Recent vulnerabilities
| ID | Description | Published | Updated |
|---|---|---|---|
| ghsa-qw27-cxc9-7xxh | Cross-Site Request Forgery (CSRF) vulnerability in Rene Ade SensitiveTagCloud allows Stored XSS.Thi… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-j4mr-6qvv-6q4w | The Ultimate Post Kit Addons for Elementor WordPress plugin before 4.0.16 exposes multiple AJAX “lo… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-h7h6-79g4-qpq3 | Cross-Site Request Forgery (CSRF) vulnerability in Socialprofilr Social Profilr allows Stored XSS.T… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-5r88-ccjv-66xq | Cross-Site Request Forgery (CSRF) vulnerability in Wolfgang Häfelinger Custom Style allows Stored X… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-4xqm-hx6r-2gp8 | The Knowband Mobile App Builder WordPress plugin before 3.0.0 does not have authorisation when dele… | 2025-12-31T06:30:17Z | 2025-12-31T06:30:17Z |
| ghsa-r9h3-v9hv-vpf2 | A vulnerability was detected in EyouCMS up to 1.7.7. The affected element is an unknown function of… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-93v3-46mj-22fw | A security vulnerability has been detected in EyouCMS up to 1.7.7. Impacted is the function saveRem… | 2025-12-31T06:30:16Z | 2025-12-31T06:30:17Z |
| ghsa-5fgj-7r84-vwrr | A vulnerability was found in Philipinho Simple-PHP-Blog up to 94b5d3e57308bce5dfbc44c3edafa9811893d… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-4695-qj73-37p4 | A weakness has been identified in youlaitech vue3-element-admin up to 3.4.0. This issue affects som… | 2025-12-31T03:30:35Z | 2025-12-31T03:30:35Z |
| ghsa-9qhr-gr34-rmgj | A vulnerability has been found in Tenda i24, 4G03 Pro, 4G05, 4G08, G0-8G-PoE, Nova MW5G and TEG5328… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-53h7-g6w8-rxxc | On Windows only, if libpcap needs to convert a Windows error message to UTF-8 and the message inclu… | 2025-12-31T03:30:34Z | 2025-12-31T03:30:34Z |
| ghsa-x25x-vjrm-h7qq | pcap_ether_aton() is an auxiliary function in libpcap, it takes a string argument and returns a fix… | 2025-12-31T03:30:33Z | 2025-12-31T03:30:34Z |
| ghsa-x5cr-w4x6-22r9 | Ksenia Security Lares 4.0 version 1.6 contains a URL redirection vulnerability in the 'cmdOk.xml' s… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-wm7p-2wcf-h9qh | Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to … | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-vqvm-xqhr-4h5w | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-rg8q-q5qg-28fm | Anevia Flamingo XL/XS 3.6.20 contains a critical vulnerability with weak default administrative cre… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-mpcq-qm9f-9qfj | Akuvox Smart Intercom S539 contains an unauthenticated vulnerability that allows remote attackers t… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-m9w6-v3p4-qjm7 | Cross-Site Request Forgery (CSRF) vulnerability in Hoernerfranz WP-CalDav2ICS allows Stored XSS.Thi… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-jv66-87h9-r6q4 | Tosibox Key Service 3.3.0 contains an unquoted service path vulnerability that allows local non-pri… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-hcw3-qjrp-gq57 | Tinycontrol LAN Controller 1.58a contains an authentication bypass vulnerability that allows unauth… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-g772-q552-ggr6 | Ksenia Security Lares 4.0 Home Automation version 1.6 contains an unprotected endpoint vulnerabilit… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-g2pw-5fjr-fhhf | Ksenia Security Lares 4.0 Home Automation version 1.6 contains a default credentials vulnerability … | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-c56g-3hg8-4249 | Akuvox Smart Intercom S539 contains an improper access control vulnerability that allows users with… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-5xw5-83cp-4rjf | Ksenia Security Lares 4.0 Home Automation version 1.6 contains a critical security flaw that expose… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-4rhh-qhhp-cw22 | NLB mKlik Macedonia 3.3.12 contains a SQL injection vulnerability in international transfer paramet… | 2025-12-31T00:31:11Z | 2025-12-31T00:31:11Z |
| ghsa-xpmj-f96f-w324 | ETAP Safety Manager 1.0.0.32 contains a cross-site scripting vulnerability in the 'action' GET para… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-x593-jp73-3qq7 | SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a command injection vulnerability that allows local au… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-r568-76cw-jx2w | SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a conditional command injection vulnerability that all… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-q68f-54g3-3rc9 | SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x contains a conditional command injection vulnerability that all… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:10Z |
| ghsa-mv53-5j69-vvj9 | JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery (CSRF) attacks, all… | 2025-12-31T00:31:10Z | 2025-12-31T00:31:11Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-15276 | 7.8 (v3.0) | FontForge SFD File Parsing Deserialization of Untruste… |
