Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-1108 |
N/A
|
cons.saver in Midnight Commander (mc) 4.5.42 and … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:36.955Z |
| CVE-2000-1109 |
N/A
|
Midnight Commander (mc) 4.5.51 and earlier does n… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:36.508Z |
| CVE-2000-1119 |
N/A
|
Buffer overflow in setsenv command in IBM AIX 4.3… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.037Z |
| CVE-2000-1121 |
N/A
|
Buffer overflow in enq command in IBM AIX 4.3.x a… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.488Z |
| CVE-2000-1122 |
N/A
|
Buffer overflow in setclock command in IBM AIX 4.… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.472Z |
| CVE-2000-1123 |
N/A
|
Buffer overflow in pioout command in IBM AIX 4.3.… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.283Z |
| CVE-2000-1124 |
N/A
|
Buffer overflow in piobe command in IBM AIX 4.3.x… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.370Z |
| CVE-2000-1164 |
N/A
|
WinVNC installs the WinVNC3 registry key with per… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.415Z |
| CVE-2000-1165 |
N/A
|
Balabit syslog-ng allows remote attackers to caus… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.415Z |
| CVE-2000-1170 |
N/A
|
Buffer overflow in Netsnap webcam HTTP server bef… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.356Z |
| CVE-2000-1171 |
N/A
|
Directory traversal vulnerability in cgiforum.pl … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.328Z |
| CVE-2000-1174 |
N/A
|
Multiple buffer overflows in AFS ACL parser for E… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.368Z |
| CVE-2000-1180 |
N/A
|
Buffer overflow in cmctl program in Oracle 8.1.5 … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.377Z |
| CVE-2001-0002 |
N/A
|
Internet Explorer 5.5 and earlier allows remote a… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.599Z |
| CVE-2001-0003 |
N/A
|
Web Extender Client (WEC) in Microsoft Office 200… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.802Z |
| CVE-2001-0005 |
N/A
|
Buffer overflow in the parsing mechanism of the f… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.252Z |
| CVE-2001-0006 |
N/A
|
The Winsock2ProtocolCatalogMutex mutex in Windows… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-12-03T15:43:09.651Z |
| CVE-2001-0008 |
N/A
|
Backdoor account in Interbase database server all… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.604Z |
| CVE-2001-0009 |
N/A
|
Directory traversal vulnerability in Lotus Domino… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.429Z |
| CVE-2001-0010 |
N/A
|
Buffer overflow in transaction signature (TSIG) h… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.853Z |
| CVE-2001-0011 |
N/A
|
Buffer overflow in nslookupComplain function in B… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.356Z |
| CVE-2001-0012 |
N/A
|
BIND 4 and BIND 8 allow remote attackers to acces… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.513Z |
| CVE-2001-0013 |
N/A
|
Format string vulnerability in nslookupComplain f… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.651Z |
| CVE-2001-0014 |
N/A
|
Remote Data Protocol (RDP) in Windows 2000 Termin… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.087Z |
| CVE-2001-0015 |
N/A
|
Network Dynamic Data Exchange (DDE) in Windows 20… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.554Z |
| CVE-2001-0016 |
N/A
|
NTLM Security Support Provider (NTLMSSP) service … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.696Z |
| CVE-2001-0017 |
N/A
|
Memory leak in PPTP server in Windows NT 4.0 allo… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.319Z |
| CVE-2001-0021 |
N/A
|
MailMan Webmail 3.0.25 and earlier allows remote … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.651Z |
| CVE-2001-0026 |
N/A
|
rp-pppoe PPPoE client allows remote attackers to … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.596Z |
| CVE-2001-0028 |
N/A
|
Buffer overflow in the HTML parsing code in oops … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.312Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2000-1108 |
N/A
|
cons.saver in Midnight Commander (mc) 4.5.42 and … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:36.955Z |
| CVE-2000-1109 |
N/A
|
Midnight Commander (mc) 4.5.51 and earlier does n… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:36.508Z |
| CVE-2000-1119 |
N/A
|
Buffer overflow in setsenv command in IBM AIX 4.3… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.037Z |
| CVE-2000-1121 |
N/A
|
Buffer overflow in enq command in IBM AIX 4.3.x a… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.488Z |
| CVE-2000-1122 |
N/A
|
Buffer overflow in setclock command in IBM AIX 4.… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.472Z |
| CVE-2000-1123 |
N/A
|
Buffer overflow in pioout command in IBM AIX 4.3.… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.283Z |
| CVE-2000-1124 |
N/A
|
Buffer overflow in piobe command in IBM AIX 4.3.x… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.370Z |
| CVE-2000-1164 |
N/A
|
WinVNC installs the WinVNC3 registry key with per… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.415Z |
| CVE-2000-1165 |
N/A
|
Balabit syslog-ng allows remote attackers to caus… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.415Z |
| CVE-2000-1170 |
N/A
|
Buffer overflow in Netsnap webcam HTTP server bef… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.356Z |
| CVE-2000-1171 |
N/A
|
Directory traversal vulnerability in cgiforum.pl … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.328Z |
| CVE-2000-1174 |
N/A
|
Multiple buffer overflows in AFS ACL parser for E… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.368Z |
| CVE-2000-1180 |
N/A
|
Buffer overflow in cmctl program in Oracle 8.1.5 … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T05:45:37.377Z |
| CVE-2001-0002 |
N/A
|
Internet Explorer 5.5 and earlier allows remote a… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.599Z |
| CVE-2001-0003 |
N/A
|
Web Extender Client (WEC) in Microsoft Office 200… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.802Z |
| CVE-2001-0005 |
N/A
|
Buffer overflow in the parsing mechanism of the f… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.252Z |
| CVE-2001-0006 |
N/A
|
The Winsock2ProtocolCatalogMutex mutex in Windows… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-12-03T15:43:09.651Z |
| CVE-2001-0008 |
N/A
|
Backdoor account in Interbase database server all… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.604Z |
| CVE-2001-0009 |
N/A
|
Directory traversal vulnerability in Lotus Domino… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.429Z |
| CVE-2001-0010 |
N/A
|
Buffer overflow in transaction signature (TSIG) h… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.853Z |
| CVE-2001-0011 |
N/A
|
Buffer overflow in nslookupComplain function in B… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.356Z |
| CVE-2001-0012 |
N/A
|
BIND 4 and BIND 8 allow remote attackers to acces… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.513Z |
| CVE-2001-0013 |
N/A
|
Format string vulnerability in nslookupComplain f… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.651Z |
| CVE-2001-0014 |
N/A
|
Remote Data Protocol (RDP) in Windows 2000 Termin… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.087Z |
| CVE-2001-0015 |
N/A
|
Network Dynamic Data Exchange (DDE) in Windows 20… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.554Z |
| CVE-2001-0016 |
N/A
|
NTLM Security Support Provider (NTLMSSP) service … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.696Z |
| CVE-2001-0017 |
N/A
|
Memory leak in PPTP server in Windows NT 4.0 allo… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.319Z |
| CVE-2001-0021 |
N/A
|
MailMan Webmail 3.0.25 and earlier allows remote … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.651Z |
| CVE-2001-0026 |
N/A
|
rp-pppoe PPPoE client allows remote attackers to … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:54.596Z |
| CVE-2001-0028 |
N/A
|
