: 4.2.1.1-r1	2026-02-24T00:44:51.180009Z	2026-02-23T12:58:32Z
cleanstart-2026-io04548	Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate	2026-02-24T00:44:50.498217Z	2026-02-23T12:58:32Z
cleanstart-2026-lm41397	node-tar is a full-featured Tar for Node	2026-02-24T00:40:50.950958Z	2026-02-23T12:58:32Z
cleanstart-2026-cl79805	Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.8.4-r0	2026-02-24T00:38:50.220255Z	2026-02-23T12:58:32Z
cleanstart-2026-ln12820	vulnerability has been identified in Node	2026-02-19T00:58:49.154512Z	2026-02-18T09:40:19Z
cleanstart-2026-kn34553	vulnerability has been identified in Node	2026-02-19T00:58:48.926519Z	2026-02-18T09:40:19Z
cleanstart-2026-oj16660	Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-434x-w66g-qw3r, GHSA-r6v5-fh4h-64xc, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.28.2-r0, 1.28.4-r0	2026-02-19T00:39:07.225007Z	2026-02-18T09:40:19Z
cleanstart-2026-nn87556	Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-434x-w66g-qw3r, GHSA-r6v5-fh4h-64xc, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.28.2-r0, 1.29.0-r0	2026-02-19T00:39:07.788394Z	2026-02-18T09:40:19Z
cleanstart-2026-kn30288	Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-434x-w66g-qw3r, GHSA-r6v5-fh4h-64xc, GHSA-rhfx-m35p-ff5j, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.27.5-r1, 1.27.6-r0	2026-02-19T00:39:07.163109Z	2026-02-18T09:40:19Z
cleanstart-2026-yn08405	Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 7.1.1-r7	2026-02-19T00:39:05.944714Z	2026-02-18T09:40:19Z
cleanstart-2026-zt77083	When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers	2026-02-18T00:40:43.959662Z	2026-02-17T14:16:07Z
cleanstart-2026-rs39538	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-02-18T00:37:41.553514Z	2026-02-17T14:16:07Z
cleanstart-2026-lr19699	Within HostnameError	2026-02-18T00:37:41.636616Z	2026-02-17T14:16:07Z
cleanstart-2026-dt95939	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-02-18T00:37:41.674179Z	2026-02-17T14:16:07Z
cleanstart-2026-at88149	excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate	2026-02-18T00:37:41.548996Z	2026-02-17T14:16:07Z
cleanstart-2026-xv54160	Within HostnameError	2026-02-17T00:41:15.330012Z	2026-02-16T09:23:22Z
cleanstart-2026-gg58376	Within HostnameError	2026-02-17T00:41:15.939977Z	2026-02-16T09:23:22Z
cleanstart-2026-uh39784	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-02-17T00:40:45.017480Z	2026-02-16T09:23:22Z
cleanstart-2026-vg57433	Within HostnameError	2026-02-17T00:39:45.599344Z	2026-02-16T09:23:22Z
cleanstart-2026-jr03360	Within HostnameError	2026-02-17T00:39:45.300172Z	2026-02-16T09:23:22Z
cleanstart-2026-bs57244	Within HostnameError	2026-02-17T00:39:44.907078Z	2026-02-16T09:23:22Z
cleanstart-2026-kk07808	issue has been found in third-party PNM decoding associated with libpng 1	2026-02-14T00:37:45.311656Z	2026-02-13T12:28:27Z
cleanstart-2026-pr84319	Security fixes for GHSA-2gh3-rmm4-6rq5, GHSA-r6v5-fh4h-64xc, GHSA-rhfx-m35p-ff5j, GHSA-xwfj-jgwm-7wp5 applied in versions: 1.27.5-r1, 1.27.6-r0	2026-02-14T00:37:23.085740Z	2026-02-13T12:28:27Z