FontForge |
FontForge |
2025-12-31T06:59:24.595Z | 2025-12-31T16:58:13.207Z |
| cve-2025-15280 | 8.8 (v3.0) | FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:59:18.875Z | 2025-12-31T16:58:18.924Z |
| cve-2025-15275 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:14.262Z | 2025-12-31T16:58:23.822Z |
| cve-2025-15274 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:09.163Z | 2025-12-31T16:58:29.018Z |
| cve-2025-15273 | 8.8 (v3.0) | FontForge PFB File Parsing Stack-based Buffer Overflow… |
FontForge |
FontForge |
2025-12-31T06:59:04.808Z | 2025-12-31T16:58:34.284Z |
| cve-2025-15272 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:00.778Z | 2025-12-31T16:58:39.580Z |
| cve-2025-15271 | 8.8 (v3.0) | FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:54.402Z | 2025-12-31T16:58:45.166Z |
| cve-2025-15270 | 8.8 (v3.0) | FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:49.796Z | 2025-12-31T16:58:50.233Z |
| cve-2025-15269 | 8.8 (v3.0) | FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:58:23.826Z | 2025-12-31T16:23:23.815Z |
| cve-2025-14783 | Easy Digital Downloads <= 3.6.2 - Unvalidated Redirect… |
smub |
Easy Digital Downloads – eCommerce Payments and Subscriptions made easy |
2025-12-31T06:24:42.546Z | 2025-12-31T16:25:51.162Z | |
| cve-2025-14434 | N/A | Ultimate Post Kit < 4.0.16 – Unauthenticated Arbitrary… |
Unknown |
Ultimate Post Kit Addons for Elementor |
2025-12-31T06:00:11.262Z | 2025-12-31T06:00:11.262Z |
| cve-2025-13029 | N/A | Knowband Mobile App Builder for wooCommerce < 3.0.0 – … |
Unknown |
Knowband Mobile App Builder |
2025-12-31T06:00:03.241Z | 2025-12-31T06:00:03.241Z |
| cve-2025-49342 | 7.1 (v3.1) | WordPress Custom Style plugin <= 1.0 - Cross Site Requ… |
Wolfgang Häfelinger |
Custom Style |
2025-12-31T05:55:53.218Z | 2025-12-31T05:55:53.218Z |
| cve-2025-69277 | 4.5 (v3.1) | libsodium before ad3004e, in atypical use cases i… |
libsodium |
libsodium |
2025-12-31T05:50:07.422Z | 2025-12-31T06:03:26.026Z |
| cve-2025-49353 | 7.1 (v3.1) | WordPress Noindex by Path plugin <= 1.0 - Cross Site R… |
Marcin Kijak |
Noindex by Path |
2025-12-31T05:36:42.895Z | 2025-12-31T17:50:20.668Z |
| cve-2025-68885 | 7.1 (v3.1) | WordPress Custom Post Status plugin <= 1.1.0 - Cross S… |
Page Carbajal |
Custom Post Status |
2025-12-31T05:34:27.042Z | 2025-12-31T17:50:25.904Z |
| cve-2025-49354 | 7.1 (v3.1) | WordPress Recent Posts From Each Category plugin <= 1.… |
Mindstien Technologies |
Recent Posts From Each Category |
2025-12-31T05:30:25.381Z | 2025-12-31T17:50:31.560Z |
| cve-2025-49343 | 7.1 (v3.1) | WordPress Social Profilr plugin <= 1.0 - Cross Site Re… |
Socialprofilr |
Social Profilr |
2025-12-31T05:28:06.720Z | 2025-12-31T17:50:36.826Z |
| cve-2025-49344 | 7.1 (v3.1) | WordPress SensitiveTagCloud plugin <= 1.4.1 - Cross Si… |
Rene Ade |
SensitiveTagCloud |
2025-12-31T05:25:58.689Z | 2025-12-31T17:50:42.300Z |
| cve-2025-49345 | 7.1 (v3.1) | WordPress WP-EasyArchives plugin <= 3.1.2 - Cross Site… |
mg12 |
WP-EasyArchives |
2025-12-31T05:23:28.075Z | 2025-12-31T17:50:47.950Z |
| cve-2025-15375 | EyouCMS arcpagelist Ajax.php unserialize deserialization |
n/a |
EyouCMS |
2025-12-31T05:02:09.241Z | 2025-12-31T05:02:09.241Z | |
| cve-2025-49346 | 7.1 (v3.1) | WordPress Simple Archive Generator plugin <= 5.2 - Cro… |
Peter Sterling |
Simple Archive Generator |
2025-12-31T04:37:01.172Z | 2025-12-31T17:50:53.258Z |
| cve-2025-59137 | 7.1 (v3.1) | WordPress Behance Portfolio Manager plugin <= 1.7.5 - … |
eLEOPARD |
Behance Portfolio Manager |
2025-12-31T04:33:22.492Z | 2025-12-31T17:50:58.481Z |
| cve-2025-15374 | EyouCMS Ask Module Ask.php cross site scripting |
n/a |
EyouCMS |
2025-12-31T04:32:08.144Z | 2025-12-31T04:32:08.144Z | |
| cve-2025-15373 | EyouCMS function.php saveRemote server-side request forgery |
n/a |
EyouCMS |
2025-12-31T04:02:08.912Z | 2025-12-31T04:02:08.912Z | |
| cve-2025-15223 | Philipinho Simple-PHP-Blog login.php cross site scripting |
Philipinho |
Simple-PHP-Blog |
2025-12-31T02:32:09.788Z | 2025-12-31T03:00:30.523Z | |
| cve-2025-15372 | youlaitech vue3-element-admin Notice index.vue cross s… |
youlaitech |
vue3-element-admin |
2025-12-31T02:02:06.787Z | 2025-12-31T02:02:06.787Z | |
| cve-2025-68131 | CBORDecoder reuse can leak shareable values across dec… |
agronholm |
cbor2 |
2025-12-31T01:15:36.827Z | 2025-12-31T01:15:36.827Z | |
| cve-2025-15371 | Tenda i24 Shadow File hard-coded credentials |
Tenda |
i24 |
2025-12-31T01:02:06.989Z | 2025-12-31T01:02:06.989Z | |
| cve-2025-11964 | 1.9 (v3.1) | OOBW in utf_16le_to_utf_8_truncated() in libpcap |
The Tcpdump Group |
libpcap |
2025-12-31T00:58:19.026Z | 2025-12-31T00:58:19.026Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| cve-2025-15279 | 7.8 (v3.0) | FontForge GUtils BMP File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:37.307Z | 2025-12-31T16:19:37.251Z |
| cve-2025-15278 | 7.8 (v3.0) | FontForge GUtils XBM File Parsing Integer Overflow Rem… |
FontForge |
FontForge |
2025-12-31T06:59:33.188Z | 2025-12-31T16:19:54.162Z |
