Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-39698 |
8.8 (3.1)
|
io_uring/futex: ensure io_futex_wait() cleans up prope… |
Linux |
Linux |
2025-09-05T17:21:04.360Z | 2026-02-26T17:49:11.880Z |
| CVE-2023-31322 |
8.7 (3.1)
|
Type confusion in the ASP could allow an attacker… |
AMD |
AMD Radeon™ RX 7000 Series Graphics Products |
2025-09-06T16:32:40.105Z | 2026-02-26T17:49:11.064Z |
| CVE-2025-53724 |
7.8 (3.1)
|
Windows Push Notifications Apps Elevation of Privilege… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:28.394Z | 2026-02-26T17:49:10.275Z |
| CVE-2025-53723 |
7.8 (3.1)
|
Windows Hyper-V Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:27.825Z | 2026-02-26T17:49:10.769Z |
| CVE-2024-36326 |
8.4 (3.1)
|
Missing authorization in AMD RomArmor could allow… |
AMD |
AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics |
2025-09-06T17:25:46.065Z | 2026-02-26T17:49:10.017Z |
| CVE-2024-21947 |
7.5 (3.1)
|
Improper input validation in the system managemen… |
AMD |
AMD Ryzen™ Threadripper™ 3000 Processors |
2025-09-06T17:10:47.951Z | 2026-02-26T17:49:10.599Z |
| CVE-2023-31325 |
7.2 (3.1)
|
Improper isolation of shared resources on System-… |
AMD |
AMD Ryzen™ 8000 Series Desktop Processors |
2025-09-06T16:42:22.866Z | 2026-02-26T17:49:10.924Z |
| CVE-2025-53726 |
7.8 (3.1)
|
Windows Push Notifications Apps Elevation of Privilege… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:29.493Z | 2026-02-26T17:49:09.473Z |
| CVE-2025-53725 |
7.8 (3.1)
|
Windows Push Notifications Apps Elevation of Privilege… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:28.969Z | 2026-02-26T17:49:09.854Z |
| CVE-2024-36354 |
7.5 (3.1)
|
Improper input validation for DIMM serial presenc… |
AMD |
AMD Ryzen™ Threadripper™ 3000 Processors |
2025-09-06T18:06:43.084Z | 2026-02-26T17:49:09.189Z |
| CVE-2024-36342 |
8.8 (3.1)
|
Improper input validation in the GPU driver could… |
AMD |
AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics |
2025-09-06T17:42:00.232Z | 2026-02-26T17:49:09.671Z |
| CVE-2025-53731 |
8.4 (3.1)
|
Microsoft Office Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-08-12T17:10:31.255Z | 2026-02-26T17:49:08.501Z |
| CVE-2025-47954 |
8.8 (3.1)
|
Microsoft SQL Server Elevation of Privilege Vulnerability |
Microsoft |
Microsoft SQL Server 2022 (CU 20) |
2025-08-12T17:10:30.610Z | 2026-02-26T17:49:08.833Z |
| CVE-2025-43722 |
6.7 (3.1)
|
Dell PowerScale OneFS, versions prior to 9.12.0.0… |
Dell |
PowerScale OneFS |
2025-09-08T18:43:50.348Z | 2026-02-26T17:49:08.071Z |
| CVE-2025-3212 |
5.3 (3.1)
|
Mali GPU Kernel Driver allows access to already freed memory |
Arm Ltd |
Bifrost GPU Kernel Driver |
2025-09-08T12:53:44.984Z | 2026-02-26T17:49:08.682Z |
| CVE-2025-0032 |
7.2 (3.1)
|
Improper cleanup in AMD CPU microcode patch loadi… |
AMD |
AMD EPYC™ 9005 Series Processors |
2025-09-06T18:34:33.606Z | 2026-02-26T17:49:08.978Z |
| CVE-2025-53737 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-08-12T17:10:34.870Z | 2026-02-26T17:49:07.095Z |
| CVE-2025-53735 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-08-12T17:10:33.644Z | 2026-02-26T17:49:07.573Z |
| CVE-2025-53732 |
7.8 (3.1)
|
Microsoft Office Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office for Android |
2025-08-12T17:10:31.822Z | 2026-02-26T17:49:07.872Z |
| CVE-2025-42914 |
3.1 (3.1)
|
Missing Authorization check in SAP HCM (My Timesheet F… |
SAP_SE |
SAP HCM (My Timesheet Fiori 2.0 application) |
2025-09-09T02:06:24.347Z | 2026-02-26T17:49:07.244Z |
| CVE-2025-42913 |
3.1 (3.1)
|
Missing Authorization check in SAP HCM (My Timesheet F… |
SAP_SE |
SAP HCM (My Timesheet Fiori 2.0 application) |
2025-09-09T02:06:16.378Z | 2026-02-26T17:49:07.410Z |
| CVE-2025-42912 |
6.5 (3.1)
|
Missing Authorization check in SAP HCM (My Timesheet F… |
SAP_SE |
SAP HCM (My Timesheet Fiori 2.0 application) |
2025-09-09T02:06:08.163Z | 2026-02-26T17:49:07.724Z |
| CVE-2025-53778 |
8.8 (3.1)
|
Windows NTLM Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:39.899Z | 2026-02-26T17:49:06.099Z |
| CVE-2025-53739 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-08-12T17:10:36.063Z | 2026-02-26T17:49:06.798Z |
| CVE-2025-50155 |
7.8 (3.1)
|
Windows Push Notifications Apps Elevation of Privilege… |
Microsoft |
Windows 10 Version 1507 |
2025-08-12T17:10:39.411Z | 2026-02-26T17:49:06.489Z |
| CVE-2025-42933 |
8.8 (3.1)
|
Insecure Storage of Sensitive Information in SAP Busin… |
SAP_SE |
SAP Business One (SLD) |
2025-09-09T02:11:26.232Z | 2026-02-26T17:49:06.324Z |
| CVE-2025-42922 |
9.9 (3.1)
|
Insecure File Operations vulnerability in SAP NetWeave… |
SAP_SE |
SAP NetWeaver AS Java (Deploy Web Service) |
2025-09-09T02:09:38.727Z | 2026-02-26T17:49:06.643Z |
| CVE-2025-42917 |
6.5 (3.1)
|
Missing Authorization check in SAP HCM (Approve Timesh… |
SAP_SE |
SAP HCM (Approve Timesheets Fiori 2.0 application) |
2025-09-09T02:09:10.768Z | 2026-02-26T17:49:06.939Z |
| CVE-2025-9951 |
7.2 (4.0)
|
Remote code execution via Heap Buffer Overflow in FFmp… |
FFmpeg |
FFmpeg |
2025-09-09T13:54:08.497Z | 2026-02-26T17:49:05.408Z |
| CVE-2025-53788 |
7 (3.1)
|
Windows Subsystem for Linux (WSL2) Kernel Elevation of… |
Microsoft |
Windows Subsystem for Linux (WSL2) |
2025-08-12T17:10:42.331Z | 2026-02-26T17:49:05.218Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-11426 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
projectworlds Advanced Library Management System edit_… |
projectworlds |
Advanced Library Management System |
2025-10-08T03:02:05.413Z | 2026-02-24T06:51:02.439Z |
| CVE-2025-11423 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
Tenda CH22 SafeEmailFilter formSafeEmailFilter memory … |
Tenda |
CH22 |
2025-10-08T02:02:06.119Z | 2026-02-24T06:50:37.437Z |
| CVE-2025-11416 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
PHPGurukul Beauty Parlour Management System invoices.p… |
PHPGurukul |
Beauty Parlour Management System |
2025-10-07T23:02:10.983Z | 2026-02-24T06:49:52.910Z |
| CVE-2025-11413 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
GNU Binutils Linker elflink.c elf_link_add_object_symb… |
GNU |
Binutils |
2025-10-07T22:02:12.368Z | 2026-02-24T06:49:14.455Z |
| CVE-2025-11390 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
PHPGurukul Cyber Cafe Management System POST Parameter… |
PHPGurukul |
Cyber Cafe Management System |
2025-10-07T12:02:06.552Z | 2026-02-24T06:48:42.283Z |
| CVE-2025-11389 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC15 saveAutoQos stack-based overflow |
Tenda |
AC15 |
2025-10-07T11:32:07.151Z | 2026-02-24T06:48:28.051Z |
| CVE-2025-11350 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System b… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-07T04:02:06.416Z | 2026-02-24T06:47:03.230Z |
| CVE-2025-11348 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System i… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-07T03:02:06.465Z | 2026-02-24T06:46:38.159Z |
| CVE-2025-11334 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Online Apartment Visitor Management System v… |
Campcodes |
Online Apartment Visitor Management System |
2025-10-06T11:32:06.784Z | 2026-02-24T06:45:50.648Z |
| CVE-2025-11332 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
CmsEasy URL view.php cross site scripting |
n/a |
CmsEasy |
2025-10-06T10:32:05.897Z | 2026-02-24T06:45:36.543Z |
| CVE-2025-11326 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC18 WifiMacFilterSet stack-based overflow |
Tenda |
AC18 |
2025-10-06T07:32:07.259Z | 2026-02-24T06:44:41.452Z |
| CVE-2025-11325 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Tenda AC18 fast_setting_pppoe_set stack-based overflow |
Tenda |
AC18 |
2025-10-06T07:02:07.176Z | 2026-02-24T06:44:27.873Z |
| CVE-2025-11303 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 mp command injection |
Belkin |
F9K1015 |
2025-10-05T20:32:05.809Z | 2026-02-24T06:43:43.623Z |
| CVE-2025-11301 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formWlanSetupWPS buffer overflow |
Belkin |
F9K1015 |
2025-10-05T19:32:05.383Z | 2026-02-24T06:43:18.442Z |
| CVE-2025-11300 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formWlanMP buffer overflow |
Belkin |
F9K1015 |
2025-10-05T19:02:05.199Z | 2026-02-24T06:43:06.913Z |
| CVE-2025-11298 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 formSetWanStatic command injection |
Belkin |
F9K1015 |
2025-10-05T18:02:05.803Z | 2026-02-24T06:42:41.799Z |
| CVE-2025-11297 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Belkin F9K1015 formSetLanguage buffer overflow |
Belkin |
F9K1015 |
2025-10-05T17:32:06.380Z | 2026-02-24T06:42:29.131Z |
| CVE-2025-11292 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Belkin F9K1015 formBSSetSitesurvey command injection |
Belkin |
F9K1015 |
2025-10-05T14:02:05.574Z | 2026-02-24T06:41:24.365Z |
| CVE-2025-11289 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
westboy CicadasCMS Template Management TemplateFileSer… |
westboy |
CicadasCMS |
2025-10-05T10:32:05.111Z | 2026-02-24T06:40:59.852Z |
| CVE-2025-11288 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
CRMEB GET Parameter product sql injection |
n/a |
CRMEB |
2025-10-05T07:32:06.514Z | 2026-02-24T06:40:48.359Z |
| CVE-2025-11277 |
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Open Asset Import Library Assimp Q3DLoader.cpp InternR… |
Open Asset Import Library |
Assimp |
2025-10-05T01:32:07.068Z | 2026-02-24T06:40:34.974Z |
| CVE-2025-68675 |
N/A
|
Apache Airflow: proxy credentials for various provider… |
Apache Software Foundation |
Apache Airflow |
2026-01-16T10:23:25.946Z | 2026-02-24T05:48:05.537Z |
| CVE-2025-15008 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Tenda WH450 HTTP Request L7Port stack-based overflow |
Tenda |
WH450 |
2025-12-22T02:02:07.391Z | 2026-02-24T06:02:16.445Z |
| CVE-2025-15006 |
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
|
Tenda WH450 HTTP Request CheckTools stack-based overflow |
Tenda |
WH450 |
2025-12-22T01:02:06.922Z | 2026-02-24T06:01:47.799Z |
| CVE-2025-15005 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
CouchCMS reCAPTCHA config.example.php hard-coded key |
n/a |
CouchCMS |
2025-12-22T00:32:07.346Z | 2026-02-24T06:01:34.995Z |
| CVE-2025-15003 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
SeaCMS admin_video.php sql injection |
n/a |
SeaCMS |
2025-12-21T23:32:07.728Z | 2026-02-24T06:01:02.597Z |
| CVE-2025-14991 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
Campcodes Complete Online Beauty Parlor Management Sys… |
Campcodes |
Complete Online Beauty Parlor Management System |