cleanstart-2026-mh09144	issue was discovered in libexpat before 2	2026-02-13T00:45:17.459930Z	2026-02-12T13:07:54Z
cleanstart-2026-wv76464	libexpat in Expat before 2	2026-02-13T00:43:45.311968Z	2026-02-12T13:07:54Z
cleanstart-2026-tr92727	During session resumption in crypto/tls, if the underlying Config has its ClientCAs or RootCAs fields mutated between the initial handshake and the resumed handshake, the resumed handshake may succ...	2026-02-13T00:41:14.875956Z	2026-02-12T13:07:54Z
cleanstart-2026-gv85693	SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process	2026-02-13T00:40:14.240914Z	2026-02-12T13:07:54Z
cleanstart-2026-ca79883	Security fixes for GHSA-6v2p-p943-phr9, GHSA-c6gw-w398-hv78, GHSA-f6x5-jh6r-wrfv, GHSA-hcg3-p754-cr77, GHSA-j5w8-q4qc-rx2x, GHSA-qxp5-gw88-xv66, GHSA-v778-237x-gjrc, GHSA-vvgc-356p-c3xw applied in versions: 1.15.0-r1	2026-02-13T00:40:14.901695Z	2026-02-12T13:07:54Z
cleanstart-2026-jb30245	Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.47.2-r0	2026-02-13T00:39:45.274258Z	2026-02-12T13:07:54Z

ID	Description	Published	Updated

ID	Description	Updated

ID	Description	Published	Updated
CERTFR-2024-ALE-001	[MàJ] Multiples vulnérabilités dans Ivanti Connect Secure et Policy Secure Gateways	2024-01-11T00:00:00.000000	2024-04-15T00:00:00.000000
certfr-2023-ale-013	Vulnérabilité dans Apache Struts 2	2023-12-13T00:00:00.000000	2024-02-16T00:00:00.000000
CERTFR-2023-ALE-013	Vulnérabilité dans Apache Struts 2	2023-12-13T00:00:00.000000	2024-02-16T00:00:00.000000
certfr-2023-ale-006	Vulnérabilité dans les produits Microsoft	2023-12-12T00:00:00.000000	2023-07-12T00:00:00.000000
CERTFR-2023-ALE-006	Vulnérabilité dans les produits Microsoft	2023-12-12T00:00:00.000000	2023-07-12T00:00:00.000000
certfr-2023-ale-012	[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2023-10-23T00:00:00.000000	2024-02-16T00:00:00.000000
CERTFR-2023-ALE-012	[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2023-10-23T00:00:00.000000	2024-02-16T00:00:00.000000
certfr-2023-ale-011	[MàJ] Multiples vulnérabilités dans Cisco IOS XE	2023-10-17T00:00:00.000000	2024-02-16T00:00:00.000000
CERTFR-2023-ALE-011	[MàJ] Multiples vulnérabilités dans Cisco IOS XE	2023-10-17T00:00:00.000000	2024-02-16T00:00:00.000000
certfr-2023-ale-010	Multiples vulnérabilités dans Exim	2023-10-02T00:00:00.000000	2024-02-16T00:00:00.000000
CERTFR-2023-ALE-010	Multiples vulnérabilités dans Exim	2023-10-02T00:00:00.000000	2024-02-16T00:00:00.000000
certfr-2023-ale-009	[MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile	2023-07-26T00:00:00.000000	2023-09-15T00:00:00.000000
CERTFR-2023-ALE-009	[MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile	2023-07-26T00:00:00.000000	2023-09-15T00:00:00.000000
certfr-2023-ale-008	[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2023-07-19T00:00:00.000000	2024-01-02T00:00:00.000000
CERTFR-2023-ALE-008	[MàJ] Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway	2023-07-19T00:00:00.000000	2024-01-02T00:00:00.000000
certfr-2023-ale-007	[MàJ] Vulnérabilité dans Zimbra Collaboration Suite	2023-07-17T00:00:00.000000	2024-01-02T00:00:00.000000
CERTFR-2023-ALE-007	[MàJ] Vulnérabilité dans Zimbra Collaboration Suite	2023-07-17T00:00:00.000000	2024-01-02T00:00:00.000000
certfr-2023-ale-005	Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer	2023-07-05T00:00:00.000000	2023-09-11T00:00:00.000000
CERTFR-2023-ALE-005	Synthèse sur l'exploitation d'une vulnérabilité dans MOVEit Transfer	2023-07-05T00:00:00.000000	2023-09-11T00:00:00.000000
certfr-2023-ale-004	Vulnérabilité dans les produits Fortinet	2023-06-13T00:00:00.000000	2023-09-11T00:00:00.000000
CERTFR-2023-ALE-004	Vulnérabilité dans les produits Fortinet	2023-06-13T00:00:00.000000	2023-09-11T00:00:00.000000
certfr-2023-ale-003	[MàJ] Compromission de l'application 3CX Desktop App	2023-03-31T00:00:00.000000	2023-04-12T00:00:00.000000
CERTFR-2023-ALE-003	[MàJ] Compromission de l'application 3CX Desktop App	2023-03-31T00:00:00.000000	2023-04-12T00:00:00.000000
certfr-2023-ale-002	[MàJ] Vulnérabilité dans Microsoft Outlook	2023-03-15T00:00:00.000000	2023-05-11T00:00:00.000000
CERTFR-2023-ALE-002	[MàJ] Vulnérabilité dans Microsoft Outlook	2023-03-15T00:00:00.000000	2023-05-11T00:00:00.000000
certfr-2023-ale-001	Vulnérabilité dans Fortinet FortiOS	2023-03-14T00:00:00.000000	2023-03-14T00:00:00.000000
CERTFR-2023-ALE-001	Vulnérabilité dans Fortinet FortiOS	2023-03-14T00:00:00.000000	2023-03-14T00:00:00.000000
certfr-2023-ale-015	[MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi	2023-02-03T00:00:00.000000	2023-03-14T00:00:00.000000
CERTFR-2023-ALE-015	[MàJ] Campagne d'exploitation d'une vulnérabilité affectant VMware ESXi	2023-02-03T00:00:00.000000	2023-03-14T00:00:00.000000
certfr-2022-ale-014	Multiples vulnérabilités dans AMI MegaRAC	2022-12-16T00:00:00.000000	2023-09-11T00:00:00.000000

ID	Description	Published	Updated
certfr-2026-avi-0235	Multiples vulnérabilités dans HPE Aruba Networking AOS	2026-03-04T00:00:00.000000	2026-03-04T00:00:00.000000
certfr-2026-avi-0234	Vulnérabilité dans Tenable Nessus Manager	2026-03-04T00:00:00.000000	2026-03-04T00:00:00.000000
certfr-2026-avi-0233	Multiples vulnérabilités dans Google Pixel	2026-03-04T00:00:00.000000	2026-03-04T00:00:00.000000
certfr-2026-avi-0232	Multiples vulnérabilités dans les produits Microsoft	2026-03-03T00:00:00.000000	2026-03-03T00:00:00.000000
certfr-2026-avi-0231	Multiples vulnérabilités dans Google Android	2026-03-03T00:00:00.000000	2026-03-03T00:00:00.000000
certfr-2026-avi-0230	Multiples vulnérabilités dans Docker Desktop	2026-03-03T00:00:00.000000	2026-03-03T00:00:00.000000
certfr-2026-avi-0229	Multiples vulnérabilités dans MISP	2026-03-02T00:00:00.000000	2026-03-02T00:00:00.000000
certfr-2026-avi-0228	Multiples vulnérabilités dans les produits Microsoft	2026-03-02T00:00:00.000000	2026-03-02T00:00:00.000000
certfr-2026-avi-0227	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0226	Multiples vulnérabilités dans le noyau Linux de Red Hat	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0225	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0224	Multiples vulnérabilités dans les produits IBM	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0223	Multiples vulnérabilités dans les produits Microsoft	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0222	Multiples vulnérabilités dans Microsoft Edge	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0221	Multiples vulnérabilités dans les produits Centreon	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0220	Multiples vulnérabilités dans les produits Elastic	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0219	Vulnérabilité dans Stormshield Network Security	2026-02-27T00:00:00.000000	2026-02-27T00:00:00.000000