| cve-2025-15277 | 7.8 (v3.0) | FontForge GUtils SGI File Parsing Heap-based Buffer Ov… |
FontForge |
FontForge |
2025-12-31T06:59:29.183Z | 2025-12-31T16:22:17.744Z |
| cve-2025-15276 | 7.8 (v3.0) | FontForge SFD File Parsing Deserialization of Untruste… |
FontForge |
FontForge |
2025-12-31T06:59:24.595Z | 2025-12-31T16:58:13.207Z |
| cve-2025-15275 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:14.262Z | 2025-12-31T16:58:23.822Z |
| cve-2025-15274 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:09.163Z | 2025-12-31T16:58:29.018Z |
| cve-2025-15273 | 8.8 (v3.0) | FontForge PFB File Parsing Stack-based Buffer Overflow… |
FontForge |
FontForge |
2025-12-31T06:59:04.808Z | 2025-12-31T16:58:34.284Z |
| cve-2025-15272 | 8.8 (v3.0) | FontForge SFD File Parsing Heap-based Buffer Overflow … |
FontForge |
FontForge |
2025-12-31T06:59:00.778Z | 2025-12-31T16:58:39.580Z |
| cve-2025-15271 | 8.8 (v3.0) | FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:54.402Z | 2025-12-31T16:58:45.166Z |
| cve-2025-15270 | 8.8 (v3.0) | FontForge SFD File Parsing Improper Validation of Arra… |
FontForge |
FontForge |
2025-12-31T06:58:49.796Z | 2025-12-31T16:58:50.233Z |
| cve-2025-15269 | 8.8 (v3.0) | FontForge SFD File Parsing Use-After-Free Remote Code … |
FontForge |
FontForge |
2025-12-31T06:58:23.826Z | 2025-12-31T16:23:23.815Z |
| cve-2025-14783 | Easy Digital Downloads <= 3.6.2 - Unvalidated Redirect… |
smub |
Easy Digital Downloads – eCommerce Payments and Subscriptions made easy |
2025-12-31T06:24:42.546Z | 2025-12-31T16:25:51.162Z | |
| cve-2025-69277 | 4.5 (v3.1) | libsodium before ad3004e, in atypical use cases i… |
libsodium |
libsodium |
2025-12-31T05:50:07.422Z | 2025-12-31T06:03:26.026Z |
| cve-2025-68885 | 7.1 (v3.1) | WordPress Custom Post Status plugin <= 1.1.0 - Cross S… |
Page Carbajal |
Custom Post Status |
2025-12-31T05:34:27.042Z | 2025-12-31T17:50:25.904Z |
| cve-2025-49354 | 7.1 (v3.1) | WordPress Recent Posts From Each Category plugin <= 1.… |
Mindstien Technologies |
Recent Posts From Each Category |
2025-12-31T05:30:25.381Z | 2025-12-31T17:50:31.560Z |
| cve-2025-49353 | 7.1 (v3.1) | WordPress Noindex by Path plugin <= 1.0 - Cross Site R… |
Marcin Kijak |
Noindex by Path |
2025-12-31T05:36:42.895Z | 2025-12-31T17:50:20.668Z |
| cve-2025-49345 | 7.1 (v3.1) | WordPress WP-EasyArchives plugin <= 3.1.2 - Cross Site… |
mg12 |
WP-EasyArchives |
2025-12-31T05:23:28.075Z | 2025-12-31T17:50:47.950Z |
| cve-2025-49344 | 7.1 (v3.1) | WordPress SensitiveTagCloud plugin <= 1.4.1 - Cross Si… |
Rene Ade |
SensitiveTagCloud |
2025-12-31T05:25:58.689Z | 2025-12-31T17:50:42.300Z |
| cve-2025-49343 | 7.1 (v3.1) | WordPress Social Profilr plugin <= 1.0 - Cross Site Re… |
Socialprofilr |
Social Profilr |
2025-12-31T05:28:06.720Z | 2025-12-31T17:50:36.826Z |
| cve-2025-49342 | 7.1 (v3.1) | WordPress Custom Style plugin <= 1.0 - Cross Site Requ… |
Wolfgang Häfelinger |
Custom Style |
2025-12-31T05:55:53.218Z | 2025-12-31T05:55:53.218Z |
| cve-2025-14434 | N/A | Ultimate Post Kit < 4.0.16 – Unauthenticated Arbitrary… |
Unknown |
Ultimate Post Kit Addons for Elementor |
2025-12-31T06:00:11.262Z | 2025-12-31T06:00:11.262Z |
| cve-2025-13029 | N/A | Knowband Mobile App Builder for wooCommerce < 3.0.0 – … |
Unknown |
Knowband Mobile App Builder |
2025-12-31T06:00:03.241Z | 2025-12-31T06:00:03.241Z |
| cve-2025-59137 | 7.1 (v3.1) | WordPress Behance Portfolio Manager plugin <= 1.7.5 - … |
eLEOPARD |
Behance Portfolio Manager |
2025-12-31T04:33:22.492Z | 2025-12-31T17:50:58.481Z |
| cve-2025-49346 | 7.1 (v3.1) | WordPress Simple Archive Generator plugin <= 5.2 - Cro… |
Peter Sterling |
Simple Archive Generator |
2025-12-31T04:37:01.172Z | 2025-12-31T17:50:53.258Z |
| cve-2025-15375 | EyouCMS arcpagelist Ajax.php unserialize deserialization |
n/a |
EyouCMS |
2025-12-31T05:02:09.241Z | 2025-12-31T05:02:09.241Z | |
| cve-2025-15374 | EyouCMS Ask Module Ask.php cross site scripting |
n/a |
EyouCMS |
2025-12-31T04:32:08.144Z | 2025-12-31T04:32:08.144Z | |
| cve-2025-15373 | EyouCMS function.php saveRemote server-side request forgery |
n/a |
EyouCMS |
2025-12-31T04:02:08.912Z | 2025-12-31T04:02:08.912Z | |
| cve-2025-15372 | youlaitech vue3-element-admin Notice index.vue cross s… |
youlaitech |
vue3-element-admin |
2025-12-31T02:02:06.787Z | 2025-12-31T02:02:06.787Z | |
| cve-2025-15223 | Philipinho Simple-PHP-Blog login.php cross site scripting |
Philipinho |
Simple-PHP-Blog |
2025-12-31T02:32:09.788Z | 2025-12-31T03:00:30.523Z | |
| cve-2025-68131 | CBORDecoder reuse can leak shareable values across dec… |
agronholm |
cbor2 |
2025-12-31T01:15:36.827Z | 2025-12-31T01:15:36.827Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192895 | Malicious code in chalk-aws (RubyGems) | 2025-12-23T08:40:47Z | 2025-12-23T08:40:47Z |
| mal-2025-192894 | Malicious code in activestorage-redundancy (RubyGems) | 2025-12-23T08:40:46Z | 2025-12-23T08:40:46Z |
| mal-2025-192893 | Malicious code in fireeye-main (PyPI) | 2025-12-23T08:38:27Z | 2025-12-23T08:38:27Z |
| mal-2025-192892 | Malicious code in fire-eye-bcs (PyPI) | 2025-12-23T08:38:27Z | 2025-12-23T08:38:27Z |
| mal-2025-192891 | Malicious code in blastchamber-python-pypi (PyPI) | 2025-12-23T08:38:03Z | 2025-12-23T08:38:03Z |
| mal-2025-192890 | Malicious code in sqzrframework480 (NuGet) | 2025-12-23T08:37:46Z | 2025-12-23T08:37:46Z |
| mal-2025-192889 | Malicious code in minimutex (NuGet) | 2025-12-23T08:37:45Z | 2025-12-23T08:37:45Z |
| mal-2025-192888 | Malicious code in workvivo-layout-extension (npm) | 2025-12-23T08:36:36Z | 2025-12-23T08:36:36Z |
| mal-2025-192887 | Malicious code in workvivo-chatbot (npm) | 2025-12-23T08:36:36Z | 2025-12-23T08:36:36Z |
| mal-2025-192886 | Malicious code in workvivo-anniversary-automation (npm) | 2025-12-23T08:36:35Z | 2025-12-23T08:36:35Z |
| mal-2025-192885 | Malicious code in wealthbox-marketing (npm) | 2025-12-23T08:35:44Z | 2025-12-23T08:35:44Z |
| mal-2025-192884 | Malicious code in vite-react-setting (npm) | 2025-12-23T08:35:16Z | 2025-12-23T08:35:16Z |
| mal-2025-192883 | Malicious code in varshade-afc (npm) | 2025-12-23T08:34:50Z | 2025-12-23T08:34:50Z |
| mal-2025-192882 | Malicious code in vapark-boost-v1 (npm) | 2025-12-23T08:34:49Z | 2025-12-23T08:34:49Z |
| mal-2025-192881 | Malicious code in typeface-maison-neue (npm) | 2025-12-23T08:34:00Z | 2025-12-23T08:34:00Z |
| mal-2025-192880 | Malicious code in tierlist (npm) | 2025-12-23T08:33:32Z | 2025-12-23T08:33:32Z |
| mal-2025-192879 | Malicious code in tescoutils (npm) | 2025-12-23T08:33:02Z | 2025-12-23T08:33:02Z |
| mal-2025-192878 | Malicious code in teeseest (npm) | 2025-12-23T08:32:50Z | 2025-12-23T08:32:50Z |
| mal-2025-192877 | Malicious code in tdm-react (npm) | 2025-12-23T08:32:44Z | 2025-12-23T08:32:44Z |
| mal-2025-192876 | Malicious code in suntik-tiktok (npm) | 2025-12-23T08:32:05Z | 2025-12-23T08:32:05Z |
| mal-2025-192875 | Malicious code in sturdyfetch9 (npm) | 2025-12-23T08:31:59Z | 2025-12-23T08:31:59Z |
| mal-2025-192874 | Malicious code in sturdyfetch5 (npm) | 2025-12-23T08:31:52Z | 2025-12-23T08:31:52Z |
| mal-2025-192873 | Malicious code in sturdyfetch4 (npm) | 2025-12-23T08:31:51Z | 2025-12-23T08:31:51Z |
| mal-2025-192872 | Malicious code in sturdyfetch3 (npm) | 2025-12-23T08:31:50Z | 2025-12-23T08:31:50Z |
| mal-2025-192871 | Malicious code in sturdyfetch22 (npm) | 2025-12-23T08:31:49Z | 2025-12-23T08:31:49Z |
| mal-2025-192870 | Malicious code in sturdyfetch21 (npm) | 2025-12-23T08:31:48Z | 2025-12-23T08:31:48Z |
| mal-2025-192869 | Malicious code in sturdyfetch19 (npm) | 2025-12-23T08:31:47Z | 2025-12-23T08:31:47Z |
| mal-2025-192868 | Malicious code in sturdyfetch18 (npm) | 2025-12-23T08:31:47Z | 2025-12-23T08:31:47Z |
| mal-2025-192867 | Malicious code in sturdyfetch17 (npm) | 2025-12-23T08:31:46Z | 2025-12-23T08:31:46Z |
| mal-2025-192866 | Malicious code in sturdyfetch15 (npm) | 2025-12-23T08:31:45Z | 2025-12-23T08:31:45Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2268 | Linux Kernel: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2251 | Red Hat OpenShift GitOps: Mehrere Schwachstellen | 2025-10-09T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2247 | Nvidia GPU Display Treiber: Mehrere Schwachstellen | 2025-10-08T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2246 | Linux Kernel: Mehrere Schwachstellen | 2025-10-08T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2231 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2230 | Python (CPython Zipfile Module): Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2229 | Linux Kernel: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2228 | ESRI ArcGIS: Schwachstelle ermöglicht SQL injection | 2025-10-07T22:00:00.000+00:00 | 2025-10-22T22:00:00.000+00:00 |
| wid-sec-w-2025-2227 | Golang Go: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2224 | Keycloak: Mehrere Schwachstellen | 2025-10-07T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2212 | OpenSSH: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-10-06T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2209 | HAProxy und HAProxy ALOHA: Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2205 | QT: Mehrere Schwachstellen | 2025-10-05T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2202 | fetchmail: Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2198 | MediaWiki: Mehrere Schwachstellen | 2025-10-05T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2196 | Redis: Mehrere Schwachstellen | 2025-10-05T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2195 | Oracle E-Business Suite: Schwachstelle ermöglicht Codeausführung | 2025-10-05T22:00:00.000+00:00 | 2025-10-21T22:00:00.000+00:00 |
| wid-sec-w-2025-2194 | Linux Kernel: Mehrere Schwachstellen | 2025-10-05T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2193 | QEMU: Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-12-23T23:00:00.000+00:00 |
| wid-sec-w-2025-2190 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-10-01T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| wid-sec-w-2025-2187 | Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-10-01T22:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2170 | Linux Kernel: Mehrere Schwachstellen | 2025-09-30T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2166 | OpenSSL und LibreSSL: Mehrere Schwachstellen | 2025-09-30T22:00:00.000+00:00 | 2025-12-29T23:00:00.000+00:00 |
| wid-sec-w-2025-2152 | IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service | 2025-09-29T22:00:00.000+00:00 | 2025-11-20T23:00:00.000+00:00 |
| wid-sec-w-2025-2150 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-09-29T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2144 | binutils: Mehrere Schwachstellen | 2025-09-28T22:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2134 | Red Hat Enterprise Linux (Developer Hub): Schwachstelle ermöglicht Denial of Service | 2025-09-25T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2132 | Linux Kernel: Mehrere Schwachstellen | 2025-09-24T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2129 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-09-24T22:00:00.000+00:00 | 2025-12-22T23:00:00.000+00:00 |
| wid-sec-w-2025-2126 | Drupal Module: Mehrere Schwachstellen | 2025-09-24T22:00:00.000+00:00 | 2025-10-29T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-001569 | SSA-001569: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid | 2023-08-08T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-924149 | SSA-924149: Stack Overflow Vulnerability in SiPass Integrated before V2.90.3.8 | 2023-07-11T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-764801 | SSA-764801: File Parsing Vulnerabilities in Tecnomatix Plant Simulation | 2023-07-11T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-561322 | SSA-561322: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3.4 | 2023-07-11T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-313488 | SSA-313488: Multiple Vulnerabilities in SIMATIC CN 4100 before V2.5 | 2023-07-11T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-146325 | SSA-146325: Multiple Vulnerabilities in RUGGEDCOM ROX before V2.16 | 2023-07-11T00:00:00Z | 2023-07-11T00:00:00Z |
| ssa-975766 | SSA-975766: Open Design Alliance Drawings SDK Vulnerability in Solid Edge | 2023-06-13T00:00:00Z | 2023-11-14T00:00:00Z |
| ssa-942865 | SSA-942865: Multiple Vulnerabilities in the Integrated SCALANCE S615 of SINAMICS Medium Voltage Products | 2023-06-13T00:00:00Z | 2023-06-14T00:00:00Z |
| ssa-887249 | SSA-887249: Multiple Vulnerabilities in the Web Interface of SICAM Q200 Devices | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-731916 | SSA-731916: Multiple Vulnerabilities in CPCI85 Firmware of SICAM A8000 Devices | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-538795 | SSA-538795: Multiple File Parsing Vulnerabilities in Teamcenter Visualization and JT2Go | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-508677 | SSA-508677: Use of Obsolete Function Vulnerability in SIMATIC WinCC before V8 | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-482956 | SSA-482956: Information Disclosure Vulnerability in SIMOTION before V5.5 | 2023-06-13T00:00:00Z | 2023-06-13T00:00:00Z |
| ssa-042050 | SSA-042050: Know-How Protection Mechanism Failure in TIA Portal | 2023-06-13T00:00:00Z | 2024-12-10T00:00:00Z |
| ssa-932528 | SSA-932528: Multiple File Parsing Vulnerabilities in Solid Edge | 2023-05-09T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-789345 | SSA-789345: Code Execution Vulnerabilities in Siveillance Video Event and Management Servers | 2023-05-09T00:00:00Z | 2023-05-09T00:00:00Z |
| ssa-555292 | SSA-555292: Security Vulnerabilities Fixed in SIMATIC Cloud Connect 7 V2.1 | 2023-05-09T00:00:00Z | 2023-05-09T00:00:00Z |
| ssa-516174 | SSA-516174: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D | 2023-05-09T00:00:00Z | 2023-10-10T00:00:00Z |
| ssa-325383 | SSA-325383: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1 | 2023-05-09T00:00:00Z | 2023-05-09T00:00:00Z |
| ssa-699404 | SSA-699404: Observable Response Discrepancy in Mendix Forgot Password Module | 2023-04-11T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-632164 | SSA-632164: External Entity Injection Vulnerability in Polarion ALM | 2023-04-11T00:00:00Z | 2023-05-09T00:00:00Z |
| ssa-322980 | SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices | 2023-04-11T00:00:00Z | 2025-11-11T00:00:00Z |
| ssa-851884 | SSA-851884: Authentication Bypass Vulnerability in Mendix SAML Module | 2023-03-14T00:00:00Z | 2023-08-08T00:00:00Z |
| ssa-320629 | SSA-320629: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3 | 2023-03-14T00:00:00Z | 2023-03-14T00:00:00Z |
| ssa-260625 | SSA-260625: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2 | 2023-03-14T00:00:00Z | 2023-03-14T00:00:00Z |
| ssa-686975 | SSA-686975: IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs | 2023-02-14T00:00:00Z | 2025-04-08T00:00:00Z |
| ssa-450613 | SSA-450613: Insyde BIOS Vulnerabilities in RUGGEDCOM APE1808 Product Family | 2023-02-14T00:00:00Z | 2023-09-12T00:00:00Z |
| ssa-997779 | SSA-997779: File Parsing Vulnerability in Solid Edge before V2023 MP1 | 2023-01-10T00:00:00Z | 2023-01-10T00:00:00Z |
| ssa-482757 | SSA-482757: Missing Immutable Root of Trust in S7-1500 CPU devices | 2023-01-10T00:00:00Z | 2025-01-14T00:00:00Z |
| ssa-930100 | SSA-930100: Privilege Escalation Vulnerability in Simcenter STAR-CCM+ | 2022-12-13T00:00:00Z | 2023-07-11T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:21399 | Red Hat Security Advisory: lasso security update | 2025-11-17T00:37:42+00:00 | 2025-11-21T19:31:38+00:00 |
| rhsa-2025:21371 | Red Hat Security Advisory: Red Hat build of Keycloak 26.4.4 Images Security Update | 2025-11-13T19:30:13+00:00 | 2025-11-28T03:35:43+00:00 |
| rhsa-2025:21384 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-11-13T19:03:20+00:00 | 2025-11-26T15:51:11+00:00 |
| rhsa-2025:21382 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-11-13T19:01:04+00:00 | 2025-11-26T15:51:11+00:00 |
| rhsa-2025:21385 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-11-13T18:57:18+00:00 | 2025-11-26T15:51:12+00:00 |
| rhsa-2025:21383 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2025-11-13T18:53:38+00:00 | 2025-11-26T15:51:11+00:00 |
| rhsa-2025:21378 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.19 security, enhancement & bug fix update | 2025-11-13T18:21:41+00:00 | 2025-11-25T16:00:24+00:00 |
| rhsa-2025:21370 | Red Hat Security Advisory: Red Hat build of Keycloak 26.4.4 Security Update | 2025-11-13T17:51:13+00:00 | 2025-11-28T03:35:42+00:00 |
| rhsa-2025:21368 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update | 2025-11-13T17:36:32+00:00 | 2025-11-29T08:07:14+00:00 |
| rhsa-2025:21337 | Red Hat Security Advisory: golang security update | 2025-11-13T15:20:08+00:00 | 2025-11-26T15:51:11+00:00 |
| rhsa-2025:21336 | Red Hat Security Advisory: golang security update | 2025-11-13T15:16:28+00:00 | 2025-11-26T15:51:14+00:00 |
| rhsa-2025:21280 | Red Hat Security Advisory: firefox security update | 2025-11-13T12:37:21+00:00 | 2025-11-21T19:31:34+00:00 |
| rhsa-2025:21281 | Red Hat Security Advisory: firefox security update | 2025-11-13T12:21:37+00:00 | 2025-11-21T19:31:33+00:00 |
| rhsa-2025:21255 | Red Hat Security Advisory: openssl security update | 2025-11-13T11:40:46+00:00 | 2025-11-27T11:38:19+00:00 |
| rhsa-2025:21248 | Red Hat Security Advisory: openssl security update | 2025-11-13T11:15:16+00:00 | 2025-11-25T21:29:20+00:00 |
| rhsa-2025:21232 | Red Hat Security Advisory: container-tools:rhel8 security update | 2025-11-13T10:51:18+00:00 | 2025-11-27T17:37:55+00:00 |
| rhsa-2025:19894 | Red Hat Security Advisory: OpenShift Container Platform 4.12.82 bug fix and security update | 2025-11-13T09:46:03+00:00 | 2025-11-24T21:04:24+00:00 |
| rhsa-2025:21220 | Red Hat Security Advisory: podman security update | 2025-11-13T09:10:41+00:00 | 2025-11-27T17:38:11+00:00 |
| rhsa-2025:19895 | Red Hat Security Advisory: OpenShift Container Platform 4.12.82 bug fix and security update | 2025-11-13T09:09:20+00:00 | 2025-11-21T19:38:57+00:00 |
| rhsa-2025:21174 | Red Hat Security Advisory: openssl security update | 2025-11-12T22:37:55+00:00 | 2025-11-25T21:29:37+00:00 |
| rhsa-2025:21203 | Red Hat Security Advisory: Red Hat Ceph Storage | 2025-11-12T21:27:55+00:00 | 2025-11-28T14:33:56+00:00 |
| rhsa-2025:21140 | Red Hat Security Advisory: idm:DL1 security update | 2025-11-12T18:01:16+00:00 | 2025-11-27T03:24:10+00:00 |
| rhsa-2025:21138 | Red Hat Security Advisory: python-kdcproxy security update | 2025-11-12T16:32:24+00:00 | 2025-11-27T03:24:11+00:00 |
| rhsa-2025:21146 | Red Hat Security Advisory: Cluster Observability Operator 1.3.0 | 2025-11-12T16:21:08+00:00 | 2025-11-21T19:38:58+00:00 |
| rhsa-2025:21139 | Red Hat Security Advisory: python-kdcproxy security update | 2025-11-12T16:20:43+00:00 | 2025-11-27T03:24:12+00:00 |
| rhsa-2025:21142 | Red Hat Security Advisory: python-kdcproxy security update | 2025-11-12T15:26:34+00:00 | 2025-11-27T03:24:02+00:00 |
| rhsa-2025:21141 | Red Hat Security Advisory: python-kdcproxy security update | 2025-11-12T15:26:24+00:00 | 2025-11-27T03:24:02+00:00 |
| rhsa-2025:21136 | Red Hat Security Advisory: kernel-rt security update | 2025-11-12T15:08:24+00:00 | 2025-11-25T21:29:14+00:00 |
| rhsa-2025:21132 | Red Hat Security Advisory: Release of containers for RHOSO 18.0.14 | 2025-11-12T14:09:23+00:00 | 2025-11-26T15:51:10+00:00 |
| rhsa-2025:21128 | Red Hat Security Advisory: kernel-rt security update | 2025-11-12T13:52:24+00:00 | 2025-11-25T15:42:53+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-68266 | bfs: Reconstruct file type when loading from disk | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:31.000Z |
| msrc_cve-2025-68265 | nvme: fix admin request_queue lifetime | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:00.000Z |
| msrc_cve-2025-68264 | ext4: refresh inline data size before write operations | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:57.000Z |
| msrc_cve-2025-68263 | ksmbd: ipc: fix use-after-free in ipc_msg_send_request | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:47.000Z |
| msrc_cve-2025-68261 | ext4: add i_data_sem protection in ext4_destroy_inline_data_nolock() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:23.000Z |
| msrc_cve-2025-68259 | KVM: SVM: Don't skip unrelated instruction if INT3/INTO is replaced | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:10.000Z |
| msrc_cve-2025-68258 | comedi: multiq3: sanitize config options in multiq3_attach() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:30.000Z |
| msrc_cve-2025-68257 | comedi: check device's attached status in compat ioctls | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:26.000Z |
| msrc_cve-2025-68256 | staging: rtl8723bs: fix out-of-bounds read in rtw_get_ie() parser | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:37.000Z |
| msrc_cve-2025-68255 | staging: rtl8723bs: fix stack buffer overflow in OnAssocReq IE parsing | 2025-12-02T00:00:00.000Z | 2025-12-17T01:01:59.000Z |
| msrc_cve-2025-68254 | staging: rtl8723bs: fix out-of-bounds read in OnBeacon ESR IE parsing | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:42.000Z |
| msrc_cve-2025-68239 | binfmt_misc: restore write access before closing files opened by open_exec() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:16.000Z |
| msrc_cve-2025-68237 | mtdchar: fix integer overflow in read/write ioctls | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:53.000Z |
| msrc_cve-2025-68236 | scsi: ufs: ufs-qcom: Fix UFS OCP issue during UFS power down (PC=3) | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:05.000Z |
| msrc_cve-2025-68235 | nouveau/firmware: Add missing kfree() of nvkm_falcon_fw::boot | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:07.000Z |
| msrc_cve-2025-68233 | drm/tegra: Add call to put_pid() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:09.000Z |
| msrc_cve-2025-68231 | mm/mempool: fix poisoning order>0 pages with HIGHMEM | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:02.000Z |
| msrc_cve-2025-68230 | drm/amdgpu: fix gpu page fault after hibernation on PF passthrough | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:52.000Z |
| msrc_cve-2025-68229 | scsi: target: tcm_loop: Fix segfault in tcm_loop_tpg_address_show() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:18.000Z |
| msrc_cve-2025-68227 | mptcp: Fix proto fallback detection with BPF | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:21.000Z |
| msrc_cve-2025-68224 | scsi: core: Fix a regression triggered by scsi_host_busy() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:01:38.000Z |
| msrc_cve-2025-68223 | drm/radeon: delete radeon_fence_process in is_signaled, no deadlock | 2025-12-02T00:00:00.000Z | 2025-12-17T01:02:04.000Z |
| msrc_cve-2025-68222 | pinctrl: s32cc: fix uninitialized memory in s32_pinctrl_desc | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:03.000Z |
| msrc_cve-2025-68220 | net: ethernet: ti: netcp: Standardize knav_dma_open_channel to return NULL on error | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:58.000Z |
| msrc_cve-2025-68219 | cifs: fix memory leak in smb3_fs_context_parse_param error path | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:13.000Z |
| msrc_cve-2025-68217 | Input: pegasus-notetaker - fix potential out-of-bounds access | 2025-12-02T00:00:00.000Z | 2025-12-17T01:05:19.000Z |
| msrc_cve-2025-68214 | timers: Fix NULL function pointer race in timer_shutdown_sync() | 2025-12-02T00:00:00.000Z | 2025-12-17T01:03:33.000Z |
| msrc_cve-2025-68211 | ksm: use range-walk function to jump over holes in scan_get_next_rmap_item | 2025-12-02T00:00:00.000Z | 2025-12-17T01:01:53.000Z |
| msrc_cve-2025-68209 | mlx5: Fix default values in create CQ | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:47.000Z |
| msrc_cve-2025-68206 | netfilter: nft_ct: add seqadj extension for natted connections | 2025-12-02T00:00:00.000Z | 2025-12-17T01:04:31.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-102-01 | Siemens SIMATIC S7-1500 | 2024-04-09T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-24-116-02 | Hitachi Energy MACH SCM (Update A) | 2024-03-26T11:32:43.000000Z | 2025-09-30T11:32:43.000000Z |
| icsa-24-074-05 | Siemens RUGGEDCOM APE1808 | 2024-03-12T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-324-05 | Festo Didactic products | 2023-10-17T06:00:00.000000Z | 2025-10-01T06:00:00.000000Z |
| icsa-23-257-01 | Siemens SIMATIC, SIPLUS Products | 2023-09-12T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-324-04 | Festo MSE6-C2M/D2M/E2M | 2023-09-05T10:00:00.000000Z | 2025-10-01T10:00:00.000000Z |
| icsa-25-343-02 | Festo LX Appliance | 2023-08-29T10:00:00.000000Z | 2025-10-01T10:00:00.000000Z |
| icsa-23-157-02 | Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series (Update C) | 2023-06-06T06:00:00.000000Z | 2025-12-02T07:00:00.000000Z |
| icsa-24-102-08 | Siemens OPC Foundation Local Discovery Server Affecting Siemens Products | 2023-04-11T00:00:00.000000Z | 2025-09-09T00:00:00.000000Z |
| icsa-23-103-06 | Siemens SIPROTEC 5 Devices | 2023-04-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-22-349-11 | Siemens SIPROTEC 5 Devices | 2022-12-13T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-22-349-09 | Siemens OpenSSL 3.0 Affecting Products | 2022-12-13T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-22-333-05 | Mitsubishi Electric FA Engineering Software (Update C) | 2022-12-05T07:00:00.000000Z | 2025-11-25T07:00:00.000000Z |
| icsa-22-195-02 | Siemens SICAM GridEdge | 2022-07-12T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-22-167-08 | Siemens SICAM GridEdge | 2022-06-14T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-22-132-05 | Siemens Industrial PCs and CNC devices | 2022-05-12T00:00:00.000000Z | 2022-05-12T00:00:00.000000Z |
| icsa-22-104-05 | Siemens OpenSSL Vulnerabilities in Industrial Products | 2022-04-14T00:00:00.000000Z | 2022-05-12T00:00:00.000000Z |
| icsa-22-104-04 | Siemens SCALANCE FragAttacks | 2021-07-13T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-20-070-01 | ICSA-20-070-01_Siemens and PKE SiNVR/SiVMS Video Server (Update B) | 2020-03-10T00:00:00.000000Z | 2021-08-10T00:00:00.000000Z |
| icsa-21-068-10 | Siemens SCALANCE and SIMATIC libcurl (Update B) | 2019-04-09T00:00:00.000000Z | 2021-03-09T00:00:00.000000Z |
| icsa-25-294-03 | Siemens SIMATIC S7-1200 CPU V1/V2 Devices | 2011-06-10T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-000020 | +F FS010M vulnerable to OS command injection | 2025-03-18T15:01+09:00 | 2025-03-18T15:01+09:00 |
| jvndb-2025-000017 | hostapd vulnerable to improper processing of RADIUS packets | 2025-03-12T14:19+09:00 | 2025-03-12T14:19+09:00 |
| jvndb-2025-000016 | Multiple vulnerabilities in RemoteView Agent (for Windows) | 2025-03-06T14:27+09:00 | 2025-03-10T15:22+09:00 |
| jvndb-2025-001898 | Multiple vulnerabilities in FutureNet AS series (Industrial Routers) and FA series (Protocol Conversion Machine) | 2025-03-04T14:56+09:00 | 2025-03-04T14:56+09:00 |
| jvndb-2025-001605 | "RoboForm Password Manager" App for Android vulnerable to authentication bypass using an alternate path or channel | 2025-02-20T20:15+09:00 | 2025-02-20T20:15+09:00 |
| jvndb-2025-000014 | Multiple cross-site scripting vulnerabilities in Movable Type | 2025-02-19T16:19+09:00 | 2025-02-19T16:19+09:00 |
| jvndb-2025-000015 | RevoWorks SCVX and RevoWorks Browser vulnerable to incorrect resource transfer between spheres | 2025-02-19T14:51+09:00 | 2025-02-19T14:51+09:00 |
| jvndb-2025-001563 | Out-of-bounds write vulnerability in FUJIFILM Business Innovation Corp. MFPs | 2025-02-18T16:33+09:00 | 2025-02-18T16:33+09:00 |
| jvndb-2025-001562 | Out-of-bounds read vulnerability in OMRON CX-Programmer | 2025-02-18T16:24+09:00 | 2025-02-18T16:24+09:00 |
| jvndb-2025-001548 | Out-of-bounds read vulnerability in Cente middleware | 2025-02-17T18:22+09:00 | 2025-02-17T18:22+09:00 |
| jvndb-2025-000012 | Multiple vulnerabilities in The LuxCal Web Calendar | 2025-02-17T13:43+09:00 | 2025-02-17T13:43+09:00 |
| jvndb-2025-000013 | acmailer CGI and acmailer DB vulnerable to OS command injection | 2025-02-14T16:39+09:00 | 2025-02-14T16:39+09:00 |
| jvndb-2025-000002 | Multiple vulnerabilities in NEC Aterm series (NV25-003) | 2025-02-14T15:48+09:00 | 2025-02-14T15:48+09:00 |
| jvndb-2025-000011 | Multiple vulnerabilities in FileMegane | 2025-02-13T13:39+09:00 | 2025-02-13T13:39+09:00 |
| jvndb-2025-000010 | acmailer vulnerable to cross-site scripting | 2025-02-12T15:05+09:00 | 2025-02-12T15:05+09:00 |
| jvndb-2025-001017 | Multiple vulnerabilities in STEALTHONE D220/D340/D440 | 2025-02-06T18:27+09:00 | 2025-02-06T18:27+09:00 |
| jvndb-2025-001016 | OMRON NJ/NX series vulnerable to path traversal | 2025-02-06T18:27+09:00 | 2025-05-08T17:44+09:00 |
| jvndb-2025-001018 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON NB-Designer | 2025-02-06T18:26+09:00 | 2025-02-06T18:26+09:00 |
| jvndb-2025-000008 | Multiple vulnerabilities in Defense Platform Home Edition | 2025-02-05T14:06+09:00 | 2025-02-05T14:06+09:00 |
| jvndb-2025-000009 | WordPress Plugin "Activity Log WinterLock" vulnerable to cross-site request forgery | 2025-02-04T13:58+09:00 | 2025-02-04T13:58+09:00 |
| jvndb-2025-001244 | Clickjacking Vulnerability in JP1/ServerConductor/Deployment Manager | 2025-01-30T18:19+09:00 | 2025-01-30T18:19+09:00 |
| jvndb-2025-000007 | SXF Common Library vulnerable to improper input data handling | 2025-01-29T14:57+09:00 | 2025-01-29T14:57+09:00 |
| jvndb-2025-001238 | Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers | 2025-01-29T13:41+09:00 | 2025-05-27T16:06+09:00 |
| jvndb-2025-000006 | WordPress Plugin "Simple Image Sizes" vulnerable to cross-site scripting | 2025-01-28T13:44+09:00 | 2025-01-28T13:44+09:00 |
| jvndb-2025-000005 | EXIF Viewer Classic vulnerable to cross-site scripting | 2025-01-27T14:25+09:00 | 2025-01-27T14:25+09:00 |
| jvndb-2025-000004 | Multiple vulnerabilities in I-O DATA router UD-LT2 | 2025-01-22T13:55+09:00 | 2025-02-20T15:55+09:00 |
| jvndb-2025-000003 | FortiWeb vulnerable to SQL injection | 2025-01-21T15:59+09:00 | 2025-01-21T15:59+09:00 |
| jvndb-2025-001027 | Linux Ratfor vulnerable to stack-based buffer overflow | 2025-01-16T13:27+09:00 | 2025-01-16T13:27+09:00 |
| jvndb-2025-000001 | PLANEX COMMUNICATIONS MZK-DP300N vulnerable to cross-site scripting | 2025-01-08T17:08+09:00 | 2025-01-08T17:08+09:00 |
| jvndb-2024-015471 | Trend Micro Deep Security 20.0 Agent (for Windows) vulnerable to uncontrolled search path element | 2024-12-25T11:28+09:00 | 2024-12-25T11:28+09:00 |
| ID | Description | Updated |
|---|