2025-12-21T03:32:08.281Z | 2026-02-24T05:59:34.876Z |
| CVE-2025-14990 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Campcodes Complete Online Beauty Parlor Management Sys… |
Campcodes |
Complete Online Beauty Parlor Management System |
2025-12-21T03:02:06.319Z | 2026-02-24T05:59:21.928Z |
| CVE-2025-14968 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
code-projects Simple Stock System update.php sql injection |
code-projects |
Simple Stock System |
2025-12-19T20:02:06.387Z | 2026-02-24T05:58:57.185Z |
| CVE-2025-14966 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
FastAdmin Backend Controller Backend.php selectpage sq… |
n/a |
FastAdmin |
2025-12-19T19:32:08.599Z | 2026-02-24T05:58:44.319Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-11332 | A vulnerability was determined in CmsEasy up to 7.7.7. This affects an unknown function in the libr… | 2025-10-06T11:15:32.670 | 2026-02-24T07:16:27.287 |
| fkie_cve-2025-11326 | A weakness has been identified in Tenda AC18 15.03.05.19(6318). This affects an unknown part of the… | 2025-10-06T08:15:32.120 | 2026-02-24T07:16:26.363 |
| fkie_cve-2025-11325 | A security flaw has been discovered in Tenda AC18 15.03.05.19(6318). Affected by this issue is some… | 2025-10-06T07:15:33.747 | 2026-02-24T07:16:26.120 |
| fkie_cve-2025-11303 | A vulnerability was detected in Belkin F9K1015 1.00.10. Affected is an unknown function of the file… | 2025-10-05T21:15:31.693 | 2026-02-24T07:16:25.387 |
| fkie_cve-2025-11301 | A weakness has been identified in Belkin F9K1015 1.00.10. This affects an unknown function of the f… | 2025-10-05T20:15:31.430 | 2026-02-24T07:16:24.983 |
| fkie_cve-2025-11300 | A security flaw has been discovered in Belkin F9K1015 1.00.10. The impacted element is an unknown f… | 2025-10-05T19:16:00.550 | 2026-02-24T07:16:24.783 |
| fkie_cve-2025-11298 | A vulnerability was determined in Belkin F9K1015 1.00.10. Impacted is an unknown function of the fi… | 2025-10-05T18:15:32.367 | 2026-02-24T07:16:24.373 |
| fkie_cve-2025-11297 | A vulnerability was found in Belkin F9K1015 1.00.10. This issue affects some unknown processing of … | 2025-10-05T18:15:32.140 | 2026-02-24T07:16:24.167 |
| fkie_cve-2025-11292 | A weakness has been identified in Belkin F9K1015 1.00.10. Affected is an unknown function of the fi… | 2025-10-05T14:15:31.963 | 2026-02-24T07:16:23.167 |
| fkie_cve-2025-11289 | A vulnerability was determined in westboy CicadasCMS up to 2431154dac8d0735e04f1fd2a3c3556668fc8dab… | 2025-10-05T11:16:02.210 | 2026-02-24T07:16:22.730 |
| fkie_cve-2025-11288 | A security flaw has been discovered in CRMEB up to 5.6. This issue affects some unknown processing … | 2025-10-05T08:15:31.143 | 2026-02-24T07:16:22.483 |
| fkie_cve-2025-11277 | A weakness has been identified in Open Asset Import Library Assimp 6.0.2. This affects the function… | 2025-10-05T02:15:37.470 | 2026-02-24T07:16:22.227 |
| fkie_cve-2025-68675 | In Apache Airflow versions before 3.1.6, and 2.11.1 the proxies and proxy fields within a Connectio… | 2026-01-16T11:16:03.913 | 2026-02-24T06:16:35.033 |
| fkie_cve-2025-15008 | A vulnerability was detected in Tenda WH450 1.0.0.18. This affects an unknown part of the file /gof… | 2025-12-22T03:15:47.077 | 2026-02-24T06:16:34.027 |
| fkie_cve-2025-15006 | A weakness has been identified in Tenda WH450 1.0.0.18. Affected by this vulnerability is an unknow… | 2025-12-22T02:16:01.343 | 2026-02-24T06:16:33.677 |
| fkie_cve-2025-15005 | A security flaw has been discovered in CouchCMS up to 2.4. Affected is an unknown function of the f… | 2025-12-22T01:16:06.167 | 2026-02-24T06:16:33.497 |
| fkie_cve-2025-15003 | A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the … | 2025-12-22T00:15:49.923 | 2026-02-24T06:16:33.150 |
| fkie_cve-2025-14991 | A weakness has been identified in Campcodes Complete Online Beauty Parlor Management System 1.0. Th… | 2025-12-21T04:16:04.897 | 2026-02-24T06:16:32.250 |
| fkie_cve-2025-14990 | A security flaw has been discovered in Campcodes Complete Online Beauty Parlor Management System 1.… | 2025-12-21T04:16:04.660 | 2026-02-24T06:16:32.070 |
| fkie_cve-2025-14968 | A security flaw has been discovered in code-projects Simple Stock System 1.0. Affected by this issu… | 2025-12-19T20:15:55.040 | 2026-02-24T06:16:31.713 |
| fkie_cve-2025-14966 | A vulnerability was determined in FastAdmin up to 1.7.0.20250506. Affected is the function selectpa… | 2025-12-19T20:15:50.363 | 2026-02-24T06:16:31.150 |
| fkie_cve-2025-14962 | A flaw has been found in code-projects Simple Stock System 1.0. The impacted element is an unknown … | 2025-12-19T19:15:50.017 | 2026-02-24T06:16:30.737 |
| fkie_cve-2025-14959 | A weakness has been identified in code-projects Simple Stock System 1.0. This issue affects some un… | 2025-12-19T18:15:48.580 | 2026-02-24T06:16:30.547 |
| fkie_cve-2025-14957 | A vulnerability was identified in WebAssembly Binaryen up to 125. This affects the function IRBuild… | 2025-12-19T17:15:51.657 | 2026-02-24T06:16:30.357 |
| fkie_cve-2025-14956 | A vulnerability was determined in WebAssembly Binaryen up to 125. Affected by this issue is the fun… | 2025-12-19T17:15:51.470 | 2026-02-24T06:16:30.163 |
| fkie_cve-2025-14955 | A vulnerability was found in Open5GS up to 2.7.5. Affected by this vulnerability is the function og… | 2025-12-19T17:15:51.270 | 2026-02-24T06:16:29.957 |
| fkie_cve-2025-14954 | A vulnerability has been found in Open5GS up to 2.7.6. Affected is the function ogs_pfcp_pdr_find_o… | 2025-12-19T16:15:55.050 | 2026-02-24T06:16:29.760 |
| fkie_cve-2025-14953 | A flaw has been found in Open5GS up to 2.7.5. This impacts the function ogs_pfcp_handle_create_pdr … | 2025-12-19T16:15:54.863 | 2026-02-24T06:16:29.557 |
| fkie_cve-2025-14952 | A vulnerability was detected in Campcodes Supplier Management System 1.0. This affects an unknown f… | 2025-12-19T15:15:55.657 | 2026-02-24T06:16:29.370 |
| fkie_cve-2025-14950 | A weakness has been identified in code-projects Scholars Tracking System 1.0. The affected element … | 2025-12-19T14:15:50.583 | 2026-02-24T06:16:29.007 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-9m78-cmhg-58g5 |
7.5 (3.1)
|
The Library Management System plugin for WordPress is vulnerable to SQL Injection via the 'bid' par… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-8h78-f59f-xx74 |
5.3 (3.1)
|
The Checkout Field Manager (Checkout Manager) for WooCommerce plugin for WordPress is vulnerable to… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-87q3-cqqr-mvcg |
6.5 (3.1)
|
The Two Factor (2FA) Authentication via Email plugin for WordPress is vulnerable to Two-Factor Auth… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-7vx9-jr5p-9hxh |
6.4 (3.1)
|
The s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-7pmr-78vh-45xj |
4.3 (3.1)
|
The Advanced Ads – Ad Manager & AdSense plugin for WordPress is vulnerable to authorization bypass … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-74jr-2q35-vxqh |
9.8 (3.1)
|
The Buyent Classified plugin for WordPress (bundled with Buyent theme) is vulnerable to privilege e… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-6vhh-w73r-gvr2 |
8.8 (3.1)
|
The Tablesome Table – Contact Form DB – WPForms, CF7, Gravity, Forminator, Fluent plugin for WordPr… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-6rq3-qg6r-q3cx |
5.3 (3.1)
|
The Web Accessibility by accessiBe plugin for WordPress is vulnerable to Sensitive Information Expo… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-6jgj-qvw4-gcxf |
6.1 (3.1)
|
The Aruba HiSpeed Cache plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via th… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-68gf-3qqh-xc9r |
5.3 (3.1)
|
The Breeze - WordPress Cache Plugin plugin for WordPress is vulnerable to unauthorized cache cleari… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-67hm-gm63-c6j6 |
5.3 (3.1)
|
The Razorpay for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of dat… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-5fjp-9gjr-r4p2 |
4.3 (3.1)
|
The ACF Photo Gallery Field plugin for WordPress is vulnerable to unauthorized modification of data… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-5f62-jgp5-v73r |
6.1 (3.1)
|
The Easy SVG Support plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG file… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-424x-j3vx-fpm5 |
4.3 (3.1)
|
The Mesmerize Companion plugin for WordPress is vulnerable to unauthorized access and modification … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-3r7x-8cp4-q7hx |
4.3 (3.1)
|
The Country Blocker for AdSense plugin for WordPress is vulnerable to Cross-Site Request Forgery in… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-36c8-8hrq-7r5x |
8.8 (3.1)
|
The WP AUDIO GALLERY plugin for WordPress is vulnerable to Unauthorized Arbitrary File Read in all … | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-2prm-vrmg-5674 |
4.3 (3.1)
|
The Remove Post Type Slug plugin for WordPress is vulnerable to Cross-Site Request Forgery in all v… | 2026-02-19T18:31:49Z | 2026-02-19T18:31:49Z |
| ghsa-4g6v-jhwq-9xjj |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome prior to 145.0.7632.109 allowed a remote attacker t… | 2026-02-19T00:30:30Z | 2026-02-19T18:31:48Z |
| ghsa-r3f7-9rj4-j5fm |
|
In the Linux kernel, the following vulnerability has been resolved: mptcp: fix race in mptcp_pm_nl… | 2026-02-14T18:30:15Z | 2026-02-19T18:31:43Z |
| ghsa-mmqq-p5mv-jc88 |
5.6 (3.1)
6.3 (4.0)
|
A third-party NAT traversal module fails to validate SSL/TLS certificates when connecting to the si… | 2026-02-03T03:30:28Z | 2026-02-19T18:31:43Z |
| ghsa-jf4c-6xg3-hjc6 |
4.9 (3.1)
6.9 (4.0)
|
In Quick.Cart user passwords are stored in plaintext form. An attacker with high privileges can dis… | 2026-02-05T12:30:26Z | 2026-02-19T18:31:43Z |
| ghsa-h85p-pj9x-mcrr |
5.9 (3.1)
8.9 (4.0)
|
The API communication component fails to validate the SSL/TLS certificate when sending HTTPS reques… | 2026-02-03T03:30:27Z | 2026-02-19T18:31:43Z |
| ghsa-fm67-x2fw-2g76 |
9.8 (3.1)
9.3 (4.0)
|
Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with p… | 2026-01-27T09:30:30Z | 2026-02-19T18:31:43Z |
| ghsa-78vp-42ph-7f4v |
5.9 (3.1)
8.9 (4.0)
|
The DDNS update function in ADM fails to properly validate the hostname of the DDNS server's TLS/SS… | 2026-02-03T03:30:27Z | 2026-02-19T18:31:43Z |
| ghsa-75g2-xj79-xvcw |
9.8 (3.1)
9.5 (4.0)
|
When a specific function is enabled while joining a AD Domain from ADM, an improper input parameter… | 2026-02-03T06:31:05Z | 2026-02-19T18:31:43Z |
| ghsa-53xr-2xx3-73wm |
3.7 (3.1)
6.3 (4.0)
|
The DDNS function uses an insecure HTTP connection or fails to validate the SSL/TLS certificate whe… | 2026-02-03T03:30:27Z | 2026-02-19T18:31:43Z |
| ghsa-4rhr-9xj2-x9gx |
|
In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb_pmd_sh… | 2026-02-04T18:30:44Z | 2026-02-19T18:31:43Z |
| ghsa-3qgq-r69m-f2f7 |
9.3 (4.0)
|
Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with p… | 2026-01-27T09:30:30Z | 2026-02-19T18:31:43Z |
| ghsa-xrr8-p4pf-hfwr |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the return … | 2025-04-16T15:34:39Z | 2026-02-19T18:31:42Z |
| ghsa-w4x2-878r-xjgp |
5.5 (3.1)
|
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix accessing fre… | 2025-05-01T15:31:41Z | 2026-02-19T18:31:42Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2014-36 |
|
Cross-site scripting (XSS) vulnerability in python_scripts.py in Plone before 4.2.3 and 4… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.835907Z |
| pysec-2014-35 |
|
gtbn.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote authenticated users wit… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.732595Z |
| pysec-2014-34 |
|
uid_catalog.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to obt… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.620104Z |
| pysec-2014-33 |
|
z3c.form, as used in Plone before 4.2.3 and 4.3 before beta 1, allows remote attackers to… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.513262Z |
| pysec-2014-32 |
|
Cross-site scripting (XSS) vulnerability in kssdevel.py in Plone before 4.2.3 and 4.3 bef… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.407022Z |
| pysec-2014-31 |
|
The App.Undo.UndoSupport.get_request_var_or_attr function in Zope before 2.12.21 and 3.13… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.299631Z |
| pysec-2014-30 |
|
python_scripts.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers to … | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.194034Z |
| pysec-2014-29 |
|
The sandbox whitelisting function (allowmodule.py) in Plone before 4.2.3 and 4.3 before b… | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:29.087946Z |
| pysec-2014-27 |
|
registerConfiglet.py in Plone before 4.2.3 and 4.3 before beta 1 allows remote attackers … | plone | 2014-09-30T14:55:00Z | 2021-09-01T08:44:28.919312Z |
| pysec-2018-67 |
|
In the marshmallow library before 2.15.1 and 3.x before 3.0.0b9 for Python, the schema "o… | marshmallow | 2018-09-18T17:29:00Z | 2021-09-01T08:44:17.759030Z |
| pysec-2016-2 |
|
Cross-site scripting (XSS) vulnerability in the dismissChangeRelatedObjectPopup function … | django | 2016-08-05T15:59:00Z | 2021-09-01T08:35:44.164135Z |
| pysec-2015-9 |
|
The utils.http.is_safe_url function in Django before 1.4.20, 1.5.x, 1.6.x before 1.6.11, … | django | 2015-03-25T14:59:00Z | 2021-09-01T08:35:43.249549Z |
| pysec-2015-18 |
|
The utils.html.strip_tags function in Django 1.6.x before 1.6.11, 1.7.x before 1.7.7, and… | django | 2015-03-25T14:59:00Z | 2021-09-01T08:35:41.398239Z |
| pysec-2015-11 |
|
The get_format function in utils/formats.py in Django before 1.7.x before 1.7.11, 1.8.x b… | django | 2015-12-07T20:59:00Z | 2021-09-01T08:35:41.190803Z |
| pysec-2020-139 |
|
In Tensorflow before version 2.4.0, when the `boxes` argument of `tf.image.crop_and_resiz… | tensorflow | 2020-10-21T21:15:00Z | 2021-09-01T08:19:35.637564Z |
| pysec-2020-138 |
|
In Tensorflow before version 2.4.0, an attacker can pass an invalid `axis` value to `tf.q… | tensorflow | 2020-10-21T21:15:00Z | 2021-09-01T08:19:35.574576Z |
| pysec-2020-124 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.344299Z |
| pysec-2020-123 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` implementation does not… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.281926Z |
| pysec-2020-122 |
|
In Tensorflow before version 2.3.1, the `RaggedCountSparseOutput` does not validate that … | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.217572Z |
| pysec-2020-121 |
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.154302Z |
| pysec-2020-120 |
|
In Tensorflow before version 2.3.1, the `SparseCountSparseOutput` implementation does not… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.096342Z |
| pysec-2020-119 |
|
In Tensorflow version 2.3.0, the `SparseCountSparseOutput` and `RaggedCountSparseOutput` … | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:33.034745Z |
| pysec-2020-116 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, the implementation of `dlpack.to_dlpack` c… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:32.562362Z |
| pysec-2020-115 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes a list of strings to `dlp… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:32.462320Z |
| pysec-2020-114 |
|
In Tensorflow before versions 2.2.1 and 2.3.1, if a user passes an invalid argument to `d… | tensorflow | 2020-09-25T19:15:00Z | 2021-09-01T08:19:32.360913Z |
| pysec-2021-17 |
|
Multiple path traversal vulnerabilities exist in smbserver.py in Impacket through 0.9.22.… | impacket | 2021-05-05T11:15:00Z | 2021-09-01T08:19:03.897095Z |
| pysec-2014-20 |
|
The django.util.http.is_safe_url function in Django 1.4 before 1.4.13, 1.5 before 1.5.8, … | django | 2014-05-16T15:55:00Z | 2021-09-01T08:18:55.675902Z |
| pysec-2014-19 |
|
Django 1.4 before 1.4.13, 1.5 before 1.5.8, 1.6 before 1.6.5, and 1.7 before 1.7b4 does n… | django | 2014-05-16T15:55:00Z | 2021-09-01T08:18:55.376993Z |
| pysec-2020-26 |
|
Synopsys hub-rest-api-python (aka blackduck on PyPI) version 0.0.25 - 0.0.52 does not val… | blackduck | 2020-11-06T14:15:00Z | 2021-09-01T06:49:41.380049Z |
| pysec-2021-315 |
|
nbgitpuller is a Jupyter server extension to sync a git repository one-way to a local pat… | nbgitpuller | 2021-08-25T18:15:00Z | 2021-08-30T18:40:30.558311Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-32464 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:29.047703Z |
| gsd-2024-32463 | phlex is an open source framework for building object-oriented views in Ruby. There is a … | 2024-04-13T05:02:29.026298Z |
| gsd-2024-32462 | Flatpak is a system for building, distributing, and running sandboxed desktop application… | 2024-04-13T05:02:29.046935Z |
| gsd-2024-32461 | LibreNMS is an open-source, PHP/MySQL/SNMP-based network monitoring system. A SQL injecti… | 2024-04-13T05:02:29.114351Z |
| gsd-2024-32460 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clie… | 2024-04-13T05:02:29.149963Z |
| gsd-2024-32459 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients an… | 2024-04-13T05:02:29.042567Z |
| gsd-2024-32458 | FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients th… | 2024-04-13T05:02:29.137782Z |
| gsd-2024-32457 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-13T05:02:29.034804Z |
| gsd-2024-32456 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-13T05:02:29.028431Z |
| gsd-2024-32455 | Missing Authorization vulnerability in Very Good Plugins Fatal Error Notify.This issue af… | 2024-04-13T05:02:29.134269Z |
| gsd-2024-32454 | Server-Side Request Forgery (SSRF) vulnerability in Wappointment Appointment Bookings for… | 2024-04-13T05:02:29.108037Z |
| gsd-2024-32453 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-13T05:02:29.086234Z |
| gsd-2024-32452 | Cross-Site Request Forgery (CSRF) vulnerability in WP EasyCart.This issue affects WP Easy… | 2024-04-13T05:02:29.096017Z |
| gsd-2024-32451 | Cross-Site Request Forgery (CSRF) vulnerability in wpWax Legal Pages.This issue affects L… | 2024-04-13T05:02:29.123557Z |
| gsd-2024-32450 | Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team WpTravelly.This issue … | 2024-04-13T05:02:29.062938Z |
| gsd-2024-32449 | Cross-Site Request Forgery (CSRF) vulnerability in MagniGenie RestroPress.This issue affe… | 2024-04-13T05:02:29.103783Z |
| gsd-2024-32448 | Cross-Site Request Forgery (CSRF) vulnerability in VideoYield.Com Ads.Txt Admin.This issu… | 2024-04-13T05:02:29.077038Z |
| gsd-2024-32447 | Cross-Site Request Forgery (CSRF) vulnerability in AWP Classifieds Team AWP Classifieds.T… | 2024-04-13T05:02:29.139862Z |
| gsd-2024-32446 | Cross-Site Request Forgery (CSRF) vulnerability in WP Swings Wallet System for WooCommerc… | 2024-04-13T05:02:29.080489Z |
| gsd-2024-32445 | Cross-Site Request Forgery (CSRF) vulnerability in Saleswonder Team WebinarIgnition.This … | 2024-04-13T05:02:29.077828Z |
| gsd-2024-32444 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-13T05:02:29.138782Z |
| gsd-2024-32443 | Cross-Site Request Forgery (CSRF) vulnerability in IP2Location Download IP2Location Count… | 2024-04-13T05:02:29.028110Z |
| gsd-2024-32442 | Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.This issue affects Zoho… | 2024-04-13T05:02:29.120672Z |
| gsd-2024-32441 | Cross-Site Request Forgery (CSRF) vulnerability in Zoho Campaigns.This issue affects Zoho… | 2024-04-13T05:02:29.033171Z |
| gsd-2024-32440 | Cross-Site Request Forgery (CSRF) vulnerability in Thomas Belser Asgaros Forum.This issue… | 2024-04-13T05:02:29.078424Z |
| gsd-2024-32439 | Cross-Site Request Forgery (CSRF) vulnerability in SwitchWP WP Client Reports.This issue … | 2024-04-13T05:02:29.079688Z |
| gsd-2024-32438 | Cross-Site Request Forgery (CSRF) vulnerability in cleverplugins.Com SEO Booster.This iss… | 2024-04-13T05:02:29.047512Z |
| gsd-2024-32437 | Cross-Site Request Forgery (CSRF) vulnerability in impleCode eCommerce Product Catalog.Th… | 2024-04-13T05:02:29.080680Z |
| gsd-2024-32436 | Cross-Site Request Forgery (CSRF) vulnerability in Codemenschen Gift Vouchers.This issue … | 2024-04-13T05:02:29.049395Z |
| gsd-2024-32435 | Cross-Site Request Forgery (CSRF) vulnerability in Affieasy Team AffiEasy.This issue affe… | 2024-04-13T05:02:29.134074Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2026-84 | Malicious code in code-review-frontend (npm) | 2026-01-06T13:33:00Z | 2026-01-08T09:13:14Z |
| MAL-2026-75 | Malicious code in ethos2.0 (npm) | 2026-01-06T12:58:53Z | 2026-01-08T09:13:14Z |
| MAL-2026-74 | Malicious code in cp_amm (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:14Z |
| MAL-2026-58 | Malicious code in eslint-supertest (npm) | 2026-01-06T02:34:56Z | 2026-01-08T09:13:14Z |
| MAL-2026-49 | Malicious code in diskho (npm) | 2026-01-05T08:50:46Z | 2026-01-08T09:13:14Z |
| MAL-2026-30 | Malicious code in dstny-utils (npm) | 2026-01-03T16:01:31Z | 2026-01-08T09:13:14Z |
| MAL-2026-153 | Malicious code in darknet-dispatches-internal (npm) | 2026-01-08T04:58:19Z | 2026-01-08T09:13:14Z |
| MAL-2026-132 | Malicious code in create-react-app-lambda (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:14Z |
| MAL-2026-113 | Malicious code in garfield000 (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:14Z |
| MAL-2026-112 | Malicious code in fbfu (npm) | 2026-01-07T06:49:54Z | 2026-01-08T09:13:14Z |
| MAL-2026-103 | Malicious code in const-enum (npm) | 2026-01-07T05:38:18Z | 2026-01-08T09:13:14Z |
| MAL-2026-100 | Malicious code in eslint-plugin-supertest (npm) | 2026-01-07T02:08:41Z | 2026-01-08T09:13:14Z |
| mal-2026-73 | Malicious code in chai-as-required (npm) | 2026-01-06T12:54:07Z | 2026-01-08T09:13:13Z |
| mal-2026-72 | Malicious code in bignumber.js-new (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:13Z |
| mal-2026-70 | Malicious code in @shop-cicd/webpack-package-artifact (npm) | 2026-01-06T03:58:29Z | 2026-01-08T09:13:13Z |
| mal-2026-45 | Malicious code in @signify/vue-components (npm) | 2026-01-05T03:10:13Z | 2026-01-08T09:13:13Z |
| mal-2026-159 | Malicious code in chai-min (npm) | 2026-01-08T06:11:43Z | 2026-01-08T09:13:13Z |
| mal-2026-149 | Malicious code in bnia-work (npm) | 2026-01-08T01:01:08Z | 2026-01-08T09:13:13Z |
| mal-2026-131 | Malicious code in awsm-core (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:13Z |
| mal-2026-130 | Malicious code in awsm-acslibs (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:13Z |
| mal-2026-129 | Malicious code in aws-target-mediator (npm) | 2026-01-07T23:51:10Z | 2026-01-08T09:13:13Z |
| mal-2026-111 | Malicious code in aog3 (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:13Z |
| mal-2026-110 | Malicious code in @nestor_hexom/qyxb (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:13Z |
| mal-2026-109 | Malicious code in @nestor_hexom/garfield1 (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:13Z |
| mal-2026-108 | Malicious code in @nestor_hexom/garfield (npm) | 2026-01-07T06:49:55Z | 2026-01-08T09:13:13Z |
| MAL-2026-73 | Malicious code in chai-as-required (npm) | 2026-01-06T12:54:07Z | 2026-01-08T09:13:13Z |
| MAL-2026-72 | Malicious code in bignumber.js-new (npm) | 2026-01-06T12:58:52Z | 2026-01-08T09:13:13Z |
| MAL-2026-70 | Malicious code in @shop-cicd/webpack-package-artifact (npm) | 2026-01-06T03:58:29Z | 2026-01-08T09:13:13Z |
| MAL-2026-45 | Malicious code in @signify/vue-components (npm) | 2026-01-05T03:10:13Z | 2026-01-08T09:13:13Z |
| MAL-2026-159 | Malicious code in chai-min (npm) | 2026-01-08T06:11:43Z | 2026-01-08T09:13:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0671 | Zabbix: Mehrere Schwachstellen | 2025-03-31T22:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2025-0594 | Progress Software MOVEit: Schwachstelle ermöglicht Privilegieneskalation | 2025-03-19T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2025-0501 | GraphicsMagick: Mehrere Schwachstellen ermöglichen Denial of Service und nicht spezifizierte Angriffe | 2025-03-06T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2025-0419 | Erlang/OTP: Schwachstelle ermöglicht Denial of Service | 2025-02-20T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2025-0256 | Xerox WorkCentre / Phaser: Mehrere Schwachstellen | 2025-02-03T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2024-0034 | OpenSSL: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2024-01-09T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2023-2838 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-11-06T23:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2023-2357 | shadow: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-09-14T22:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2023-1316 | ImageMagick: Mehrere Schwachstellen | 2023-05-29T22:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2023-0978 | shadow: Schwachstelle ermöglicht Darstellen falscher Informationen | 2023-04-16T22:00:00.000+00:00 | 2025-04-21T22:00:00.000+00:00 |
| wid-sec-w-2025-0848 | xwiki: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0847 | Drupal Plugins Mehrere Schwachstellen | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0846 | Apple iOS, iPadOS und macOS: Mehrere Schwachstellen | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0845 | Cisco Nexus Dashboard: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0843 | Cisco WebEx App: Schwachstelle ermöglicht Codeausführung | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0840 | Microsoft Power Automate Desktop: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0839 | PyTorch: Schwachstelle ermöglicht Denial of Service | 2025-04-16T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0578 | Mattermost Plugins: Schwachstelle ermöglicht Offenlegung von Daten | 2025-03-17T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0551 | vim: Schwachstelle ermöglicht Manipulation von Dateien | 2025-03-12T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0408 | vim: Schwachstelle ermöglicht Manipulation von Dateien | 2025-02-18T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0040 | Red Hat Enterprise Linux (dpdk): Schwachstelle ermöglicht Denial of Service | 2025-01-09T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2023-2719 | PHP: Mehrere Schwachstellen | 2017-06-18T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2023-1970 | PHP: Mehrere Schwachstellen | 2023-08-06T22:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2023-0383 | PHP: Mehrere Schwachstellen | 2023-02-14T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2023-0035 | PHP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-05T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2022-1613 | git: Mehrere Schwachstellen | 2019-12-10T23:00:00.000+00:00 | 2025-04-16T22:00:00.000+00:00 |
| wid-sec-w-2025-0835 | Atlassian Jira: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-04-15T22:00:00.000+00:00 | 2025-04-15T22:00:00.000+00:00 |
| wid-sec-w-2025-0834 | ESRI ArcGIS: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2025-04-15T22:00:00.000+00:00 | 2025-04-15T22:00:00.000+00:00 |
| wid-sec-w-2025-0833 | Axis OS: Schwachstelle ermöglicht Denial of Service | 2025-04-15T22:00:00.000+00:00 | 2025-04-15T22:00:00.000+00:00 |
| wid-sec-w-2025-0832 | Autodesk AutoCAD und Civil 3D: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-04-15T22:00:00.000+00:00 | 2025-04-15T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:4371 | Red Hat Security Advisory: buildah security update | 2024-07-08T13:23:29+00:00 | 2026-02-27T17:12:03+00:00 |
| rhsa-2024:4146 | Red Hat Security Advisory: golang security update | 2024-06-27T00:22:55+00:00 | 2026-02-27T17:12:02+00:00 |
| rhsa-2024:3265 | Red Hat Security Advisory: grafana security update | 2024-05-22T11:45:55+00:00 | 2026-02-27T17:12:01+00:00 |
| rhsa-2024:2569 | Red Hat Security Advisory: grafana-pcp security update | 2024-04-30T13:30:34+00:00 | 2026-02-27T17:11:58+00:00 |
| rhsa-2024:2568 | Red Hat Security Advisory: grafana security update | 2024-04-30T13:33:21+00:00 | 2026-02-27T17:11:57+00:00 |
| rhsa-2024:1897 | Red Hat Security Advisory: OpenShift Container Platform 4.14.22 packages and security update | 2024-04-26T20:17:38+00:00 | 2026-02-27T17:11:55+00:00 |
| rhsa-2024:1763 | Red Hat Security Advisory: OpenShift Container Platform 4.13.40 packages and security update | 2024-04-18T18:27:36+00:00 | 2026-02-27T17:11:55+00:00 |
| rhsa-2024:1644 | Red Hat Security Advisory: grafana-pcp security and bug fix update | 2024-04-02T20:57:06+00:00 | 2026-02-27T17:11:55+00:00 |
| rhsa-2024:1646 | Red Hat Security Advisory: grafana security and bug fix update | 2024-04-02T20:56:46+00:00 | 2026-02-27T17:11:54+00:00 |
| rhsa-2024:1566 | Red Hat Security Advisory: Red Hat build of MicroShift 4.14.19 security update | 2024-04-03T16:25:07+00:00 | 2026-02-27T17:11:45+00:00 |
| rhsa-2024:1561 | Red Hat Security Advisory: Red Hat build of MicroShift 4.15.6 security update | 2024-04-02T21:57:24+00:00 | 2026-02-27T17:11:43+00:00 |
| rhsa-2024:1502 | Red Hat Security Advisory: grafana-pcp security update | 2024-03-25T20:26:18+00:00 | 2026-02-27T17:11:43+00:00 |
| rhsa-2024:1501 | Red Hat Security Advisory: grafana security update | 2024-03-25T20:29:49+00:00 | 2026-02-27T17:11:42+00:00 |
| rhsa-2024:1472 | Red Hat Security Advisory: go-toolset:rhel8 security update | 2024-03-21T15:47:42+00:00 | 2026-02-27T17:11:40+00:00 |
| rhsa-2024:1468 | Red Hat Security Advisory: go-toolset-1.19-golang security update | 2024-03-21T12:17:52+00:00 | 2026-02-27T17:11:40+00:00 |
| rhsa-2024:1462 | Red Hat Security Advisory: golang security update | 2024-03-21T08:17:16+00:00 | 2026-02-27T17:11:39+00:00 |
| rhea-2026:0129 | Red Hat Enhancement Advisory: OpenShift Virtualization 4.17.39 Images | 2026-01-06T11:25:38+00:00 | 2026-02-27T17:11:36+00:00 |
| rhea-2025:23478 | Red Hat Enhancement Advisory: OpenShift Virtualization 4.18.25 Images | 2025-12-17T11:33:21+00:00 | 2026-02-27T17:11:33+00:00 |
| rhea-2025:23406 | Red Hat Enhancement Advisory: OpenShift Virtualization 4.20.3 Images | 2025-12-16T21:20:03+00:00 | 2026-02-27T17:11:31+00:00 |
| rhsa-2026:0326 | Red Hat Security Advisory: OpenShift Container Platform 4.16.55 bug fix and security update | 2026-01-15T18:47:30+00:00 | 2026-02-27T17:06:01+00:00 |
| rhsa-2025:21829 | Red Hat Security Advisory: OpenShift Container Platform 4.12.83 bug fix and security update | 2025-11-27T12:20:57+00:00 | 2026-02-27T17:05:55+00:00 |
| rhsa-2025:21329 | Red Hat Security Advisory: OpenShift Container Platform 4.14.59 bug fix and security update | 2025-11-20T07:58:36+00:00 | 2026-02-27T17:05:53+00:00 |
| rhsa-2025:21013 | Red Hat Security Advisory: libssh security update | 2025-11-11T19:29:32+00:00 | 2026-02-27T17:05:53+00:00 |
| rhsa-2025:20943 | Red Hat Security Advisory: libssh security update | 2025-11-11T14:12:42+00:00 | 2026-02-27T17:05:53+00:00 |
| rhsa-2025:20801 | Red Hat Security Advisory: libtiff security update | 2025-11-11T09:33:14+00:00 | 2026-02-27T17:05:53+00:00 |
| rhsa-2025:19864 | Red Hat Security Advisory: OpenShift Container Platform 4.18.28 bug fix and security update | 2025-11-17T15:14:48+00:00 | 2026-02-27T17:05:51+00:00 |
| rhsa-2025:19807 | Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.7.1 release | 2025-11-05T14:26:13+00:00 | 2026-02-27T17:05:50+00:00 |
| rhsa-2025:19472 | Red Hat Security Advisory: libssh security update | 2025-11-03T12:20:18+00:00 | 2026-02-27T17:05:50+00:00 |
| rhsa-2025:19401 | Red Hat Security Advisory: libssh security update | 2025-11-03T01:40:22+00:00 | 2026-02-27T17:05:50+00:00 |
| rhsa-2025:19470 | Red Hat Security Advisory: libssh security update | 2025-11-03T12:14:23+00:00 | 2026-02-27T17:05:49+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-23-199-05 | GeoVision GV-ADR2701 | 2023-07-18T06:00:00.000000Z | 2023-07-18T06:00:00.000000Z |
| icsa-23-199-04 | Weintek Weincloud | 2023-07-18T06:00:00.000000Z | 2023-07-18T06:00:00.000000Z |
| icsa-23-199-03 | Iagona ScrutisWeb | 2023-07-18T06:00:00.000000Z | 2023-07-18T06:00:00.000000Z |
| icsa-23-199-02 | Keysight N6845A Geolocation Server | 2023-07-18T06:00:00.000000Z | 2023-07-18T06:00:00.000000Z |
| icsa-23-199-01 | Rockwell Automation Kinetix 5700 DC Bus Power Supply | 2023-07-18T06:00:00.000000Z | 2023-07-18T06:00:00.000000Z |
| icsa-23-194-05 | Rockwell Automation PowerMonitor 1000 | 2023-07-13T06:00:00.000000Z | 2023-07-13T06:00:00.000000Z |
| icsa-23-171-01 | Enphase Envoy | 2023-06-20T06:00:00.000000Z | 2023-07-13T06:00:00.000000Z |
| icsa-23-194-06 | Honeywell Experion PKS, LX and PlantCruise | 2023-07-13T00:00:00.000000Z | 2023-07-13T00:00:00.000000Z |
| icsa-23-193-01 | Rockwell Automation Select Communication Modules | 2023-07-12T06:00:00.000000Z | 2023-07-12T06:00:00.000000Z |
| icsa-23-192-03 | Panasonic Control FPWin Pro7 | 2023-07-11T06:00:00.000000Z | 2023-07-11T06:00:00.000000Z |
| icsa-23-180-04 | Mitsubishi Electric MELSEC-F Series | 2023-06-29T06:00:00.000000Z | 2023-07-11T06:00:00.000000Z |
| icsa-23-192-02 | Sensormatic Electronics iSTAR | 2023-07-11T00:00:00.000000Z | 2023-07-11T00:00:00.000000Z |
| icsa-23-192-01 | Rockwell Automation Enhanced HIM | 2023-07-11T00:00:00.000000Z | 2023-07-11T00:00:00.000000Z |
| icsa-23-187-02 | ABUS TVIP | 2023-07-06T06:00:00.000000Z | 2023-07-06T06:00:00.000000Z |
| icsa-23-187-01 | PiiGAB M-Bus | 2023-07-06T06:00:00.000000Z | 2023-07-06T06:00:00.000000Z |
| icsma-23-180-01 | Medtronic Paceart Optima System | 2023-06-29T06:00:00.000000Z | 2023-06-29T06:00:00.000000Z |
| icsa-23-180-03 | Ovarro TBox RTUs | 2023-06-29T06:00:00.000000Z | 2023-06-29T06:00:00.000000Z |
| icsa-23-180-02 | Schneider Electric EcoStruxure Operator Terminal Expert | 2023-06-29T06:00:00.000000Z | 2023-06-29T06:00:00.000000Z |
| icsa-23-180-01 | Delta Electronics InfraSuite Device Master | 2023-06-29T06:00:00.000000Z | 2023-06-29T06:00:00.000000Z |
| icsa-23-178-01 | Hitachi Energy FOXMAN-UN and UNEM Products | 2023-06-27T06:00:00.000000Z | 2023-06-27T06:00:00.000000Z |
| icsa-23-173-03 | SpiderControl SCADAWebServer | 2023-06-23T06:00:00.000000Z | 2023-06-23T06:00:00.000000Z |
| icsa-23-026-02 | Econolite EOS (Update A) | 2023-01-26T07:00:00.000000Z | 2023-06-22T06:00:00.000000Z |
| icsa-23-173-02 | Advantech R-SeeNet | 2023-06-20T06:00:00.000000Z | 2023-06-20T06:00:00.000000Z |
| icsa-23-171-02 | Enphase Installer Toolkit Android App | 2023-06-20T06:00:00.000000Z | 2023-06-20T06:00:00.000000Z |
| icsa-23-061-01 | Mitsubishi Electric MELSEC iQ-F Series | 2023-03-02T07:00:00.000000Z | 2023-06-20T06:00:00.000000Z |
| icsa-23-166-02 | Advantech WebAccess/SCADA | 2023-06-15T06:00:00.000000Z | 2023-06-15T06:00:00.000000Z |
| icsa-23-166-01 | SUBNET PowerSYSTEM Center | 2023-06-15T06:00:00.000000Z | 2023-06-15T06:00:00.000000Z |
| icsa-23-166-12 | Siemens SINAMICS Medium Voltage Products | 2023-06-13T00:00:00.000000Z | 2023-06-14T00:00:00.000000Z |
| icsa-23-164-04 | Rockwell Automation FactoryTalk Transaction Manager | 2023-06-13T06:00:00.000000Z | 2023-06-13T06:00:00.000000Z |
| icsa-23-164-03 | Rockwell Automation FactoryTalk Edge Gateway | 2023-06-13T06:00:00.000000Z | 2023-06-13T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-mso-authbyp-bb5GmBQv | Cisco ACI Multi-Site Orchestrator Application Services Engine Deployment Authentication Bypass Vulnerability | 2021-02-24T16:00:00+00:00 | 2021-03-12T16:02:24+00:00 |
| cisco-sa-3000-9000-fileaction-qtlzdry2 | Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability | 2021-02-24T16:00:00+00:00 | 2021-03-08T20:56:03+00:00 |
| cisco-sa-3000-9000-fileaction-QtLzDRy2 | Cisco NX-OS Software Unauthenticated Arbitrary File Actions Vulnerability | 2021-02-24T16:00:00+00:00 | 2021-03-08T20:56:03+00:00 |
| cisco-sa-webex-distupd-n87eb6z3 | Cisco Webex Meetings Unauthorized Distribution List Update Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-webex-distupd-N87eB6Z3 | Cisco Webex Meetings Unauthorized Distribution List Update Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-vman-dir-trav-bpwc5gtm | Cisco SD-WAN vManage Directory Traversal Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-vman-dir-trav-Bpwc5gtm | Cisco SD-WAN vManage Directory Traversal Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-vman-authorization-b-guepslk | Cisco SD-WAN vManage Authorization Bypass Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-vman-authorization-b-GUEpSLK | Cisco SD-WAN vManage Authorization Bypass Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-staros-ipsecmgr-dos-3gkhxwvs | Cisco ASR 5000 Series Software (StarOS) ipsecmgr Process Denial of Service Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-staros-ipsecmgr-dos-3gkHXwvS | Cisco ASR 5000 Series Software (StarOS) ipsecmgr Process Denial of Service Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-snort-ethernet-dos-hgxgjh8n | Multiple Cisco Products Snort Ethernet Frame Decoder Denial of Service Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-snort-ethernet-dos-HGXgJH8n | Multiple Cisco Products Snort Ethernet Frame Decoder Denial of Service Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwanvman-infodis1-yuqschb | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwanvman-infodis1-YuQScHB | Cisco SD-WAN vManage Information Disclosure Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-vdaemon-bo-ruzzea2 | Cisco SD-WAN vDaemon Buffer Overflow Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-vdaemon-bo-RuzzEA2 | Cisco SD-WAN vDaemon Buffer Overflow Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-sigverbypass-gpyxd6mk | Cisco SD-WAN Software Signature Verification Bypass Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-sigverbypass-gPYXd6Mk | Cisco SD-WAN Software Signature Verification Bypass Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-privesc-vman-kth3c82b | Cisco SD-WAN vManage Software Privilege Escalation Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdwan-privesc-vman-kth3c82B | Cisco SD-WAN vManage Software Privilege Escalation Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdw-sqlinj-hdjueeax | Cisco SD-WAN vManage SQL Injection Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-sdw-sqlinj-HDJUeEAX | Cisco SD-WAN vManage SQL Injection Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-nso-path-trvsl-dzrqe8lc | Cisco Network Services Orchestrator Path Traversal Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-nso-path-trvsl-dZRQE8Lc | Cisco Network Services Orchestrator Path Traversal Vulnerability | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-ipphone-rce-dos-u2psskz3 | Cisco IP Phones Buffer Overflow and Denial of Service Vulnerabilities | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-ipphone-rce-dos-U2PsSkz3 | Cisco IP Phones Buffer Overflow and Denial of Service Vulnerabilities | 2021-03-03T16:00:00+00:00 | 2021-03-03T16:00:00+00:00 |
| cisco-sa-ise-xss-eurcwx9 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2020-11-04T16:00:00+00:00 | 2021-02-26T18:56:49+00:00 |
| cisco-sa-ise-xss-euRCwX9 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2020-11-04T16:00:00+00:00 | 2021-02-26T18:56:49+00:00 |
| cisco-sa-cimc-auth-zwkppjxl | Cisco Integrated Management Controller Authorization Bypass Vulnerability | 2020-11-04T16:00:00+00:00 | 2021-02-26T15:37:04+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-21213 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.2 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:17:07.000Z |
| msrc_cve-2025-38715 | hfs: fix slab-out-of-bounds in hfs_bnode_read() | 2025-09-02T00:00:00.000Z | 2026-02-18T14:17:03.000Z |
| msrc_cve-2024-42134 | virtio-pci: Check if is_avq is NULL | 2024-07-01T07:00:00.000Z | 2026-02-18T14:17:00.000Z |
| msrc_cve-2021-44964 | Use after free in garbage collector and finalizer of lgc.c in Lua interpreter 5.4.0~5.4.3 allows attackers to perform Sandbox Escape via a crafted script file. | 2022-03-02T00:00:00.000Z | 2026-02-18T14:16:53.000Z |
| msrc_cve-2025-37859 | page_pool: avoid infinite loop to schedule delayed worker | 2025-05-02T00:00:00.000Z | 2026-02-18T14:16:48.000Z |
| msrc_cve-2025-71087 | iavf: fix off-by-one issues in iavf_config_rss_reg() | 2026-01-02T00:00:00.000Z | 2026-02-18T14:16:41.000Z |
| msrc_cve-2023-52601 | jfs: fix array-index-out-of-bounds in dbAdjTree | 2024-03-02T08:00:00.000Z | 2026-02-18T14:16:28.000Z |
| msrc_cve-2024-21231 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Client programs). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of MySQL Server. CVSS 3.1 Base Score 3.1 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:16:27.000Z |
| msrc_cve-2024-53138 | net/mlx5e: kTLS, Fix incorrect page refcounting | 2024-12-02T00:00:00.000Z | 2026-02-18T14:16:26.000Z |
| msrc_cve-2023-53034 | ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans | 2025-04-02T00:00:00.000Z | 2026-02-18T14:16:21.000Z |
| msrc_cve-2025-68789 | hwmon: (ibmpex) fix use-after-free in high/low store | 2026-01-02T00:00:00.000Z | 2026-02-18T14:16:10.000Z |
| msrc_cve-2025-37836 | PCI: Fix reference leak in pci_register_host_bridge() | 2025-05-02T00:00:00.000Z | 2026-02-18T14:15:51.000Z |
| msrc_cve-2024-53133 | drm/amd/display: Handle dml allocation failure to avoid crash | 2024-12-02T00:00:00.000Z | 2026-02-18T14:15:51.000Z |
| msrc_cve-2024-21212 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Health Monitor). Supported versions that are affected are 8.0.39 and prior and 8.4.0. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:15:42.000Z |
| msrc_cve-2025-68767 | hfsplus: Verify inode mode when loading from disk | 2026-01-02T00:00:00.000Z | 2026-02-18T14:15:40.000Z |
| msrc_cve-2023-29941 | llvm-project commit a0138390 was discovered to contain a segmentation fault via the component matchAndRewriteSortOp<mlir::sparse_tensor::SortOp>(mlir::sparse_tensor::SortOp. | 2023-05-01T00:00:00.000Z | 2026-02-18T14:15:35.000Z |
| msrc_cve-2024-50205 | ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() | 2024-11-02T00:00:00.000Z | 2026-02-18T14:15:30.000Z |
| msrc_cve-2023-40550 | Shim: out-of-bound read in verify_buffer_sbat() | 2024-01-01T08:00:00.000Z | 2026-02-18T14:15:28.000Z |
| msrc_cve-2025-37865 | net: dsa: mv88e6xxx: fix -ENOENT when deleting VLANs and MST is unsupported | 2025-05-02T00:00:00.000Z | 2026-02-18T14:15:26.000Z |
| msrc_cve-2021-3502 | A flaw was found in avahi 0.8-5. A reachable assertion is present in avahi_s_host_name_resolver_start function allowing a local attacker to crash the avahi service by requesting hostname resolutions through the avahi socket or dbus methods for invalid hostnames. The highest threat from this vulnerability is to the service availability. | 2021-05-02T00:00:00.000Z | 2026-02-18T14:15:15.000Z |
| msrc_cve-2025-68806 | ksmbd: fix buffer validation by including null terminator size in EA length | 2026-01-02T00:00:00.000Z | 2026-02-18T14:15:10.000Z |
| msrc_cve-2024-53141 | netfilter: ipset: add missing range check in bitmap_ip_uadt | 2024-12-02T00:00:00.000Z | 2026-02-18T14:15:06.000Z |
| msrc_cve-2025-37778 | ksmbd: Fix dangling pointer in krb_authenticate | 2025-05-02T00:00:00.000Z | 2026-02-18T14:14:59.000Z |
| msrc_cve-2024-21236 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2024-10-01T07:00:00.000Z | 2026-02-18T14:14:59.000Z |
| msrc_cve-2025-38710 | gfs2: Validate i_depth for exhash directories | 2025-09-02T00:00:00.000Z | 2026-02-18T14:14:54.000Z |
| msrc_cve-2025-68796 | f2fs: fix to avoid updating zero-sized extent in extent cache | 2026-01-02T00:00:00.000Z | 2026-02-18T14:14:46.000Z |
| msrc_cve-2022-37434 | zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g. see the nodejs/node reference). | 2022-08-02T00:00:00.000Z | 2026-02-18T14:14:38.000Z |
| msrc_cve-2024-50244 | fs/ntfs3: Additional check in ni_clear() | 2024-11-02T00:00:00.000Z | 2026-02-18T14:14:37.000Z |
| msrc_cve-2022-35260 | curl can be told to parse a `.netrc` file for credentials. If that file endsin a line with 4095 consecutive non-white space letters and no newline curlwould first read past the end of the stack-based buffer and if the readworks write a zero byte beyond its boundary.This will in most cases cause a segfault or similar but circumstances might also cause different outcomes.If a malicious user can provide a custom netrc file to an application or otherwise affect its contents this flaw could be used as denial-of-service. | 2022-12-02T00:00:00.000Z | 2026-02-18T14:14:31.000Z |
| msrc_cve-2025-37749 | net: ppp: Add bound checking for skb data on ppp_sync_txmung | 2025-05-02T00:00:00.000Z | 2026-02-18T14:14:29.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:14394-1 | MozillaThunderbird-128.3.1-1.1 on GA media | 2024-10-11T00:00:00Z | 2024-10-11T00:00:00Z |
| opensuse-su-2024:14393-1 | MozillaFirefox-131.0.2-1.1 on GA media | 2024-10-11T00:00:00Z | 2024-10-11T00:00:00Z |
| opensuse-su-2024:0329-1 | Security update for seamonkey | 2024-10-09T09:09:49Z | 2024-10-09T09:09:49Z |
| opensuse-su-2024:0328-1 | Security update for roundcubemail | 2024-10-09T08:01:27Z | 2024-10-09T08:01:27Z |
| opensuse-su-2024:14392-1 | trivy-0.56.1-1.1 on GA media | 2024-10-09T00:00:00Z | 2024-10-09T00:00:00Z |
| opensuse-su-2024:14391-1 | libunbound8-1.21.1-1.1 on GA media | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| opensuse-su-2024:14390-1 | podman-5.2.4-1.1 on GA media | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| opensuse-su-2024:14389-1 | liboath-devel-2.6.11.12-1.1 on GA media | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| opensuse-su-2024:14388-1 | buildah-1.37.4-1.1 on GA media | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| opensuse-su-2024:14387-1 | apache-commons-io-2.17.0-2.1 on GA media | 2024-10-08T00:00:00Z | 2024-10-08T00:00:00Z |
| opensuse-su-2024:0327-1 | Security update for chromium | 2024-10-07T09:07:07Z | 2024-10-07T09:07:07Z |
| opensuse-su-2024:14386-1 | rusty_v8-0.106.0-1.1 on GA media | 2024-10-07T00:00:00Z | 2024-10-07T00:00:00Z |
| opensuse-su-2024:14385-1 | MozillaFirefox-131.0-1.1 on GA media | 2024-10-06T00:00:00Z | 2024-10-06T00:00:00Z |
| opensuse-su-2024:14384-1 | ffmpeg-7-7.1-1.1 on GA media | 2024-10-04T00:00:00Z | 2024-10-04T00:00:00Z |
| opensuse-su-2024:14383-1 | chromedriver-129.0.6668.89-1.2 on GA media | 2024-10-04T00:00:00Z | 2024-10-04T00:00:00Z |
| opensuse-su-2024:14382-1 | opensc-0.25.1-2.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14381-1 | libmozjs-78-0-78.15.0-5.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14380-1 | libmozjs-128-0-128.2.0-2.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14379-1 | libmozjs-115-0-115.4.0-5.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14378-1 | bsdtar-3.7.6-1.1 on GA media | 2024-10-02T00:00:00Z | 2024-10-02T00:00:00Z |
| opensuse-su-2024:14377-1 | xen-4.19.0_04-1.1 on GA media | 2024-10-01T00:00:00Z | 2024-10-01T00:00:00Z |
| opensuse-su-2024:0320-1 | Security update for chromium | 2024-09-30T08:41:05Z | 2024-09-30T08:41:05Z |
| opensuse-su-2024:14376-1 | php8-8.3.12-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14375-1 | kyverno-1.12.6-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14374-1 | argocd-cli-2.12.4-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:14373-1 | OpenIPMI-2.0.36.4+git.c114912-1.1 on GA media | 2024-09-29T00:00:00Z | 2024-09-29T00:00:00Z |
| opensuse-su-2024:0319-1 | Security update for coredns | 2024-09-27T14:01:32Z | 2024-09-27T14:01:32Z |
| opensuse-su-2024:0314-1 | Security update for chromium | 2024-09-27T08:38:17Z | 2024-09-27T08:38:17Z |
| opensuse-su-2024:14372-1 | maven-archetype-3.3.0-1.1 on GA media | 2024-09-27T00:00:00Z | 2024-09-27T00:00:00Z |
| opensuse-su-2024:14371-1 | json-java-20240303-1.1 on GA media | 2024-09-27T00:00:00Z | 2024-09-27T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2020-87 | Heap-buffer-overflow in Fax3Decode2D | 2020-06-24T01:51:13.476121Z | 2022-04-13T03:04:42.101628Z |
| osv-2020-849 | Heap-buffer-overflow in dotnet_parse_tilde_2 | 2020-07-14T22:13:44.687480Z | 2022-04-13T03:04:42.188379Z |
| osv-2020-841 | Heap-buffer-overflow in yr_object_set_string | 2020-07-14T22:13:41.650460Z | 2022-04-13T03:04:42.289044Z |
| osv-2020-796 | Use-of-uninitialized-value in Mat_VarRead5 | 2020-07-14T05:37:37.378970Z | 2022-04-13T03:04:42.984262Z |
| osv-2020-785 | Heap-buffer-overflow in sctp_handle_packet_dropped | 2020-07-14T05:37:33.243806Z | 2022-04-13T03:04:42.613820Z |
| osv-2020-757 | Heap-buffer-overflow in cras_channel_remix_conv_create | 2020-07-09T00:00:09.165795Z | 2022-04-13T03:04:42.576554Z |
| osv-2020-748 | Heap-buffer-overflow in OGR_RawField_IsUnset | 2020-07-04T00:00:05.381228Z | 2022-04-13T03:04:42.161052Z |
| osv-2020-715 | Heap-buffer-overflow in cras_rclient_message_from_client | 2020-07-01T00:00:26.392362Z | 2022-04-13T03:04:42.603373Z |
| osv-2020-66 | Heap-buffer-overflow in CPLErr GDALResampleChunk32R_AverageT<unsigned char, int> | 2020-06-24T01:51:12.546926Z | 2022-04-13T03:04:42.124066Z |
| osv-2020-657 | UNKNOWN READ in perfetto::trace_processor::ProtoTraceParser::ParseTypedFtraceToRaw | 2020-07-01T00:00:22.958401Z | 2022-04-13T03:04:42.019404Z |
| osv-2020-649 | Heap-use-after-free in sctp_fill_hmac_digest_m | 2020-07-01T00:00:22.458848Z | 2022-04-13T03:04:42.628753Z |
| osv-2020-600 | Use-of-uninitialized-value in dprintf_formatf | 2020-07-01T00:00:19.594728Z | 2022-04-13T03:04:42.862628Z |
| osv-2020-508 | Use-of-uninitialized-value in pe_rva_to_offset | 2020-07-01T00:00:13.673641Z | 2022-04-13T03:04:42.212292Z |
| osv-2020-497 | Heap-buffer-overflow in str_table_entry | 2020-07-01T00:00:13.107969Z | 2022-04-13T03:04:42.182726Z |
| osv-2020-481 | Heap-buffer-overflow in sctp_handle_asconf | 2020-07-01T00:00:12.106212Z | 2022-04-13T03:04:42.618925Z |
| osv-2020-48 | UNKNOWN READ in decode_fast | 2020-06-24T01:51:11.743367Z | 2022-04-13T03:04:42.371093Z |
| osv-2020-420 | UNKNOWN WRITE in uffd_cleanup | 2020-07-01T00:00:08.489132Z | 2022-04-13T03:04:42.095380Z |
| osv-2020-392 | Stack-buffer-overflow in nc4_get_att | 2020-07-01T00:00:06.889412Z | 2022-04-13T03:04:42.107611Z |
| osv-2020-389 | Use-of-uninitialized-value in smtp_state_ehlo_resp | 2020-07-01T00:00:06.761801Z | 2022-04-13T03:04:42.827258Z |
| osv-2020-38 | Heap-buffer-overflow in OGRFeatureFormatDateTimeBuffer | 2020-06-24T01:51:11.337556Z | 2022-04-13T03:04:42.149408Z |
| osv-2020-345 | Index-out-of-bounds in yara_yyparse | 2020-07-01T00:00:04.345697Z | 2022-04-13T03:04:42.295200Z |
| osv-2020-325 | Stack-buffer-overflow in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch | 2020-07-01T00:00:02.845124Z | 2022-04-13T03:04:42.135767Z |
| osv-2020-263 | Heap-use-after-free in dotnet_parse_tilde_2 | 2020-06-30T00:00:43.227504Z | 2022-04-13T03:04:42.283035Z |
| osv-2020-247 | Use-of-uninitialized-value in WavpackDeleteTagItem | 2020-06-26T00:00:10.203402Z | 2022-04-13T03:04:42.376138Z |
| osv-2020-240 | UNKNOWN READ in perfetto::trace_processor::TraceStorage::GetIdForVariadicType | 2020-06-26T00:00:09.058036Z | 2022-04-13T03:04:42.008649Z |
| osv-2020-2291 | Heap-buffer-overflow in dotnet_parse_tilde_2 | 2020-12-27T00:01:16.992755Z | 2022-04-13T03:04:42.248125Z |
| osv-2020-2238 | Heap-buffer-overflow in dotnet_parse_tilde_2 | 2020-12-05T00:00:17.081850Z | 2022-04-13T03:04:42.200424Z |
| osv-2020-2200 | Global-buffer-overflow in draco::MeshEdgebreakerDecoderImpl<draco::MeshEdgebreakerTraversalValenceDecoder> | 2020-11-28T00:00:21.818545Z | 2022-04-13T03:04:42.779534Z |
| osv-2020-2112 | Heap-buffer-overflow in ccr_handle_message_from_client | 2020-10-31T00:00:32.556884Z | 2022-04-13T03:04:42.587032Z |
| osv-2020-2086 | Bad-cast to QPaintDevice from invalid vptr | 2020-10-19T00:00:08.431906Z | 2022-04-13T03:04:42.474735Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-moodle-2024-34005 | moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_data backup | 2025-05-02T06:18:37.889Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-34004 | moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_wiki backup | 2025-05-02T06:18:36.041Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-34003 | moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_workshop backup | 2025-05-02T06:18:33.951Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-34002 | moodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_feedback backup | 2025-05-02T06:18:31.695Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25983 | Msa-24-0006: idor on dashboard comments block | 2024-03-31T18:22:02.363Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25982 | Msa-24-0005: csrf risk in language import utility | 2024-03-31T18:22:12.259Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25981 | Msa-24-0004: forum export did not respect activity group settings | 2024-03-31T18:22:20.962Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25980 | Msa-24-0003: h5p attempts report did not respect activity group settings | 2024-03-31T18:22:30.148Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25979 | Msa-24-0002: forum search accepted random parameters in its url | 2024-03-31T18:22:42.352Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-25978 | Msa-24-0001: denial of service risk in file picker unzip functionality | 2024-03-31T18:22:52.148Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5551 | Moodle: forum summary report shows students from other groups when in separate groups mode | 2024-03-06T10:56:40.764Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5550 | Moodle: rce due to lfi risk in some misconfigured shared hosting environments | 2024-03-06T10:56:51.095Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5549 | Moodle: insufficient capability checks when updating the parent of a course category | 2024-03-06T10:57:00.585Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5548 | Moodle: cache poisoning risk with endpoint revision numbers | 2024-03-06T10:57:10.388Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5547 | Moodle: xss risk when previewing data in course upload tool | 2024-03-06T10:57:21.193Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5546 | Moodle: stored xss in quiz grading report via user id number | 2024-03-06T10:57:30.894Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5545 | Moodle: auto-populated h5p author name causes a potential information leak | 2024-03-06T10:57:40.178Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5544 | Moodle: stored xss and potential idor risk in wiki comments | 2024-03-06T10:57:50.082Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5543 | Moodle: duplicating a bigbluebutton activity assigns the same meeting id | 2024-03-06T10:57:59.204Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5542 | Moodle: students can view other users in "only see own membership" groups | 2024-03-06T10:58:09.570Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5541 | Moodle: xss risk when using csv grade import method | 2024-03-06T10:58:18.062Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5540 | Moodle: authenticated remote code execution risk in imscp | 2024-03-06T10:58:27.676Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-5539 | Moodle: authenticated remote code execution risk in lesson | 2024-03-06T10:58:37.093Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-35133 | Moodle: ssrf risk due to insufficient check on the curl blocked hosts | 2024-03-06T10:58:57.190Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-35132 | Moodle: minor sql injection risk on mnet sso access control page | 2024-03-06T10:59:08.929Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-35131 | Moodle: xss risk on groups page | 2024-03-06T10:59:19.194Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-30944 | Moodle: minor sql injection risk in external wiki method for listing pages | 2024-03-06T10:59:29.074Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-30943 | Moodle: tinymce loaders susceptible to arbitrary folder creation | 2024-03-06T10:59:39.012Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-28336 | Moodle: teacher can access names of users they do not have permission to access | 2024-03-06T10:59:47.976Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2023-28335 | Moodle: csrf risk in resetting all templates of a database activity | 2024-03-06T10:59:55.273Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-202109-1847 | An Elevated Privileges issue exists in D-Link DCS-5000L v1.05 and DCS-932L v2.17 and olde… | 2024-05-17T23:04:28.294000Z |
| var-202109-1107 | DCS-5000L v1.05 and DCS-932L v2.17 and older are affecged by Incorrect Acess Control. The… | 2024-05-17T23:04:28.264000Z |
| var-202307-2197 | Authentication Bypass vulnerability in D-Link DIR-895 FW102b07 allows remote attackers to… | 2024-05-17T23:04:21.117000Z |
| var-202403-0816 | A vulnerability was found in Tenda AC15 15.03.20_multi and classified as critical. Affect… | 2024-05-17T23:04:19.022000Z |
| var-202401-0742 | A vulnerability classified as critical was found in Tenda PA6 1.0.1.21. Affected by this … | 2024-05-17T23:04:19.633000Z |
| var-202401-0051 | A vulnerability has been found in Totolink N200RE 9.3.5u.6139_B20201216 and classified as… | 2024-05-17T23:04:19.837000Z |
| var-201708-1534 | An issue was discovered in SMA Solar Technology products. When signed into Sunny Explorer… | 2024-05-17T23:04:03.036000Z |
| var-201806-0642 | A remote attacker can bypass the Management Mode on the Canon LBP7110Cw web interface wit… | 2024-05-17T23:04:02.173000Z |
| var-201808-0239 | Technicolor (formerly RCA) TC8305C devices allow remote attackers to cause a denial of se… | 2024-05-17T23:04:01.991000Z |
| var-202004-0536 | IQrouter through 3.3.1, when unconfigured, has multiple remote code execution vulnerabili… | 2024-05-17T23:04:00.294000Z |
| var-202206-0121 | D-Link DIR-890L 1.20b01 allows attackers to execute arbitrary code due to the hardcoded o… | 2024-05-17T23:03:58.093000Z |
| var-202205-0310 | Agoo before 2.14.3 does not reject GraphQL fragment spreads that form cycles, leading to … | 2024-05-17T23:03:58.219000Z |
| var-202403-0576 | A vulnerability, which was classified as critical, has been found in Totolink X6000R 9.4.… | 2024-05-17T23:03:50.040000Z |
| var-202401-1243 | A vulnerability classified as critical has been found in Totolink N200RE 9.3.5u.6139_B202… | 2024-05-17T23:03:50.368000Z |
| var-202401-1159 | A vulnerability was found in Tenda W6 1.0.0.9(4122). It has been declared as critical. Af… | 2024-05-17T23:03:50.405000Z |
| var-202403-0912 | A vulnerability was found in Tenda AC15 15.03.05.18/15.03.20_multi. It has been classifie… | 2024-05-17T23:03:49.974000Z |
| var-200512-0178 | NOTE: the vendor has disputed this issue. Cross-site scripting (XSS) vulnerability in le… | 2024-05-17T23:03:46.870000Z |
| var-202010-0520 | Belkin LINKSYS WRT160NL 1.0.04.002_US_20130619 devices have a stack-based buffer overflow… | 2024-05-17T23:03:20.833000Z |
| var-202302-2018 | ** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in … | 2024-05-17T23:03:17.258000Z |
| var-202302-0191 | A vulnerability was found in BDCOM 1704-WGL 2.0.6314. It has been classified as critical.… | 2024-05-17T23:03:17.516000Z |
| var-202309-0807 | The JMX Console within the Rockwell Automation Pavilion8 is exposed to application users… | 2024-05-17T23:03:15.491000Z |
| var-202401-1132 | A vulnerability, which was classified as critical, was found in Tenda AC10U 15.03.06.49_m… | 2024-05-17T23:03:14.454000Z |
| var-202401-1090 | A vulnerability was found in Tenda AC10U 15.03.06.49_multi_TDE01. It has been classified … | 2024-05-17T23:03:14.477000Z |
| var-202312-0346 | A vulnerability, which was classified as critical, was found in D-Link DIR-846 FW100A53DB… | 2024-05-17T23:03:14.836000Z |
| var-202311-1790 | ** UNSUPPORTED WHEN ASSIGNED ** Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to… | 2024-05-17T23:03:14.959000Z |
| var-202403-0926 | A vulnerability, which was classified as critical, has been found in Tenda AC10 16.03.10.… | 2024-05-17T23:03:13.743000Z |
| var-202405-0646 | Beijing Yakong Technology Development Co., Ltd., referred to as "Yakong Technology", is a… | 2024-05-17T23:03:12.750000Z |
| var-201708-1533 | An issue was discovered in SMA Solar Technology products. The SIP implementation does not… | 2024-05-17T23:02:47.102000Z |
| var-201806-0938 | A remote attacker can bypass the System Manager Mode on the Canon MF210 and MF220 web int… | 2024-05-17T23:02:46.014000Z |
| var-201712-0474 | HikVision Wi-Fi IP cameras, when used in a wired configuration, allow physically proximat… | 2024-05-17T23:02:46.829000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2014-000143 | "File Upload BBS" of i-HTTPD vulnerable to remote command execution | 2014-12-09T14:40+09:00 | 2014-12-16T17:10+09:00 |
| jvndb-2014-000144 | i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:41+09:00 | 2014-12-16T17:09+09:00 |
| jvndb-2014-000134 | BSD Operating Systems vulnerable to denial-of-service (DoS) | 2014-11-21T14:10+09:00 | 2014-12-16T17:08+09:00 |
| jvndb-2014-000150 | LinPHA vulnerable to cross-site scripting | 2014-12-12T13:48+09:00 | 2014-12-16T17:07+09:00 |
| jvndb-2014-000145 | "Omake BBS" of i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:44+09:00 | 2014-12-15T19:16+09:00 |
| jvndb-2014-000149 | Chyrp vulnerable to cross-site scripting | 2014-12-10T14:18+09:00 | 2014-12-15T18:06+09:00 |
| jvndb-2014-000141 | FAST/TOOLS vulnerable to improper restriction of XML external entity references | 2014-11-28T14:54+09:00 | 2014-12-10T10:16+09:00 |
| jvndb-2014-000137 | Multiple improper data validation vulnerabilities in Syslink driver for Texas Instruments OMAP mobile processors | 2014-12-02T13:56+09:00 | 2014-12-09T15:34+09:00 |
| jvndb-2014-000138 | OS command injection vulnerability in multiple FUJITSU Android devices | 2014-12-02T14:21+09:00 | 2014-12-09T15:33+09:00 |
| jvndb-2014-000135 | SEIL Series routers vulnerable to denial-of-service (DoS) | 2014-12-01T15:18+09:00 | 2014-12-09T15:32+09:00 |
| jvndb-2014-000136 | SEIL Series routers vulnerable to denial-of-service (DoS) | 2014-12-01T15:24+09:00 | 2014-12-09T15:31+09:00 |
| jvndb-2014-000146 | i-HTTPD vulnerable to cross-site scripting | 2014-12-09T14:45+09:00 | 2014-12-09T14:45+09:00 |
| jvndb-2014-000140 | LG Electronics mobile access routers lack access restrictions | 2014-12-02T14:27+09:00 | 2014-12-08T16:07+09:00 |
| jvndb-2014-000139 | ARROWS Me F-11D vulnerability where arbitrary areas may be accessed | 2014-12-02T14:26+09:00 | 2014-12-08T16:06+09:00 |
| jvndb-2014-000148 | Kaku-San-Sei Million Arthur for Android information management vulnerability | 2014-12-04T12:28+09:00 | 2014-12-08T16:05+09:00 |
| jvndb-2014-000147 | KENT-WEB Clip Board vulnerable to cross-site scripting | 2014-12-04T12:22+09:00 | 2014-12-08T16:03+09:00 |
| jvndb-2014-000142 | DBD::PgPP vulnerable to SQL injection | 2014-12-03T15:09+09:00 | 2014-12-03T15:09+09:00 |
| jvndb-2014-000131 | Ichitaro series vulnerable to arbitrary code execution | 2014-11-13T16:52+09:00 | 2014-11-27T17:58+09:00 |
| jvndb-2014-000130 | Multiple Cybozu products vulnerable to buffer overflow | 2014-11-11T13:36+09:00 | 2014-11-25T17:52+09:00 |
| jvndb-2014-000118 | Direct Web Remoting (DWR) vulnerable to cross-site scripting | 2014-11-14T14:37+09:00 | 2014-11-25T17:51+09:00 |
| jvndb-2014-000117 | Direct Web Remoting (DWR) vulnerable to XML external entity injection | 2014-11-14T14:33+09:00 | 2014-11-25T17:50+09:00 |
| jvndb-2014-000129 | OpenAM vulnerable to denial-of-service (DoS) | 2014-11-10T14:23+09:00 | 2014-11-20T10:09+09:00 |
| jvndb-2014-000133 | iLogScanner vulnerable to cross-site scripting | 2014-11-14T14:38+09:00 | 2014-11-18T18:22+09:00 |
| jvndb-2014-000122 | Aflax vulnerable to cross-site scripting | 2014-10-16T13:35+09:00 | 2014-10-24T18:32+09:00 |
| jvndb-2014-000119 | Huawei E5332 vulnerable to denial-of-service (DoS) | 2014-10-10T14:02+09:00 | 2014-10-21T15:15+09:00 |
| jvndb-2014-000120 | Huawei E5332 vulnerable to denial-of-service (DoS) | 2014-10-10T14:03+09:00 | 2014-10-21T15:11+09:00 |
| jvndb-2014-000121 | BirdBlog vulnerable to cross-site scripting | 2014-10-16T13:26+09:00 | 2014-10-16T13:26+09:00 |
| jvndb-2014-000108 | jigbrowser+ for iOS same origin policy bypass | 2014-09-25T14:52+09:00 | 2014-09-29T11:47+09:00 |
| jvndb-2014-000105 | Help Page in multiple Adobe products vulnerable to cross-site scripting | 2014-09-12T14:00+09:00 | 2014-09-29T11:42+09:00 |
| jvndb-2014-000112 | N-Media file uploader vulnerability in handling uploaded files | 2014-09-25T14:53+09:00 | 2014-09-29T11:39+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20520-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_5 | 2025-07-30T16:17:29Z | 2025-07-30T16:17:29Z |
| suse-su-2025:20519-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_4 | 2025-07-30T16:17:29Z | 2025-07-30T16:17:29Z |
| suse-su-2025:20518-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_3 | 2025-07-30T16:17:29Z | 2025-07-30T16:17:29Z |
| suse-su-2025:20517-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-07-30T16:17:29Z | 2025-07-30T16:17:29Z |
| suse-su-2025:20516-1 | Security update for helm | 2025-07-30T09:27:44Z | 2025-07-30T09:27:44Z |
| suse-su-2025:20515-1 | Security update for ignition | 2025-07-30T09:22:28Z | 2025-07-30T09:22:28Z |
| suse-su-2025:20514-1 | Security update for protobuf | 2025-07-30T09:22:28Z | 2025-07-30T09:22:28Z |
| suse-su-2025:02366-2 | Security update for docker | 2025-07-30T07:52:22Z | 2025-07-30T07:52:22Z |
| suse-su-2025:02547-1 | Security update for libxml2 | 2025-07-30T07:38:28Z | 2025-07-30T07:38:28Z |
| suse-su-2025:02546-1 | Security update for MozillaThunderbird | 2025-07-30T07:34:22Z | 2025-07-30T07:34:22Z |
| suse-su-2025:02545-1 | Security update for java-1_8_0-openj9 | 2025-07-30T06:34:52Z | 2025-07-30T06:34:52Z |
| suse-su-2025:20513-1 | Security update for pam-config | 2025-07-29T14:09:33Z | 2025-07-29T14:09:33Z |
| suse-su-2025:20535-1 | Security update for docker | 2025-07-29T14:02:30Z | 2025-07-29T14:02:30Z |
| suse-su-2025:02544-1 | Security update for python-starlette | 2025-07-29T13:47:48Z | 2025-07-29T13:47:48Z |
| suse-su-2025:20511-1 | Security update for grub2 | 2025-07-29T08:20:21Z | 2025-07-29T08:20:21Z |
| suse-su-2025:02538-1 | Security update for the Linux Kernel | 2025-07-28T15:10:31Z | 2025-07-28T15:10:31Z |
| suse-su-2025:02537-1 | Security update for the Linux Kernel | 2025-07-28T15:09:33Z | 2025-07-28T15:09:33Z |
| suse-su-2025:20533-1 | Security update for pam-config | 2025-07-28T14:34:42Z | 2025-07-28T14:34:42Z |
| suse-su-2025:20532-1 | Security update for perl | 2025-07-28T14:33:40Z | 2025-07-28T14:33:40Z |
| suse-su-2025:20510-1 | Security update for docker | 2025-07-28T14:33:11Z | 2025-07-28T14:33:11Z |
| suse-su-2025:20509-1 | Security update for jbigkit | 2025-07-28T14:28:22Z | 2025-07-28T14:28:22Z |
| suse-su-2025:02534-1 | Security update for salt | 2025-07-28T12:45:29Z | 2025-07-28T12:45:29Z |
| suse-su-2025:02531-1 | Security update for MozillaFirefox | 2025-07-28T06:04:33Z | 2025-07-28T06:04:33Z |
| suse-su-2025:02530-1 | Security update for qemu | 2025-07-25T22:20:33Z | 2025-07-25T22:20:33Z |
| suse-su-2025:02529-1 | Security update for MozillaFirefox, MozillaFirefox-branding-SLE | 2025-07-25T17:35:29Z | 2025-07-25T17:35:29Z |
| suse-su-2025:02528-1 | Security update for polkit | 2025-07-25T14:36:19Z | 2025-07-25T14:36:19Z |
| suse-su-2025:02527-1 | Security update for polkit | 2025-07-25T14:34:26Z | 2025-07-25T14:34:26Z |
| suse-su-2025:02525-1 | Security update for polkit | 2025-07-25T13:28:46Z | 2025-07-25T13:28:46Z |
| suse-su-2025:02523-1 | Security update for python | 2025-07-25T09:47:46Z | 2025-07-25T09:47:46Z |
| suse-su-2025:02522-1 | Security update for libarchive | 2025-07-25T09:04:20Z | 2025-07-25T09:04:20Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-29367 | Small CRM manage-tickets.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29366 | Small CRM change-password.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29365 | Online Shopping Portal my-cart.php文件跨站脚本漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29364 | Online Shopping Portal search-result.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29363 | Online Shopping Portal product-details.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29362 | Online Shopping Portal login.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29361 | Online Shopping Portal forgot-password.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29360 | Online Shopping Portal admin页面SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29359 | Complaint Management System user-search.php文件跨站脚本漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29358 | Complaint Management System subcategory.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29357 | Complaint Management System reset-password.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29356 | Complaint Management System between-date-userreport.php文件跨站脚本漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29355 | Complaint Management System between-date-userreport.php文件SQL注入漏洞 | 2025-11-20 | 2025-11-25 |
| cnvd-2025-29353 | Microsoft Windows SMB Server访问控制错误漏洞 | 2025-10-17 | 2025-11-25 |
| cnvd-2025-29352 | Microsoft Graphics Component权限提升漏洞 | 2025-10-17 | 2025-11-25 |
| cnvd-2025-29351 | Microsoft Windows权限提升漏洞(CNVD-2025-29351) | 2025-10-17 | 2025-11-25 |
| cnvd-2025-29349 | Microsoft Azure权限提升漏洞(CNVD-2025-29349) | 2025-10-17 | 2025-11-25 |
| cnvd-2025-29348 | Microsoft Azure Event Grid System访问控制错误漏洞 | 2025-10-29 | 2025-11-25 |
| cnvd-2025-29346 | Microsoft Graphics Component资源管理错误漏洞(CNVD-2025-29346) | 2025-11-10 | 2025-11-25 |
| cnvd-2025-29345 | Microsoft Graphics Component资源管理错误漏洞 | 2025-11-10 | 2025-11-25 |
| cnvd-2025-29344 | Microsoft Windows Bluetooth Service资源管理错误漏洞 | 2025-11-10 | 2025-11-25 |
| cnvd-2025-29343 | Microsoft Visual Studio远程代码执行漏洞(CNVD-2025-29343) | 2025-11-13 | 2025-11-25 |
| cnvd-2025-29336 | Tenda AC18栈缓冲区溢出漏洞 | 2024-03-15 | 2025-11-25 |
| cnvd-2025-29335 | Online Banquet Booking System跨站脚本漏洞 | 2025-07-23 | 2025-11-24 |
| cnvd-2025-29334 | Online Security Guards Hiring System跨站脚本漏洞 | 2025-07-25 | 2025-11-24 |
| cnvd-2025-29333 | Apple Xcode越界写入漏洞 | 2025-04-08 | 2025-11-24 |
| cnvd-2025-29332 | Apple Xcode边界检查不足漏洞 | 2025-11-10 | 2025-11-24 |
| cnvd-2025-29331 | Apple Xcode输入验证不足漏洞 | 2025-11-10 | 2025-11-24 |
| cnvd-2025-29330 | Apple macOS Sequoia权限问题漏洞(CNVD-2025-29330) | 2025-11-10 | 2025-11-24 |
| cnvd-2025-29329 | Apple macOS Sequoia代码签名限制不足漏洞 | 2025-11-10 | 2025-11-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2025-AVI-0319 | Multiples vulnérabilités dans Oracle Java SE | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0318 | Multiples vulnérabilités dans Oracle Database Server | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0317 | Multiples vulnérabilités dans les produits Mozilla | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0316 | Multiples vulnérabilités dans les produits Atlassian | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0315 | Multiples vulnérabilités dans Google Chrome | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0314 | Vulnérabilité dans les produits Microsoft | 2025-04-16T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| CERTFR-2025-AVI-0312 | Multiples vulnérabilités dans les produits Mattermost | 2025-04-15T00:00:00.000000 | 2025-04-16T00:00:00.000000 |
| certfr-2025-avi-0313 | Vulnérabilité dans SolarWinds Serv-U | 2025-04-15T00:00:00.000000 | 2025-04-15T00:00:00.000000 |
| CERTFR-2025-AVI-0313 | Vulnérabilité dans SolarWinds Serv-U | 2025-04-15T00:00:00.000000 | 2025-04-15T00:00:00.000000 |
| certfr-2025-avi-0311 | Vulnérabilité dans Microsoft Visual Studio Code | 2025-04-14T00:00:00.000000 | 2025-04-14T00:00:00.000000 |
| certfr-2025-avi-0310 | Vulnérabilité dans Microsoft Edge | 2025-04-14T00:00:00.000000 | 2025-04-14T00:00:00.000000 |
| CERTFR-2025-AVI-0311 | Vulnérabilité dans Microsoft Visual Studio Code | 2025-04-14T00:00:00.000000 | 2025-04-14T00:00:00.000000 |
| CERTFR-2025-AVI-0310 | Vulnérabilité dans Microsoft Edge | 2025-04-14T00:00:00.000000 | 2025-04-14T00:00:00.000000 |
| certfr-2025-avi-0309 | Multiples vulnérabilités dans les produits IBM | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0308 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0307 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0306 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0305 | Multiples vulnérabilités dans Google Pixel | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0294 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2025-04-09T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0265 | Multiples vulnérabilités dans Google Chrome | 2025-04-02T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0309 | Multiples vulnérabilités dans les produits IBM | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0308 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0307 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0306 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0305 | Multiples vulnérabilités dans Google Pixel | 2025-04-11T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0294 | Multiples vulnérabilités dans les produits HPE Aruba Networking | 2025-04-09T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| CERTFR-2025-AVI-0265 | Multiples vulnérabilités dans Google Chrome | 2025-04-02T00:00:00.000000 | 2025-04-11T00:00:00.000000 |
| certfr-2025-avi-0304 | Multiples vulnérabilités dans les produits Juniper Networks | 2025-04-10T00:00:00.000000 | 2025-04-10T00:00:00.000000 |
| certfr-2025-avi-0303 | Multiples vulnérabilités dans les produits Splunk | 2025-04-10T00:00:00.000000 | 2025-04-10T00:00:00.000000 |
| certfr-2025-avi-0302 | Multiples vulnérabilités dans Sonicwall NetExtender | 2025-04-10T00:00:00.000000 | 2025-04-10T00:00:00.000000 |