Recent vulnerabilities

ID	Description	Published	Updated
ghsa-rvmc-jc4r-xjfq	A security vulnerability has been detected in D-Link DWR-M920 up to 1.1.50. The impacted element is…	2025-12-29T15:30:22Z	2025-12-29T15:30:22Z
ghsa-r6xg-3mr4-3226	A type confusion in jsish 2.0 allows incorrect control flow during execution of the OP_NEXT opcode.…	2025-12-29T15:30:22Z	2025-12-29T15:30:22Z
ghsa-pg74-76w3-h2pm	File upload vulnerability in machsol machpanel 8.0.32 allows attacker to gain a webshell.	2025-12-29T15:30:21Z	2025-12-29T15:30:21Z
ghsa-p244-346v-84c5	A vulnerability was identified in D-Link DWR-M920 up to 1.1.50. This issue affects the function sub…	2025-12-29T15:30:21Z	2025-12-29T15:30:21Z
ghsa-9j2r-7g42-jcwg	A weakness has been identified in D-Link DWR-M920 up to 1.1.50. The affected element is the functio…	2025-12-29T15:30:21Z	2025-12-29T15:30:21Z
ghsa-2xwf-xvj5-w274	A vulnerability was determined in Campcodes Complete Online Beauty Parlor Management System 1.0. Th…	2025-12-29T15:30:21Z	2025-12-29T15:30:21Z
ghsa-2439-vfhj-mg5g	A security flaw has been discovered in D-Link DWR-M920 up to 1.1.50. Impacted is the function sub_4…	2025-12-29T15:30:21Z	2025-12-29T15:30:21Z
ghsa-h9cf-c7q8-gcqh	In the Linux kernel, the following vulnerability has been resolved: x86: fix clear_user_rep_good()…	2025-10-07T18:31:09Z	2025-12-29T15:30:20Z
ghsa-9r38-982w-mjcv	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip Recomput…	2024-10-21T12:30:54Z	2025-12-29T15:30:20Z
ghsa-r8g5-cgf2-4m4m	Picklescan missing detection when calling numpy.f2py.crackfortran.getlincoef	2025-12-29T15:27:59Z	2025-12-29T15:27:59Z
ghsa-hgrh-qx5j-jfwx	Picklescan Bypasses Unsafe Globals Check using pty.spawn	2025-12-29T15:26:37Z	2025-12-29T15:26:37Z
ghsa-vqmv-47xg-9wpr	Picklescan missing detection when calling pty.spawn	2025-12-29T15:24:33Z	2025-12-29T15:24:33Z
ghsa-84r2-jw7c-4r5q	Picklescan has Incomplete List of Disallowed Inputs	2025-12-29T15:24:20Z	2025-12-29T15:24:20Z
ghsa-4675-36f9-wf6r	Picklescan does not block ctypes	2025-12-29T15:23:49Z	2025-12-29T15:23:49Z
ghsa-m273-6v24-x4m4	Picklescan vulnerable to Arbitrary File Writing	2025-12-29T15:22:30Z	2025-12-29T15:22:30Z
ghsa-q882-28j8-f2x8	A security vulnerability has been detected in code-projects Refugee Food Management System 1.0. Thi…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-gr57-9g27-x5wx	A vulnerability was found in GreenCMS up to 2.3. This affects an unknown part of the file /DataCont…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-fm8g-vxm5-h9qc	A flaw has been found in code-projects Refugee Food Management System 1.0. Affected by this vulnera…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-fcm2-vr5g-rj8f	A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-cgrf-8qxm-cw5j	A vulnerability was detected in code-projects Refugee Food Management System 1.0. Affected is an un…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-7pfj-7xq4-95vf	A vulnerability has been found in code-projects Refugee Food Management System 1.0. Affected by thi…	2025-12-29T12:30:16Z	2025-12-29T12:30:16Z
ghsa-cg22-j369-q853	A security flaw has been discovered in code-projects Refugee Food Management System 1.0. The impact…	2025-12-29T09:30:24Z	2025-12-29T09:30:25Z
ghsa-wgvp-jwxw-3rhx	BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Upload vulnerability, allowing …	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-m9qv-jv94-ch3q	WMPro developed by Sunnet has a Arbitrary File Upload vulnerability, allowing unauthenticated remot…	2025-12-29T09:30:23Z	2025-12-29T09:30:24Z
ghsa-hmh7-992g-3462	A vulnerability was found in Tenda WH450 1.0.0.18. This issue affects some unknown processing of th…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-g344-h4p6-wpq9	A vulnerability was identified in Tenda WH450 1.0.0.18. The affected element is an unknown function…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-62p4-493g-4423	A vulnerability was determined in Tenda WH450 1.0.0.18. Impacted is an unknown function of the file…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-29c2-7qg3-7c74	BPMFlowWebkit developed by WELLTEND TECHNOLOGY has a Arbitrary File Read vulnerability, allowing un…	2025-12-29T09:30:24Z	2025-12-29T09:30:24Z
ghsa-qvjf-wrj2-9pj8	WMPro developed by Sunnet has an Arbitrary File Read vulnerability, allowing unauthenticated remote…	2025-12-29T09:30:23Z	2025-12-29T09:30:23Z
ghsa-mxx2-735j-g9gp	A vulnerability has been found in Tenda WH450 1.0.0.18. This vulnerability affects unknown code of …	2025-12-29T09:30:23Z	2025-12-29T09:30:23Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-15208		code-projects Refugee Food Management System editrefug…	code-projects	Refugee Food Management System	2025-12-29T22:32:08.042Z	2025-12-29T22:32:08.042Z
cve-2025-15207		Campcodes Supplier Management System view_products.php…	Campcodes	Supplier Management System	2025-12-29T22:02:06.250Z	2025-12-29T22:02:06.250Z
cve-2025-15206		Campcodes Supplier Management System add_area.php sql …	Campcodes	Supplier Management System	2025-12-29T21:32:07.186Z	2025-12-29T21:32:07.186Z
cve-2025-15084		youlaitech youlai-mall Order Payment OrderController.j…	youlaitech	youlai-mall	2025-12-25T18:32:05.729Z	2025-12-29T21:29:17.869Z
cve-2025-15085		youlaitech youlai-mall Balance MemberController.java d…	youlaitech	youlai-mall	2025-12-25T19:32:08.203Z	2025-12-29T21:28:29.460Z
cve-2025-15144		dayrui XunRuiCMS JSONP Callback Init.php dr_exit_msg c…	dayrui	XunRuiCMS	2025-12-28T16:32:07.116Z	2025-12-29T21:27:18.449Z
cve-2025-15145		SohuTV CacheCloud TotalManageController.java doTotalLi…	SohuTV	CacheCloud	2025-12-28T17:02:05.970Z	2025-12-29T21:26:55.456Z
cve-2025-15146		SohuTV CacheCloud UserManageController.java doUserList…	SohuTV	CacheCloud	2025-12-28T17:32:06.551Z	2025-12-29T21:25:59.423Z
cve-2025-15148		CmsEasy Backend Template Management template_admin.php…	n/a	CmsEasy	2025-12-28T18:02:08.178Z	2025-12-29T21:22:26.770Z
cve-2025-15149		rawchen ecms Add New Product updateProductServlet.java…	rawchen	ecms	2025-12-28T18:32:06.054Z	2025-12-29T21:17:12.684Z
cve-2025-68502	4.3 (v3.1)	WordPress JetPopup plugin <= 2.0.20.1 - Insecure Direc…	Crocoblock	JetPopup	2025-12-29T21:16:55.539Z	2025-12-29T21:16:55.539Z
cve-2025-68503	6.5 (v3.1)	WordPress JetBlog plugin <= 2.4.7 - Broken Access Cont…	Crocoblock	JetBlog	2025-12-29T21:15:43.312Z	2025-12-29T21:15:43.312Z
cve-2025-68504	6.5 (v3.1)	WordPress JetSearch plugin <= 3.5.16 - Cross Site Scri…	Crocoblock	JetSearch	2025-12-29T21:14:40.576Z	2025-12-29T21:14:40.576Z
cve-2025-15161		Tenda WH450 PPTPUserSetting stack-based overflow	Tenda	WH450	2025-12-28T23:02:08.101Z	2025-12-29T21:13:48.407Z
cve-2025-68562	9.9 (v3.1)	WordPress MapSVG plugin <= 8.7.3 - Arbitrary File Uplo…	RomanCode	MapSVG	2025-12-29T21:13:24.913Z	2025-12-29T21:13:24.913Z
cve-2025-68607	6.5 (v3.1)	WordPress Custom Field Template plugin <= 2.7.5 - Cros…	Hiroaki Miyashita	Custom Field Template	2025-12-29T21:10:50.618Z	2025-12-29T21:10:50.618Z
cve-2025-68860	9.8 (v3.1)	WordPress Mobile builder plugin <= 1.4.2 - Broken Auth…	Mobile Builder	Mobile builder	2025-12-29T21:08:56.358Z	2025-12-29T21:08:56.358Z
cve-2025-15162		Tenda WH450 RouteStatic stack-based overflow	Tenda	WH450	2025-12-28T23:32:08.620Z	2025-12-29T21:06:49.439Z
cve-2025-15163		Tenda WH450 SafeEmailFilter stack-based overflow	Tenda	WH450	2025-12-29T00:02:07.226Z	2025-12-29T21:03:37.471Z
cve-2025-15205		code-projects Student File Management System download.…	code-projects	Student File Management System	2025-12-29T21:02:06.928Z	2025-12-29T21:02:06.928Z
cve-2025-15065	8.6 (v4.0) 6.3 (v3.1)	Data Exposure in Kings Information & Network KESS Enterprise	Kings Information & Network Co.	KESS Enterprise	2025-12-29T00:09:27.009Z	2025-12-29T21:01:59.310Z
cve-2025-69205		In µURU, a Specially Crafted Federation Name Allows Di…	olell	uURU	2025-12-29T20:52:17.516Z	2025-12-29T20:52:17.516Z
cve-2024-25182	N/A	givanz VvvebJs 1.7.2 suffers from a File Upload v…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:40:54.229Z
cve-2025-15204		SohuTV CacheCloud QuartzManageController.java doQuartz…	SohuTV	CacheCloud	2025-12-29T20:32:06.147Z	2025-12-29T20:32:06.147Z
cve-2024-27480	N/A	givanz VvvebJs 1.7.2 is vulnerable to Insecure Fi…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:27:33.820Z
cve-2024-25183	N/A	givanz VvvebJs 1.7.2 is vulnerable to Directory T…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:25:12.953Z
cve-2025-13958	N/A	YaMaps < 0.6.40 - Contributor+ Stored XSS	Unknown	YaMaps for WordPress Plugin	2025-12-29T06:00:10.716Z	2025-12-29T20:16:35.365Z
cve-2025-13417	N/A	Plugin Organizer < 10.2.4 - Subscriber+ SQLi	Unknown	Plugin Organizer	2025-12-29T06:00:08.587Z	2025-12-29T20:15:42.608Z
cve-2025-15203		SohuTV CacheCloud ResourceController.java index cross …	SohuTV	CacheCloud	2025-12-29T20:02:06.187Z	2025-12-29T20:02:06.187Z
cve-2024-25181	N/A	A critical vulnerability has been identified in g…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T19:49:11.124Z

ID	CVSS	Description	Vendor	Product	Published	Updated
cve-2025-68502	4.3 (v3.1)	WordPress JetPopup plugin <= 2.0.20.1 - Insecure Direc…	Crocoblock	JetPopup	2025-12-29T21:16:55.539Z	2025-12-29T21:16:55.539Z
cve-2025-15207		Campcodes Supplier Management System view_products.php…	Campcodes	Supplier Management System	2025-12-29T22:02:06.250Z	2025-12-29T22:02:06.250Z
cve-2025-15206		Campcodes Supplier Management System add_area.php sql …	Campcodes	Supplier Management System	2025-12-29T21:32:07.186Z	2025-12-29T21:32:07.186Z
cve-2025-69205		In µURU, a Specially Crafted Federation Name Allows Di…	olell	uURU	2025-12-29T20:52:17.516Z	2025-12-29T20:52:17.516Z
cve-2025-15205		code-projects Student File Management System download.…	code-projects	Student File Management System	2025-12-29T21:02:06.928Z	2025-12-29T21:02:06.928Z
cve-2025-15204		SohuTV CacheCloud QuartzManageController.java doQuartz…	SohuTV	CacheCloud	2025-12-29T20:32:06.147Z	2025-12-29T20:32:06.147Z
cve-2025-13958	N/A	YaMaps < 0.6.40 - Contributor+ Stored XSS	Unknown	YaMaps for WordPress Plugin	2025-12-29T06:00:10.716Z	2025-12-29T20:16:35.365Z
cve-2025-13417	N/A	Plugin Organizer < 10.2.4 - Subscriber+ SQLi	Unknown	Plugin Organizer	2025-12-29T06:00:08.587Z	2025-12-29T20:15:42.608Z
cve-2024-27480	N/A	givanz VvvebJs 1.7.2 is vulnerable to Insecure Fi…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:27:33.820Z
cve-2024-25183	N/A	givanz VvvebJs 1.7.2 is vulnerable to Directory T…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:25:12.953Z
cve-2024-25182	N/A	givanz VvvebJs 1.7.2 suffers from a File Upload v…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T20:40:54.229Z
cve-2025-69202		axios-cache-interceptor Vulnerable to Cache Poisoning …	arthurfiorette	axios-cache-interceptor	2025-12-29T19:13:27.880Z	2025-12-29T19:13:27.880Z
cve-2025-15203		SohuTV CacheCloud ResourceController.java index cross …	SohuTV	CacheCloud	2025-12-29T20:02:06.187Z	2025-12-29T20:02:06.187Z
cve-2025-15202		SohuTV CacheCloud TaskController.java taskQueueList cr…	SohuTV	CacheCloud	2025-12-29T19:32:06.804Z	2025-12-29T19:32:06.804Z
cve-2025-14175	6 (v4.0)	Weak Algorithm Support in SSH Server on TL-WR820N	TP-Link Systems Inc.	TL-WR820N v2.8	2025-12-29T19:31:23.473Z	2025-12-29T19:31:23.473Z
cve-2024-30855	N/A	DedeCMS v5.7 was discovered to contain a Cross-Si…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T19:38:16.526Z
cve-2024-25181	N/A	A critical vulnerability has been identified in g…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T19:49:11.124Z
cve-2025-61924		PrestaShop Checkout Target PayPal merchant account hij…	PrestaShopCorp	ps_checkout	2025-10-16T17:33:49.254Z	2025-10-16T19:22:58.718Z
cve-2025-61922		PrestaShop Checkout allows customer account takeover v…	PrestaShopCorp	ps_checkout	2025-10-16T17:26:14.999Z	2025-10-17T14:00:38.840Z
cve-2025-61923		PrestaShop Checkout Backoffice directory traversal all…	PrestaShopCorp	ps_checkout	2025-10-16T17:31:07.064Z	2025-10-16T19:23:05.488Z
cve-2025-68973	7.8 (v3.1)	In GnuPG through 2.4.8, armor_filter in g10/armor…	GnuPG	GnuPG	2025-12-28T16:19:11.019Z	2025-12-29T19:03:39.496Z
cve-2025-68706	N/A	A stack-based buffer overflow exists in the GoAhe…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:39:44.855Z
cve-2025-68431		libheif has Potential Heap Buffer Over-Read	strukturag	libheif	2025-12-29T19:09:54.628Z	2025-12-29T19:09:54.628Z
cve-2025-67255	N/A	In NagiosXI 2026R1.0.1 build 1762361101, Dashboar…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:14:15.414Z
cve-2025-67254	N/A	NagiosXI 2026R1.0.1 build 1762361101 is vulnerabl…	n/a	n/a	2025-12-29T00:00:00.000Z	2025-12-29T18:13:17.215Z
cve-2025-15201		SohuTV CacheCloud WebResourceController.java redirectN…	SohuTV	CacheCloud	2025-12-29T19:02:07.207Z	2025-12-29T19:02:07.207Z
cve-2025-15200		SohuTV CacheCloud AppClientDataShowController.java doI…	SohuTV	CacheCloud	2025-12-29T18:32:06.529Z	2025-12-29T18:32:06.529Z
cve-2025-15199		code-projects College Notes Uploading System userprofi…	code-projects	College Notes Uploading System	2025-12-29T18:02:06.000Z	2025-12-29T18:02:06.000Z
cve-2025-14728	6.8 (v3.1)	Rapid7 Velociraptor Directory Traversal Vulnerability	Rapid7	Velociraptor	2025-12-29T19:04:27.820Z	2025-12-29T19:04:27.820Z
cve-2025-14280		PixelYourSite <= 11.1.5 - Sensitive Information Exposu…	pixelyoursite	PixelYourSite – Your smart PIXEL (TAG) & API Manager	2025-12-29T18:20:49.929Z	2025-12-29T18:20:49.929Z

ID	Description	Published	Updated
fkie_cve-2025-68868	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T17:15:46.903	2025-12-29T17:15:46.903
fkie_cve-2025-68148	FreshRSS is a free, self-hostable RSS aggregator. From version 1.27.0 to before 1.28.0, An attacker…	2025-12-27T00:15:42.167	2025-12-29T17:15:46.700
fkie_cve-2025-66869	Buffer overflow vulnerability in function strcat in asan_interceptors.cpp in libming 0.4.8.	2025-12-29T17:15:46.603	2025-12-29T17:15:46.603
fkie_cve-2025-66866	An issue was discovered in function d_abi_tags in file cp-demangle.c in BinUtils 2.26 allows attack…	2025-12-29T17:15:46.500	2025-12-29T17:15:46.500
fkie_cve-2025-66865	An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allow…	2025-12-29T17:15:46.400	2025-12-29T17:15:46.400
fkie_cve-2025-66864	An issue was discovered in function d_print_comp_inner in file cp-demangle.c in BinUtils 2.26 allow…	2025-12-29T17:15:46.303	2025-12-29T17:15:46.303
fkie_cve-2025-66863	An issue was discovered in function d_discriminator in file cp-demangle.c in BinUtils 2.26 allows a…	2025-12-29T17:15:46.203	2025-12-29T17:15:46.203
fkie_cve-2025-66862	A buffer overflow vulnerability in function gnu_special in file cplus-dem.c in BinUtils 2.26 allows…	2025-12-29T17:15:46.100	2025-12-29T17:15:46.100
fkie_cve-2025-66861	An issue was discovered in function d_unqualified_name in file cp-demangle.c in BinUtils 2.26 allow…	2025-12-29T17:15:45.997	2025-12-29T17:15:45.997
fkie_cve-2025-65442	DOM-based Cross-Site Scripting (XSS) vulnerability in 201206030 novel V3.5.0 allows remote attacker…	2025-12-29T15:16:01.637	2025-12-29T17:15:45.857
fkie_cve-2025-60458	UxPlay 1.72 contains a double free vulnerability in its RTSP request handling. A specially crafted …	2025-12-29T15:16:01.520	2025-12-29T17:15:45.710
fkie_cve-2025-57462	Reflected Cross site scripting (xss) in machsol machpanel 8.0.32 allows attackers to execute arbitr…	2025-12-29T15:16:01.410	2025-12-29T17:15:45.563
fkie_cve-2025-54322	Xspeeder SXZOS through 2025-12-26 allows root remote code execution via base64-encoded Python code …	2025-12-27T14:15:49.547	2025-12-29T17:15:45.450
fkie_cve-2025-53627	Meshtastic is an open source mesh networking solution. The Meshtastic firmware (starting from versi…	2025-12-29T17:15:45.287	2025-12-29T17:15:45.287
fkie_cve-2025-52691	Successful exploitation of the vulnerability could allow an unauthenticated attacker to upload arbi…	2025-12-29T03:15:42.837	2025-12-29T17:15:45.157
fkie_cve-2025-50952	openjpeg v 2.5.0 was discovered to contain a NULL pointer dereference via the component /openjp2/dwt.c.	2025-08-07T15:15:32.773	2025-12-29T17:15:44.997
fkie_cve-2025-15197	A security flaw has been discovered in code-projects/anirbandutta9 Content Management System and Ne…	2025-12-29T17:15:44.713	2025-12-29T17:15:44.713
fkie_cve-2025-15196	A vulnerability was identified in code-projects Assessment Management 1.0. This affects an unknown …	2025-12-29T17:15:44.520	2025-12-29T17:15:44.520
fkie_cve-2025-15195	A vulnerability was determined in code-projects Assessment Management 1.0. Affected by this issue i…	2025-12-29T16:15:42.110	2025-12-29T17:15:43.973
fkie_cve-2025-15168	A vulnerability was identified in itsourcecode Student Management System 1.0. Affected is an unknow…	2025-12-29T03:15:42.647	2025-12-29T17:15:42.450
fkie_cve-2025-15150	A vulnerability was found in PX4 PX4-Autopilot up to 1.16.0. Affected by this issue is the function…	2025-12-28T19:15:48.570	2025-12-29T17:15:42.207
fkie_cve-2025-15110	A vulnerability has been found in jackq XCMS up to 3fab5342cc509945a7ce1b8ec39d19f701b89261. Affect…	2025-12-27T20:15:41.013	2025-12-29T17:15:41.430
fkie_cve-2025-64507	Incus is a system container and virtual machine manager. An issue in versions prior to 6.0.6 and 6.…	2025-11-10T22:15:39.460	2025-12-29T16:29:38.553
fkie_cve-2025-69211	Nest is a framework for building scalable Node.js server-side applications. Versions prior to 11.1.…	2025-12-29T16:15:44.237	2025-12-29T16:15:44.237
fkie_cve-2025-69201	Tugtainer is a self-hosted app for automating updates of docker containers. In versions prior to 1.…	2025-12-29T16:15:43.940	2025-12-29T16:15:43.940
fkie_cve-2025-69200	phpMyFAQ is an open source FAQ web application. In versions prior to 4.0.16, an unauthenticated rem…	2025-12-29T16:15:43.793	2025-12-29T16:15:43.793
fkie_cve-2025-68951	phpMyFAQ is an open source FAQ web application. Versions 4.0.14 and 4.0.15 have a stored cross-site…	2025-12-29T16:15:43.600	2025-12-29T16:15:43.600
fkie_cve-2025-68897	Improper Control of Generation of Code ('Code Injection') vulnerability in Mohammad I. Okfie IF AS …	2025-12-29T16:15:43.457	2025-12-29T16:15:43.457
fkie_cve-2025-68893	Server-Side Request Forgery (SSRF) vulnerability in HETWORKS WordPress Image shrinker allows Server…	2025-12-29T16:15:43.303	2025-12-29T16:15:43.303
fkie_cve-2025-68879	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2025-12-29T16:15:43.160	2025-12-29T16:15:43.160

ID	Description	Package	Published	Updated
pysec-2024-227	Hugging Face Transformers MobileViTV2 Deserialization of Untrusted Data Remote Code Execu…	transformers	2024-11-22T22:15:06+00:00	2025-02-10T23:22:41.399021+00:00
pysec-2024-226	Pymatgen (Python Materials Genomics) is an open-source Python library for materials analy…	pymatgen	2024-02-21T17:15:09+00:00	2025-02-06T00:34:28.734730+00:00
pysec-2024-225	cryptography is a package designed to expose cryptographic primitives and recipes to Pyth…	cryptography	2024-02-21T17:15:09+00:00	2025-02-06T00:34:24.427679+00:00
pysec-2024-224	Excessive directory permissions in MLflow leads to local privilege escalation when using …	mlflow	2024-11-25T14:15:06+00:00	2025-02-03T16:23:40.409646+00:00
pysec-2024-27	CrateDB 5.5.1 is contains an authentication bypass vulnerability in the Admin UI componen…	crate	2024-01-30T01:15:00Z	2025-01-30T22:47:57.847403Z
pysec-2019-242	Capstone 3.0.4 has an out-of-bounds vulnerability (SEGV caused by a read memory access) i…	capstone	2019-05-15T14:29:00Z	2025-01-28T17:34:08.578134Z
pysec-2025-2	uniapi version 1.0.7 introduces code that would execute on import of the module and downl…	uniapi		2025-01-24T19:56:53+00:00
pysec-2024-223	Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds …	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:22.060512+00:00
pysec-2024-222	Versions of the package onnx before and including 1.15.0 are vulnerable to Directory Trav…	onnx	2024-02-23T18:15:50+00:00	2025-01-22T16:23:21.994731+00:00
pysec-2024-221	aiosmtpd is a reimplementation of the Python stdlib smtpd.py based on asyncio. aiosmtpd i…	aiosmtpd	2024-03-12T21:15:58+00:00	2025-01-22T16:23:18.042465+00:00
pysec-2024-220	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.972580+00:00
pysec-2024-219	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.897787+00:00
pysec-2024-218	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:03+00:00	2025-01-19T22:22:23.803143+00:00
pysec-2024-217	Gradio is an open-source Python package designed for quick prototyping. This is a **data …	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.723816+00:00
pysec-2024-216	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T23:15:02+00:00	2025-01-19T22:22:23.549944+00:00
pysec-2024-215	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:11+00:00	2025-01-19T22:22:23.471780+00:00
pysec-2024-214	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.399444+00:00
pysec-2024-213	Gradio is an open-source Python package designed for quick prototyping. This vulnerabilit…	gradio	2024-10-10T22:15:10+00:00	2025-01-19T22:22:23.310301+00:00
pysec-2024-212	Apache Airflow versions before 2.10.1 have a vulnerability that allows DAG authors to add…	apache-airflow	2024-09-07T08:15:11+00:00	2025-01-19T22:22:22.289672+00:00
pysec-2024-211	Waitress is a Web Server Gateway Interface server for Python 2 and 3. When a remote clien…	waitress	2024-10-29T15:15:12+00:00	2025-01-19T19:19:01.852094+00:00
pysec-2024-210	Waitress is a Web Server Gateway Interface server for Python 2 and 3. A remote client may…	waitress	2024-10-29T15:15:11+00:00	2025-01-19T19:19:01.811922+00:00
pysec-2024-209	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:09+00:00	2025-01-19T19:19:01.689044+00:00
pysec-2024-208	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.647736+00:00
pysec-2024-207	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.605918+00:00
pysec-2024-206	Vyper is a pythonic Smart Contract Language for the Ethereum virtual machine. In versions…	vyper	2024-04-25T18:15:08+00:00	2025-01-19T19:19:01.566553+00:00
pysec-2024-205	Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. When using …	vyper	2024-02-26T20:19:05+00:00	2025-01-19T19:19:01.519824+00:00
pysec-2024-204	TorchGeo Remote Code Execution Vulnerability	torchgeo	2024-11-12T18:15:45+00:00	2025-01-19T19:19:01.299352+00:00
pysec-2024-203	DuckDB is a SQL database management system. In versions 1.0.0 and prior, content in files…	duckdb	2024-07-24T18:15:05+00:00	2025-01-19T19:18:58.299130+00:00
pysec-2024-202	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:07+00:00	2025-01-19T16:22:59.212853+00:00
pysec-2024-201	OctoPrint provides a web interface for controlling consumer 3D printers. OctoPrint versio…	octoprint	2024-11-05T19:15:05+00:00	2025-01-19T16:22:59.154645+00:00

ID	Description	Updated
gsd-2024-33766	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.508057Z
gsd-2024-33779	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507854Z
gsd-2024-33792	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.507383Z
gsd-2024-33704	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.504657Z
gsd-2024-33758	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.500910Z
gsd-2024-33710	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.499457Z
gsd-2024-33707	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.497095Z
gsd-2024-33781	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.495881Z
gsd-2024-33679	Cross-Site Request Forgery (CSRF) vulnerability in FameThemes FameTheme Demo Importer.Thi…	2024-04-27T05:02:18.492186Z
gsd-2024-33777	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.489805Z
gsd-2024-33743	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488662Z
gsd-2024-33791	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.488352Z
gsd-2024-33747	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.485640Z
gsd-2024-33774	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.484899Z
gsd-2024-33734	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.482444Z
gsd-2024-33740	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.479260Z
gsd-2024-33801	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.476298Z
gsd-2024-33682	Cross-Site Request Forgery (CSRF) vulnerability in Cookie Information A/S WP GDPR Complia…	2024-04-27T05:02:18.470225Z
gsd-2024-33709	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.469333Z
gsd-2024-33745	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.468253Z
gsd-2024-33690	Cross-Site Request Forgery (CSRF) vulnerability in Jegstudio Financio.This issue affects …	2024-04-27T05:02:18.467205Z
gsd-2024-33808	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.458232Z
gsd-2024-33767	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.454953Z
gsd-2024-33805	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.453392Z
gsd-2024-33711	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.452695Z
gsd-2024-33790	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.450431Z
gsd-2024-33759	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.447890Z
gsd-2024-33680	Cross-Site Request Forgery (CSRF) vulnerability in MainWP MainWP Child Reports.This issue…	2024-04-27T05:02:18.444951Z
gsd-2024-33715	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.440563Z
gsd-2024-33748	The format of the source doesn't require a description, click on the link for more details.	2024-04-27T05:02:18.439408Z

ID	Description	Published	Updated
mal-2025-49439	Malicious code in study-lab-npm-test (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:30Z
mal-2025-49435	Malicious code in something-not-in-cache (npm)	2025-11-09T00:17:09Z	2025-12-24T10:09:30Z
mal-2025-49383	Malicious code in rce-poc-test-honor-mcp (npm)	2025-11-07T04:05:52Z	2025-12-24T10:09:30Z
mal-2025-49382	Malicious code in rce-poc-test-honor-dev (npm)	2025-11-07T04:05:52Z	2025-12-24T10:09:30Z
mal-2025-49376	Malicious code in solara-websocket-dll (npm)	2025-11-05T23:23:27Z	2025-12-24T10:09:30Z
mal-2025-49368	Malicious code in react-tmedia (npm)	2025-11-05T23:18:22Z	2025-12-24T10:09:30Z
mal-2025-48551	Malicious code in react-medias (npm)	2025-10-22T02:05:10Z	2025-12-24T10:09:30Z
mal-2025-48536	Malicious code in reactify-utils (npm)	2025-10-21T06:21:28Z	2025-12-24T10:09:30Z
mal-2025-192639	Malicious code in smm-youtube (npm)	2025-12-19T08:41:06Z	2025-12-24T10:09:30Z
mal-2025-192595	Malicious code in smart-utils-alice (npm)	2025-12-16T07:05:11Z	2025-12-24T10:09:30Z
mal-2025-192583	Malicious code in swissid-common (npm)	2025-12-16T06:23:05Z	2025-12-24T10:09:30Z
mal-2025-192577	Malicious code in sd-skbms (npm)	2025-12-15T07:33:11Z	2025-12-24T10:09:30Z
mal-2025-192576	Malicious code in sd-security (npm)	2025-12-15T07:33:11Z	2025-12-24T10:09:30Z
mal-2025-192566	Malicious code in shopify-monorail (npm)	2025-12-12T06:31:00Z	2025-12-24T10:09:30Z
mal-2025-192565	Malicious code in sdbao-content-sems (npm)	2025-12-12T06:34:05Z	2025-12-24T10:09:30Z
mal-2025-192564	Malicious code in sdbao-content-report (npm)	2025-12-12T06:34:05Z	2025-12-24T10:09:30Z
mal-2025-192563	Malicious code in sd-pay-ts (npm)	2025-12-12T06:34:06Z	2025-12-24T10:09:30Z
mal-2025-192562	Malicious code in sd-pay (npm)	2025-12-12T06:34:06Z	2025-12-24T10:09:30Z
mal-2025-192417	Malicious code in rum-events-format (npm)	2025-12-10T01:57:45Z	2025-12-24T10:09:30Z
mal-2025-192401	Malicious code in serval-integrations-common-frontend (npm)	2025-12-10T01:43:51Z	2025-12-24T10:09:30Z
mal-2025-192315	Malicious code in seeds-random (npm)	2025-12-05T03:03:24Z	2025-12-24T10:09:30Z
mal-2025-191595	Malicious code in tailwindcss-forms (npm)	2025-12-01T13:26:48Z	2025-12-24T10:09:30Z
mal-2025-191594	Malicious code in tailwind-style-override (npm)	2025-12-01T13:26:47Z	2025-12-24T10:09:30Z
mal-2025-191593	Malicious code in tailwind-state (npm)	2025-12-01T13:26:43Z	2025-12-24T10:09:30Z
mal-2025-191588	Malicious code in stringify-coder (npm)	2025-12-01T13:26:20Z	2025-12-24T10:09:30Z
mal-2025-191586	Malicious code in session-validate (npm)	2025-12-01T13:25:08Z	2025-12-24T10:09:30Z
mal-2025-191582	Malicious code in react-mandes (npm)	2025-12-01T13:22:29Z	2025-12-24T10:09:30Z
mal-2025-191581	Malicious code in react-adparser (npm)	2025-12-01T13:22:08Z	2025-12-24T10:09:30Z
mal-2025-191503	Malicious code in start-internal (npm)	2025-12-01T16:00:47Z	2025-12-24T10:09:30Z
mal-2025-191428	Malicious code in solomon-v3-stories (npm)	2025-11-24T23:41:58Z	2025-12-24T10:09:30Z

ID	Description	Published	Updated
wid-sec-w-2024-3376	Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2024-11-07T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3339	Linux Kernel: Mehrere Schwachstellen	2024-11-05T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3283	Linux-Kernel: Schwachstelle ermöglicht Codeausführung	2024-10-27T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-3251	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2024-10-21T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-1504	Apache HTTP Server: Mehrere Schwachstellen	2024-07-01T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2024-0801	Apache HTTP Server: Mehrere Schwachstellen ermöglichen Manipulation von Daten	2024-04-04T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2023-2024	Node.js: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2023-08-09T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2022-1354	Red Hat Enterprise Linux: Mehrere Schwachstellen	2021-05-04T22:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2860	JetBrains TeamCity: Mehrere Schwachstellen	2025-12-16T23:00:00.000+00:00	2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2857	Apache Commons Text: Schwachstelle ermöglicht Codeausführung	2025-12-16T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2846	strongSwan (NetworkManager-Plugin): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-14T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2730	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2729	WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2666	vllm und PyTorch: Schwachstelle ermöglicht DoS und potenzielle Codeausführung	2025-11-23T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2651	GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff	2025-11-19T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2643	Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service	2025-11-19T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2566	Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2518	Red Hat Enterprise Linux (runc): Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen	2025-11-09T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2485	cURL (wcurl): Schwachstelle ermöglicht Manipulation von Dateien	2025-11-03T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2468	CPython: Schwachstelle ermöglicht Denial of Service	2025-11-02T23:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2404	AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität	2025-10-23T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2392	Internet Systems Consortium BIND: Mehrere Schwachstellen	2025-10-22T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2325	xpdf: Schwachstelle ermöglicht Denial of Service	2025-10-16T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2301	Red Hat Enterprise Linux: Mehrere Schwachstellen	2025-10-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2187	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-01T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2051	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-14T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1988	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-09-07T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1965	Linux Kernel: Schwachstelle ermöglicht Denial of Service	2025-09-03T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1933	Linux Kernel: Eine Schwachstelle ermöglicht einen Denial of Service	2025-08-31T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1914	Linux Kernel: Schwachstelle ermöglicht Codeausführung	2025-08-26T22:00:00.000+00:00	2025-12-16T23:00:00.000+00:00

ID	Description	Published	Updated
ssa-627195	SSA-627195: Zip Path Traversal Vulnerability in Mendix Studio Pro's Module Installation Process	2025-06-12T00:00:00Z	2025-07-08T00:00:00Z
ssa-626991	SSA-626991: Denial of Service Vulnerability in SIMATIC CN 4100 before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-593272	SSA-593272: SegmentSmack in Interniche IP-Stack based Industrial Devices	2020-04-14T00:00:00Z	2025-07-08T00:00:00Z
ssa-573669	SSA-573669: Multiple Vulnerabilities in TIA Administrator Before V3.0.6	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-446545	SSA-446545: Impact of RegreSSHion (CVE-2024-6387) in Siemens Industrial Products	2024-09-10T00:00:00Z	2025-07-08T00:00:00Z
ssa-364175	SSA-364175: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.4-h1	2024-07-09T00:00:00Z	2025-07-08T00:00:00Z
ssa-327438	SSA-327438: Multiple Vulnerabilities in SCALANCE LPE9403	2025-05-13T00:00:00Z	2025-07-08T00:00:00Z
ssa-091753	SSA-091753: Multiple Vulnerabilities in Solid Edge Before SE2025 Update 5	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-078892	SSA-078892: Multiple Vulnerabilities in SINEC NMS Before V4.0	2025-07-08T00:00:00Z	2025-07-08T00:00:00Z
ssa-928984	SSA-928984: Heap-based Buffer Overflow Vulnerability in User Management Component (UMC)	2024-12-16T00:00:00Z	2025-06-10T00:00:00Z
ssa-874353	SSA-874353: Entity Enumeration Vulnerability in Mendix Runtime	2025-04-08T00:00:00Z	2025-06-10T00:00:00Z
ssa-858251	SSA-858251: Authentication Bypass Vulnerabilities in OPC UA	2025-03-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-693776	SSA-693776: Multiple Vulnerabilities in Industrial Communication Devices based on SINEC OS before V3.2	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-656895	SSA-656895: Open Redirect Vulnerability in Teamcenter	2025-02-11T00:00:00Z	2025-06-10T00:00:00Z
ssa-633269	SSA-633269: Incorrect Authorization Check Vulnerability in Industrial Communication Devices based on SINEC OS before V3.1	2025-06-10T00:00:00Z	2025-06-10T00:00:00Z
ssa-041082	SSA-041082: Out of Bounds Read Vulnerability in SiPass Integrated Before V2.95.3.18	2025-05-23T00:00:00Z	2025-05-23T00:00:00Z
ssa-552330	SSA-552330: System Configuration Password Reset in Siveillance Video V2024 R1	2025-05-14T00:00:00Z	2025-05-14T00:00:00Z
ssa-935500	SSA-935500: Denial of Service Vulnerability in FTP Server of Nucleus RTOS based APOGEE, TALON and Desigo PXC/PXM Products	2022-10-11T00:00:00Z	2025-05-13T00:00:00Z
ssa-901508	SSA-901508: Multiple Vulnerabilities in INTRALOG WMS Before V5	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-828116	SSA-828116: Denial of Service Vulnerability in BACnet ATEC Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-819629	SSA-819629: Weak Authentication Vulnerability in Industrial Edge Device Kit	2025-04-08T00:00:00Z	2025-05-13T00:00:00Z
ssa-718393	SSA-718393: Partial Denial of Service Vulnerability in APOGEE PXC and TALON TC Series (BACnet) Devices	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-668154	SSA-668154: Denial of Service Vulnerability in MS/TP Point Pickup Module	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-542540	SSA-542540: Out of Bounds Read Vulnerability in Teamcenter Visualization	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-523418	SSA-523418: Information Disclosure Vulnerability in Desigo CC	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-455250	SSA-455250: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 Devices Before V11.1.2-h3	2024-04-09T00:00:00Z	2025-05-13T00:00:00Z
ssa-339086	SSA-339086: Insufficient Session Expiration Vulnerability in SIMATIC PCS neo	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-222768	SSA-222768: Multiple Vulnerabilities in SIRIUS 3SK2 Safety Relays and 3RK3 Modular Safety Systems	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-162255	SSA-162255: Multiple Vulnerabilities in Polarion Before V2410	2025-05-13T00:00:00Z	2025-05-13T00:00:00Z
ssa-103653	SSA-103653: Denial-of-Service Vulnerability in Automation License Manager	2024-09-10T00:00:00Z	2025-05-13T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:3184	Red Hat Security Advisory: podman security update	2025-03-25T20:36:10+00:00	2025-11-29T06:53:44+00:00
rhsa-2025:3266	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T14:25:08+00:00	2025-11-29T06:53:43+00:00
rhsa-2025:3210	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-26T02:19:46+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3186	Red Hat Security Advisory: podman security update	2025-03-25T20:42:41+00:00	2025-11-29T06:53:41+00:00
rhsa-2025:3185	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-03-25T20:37:10+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3175	Red Hat Security Advisory: container-tools:rhel8 security update	2025-03-25T18:12:58+00:00	2025-11-29T06:53:39+00:00
rhsa-2025:3172	Red Hat Security Advisory: VolSync 0.12.1 security fixes and enhancements for RHEL 9	2025-03-25T19:58:29+00:00	2025-11-29T06:53:38+00:00
rhsa-2025:3165	Red Hat Security Advisory: podman security update	2025-03-25T14:24:49+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3132	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.6	2025-03-26T17:34:00+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3131	Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.1.4	2025-03-26T17:39:24+00:00	2025-11-29T06:53:37+00:00
rhsa-2025:3069	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.3 security update	2025-03-20T08:37:59+00:00	2025-11-29T06:53:35+00:00
rhsa-2025:3053	Red Hat Security Advisory: Gatekeeper v3.15.4	2025-03-20T04:55:47+00:00	2025-11-29T06:53:33+00:00
rhsa-2025:3068	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 packages and security update	2025-03-25T07:18:49+00:00	2025-11-29T06:53:32+00:00
rhsa-2025:3066	Red Hat Security Advisory: OpenShift Container Platform 4.18.6 bug fix and security update	2025-03-25T06:59:06+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3061	Red Hat Security Advisory: OpenShift Container Platform 4.17.22 packages and security update	2025-03-27T01:12:40+00:00	2025-11-29T06:53:31+00:00
rhsa-2025:3052	Red Hat Security Advisory: Gatekeeper v3.18.0	2025-03-20T04:53:19+00:00	2025-11-29T06:53:30+00:00
rhsa-2025:3051	Red Hat Security Advisory: Gatekeeper v3.17.2	2025-03-20T04:38:00+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2933	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T12:53:03+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2903	Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.18.0	2025-03-17T09:37:38+00:00	2025-11-29T06:53:29+00:00
rhsa-2025:2652	Red Hat Security Advisory: RHODF-4.18-RHEL-9 enhancement, bug fix and security update	2025-03-11T09:16:21+00:00	2025-11-29T06:53:28+00:00
rhsa-2025:2588	Red Hat Security Advisory: RHOAI 2.18.0 - Red Hat OpenShift AI	2025-03-10T23:41:31+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:2526	Red Hat Security Advisory: ACS 4.5 enhancement update	2025-03-10T15:51:20+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22287	Red Hat Security Advisory: Red Hat Quay 3.9	2025-11-27T14:54:51+00:00	2025-11-29T06:53:27+00:00
rhsa-2025:22182	Red Hat Security Advisory: Red Hat Quay 3.10.16	2025-11-26T14:52:57+00:00	2025-11-29T06:53:26+00:00
rhsa-2025:22014	Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.15.2	2025-11-25T05:10:51+00:00	2025-11-29T06:53:25+00:00
rhsa-2025:21704	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20 security, enhancement & bug fix update	2025-11-18T15:13:35+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19594	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T08:51:51+00:00	2025-11-29T06:53:24+00:00
rhsa-2025:19566	Red Hat Security Advisory: osbuild-composer security update	2025-11-04T04:48:55+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:19306	Red Hat Security Advisory: OpenShift Container Platform 4.15.59 bug fix and security update	2025-11-06T11:55:24+00:00	2025-11-29T06:53:23+00:00
rhsa-2025:1849	Red Hat Security Advisory: RHTAS 1.1.1 - Red Hat Trusted Artifact Signer Release	2025-02-25T15:47:48+00:00	2025-11-29T06:53:22+00:00

ID	Description	Published	Updated
msrc_cve-2025-68161	Apache Log4j Core: Missing TLS hostname verification in Socket appender	2025-12-02T00:00:00.000Z	2025-12-23T01:37:29.000Z
msrc_cve-2025-59529	simple protocol server ignores accepts unlimited connections and logs failures without limit	2025-12-02T00:00:00.000Z	2025-12-23T01:37:23.000Z
msrc_cve-2025-64437	KubeVirt Isolation Detection Flaw Allows Arbitrary File Permission Changes	2025-11-02T00:00:00.000Z	2025-12-23T01:37:16.000Z
msrc_cve-2025-68390	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:15.000Z
msrc_cve-2025-68384	Elasticsearch Allocation of Resources Without Limits or Throttling	2025-12-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64435	KubeVirt VMI Denial-of-Service (DoS) Using Pod Impersonation	2025-11-02T00:00:00.000Z	2025-12-23T01:37:09.000Z
msrc_cve-2025-64433	KubeVirt Arbitrary Container File Read	2025-11-02T00:00:00.000Z	2025-12-23T01:37:02.000Z
msrc_cve-2025-38347	f2fs: fix to do sanity check on ino and xnid	2025-07-02T00:00:00.000Z	2025-12-23T01:37:01.000Z
msrc_cve-2025-38331	net: ethernet: cortina: Use TOE/TSO on all TCP	2025-07-02T00:00:00.000Z	2025-12-23T01:36:56.000Z
msrc_cve-2025-64432	KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer	2025-11-02T00:00:00.000Z	2025-12-23T01:36:55.000Z
msrc_cve-2025-38300	crypto: sun8i-ce-cipher - fix error handling in sun8i_ce_cipher_prepare()	2025-07-02T00:00:00.000Z	2025-12-23T01:36:50.000Z
msrc_cve-2025-37938	tracing: Verify event formats that have "%*p.."	2025-05-02T00:00:00.000Z	2025-12-23T01:36:45.000Z
msrc_cve-2025-37932	sch_htb: make htb_qlen_notify() idempotent	2025-05-02T00:00:00.000Z	2025-12-23T01:36:40.000Z
msrc_cve-2025-37931	btrfs: adjust subpage bit start based on sectorsize	2025-05-02T00:00:00.000Z	2025-12-23T01:36:34.000Z
msrc_cve-2025-66382	In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds of processing time.	2025-11-02T00:00:00.000Z	2025-12-23T01:36:29.000Z
msrc_cve-2025-2296	Un-verified kernel bypass Secure Boot mechanism in direct boot mode	2025-12-02T00:00:00.000Z	2025-12-23T01:35:11.000Z
msrc_cve-2025-7424	Libxslt: type confusion in xmlnode.psvi between stylesheet and source nodes	2025-07-02T00:00:00.000Z	2025-12-22T14:35:05.000Z
msrc_cve-2025-55753	Apache HTTP Server: mod_md (ACME), unintended retry intervals	2025-12-02T00:00:00.000Z	2025-12-20T14:35:58.000Z
msrc_cve-2025-58098	Apache HTTP Server: Server Side Includes adds query string to #exec cmd=...	2025-12-02T00:00:00.000Z	2025-12-20T14:35:52.000Z
msrc_cve-2025-66200	Apache HTTP Server: mod_userdir+suexec bypass via AllowOverride FileInfo	2025-12-02T00:00:00.000Z	2025-12-20T14:35:45.000Z
msrc_cve-2025-65082	Apache HTTP Server: CGI environment variable override	2025-12-02T00:00:00.000Z	2025-12-20T14:35:39.000Z
msrc_cve-2025-14512	Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow	2025-12-02T00:00:00.000Z	2025-12-20T01:40:40.000Z
msrc_cve-2025-14087	Glib: glib: buffer underflow in gvariant parser leads to heap corruption	2025-12-02T00:00:00.000Z	2025-12-20T01:40:29.000Z
msrc_cve-2025-7068	HDF5 H5FL.c H5FL__malloc memory leak	2025-07-02T00:00:00.000Z	2025-12-20T01:38:05.000Z
msrc_cve-2025-7067	HDF5 H5FScache.c H5FS__sinfo_serialize_node_cb heap-based overflow	2025-07-02T00:00:00.000Z	2025-12-20T01:37:56.000Z
msrc_cve-2025-6857	HDF5 H5Gnode.c H5G__node_cmp3 stack-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:44.000Z
msrc_cve-2025-6750	HDF5 H5Omtime.c H5O__mtime_new_encode heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:35.000Z
msrc_cve-2025-6816	HDF5 H5Ofsinfo.c H5O__fsinfo_encode heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:26.000Z
msrc_cve-2025-6818	HDF5 H5Ochunk.c H5O__chunk_protect heap-based overflow	2025-06-02T00:00:00.000Z	2025-12-20T01:37:18.000Z
msrc_cve-2025-6858	HDF5 H5Centry.c H5C__flush_single_entry null pointer dereference	2025-06-02T00:00:00.000Z	2025-12-20T01:37:09.000Z

ID	Description	Published	Updated
icsa-25-296-01	AutomationDirect Productivity Suite	2025-10-23T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-02	Rockwell Automation Compact GuardLogix 5370	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-294-01	Rockwell Automation 1783-NATR	2025-10-21T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-289-02	Rockwell Automation FactoryTalk Linx	2025-10-16T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-280-01	Delta Electronics DIAScreen	2025-10-07T06:00:00.000000Z	2025-10-23T06:00:00.000000Z