Buffer overflow in the HTML parsing code in oops … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:06:55.312Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2000-0681 | Buffer overflow in BEA WebLogic server proxy plugin allows remote attackers to execute arbitrary co… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0682 | BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /Conso… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0683 | BEA WebLogic 5.1.x allows remote attackers to read source code for parsed pages by inserting /*.sht… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0684 | BEA WebLogic 5.1.x does not properly restrict access to the JSPServlet, which could allow remote at… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0685 | BEA WebLogic 5.1.x does not properly restrict access to the PageCompileServlet, which could allow r… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0686 | Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a ..… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0687 | Auction Weaver CGI script 1.03 and earlier allows remote attackers to read arbitrary files via a ..… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0688 | Subscribe Me LITE does not properly authenticate attempts to change the administrator password, whi… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0689 | Account Manager LITE does not properly authenticate attempts to change the administrator password, … | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0690 | Auction Weaver CGI script 1.02 and earlier allows remote attackers to execute arbitrary commands vi… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0691 | The faxrunq and faxrunqd in the mgetty package allows local users to create or modify arbitrary fil… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0692 | ISS RealSecure 3.2.1 and 3.2.2 allows remote attackers to cause a denial of service via a flood of … | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0693 | pgxconfig in the Raptor GFX configuration tool uses a relative path name for a system call to the "… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0694 | pgxconfig in the Raptor GFX configuration tool allows local users to gain privileges via a symlink … | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0695 | Buffer overflows in pgxconfig in the Raptor GFX configuration tool allow local users to gain privil… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0696 | The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly au… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0697 | The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface use… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0698 | Minicom 1.82.1 and earlier on some Linux systems allows local users to create arbitrary files owned… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0699 | Format string vulnerability in ftpd in HP-UX 10.20 allows remote attackers to cause a denial of ser… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0700 | Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 1… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0701 | The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format str… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0702 | The net.init rc script in HP-UX 11.00 (S008net.init) allows local users to overwrite arbitrary file… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0703 | suidperl (aka sperl) does not properly cleanse the escape sequence "~!" before calling /bin/mail to… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0704 | Buffer overflow in SGI Omron WorldView Wnn allows remote attackers to execute arbitrary commands vi… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0705 | ntop running in web mode allows remote attackers to read arbitrary files via a .. (dot dot) attack. | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0706 | Buffer overflows in ntop running in web mode allows remote attackers to execute arbitrary commands. | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0707 | PCCS MySQLDatabase Admin Tool Manager 1.2.4 and earlier installs the file dbconnect.inc within the … | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0708 | Buffer overflow in Pragma Systems TelnetServer 2000 version 4.0 allows remote attackers to cause a … | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0709 | The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers t… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| fkie_cve-2000-0710 | The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers t… | 2000-10-20T04:00:00.000 | 2025-04-03T01:03:51.193 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-hwch-749c-rv63 |
9.8 (3.1)
|
Potential Command Injection in hubot-scripts | 2020-08-31T22:46:38Z | 2021-04-12T21:34:54Z |
| ghsa-g4xp-36c3-f7mr |
|
Hidden Directories Always Served in inert | 2020-08-31T22:47:41Z | 2020-08-31T18:07:50Z |
| ghsa-6qqj-rx4w-r3cj |
6.5 (3.1)
|
CSRF Vulnerability in jquery-ujs | 2020-08-31T22:48:44Z | 2021-09-23T19:45:13Z |
| ghsa-82mg-x548-gq3j |
7.5 (3.1)
|
LDAP Injection in ldapauth | 2020-08-31T22:49:46Z | 2021-09-23T19:58:02Z |
| ghsa-6898-wx94-8jq8 |
9.8 (3.1)
|
Potential Command Injection in libnotify | 2020-08-31T22:50:48Z | 2023-09-08T20:38:35Z |
| ghsa-m75h-cghq-c8h5 |
|
Heap Based Buffer Overflow in libyaml | 2020-08-31T22:51:50Z | 2021-09-23T20:56:01Z |
| ghsa-9cw2-jqp5-7x39 |
6.1 (3.1)
|
Multiple Content Injection Vulnerabilities in marked | 2020-08-31T22:52:52Z | 2021-09-23T20:56:39Z |
| ghsa-44g9-w23c-5rw7 |
5.3 (3.1)
|
Directory Traversal in nhouston | 2020-08-31T22:53:54Z | 2021-09-23T20:57:48Z |
| ghsa-h698-r4hm-w94p |
5.9 (3.1)
|
Validation Bypass in paypal-ipn | 2020-08-31T22:54:56Z | 2021-09-23T20:58:30Z |
| ghsa-f9vc-q3hh-qhfv |
|
Content Injection in remarkable | 2020-08-31T22:56:00Z | 2020-08-31T18:08:29Z |
| ghsa-c3x7-gjmx-r2ff |
3.1 (3.1)
|
Open Redirect in serve-static | 2020-08-31T22:57:02Z | 2021-09-23T20:59:30Z |
| ghsa-69rr-wvh9-6c4q |
7.5 (3.1)
|
Directory Traversal in st | 2020-08-31T22:58:04Z | 2021-09-23T21:00:00Z |
| ghsa-9vxc-g2jx-qj3p |
|
API Admin Auth Weakness in tomato | 2020-08-31T22:59:07Z | 2021-09-23T21:00:28Z |
| ghsa-vjfr-p6hp-jqqw |
|
Command Injection in ungit | 2020-08-31T23:00:10Z | 2021-09-23T21:01:14Z |
| ghsa-f5w6-r7rg-mcgq |
7.5 (3.1)
|
Regular Expression Denial of Service in validator | 2020-08-31T23:01:13Z | 2021-09-23T21:03:25Z |
| ghsa-gg6m-fhqv-hg56 |
7.5 (3.1)
|
Denial of Service in yar | 2020-09-01T15:15:36Z | 2021-09-23T21:04:51Z |
| ghsa-mvmf-cvfx-qg55 |
5.3 (3.1)
|
Regular Expression Denial of Service in bleach | 2020-09-01T15:16:43Z | 2021-09-23T21:06:09Z |
| ghsa-c2v2-7rcg-2ch7 |
|
Regular Expression Denial of Service in ansi2html | 2020-09-01T15:17:48Z | 2021-01-14T15:58:08Z |
| ghsa-pjh3-jv7w-9jpr |
|
Command Injection in gm | 2020-09-01T15:18:55Z | 2021-09-23T21:23:47Z |
| ghsa-j3g2-m5jj-6336 |
|
Unsafe Merging of CORS Configuration Conflict in hapi | 2020-09-01T15:20:00Z | 2020-08-31T18:09:51Z |
| ghsa-fvq6-55gv-jx9f |
|
SQL Injection in mysql | 2020-09-01T15:21:05Z | 2020-08-31T18:09:53Z |
| ghsa-77g4-36jp-5v3m |
|
Remote Memory Disclosure in bittorrent-dht | 2020-09-01T15:22:12Z | 2020-08-31T18:09:58Z |
| ghsa-gjcw-v447-2w7q |
8.7 (3.1)
|
Forgeable Public/Private Tokens in jws | 2020-09-01T15:23:18Z | 2021-09-23T21:25:33Z |
| ghsa-r87w-47m8-22w3 |
6.3 (3.1)
|
Template Injection in jsrender | 2020-09-01T15:24:24Z | 2023-09-07T20:41:26Z |
| ghsa-39cx-xcwj-3rc4 |
|
Cross-Site Scripting in dojo | 2020-09-01T15:25:29Z | 2023-09-27T13:39:18Z |
| ghsa-p788-rj37-357w |
4.2 (3.1)
|
Insecure Defaults Leads to Potential MITM in ezseed-transmission | 2020-09-01T15:26:35Z | 2021-09-23T21:28:12Z |
| ghsa-5v9h-q3gj-c32x |
9.8 (3.1)
|
SQL Injection via GeoJSON in sequelize | 2020-09-01T15:27:40Z | 2021-09-23T21:29:13Z |
| ghsa-7f59-x49p-v8mq |
|
Cross-Site Scripting in swagger-ui | 2020-09-01T15:28:45Z | 2021-09-23T21:29:50Z |
| ghsa-v2jq-9475-r5g8 |
|
Cross-Site Scripting in bootstrap-tagsinput | 2020-09-01T15:29:51Z | 2021-09-23T21:31:28Z |
| ghsa-p239-93f7-h6xf |
|
Cross-Site Scripting in swagger-ui | 2020-09-01T15:30:58Z | 2021-09-23T21:32:17Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2022-38 |
|
An issue was discovered in Cobbler before 3.3.1. Files in /etc/cobbler are world readable… | cobbler | 2022-02-20T18:15:00Z | 2022-03-09T00:15:58.984313Z |
| pysec-2022-28 |
|
Insecure Temporary File in GitHub repository mlflow/mlflow prior to 1.23.1. | mlflow | 2022-02-23T09:15:00Z | 2022-03-02T06:39:30.836439Z |
| pysec-2022-32 |
|
B2 Command Line Tool is the official command line tool for the backblaze cloud storage se… | b2 | 2022-02-23T23:15:00Z | 2022-03-07T17:33:45.997096Z |
| pysec-2022-33 |
|
b2-sdk-python is a python library to access cloud storage provided by backblaze. Linux an… | b2sdk | 2022-02-23T23:15:00Z | 2022-03-07T17:33:46.032301Z |
| pysec-2022-29 |
|
It was discovered that the "Trigger DAG with config" screen was susceptible to XSS attack… | apache-airflow | 2022-02-25T09:15:00Z | 2022-03-04T21:27:14.014874Z |
| pysec-2022-30 |
|
In Apache Airflow, prior to version 2.2.4, some example DAGs did not properly sanitize us… | apache-airflow | 2022-02-25T09:15:00Z | 2022-03-04T21:27:14.083744Z |
| pysec-2022-35 |
|
Weblate is a copyleft software web-based continuous localization system. Versions prior t… | weblate | 2022-02-25T21:15:00Z | 2022-03-08T17:35:37.351702Z |
| pysec-2022-43051 |
|
Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using `fol… | pyquest | 2022-03-01T21:15:00+00:00 | 2023-07-03T20:33:00+00:00 |
| pysec-2022-43052 |
|
Fluture-Node is a FP-style HTTP and streaming utils for Node based on Fluture. Using `fol… | request-util | 2022-03-01T21:15:00+00:00 | 2023-07-03T20:33:00+00:00 |
| pysec-2022-159 |
|
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository scrapy/sc… | scrapy | 2022-03-02T04:15:00Z | 2022-03-09T19:24:19.981012Z |
| pysec-2022-164 |
|
A flaw was found in Ansible Engine's ansible-connection module, where sensitive informati… | ansible | 2022-03-03T19:15:00Z | 2022-03-15T14:28:02.422806Z |
| pysec-2022-160 |
|
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Pr… | twisted | 2022-03-03T21:15:00Z | 2022-03-10T17:35:00.079970Z |
| pysec-2022-162 |
|
Weblate is a web based localization tool with tight version control integration. Prior to… | weblate | 2022-03-04T17:15:00Z | 2022-03-11T17:35:01.661733Z |
| pysec-2022-31 |
|
The package weblate from 0 and before 4.11.1 are vulnerable to Remote Code Execution (RCE… | weblate | 2022-03-04T20:15:00Z | 2022-03-04T21:31:07.631627Z |
| pysec-2022-181 |
|
Code Injection in GitHub repository pytorchlightning/pytorch-lightning prior to 1.6.0. | pytorch-lightning | 2022-03-05T22:15:00Z | 2022-04-11T00:47:32.240193Z |
| pysec-2022-161 |
|
Open Redirect in GitHub repository archivy/archivy prior to 1.7.0. | archivy | 2022-03-06T23:15:00Z | 2022-03-11T17:31:40.885093Z |
| pysec-2022-34 |
|
HTTPie is a command-line HTTP client. HTTPie has the practical concept of sessions, which… | httpie | 2022-03-07T23:15:00Z | 2022-03-08T02:44:28.415437Z |
| pysec-2022-186 |
|
Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" a… | pyspark | 2022-03-10T09:15:00Z | 2022-05-17T21:40:53.336457Z |
| pysec-2022-43170 |
6.5 (3.1)
|
An XXE issue was discovered in Tryton Application Platform (Server) 5.x through 5.0.45, 6… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.248212+00:00 |
| pysec-2022-43171 |
7.5 (3.1)
|
An XML Entity Expansion (XEE) issue was discovered in Tryton Application Platform (Server… | tryton | 2022-03-10T17:47:00+00:00 | 2024-11-21T14:23:02.453983+00:00 |
| pysec-2022-228 |
|
An Access Control vunerabiity exists in Gerapy v 0.9.7 via the spider parameter in projec… | gerapy | 2022-03-10T21:15:00Z | 2023-05-25T05:07:00Z |
| pysec-2022-43054 |
7.5 (3.1)
|
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 a… | freetakserver | 2022-03-11T00:15:00+00:00 | 2023-08-17T03:22:31.240214+00:00 |
| pysec-2022-43135 |
8.8 (3.1)
|
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows attackers to creat… | freetakserver | 2022-03-11T00:15:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2022-177 |
|
Improper Authorization in GitHub repository cobbler/cobbler prior to 3.3.2. | cobbler | 2022-03-11T13:15:00Z | 2022-04-11T00:47:24.533946Z |
| pysec-2022-163 |
|
The package libvcs before 0.11.1 are vulnerable to Command Injection via argument injecti… | libvcs | 2022-03-14T18:15:00Z | 2022-03-14T20:32:58.020706Z |
| pysec-2022-167 |
|
Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository httpie/ht… | httpie | 2022-03-15T15:15:00Z | 2022-03-23T14:28:20.245559Z |
| pysec-2022-165 |
|
The package guake before 3.8.5 are vulnerable to Exposed Dangerous Method or Function due… | guake | 2022-03-17T12:15:00Z | 2022-03-17T16:54:03.713303Z |
| pysec-2022-169 |
|
Waitress is a Web Server Gateway Interface server for Python 2 and 3. When using Waitress… | waitress | 2022-03-17T13:15:00Z | 2022-03-28T18:41:52.426676Z |
| pysec-2022-229 |
|
`gradio` is an open source framework for building interactive machine learning models and… | gradio | 2022-03-17T21:15:00Z | 2023-05-25T05:07:00Z |
| pysec-2022-166 |
|
In Paramiko before 2.10.1, a race condition (between creation and chmod) in the write_pri… | paramiko | 2022-03-17T22:15:00Z | 2022-05-17T03:06:38.700744Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-2632 | Malicious code in dx-osc-ui (npm) | 2022-06-20T20:10:09Z | 2022-06-20T20:10:09Z |
| mal-2022-4297 | Malicious code in lib-feature-flags-js (npm) | 2022-06-20T20:10:09Z | 2022-06-20T20:10:10Z |
| mal-2022-6202 | Malicious code in softomate-caa-module (npm) | 2022-06-20T20:10:09Z | 2022-06-20T20:10:10Z |
| mal-2022-6962 | Malicious code in voicemail-prompt (npm) | 2022-06-20T20:10:09Z | 2022-06-20T20:10:09Z |
| MAL-2022-1272 | Malicious code in azure-arm-privatedns-samples-js (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:11Z |
| MAL-2022-1273 | Malicious code in azure-arm-privatedns-samples-ts (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:10Z |
| MAL-2022-1282 | Malicious code in azure-arm-resourcemover-samples-ts (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:11Z |
| MAL-2022-4547 | Malicious code in meliuz-card-google (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:10Z |
| mal-2022-1272 | Malicious code in azure-arm-privatedns-samples-js (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:11Z |
| mal-2022-1273 | Malicious code in azure-arm-privatedns-samples-ts (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:10Z |
| mal-2022-1282 | Malicious code in azure-arm-resourcemover-samples-ts (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:11Z |
| mal-2022-4547 | Malicious code in meliuz-card-google (npm) | 2022-06-20T20:10:10Z | 2022-06-20T20:10:10Z |
| MAL-2022-1279 | Malicious code in azure-arm-resourcegraph-samples-js-beta (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:11Z |
| MAL-2022-1280 | Malicious code in azure-arm-resourcegraph-samples-ts-beta (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:11Z |
| MAL-2022-1281 | Malicious code in azure-arm-resourcemover-samples-js (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:12Z |
| MAL-2022-1291 | Malicious code in azure-arm-storagesync-samples-js (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:12Z |
| mal-2022-1279 | Malicious code in azure-arm-resourcegraph-samples-js-beta (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:11Z |
| mal-2022-1280 | Malicious code in azure-arm-resourcegraph-samples-ts-beta (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:11Z |
| mal-2022-1281 | Malicious code in azure-arm-resourcemover-samples-js (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:12Z |
| mal-2022-1291 | Malicious code in azure-arm-storagesync-samples-js (npm) | 2022-06-20T20:10:11Z | 2022-06-20T20:10:12Z |
| MAL-2022-1226 | Malicious code in azure-ai-document-translator-samples-ts (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:12Z |
| MAL-2022-1292 | Malicious code in azure-arm-storsimple8000series-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:13Z |
| MAL-2022-1293 | Malicious code in azure-arm-support-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:13Z |
| MAL-2022-1304 | Malicious code in azure-communication-phone-numbers-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:12Z |
| mal-2022-1226 | Malicious code in azure-ai-document-translator-samples-ts (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:12Z |
| mal-2022-1292 | Malicious code in azure-arm-storsimple8000series-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:13Z |
| mal-2022-1293 | Malicious code in azure-arm-support-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:13Z |
| mal-2022-1304 | Malicious code in azure-communication-phone-numbers-samples-js (npm) | 2022-06-20T20:10:12Z | 2022-06-20T20:10:12Z |
| MAL-2022-1278 | Malicious code in azure-arm-reservations-samples-ts (npm) | 2022-06-20T20:10:13Z | 2022-06-20T20:10:14Z |
| MAL-2022-1287 | Malicious code in azure-arm-signalr-samples-js (npm) | 2022-06-20T20:10:13Z | 2022-06-20T20:10:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0236 | IBM InfoSphere Information Server: Schwachstelle ermöglicht Cross-Site Scripting | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0237 | IBM WebSphere Application Server: Schwachstelle ermöglicht Codeausführung | 2023-01-31T23:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-0238 | binutils: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0239 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2023-0240 | Joomla: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0241 | VMware vRealize Operations: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0242 | Dell BIOS: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2023-04-27T22:00:00.000+00:00 |
| wid-sec-w-2023-0243 | Notepad++: Schwachstelle ermöglicht Denial of Service | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0244 | Mozilla Thunderbird: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-01-31T23:00:00.000+00:00 | 2023-02-20T23:00:00.000+00:00 |
| wid-sec-w-2023-0245 | Apache Portable Runtime (APR): Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2024-05-12T22:00:00.000+00:00 |
| wid-sec-w-2023-0246 | docker: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-01-31T23:00:00.000+00:00 | 2023-10-19T22:00:00.000+00:00 |
| wid-sec-w-2023-0247 | Trellix Data Loss Prevention: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2023-02-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0248 | Moodle: Mehrere Schwachstellen | 2023-01-31T23:00:00.000+00:00 | 2023-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-0250 | Cisco Prime Infrastructure: Schwachstelle ermöglicht Cross-Site Scripting | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0251 | shadow: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0252 | Cisco Small Business: Schwachstelle ermöglicht Manipulation von Dateien | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0253 | Cisco Identity Services Engine (ISE): Mehrere Schwachstellen | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0254 | Zoho ManageEngine ServiceDesk Plus: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0255 | IBM Spectrum Protect: Mehrere Schwachstellen | 2023-02-01T23:00:00.000+00:00 | 2023-02-27T23:00:00.000+00:00 |
| wid-sec-w-2023-0256 | IBM Spectrum Scale: Schwachstelle ermöglicht Denial of Service | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0257 | Drupal: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0258 | Atlassian Jira Service Management Server and Data Center: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-02-01T23:00:00.000+00:00 | 2023-02-05T23:00:00.000+00:00 |
| wid-sec-w-2023-0259 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0260 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-02-01T23:00:00.000+00:00 | 2024-02-27T23:00:00.000+00:00 |
| wid-sec-w-2023-0262 | Django: Schwachstelle ermöglicht Denial of Service | 2023-02-01T23:00:00.000+00:00 | 2025-09-17T22:00:00.000+00:00 |
| wid-sec-w-2023-0263 | Grafana: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-01T23:00:00.000+00:00 | 2024-02-08T23:00:00.000+00:00 |
| wid-sec-w-2023-0264 | ILIAS: Mehrere Schwachstellen | 2023-02-01T23:00:00.000+00:00 | 2023-02-01T23:00:00.000+00:00 |
| wid-sec-w-2023-0265 | F5 BIG-IP: Mehrere Schwachstellen | 2023-02-01T23:00:00.000+00:00 | 2023-06-28T22:00:00.000+00:00 |
| wid-sec-w-2023-0261 | IBM MQ: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-02-02T23:00:00.000+00:00 | 2023-02-02T23:00:00.000+00:00 |
| wid-sec-w-2023-0266 | genua genucenter: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-02-02T23:00:00.000+00:00 | 2023-02-07T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2007:0486 | Red Hat Security Advisory: mod_perl security update | 2007-06-18T09:13:00+00:00 | 2025-11-21T17:31:48+00:00 |
| rhsa-2007_0486 | Red Hat Security Advisory: mod_perl security update | 2007-06-18T09:13:00+00:00 | 2024-11-22T02:03:55+00:00 |
| rhsa-2007:0396 | Red Hat Security Advisory: mod_perl security update | 2007-06-20T14:49:00+00:00 | 2025-11-21T17:31:44+00:00 |
| rhsa-2007_0396 | Red Hat Security Advisory: mod_perl security update | 2007-06-20T14:49:00+00:00 | 2024-11-22T02:03:50+00:00 |
| rhsa-2007:0510 | Red Hat Security Advisory: evolution-data-server security update | 2007-06-25T13:39:00+00:00 | 2025-11-21T17:31:51+00:00 |
| rhsa-2007_0510 | Red Hat Security Advisory: evolution-data-server security update | 2007-06-25T13:39:00+00:00 | 2024-11-22T01:12:25+00:00 |
| rhsa-2007:0509 | Red Hat Security Advisory: evolution security update | 2007-06-25T13:47:00+00:00 | 2025-11-21T17:31:51+00:00 |
| rhsa-2007_0509 | Red Hat Security Advisory: evolution security update | 2007-06-25T13:47:00+00:00 | 2024-11-22T01:12:20+00:00 |
| rhsa-2007:0488 | Red Hat Security Advisory: kernel security update | 2007-06-25T17:50:00+00:00 | 2025-11-21T17:31:48+00:00 |
| rhsa-2007_0488 | Red Hat Security Advisory: kernel security update | 2007-06-25T17:50:00+00:00 | 2024-11-22T01:44:30+00:00 |
| rhsa-2007:0532 | Red Hat Security Advisory: apache security update | 2007-06-26T15:13:00+00:00 | 2025-11-21T17:31:52+00:00 |
| rhsa-2007_0532 | Red Hat Security Advisory: apache security update | 2007-06-26T15:13:00+00:00 | 2024-12-01T11:53:04+00:00 |
| rhsa-2007:0534 | Red Hat Security Advisory: httpd security update | 2007-06-26T15:21:00+00:00 | 2025-11-21T17:31:53+00:00 |
| rhsa-2007_0534 | Red Hat Security Advisory: httpd security update | 2007-06-26T15:21:00+00:00 | 2024-12-01T11:53:12+00:00 |
| rhsa-2007:0556 | Red Hat Security Advisory: httpd security update | 2007-06-26T15:22:00+00:00 | 2025-11-21T17:31:55+00:00 |
| rhsa-2007_0556 | Red Hat Security Advisory: httpd security update | 2007-06-26T15:22:00+00:00 | 2024-12-01T11:53:16+00:00 |
| rhsa-2007:0384 | Red Hat Security Advisory: krb5 security update | 2007-06-26T18:41:00+00:00 | 2025-11-21T17:31:41+00:00 |
| rhsa-2007_0384 | Red Hat Security Advisory: krb5 security update | 2007-06-26T18:41:00+00:00 | 2024-11-22T01:08:00+00:00 |
| rhsa-2007:0562 | Red Hat Security Advisory: krb5 security update | 2007-06-26T18:51:00+00:00 | 2025-11-21T17:31:56+00:00 |
| rhsa-2007_0562 | Red Hat Security Advisory: krb5 security update | 2007-06-26T18:51:00+00:00 | 2024-11-22T01:08:05+00:00 |
| rhsa-2007:0605 | Red Hat Security Advisory: HelixPlayer security update | 2007-06-27T13:12:00+00:00 | 2025-11-21T17:31:57+00:00 |
| rhsa-2007_0605 | Red Hat Security Advisory: HelixPlayer security update | 2007-06-27T13:12:00+00:00 | 2024-11-14T10:05:27+00:00 |
| rhsa-2007:0533 | Red Hat Security Advisory: httpd security update | 2007-06-27T14:52:00+00:00 | 2025-11-21T17:31:53+00:00 |
| rhsa-2007_0533 | Red Hat Security Advisory: httpd security update | 2007-06-27T14:52:00+00:00 | 2024-12-01T11:53:08+00:00 |
| rhsa-2007:0559 | Red Hat Security Advisory: cman security update | 2007-06-28T07:33:00+00:00 | 2025-11-21T17:31:56+00:00 |
| rhsa-2007_0559 | Red Hat Security Advisory: cman security update | 2007-06-28T07:33:00+00:00 | 2024-11-22T01:15:08+00:00 |
| rhsa-2007:0595 | Red Hat Security Advisory: kernel security and bug fix update | 2007-07-10T04:00:00+00:00 | 2025-11-21T17:31:57+00:00 |
| rhsa-2007_0595 | Red Hat Security Advisory: kernel security and bug fix update | 2007-07-10T04:00:00+00:00 | 2024-11-22T01:15:52+00:00 |
| rhba-2007:0418 | Red Hat Bug Fix Advisory: unzip bug fix update | 2007-07-11T00:00:00+00:00 | 2025-11-21T17:20:49+00:00 |
| rhba-2007_0418 | Red Hat Bug Fix Advisory: unzip bug fix update | 2007-07-11T00:00:00+00:00 | 2024-11-22T00:33:02+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-349-19 | Siemens SICAM PAS | 2022-12-13T00:00:00.000000Z | 2022-12-13T00:00:00.000000Z |
| icsa-22-349-20 | Siemens Teamcenter Visualization and JT2Go | 2022-12-13T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-349-21 | Siemens SCALANCE X-200RNA Switch Devices | 2022-12-13T00:00:00.000000Z | 2022-12-13T00:00:00.000000Z |
| icsa-22-349-01 | Prosys OPC UA Simulation Server (Update A) | 2022-12-15T00:00:00.000000Z | 2023-01-03T00:00:00.000000Z |
| icsa-22-349-10 | Siemens APOGEE/TALON Field Panels | 2022-12-15T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-22-354-01 | Fuji Electric Tellus Lite V-Simulator | 2022-12-20T00:00:00.000000Z | 2022-12-20T00:00:00.000000Z |
| icsa-22-354-02 | Rockwell Automation GuardLogix and ControlLogix controllers | 2022-12-20T00:00:00.000000Z | 2022-12-20T00:00:00.000000Z |
| icsa-22-354-03 | ARC Informatique PcVue | 2022-12-20T00:00:00.000000Z | 2023-02-09T00:00:00.000000Z |
| icsa-22-354-04 | Rockwell Automation MicroLogix 1100 and 1400 | 2022-12-20T00:00:00.000000Z | 2022-12-20T00:00:00.000000Z |
| icsa-22-354-05 | Delta 4G Router DX-3021 | 2022-12-20T00:00:00.000000Z | 2022-12-20T00:00:00.000000Z |
| icsa-22-356-01 | Priva TopControl Suite | 2022-12-22T00:00:00.000000Z | 2022-12-22T00:00:00.000000Z |
| icsa-22-356-02 | Rockwell Automation Studio 5000 Logix Emulate | 2022-12-22T00:00:00.000000Z | 2022-12-22T00:00:00.000000Z |
| icsa-22-356-04 | Omron CX-Programmer | 2022-12-22T00:00:00.000000Z | 2022-12-22T00:00:00.000000Z |
| icsa-22-356-03 | Mitsubishi Electric MELSEC iQ-R, iQ-L Series and MELIPC Series (Update E) | 2022-12-22T07:00:00.000000Z | 2024-09-05T06:00:00.000000Z |
| icsa-23-005-01 | Hitachi Energy UNEM | 2023-01-05T00:00:00.000000Z | 2023-01-05T00:00:00.000000Z |
| icsa-23-005-02 | Hitachi Energy FOXMAN-UN | 2023-01-05T00:00:00.000000Z | 2023-01-05T00:00:00.000000Z |
| icsa-23-005-03 | Hitachi Energy Lumada Asset Performance Management | 2023-01-05T00:00:00.000000Z | 2023-01-05T00:00:00.000000Z |
| icsa-23-010-01 | Black Box KVM | 2023-01-10T00:00:00.000000Z | 2023-01-10T00:00:00.000000Z |
| icsa-23-012-08 | Siemens S7-1500 CPU devices | 2023-01-10T00:00:00.000000Z | 2025-01-14T00:00:00.000000Z |
| icsa-23-012-09 | Siemens Mendix SAML Module | 2023-01-10T00:00:00.000000Z | 2023-01-10T00:00:00.000000Z |
| icsa-23-012-10 | Siemens Automation License Manager | 2023-01-10T00:00:00.000000Z | 2023-03-14T00:00:00.000000Z |
| icsa-23-012-11 | Siemens Solid Edge before V2023 MP1 | 2023-01-10T00:00:00.000000Z | 2023-01-10T00:00:00.000000Z |
| icsa-23-017-03 | Siemens SINEC INS | 2023-01-10T00:00:00.000000Z | 2023-01-10T00:00:00.000000Z |
| icsa-23-012-01 | Sewio RTLS Studio | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-02 | RONDS Equipment Predictive Maintenance Solution | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-03 | InHand Networks InRouter | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-04 | Panasonic Sanyo CCTV Network Camera | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-05 | SAUTER Controls Nova 200 - 220 Series (PLC 6) | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-06 | Johnson Controls Metasys | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| icsa-23-012-07 | Hitachi Energy Lumada APM | 2023-01-12T00:00:00.000000Z | 2023-01-12T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-dnx-acl-pyzdkeyf | Cisco IOS XR Software Access Control List Bypass Vulnerability | 2023-09-13T16:00:00+00:00 | 2023-09-13T16:00:00+00:00 |
| cisco-sa-ios-xr-cfm-3pwn8mkt | Cisco IOS XR Software Connectivity Fault Management Denial of Service Vulnerability | 2023-09-13T16:00:00+00:00 | 2023-09-13T16:00:00+00:00 |
| cisco-sa-iosxr-info-gxp7nvcp | Cisco IOS XR Software Model-Driven Programmability Behavior with AAA Authorization | 2023-09-13T16:00:00+00:00 | 2023-09-13T16:00:00+00:00 |
| cisco-sa-iosxr-ipxe-sigbypass-pymfyqgb | Cisco IOS XR Software iPXE Boot Signature Bypass Vulnerability | 2023-09-13T16:00:00+00:00 | 2024-08-07T15:55:33+00:00 |
| cisco-sa-lnt-l9zokbz5 | Cisco IOS XR Software Image Verification Vulnerability | 2023-09-13T16:00:00+00:00 | 2023-09-13T16:00:00+00:00 |
| cisco-sa-aaascp-tyj4fejm | Cisco IOS and IOS XE Software Command Authorization Bypass Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-10-13T13:36:50+00:00 |
| cisco-sa-ap-dos-capwap-ddmczs4m | Cisco Access Point Software Uncontrolled Resource Consumption Vulnerability | 2023-09-27T16:00:00+00:00 | 2024-12-12T12:27:21+00:00 |
| cisco-sa-appqoe-utd-dos-p8o57p5y | Cisco IOS XE Software Application Quality of Experience and Unified Threat Defense Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-cat3k-dos-zza4gb3r | Cisco IOS XE Software for Catalyst 3650 and Catalyst 3850 Series Switches Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-cbw-dos-ysmbuqx3 | Cisco Wireless LAN Controller AireOS Software Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-click-ap-dos-wdcxkvnq | Cisco Catalyst 9100 Access Points Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-dnac-ins-acc-con-nhavdrbz | Cisco DNA Center API Insufficient Access Control Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-getvpn-rce-g8qr68sx | Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-ios-xe-l2tp-dos-eb5tufmv | Cisco IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-mlre-h93fswrz | Cisco IOS XE Software for ASR 1000 Series Aggregation Services Routers IPv6 Multicast Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-sdwan-vman-sc-lrlfu2z | Cisco Catalyst SD-WAN Manager Vulnerabilities | 2023-09-27T16:00:00+00:00 | 2023-10-25T16:37:56+00:00 |
| cisco-sa-vmanage-html-3zkh8d6x | Cisco Catalyst SD-WAN Manager Web UI HTML Injection Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-webui-cmdij-fzzaexay | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-wlc-wncd-hfgmsfsd | Cisco IOS XE Software for Wireless LAN Controllers Wireless Network Control Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-cer-priv-esc-b9t3hqk9 | Cisco Emergency Responder Static Credentials Vulnerability | 2023-10-04T16:00:00+00:00 | 2023-10-04T16:00:00+00:00 |
| cisco-sa-cucm-apidos-pgsdcdnf | Multiple Cisco Unified Communications Products Unauthenticated API High CPU Utilization Denial of Service Vulnerability | 2023-10-04T16:00:00+00:00 | 2024-05-17T15:07:50+00:00 |
| cisco-sa-rdocker-uatbukkn | Cisco IOx Application Hosting Environment Privilege Escalation Vulnerability | 2023-10-04T16:00:00+00:00 | 2023-10-04T16:00:00+00:00 |
| cisco-sa-curl-libcurl-d9ds39cv | cURL and libcurl Vulnerability Affecting Cisco Products: October 2023 | 2023-10-12T16:00:00+00:00 | 2024-08-27T18:06:16+00:00 |
| cisco-sa-iosxe-webui-privesc-j22saa4z | Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature | 2023-10-16T15:00:00+00:00 | 2023-11-01T15:44:28+00:00 |
| cisco-sa-http2-reset-d8kf32vz | HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023 | 2023-10-16T16:00:00+00:00 | 2023-12-21T17:09:38+00:00 |
| cisco-sa-sdwan-lfi-owlbkuge | Cisco Catalyst SD-WAN Manager Local File Inclusion Vulnerability | 2023-10-18T16:00:00+00:00 | 2023-10-18T16:00:00+00:00 |
| cisco-sa-asa-icmpv6-t5tzqwnd | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-02T13:50:35+00:00 |
| cisco-sa-asa-webvpn-dos-3ghzqbas | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-02T13:47:35+00:00 |
| cisco-sa-asaftd-ac-acl-bypass-bwd7q6gb | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asaftd-multi-cert-dza3h5pt | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Multiple Certificate Authentication Bypass Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2021-3905 | A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments. | 2022-08-02T00:00:00.000Z | 2022-08-27T00:00:00.000Z |
| msrc_cve-2021-3929 | A DMA reentrancy issue was found in the NVM Express Controller (NVME) emulation in QEMU. This CVE is similar to CVE-2021-3750 and just like it when the reentrancy write triggers the reset function nvme_ctrl_reset() data structs will be freed leading to a use-after-free issue. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service condition or potentially executing arbitrary code within the context of the QEMU process on the host. | 2022-08-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2021-3975 | A use-after-free flaw was found in libvirt. The qemuMonitorUnregister() function in qemuProcessHandleMonitorEOF is called using multiple threads without being adequately protected by a monitor lock. This flaw could be triggered by the virConnectGetAllDomainStats API when the guest is shutting down. An unprivileged client with a read-only connection could use this flaw to perform a denial of service attack by causing the libvirt daemon to crash. | 2022-08-02T00:00:00.000Z | 2022-08-27T00:00:00.000Z |
| msrc_cve-2021-3995 | A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows an unprivileged local attacker to unmount FUSE filesystems that belong to certain other users who have a UID that is a prefix of the UID of the attacker in its string form. An attacker may use this flaw to cause a denial of service to applications that use the affected filesystems. | 2022-08-02T00:00:00.000Z | 2025-10-01T23:11:12.000Z |
| msrc_cve-2021-3996 | A logic error was found in the libmount library of util-linux in the function that allows an unprivileged user to unmount a FUSE filesystem. This flaw allows a local user on a vulnerable system to unmount other users' filesystems that are either world-writable themselves (like /tmp) or mounted in a world-writable directory. An attacker may use this flaw to cause a denial of service to applications that use the affected filesystems. | 2022-08-02T00:00:00.000Z | 2025-10-01T23:11:12.000Z |
| msrc_cve-2021-3997 | A flaw was found in systemd. An uncontrolled recursion in systemd-tmpfiles may lead to a denial of service at boot time when too many nested directories are created in /tmp. | 2022-08-02T00:00:00.000Z | 2022-08-27T00:00:00.000Z |
| msrc_cve-2021-3998 | A flaw was found in glibc. The realpath() function can mistakenly return an unexpected value potentially leading to information leakage and disclosure of sensitive data. | 2022-08-02T00:00:00.000Z | 2022-08-30T00:00:00.000Z |
| msrc_cve-2021-3999 | A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. | 2022-08-02T00:00:00.000Z | 2022-08-31T00:00:00.000Z |
| msrc_cve-2021-4037 | A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. This vulnerability is similar to the previous CVE-2018-13405 and adds the missed fix for the XFS. | 2022-08-02T00:00:00.000Z | 2022-08-31T00:00:00.000Z |
| msrc_cve-2021-4122 | It was found that a specially crafted LUKS header could trick cryptsetup into disabling encryption during the recovery of the device. An attacker with physical access to the medium such as a flash disk could use this flaw to force a user into permanently disabling the encryption layer of that medium. | 2022-08-02T00:00:00.000Z | 2022-08-31T00:00:00.000Z |
| msrc_cve-2021-4155 | A data leak flaw was found in the way XFS_IOC_ALLOCSP IOCTL in the XFS filesystem allowed for size increase of files with unaligned size. A local attacker could use this flaw to leak data on the XFS filesystem otherwise not accessible to them. | 2022-08-02T00:00:00.000Z | 2022-08-31T00:00:00.000Z |
| msrc_cve-2021-4158 | A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious privileged user within the guest could use this flaw to crash the QEMU process on the host resulting in a denial of service condition. | 2022-08-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2021-4209 | A NULL pointer dereference flaw was found in GnuTLS. As Nettle's hash update functions internally call memcpy providing zero-length input may cause undefined behavior. This flaw leads to a denial of service after authentication in rare circumstances. | 2022-08-02T00:00:00.000Z | 2022-08-31T00:00:00.000Z |
| msrc_cve-2021-4217 | The vulnerability in unzip occurs due to improper handling of Unicode strings | 2022-08-02T00:00:00.000Z | 2025-04-16T00:00:00.000Z |
| msrc_cve-2021-42523 | There are two Information Disclosure vulnerabilities in colord and they lie in colord/src/cd-device-db.c and colord/src/cd-profile-db.c separately. They exist because the 'err_msg' of 'sqlite3_exec' is not releasing after use while libxml2 emphasizes that the caller needs to release it. | 2022-08-02T00:00:00.000Z | 2022-09-01T00:00:00.000Z |
| msrc_cve-2021-43766 | Odyssey passes to server unencrypted bytes from man-in-the-middle When Odyssey is configured to use certificate Common Name for client authentication a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established despite the use of SSL certificate verification and encryption. This is similar to CVE-2021-23214 for PostgreSQL. | 2022-08-02T00:00:00.000Z | 2022-09-01T00:00:00.000Z |
| msrc_cve-2021-43767 | Odyssey passes to client unencrypted bytes from man-in-the-middle When Odyssey storage is configured to use the PostgreSQL server using 'trust' authentication with a 'clientcert' requirement or to use 'cert' authentication a man-in-the-middle attacker can inject false responses to the client's first few queries. Despite the use of SSL certificate verification and encryption Odyssey will pass these results to client as if they originated from valid server. This is similar to CVE-2021-23222 for PostgreSQL. | 2022-08-02T00:00:00.000Z | 2022-09-01T00:00:00.000Z |
| msrc_cve-2022-0135 | An out-of-bounds write issue was found in the VirGL virtual OpenGL renderer (virglrenderer). This flaw allows a malicious guest to create a specially crafted virgil resource and then issue a VIRTGPU_EXECBUFFER ioctl leading to a denial of service or possible code execution. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0168 | A denial of service (DOS) issue was found in the Linux kernel’s smb2_ioctl_query_info function in the fs/cifs/smb2ops.c Common Internet File System (CIFS) due to an incorrect return from the memdup_user function. This flaw allows a local privileged (CAP_SYS_ADMIN) attacker to crash the system. | 2022-08-02T00:00:00.000Z | 2022-09-03T00:00:00.000Z |
| msrc_cve-2022-0171 | A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root (host) user-level application to crash the host kernel by creating a confidential guest VM instance in AMD CPU that supports Secure Encrypted Virtualization (SEV). | 2022-08-02T00:00:00.000Z | 2022-09-03T00:00:00.000Z |
| msrc_cve-2022-0175 | A flaw was found in the VirGL virtual OpenGL renderer (virglrenderer). The virgl did not properly initialize memory when allocating a host-backed memory resource. A malicious guest could use this flaw to mmap from the guest kernel and read this uninitialized memory from the host possibly leading to information disclosure. | 2022-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-0216 | A use-after-free vulnerability was found in the LSI53C895A SCSI Host Bus Adapter emulation of QEMU. The flaw occurs while processing repeated messages to cancel the current SCSI request via the lsi_do_msgout function. This flaw allows a malicious privileged user within the guest to crash the QEMU process on the host, resulting in a denial of service. | 2022-08-02T00:00:00.000Z | 2025-10-01T23:11:13.000Z |
| msrc_cve-2022-0336 | The Samba AD DC includes checks when adding service principals names (SPNs) to an account to ensure that SPNs do not alias with those already in the database. Some of these checks are able to be bypassed if an account modification re-adds an SPN that was previously present on that account such as one added when a computer is joined to a domain. An attacker who has the ability to write to an account can exploit this to perform a denial-of-service attack by adding an SPN that matches an existing service. Additionally an attacker who can intercept traffic can impersonate existing services resulting in a loss of confidentiality and integrity. | 2022-08-02T00:00:00.000Z | 2024-10-15T00:00:00.000Z |
| msrc_cve-2022-0358 | A flaw was found in the QEMU virtio-fs shared file system daemon (virtiofsd) implementation. This flaw is strictly related to CVE-2018-13405. A local guest user can create files in the directories shared by virtio-fs with unintended group ownership in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of the group. This could allow a malicious unprivileged user inside the guest to gain access to resources accessible to the root group potentially escalating their privileges within the guest. A malicious local user in the host might also leverage this unexpected executable file created by the guest to escalate their privileges on the host system. | 2022-08-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-0480 | A flaw was found in the filelock_init in fs/locks.c function in the Linux kernel. This issue can lead to host memory exhaustion due to memcg not limiting the number of Portable Operating System Interface (POSIX) file locks. | 2022-08-02T00:00:00.000Z | 2025-10-01T23:11:13.000Z |
| msrc_cve-2022-0850 | A vulnerability was found in linux kernel where an information leak occurs via ext4_extent_header to userspace. | 2022-08-02T00:00:00.000Z | 2023-08-26T00:00:00.000Z |
| msrc_cve-2022-0934 | A single-byte non-arbitrary write/use-after-free flaw was found in dnsmasq. This flaw allows an attacker who sends a crafted packet processed by dnsmasq potentially causing a denial of service. | 2022-08-02T00:00:00.000Z | 2023-03-08T00:00:00.000Z |
| msrc_cve-2022-1012 | A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This flaw may allow an attacker to information leak and may cause a denial of service problem. | 2022-08-02T00:00:00.000Z | 2022-08-12T00:00:00.000Z |
| msrc_cve-2022-1016 | A flaw was found in the Linux kernel in net/netfilter/nf_tables_core.c:nft_do_chain which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions as it can lead to a kernel information leak problem caused by a local unprivileged attacker. | 2022-08-02T00:00:00.000Z | 2023-01-06T00:00:00.000Z |
| msrc_cve-2022-1043 | A flaw was found in the Linux kernel’s io_uring implementation. This flaw allows an attacker with a local account to corrupt system memory crash the system or escalate privileges. | 2022-08-02T00:00:00.000Z | 2022-09-07T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201803-2364 | The Play Library SDK is developed based on Dahua's proprietary stream encapsulation proto… | 2022-05-04T10:04:25.366000Z |
| var-201801-1815 | Huawei AR series routers, DP300, NetEngine16EX and other Chinese Huawei products. A cross… | 2022-05-04T10:04:28.432000Z |
| var-201801-1836 | D-LinkDSL-6850U is a wireless router product of D-Link. D-LinkDSL-6850U Router Remote Com… | 2022-05-04T10:04:28.420000Z |
| var-201707-1358 | The D-LinkDSL-2640B is a router device. There is a security hole in D-LinkDSL-2640B. The … | 2022-05-04T10:04:41.337000Z |
| var-201705-4196 | The integrated intelligent set-top box z84 is a set-top box product of Shenzhen Zhaoneng … | 2022-05-04T10:04:42.883000Z |
| var-201706-1113 | Foscamcamera is a webcam that can push messages to mobile phones and directly implement v… | 2022-05-04T10:04:42.199000Z |
| var-201706-1134 | TerraMaster is a high-end professional storage development and sales company headquartere… | 2022-05-04T10:04:42.187000Z |
| var-201612-0635 | SNC-CH115, SNC-CH120, SNC-CH160, etc. are Sony’s IP camera products. Many Sony IPELA… | 2022-05-04T10:04:51.947000Z |
| var-201612-0656 | Huawei Imagine 5 is the smartphone of China Huawei. Huawei enjoys an input verification v… | 2022-05-04T10:04:51.931000Z |
| var-201610-0706 | AVTECH, founded in 1996, is one of the world's leading manufacturers of CCTV. The main pr… | 2022-05-04T10:04:52.956000Z |
| var-201610-0727 | AVTECH, founded in 1996, is one of the world's leading manufacturers of CCTV. The main pr… | 2022-05-04T10:04:52.945000Z |
| var-201611-0401 | MVPower Weak background password on camera, allowing initial password login | 2022-05-04T10:04:52.800000Z |
| var-201605-0672 | The NetgearRouterJNR1010 is a wireless router product. NetgearRouterJNR1010 has authentic… | 2022-05-04T10:04:57.251000Z |
| var-201407-0755 | Multiple Huawei products are prone to a denial-of-service vulnerability. An attacker can … | 2022-05-04T10:05:08.131000Z |
| var-201307-0615 | ASUS multiple routers have security vulnerabilities that allow remote attackers to exploi… | 2022-05-04T10:05:15.948000Z |
| var-201304-0572 | Hitachi IT Operation Director Agent in client PC contains a buffer overflow vulnerability… | 2022-05-04T10:05:16.660000Z |
| var-201302-0586 | The Samsung Galaxy S III is a popular smartphone device. Handling the HOME key in an emer… | 2022-05-04T10:05:17.568000Z |
| var-201008-0401 | JP1/Cm2/Network Node Manager contains a vulnerability that could allow a remote attacker … | 2022-05-04T10:05:30.807000Z |
| var-200903-0569 | Gigaset SE461 is a high-speed wireless router from Siemens. The web management interfac… | 2022-05-04T10:06:09.307000Z |
| var-200805-0412 | The JP1/Cm2/Network Node Manager (NNM) has vulnerability that can be exploited to cause a… | 2022-05-04T10:06:13.268000Z |
| var-202112-2217 | Certain NETGEAR devices are affected by authentication bypass. This affects CBR40 before … | 2022-05-04T10:07:01.182000Z |
| var-202112-2322 | Certain NETGEAR devices are affected by command injection by an unauthenticated attacker.… | 2022-05-04T10:07:01.094000Z |
| var-202112-2406 | Certain NETGEAR devices are affected by command injection by an authenticated user. This … | 2022-05-04T10:07:01.008000Z |
| var-202108-2308 | Suzhou Keda Technology Co., Ltd. is a leading provider of video and security products and… | 2022-05-04T10:07:06.491000Z |
| var-202108-2329 | Cisco generally refers to Cisco. Cisco is the world's leading provider of network solutio… | 2022-05-04T10:07:06.482000Z |
| var-202108-2350 | The NVR series is a network camera of GW Security. The GW Security NVR series network… | 2022-05-04T10:07:06.468000Z |
| var-202108-2371 | Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. Twent… | 2022-05-04T10:07:06.457000Z |
| var-202108-2392 | Fujifilm was established on January 3, 1995. It is a wholly-owned holding company of Fuji… | 2022-05-04T10:07:06.445000Z |
| var-202108-2413 | Hewlett-Packard (Hewlett-Packard, referred to as HP) is one of the information technology… | 2022-05-04T10:07:06.434000Z |
| var-202108-2434 | Samsung (China) Investment Co., Ltd. is the headquarters of Samsung Group in China. As of… | 2022-05-04T10:07:06.423000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000004 | Multiple vulnerabilities in acmailer | 2021-01-14T16:22+09:00 | 2021-01-14T16:22+09:00 |
| jvndb-2021-000005 | GROWI vulnerable to cross-site scripting | 2021-01-19T14:05+09:00 | 2021-01-19T14:05+09:00 |
| jvndb-2021-000006 | Multiple vulnerabilities in Aterm WF800HP, Aterm WG2600HP, and Aterm WG2600HP2 | 2021-01-22T17:55+09:00 | 2021-02-03T12:05+09:00 |
| jvndb-2021-001010 | TP-Link TL-WR841N V13 (JP) vulnerable to OS command injection | 2021-01-25T16:21+09:00 | 2021-01-25T16:21+09:00 |
| jvndb-2021-000010 | Multiple vulnerabilities in multiple LOGITEC products | 2021-01-26T16:26+09:00 | 2021-01-26T16:26+09:00 |
| jvndb-2021-000008 | Multiple vulnerabilities in multiple ELECOM products | 2021-01-26T16:33+09:00 | 2021-01-26T16:33+09:00 |
| jvndb-2021-000009 | Android App "ELECOM File Manager" vulnerable to directory traversal | 2021-01-27T17:38+09:00 | 2021-01-27T17:38+09:00 |
| jvndb-2021-000007 | OS command injection vulnerability in multiple Infoscience Corporation log management tools | 2021-01-27T18:31+09:00 | 2022-07-26T15:53+09:00 |
| jvndb-2021-001014 | Vulnerability in JP1/VERITAS | 2021-02-01T16:49+09:00 | 2021-02-01T16:49+09:00 |
| jvndb-2021-000011 | Panasonic Video Insight VMS vulnerable to arbitrary code execution | 2021-02-04T15:39+09:00 | 2021-02-04T15:39+09:00 |
| jvndb-2021-001017 | Trend Micro HouseCall for Home Networks (Windows Edition) may insecurely load Dynamic Link Libraries | 2021-02-04T15:42+09:00 | 2021-02-04T15:42+09:00 |
| jvndb-2021-000012 | WordPress Plugin "Name Directory" vulnerable to cross-site request forgery | 2021-02-05T16:24+09:00 | 2021-02-05T16:24+09:00 |
| jvndb-2021-001021 | Improper access control vulnerability in JP1/IT Desktop Management 2 - Manager and JP1/NETM/Asset Information Manager | 2021-02-09T15:08+09:00 | 2021-02-09T15:08+09:00 |
| jvndb-2021-001022 | Cross-site Scripting Vulnerability in Hitachi Application Server Help | 2021-02-09T15:08+09:00 | 2021-02-09T15:08+09:00 |
| jvndb-2021-000013 | Wekan vulnerable to cross-site scripting | 2021-02-10T14:01+09:00 | 2021-02-10T14:01+09:00 |
| jvndb-2021-000014 | Calsos CSDJ fails to restrict access permissions | 2021-02-15T15:52+09:00 | 2021-02-15T15:52+09:00 |
| jvndb-2021-000015 | FileZen vulnerable to OS command injection | 2021-02-16T15:07+09:00 | 2021-03-05T17:31+09:00 |
| jvndb-2021-001026 | Multiple Vulnerabilities in JP1/Automatic Operation | 2021-02-16T17:23+09:00 | 2021-02-16T17:23+09:00 |
| jvndb-2021-000016 | Multiple vulnerabilities in SolarView Compact | 2021-02-19T16:44+09:00 | 2021-02-25T15:31+09:00 |
| jvndb-2021-000017 | Multiple cross-site scripting vulnerabilities in Movable Type | 2021-02-24T15:20+09:00 | 2021-02-24T15:20+09:00 |
| jvndb-2021-000018 | The installers of E START products may insecurely load Dynamic Link Libraries | 2021-03-05T17:03+09:00 | 2023-11-16T15:41+09:00 |
| jvndb-2021-001122 | Trend Micro Security (Consumer) vulnerable to code injection | 2021-03-08T17:26+09:00 | 2021-03-08T17:26+09:00 |
| jvndb-2021-001123 | Multiple vulnerabilities in GROWI | 2021-03-09T14:17+09:00 | 2021-09-24T13:34+09:00 |
| jvndb-2021-000019 | Multiple cross-site scripting vulnerabilities in GROWI | 2021-03-10T16:11+09:00 | 2021-03-10T16:11+09:00 |
| jvndb-2021-000020 | Installer of MagicConnect Client program may insecurely load Dynamic Link Libraries | 2021-03-11T14:53+09:00 | 2021-03-11T14:53+09:00 |
| jvndb-2021-000021 | M-System DL8 contains multiple vulnerabilities | 2021-03-12T15:59+09:00 | 2021-03-12T15:59+09:00 |
| jvndb-2021-000022 | Multiple vulnerabilities in Cybozu Office | 2021-03-15T15:56+09:00 | 2021-12-17T17:51+09:00 |
| jvndb-2021-000025 | WordPress plugin "Paid Memberships Pro" vulnerable to SQL injection | 2021-03-17T16:24+09:00 | 2021-03-17T16:24+09:00 |
| jvndb-2021-000026 | Fuji Xerox multifunction devices and printers vulnerable to denial-of-service (DoS) | 2021-03-19T15:32+09:00 | 2021-04-12T13:30+09:00 |
| jvndb-2021-000023 | UNIVERGE Aspire series PBX vulnerable to denial-of-service (DoS) | 2021-03-22T14:57+09:00 | 2021-03-22T14:57+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-02232 | Citrix NetScaler Nitro help/rt/large_search.html跨站脚本漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02233 | Citrix NetScaler Nitro API跨站请求伪造漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02234 | ANTlabs InnGate固件任意文件读写漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02235 | Wordpress The Semper Fi All in One SEO Pack插件信息泄露漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02236 | Linux kernel IPv4拒绝服务漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02237 | Cisco Nexus 9000 Series拒绝服务漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02238 | Cisco ASR1000系列路由器拒绝服务漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02239 | Cisco Catalyst 4500 SNMP轮询拒绝服务漏洞 | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02240 | Tor拒绝服务漏洞(CNVD-2015-02240) | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02241 | Tor拒绝服务漏洞(CNVD-2015-02241) | 2015-04-08 | 2015-04-09 |
| cnvd-2015-02267 | IBM General Parallel File System信息泄露漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02268 | IBM Domino Notes System Diagnostic权限提升漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02269 | IBM Domino SSLv2缓冲区溢出漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02270 | IBM Tivoli Storage Manager FastBack任意代码执行漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02271 | IBM Rational ClearCase GSKit加密问题漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02272 | Cisco Wireless LAN Controller HTML帮助系统跨站脚本漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02273 | bBlog跨站请求伪造漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02274 | Apache Flex跨站脚本漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02275 | CA Spectrum权限提升漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02276 | CA Spectrum跨站脚本漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02277 | NTP MAC欺骗漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02278 | NTP ntpd拒绝服务漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02279 | McAfee Advanced Threat Defense信息泄露漏洞(CNVD-2015-02279) | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02280 | McAfee Advanced Threat Defense信息泄露漏洞(CNVD-2015-02280) | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02281 | Mozilla Firefox中间人攻击漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02282 | McAfee Advanced Threat Defense安全绕过漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02283 | Open-source ARJ archiver缓冲区溢出漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02284 | Mozilla Firefox-release安全策略绕过漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02285 | Oxide内存错误引用漏洞 | 2015-04-09 | 2015-04-10 |
| cnvd-2015-02286 | Ericsson Drutt Mobile Service Delivery Platform存在多个跨站脚本漏洞 | 2015-04-09 | 2015-04-10 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2004-avi-346 | Mauvaise gestion de l'authentification Radius sous OpenBSD | 2004-10-15T00:00:00.000000 | 2004-10-15T00:00:00.000000 |
| certa-2004-avi-347 | Vulnérabilités dans MySQL | 2004-10-15T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| CERTA-2004-AVI-348 | Vulnérabilité de Squid | 2004-10-20T00:00:00.000000 | 2004-11-22T00:00:00.000000 |
| certa-2004-avi-348 | Vulnérabilité de Squid | 2004-10-20T00:00:00.000000 | 2004-11-22T00:00:00.000000 |
| CERTA-2004-AVI-349 | Vulnérabilité dans plusieurs antivirus | 2004-10-21T00:00:00.000000 | 2004-10-21T00:00:00.000000 |
| CERTA-2004-AVI-350 | Multiples vulnérabilités de Gaim | 2004-10-21T00:00:00.000000 | 2004-11-22T00:00:00.000000 |
| CERTA-2004-AVI-351 | Vulnérabilité dans Ghostscript | 2004-10-21T00:00:00.000000 | 2005-11-28T00:00:00.000000 |
| CERTA-2004-AVI-352 | Vulnérabilité dans PostgreSQL | 2004-10-21T00:00:00.000000 | 2004-12-21T00:00:00.000000 |
| CERTA-2004-AVI-353 | Multiples vulérabilités dans les bibliothèques libpng | 2004-10-21T00:00:00.000000 | 2004-10-21T00:00:00.000000 |
| certa-2004-avi-349 | Vulnérabilité dans plusieurs antivirus | 2004-10-21T00:00:00.000000 | 2004-10-21T00:00:00.000000 |
| certa-2004-avi-350 | Multiples vulnérabilités de Gaim | 2004-10-21T00:00:00.000000 | 2004-11-22T00:00:00.000000 |
| certa-2004-avi-351 | Vulnérabilité dans Ghostscript | 2004-10-21T00:00:00.000000 | 2005-11-28T00:00:00.000000 |
| certa-2004-avi-352 | Vulnérabilité dans PostgreSQL | 2004-10-21T00:00:00.000000 | 2004-12-21T00:00:00.000000 |
| certa-2004-avi-353 | Multiples vulérabilités dans les bibliothèques libpng | 2004-10-21T00:00:00.000000 | 2004-10-21T00:00:00.000000 |
| CERTA-2004-AVI-354 | Vulnérabilité dans HP-UX | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| CERTA-2004-AVI-355 | Vulnérabilité de IBM RSCT | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| CERTA-2004-AVI-356 | Vulnérabilités des noyaux Linux 2.6 | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| CERTA-2004-AVI-358 | Vulnérabilité dans netkit-telnet et netkit-telnet-ssl | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| certa-2004-avi-354 | Vulnérabilité dans HP-UX | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| certa-2004-avi-355 | Vulnérabilité de IBM RSCT | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| certa-2004-avi-356 | Vulnérabilités des noyaux Linux 2.6 | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| certa-2004-avi-358 | Vulnérabilité dans netkit-telnet et netkit-telnet-ssl | 2004-10-22T00:00:00.000000 | 2004-10-22T00:00:00.000000 |
| CERTA-2004-AVI-359 | Vulnérabilité dans Cisco Secure ACS | 2004-11-04T00:00:00.000000 | 2004-11-04T00:00:00.000000 |
| CERTA-2004-AVI-360 | Vulnérabilité de la bibliothèque gd | 2004-11-04T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| CERTA-2004-AVI-361 | Multiples vulnérabilités de libxml2 | 2004-11-04T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| certa-2004-avi-359 | Vulnérabilité dans Cisco Secure ACS | 2004-11-04T00:00:00.000000 | 2004-11-04T00:00:00.000000 |
| certa-2004-avi-360 | Vulnérabilité de la bibliothèque gd | 2004-11-04T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| certa-2004-avi-361 | Multiples vulnérabilités de libxml2 | 2004-11-04T00:00:00.000000 | 2004-12-20T00:00:00.000000 |
| CERTA-2004-AVI-362 | Vulnérabilité dans Kerberos Key Distribution sous SOLARIS | 2004-11-05T00:00:00.000000 | 2004-11-05T00:00:00.000000 |
| certa-2004-avi-362 | Vulnérabilité dans Kerberos Key Distribution sous SOLARIS | 2004-11-05T00:00:00.000000 | 2004-11-05T00:00:00.000000 |