certfr-2026-avi-0218	Multiples vulnérabilités dans les produits VMware	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0217	Multiples vulnérabilités dans SPIP	2026-02-26T00:00:00.000000	2026-03-03T00:00:00.000000
certfr-2026-avi-0216	Vulnérabilité dans PostgreSQL	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0215	Multiples vulnérabilités dans les produits Microsoft	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0214	Vulnérabilité dans Juniper Networks Junos OS Evolved	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0213	Multiples vulnérabilités dans les produits Cisco	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0212	Multiples vulnérabilités dans les produits Centreon	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0211	Multiples vulnérabilités dans Wireshark	2026-02-26T00:00:00.000000	2026-02-26T00:00:00.000000
certfr-2026-avi-0210	Multiples vulnérabilités dans Cisco Catalyst SD-WAN	2026-02-25T00:00:00.000000	2026-02-25T00:00:00.000000
certfr-2026-avi-0209	Multiples vulnérabilités dans les produits VMware	2026-02-25T00:00:00.000000	2026-02-25T00:00:00.000000
certfr-2026-avi-0208	Vulnérabilité dans les produits Synology	2026-02-25T00:00:00.000000	2026-02-25T00:00:00.000000
certfr-2026-avi-0207	Multiples vulnérabilités dans GitLab	2026-02-25T00:00:00.000000	2026-02-25T00:00:00.000000
certfr-2026-avi-0206	Multiples vulnérabilités dans les produits Trend Micro	2026-02-25T00:00:00.000000	2026-02-25T00:00:00.000000

ID	Description	Published	Updated
jvndb-2026-000002	Multiple vulnerabilities in multiple NEC branded projectors manufactured by Sharp Display Solutions, Ltd.	2026-01-07T14:10+09:00	2026-01-14T16:54+09:00
jvndb-2026-001001	Authentication bypass vulnerability in OpenBlocks series	2026-01-07T10:46+09:00	2026-01-07T10:46+09:00
jvndb-2025-022878	Media Player MP-01 vulnerable to Missing Authentication for Critical Function	2025-12-24T11:10+09:00	2026-01-15T11:10+09:00
jvndb-2025-022400	Ruijie Networks AP180 Series vulnerable to OS command injection	2025-12-19T12:33+09:00	2025-12-19T12:33+09:00
jvndb-2025-000118	GROWI vulnerable to cross-site request forgery	2025-12-17T13:04+09:00	2025-12-17T13:04+09:00
jvndb-2025-022062	Multiple vulnerabilities in CHOCO TEI WATCHER mini	2025-12-17T11:28+09:00	2025-12-17T11:28+09:00
jvndb-2025-000117	SEIKO EPSON printer Web Config vulnerable to stack-based buffer overflow	2025-12-16T15:31+09:00	2025-12-23T11:57+09:00
jvndb-2025-000115	QND vulnerable to privilege escalation	2025-12-11T14:33+09:00	2025-12-11T14:33+09:00
jvndb-2025-021305	Android App "Brother iPrint&Scan" improper use of an external cache directory	2025-12-09T17:25+09:00	2025-12-09T17:25+09:00
jvndb-2025-000114	ELECOM Clone for Windows registers a Windows service with an unquoted file path	2025-12-09T17:16+09:00	2025-12-09T17:16+09:00
jvndb-2025-000113	Multiple vulnerabilities in GroupSession	2025-12-08T17:48+09:00	2025-12-11T11:30+09:00
jvndb-2025-000116	GS Yuasa FULLBACK Manager Pro registers Windows services with unquoted file paths	2025-12-08T14:06+09:00	2025-12-08T14:06+09:00
jvndb-2025-000094	Multiple vulnerabilities in ABB Terra AC Wallbox	2025-12-05T14:12+09:00	2025-12-05T14:12+09:00
jvndb-2025-000112	Installer of INZONE Hub may insecurely load Dynamic Link Libraries	2025-11-28T13:36+09:00	2025-11-28T13:36+09:00
jvndb-2025-000111	SwitchBot Smart Video Doorbell vulnerable to active debug code	2025-11-26T14:35+09:00	2025-11-26T14:35+09:00
jvndb-2025-000110	Multiple vulnerabilities in Security Point (Windows) of MaLion	2025-11-25T17:17+09:00	2025-11-25T17:17+09:00
jvndb-2025-000109	Multiple vulnerabilities in SNC-CX600W	2025-11-25T14:59+09:00	2025-11-25T14:59+09:00
jvndb-2025-000108	"FOD" App uses hard-coded cryptographic keys	2025-11-25T14:15+09:00	2025-11-25T14:15+09:00
jvndb-2025-000106	Multiple vulnerabilities in LogStare Collector	2025-11-21T16:27+09:00	2025-11-21T16:27+09:00
jvndb-2025-019621	EPSON WebConfig / Epson Web Control for SEIKO EPSON Projector Products do not restrict excessive authentication attempts	2025-11-21T15:31+09:00	2025-12-24T10:54+09:00
jvndb-2025-000107	Installer of RakurakuMusen Start EX for Windows may insecurely load Dynamic Link Libraries	2025-11-19T16:22+09:00	2025-11-19T16:22+09:00
jvndb-2025-000097	"Dejira" App for iOS vulnerable to improper server certificate verification	2025-11-17T14:09+09:00	2025-11-17T14:09+09:00
jvndb-2025-000105	NCP-HG100 vulnerable to OS command injection	2025-11-14T15:26+09:00	2025-11-14T15:26+09:00
jvndb-2025-000104	Multiple vulnerabilities in GNU Libmicrohttpd	2025-11-10T15:07+09:00	2025-11-10T15:07+09:00
jvndb-2025-000103	Use of password hash with insufficient computational effort vulnerability in BUFFALO Wi-Fi router "WSR-1800AX4 series"	2025-11-07T15:39+09:00	2025-11-07T15:39+09:00
jvndb-2025-000102	CLUSTERPRO X and EXPRESSCLUSTER X vulnerable to OS command injection	2025-11-07T14:55+09:00	2025-11-07T14:55+09:00
jvndb-2025-000101	GROWI vulnerable to stored cross-site scripting	2025-11-06T13:45+09:00	2025-11-06T13:45+09:00
jvndb-2025-017972	Multiple vulnerabilities in Century Systems FutureNet MA and IP-K series	2025-11-04T16:37+09:00	2025-11-04T16:37+09:00
jvndb-2025-000100	Multiple Roboticsware products register Windows services with unquoted file paths	2025-11-04T14:17+09:00	2025-11-04T14:17+09:00
jvndb-2025-000098	Optical Disc Archive Software (for Windows) registers a Windows service with an unquoted file path	2025-11-04T13:51+09:00	2025-11-04T13:51+09:00

ID	Description	Published	Updated
cnvd-2026-11747	WeKan存在未明漏洞	2026-02-11	2026-02-25
cnvd-2026-12896	Apache Syncope代码问题漏洞	2026-02-10	2026-03-04
cnvd-2026-12895	Apache Syncope跨站脚本漏洞	2026-02-10	2026-03-04
cnvd-2026-12673	Cisco Meeting Management(CMM)代码问题漏洞	2026-02-06	2026-03-05
cnvd-2026-12565	ChurchCRM SQL注入漏洞（CNVD-2026-12565）	2026-02-05	2026-03-04
cnvd-2026-12564	TeamViewer DEX Client输入验证错误漏洞	2026-02-05	2026-03-04
cnvd-2026-12563	TeamViewer DEX Client缓冲区溢出漏洞	2026-02-05	2026-03-04
cnvd-2026-11796	Apache Continuum命令注入漏洞	2026-02-05	2026-02-28
cnvd-2026-11795	Mozilla Firefox安全绕过漏洞（CNVD-2026-11795）	2026-02-05	2026-02-28
cnvd-2026-11794	Mozilla Thunderbird信息泄露漏洞（CNVD-2026-11794）	2026-02-05	2026-02-28
cnvd-2026-11766	Wondershare Driver Install Service代码问题漏洞	2026-02-05	2026-02-26
cnvd-2026-11733	Tenda D301和Tenda D151访问控制错误漏洞	2026-02-05	2026-02-24
cnvd-2026-10652	Google Chrome代码执行漏洞（CNVD-2026-10652）	2026-02-05	2026-02-09
cnvd-2026-10651	Google SentencePiece缓冲区溢出漏洞	2026-02-05	2026-02-09
cnvd-2026-10650	Google Go代码执行漏洞（CNVD-2026-10650）	2026-02-05	2026-02-09
cnvd-2026-10649	Google Go拒绝服务漏洞（CNVD-2026-10649）	2026-02-05	2026-02-09
cnvd-2026-10648	Google Go代码执行漏洞	2026-02-05	2026-02-09
cnvd-2026-10647	Google Go拒绝服务漏洞（CNVD-2026-10647）	2026-02-05	2026-02-09
cnvd-2026-10646	Google Go信息泄露漏洞（CNVD-2026-10646）	2026-02-05	2026-02-09
cnvd-2026-10645	Google Chrome信息泄露漏洞（CNVD-2026-10645）	2026-02-05	2026-02-09
cnvd-2026-10641	Google Android信息泄露漏洞（CNVD-2026-10641）	2026-02-05	2026-02-09
cnvd-2026-10356	TOTOLINK X6000R命令注入漏洞（CNVD-2026-10356）	2026-02-05	2026-02-05
cnvd-2026-12674	Cisco Identity Services Engine跨站脚本漏洞（CNVD-2026-12674）	2026-02-04	2026-03-05
cnvd-2026-10871	WordPress插件metasync存在未明漏洞	2026-02-04	2026-02-12
cnvd-2026-10870	WordPress插件Simple User Registration访问控制错误漏洞	2026-02-04	2026-02-12
cnvd-2026-11797	Mozilla Firefox代码执行漏洞（CNVD-2026-11797）	2026-02-02	2026-02-28
cnvd-2026-12366	NVIDIA CUDA toolkit代码问题漏洞	2026-01-30	2026-03-03
cnvd-2026-12365	NVIDIA CUDA toolkit gfx_hotspot模块命令注入漏洞	2026-01-30	2026-03-03
cnvd-2026-11798	IBM Licensing Operator权限提升漏洞	2026-01-30	2026-02-28
cnvd-2026-11755	Google Chrome安全绕过漏洞（CNVD-2026-11755）	2026-01-30	2026-02-25

ID	Description	Published	Updated
bdu:2026-01783	Уязвимость почтового клиента Microsoft Outlook, пакетов программ Microsoft Office, Excel …	13.02.2026	13.02.2026
bdu:2026-01782	Уязвимость пакетов программ Microsoft Office, Excel и 365 Apps for Enterprise, связанная …	13.02.2026	13.02.2026
bdu:2026-01781	Уязвимость пакетов программ Microsoft Office, Excel и 365 Apps for Enterprise, связанная …	13.02.2026	13.02.2026
bdu:2026-01780	Уязвимость компонента Graphics операционных систем Windows, позволяющая нарушителю повыси…	13.02.2026	13.02.2026
bdu:2026-01779	Уязвимость подсистемы совместимости для запуска Linux-приложений Windows Subsystem for Li…	13.02.2026	13.02.2026
bdu:2026-01778	Уязвимость драйвера Windows Ancillary Function Driver for WinSock операционных систем Win…	13.02.2026	13.02.2026
bdu:2026-01777	Уязвимость компонента Graphics операционных систем Windows, позволяющая нарушителю повыси…	13.02.2026	13.02.2026
bdu:2026-01776	Уязвимость сервера отчетов Power BI Report Server, связанная с недостаточной проверкой вв…	13.02.2026	13.02.2026
bdu:2026-01775	Уязвимость программной платформы .NET, связанная с некорректной обработкой отсутствующего…	13.02.2026	13.02.2026
bdu:2026-01774	Уязвимость функции png_set_quantize() библиотеки для работы с растровой графикой в формат…	13.02.2026	13.02.2026
bdu:2026-01773	Уязвимость системы автоматизации технологических процессов EcoStruxure Process Expert и E…	13.02.2026	13.02.2026
bdu:2026-01772	Уязвимость программного обеспечения Gridscale X Prepay, связанная с несоответствием ответ…	13.02.2026	13.02.2026
bdu:2026-01771	Уязвимость сетевого программного обеспечения Siemens, связанная с неконтролируемым элемен…	13.02.2026	13.02.2026
bdu:2026-01770	Уязвимость программного обеспечения контроля лицензий CodeMeter, связанная с недостатками…	13.02.2026	13.02.2026
bdu:2026-01769	Уязвимость системного демона chassisd операционной системы Juniper Networks Junos маршрут…	13.02.2026	13.02.2026
bdu:2026-01768	Уязвимость веб-интерфейса управления системы обработки вызовов Cisco Unified Communicatio…	13.02.2026	13.02.2026
bdu:2026-01767	Уязвимость веб-интерфейса управления системы мониторинга и управления сетевым оборудовани…	13.02.2026	13.02.2026
bdu:2026-01766	Уязвимость микропрограммного обеспечения Cisco SIP IP-телефонов Cisco Video Phone 8875, D…	13.02.2026	13.02.2026
bdu:2026-01765	Уязвимость микропрограммного обеспечения Cisco SIP IP-телефонов Cisco Video Phone 8875, D…	13.02.2026	13.02.2026
bdu:2026-01764	Уязвимость веб-интерфейса средства унифицированного управления Cisco Unified Computing Sy…	13.02.2026	13.02.2026
bdu:2026-01763	Уязвимость программных продуктов Cisco Unified Contact Center Enterprise и Cisco Packaged…	13.02.2026	13.02.2026
bdu:2026-01762	Уязвимость SSH службы технологии Cisco Ultra-Reliable Wireless Backhaul (URWB) сетевых ус…	13.02.2026	13.02.2026
bdu:2026-01761	Уязвимость оболочки обслуживания программного средства управления облачными системами Cis…	13.02.2026	13.02.2026
bdu:2026-01760	Уязвимость программных продуктов Cisco Unified Contact Center Enterprise и Cisco Packaged…	13.02.2026	13.02.2026
bdu:2026-01759	Уязвимость веб-интерфейса управления системы мониторинга и управления сетевым оборудовани…	13.02.2026	13.02.2026
bdu:2026-01758	Уязвимость веб-интерфейса платформы управления политиками соединений Cisco Identity Servi…	13.02.2026	13.02.2026
bdu:2026-01757	Уязвимость веб-интерфейса платформы управления политиками соединений Cisco Identity Servi…	13.02.2026	13.02.2026
bdu:2026-01756	Уязвимость механизма обнаружения Snort программного межсетевого экрана Cisco Secure Firew…	13.02.2026	13.02.2026
bdu:2026-01755	Уязвимость механизма обнаружения Snort программного межсетевого экрана Cisco Secure Firew…	13.02.2026	13.02.2026
bdu:2026-01754	Уязвимость ядра подсистемы совместимости для запуска Linux-приложений Windows Subsystem f…	13.02.2026	13.02.2026

ID	Description	Updated
var-201402-0026	Buffer overflow in the process_ra function in the router advertisement daemon (radvd) bef…	2024-07-23T22:25:48.682000Z
var-201805-1144	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-07-23T22:25:33.529000Z
var-201805-1143	In Advantech WebAccess versions V8.2_20170817 and prior, WebAccess versions V8.3.0 and pr…	2024-07-23T22:25:33.635000Z
var-202005-0008	Advantech WebAccess Node, Version 8.4.4 and prior, Version 9.0.0. Multiple heap-based buf…	2024-07-23T22:25:28.455000Z
var-202407-0704	A vulnerability has been identified in CPCI85 Central Processing/Communication (All versi…	2024-07-23T22:25:01.735000Z
var-200107-0035	slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cau…	2024-07-23T22:24:58.858000Z
var-200512-0643	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-07-23T22:24:53.371000Z
var-200512-0611	Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and…	2024-07-23T22:24:53.455000Z
var-200512-0300	Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to exe…	2024-07-23T22:24:53.297000Z
var-200512-0297	Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbit…	2024-07-23T22:24:53.525000Z
var-200512-0294	Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr…	2024-07-23T22:24:53.234000Z
var-201407-0233	Multiple stack-based buffer overflows in Advantech WebAccess before 7.2 allow remote atta…	2024-07-23T22:22:21.013000Z
var-201601-0038	Multiple stack-based buffer overflows in Advantech WebAccess before 8.1 allow remote atta…	2024-07-23T22:22:04.421000Z
var-201801-0394	TP-Link WVR, WAR and ER devices allow remote authenticated administrators to execute arbi…	2024-07-23T22:21:46.499000Z
var-201904-0181	Advantech WebAccess/SCADA, Versions 8.3.5 and prior. Multiple stack-based buffer overflow…	2024-07-23T22:21:36.530000Z
var-202108-1160	Description: A permissions issue was addressed with improved validation. This issue is fi…	2024-07-23T22:20:46.081000Z
var-202305-0218	D-Link DAP-1360 webproc WEB_DisplayPage Stack-based Buffer Overflow Remote Code Execution…	2024-07-23T22:20:18.349000Z
var-202305-0217	D-Link DAP-1360 Hardcoded Credentials Authentication Bypass Vulnerability. This vulnerabi…	2024-07-23T22:20:18.369000Z
var-202305-0216	D-Link DAP-1360 Multiple Parameters Stack-Based Buffer Overflow Remote Code Execution Vul…	2024-07-23T22:20:18.413000Z
var-202305-0177	D-Link DAP-1360 webproc Stack-based Buffer Overflow Remote Code Execution Vulnerability. …	2024-07-23T22:20:18.434000Z
var-202305-0176	D-Link DAP-1360 webproc var:sys_Token Heap-based Buffer Overflow Remote Code Execution Vu…	2024-07-23T22:20:18.458000Z
var-202305-0166	D-Link DAP-1360 webproc var:menu Stack-based Buffer Overflow Remote Code Execution Vulner…	2024-07-23T22:20:18.326000Z
var-202305-0154	D-Link DAP-1360 webproc var:page Stack-based Buffer Overflow Remote Code Execution Vulner…	2024-07-23T22:20:18.503000Z
var-202305-0153	D-Link DAP-1360 webupg UPGCGI_CheckAuth Numeric Truncation Remote Code Execution Vulnerab…	2024-07-23T22:20:18.392000Z
var-202305-0071	D-Link DAP-1360 webproc Heap-based Buffer Overflow Remote Code Execution Vulnerability. T…	2024-07-23T22:20:18.481000Z
var-202305-0070	D-Link DAP-1360 webproc COMM_MakeCustomMsg Stack-based Buffer Overflow Remote Code Execut…	2024-07-23T22:20:18.303000Z
var-202308-3323	D-Link DAP-2622 DDP Change ID Password Auth Username Stack-based Buffer Overflow Remote C…	2024-07-23T22:20:12.387000Z
var-202308-3185	D-Link DAP-2622 DDP Configuration Backup Filename Stack-based Buffer Overflow Remote Code…	2024-07-23T22:20:12.455000Z
var-202308-3131	D-Link DAP-2622 DDP Reset Factory Auth Password Stack-based Buffer Overflow Remote Code E…	2024-07-23T22:20:12.487000Z
var-202308-3130	D-Link DAP-2622 DDP Configuration Restore Auth Username Stack-based Buffer Overflow Remot…	2024-07-23T22:20:12.431000Z

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated