Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-21021 |
5.7 (3.1)
|
Out-of-bounds write in drawing pinpad in Blockcha… |
Samsung Mobile |
Blockchain Keystore |
2025-08-06T04:23:38.208Z | 2026-02-26T17:49:56.426Z |
| CVE-2025-21020 |
5.7 (3.1)
|
Out-of-bounds write in creating bitmap images in … |
Samsung Mobile |
Blockchain Keystore |
2025-08-06T04:23:36.742Z | 2026-02-26T17:49:56.856Z |
| CVE-2025-20706 |
7.8 (3.1)
|
In mbrain, there is a possible memory corruption … |
MediaTek, Inc. |
MT6899, MT6989, MT6991, MT8676, MT8678 |
2025-09-01T05:12:22.752Z | 2026-02-26T17:49:56.255Z |
| CVE-2025-20705 |
7.8 (3.1)
|
In monitor_hang, there is a possible memory corru… |
MediaTek, Inc. |
MT2718, MT2735, MT6739, MT6761, MT6765, MT6768, MT6781, MT6789, MT6835, MT6853, MT6855, MT6877, MT6878, MT6879, MT6880, MT6883, MT6885, MT6886, MT6889, MT6890, MT6893, MT6895, MT6897, MT6899, MT6980D, MT6983, MT6985, MT6989, MT6990, MT6991, MT8169, MT8186, MT8188, MT8676, MT8678, MT8696, MT8775, MT8792, MT8796 |
2025-09-01T05:12:21.111Z | 2026-02-26T17:49:56.569Z |
| CVE-2025-20704 |
8 (3.1)
|
In Modem, there is a possible out of bounds write… |
MediaTek, Inc. |
MT6813, MT6835, MT6835T, MT6878, MT6878M, MT6897, MT6899, MT6991, MT8676, MT8678, MT8792, MT8863, MT8873, MT8883 |
2025-09-01T05:12:19.494Z | 2026-02-26T17:49:56.712Z |
| CVE-2025-3586 |
7.5 (4.0)
|
In Liferay Portal 7.4.3.27 through 7.4.3.42, and … |
Liferay |
Portal |
2025-09-01T18:07:56.434Z | 2026-02-26T17:49:55.599Z |
| CVE-2025-21458 |
7.8 (3.1)
|
Use After Free in NPU |
Qualcomm, Inc. |
Snapdragon |
2025-08-06T07:25:51.371Z | 2026-02-26T17:49:55.444Z |
| CVE-2025-21456 |
7.8 (3.1)
|
Use After Free in NPU |
Qualcomm, Inc. |
Snapdragon |
2025-08-06T07:25:49.259Z | 2026-02-26T17:49:55.750Z |
| CVE-2025-20707 |
6.7 (3.1)
|
In geniezone, there is a possible memory corrupti… |
MediaTek, Inc. |
MT2718, MT6853, MT6877, MT6893, MT6899, MT6991, MT8196, MT8676, MT8678, MT8775, MT8786, MT8788E, MT8791T, MT8792, MT8796, MT8883, MT8893 |
2025-09-01T05:12:24.351Z | 2026-02-26T17:49:55.910Z |
| CVE-2024-28988 |
9.8 (3.1)
|
SolarWinds Web Help Desk Java Deserialization Remote C… |
SolarWinds |
Web Help Desk |
2025-09-01T21:18:58.626Z | 2026-02-26T17:49:55.146Z |
| CVE-2025-46810 |
8.5 (4.0)
|
A UNIX Symbolic Link (Symlink) Following vulnerab… |
openSUSE |
Tumbleweed |
2025-09-02T11:34:32.138Z | 2026-02-26T17:49:54.935Z |
| CVE-2025-43726 |
6.7 (3.1)
|
Dell Alienware Command Center 5.x (AWCC), version… |
Dell |
Alienware Command Center 5.x (AWCC) |
2025-09-02T18:29:58.871Z | 2026-02-26T17:49:54.393Z |
| CVE-2025-21473 |
7.8 (3.1)
|
Time-of-check Time-of-use (TOCTOU) Race Condition in C… |
Qualcomm, Inc. |
Snapdragon |
2025-08-06T07:25:57.550Z | 2026-02-26T17:49:54.134Z |
| CVE-2025-21461 |
7.8 (3.1)
|
Out-of-bounds Write in Camera_Linux |
Qualcomm, Inc. |
Snapdragon |
2025-08-06T07:25:52.424Z | 2026-02-26T17:49:54.711Z |
| CVE-2025-6013 |
6.5 (3.1)
|
Vault LDAP MFA Enforcement Bypass When Using Username … |
HashiCorp |
Vault |
2025-08-06T10:06:55.668Z | 2026-02-26T17:49:53.769Z |
| CVE-2025-3354 |
8.1 (3.1)
|
IBM Tivoli Monitoring code execution |
IBM |
Tivoli Monitoring |
2025-08-06T13:50:06.240Z | 2026-02-26T17:49:53.408Z |
| CVE-2024-49730 |
7.8 (3.1)
|
In FuseDaemon.cpp, there is a possible out of bou… |
Google |
Android |
2025-09-02T22:11:07.640Z | 2026-02-26T17:49:53.164Z |
| CVE-2024-49720 |
7.8 (3.1)
|
In multiple functions of Permissions.java, there … |
Google |
Android |
2025-09-02T22:11:04.547Z | 2026-02-26T17:49:53.589Z |
| CVE-2024-40653 |
7.3 (3.1)
|
In multiple functions of ConnectionServiceWrapper… |
Google |
Android |
2025-09-02T22:11:03.498Z | 2026-02-26T17:49:53.933Z |
| CVE-2025-53786 |
8 (3.1)
|
Microsoft Exchange Server Hybrid Deployment Elevation … |
Microsoft |
Microsoft Exchange Server 2016 Cumulative Update 23 |
2025-08-06T16:02:05.764Z | 2026-02-26T17:49:52.527Z |
| CVE-2025-22417 |
7.3 (3.1)
|
In finishTransition of Transition.java, there is … |
Google |
Android |
2025-09-02T22:11:09.648Z | 2026-02-26T17:49:52.159Z |
| CVE-2025-22416 |
7.8 (3.1)
|
In onCreate of ChooserActivity.java , there is a … |
Google |
Android |
2025-09-02T22:11:08.649Z | 2026-02-26T17:49:52.744Z |
| CVE-2025-6634 |
7.8 (3.1)
|
TGA File Parsing Memory Corruption Vulnerability |
Autodesk |
3ds Max |
2025-08-06T20:43:41.404Z | 2026-02-26T17:49:51.082Z |
| CVE-2025-6633 |
7.8 (3.1)
|
RBG File Parsing Out-of-Bounds Write Vulnerability |
Autodesk |
3ds Max |
2025-08-06T20:43:13.848Z | 2026-02-26T17:49:51.492Z |
| CVE-2025-38747 |
7.8 (3.1)
|
Dell SupportAssist OS Recovery, versions prior to… |
Dell |
SupportAssist OS Recovery |
2025-08-06T19:48:46.676Z | 2026-02-26T17:49:51.896Z |
| CVE-2025-22419 |
7.3 (3.1)
|
In multiple locations, there is a possible way to… |
Google |
Android |
2025-09-02T22:11:11.657Z | 2026-02-26T17:49:51.247Z |
| CVE-2025-22418 |
7.8 (3.1)
|
In multiple locations, there is a possible confus… |
Google |
Android |
2025-09-02T22:11:10.628Z | 2026-02-26T17:49:51.680Z |
| CVE-2025-8578 |
8.8 (3.1)
|
Use after free in Cast in Google Chrome prior to … |
Google |
Chrome |
2025-08-07T01:30:38.991Z | 2026-02-26T17:49:50.444Z |
| CVE-2025-8576 |
8.8 (3.1)
|
Use after free in Extensions in Google Chrome pri… |
Google |
Chrome |
2025-08-07T01:30:38.461Z | 2026-02-26T17:49:50.747Z |
| CVE-2025-22433 |
7.8 (3.1)
|
In canForward of IntentForwarderActivity.java, th… |
Google |
Android |
2025-09-02T22:11:20.673Z | 2026-02-26T17:49:50.087Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-40539 |
9.1 (3.1)
|
SolarWinds Serv-U Type Confusion Remote Code Execution… |
SolarWinds |
Serv-U |
2026-02-24T07:40:46.244Z | 2026-02-26T14:44:09.712Z |
| CVE-2025-40538 |
9.1 (3.1)
|
SolarWinds Serv-U Broken Access Control Remote Code Ex… |
SolarWinds |
Serv-U |
2026-02-24T07:40:12.958Z | 2026-02-26T14:44:09.848Z |
| CVE-2026-2904 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
UTT HiPER 810G ConfigExceptAli strcpy buffer overflow |
UTT |
HiPER 810G |
2026-02-22T00:32:11.578Z | 2026-02-26T16:21:49.621Z |
| CVE-2026-24481 |
7.5 (3.1)
|
ImageMagick has Possible Heap Information Disclosure i… |
ImageMagick |
ImageMagick |
2026-02-24T00:29:20.406Z | 2026-02-26T14:40:07.564Z |
| CVE-2026-2932 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
YiFang CMS Extended Management D_adPosition.php update… |
YiFang |
CMS |
2026-02-22T07:32:08.677Z | 2026-02-27T18:15:32.945Z |
| CVE-2026-25638 |
5.3 (3.1)
|
ImageMagick has memory leak in msl encoder |
ImageMagick |
ImageMagick |
2026-02-24T00:49:57.947Z | 2026-02-26T15:03:56.194Z |
| CVE-2025-15386 |
8.8 (3.1)
|
Responsive Lightbox & Gallery < 2.6.1 - Unauthenticate… |
Unknown |
Responsive Lightbox & Gallery |
2026-02-24T06:00:07.864Z | 2026-02-24T16:29:30.065Z |
| CVE-2026-25794 |
8.2 (3.1)
|
ImageMagick has heap-buffer-overflow via signed intege… |
ImageMagick |
ImageMagick |
2026-02-24T00:53:23.396Z | 2026-02-26T15:05:26.408Z |
| CVE-2021-33069 |
N/A
|
Improper resource shutdown or release in firmware… |
n/a |
Intel(R) SSD, Intel(R) SSD DC, Intel(R) Optane(TM) SSD and Intel(R) Optane(TM) SSD DC |
2022-05-12T16:35:59.000Z | 2024-08-03T23:42:19.531Z |
| CVE-2021-31854 |
7.7 (3.1)
|
Code injection vulnerability in McAfee Agent |
McAfee,LLC |
McAfee Agent for Windows |
2022-01-19T11:00:16.000Z | 2024-08-03T23:10:30.729Z |
| CVE-2021-31843 |
7.3 (3.1)
|
Improper access control vulnerability in McAfee ENS fo… |
McAfee,LLC |
McAfee Endpoint Security (ENS) for WIndows |
2021-09-17T13:40:12.000Z | 2024-08-03T23:10:30.554Z |
| CVE-2021-31838 |
8.4 (3.1)
|
Command injection through environment variable in MVIS… |
McAfee,LLC |
MVISION EDR |
2021-06-29T09:45:11.000Z | 2024-08-03T23:10:30.172Z |
| CVE-2026-2933 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
YiFang CMS Extended Management D_adManage.php update c… |
YiFang |
CMS |
2026-02-22T07:32:11.055Z | 2026-02-27T18:18:36.765Z |
| CVE-2026-2934 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
YiFang CMS Extended Management D_friendLinkGroup.php u… |
YiFang |
CMS |
2026-02-22T08:02:08.708Z | 2026-02-25T18:33:35.658Z |
| CVE-2026-2935 |
8.6 (4.0)
7.2 (3.1)
7.2 (3.0)
|
UTT HiPER 810G ConfigExceptMSN strcpy buffer overflow |
UTT |
HiPER 810G |
2026-02-22T08:02:11.025Z | 2026-02-25T18:32:41.478Z |
| CVE-2026-27211 |
9.1 (4.0)
|
Cloud Hypervisor: Host File Exfiltration via QCOW Back… |
cloud-hypervisor |
cloud-hypervisor |
2026-02-21T05:36:33.169Z | 2026-02-25T21:17:44.674Z |
| CVE-2026-27480 |
5.3 (3.1)
|
Static Web Server: Timing-Based Username Enumeration i… |
static-web-server |
static-web-server |
2026-02-21T09:14:30.376Z | 2026-02-24T18:13:51.921Z |
| CVE-2026-27482 |
5.9 (3.1)
|
Ray: Dashboard DELETE endpoints allow unauthenticated … |
ray-project |
ray |
2026-02-21T09:18:26.027Z | 2026-02-24T18:52:03.874Z |
| CVE-2026-27486 |
4.3 (4.0)
|
OpenClaw: Process Safety - Unvalidated PID Kill via SI… |
openclaw |
openclaw |
2026-02-21T09:32:45.418Z | 2026-02-24T18:20:44.858Z |
| CVE-2026-2894 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
funadmin forget.html getMember information disclosure |
n/a |
funadmin |
2026-02-21T23:02:09.334Z | 2026-02-23T19:28:14.585Z |
| CVE-2019-25447 |
5.3 (4.0)
4.3 (3.1)
|
OrientDB 3.0.17 Cross-Site Request Forgery |
Orientdb |
OrientDB |
2026-02-20T22:56:57.950Z | 2026-02-24T15:35:18.664Z |
| CVE-2026-2895 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
funadmin Member.php repass password recovery |
n/a |
funadmin |
2026-02-21T23:02:11.258Z | 2026-02-23T19:27:18.883Z |
| CVE-2019-25448 |
5.1 (4.0)
6.4 (3.1)
|
OrientDB 3.0.17 Stored Cross-Site Scripting via User C… |
Orientdb |
OrientDB |
2026-02-20T22:56:58.789Z | 2026-02-23T19:48:16.437Z |
| CVE-2019-25449 |
5.1 (4.0)
6.1 (3.1)
|
OrientDB 3.0.17 Reflected Cross-Site Scripting via doc… |
Orientdb |
OrientDB |
2026-02-20T22:56:59.691Z | 2026-02-23T19:41:15.496Z |
| CVE-2026-2896 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
funadmin Configuration Ajax.php setConfig improper aut… |
n/a |
funadmin |
2026-02-21T23:32:08.339Z | 2026-02-23T19:24:12.021Z |
| CVE-2026-2897 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
funadmin Backend index.html cross site scripting |
n/a |
funadmin |
2026-02-22T00:02:08.938Z | 2026-02-23T19:22:34.754Z |
| CVE-2026-2898 |
5.1 (4.0)
5.5 (3.1)
5.5 (3.0)
|
funadmin Backend Endpoint AuthCloudService.php getMemb… |
n/a |
funadmin |
2026-02-22T00:02:10.909Z | 2026-02-23T19:17:18.513Z |
| CVE-2021-26887 |
7.8 (3.1)
|
Microsoft Windows Folder Redirection Elevation of Priv… |
Microsoft |
Windows 10 Version 2004 |
2021-03-11T15:42:16.000Z | 2024-11-19T16:07:28.981Z |
| CVE-2021-26353 |
N/A
|
Failure to validate inputs in SMM may allow an at… |
AMD |
3rd Gen EPYC |
2022-05-10T18:33:42.470Z | 2024-08-03T20:26:24.535Z |
| CVE-2021-24105 |
8.4 (3.1)
|
Package Managers Configurations Remote Code Execution … |
Microsoft |
Package Manager Configurations |
2021-02-25T23:01:55.000Z | 2024-08-03T19:21:18.208Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-40538 | A broken access control vulnerability exists in Serv-U which when exploited, gives a malicious acto… | 2026-02-24T08:16:27.627 | 2026-02-24T17:51:27.573 |
| fkie_cve-2026-2904 | A vulnerability was determined in UTT HiPER 810G 1.7.7-171114. This affects the function strcpy of … | 2026-02-22T01:16:00.797 | 2026-02-24T17:49:09.663 |
| fkie_cve-2026-24481 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T01:16:12.423 | 2026-02-24T17:42:17.567 |
| fkie_cve-2026-2932 | A security flaw has been discovered in YiFang CMS up to 2.0.5. The impacted element is the function… | 2026-02-22T08:15:55.770 | 2026-02-24T17:35:11.893 |
| fkie_cve-2026-25638 | ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… | 2026-02-24T01:16:13.807 | 2026-02-24T17:29:35.520 |
| fkie_cve-2025-15386 | The Responsive Lightbox & Gallery WordPress plugin before 2.6.1 is vulnerable to an Unauthenticated… | 2026-02-24T06:16:34.583 | 2026-02-24T17:29:02.593 |
| fkie_cve-2026-25794 | ImageMagick is free and open-source software used for editing and manipulating digital images. `Wri… | 2026-02-24T01:16:13.970 | 2026-02-24T17:28:54.433 |
| fkie_cve-2021-33069 | Improper resource shutdown or release in firmware for some Intel(R) SSD, Intel(R) SSD DC, Intel(R) … | 2022-05-12T17:15:08.880 | 2026-02-24T17:28:39.520 |
| fkie_cve-2021-31854 | A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local user… | 2022-01-19T11:15:07.747 | 2026-02-24T17:27:24.630 |
| fkie_cve-2021-31843 | Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.… | 2021-09-17T14:15:08.177 | 2026-02-24T17:27:23.597 |
| fkie_cve-2021-31838 | A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated MVE… | 2021-06-29T10:15:08.543 | 2026-02-24T17:27:22.603 |
| fkie_cve-2026-2933 | A weakness has been identified in YiFang CMS up to 2.0.5. This affects the function update of the f… | 2026-02-22T08:15:56.863 | 2026-02-24T17:25:06.643 |
| fkie_cve-2026-2934 | A security vulnerability has been detected in YiFang CMS up to 2.0.5. This impacts the function upd… | 2026-02-22T09:16:11.173 | 2026-02-24T17:23:16.303 |
| fkie_cve-2026-2935 | A weakness has been identified in UTT HiPER 810G up to 1.7.7-171114. This issue affects the functio… | 2026-02-22T09:16:11.403 | 2026-02-24T17:17:49.393 |
| fkie_cve-2026-27211 | Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevu… | 2026-02-21T06:17:01.253 | 2026-02-24T17:08:14.463 |
| fkie_cve-2026-27480 | Static Web Server (SWS) is a production-ready web server suitable for static web files or assets. I… | 2026-02-21T10:16:12.210 | 2026-02-24T16:55:37.307 |
| fkie_cve-2026-27482 | Ray is an AI compute engine. In versions 2.53.0 and below, thedashboard HTTP server blocks browser-… | 2026-02-21T10:16:12.380 | 2026-02-24T16:54:46.917 |
| fkie_cve-2026-27486 | OpenClaw is a personal AI assistant. In versions 2026.2.13 and below of the OpenClaw CLI, the proce… | 2026-02-21T10:16:12.903 | 2026-02-24T16:53:20.537 |
| fkie_cve-2026-2894 | A vulnerability was identified in funadmin up to 7.1.0-rc4. Affected by this vulnerability is the f… | 2026-02-21T23:15:59.763 | 2026-02-24T16:48:40.657 |
| fkie_cve-2019-25447 | OrientDB 3.0.17 GA Community Edition contains cross-site request forgery vulnerabilities that allow… | 2026-02-20T23:16:01.173 | 2026-02-24T16:42:59.007 |
| fkie_cve-2026-2895 | A security flaw has been discovered in funadmin up to 7.1.0-rc4. Affected by this issue is the func… | 2026-02-21T23:15:59.990 | 2026-02-24T16:42:44.140 |
| fkie_cve-2019-25448 | OrientDB 3.0.17 contains a stored cross-site scripting vulnerability that allows authenticated atta… | 2026-02-20T23:16:01.353 | 2026-02-24T16:41:42.600 |
| fkie_cve-2019-25449 | OrientDB 3.0.17 contains a reflected cross-site scripting vulnerability that allows attackers to in… | 2026-02-20T23:16:01.530 | 2026-02-24T16:41:01.677 |
| fkie_cve-2026-2896 | A weakness has been identified in funadmin up to 7.1.0-rc4. This affects the function setConfig of … | 2026-02-22T00:15:59.450 | 2026-02-24T16:38:14.957 |
| fkie_cve-2026-2897 | A security vulnerability has been detected in funadmin up to 7.1.0-rc4. This vulnerability affects … | 2026-02-22T01:16:00.107 | 2026-02-24T16:35:14.573 |
| fkie_cve-2026-2898 | A vulnerability was detected in funadmin up to 7.1.0-rc4. This issue affects the function getMember… | 2026-02-22T01:16:00.350 | 2026-02-24T16:27:39.407 |
| fkie_cve-2021-26887 | <p>An elevation of privilege vulnerability exists in Microsoft Windows when Folder redirection has … | 2021-03-11T16:15:15.800 | 2026-02-24T16:23:27.833 |
| fkie_cve-2021-26353 | Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DR… | 2022-05-10T19:15:08.657 | 2026-02-24T16:22:51.917 |
| fkie_cve-2021-24105 | <p>Depending on configuration of various package managers it is possible for an attacker to insert … | 2021-02-25T23:15:16.303 | 2026-02-24T16:20:12.120 |
| fkie_cve-2021-23892 | By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security f… | 2021-05-12T09:15:07.470 | 2026-02-24T16:19:43.647 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p775-8qpw-4j4p |
5.3 (3.1)
|
Missing Authorization vulnerability in iqonicdesign WPBookit Pro wpbookit-pro allows Exploiting Inc… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-p362-fjq5-7p9h |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-m425-8325-xcgg |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-jwf5-w959-739v |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-jh5v-5566-88p4 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-h3vc-4h48-9gjq |
4.3 (3.1)
|
Missing Authorization vulnerability in tstephenson WP-CORS wp-cors allows Exploiting Incorrectly Co… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-h337-mc5p-h2rq |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-h2h9-5q4p-862f |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-gvqh-m2gv-282f |
3.8 (3.1)
|
Missing Authorization vulnerability in creativeinteractivemedia Real 3D FlipBook real3d-flipbook-li… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-fjcf-7xrj-q2cq |
4.3 (3.1)
|
Missing Authorization vulnerability in uixthemes Sober sober allows Exploiting Incorrectly Configur… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-c923-66mh-cwqh |
4.3 (3.1)
|
Missing Authorization vulnerability in crgeary JAMstack Deployments wp-jamstack-deployments allows … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-9qc3-jghc-hw87 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-8v8r-fxc3-2hjf |
5.3 (3.1)
|
Missing Authorization vulnerability in WPDeveloper NotificationX notificationx allows Exploiting In… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-8q47-qffj-3rjx |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in ThimPress RealPress realpress allows Cross Site … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-855r-j6w5-8868 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-6f86-pp6p-mrph |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-6ccf-h672-3wqh |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-54pq-hwv5-65gf |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-4vq4-242h-q9qr |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-4hv2-9h3g-44xc |
4.3 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in themastercut Revision Manager TMC revision-manag… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-4c3j-77qx-q688 |
5.4 (3.1)
5.1 (4.0)
|
GFI MailEssentials AI versions prior to 22.4 contain a stored cross-site scripting vulnerability in… | 2026-02-19T18:31:55Z | 2026-02-19T21:30:46Z |
| ghsa-2mwh-gp93-cff3 |
4.3 (3.1)
|
Missing Authorization vulnerability in flycart UpsellWP checkout-upsell-and-order-bumps allows Expl… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-2h8x-f6wg-4f5c |
5.3 (3.1)
|
Missing Authorization vulnerability in PluginRx Broken Link Notifier broken-link-notifier allows Ex… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:46Z |
| ghsa-xwm4-xpf9-mh28 |
4.3 (3.1)
|
Missing Authorization vulnerability in echoplugins Knowledge Base for Documentation, FAQs with AI A… | 2026-02-19T18:31:53Z | 2026-02-19T21:30:45Z |
| ghsa-wf47-fvx4-6g8w |
6.5 (3.1)
|
Missing Authorization vulnerability in codepeople Calculated Fields Form calculated-fields-form all… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-vjqp-jjh4-4pp5 |
5.4 (3.1)
|
Cross-Site Request Forgery (CSRF) vulnerability in wpcoachify Coachify coachify allows Cross Site R… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-vjf2-j9mf-px53 |
7.6 (3.1)
|
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-v7h8-7wpg-c8vx |
4.3 (3.1)
|
Missing Authorization vulnerability in CryoutCreations Serious Slider cryout-serious-slider allows … | 2026-02-19T18:31:53Z | 2026-02-19T21:30:45Z |
| ghsa-v45v-r9m7-cwxg |
6.5 (3.1)
|
Missing Authorization vulnerability in Kodezen LLC Academy LMS academy allows Exploiting Incorrectl… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ghsa-qmpj-cvwj-r2m8 |
4.3 (3.1)
|
Missing Authorization vulnerability in sparklewpthemes Fitness FSE fitness-fse allows Exploiting In… | 2026-02-19T18:31:52Z | 2026-02-19T21:30:45Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2020-287 |
|
In tensorflow-lite before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, to mimic Python… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:42.836592Z |
| pysec-2020-286 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, changing the TensorF… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:42.621580Z |
| pysec-2020-285 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `data_splits` ar… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:42.433318Z |
| pysec-2020-284 |
|
In eager mode, TensorFlow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1 does not … | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:42.248668Z |
| pysec-2020-283 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, by controlling the `… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:42.062393Z |
| pysec-2020-282 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `Shard` API in T… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.876848Z |
| pysec-2020-281 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.679840Z |
| pysec-2020-280 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.630526Z |
| pysec-2020-279 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` does not validate that … | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.569566Z |
| pysec-2020-278 |
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.523521Z |
| pysec-2020-277 |
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.476873Z |
| pysec-2020-276 |
|
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` … | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.429939Z |
| pysec-2020-275 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the implementation o… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.380854Z |
| pysec-2020-274 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `SparseFillEmpty… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:41.172167Z |
| pysec-2020-273 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of `dlpack.to_dlpack` c… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:40.985674Z |
| pysec-2020-272 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlp… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:40.896350Z |
| pysec-2020-271 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `d… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:40.816458Z |
| pysec-2020-270 |
|
In Tensorflow before versions 1.15.4, 2.0.3, 2.1.2, 2.2.1 and 2.3.1, the `tf.raw_ops.Swit… | tensorflow-cpu | 2020-09-25T19:15:00Z | 2021-12-09T06:34:40.732914Z |
| pysec-2021-439 |
|
In Django 2.2 before 2.2.25, 3.1 before 3.1.14, and 3.2 before 3.2.10, HTTP requests for … | django | 2021-12-08T00:15:00Z | 2021-12-08T02:30:49.294438Z |
| pysec-2021-438 |
|
django-helpdesk is vulnerable to Improper Neutralization of Input During Web Page Generat… | django-helpdesk | 2021-12-01T11:15:00Z | 2021-12-02T21:26:01.187346Z |
| pysec-2021-437 |
|
A flaw was found in python-pip in the way it handled Unicode separators in git references… | pip | 2021-11-10T18:15:00Z | 2021-11-29T23:42:09.374676Z |
| pysec-2021-436 |
|
Synapse is a package for Matrix homeservers written in Python 3/Twisted. Prior to version… | matrix-synapse | 2021-11-23T20:15:00Z | 2021-11-29T23:11:29.870597Z |
| pysec-2021-435 |
|
Improper output neutralization for Logs. A specific Apache Superset HTTP endpoint allowed… | apache-superset | 2021-11-17T15:15:00Z | 2021-11-29T23:10:59.097625Z |
| pysec-2021-434 |
|
Apache Superset up to and including 1.3.1 allowed for database connections password leak … | apache-superset | 2021-11-12T19:15:00Z | 2021-11-29T23:10:59.053614Z |
| pysec-2021-433 |
|
S3Scanner before 2.0.2 allows Directory Traversal via a crafted bucket, as demonstrated b… | s3scanner | 2021-11-29T03:15:00Z | 2021-11-29T21:27:52.731426Z |
| pysec-2021-432 |
|
Nanopb is a small code-size Protocol Buffers implementation in ansi C. In Nanopb before v… | nanopb | 2021-03-23T18:15:00Z | 2021-11-24T22:47:12.152718Z |
| pysec-2018-106 |
|
An issue was discovered in Mayan EDMS before 3.0.2. The Appearance app sets window.locati… | mayan-edms | 2018-09-03T19:29:00Z | 2021-11-24T22:47:09.222926Z |
| pysec-2019-221 |
|
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an … | homeassistant | 2019-09-23T16:15:00Z | 2021-11-24T22:47:02.221265Z |
| pysec-2020-268 |
|
In EasyBuild before version 4.1.2, the GitHub Personal Access Token (PAT) used by EasyBui… | easybuild | 2020-03-19T17:15:00Z | 2021-11-24T22:46:59.562632Z |
| pysec-2018-105 |
|
Incorrect implementation of access controls allows remote users to override repository re… | borgbackup | 2018-02-08T23:29:00Z | 2021-11-24T22:46:40.919619Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-32549 | Cross-Site Request Forgery (CSRF) vulnerability in Microkid Related Posts for WordPress a… | 2024-04-16T05:01:54.650720Z |
| gsd-2024-32548 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.614044Z |
| gsd-2024-32547 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.730049Z |
| gsd-2024-32546 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.642507Z |
| gsd-2024-32545 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.627067Z |
| gsd-2024-32544 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.725139Z |
| gsd-2024-32543 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.682691Z |
| gsd-2024-32542 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.586264Z |
| gsd-2024-32541 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.682254Z |
| gsd-2024-32540 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.743699Z |
| gsd-2024-32539 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.693269Z |
| gsd-2024-32538 | Cross-Site Request Forgery (CSRF) vulnerability in Joshua Eldridge Easy CountDowner allow… | 2024-04-16T05:01:54.638995Z |
| gsd-2024-32537 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-16T05:01:54.685308Z |
| gsd-2024-32536 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.700192Z |
| gsd-2024-32535 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.568779Z |
| gsd-2024-32534 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.603657Z |
| gsd-2024-32533 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.584486Z |
| gsd-2024-32532 | Missing Authorization vulnerability in SiteGround Speed Optimizer.This issue affects Spee… | 2024-04-16T05:01:54.610205Z |
| gsd-2024-32531 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.612779Z |
| gsd-2024-32530 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.693469Z |
| gsd-2024-32529 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.654045Z |
| gsd-2024-32528 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.677621Z |
| gsd-2024-32527 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.698658Z |
| gsd-2024-32526 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-16T05:01:54.669764Z |
| gsd-2024-32525 | Missing Authorization vulnerability in Theme My Login.This issue affects Theme My Login: … | 2024-04-16T05:01:54.581887Z |
| gsd-2024-32524 | Missing Authorization vulnerability in Nuggethon Custom Order Statuses for WooCommerce.Th… | 2024-04-16T05:01:54.638544Z |
| gsd-2024-32523 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-16T05:01:54.657925Z |
| gsd-2024-32522 | Missing Authorization vulnerability in Jaed Mosharraf & Pluginbazar Team Open Close WooCo… | 2024-04-16T05:01:54.628830Z |
| gsd-2024-32521 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-16T05:01:54.585584Z |
| gsd-2024-32520 | Missing Authorization vulnerability in WPClever WPC Grouped Product for WooCommerce.This … | 2024-04-16T05:01:54.624884Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2026-31 | Malicious code in telstra (PyPI) | 2026-01-03T16:05:50Z | 2026-01-11T22:09:27Z |
| MAL-2025-193006 | Malicious code in accesspdp (PyPI) | 2025-12-31T13:40:51Z | 2026-01-11T22:09:27Z |
| MAL-2025-192603 | Malicious code in vitor-js (npm) | 2025-12-17T02:43:11Z | 2026-01-11T22:09:27Z |
| mal-2026-47 | Malicious code in tiny-model-update (npm) | 2025-12-22T13:11:40Z | 2026-01-11T22:09:26Z |
| mal-2024-3055 | Malicious code in stitch-ui-toolbox (npm) | 2024-06-25T13:02:06Z | 2026-01-11T22:09:26Z |
| MAL-2026-47 | Malicious code in tiny-model-update (npm) | 2025-12-22T13:11:40Z | 2026-01-11T22:09:26Z |
| MAL-2024-3055 | Malicious code in stitch-ui-toolbox (npm) | 2024-06-25T13:02:06Z | 2026-01-11T22:09:26Z |
| mal-2025-192602 | Malicious code in plugin-senna (npm) | 2025-12-17T01:35:51Z | 2026-01-11T22:09:25Z |
| MAL-2025-192602 | Malicious code in plugin-senna (npm) | 2025-12-17T01:35:51Z | 2026-01-11T22:09:25Z |
| mal-2026-134 | Malicious code in meta-code-verify (npm) | 2025-12-21T01:55:45Z | 2026-01-11T22:09:24Z |
| MAL-2026-134 | Malicious code in meta-code-verify (npm) | 2025-12-21T01:55:45Z | 2026-01-11T22:09:24Z |
| mal-2026-46 | Malicious code in github-badge-bot (npm) | 2025-12-21T16:31:49Z | 2026-01-11T22:09:22Z |
| MAL-2026-46 | Malicious code in github-badge-bot (npm) | 2025-12-21T16:31:49Z | 2026-01-11T22:09:22Z |
| mal-2025-192682 | Malicious code in @nosinovacao/nosid-mfe-common (npm) | 2025-12-20T20:35:30Z | 2026-01-11T22:09:20Z |
| mal-2025-192569 | Malicious code in @ikarem/telemetry (npm) | 2025-12-14T05:03:06Z | 2026-01-11T22:09:20Z |
| MAL-2025-192682 | Malicious code in @nosinovacao/nosid-mfe-common (npm) | 2025-12-20T20:35:30Z | 2026-01-11T22:09:20Z |
| MAL-2025-192569 | Malicious code in @ikarem/telemetry (npm) | 2025-12-14T05:03:06Z | 2026-01-11T22:09:20Z |
| mal-2026-191 | Malicious code in libc-dev (PyPI) | 2026-01-11T08:00:52Z | 2026-01-11T08:00:52Z |
| MAL-2026-191 | Malicious code in libc-dev (PyPI) | 2026-01-11T08:00:52Z | 2026-01-11T08:00:52Z |
| mal-2026-189 | Malicious code in oncecall (PyPI) | 2026-01-10T13:00:33Z | 2026-01-10T13:00:33Z |
| MAL-2026-189 | Malicious code in oncecall (PyPI) | 2026-01-10T13:00:33Z | 2026-01-10T13:00:33Z |
| mal-2026-50 | Malicious code in faceplate-ui (npm) | 2026-01-05T12:51:01Z | 2026-01-09T03:49:17Z |
| MAL-2026-50 | Malicious code in faceplate-ui (npm) | 2026-01-05T12:51:01Z | 2026-01-09T03:49:17Z |
| MAL-2026-163 | Malicious code in do-not-install-this-package-002 (PyPI) | 2026-01-08T13:35:59Z | 2026-02-24T15:52:32Z |
| mal-2026-162 | Malicious code in btcli-security (PyPI) | 2026-01-08T10:55:10Z | 2026-01-08T10:55:10Z |
| MAL-2026-162 | Malicious code in btcli-security (PyPI) | 2026-01-08T10:55:10Z | 2026-01-08T10:55:10Z |
| mal-2026-95 | Malicious code in x-clients-features (npm) | 2026-01-06T13:32:59Z | 2026-01-08T09:13:18Z |
| mal-2026-83 | Malicious code in wikibuy-mobile-analytics (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:18Z |
| mal-2026-82 | Malicious code in wikibuy-mobile (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:18Z |
| mal-2026-81 | Malicious code in upgrade-mobile (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:18Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0980 | Cisco IOS, IOS XE und IOS XR (TWAMP): Schwachstelle ermöglicht Denial of Service | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0979 | Cisco IOS XE Software: Mehrere Schwachstellen | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0977 | Cisco IOS XE Software Web-Based Management Interface: Mehrere Schwachstellen | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0976 | Cisco IOS und Cisco IOS XE: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0974 | Cisco Industrial Ethernet Switches IOS/IOx Management Software: Mehrere Schwachstellen | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0973 | Cisco IOS XE Software for Cisco ASR 903 Aggregation Services Routers: Schwachstelle ermöglicht Denial of Service | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0972 | Cisco IOS-Software für Cisco Catalyst Switches: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0970 | Cisco IOS XE Software for WLC Wireless IPv6 Clients: Schwachstelle ermöglicht Denial of Service | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0969 | Cisco IOS, IOS XE, NX-OS and WLC AireOS Software (SISF): Schwachstelle ermöglicht Denial of Service | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0968 | Cisco ASA, FTD, IOS und IOS XE Software (IKEv2): Schwachstelle ermöglicht Denial of Service | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0965 | Cisco Catalyst Center: Mehrere Schwachstellen ermöglichen Manipulation von Dateien | 2025-05-07T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0961 | libTIFF: Schwachstelle ermöglicht Codeausführung | 2017-12-03T23:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2024-3688 | Red Hat Enterprise Linux (Ceph Storage): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-12-11T23:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2024-2183 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Darstellen falscher Informationen | 2024-09-18T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-2544 | X.Org X11: Mehrere Schwachstellen | 2023-10-03T22:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-0402 | xpdf: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-02-15T23:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0960 | Samsung Android: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0957 | Dell PowerScale: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0955 | OpenCTI: Schwachstelle ermöglicht Codeausführung | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0952 | LogStash: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0951 | Red Hat Enterprise Linux AI (HDF5): Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0950 | Liferay Liferay DXP: Schwachstelle ermöglicht Cross-Site Scripting | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0949 | Pixel Patchday Mai 2025: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0948 | Kibana: Schwachstelle ermöglicht Codeausführung | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0947 | Ubiquiti UniFi (Protect Cameras und Application): Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0946 | Arista EOS: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0681 | Red Hat Satellite: Mehrere Schwachstellen | 2025-04-01T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0406 | Ubiquiti UniFi (Protect Camera und Application): Mehrere Schwachstellen | 2025-02-18T23:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0230 | Red Hat WildFly: Schwachstelle ermöglicht Denial of Service | 2025-01-30T23:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2024-1896 | Ruby: Schwachstelle ermöglicht Denial of Service | 2024-08-21T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:7324 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.7 | 2024-10-02T12:03:29+00:00 | 2026-02-27T20:04:23+00:00 |
| rhsa-2024:1570 | Red Hat Security Advisory: ACS 4.4 enhancement and security update | 2024-03-28T20:50:01+00:00 | 2026-02-27T20:04:19+00:00 |
| rhsa-2024:1549 | Red Hat Security Advisory: ACS 4.3 enhancement and security update | 2024-03-27T18:47:27+00:00 | 2026-02-27T20:04:16+00:00 |
| rhsa-2024:11381 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.11.4 security enhancements and bug fixes | 2024-12-18T16:28:31+00:00 | 2026-02-27T20:04:09+00:00 |
| rhsa-2024:10762 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2024-12-03T16:20:16+00:00 | 2026-02-27T20:04:04+00:00 |
| rhsa-2025:2454 | Red Hat Security Advisory: OpenShift Container Platform 4.15.47 bug fix and security update | 2025-03-13T05:46:55+00:00 | 2026-02-27T20:00:36+00:00 |
| rhsa-2025:1718 | Red Hat Security Advisory: bind security update | 2025-02-20T09:42:24+00:00 | 2026-02-27T20:00:32+00:00 |
| rhsa-2025:1691 | Red Hat Security Advisory: bind security update | 2025-02-19T18:37:42+00:00 | 2026-02-27T20:00:28+00:00 |
| rhsa-2025:1687 | Red Hat Security Advisory: bind security update | 2025-02-19T17:59:12+00:00 | 2026-02-27T20:00:28+00:00 |
| rhsa-2025:1685 | Red Hat Security Advisory: bind security update | 2025-02-19T17:31:57+00:00 | 2026-02-27T20:00:27+00:00 |
| rhsa-2025:1684 | Red Hat Security Advisory: bind security update | 2025-02-19T16:03:26+00:00 | 2026-02-27T20:00:27+00:00 |
| rhsa-2025:1678 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T14:26:21+00:00 | 2026-02-27T20:00:27+00:00 |
| rhsa-2025:1681 | Red Hat Security Advisory: bind security update | 2025-02-19T14:48:56+00:00 | 2026-02-27T20:00:25+00:00 |
| rhsa-2025:1679 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T14:24:51+00:00 | 2026-02-27T20:00:24+00:00 |
| rhsa-2025:1676 | Red Hat Security Advisory: bind9.16 security update | 2025-02-19T13:31:07+00:00 | 2026-02-27T20:00:24+00:00 |
| rhsa-2025:1675 | Red Hat Security Advisory: bind security update | 2025-02-19T13:50:41+00:00 | 2026-02-27T20:00:24+00:00 |
| rhsa-2025:1674 | Red Hat Security Advisory: bind security update | 2025-02-19T13:31:36+00:00 | 2026-02-27T20:00:21+00:00 |
| rhsa-2025:1670 | Red Hat Security Advisory: bind9.18 security update | 2025-02-19T08:42:20+00:00 | 2026-02-27T20:00:21+00:00 |
| rhsa-2025:1669 | Red Hat Security Advisory: bind security update | 2025-02-19T07:07:41+00:00 | 2026-02-27T20:00:20+00:00 |
| rhsa-2025:1666 | Red Hat Security Advisory: bind security update | 2025-02-19T06:56:55+00:00 | 2026-02-27T20:00:20+00:00 |
| rhsa-2025:1704 | Red Hat Security Advisory: OpenShift Container Platform 4.16.36 security and extras update | 2025-02-27T00:33:09+00:00 | 2026-02-27T20:00:18+00:00 |
| rhsa-2025:1665 | Red Hat Security Advisory: bind security update | 2025-02-19T04:53:05+00:00 | 2026-02-27T20:00:18+00:00 |
| rhsa-2025:1664 | Red Hat Security Advisory: bind security update | 2025-02-19T04:45:40+00:00 | 2026-02-27T20:00:18+00:00 |
| rhsa-2025:1888 | Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.1 security update | 2025-02-26T19:14:08+00:00 | 2026-02-27T20:00:17+00:00 |
| rhsa-2025:1870 | Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (osp-director-operator) security update | 2025-02-26T13:47:46+00:00 | 2026-02-27T20:00:16+00:00 |
| rhsa-2025:1869 | Red Hat Security Advisory: Red Hat OpenStack Platform 16.2 (osp-director-operator) security update | 2025-02-26T13:39:37+00:00 | 2026-02-27T20:00:16+00:00 |
| rhsa-2025:0662 | Red Hat Security Advisory: grafana security update | 2025-01-23T09:34:23+00:00 | 2026-02-27T20:00:15+00:00 |
| rhsa-2025:0401 | Red Hat Security Advisory: grafana security update | 2025-01-20T01:40:19+00:00 | 2026-02-27T20:00:14+00:00 |
| rhsa-2025:7625 | Red Hat Security Advisory: Red Hat AMQ Broker 7.13.0 release and security update | 2025-05-14T17:51:15+00:00 | 2026-02-27T19:59:52+00:00 |
| rhsa-2025:19094 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.24.0 Release. | 2025-10-23T20:33:38+00:00 | 2026-02-27T19:59:50+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-023-05 | Lantronix XPort | 2024-01-23T07:00:00.000000Z | 2024-01-23T07:00:00.000000Z |
| icsa-24-023-04 | Westermo Lynx 206-F2G | 2024-01-23T07:00:00.000000Z | 2024-01-23T07:00:00.000000Z |
| icsa-24-023-03 | Voltronic Power ViewPower Pro | 2024-01-23T07:00:00.000000Z | 2024-01-23T07:00:00.000000Z |
| icsa-24-023-02 | Crestron AM-300 | 2024-01-23T07:00:00.000000Z | 2024-01-23T07:00:00.000000Z |
| icsa-24-023-01 | APsystems Energy Communication Unit (ECU-C) Power Control Software | 2024-01-23T07:00:00.000000Z | 2024-01-23T07:00:00.000000Z |
| icsa-25-021-01 | Traffic Alert and Collision Avoidance System (TCAS) II | 2024-01-21T07:00:00.000000Z | 2024-01-21T07:00:00.000000Z |
| icsa-24-018-01 | AVEVA PI Server | 2024-01-18T07:00:00.000000Z | 2024-01-18T07:00:00.000000Z |
| icsa-24-011-05 | Schneider Electric Easergy Studio | 2024-01-11T07:00:00.000000Z | 2024-01-11T07:00:00.000000Z |
| icsa-24-011-04 | Horner Automation Cscape | 2024-01-11T07:00:00.000000Z | 2024-01-11T07:00:00.000000Z |
| icsa-24-011-03 | Rapid Software LLC Rapid SCADA | 2024-01-11T07:00:00.000000Z | 2024-01-11T07:00:00.000000Z |
| icsa-23-348-01 | Cambium ePMP 5GHz Force 300-25 Radio (Update A) | 2023-12-14T07:00:00.000000Z | 2024-01-09T07:00:00.000000Z |
| icsa-24-011-11 | Siemens Solid Edge | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-24-011-10 | Siemens SIMATIC | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-24-011-09 | Siemens SIMATIC CN 4100 | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-24-011-08 | Siemens SICAM A8000 | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-24-011-07 | Siemens Spectrum Power 7 | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-24-011-06 | Siemens Teamcenter Visualization and JT2Go | 2024-01-09T00:00:00Z | 2024-01-09T00:00:00Z |
| icsa-23-348-13 | Siemens SICAM Q100 Devices | 2023-12-12T00:00:00.000000Z | 2024-01-09T00:00:00.000000Z |
| icsa-22-314-11 | Siemens SICAM Q100 | 2022-11-08T00:00:00.000000Z | 2024-01-09T00:00:00.000000Z |
| icsa-22-104-05 | Siemens OpenSSL Vulnerabilities in Industrial Products | 2021-07-13T00:00:00.000000Z | 2024-01-09T00:00:00.000000Z |
| icsa-24-004-02 | Mitsubishi Electric Factory Automation Products | 2024-01-04T07:00:00.000000Z | 2024-01-04T07:00:00.000000Z |
| icsa-24-004-01 | Rockwell Automation FactoryTalk Activation | 2024-01-04T07:00:00.000000Z | 2024-01-04T07:00:00.000000Z |
| icsa-23-348-15 | Unitronics Vision and Samba Series (Update A) | 2023-12-14T07:00:00.000000Z | 2024-01-04T07:00:00.000000Z |
| icsa-23-355-02 | QNAP VioStor NVR | 2023-12-21T07:00:00.000000Z | 2023-12-21T07:00:00.000000Z |
| icsa-23-355-01 | FXC AE1021/AE1021PE | 2023-12-21T07:00:00.000000Z | 2023-12-21T07:00:00.000000Z |
| icsa-24-331-05 | Hitachi Energy RTU500 Scripting Interface | 2023-12-19T13:30:00.000000Z | 2023-12-19T13:30:00.000000Z |
| icsa-23-353-05 | EuroTel ETL3100 Radio Transmitter | 2023-12-19T07:00:00.000000Z | 2023-12-19T07:00:00.000000Z |
| icsa-23-353-04 | Open Design Alliance Drawing SDK | 2023-12-19T07:00:00.000000Z | 2023-12-19T07:00:00.000000Z |
| icsa-23-353-03 | EFACEC UC 500E | 2023-12-19T07:00:00.000000Z | 2023-12-19T07:00:00.000000Z |
| icsa-23-353-02 | EFACEC BCU 500 | 2023-12-19T07:00:00.000000Z | 2023-12-19T07:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-sdwan-vmanageinfdis-lkrfpbv | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-vmanageinfdis-LKrFpbv | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-privesc-qvszvupy | Cisco SD-WAN Software Privilege Escalation Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-privesc-QVszVUPy | Cisco SD-WAN Software Privilege Escalation Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-dos-ckn5cvqw | Cisco SD-WAN Software vDaemon Denial of Service Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-dos-Ckn5cVqW | Cisco SD-WAN Software vDaemon Denial of Service Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-arbfile-7qhd9mcn | Cisco SD-WAN Software Arbitrary File Corruption Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdwan-arbfile-7Qhd9mCn | Cisco SD-WAN Software Arbitrary File Corruption Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdw-auth-bypass-65ayqcs2 | Cisco SD-WAN vManage Software Authentication Bypass Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sdw-auth-bypass-65aYqcS2 | Cisco SD-WAN vManage Software Authentication Bypass Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sd-wan-vmanage-9vzo4gfu | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sd-wan-vmanage-9VZO4gfU | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sd-wan-vmanage-4tbynnhz | Cisco SD-WAN vManage Software Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sd-wan-vmanage-4TbynnhZ | Cisco SD-WAN vManage Software Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sb-wap-multi-zafkgxhf | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-sb-wap-multi-ZAfKGXhF | Cisco Small Business 100, 300, and 500 Series Wireless Access Points Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-rv-34x-privesc-gln8zaqe | Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Local Privilege Escalation Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-rv-34x-privesc-GLN8ZAQE | Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Local Privilege Escalation Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-nfvis-cmdinj-dkfjqg2j | Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-nfvis-cmdinj-DkFjqg2j | Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-ipcameras-dos-fc3f6lzt | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Denial of Service Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-ipcameras-dos-fc3F6LzT | Cisco Video Surveillance 8000 Series IP Cameras Cisco Discovery Protocol Denial of Service Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-imp-inj-erecokjr | Cisco Unified Communications Manager IM & Presence Service SQL Injection Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-imp-inj-ereCOKjR | Cisco Unified Communications Manager IM & Presence Service SQL Injection Vulnerabilities | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-esa-wsa-sma-info-gy2aez2h | Cisco Content Security Management Appliance, Email Security Appliance, and Web Security Appliance Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-esa-wsa-sma-info-gY2AEz2H | Cisco Content Security Management Appliance, Email Security Appliance, and Web Security Appliance Information Disclosure Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-bwms-xxe-uslrzgks | Cisco BroadWorks Messaging Server XML External Entity Injection Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-bwms-xxe-uSLrZgKs | Cisco BroadWorks Messaging Server XML External Entity Injection Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-aggmucdg | Cisco AnyConnect Secure Mobility Client Profile Modification Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-AggMUCDg | Cisco AnyConnect Secure Mobility Client Profile Modification Vulnerability | 2021-05-05T16:00:00+00:00 | 2021-05-05T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-45337 | Misuse of connection.serverAuthenticate may cause authorization bypass in golang.org/x/crypto | 2024-12-02T00:00:00.000Z | 2026-02-18T14:35:06.000Z |
| msrc_cve-2025-38000 | sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() | 2025-06-02T00:00:00.000Z | 2026-02-18T14:35:05.000Z |
| msrc_cve-2014-3185 | Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption and system crash) via a crafted device that provides a large amount of (1) EHCI or (2) XHCI data associated with a bulk response. | 2014-09-02T00:00:00.000Z | 2026-02-18T14:35:04.000Z |
| msrc_cve-2024-2612 | If an attacker could find a way to trigger a particular code path in `SafeRefPtr`, it could have triggered a crash or potentially be leveraged to achieve code execution. This vulnerability affects Firefox < 124, Firefox ESR < 115.9, and Thunderbird < 115.9. | 2024-03-02T08:00:00.000Z | 2026-02-18T14:35:01.000Z |
| msrc_cve-2025-68797 | char: applicom: fix NULL pointer dereference in ac_ioctl | 2026-01-02T00:00:00.000Z | 2026-02-18T14:34:42.000Z |
| msrc_cve-2025-38001 | net_sched: hfsc: Address reentrant enqueue adding class to eltree twice | 2025-06-02T00:00:00.000Z | 2026-02-18T14:34:40.000Z |
| msrc_cve-2022-29244 | npm packing does not respect root-level ignore files in workspaces | 2022-06-02T00:00:00.000Z | 2026-02-18T14:34:39.000Z |
| msrc_cve-2020-9327 | In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations. | 2020-02-02T00:00:00.000Z | 2026-02-18T14:34:36.000Z |
| msrc_cve-2024-47674 | mm: avoid leaving partial pfn mappings around in error case | 2024-10-01T07:00:00.000Z | 2026-02-18T14:34:35.000Z |
| msrc_cve-2013-2094 | The perf_swevent_init function in kernel/events/core.c in the Linux kernel before 3.8.9 uses an incorrect integer data type which allows local users to gain privileges via a crafted perf_event_open system call. | 2013-05-02T00:00:00.000Z | 2026-02-18T14:34:24.000Z |
| msrc_cve-2025-47950 | CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification | 2025-06-02T00:00:00.000Z | 2026-02-18T14:34:20.000Z |
| msrc_cve-2025-68775 | net/handshake: duplicate handshake cancellations leak socket | 2026-01-02T00:00:00.000Z | 2026-02-18T14:34:17.000Z |
| msrc_cve-2016-10087 | The libpng 0.71 allows context-dependent attackers to cause a NULL pointer dereference vectors | 2017-01-02T00:00:00.000Z | 2026-02-18T14:34:06.000Z |
| msrc_cve-2024-10524 | GNU Wget is vulnerable to an SSRF attack when accessing partially-user-controlled shorthand URLs | 2024-11-02T00:00:00.000Z | 2026-02-18T14:34:05.000Z |
| msrc_cve-2024-21166 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation deletion or modification access to critical data or all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 5.9 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H). | 2024-07-01T07:00:00.000Z | 2026-02-18T14:34:01.000Z |
| msrc_cve-2023-50782 | Python-cryptography: bleichenbacher timing oracle attack against rsa decryption - incomplete fix for cve-2020-25659 | 2024-02-02T08:00:00.000Z | 2026-02-18T14:33:52.000Z |
| msrc_cve-2025-71088 | mptcp: fallback earlier on simult connection | 2026-01-02T00:00:00.000Z | 2026-02-18T14:33:51.000Z |
| msrc_cve-2025-37823 | net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too | 2025-05-02T00:00:00.000Z | 2026-02-18T14:33:49.000Z |
| msrc_cve-2022-33068 | An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors. | 2022-06-02T00:00:00.000Z | 2026-02-18T14:33:46.000Z |
| msrc_cve-2024-52308 | Connecting to a malicious Codespaces via GH CLI could allow command execution on the user's computer | 2024-11-02T00:00:00.000Z | 2026-02-18T14:33:35.000Z |
| msrc_cve-2025-37765 | drm/nouveau: prime: fix ttm_bo_delayed_delete oops | 2025-05-02T00:00:00.000Z | 2026-02-18T14:33:26.000Z |
| msrc_cve-2024-21162 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-07-01T07:00:00.000Z | 2026-02-18T14:33:26.000Z |
| msrc_cve-2025-68777 | Input: ti_am335x_tsc - fix off-by-one error in wire_order validation | 2026-01-02T00:00:00.000Z | 2026-02-18T14:33:25.000Z |
| msrc_cve-2024-1312 | Kernel: race condition leads to use after free during vma lock in lock_vma_under_rcu | 2024-02-02T08:00:00.000Z | 2026-02-18T14:33:19.000Z |
| msrc_cve-2019-0205 | In Apache Thrift all versions up to and including 0.12.0 a server or client may run into an endless loop when feed with specific input data. Because the issue had already been partially fixed in version 0.11.0 depending on the installed version it affects only certain language bindings. | 2019-10-02T00:00:00.000Z | 2026-02-18T14:33:18.000Z |
| msrc_cve-2024-10978 | PostgreSQL SET ROLE SET SESSION AUTHORIZATION reset to wrong user ID | 2024-11-02T00:00:00.000Z | 2026-02-18T14:33:13.000Z |
| msrc_cve-2025-37879 | 9p/net: fix improper handling of bogus negative read/write replies | 2025-05-02T00:00:00.000Z | 2026-02-18T14:33:04.000Z |
| msrc_cve-2025-68788 | fsnotify: do not generate ACCESS/MODIFY events on child for special files | 2026-01-02T00:00:00.000Z | 2026-02-18T14:32:59.000Z |
| msrc_cve-2024-25062 | An issue was discovered in libxml2 before 2.11.7 and 2.12.x before 2.12.5. When using the XML Reader interface with DTD validation and XInclude expansion enabled processing crafted XML documents can lead to an xmlValidatePopElement use-after-free. | 2024-02-02T08:00:00.000Z | 2026-02-18T14:32:56.000Z |
| msrc_cve-2024-21127 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DDL). Supported versions that are affected are 8.0.37 and prior and 8.4.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-07-01T07:00:00.000Z | 2026-02-18T14:32:51.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:14547-1 | ansible-core-2.17-2.17.7-1.1 on GA media | 2024-12-05T00:00:00Z | 2024-12-05T00:00:00Z |
| opensuse-su-2024:14546-1 | ansible-core-2.16-2.16.14-1.1 on GA media | 2024-12-05T00:00:00Z | 2024-12-05T00:00:00Z |
| opensuse-su-2024:14545-1 | ansible-core-2.18.1-1.1 on GA media | 2024-12-05T00:00:00Z | 2024-12-05T00:00:00Z |
| opensuse-su-2024:14544-1 | teleport-17.0.3-1.1 on GA media | 2024-12-04T00:00:00Z | 2024-12-04T00:00:00Z |
| opensuse-su-2024:14543-1 | obs-scm-bridge-0.5.4-1.1 on GA media | 2024-12-04T00:00:00Z | 2024-12-04T00:00:00Z |
| opensuse-su-2024:14542-1 | libmozjs-128-0-128.5.1-1.1 on GA media | 2024-12-04T00:00:00Z | 2024-12-04T00:00:00Z |
| opensuse-su-2024:14541-1 | matrix-synapse-1.120.2-1.1 on GA media | 2024-12-04T00:00:00Z | 2024-12-04T00:00:00Z |
| opensuse-su-2024:14540-1 | python310-PyJWT-2.10.1-1.1 on GA media | 2024-12-03T00:00:00Z | 2024-12-03T00:00:00Z |
| opensuse-su-2024:14539-1 | himmelblau-0.7.7+git.0.b48d0bb-1.1 on GA media | 2024-12-03T00:00:00Z | 2024-12-03T00:00:00Z |
| opensuse-su-2024:14538-1 | avahi-0.8-37.1 on GA media | 2024-12-02T00:00:00Z | 2024-12-02T00:00:00Z |
| opensuse-su-2024:14537-1 | ansible-core-2.17-2.17.6-1.1 on GA media | 2024-12-02T00:00:00Z | 2024-12-02T00:00:00Z |
| opensuse-su-2024:14536-1 | ansible-10-10.6.0-1.1 on GA media | 2024-12-02T00:00:00Z | 2024-12-02T00:00:00Z |
| opensuse-su-2024:0384-1 | Security update for zabbix | 2024-12-01T17:01:25Z | 2024-12-01T17:01:25Z |
| opensuse-su-2024:14535-1 | python-2.7.18-51.1 on GA media | 2024-11-30T00:00:00Z | 2024-11-30T00:00:00Z |
| opensuse-su-2024:14534-1 | gimp-2.10.38-4.1 on GA media | 2024-11-30T00:00:00Z | 2024-11-30T00:00:00Z |
| opensuse-su-2024:0382-1 | Security update for cobbler | 2024-11-28T17:32:46Z | 2024-11-28T17:32:46Z |
| opensuse-su-2024:0381-1 | Security update for seamonkey | 2024-11-28T17:32:42Z | 2024-11-28T17:32:42Z |
| opensuse-su-2024:14533-1 | MozillaThunderbird-128.5.0-1.1 on GA media | 2024-11-28T00:00:00Z | 2024-11-28T00:00:00Z |
| opensuse-su-2024:14532-1 | libsndfile-devel-1.2.2-3.1 on GA media | 2024-11-27T00:00:00Z | 2024-11-27T00:00:00Z |
| opensuse-su-2024:14531-1 | libjxl-devel-0.11.1-1.1 on GA media | 2024-11-27T00:00:00Z | 2024-11-27T00:00:00Z |
| opensuse-su-2024:14530-1 | xen-4.19.0_06-1.1 on GA media | 2024-11-26T00:00:00Z | 2024-11-26T00:00:00Z |
| opensuse-su-2024:14529-1 | libwireshark18-4.4.2-2.1 on GA media | 2024-11-26T00:00:00Z | 2024-11-26T00:00:00Z |
| opensuse-su-2024:14528-1 | python310-tornado6-6.4.2-1.1 on GA media | 2024-11-26T00:00:00Z | 2024-11-26T00:00:00Z |
| opensuse-su-2024:14527-1 | neomutt-20241114-1.1 on GA media | 2024-11-26T00:00:00Z | 2024-11-26T00:00:00Z |
| opensuse-su-2024:0378-1 | Security update for chromium | 2024-11-25T09:54:54Z | 2024-11-25T09:54:54Z |
| opensuse-su-2024:0377-1 | Security update for chromium | 2024-11-25T09:53:53Z | 2024-11-25T09:53:53Z |
| opensuse-su-2024:14526-1 | tomcat10-10.1.33-1.1 on GA media | 2024-11-25T00:00:00Z | 2024-11-25T00:00:00Z |
| opensuse-su-2024:14525-1 | tomcat-9.0.97-1.1 on GA media | 2024-11-25T00:00:00Z | 2024-11-25T00:00:00Z |
| opensuse-su-2024:14524-1 | rclone-1.68.2-2.1 on GA media | 2024-11-25T00:00:00Z | 2024-11-25T00:00:00Z |
| opensuse-su-2024:14523-1 | libblkid-devel-2.40.2-2.1 on GA media | 2024-11-23T00:00:00Z | 2024-11-23T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2021-261 | Stack-buffer-overflow in flb_sds_cat | 2021-02-02T00:00:01.200032Z | 2022-04-13T03:33:49.226177Z |
| osv-2020-2143 | UNKNOWN READ in __dynamic_cast | 2020-11-10T00:00:14.277810Z | 2022-04-13T03:33:47.833102Z |
| osv-2020-846 | Heap-buffer-overflow in std::__1::char_traits<char>::compare | 2020-07-14T22:13:43.983088Z | 2022-04-13T03:33:46.226924Z |
| osv-2020-1699 | Heap-buffer-overflow in rnp_key_store_kbx_from_src | 2020-09-04T00:00:16.840683Z | 2022-04-13T03:33:34.317362Z |
| osv-2021-1408 | Heap-buffer-overflow in unpack_16bit_4chan_planar | 2021-10-04T00:01:38.482183Z | 2022-04-13T03:33:32.096613Z |
| osv-2020-278 | Heap-buffer-overflow in ih264d_decode_slice_thread | 2020-06-30T00:00:45.549045Z | 2022-04-13T03:33:31.667722Z |
| osv-2021-644 | UNKNOWN READ in blosc_d | 2021-04-17T00:00:14.337746Z | 2022-04-13T03:33:26.944758Z |
| osv-2021-459 | Segv on unknown address in slice_segment_header::operator= | 2021-03-01T00:00:01.773251Z | 2022-04-13T03:33:16.984989Z |
| osv-2020-789 | Heap-use-after-free in llvm_ks::X86Operand::getToken | 2020-07-14T05:37:34.150718Z | 2022-04-13T03:33:15.594673Z |
| osv-2020-2117 | Heap-buffer-overflow in flb_msgpack_gelf_value_ext | 2020-11-02T00:00:07.716307Z | 2022-04-13T03:33:04.306630Z |
| osv-2021-789 | UNKNOWN READ in [heap] | 2021-05-24T00:00:10.431079Z | 2022-04-13T03:33:01.513253Z |
| osv-2020-812 | Heap-buffer-overflow in ndpi_netbios_name_interpret | 2020-07-14T05:37:44.631797Z | 2022-04-13T03:32:54.403829Z |
| osv-2020-243 | Heap-buffer-overflow in OT::VarRegionList::serialize | 2020-06-26T00:00:09.657756Z | 2022-04-13T03:32:46.403544Z |
| osv-2021-1368 | Stack-buffer-overflow in dispatch_print_error | 2021-09-25T00:00:17.537038Z | 2022-04-13T03:32:35.569980Z |
| osv-2020-2324 | Heap-buffer-overflow in archive_read_format_cpio_read_header | 2021-12-04T00:01:03.220230Z | 2022-04-13T03:32:31.871963Z |
| osv-2021-1410 | Heap-buffer-overflow in generic_unpack | 2021-10-05T00:00:18.081765Z | 2022-04-13T03:32:30.366609Z |
| osv-2021-1230 | UNKNOWN READ in helper_ret_stb_mmu_x86_64 | 2021-09-12T00:00:11.430175Z | 2022-04-13T03:32:30.819169Z |
| osv-2020-1702 | Heap-buffer-overflow in mem_src_read | 2020-09-04T00:00:43.281890Z | 2022-04-13T03:32:28.309787Z |
| osv-2022-13 | Heap-use-after-free in read_data_compressed | 2022-01-06T00:02:10.206687Z | 2022-04-13T03:31:58.721976Z |
| osv-2021-542 | Heap-buffer-overflow in luaG_getfuncline | 2021-03-21T00:00:57.635576Z | 2022-04-13T03:31:48.822497Z |
| osv-2020-473 | Heap-use-after-free in Envoy::Server::InitManagerImpl::initializeTarget | 2020-07-01T00:00:11.677829Z | 2022-04-13T03:31:47.875856Z |
| osv-2020-153 | UNKNOWN WRITE in Variant_encodeJson | 2020-06-24T01:51:16.477749Z | 2022-04-13T03:31:44.364576Z |
| osv-2020-1409 | UNKNOWN READ in cpu_arm_exec_armeb | 2020-07-28T00:00:12.058612Z | 2022-04-13T03:31:39.936779Z |
| osv-2020-1554 | Object-size in void hb_ot_map_t::apply<GPOSProxy> | 2020-07-31T00:01:20.122854Z | 2022-04-13T03:31:33.522Z |
| osv-2021-958 | Dynamic-stack-buffer-overflow in mdb_numeric_to_string | 2021-07-11T00:01:21.634442Z | 2022-04-13T03:31:25.487524Z |
| osv-2021-1482 | Heap-buffer-overflow in generic_unpack | 2021-10-24T00:01:22.728134Z | 2022-04-13T03:31:05.823477Z |
| osv-2020-2091 | UNKNOWN READ in WelsDec::WelsMarkAsRef | 2020-10-22T00:00:21.083633Z | 2022-04-13T03:30:58.096308Z |
| osv-2020-1676 | Heap-buffer-overflow in Op_YCbCr_to_RGB<unsigned char>::convert_colorspace | 2020-08-30T00:00:07.006768Z | 2022-04-13T03:30:49.549940Z |
| osv-2021-1429 | Heap-buffer-overflow in unpack_16bit | 2021-10-10T00:00:16.052480Z | 2022-04-13T03:30:44.800436Z |
| osv-2021-512 | Heap-buffer-overflow in luaG_getfuncline | 2021-03-11T00:01:02.762585Z | 2022-04-13T03:30:34.129630Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-solr-2023-50298 | Apache Solr: Solr can expose ZooKeeper credentials via Streaming Expressions | 2024-03-06T11:05:12.102Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2023-50292 | Apache Solr: Solr Schema Designer blindly "trusts" all configsets, possibly leading to RCE by unauthenticated users | 2024-03-06T11:05:21.587Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2023-50291 | Apache Solr: System Property redaction logic inconsistency can lead to leaked passwords | 2024-03-06T11:05:31.993Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2023-50290 | Apache Solr: Host environment variables are published via the Metrics API | 2024-03-06T11:05:41.373Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2021-44548 | Apache Solr information disclosure vulnerability through DataImportHandler | 2024-03-06T11:06:01.978Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2021-29943 | Apache Solr Unprivileged users may be able to perform unauthorized read/write to collections | 2024-03-06T11:06:21.010Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2021-29262 | Misapplied Zookeeper ACLs can result in leakage of configured authentication and authorization settings | 2024-03-06T11:06:30.482Z | 2025-05-20T10:02:07.006Z |
| bit-solr-2021-27905 | SSRF vulnerability with the Replication handler | 2024-03-06T11:06:49.094Z | 2025-05-20T10:02:07.006Z |
| bit-scylladb-2023-33972 | Privilege escalation from having CREATE access on a keyspace in Scylladb | 2024-05-14T14:38:04.732Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2024-31227 | Denial-of-service due to malformed ACL selectors in Redis | 2024-10-09T16:41:26.630Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-45145 | Redis Unix-domain socket may have be exposed with the wrong permissions for a short time window. | 2024-03-06T11:03:25.305Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-41056 | Redis vulnerable to integer overflow in certain payloads | 2024-03-06T11:03:35.383Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-41053 | Redis SORT_RO may bypass ACL configuration | 2024-03-06T11:03:44.599Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-36824 | Heap overflow in COMMAND GETKEYS and ACL evaluation in Redis | 2024-03-06T11:03:54.180Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-28856 | `HINCRBYFLOAT` can be used to crash a redis-server process | 2024-03-06T11:04:14.088Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-28425 | Specially crafted MSETNX command can lead to denial-of-service | 2024-03-06T11:04:24.673Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-25155 | Integer Overflow in several Redis commands can lead to denial of service. | 2024-03-06T11:04:33.767Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2023-22458 | Integer overflow in multiple Redis commands can lead to denial-of-service | 2024-03-06T11:04:43.276Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-3647 | Redis Crash Report debug.c sigsegvHandler denial of service | 2024-03-06T11:05:04.669Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-36021 | Redis string pattern matching can be abused to achieve Denial of Service | 2024-03-06T11:05:16.771Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-35951 | Redis subject to Integer Overflow leading to Remote Code Execution via Heap Overflow | 2024-03-06T11:05:35.692Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-31144 | Potential heap overflow in Redis | 2024-03-06T11:05:57.008Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-24834 | Heap overflow issue with the Lua cjson library used by Redis | 2024-03-06T11:06:06.800Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-24736 | A Malformed Lua script can crash Redis | 2024-03-06T11:06:15.666Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2022-24735 | Lua scripts can be manipulated to overcome ACL rules in Redis | 2024-03-06T11:06:28.264Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2021-41099 | Integer overflow issue with strings in Redis | 2024-03-06T11:07:29.099Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2021-32762 | Integer overflow that can lead to heap overflow in redis-cli, redis-sentinel on some platforms | 2024-03-06T11:07:37.308Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2021-32687 | Integer overflow issue with intsets in Redis | 2024-03-06T11:07:45.008Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2021-32675 | DoS vulnerability in Redis | 2024-03-06T11:07:55.972Z | 2025-05-20T10:02:07.006Z |
| bit-redis-2021-32672 | Vulnerability in Lua Debugger in Redis | 2024-03-06T11:08:05.073Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-200403-0070 | Unknown vulnerability in CoreFoundation for Mac OS X 10.3.2, related to "notification log… | 2024-06-02T21:26:46.631000Z |
| var-202109-1419 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2024-06-02T20:55:09.602000Z |
| var-200403-0021 | Unknown vulnerability in the Mail application for Mac OS X 10.3.2 has unknown impact and … | 2024-06-02T20:51:55.495000Z |
| var-200403-0023 | The System Configuration subsystem in Mac OS 10.2.8 allows local users to modify network … | 2024-06-02T20:33:31.324000Z |
| var-202104-0750 | A logic issue was addressed with improved restrictions. This issue is fixed in macOS Big … | 2024-06-02T20:23:10.911000Z |
| var-200403-0022 | The System Configuration subsystem in Mac OS 10.2.8 and 10.3.2 allows local users to modi… | 2024-06-02T20:17:35.483000Z |
| var-202202-0109 | A use after free issue was addressed with improved memory management. This issue is fixed… | 2024-06-02T20:07:29.440000Z |
| var-201906-0818 | An Improper Authorization vulnerability in Fortinet FortiOS 6.0.0 to 6.0.4, 5.6.0 to 5.6.… | 2024-06-02T19:41:32.855000Z |
| var-200403-0069 | DiskArbitration in Mac OS X 10.2.8 and 10.3.2 does not properly initialize writeable remo… | 2024-06-02T19:33:33.941000Z |
| var-200403-0067 | Format string vulnerability in Point-to-Point Protocol (PPP) daemon (pppd) 2.4.0 for Mac … | 2024-06-02T19:33:33.857000Z |
| var-200403-0024 | Buffer overflow in TruBlueEnvironment in Mac OS X 10.3.x and 10.2.x allows local users to… | 2024-06-02T19:19:25.625000Z |
| var-202304-0297 | Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV… | 2024-06-01T22:26:30.047000Z |
| var-202404-1533 | Controller denial of service due to improper handling of a specially crafted message rece… | 2024-05-31T22:56:08.869000Z |
| var-202404-0273 | A vulnerability has been found in Tenda W15E 15.11.0.14 and classified as critical. Affec… | 2024-05-31T22:56:08.920000Z |
| var-202403-3225 | Dlink Dir-3040us A1 1.20b03a hotfix is vulnerable to Buffer Overflow. Any user having rea… | 2024-05-31T22:54:16.058000Z |
| var-202404-0182 | A vulnerability classified as critical has been found in Tenda F1202 1.2.0.20(408). Affec… | 2024-05-31T22:51:56.854000Z |
| var-202404-0289 | A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affecte… | 2024-05-31T22:49:28.286000Z |
| var-202303-0418 | NETGEAR CAX30S SSO Command Injection Remote Code Execution Vulnerability. This vulnerabil… | 2024-05-31T22:43:43.036000Z |
| var-202305-0221 | NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerabilit… | 2024-05-31T22:43:39.423000Z |
| var-202308-4331 | D-Link DAP-2622 DDP Firmware Upgrade Filename Stack-based Buffer Overflow Remote Code Exe… | 2024-05-31T22:28:57.441000Z |
| var-202308-3319 | D-Link DAP-2622 DDP Set SSID List Missing Authentication Vulnerability. This vulnerabilit… | 2024-05-31T22:28:57.523000Z |
| var-202308-3104 | D-Link DAP-2622 DDP Firmware Upgrade Server IPv6 Address Stack-based Buffer Overflow Remo… | 2024-05-31T22:28:57.487000Z |
| var-202405-1668 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, has be… | 2024-05-31T19:15:21.502000Z |
| var-202405-0210 | A vulnerability has been identified in S7-PCT (All versions), Security Configuration Tool… | 2024-05-31T19:15:21.586000Z |
| var-202302-1035 | Azure Data Box Gateway Remote Code Execution Vulnerability | 2024-05-30T23:10:54.255000Z |
| var-202402-1535 | .NET Denial of Service Vulnerability. Microsoft's Microsoft Visual Studio and ASP.NET Cor… | 2024-05-30T23:03:16.933000Z |
| var-202402-1534 | .NET Denial of Service Vulnerability. Microsoft's .NET and Microsoft Visual Studio includ… | 2024-05-30T23:03:16.881000Z |
| var-202211-1567 | A vulnerability exists in the Intelligent Electronic Device (IED) Connectivity Package (C… | 2024-05-30T22:55:12.335000Z |
| var-202311-1422 | ASP.NET Core Denial of Service Vulnerability | 2024-05-30T22:49:52.642000Z |
| var-202106-1709 | ASP.NET Core Denial of Service Vulnerability. .NET and Microsoft Visual Studio Has ASP.NE… | 2024-05-30T22:20:36.898000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2015-000124 | Apache Struts vulnerable to cross-site scripting | 2015-09-04T15:12+09:00 | 2015-12-25T13:45+09:00 |
| jvndb-2015-006054 | XML External Entity (XXE) Vulnerability in Hitachi Command Suite | 2015-12-01T15:59+09:00 | 2015-12-22T17:43+09:00 |
| jvndb-2015-000142 | Apache Cordova plugin cordova-plugin-file-transfer vulnerable to HTTP header injection | 2015-09-29T14:04+09:00 | 2015-12-21T17:45+09:00 |
| jvndb-2015-005234 | Adobe Flash Player issue where iframe contents may be overwritten | 2015-12-17T15:19+09:00 | 2015-12-17T15:19+09:00 |
| jvndb-2015-000187 | Apache Cordova vulnerable to improper application of whitelist restrictions | 2015-11-27T13:29+09:00 | 2015-11-27T13:29+09:00 |
| jvndb-2015-000182 | Kirby vulnerable to arbitrary file creation | 2015-11-17T14:21+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000179 | applican vulnerable to script injection | 2015-11-17T14:20+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000178 | applican vulnerable to script injection | 2015-11-17T14:20+09:00 | 2015-11-24T18:03+09:00 |
| jvndb-2015-000184 | Void vulnerable to cross-site scripting | 2015-11-20T13:38+09:00 | 2015-11-24T18:02+09:00 |
| jvndb-2015-005909 | ArcSight Management Center and ArcSight Logger vulnerable to cross-site scripting | 2015-11-20T13:31+09:00 | 2015-11-20T13:31+09:00 |
| jvndb-2015-000180 | pWebManager vulnerable to OS command injection | 2015-11-13T14:25+09:00 | 2015-11-17T16:21+09:00 |
| jvndb-2015-000177 | Apple OS X authentication issue when recovering from sleep mode | 2015-11-13T14:25+09:00 | 2015-11-17T16:15+09:00 |
| jvndb-2015-000166 | EC-CUBE vulnerable to cross-site request forgery | 2015-10-26T12:27+09:00 | 2015-11-13T19:36+09:00 |
| jvndb-2015-000159 | Party Track SDK for iOS fails to verify server certificates | 2015-10-14T15:41+09:00 | 2015-11-11T17:32+09:00 |
| jvndb-2015-000175 | ISUCON5 qualifier portal web application (eventapp) vulnerable to OS command injection | 2015-11-02T14:10+09:00 | 2015-11-11T15:33+09:00 |
| jvndb-2015-000176 | SonicWall TotalSecure TZ 100 Series vulnerable to denial-of-service (DoS) | 2015-11-06T12:30+09:00 | 2015-11-09T10:47+09:00 |
| jvndb-2015-000174 | Multiple TYPE-MOON games vulnerable to OS command injection | 2015-11-05T14:11+09:00 | 2015-11-09T10:39+09:00 |
| jvndb-2015-000170 | Enisys Gw fails to restrict access permissions | 2015-10-29T13:46+09:00 | 2015-11-02T18:05+09:00 |
| jvndb-2015-000169 | Enisys Gw vulnerable to cross-site scripting | 2015-10-29T13:46+09:00 | 2015-11-02T18:05+09:00 |
| jvndb-2015-000168 | Enisys Gw vulnerable to arbitrary file creation | 2015-10-29T13:37+09:00 | 2015-11-02T18:05+09:00 |
| jvndb-2015-000167 | Enisys Gw vulnerable to SQL injection | 2015-10-29T13:37+09:00 | 2015-11-02T18:05+09:00 |
| jvndb-2015-000171 | HTML::Scrubber vulnerable to cross-site scripting | 2015-10-30T15:16+09:00 | 2015-10-30T15:16+09:00 |
| jvndb-2013-004446 | Use-after-free vulnerability in multiple products that use International Components for Unicode (ICU) | 2013-10-30T16:32+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2013-001665 | Multiple products that use International Components for Unicode (ICU) vulnerable to denial-of-service (DoS) | 2013-10-30T16:08+09:00 | 2015-10-28T10:05+09:00 |
| jvndb-2015-000162 | AirDroid for Android vulnerable in handling of implicit intents | 2015-10-16T14:00+09:00 | 2015-10-20T17:56+09:00 |
| jvndb-2015-000160 | Avast vulnerable to directory traversal | 2015-10-16T14:00+09:00 | 2015-10-20T17:56+09:00 |
| jvndb-2015-000126 | eXtplorer vulnerable to cross-site request forgery | 2015-10-15T12:24+09:00 | 2015-10-19T15:55+09:00 |
| jvndb-2015-000158 | Pref Shimane CMS vulnerable to SQL injection | 2015-10-09T14:12+09:00 | 2015-10-14T17:26+09:00 |
| jvndb-2015-000154 | phpRechnung vulnerable to SQL injection | 2015-10-09T14:12+09:00 | 2015-10-14T17:26+09:00 |
| jvndb-2015-000153 | Dojo Toolkit vulnerable to cross-site scripting | 2015-10-09T14:12+09:00 | 2015-10-14T17:26+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:02832-1 | Security update for the Linux Kernel (Live Patch 58 for SLE 15 SP3) | 2025-08-17T06:03:55Z | 2025-08-17T06:03:55Z |
| suse-su-2025:02830-1 | Security update for the Linux Kernel (Live Patch 65 for SLE 12 SP5) | 2025-08-16T17:04:00Z | 2025-08-16T17:04:00Z |
| suse-su-2025:02827-1 | Security update for the Linux Kernel (Live Patch 58 for SLE 12 SP5) | 2025-08-16T13:33:47Z | 2025-08-16T13:33:47Z |
| suse-su-2025:20597-1 | Security update for systemd | 2025-08-16T11:46:10Z | 2025-08-16T11:46:10Z |
| suse-su-2025:02823-1 | Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP7) | 2025-08-16T07:03:43Z | 2025-08-16T07:03:43Z |
| suse-su-2025:02821-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) | 2025-08-16T06:04:35Z | 2025-08-16T06:04:35Z |
| suse-su-2025:02820-1 | Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6) | 2025-08-16T05:33:54Z | 2025-08-16T05:33:54Z |
| suse-su-2025:02818-1 | Security update for apache-commons-lang3 | 2025-08-15T12:56:26Z | 2025-08-15T12:56:26Z |
| suse-su-2025:02817-1 | Security update for libavif | 2025-08-15T12:55:59Z | 2025-08-15T12:55:59Z |
| suse-su-2025:02816-1 | Security update for libavif | 2025-08-15T12:55:45Z | 2025-08-15T12:55:45Z |
| suse-su-2025:02815-1 | Security update for tiff | 2025-08-15T12:55:19Z | 2025-08-15T12:55:19Z |
| suse-su-2025:02814-1 | Security update for ruby2.5 | 2025-08-15T12:53:23Z | 2025-08-15T12:53:23Z |
| suse-su-2025:02813-1 | Recommended update for grub2 | 2025-08-15T12:53:14Z | 2025-08-15T12:53:14Z |
| suse-su-2025:02812-1 | Security update for go1.23-openssl | 2025-08-15T12:52:43Z | 2025-08-15T12:52:43Z |
| suse-su-2025:02811-1 | Security update for rust-keylime | 2025-08-15T12:51:54Z | 2025-08-15T12:51:54Z |
| suse-su-2025:02810-1 | Security update for rust-keylime | 2025-08-15T12:51:47Z | 2025-08-15T12:51:47Z |
| suse-su-2025:02809-1 | Security update for rust-keylime | 2025-08-15T12:51:37Z | 2025-08-15T12:51:37Z |
| suse-su-2025:02808-1 | Security update for podman | 2025-08-15T12:51:16Z | 2025-08-15T12:51:16Z |
| suse-su-2025:02807-1 | Security update for podman | 2025-08-15T12:50:56Z | 2025-08-15T12:50:56Z |
| suse-su-2025:02806-1 | Security update for podman | 2025-08-15T12:50:23Z | 2025-08-15T12:50:23Z |
| suse-su-2025:02803-1 | Security update for Mesa | 2025-08-14T16:33:50Z | 2025-08-14T16:33:50Z |
| suse-su-2025:02802-1 | Security update for python3 | 2025-08-14T15:10:00Z | 2025-08-14T15:10:00Z |
| suse-su-2025:02801-1 | Security update for ImageMagick | 2025-08-14T15:09:24Z | 2025-08-14T15:09:24Z |
| suse-su-2025:02797-1 | Security update for iputils | 2025-08-14T14:35:58Z | 2025-08-14T14:35:58Z |
| suse-su-2025:02796-1 | Security update for gstreamer-plugins-base | 2025-08-14T14:35:43Z | 2025-08-14T14:35:43Z |
| suse-su-2025:02795-1 | Security update for cairo | 2025-08-14T14:35:33Z | 2025-08-14T14:35:33Z |
| suse-su-2025:01326-1 | Security update for pgadmin4 | 2025-08-14T13:03:13Z | 2025-08-14T13:03:13Z |
| suse-su-2025:02383-2 | Security update for kubernetes1.26 | 2025-08-14T13:03:07Z | 2025-08-14T13:03:07Z |
| suse-su-2025:01940-2 | Security update for kubernetes1.23 | 2025-08-14T13:02:12Z | 2025-08-14T13:02:12Z |
| suse-su-2025:20595-1 | Security update for helm | 2025-08-14T10:15:33Z | 2025-08-14T10:15:33Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-29671 | IBM Tivoli Monitoring路径遍历漏洞 | 2025-11-05 | 2025-12-01 |
| cnvd-2025-29670 | IBM Concert跨站脚本漏洞 | 2025-11-24 | 2025-12-01 |
| cnvd-2025-29669 | IBM Concert加密问题漏洞(CNVD-2025-29669) | 2025-11-24 | 2025-12-01 |
| cnvd-2025-29668 | IBM Concert信息泄露漏洞 | 2025-11-24 | 2025-12-01 |
| cnvd-2025-29667 | IBM Concert输出中和不当漏洞 | 2025-11-24 | 2025-12-01 |
| cnvd-2025-29666 | IBM Concert加密问题漏洞 | 2025-11-27 | 2025-12-01 |
| cnvd-2025-29665 | DELL Alienware Command Center反序列化不可信数据漏洞 | 2023-09-11 | 2025-12-01 |
| cnvd-2025-29664 | DELL Alienware Command Center访问控制不当漏洞 | 2024-04-15 | 2025-12-01 |
| cnvd-2025-29663 | DELL PowerScale OneFS竞争条件漏洞 | 2025-05-20 | 2025-12-01 |
| cnvd-2025-29662 | DELL PowerScale OneFS授权绕过漏洞 | 2025-10-21 | 2025-12-01 |
| cnvd-2025-29661 | DELL PowerScale OneFS加密问题漏洞 | 2025-11-14 | 2025-12-01 |
| cnvd-2025-29660 | DELL Alienware Command Center访问控制不当漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29659 | DELL Alienware Command Center临时文件不安全漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29658 | DELL Alienware Command Center无操作响应的错误条件检测漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29657 | DELL Alienware Command Center权限提升漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29656 | DELL Alienware Command Center进程控制漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29655 | Google Chrome越界读取漏洞 | 2025-10-30 | 2025-12-01 |
| cnvd-2025-29654 | Google Chrome on Windows Media模块实现不当漏洞 | 2025-10-30 | 2025-12-01 |
| cnvd-2025-29653 | Google Chrome释放后重用漏洞 | 2025-10-30 | 2025-12-01 |
| cnvd-2025-29652 | Google Chrome on Android Omnibox实现不当漏洞 | 2025-10-30 | 2025-12-01 |
| cnvd-2025-29651 | Google Chrome输入验证错误漏洞 | 2025-11-12 | 2025-12-01 |
| cnvd-2025-29650 | Google Chrome策略执行不足漏洞 | 2025-11-12 | 2025-12-01 |
| cnvd-2025-29649 | Google Chrome Passkeys实现不当漏洞 | 2025-11-12 | 2025-12-01 |
| cnvd-2025-29648 | Google Chrome Fullscreen实现不当漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29647 | Google Chrome DevTools实现不当漏洞 | 2025-11-18 | 2025-12-01 |
| cnvd-2025-29646 | Google Chrome类型混淆漏洞 | 2025-11-20 | 2025-12-01 |
| cnvd-2025-29645 | Google Chrome实现不当漏洞 | 2025-11-20 | 2025-12-01 |
| cnvd-2025-29594 | COVID Tracking System SQL注入漏洞 | 2025-11-24 | 2025-12-01 |
| cnvd-2025-29593 | Hospital Management System user-login.php文件SQL注入漏洞 | 2025-07-21 | 2025-12-01 |
| cnvd-2025-29592 | Hospital Management System view-medhistory.php文件SQL注入漏洞 | 2025-07-21 | 2025-12-01 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0403 | Multiples vulnérabilités dans les produits Ivanti | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0402 | Multiples vulnérabilités dans les produits Intel | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0408 | Multiples vulnérabilités dans les produits Microsoft | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0407 | Multiples vulnérabilités dans Microsoft Azure | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0406 | Vulnérabilité dans Microsoft .Net | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0405 | Multiples vulnérabilités dans Microsoft Windows | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0404 | Multiples vulnérabilités dans Microsoft Office | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0403 | Multiples vulnérabilités dans les produits Ivanti | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| CERTFR-2025-AVI-0402 | Multiples vulnérabilités dans les produits Intel | 2025-05-14T00:00:00.000000 | 2025-05-14T00:00:00.000000 |
| certfr-2025-avi-0400 | Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0399 | Multiples vulnérabilités dans les produits Fortinet | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0398 | Vulnérabilité dans les produits Schneider Electric | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0397 | Multiples vulnérabilités dans les produits Siemens | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0395 | Vulnérabilité dans les produits Citrix | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0394 | Multiples vulnérabilités dans les produits Intel | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0393 | Multiples vulnérabilités dans les produits Apple | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0391 | Vulnérabilité dans Xen | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0390 | Vulnérabilité dans les produits VMware | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0400 | Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0399 | Multiples vulnérabilités dans les produits Fortinet | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0398 | Vulnérabilité dans les produits Schneider Electric | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0397 | Multiples vulnérabilités dans les produits Siemens | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0395 | Vulnérabilité dans les produits Citrix | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0394 | Multiples vulnérabilités dans les produits Intel | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0393 | Multiples vulnérabilités dans les produits Apple | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0391 | Vulnérabilité dans Xen | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| CERTFR-2025-AVI-0390 | Vulnérabilité dans les produits VMware | 2025-05-13T00:00:00.000000 | 2025-05-13T00:00:00.000000 |
| certfr-2025-avi-0389 | Vulnérabilité dans les produits VMware | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| certfr-2025-avi-0388 | Multiples vulnérabilités dans les produits Mitel | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |
| CERTFR-2025-AVI-0389 | Vulnérabilité dans les produits VMware | 2025-05-12T00:00:00.000000 | 2025-05-12T00:00:00.000000 |