icsa-25-037-02	Schneider Electric EcoStruxure (Update C)	2025-02-06T07:00:00.000000Z	2025-10-23T06:00:00.000000Z
va-25-296-01	Frontier Airlines website publicly available email address validation	2025-10-23T00:00:00Z	2025-10-23T00:00:00Z
va-25-297-01	IBM DOORS Next Generation multiple vulnerabilities	2025-10-22T18:45:47Z	2025-10-22T18:45:47Z
icsma-25-294-01	Oxford Nanopore Technologies MinKNOW	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-06	Raisecomm RAX701-GC Series	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-25-294-05	CloudEdge Online Cameras and App	2025-10-21T06:00:00.000000Z	2025-10-21T06:00:00.000000Z
icsa-24-354-07	Schneider Electric Modicon Controllers (Update A)	2024-12-19T07:00:00.000000Z	2025-10-21T06:00:00.000000Z
va-25-289-01	OPEXUS FOIAXpress unauthenticated administrator password reset	2025-10-16T16:43:55Z	2025-10-16T16:43:55Z
icsa-25-289-04	Rockwell Automation ArmorStart AOP	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-03	Rockwell Automation FactoryTalk ViewPoint	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-289-01	Rockwell Automation FactoryTalk View Machine Edition and PanelView Plus 7	2025-10-16T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-24-121-01	Delta Electronics CNCSoft-G2 DOPSoft (Update A)	2024-04-30T06:00:00.000000Z	2025-10-16T06:00:00.000000Z
icsa-25-301-01	Schneider Electric EcoStruxure	2025-10-14T07:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-259-01	Schneider Electric Altivar products ATVdPAC module ILC992 InterLink Converter (Update A)	2025-09-09T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-140-08	Schneider Electric Modicon Controllers (Update B)	2025-05-13T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-24-352-04	Schneider Electric Modicon	2024-12-10T05:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-287-01	Rockwell Automation 1715 EtherNet/IP Comms Module	2025-10-14T06:00:00.000000Z	2025-10-14T06:00:00.000000Z
icsa-25-294-04	Siemens RUGGEDCOM ROS Devices	2025-07-08T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-294-03	Siemens SIMATIC S7-1200 CPU V1/V2 Devices	2011-06-10T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-10	Siemens HyperLynx and Industrial Edge App Publisher	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-09	Siemens TeleControl Server Basic	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-08	Siemens SINEC NMS	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-07	Siemens SIMATIC ET 200SP Communication Processors	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-06	Siemens SiPass	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-289-05	Siemens Solid Edge	2025-10-14T00:00:00.000000Z	2025-10-14T00:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-contcent-insuffacces-ardovhn8	Cisco Unified Contact Center Enterprise Cloud Connect Insufficient Access Control Vulnerability	2025-05-21T16:00:00+00:00	2025-05-21T16:00:00+00:00
cisco-sa-sdwanarbfile-2zkhkzwj	Cisco Catalyst SD-WAN Manager Arbitrary File Creation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-14T20:04:53+00:00
cisco-sa-sdwan-fileoverwrite-uc9txwh	Cisco Catalyst SD-WAN Manager Arbitrary File Overwrite Vulnerability	2025-05-07T16:00:00+00:00	2025-05-08T15:55:57+00:00
cisco-sa-wlc-wncd-p6gvt6hl	Cisco IOS XE Software for WLC Wireless IPv6 Clients Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-multi-arnhm4v6	Cisco IOS XE Software Web-Based Management Interface Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webui-cmdinj-gvn3oknc	Cisco IOS XE Software Web-Based Management Interface Command Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-xss-xhn8m5jt	Cisco Catalyst SD-WAN Manager Stored Cross-Site Scripting Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-vmanage-html-inj-gxvtk6zj	Cisco Catalyst SD-WAN Manager Reflected HTML Injection Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-twamp-kv4fhugn	Cisco IOS, IOS XE, and IOS XR Software TWAMP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-snmpv3-qkeyvzsy	Cisco IOS and IOS XE Software SNMPv3 Configuration Restriction Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sisf-dos-zgwt4ddy	Multiple Cisco Products Switch Integrated Security Features DHCPv6 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-sdwan-priviesc-wck7bmmt	Cisco Catalyst SD-WAN Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-netconf-nacm-bypass-tgzv9pmq	Cisco IOS XE Software Model-Driven Programmability Authorization Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-multiprod-ikev2-dos-gpctuqv2	Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software, IOS Software, and IOS XE Software IKEv2 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ipsgacl-pg6qfzk	Cisco IOS Software on Cisco Catalyst 1000 and 2960L Switches Access Control List Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iox-dos-95fqnf7b	Cisco IOx Application Hosting Environment Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-privesc-su7scvdp	Cisco IOS XE Software Privilege Escalation Vulnerabilities	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-ikev1-dos-xhk3hzfc	Cisco IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-iosxe-dhcpsn-dos-xbn8mtks	Cisco IOS XE Software DHCP Snooping Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ios-http-privesc-wcrd5e3	Cisco IOS Software Industrial Ethernet Switch Device Manager Privilege Escalation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-user-del-hqxmpudj	Cisco IOS XE Wireless Controller Software Unauthorized User Deletion Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-ewlc-cdp-dos-fpeks9k	Cisco IOS XE Wireless Controller Software Cisco Discovery Protocol Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catc-insec-acc-mtt8eheb	Cisco Catalyst Center Insufficient Access Control Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-catalyst-tls-pqnd5kej	Cisco Catalyst SD-WAN Manager Certificate Validation Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-c2960-3560-sboot-ztqadrhq	Cisco IOS Software for Cisco Catalyst 2960X, 2960XR, 2960CX, and 3560CX Series Switches Secure Boot Bypass Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-bootstrap-kfgxygdh	Cisco IOS XE Software Bootstrap Arbitrary File Write Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-asr903-rsp3-arp-dos-wmfzdvjz	Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers ARP Denial of Service Vulnerability	2025-05-07T16:00:00+00:00	2025-05-07T16:00:00+00:00
cisco-sa-webex-app-client-rce-ufymmylc	Cisco Webex App Client-Side Remote Code Execution Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-sna-prvesc-4bqmk33z	Cisco Secure Network Analytics Privilege Escalation Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00
cisco-sa-nd-unenum-2xffh472	Cisco Nexus Dashboard LDAP Username Enumeration Vulnerability	2025-04-16T16:00:00+00:00	2025-04-16T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Updated
var-201605-0465	The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple …	2024-11-29T22:34:09.220000Z
var-200905-0505	Array index error in the insertItemBefore method in WebKit, as used in Apple Safari befor…	2024-11-29T22:34:08.776000Z
var-200705-0688	The ap_proxy_http_process_response function in mod_proxy_http.c in the mod_proxy module i…	2024-11-29T22:34:07.786000Z
var-201902-0242	In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishand…	2024-11-29T22:34:07.699000Z
var-200102-0030	The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attack…	2024-11-29T22:34:04.077000Z
var-201503-0388	Use-after-free vulnerability in the _zend_shared_memdup function in zend_shared_alloc.c i…	2024-11-29T22:33:57.803000Z
var-201912-1862	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2024-11-29T22:33:50.207000Z
var-201310-0353	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, a…	2024-11-29T22:33:48.342000Z
var-201801-0036	jQuery before 3.0.0 is vulnerable to Cross-site Scripting (XSS) attacks when a cross-doma…	2024-11-29T22:33:43.707000Z
var-201112-0047	The Cascading Style Sheets (CSS) implementation in Google Chrome before 16.0.912.63 on 64…	2024-11-29T22:33:43.392000Z
var-202109-1805	Malformed requests may cause the server to dereference a NULL pointer. This issue affects…	2024-11-29T22:33:38.638000Z
var-201111-0129	Use-after-free vulnerability in Google Chrome before 15.0.874.120 allows user-assisted re…	2024-11-29T22:33:38.569000Z
var-200611-0488	Unspecified vulnerability in Apple Mac OS X 10.4.8, and possibly other versions, allows r…	2024-11-29T22:32:37.602000Z
var-202001-1866	xmlStringLenDecodeEntities in parser.c in libxml2 2.9.10 has an infinite loop in a certai…	2024-11-29T22:32:28.603000Z
var-201205-0297	The Linux kernel before 3.3.1, when KVM is used, allows guest OS users to cause a denial …	2024-11-29T22:32:27.665000Z
var-200701-0517	Untrusted search path vulnerability in writeconfig in Apple Mac OS X 10.4.8 allows local …	2024-11-29T22:32:27.264000Z
var-201503-0206	Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP …	2024-11-29T22:32:24.843000Z
var-201211-0370	Buffer overflow in Adobe Flash Player before 10.3.183.43 and 11.x before 11.5.502.110 on …	2024-11-29T22:32:24.606000Z
var-201912-0574	An out-of-bounds read was addressed with improved input validation. plural Apple The prod…	2024-11-29T22:32:23.693000Z
var-202301-0598	Unproper laxist permissions on the temporary files used by MIME4J TempFileStorageProvider…	2024-11-29T22:31:14.574000Z
var-200905-0155	Multiple memory leaks in Ipsec-tools before 0.7.2 allow remote attackers to cause a denia…	2024-11-29T22:31:14.300000Z
var-200705-0670	The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.1…	2024-11-29T22:31:11.850000Z
var-202108-2221	curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. T…	2024-11-29T22:31:04.937000Z
var-202203-0145	A buffer overflow issue was addressed with improved memory handling. This issue is fixed …	2024-11-29T22:30:34.594000Z
var-201609-0592	The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remot…	2024-11-29T22:30:34.148000Z
var-201304-0373	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2024-11-29T22:30:33.711000Z
var-202206-1106	Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an…	2024-11-29T22:30:33.233000Z
var-202009-1442	A buffer overflow exists in the Brotli library versions prior to 1.0.8 where an attacker …	2024-11-29T22:30:24.749000Z
var-200707-0675	The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5…	2024-11-29T22:30:21.788000Z
var-202010-1245	A logic issue was addressed with improved state management. This issue is fixed in iOS 13…	2024-11-29T22:30:21.601000Z

ID	Description	Published	Updated
jvndb-2025-000038	UpdateNavi vulnerable to improper restriction of communication channel to intended endpoints	2025-06-12T15:56+09:00	2025-06-12T15:56+09:00
jvndb-2025-000037	Multiple surveillance cameras provided by i-PRO Co., Ltd. vulnerable to cross-site request forgery	2025-06-06T13:56+09:00	2025-06-06T13:56+09:00
jvndb-2025-000036	TimeWorks vulnerable to path traversal	2025-06-03T15:35+09:00	2025-06-03T15:35+09:00
jvndb-2025-000035	Improper file access permission settings in PC Time Tracer	2025-06-03T14:40+09:00	2025-06-03T14:40+09:00
jvndb-2025-000034	Multiple vulnerabilities in wivia 5	2025-05-30T15:57+09:00	2025-05-30T15:57+09:00
jvndb-2025-001238	Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers	2025-01-29T13:41+09:00	2025-05-27T16:06+09:00
jvndb-2025-000032	Mailform Pro CGI generating error messages containing sensitive information	2025-05-26T14:22+09:00	2025-05-26T14:22+09:00
jvndb-2025-000033	Improper pattern file validation in i-FILTER optional feature 'Anti-Virus & Sandbox'	2025-05-23T15:36+09:00	2025-05-23T15:36+09:00
jvndb-2025-005467	Passback vulnerabilities in Canon Production Printers, Office/Small Office Multifunction Printers, and Laser Printers	2025-05-22T15:03+09:00	2025-05-22T15:03+09:00
jvndb-2024-000117	Stack-based buffer overflow vulnerability in multiple laser printers and MFPs which implement Ricoh Web Image Monitor	2024-10-31T16:44+09:00	2025-05-19T17:59+09:00
jvndb-2025-005107	Multiple vulnerabilities in V-SFT	2025-05-16T14:32+09:00	2025-05-16T14:32+09:00
jvndb-2025-005057	Multiple vulnerabilities in I-O DATA network attached hard disk 'HDL-T Series'	2025-05-15T18:27+09:00	2025-05-15T18:27+09:00
jvndb-2025-005050	Multiple vulnerabilities in a-blog cms	2025-05-15T18:11+09:00	2025-05-15T18:11+09:00
jvndb-2025-000031	Pgpool-II vulnerable to authentication bypass by primary weakness	2025-05-15T16:14+09:00	2025-05-15T16:14+09:00
jvndb-2025-004863	Panasonic IR Control Hub vulnerable to Unauthorised firmware loading	2025-05-14T11:30+09:00	2025-05-14T11:30+09:00
jvndb-2025-004671	Multiple vulnerabilities in GL-MT2500 and GL-MT2500A	2025-05-12T17:52+09:00	2025-05-12T17:52+09:00
jvndb-2025-001016	OMRON NJ/NX series vulnerable to path traversal	2025-02-06T18:27+09:00	2025-05-08T17:44+09:00
jvndb-2025-004079	Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS	2025-04-30T11:46+09:00	2025-04-30T11:46+09:00
jvndb-2025-004076	Security Update for Trend Micro Trend Vision One (April 2025)	2025-04-30T10:38+09:00	2025-04-30T10:38+09:00
jvndb-2025-000029	Multiple vulnerabilities in Quick Agent	2025-04-25T13:49+09:00	2025-04-25T13:49+09:00
jvndb-2025-000028	i-PRO Configuration Tool vulnerable to use of hard-coded cryptographic key	2025-04-24T13:50+09:00	2025-04-24T13:50+09:00
jvndb-2025-000027	Active! mail vulnerable to stack-based buffer overflow	2025-04-18T16:50+09:00	2025-04-18T16:50+09:00
jvndb-2016-000129	Android OS issue where it is affected by the CRIME attack	2016-07-25T11:15+09:00	2025-04-18T16:36+09:00
jvndb-2025-003213	TP-Link Deco BE65 Pro vulnerable to OS command injection	2025-04-11T13:52+09:00	2025-04-11T13:52+09:00
jvndb-2025-000026	Multiple vulnerabilities in BizRobo!	2025-04-10T15:36+09:00	2025-04-10T15:36+09:00
jvndb-2025-003091	Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (April 2025)	2025-04-09T14:55+09:00	2025-04-09T14:55+09:00
jvndb-2025-002990	Multiple vulnerabilities in Inaba Denki Sangyo Wi-Fi AP UNIT 'AC-WPS-11ac series'	2025-04-07T17:44+09:00	2025-04-07T17:44+09:00
jvndb-2025-002714	Improper symbolic link file handling in FutureNet NXR series, VXR series and WXR series routers	2025-03-31T16:59+09:00	2025-04-03T15:19+09:00
jvndb-2025-000025	WinRAR vulnerable to the symbolic link based "Mark of the Web" check bypass	2025-04-03T12:29+09:00	2025-04-03T12:29+09:00
jvndb-2025-000022	Multiple vulnerabilities in JTEKT ELECTRONICS CORPORATION's products	2025-04-02T15:12+09:00	2025-04-02T15:12+09:00

ID	Description	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated