Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-43728 |
9.6 (3.1)
|
Dell ThinOS 10, versions prior to 2508_10.0127, c… |
Dell |
ThinOS 10 |
2025-08-27T13:44:25.996Z | 2026-02-26T17:48:03.816Z |
| CVE-2025-20352 |
7.7 (3.1)
|
A vulnerability in the Simple Network Management … |
Cisco |
IOS |
2025-09-24T17:10:42.891Z | 2026-02-26T17:48:03.098Z |
| CVE-2025-20160 |
8.1 (3.1)
|
A vulnerability in the implementation of the TACA… |
Cisco |
IOS |
2025-09-24T17:10:22.652Z | 2026-02-26T17:48:03.600Z |
| CVE-2025-47351 |
7.8 (3.1)
|
Integer Overflow or Wraparound in DSP Service |
Qualcomm, Inc. |
Snapdragon |
2025-10-09T03:18:14.416Z | 2026-02-26T17:48:02.548Z |
| CVE-2025-43882 |
7.8 (3.1)
|
Dell ThinOS 10, versions prior to 2508_10.0127, c… |
Dell |
ThinOS 10 |
2025-08-27T13:51:40.130Z | 2026-02-26T17:48:02.832Z |
| CVE-2025-47354 |
7.8 (3.1)
|
Use After Free in DSP Service |
Qualcomm, Inc. |
Snapdragon |
2025-10-09T03:18:15.699Z | 2026-02-26T17:48:01.202Z |
| CVE-2025-43730 |
8.4 (3.1)
|
Dell ThinOS 10, versions prior to 2508_10.0127, c… |
Dell |
ThinOS 10 |
2025-08-27T13:57:39.797Z | 2026-02-26T17:48:01.025Z |
| CVE-2025-20313 |
6.7 (3.1)
|
Multiple vulnerabilities in Cisco IOS XE Software… |
Cisco |
Cisco IOS XE Software |
2025-09-24T17:12:40.484Z | 2026-02-26T17:48:01.459Z |
| CVE-2025-47355 |
7.8 (3.1)
|
Out-of-bounds Write in DSP Service |
Qualcomm, Inc. |
Snapdragon |
2025-10-09T03:18:16.885Z | 2026-02-26T17:48:00.648Z |
| CVE-2025-20338 |
6 (3.1)
|
A vulnerability in the CLI of Cisco IOS XE Softwa… |
Cisco |
Cisco IOS XE Software |
2025-09-24T17:14:57.638Z | 2026-02-26T17:48:00.835Z |
| CVE-2025-59251 |
7.6 (3.1)
|
Microsoft Edge (Chromium-based) Remote Code Execution … |
Microsoft |
Microsoft Edge (Chromium-based) |
2025-09-24T19:03:48.446Z | 2026-02-26T17:47:59.084Z |
| CVE-2025-5187 |
6.7 (3.1)
|
Nodes can delete themselves by adding an OwnerReference |
Kubernetes |
Kubernetes |
2025-08-27T16:20:56.778Z | 2026-02-26T17:47:59.242Z |
| CVE-2025-43729 |
7.8 (3.1)
|
Dell ThinOS 10, versions prior to 2508_10.0127, c… |
Dell |
ThinOS 10 |
2025-08-27T14:02:47.196Z | 2026-02-26T17:47:59.877Z |
| CVE-2025-20314 |
6.7 (3.1)
|
A vulnerability in Cisco IOS XE Software could al… |
Cisco |
Cisco IOS XE Software |
2025-09-24T17:53:45.663Z | 2026-02-26T17:47:59.705Z |
| CVE-2025-11539 |
9.9 (3.1)
|
Arbitrary Code Execution in Grafana Image Renderer Plugin |
Grafana |
grafana-image-renderer |
2025-10-09T07:18:15.819Z | 2026-02-26T17:47:59.419Z |
| CVE-2025-20344 |
6.5 (3.1)
|
Cisco Nexus Dashboard Path Traversal Vulnerability |
Cisco |
Cisco Nexus Dashboard |
2025-08-27T16:22:59.270Z | 2026-02-26T17:47:58.759Z |
| CVE-2025-20333 |
9.9 (3.1)
|
A vulnerability in the VPN web server of Cisco Se… |
Cisco |
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software |
2025-09-25T16:12:14.308Z | 2026-02-26T17:47:58.577Z |
| CVE-2025-20294 |
6.5 (3.1)
|
Cisco UCS Manager Software Command Injection Vulnerability |
Cisco |
Cisco Unified Computing System (Managed) |
2025-08-27T16:23:27.719Z | 2026-02-26T17:47:58.157Z |
| CVE-2025-10240 |
8.8 (3.1)
|
Possibility of unintended actions when a user clicks a… |
Progress Software |
Flowmon |
2025-10-09T12:43:40.906Z | 2026-02-26T17:47:58.397Z |
| CVE-2025-10239 |
7.2 (3.1)
|
Unintended command execution via troubleshooting scrip… |
Progress Software |
Flowmon |
2025-10-09T12:42:05.557Z | 2026-02-26T17:47:58.934Z |
| CVE-2025-20362 |
6.5 (3.1)
|
Update: On November 5, 2025, Cisco became aware o… |
Cisco |
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software |
2025-09-25T16:12:35.916Z | 2026-02-26T17:47:57.719Z |
| CVE-2025-20295 |
6 (3.1)
|
Cisco UCS Manager Software Command Injection Vulnerability |
Cisco |
Cisco Unified Computing System (Managed) |
2025-08-27T16:23:29.354Z | 2026-02-26T17:47:57.478Z |
| CVE-2025-11561 |
8.8 (3.1)
|
Sssd: sssd default kerberos configuration allows privi… |
|
|
2025-10-09T13:37:53.089Z | 2026-02-26T17:47:57.941Z |
| CVE-2025-59978 |
9 (3.1)
9.4 (4.0)
|
Junos Space: Stored cross-site scripting vulnerability… |
Juniper Networks |
Junos Space |
2025-10-09T16:02:59.714Z | 2026-02-26T17:47:56.168Z |
| CVE-2025-59974 |
8.4 (3.1)
9.3 (4.0)
|
Junos Space Security Director: Persistent Cross-Site S… |
Juniper Networks |
Junos Space Security Director |
2025-10-09T15:57:30.142Z | 2026-02-26T17:47:56.498Z |
| CVE-2025-34523 |
9.2 (4.0)
|
Arcserve UDP < 10.2 Pre-Authentication Heap Overflow |
Arcserve |
Unified Data Protection (UDP) |
2025-08-27T21:19:26.658Z | 2026-02-26T17:47:56.340Z |
| CVE-2025-34227 |
8.6 (4.0)
|
Nagios XI < 2026R1 Configuration Wizard Authenticated … |
Nagios |
Nagios XI |
2025-09-25T17:08:52.921Z | 2026-02-26T17:47:56.012Z |
| CVE-2025-20363 |
9 (3.1)
|
A vulnerability in the web services of Cisco Secu… |
Cisco |
IOS |
2025-09-25T16:12:55.674Z | 2026-02-26T17:47:56.711Z |
| CVE-2025-60006 |
5.3 (3.1)
4.8 (4.0)
|
Junos OS Evolved: OS command injection vulnerabilities fixed |
Juniper Networks |
Junos OS Evolved |
2025-10-09T16:18:55.227Z | 2026-02-26T17:47:55.844Z |
| CVE-2025-56383 |
8.4 (3.1)
|
Notepad++ v8.8.3 has a DLL hijacking vulnerabilit… |
n/a |
n/a |
2025-09-26T00:00:00.000Z | 2026-02-26T17:47:55.453Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-1470 |
7.8 (3.1)
|
Windows Work Folders Service Elevation of Privilege Vu… |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:13:04.000Z | 2024-08-04T06:39:09.972Z |
| CVE-2020-1467 |
10 (3.1)
|
Windows Hard Link Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2020-08-17T19:13:04.000Z | 2024-08-04T06:39:09.643Z |
| CVE-2020-1466 |
7.8 (3.1)
|
Windows Remote Desktop Gateway (RD Gateway) Denial of … |
Microsoft |
Windows Server 2019 |
2020-08-17T19:13:03.000Z | 2024-10-01T15:57:42.973Z |
| CVE-2020-1460 |
8.6 (3.1)
|
Microsoft SharePoint Server Remote Code Execution Vuln… |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2020-09-11T17:09:17.000Z | 2024-08-04T06:39:09.671Z |
| CVE-2020-1459 |
7.5 (3.1)
|
Windows ARM Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2020-08-17T19:13:02.000Z | 2024-08-04T06:39:09.644Z |
| CVE-2020-1455 |
5.3 (3.1)
|
Microsoft SQL Server Management Studio Denial of Servi… |
Microsoft |
SQL Server Management Studio 18.6 |
2020-08-17T19:13:02.000Z | 2024-08-04T06:39:09.660Z |
| CVE-2020-1453 |
8.6 (3.1)
|
Microsoft SharePoint Remote Code Execution Vulnerability |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2020-09-11T17:09:17.000Z | 2024-08-04T06:39:09.786Z |
| CVE-2020-1452 |
8.6 (3.1)
|
Microsoft SharePoint Remote Code Execution Vulnerability |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2020-09-11T17:09:16.000Z | 2024-11-18T16:24:00.737Z |
| CVE-2020-1440 |
6.3 (3.1)
|
Microsoft SharePoint Server Tampering Vulnerability |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2020-09-11T17:09:16.000Z | 2024-08-04T06:39:09.629Z |
| CVE-2020-1417 |
5.5 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:13:01.000Z | 2024-08-04T06:39:09.116Z |
| CVE-2020-1383 |
N/A
|
Windows RRAS Service Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:13:01.000Z | 2024-11-18T17:26:18.963Z |
| CVE-2020-1379 |
5.5 (3.1)
|
Media Foundation Memory Corruption Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:13:00.000Z | 2024-08-04T06:32:01.258Z |
| CVE-2020-1378 |
7.5 (3.1)
|
Windows Registry Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-08-17T19:12:59.000Z | 2024-08-04T06:32:01.267Z |
| CVE-2020-1377 |
7.8 (3.1)
|
Windows Registry Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-08-17T19:12:59.000Z | 2024-08-04T06:32:01.249Z |
| CVE-2020-1376 |
7.8 (3.1)
|
Windows Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-09-11T17:09:15.000Z | 2024-08-04T06:32:01.391Z |
| CVE-2020-1345 |
7.4 (3.1)
|
Microsoft Office SharePoint XSS Vulnerability |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2020-09-11T17:09:15.000Z | 2024-08-04T06:32:01.210Z |
| CVE-2020-1339 |
7.8 (3.1)
|
Windows Media Remote Code Execution Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:12:58.000Z | 2024-08-04T06:32:01.251Z |
| CVE-2020-1338 |
7.8 (3.1)
|
Microsoft Word Remote Code Execution Vulnerability |
Microsoft |
Microsoft SharePoint Server 2019 |
2020-09-11T17:09:15.000Z | 2024-08-04T06:32:01.240Z |
| CVE-2020-1337 |
7.8 (3.1)
|
Windows Print Spooler Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-08-17T19:12:58.000Z | 2024-08-04T06:32:01.371Z |
| CVE-2020-1336 |
7.8 (3.1)
|
Windows Kernel Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 2004 |
2020-07-14T22:54:03.000Z | 2024-08-04T06:32:00.946Z |
| CVE-2020-1335 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft SharePoint Server 2019 |
2020-09-11T17:09:14.000Z | 2024-08-04T06:32:01.210Z |
| CVE-2020-1332 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft Office 2019 |
2020-09-11T17:09:14.000Z | 2024-08-04T06:32:00.776Z |
| CVE-2020-1319 |
7.3 (3.1)
|
Microsoft Windows Codecs Library Remote Code Execution… |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:13.000Z | 2024-08-04T06:32:00.532Z |
| CVE-2020-1308 |
7 (3.1)
|
DirectX Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:12.000Z | 2024-08-04T06:31:59.998Z |
| CVE-2020-1303 |
5.5 (3.1)
|
Windows Runtime Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:12.000Z | 2024-08-04T06:32:00.553Z |
| CVE-2020-1285 |
8.4 (3.1)
|
GDI+ Remote Code Execution Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:12.000Z | 2024-08-04T06:32:01.373Z |
| CVE-2020-1256 |
5.5 (3.1)
|
Windows GDI Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:11.000Z | 2024-08-04T06:31:59.924Z |
| CVE-2020-1252 |
7.8 (3.1)
|
Windows Remote Code Execution Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:11.000Z | 2024-11-18T16:24:31.210Z |
| CVE-2020-1250 |
5.5 (3.1)
|
Win32k Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:10.000Z | 2024-08-04T06:32:00.076Z |
| CVE-2020-1245 |
7 (3.1)
|
Win32k Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1803 |
2020-09-11T17:09:09.000Z | 2024-08-04T06:31:59.784Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2020-1467 | An elevation of privilege vulnerability exists when Windows improperly handles hard links. An attac… | 2020-08-17T19:15:14.990 | 2026-02-23T18:25:10.350 |
| fkie_cve-2020-1466 | A denial of service vulnerability exists in Windows Remote Desktop Gateway (RD Gateway) when an att… | 2020-08-17T19:15:14.927 | 2026-02-23T18:25:10.153 |
| fkie_cve-2020-1460 | <p>A remote code execution vulnerability exists in Microsoft SharePoint Server when it fails to pro… | 2020-09-11T17:15:20.840 | 2026-02-23T18:25:08.533 |
| fkie_cve-2020-1459 | An information disclosure vulnerability exists on ARM implementations that use speculative executio… | 2020-08-17T19:15:14.803 | 2026-02-23T18:25:08.383 |
| fkie_cve-2020-1455 | A denial of service vulnerability exists when Microsoft SQL Server Management Studio (SSMS) imprope… | 2020-08-17T19:15:14.740 | 2026-02-23T18:25:07.950 |
| fkie_cve-2020-1453 | <p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to … | 2020-09-11T17:15:20.793 | 2026-02-23T18:25:07.730 |
| fkie_cve-2020-1452 | <p>A remote code execution vulnerability exists in Microsoft SharePoint when the software fails to … | 2020-09-11T17:15:20.747 | 2026-02-23T18:25:07.507 |
| fkie_cve-2020-1440 | <p>A tampering vulnerability exists when Microsoft SharePoint Server fails to properly handle profi… | 2020-09-11T17:15:20.683 | 2026-02-23T18:25:06.313 |
| fkie_cve-2020-1417 | An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle obj… | 2020-08-17T19:15:14.677 | 2026-02-23T18:25:00.640 |
| fkie_cve-2020-1383 | An information disclosure vulnerability exists in RPC if the server has Routing and Remote Access e… | 2020-08-17T19:15:14.617 | 2026-02-23T18:24:52.143 |
| fkie_cve-2020-1379 | A memory corruption vulnerability exists when Windows Media Foundation improperly handles objects i… | 2020-08-17T19:15:14.473 | 2026-02-23T18:24:51.070 |
| fkie_cve-2020-1378 | An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles regis… | 2020-08-17T19:15:14.413 | 2026-02-23T18:24:50.733 |
| fkie_cve-2020-1377 | An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles regis… | 2020-08-17T19:15:14.350 | 2026-02-23T18:24:50.383 |
| fkie_cve-2020-1376 | <p>An elevation of privilege vulnerability exists in the way that fdSSDP.dll handles objects in mem… | 2020-09-11T17:15:20.637 | 2026-02-23T18:24:49.983 |
| fkie_cve-2020-1345 | <p>A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not prop… | 2020-09-11T17:15:20.573 | 2026-02-23T18:24:26.170 |
| fkie_cve-2020-1339 | A remote code execution vulnerability exists when Windows Media Audio Codec improperly handles obje… | 2020-08-17T19:15:14.287 | 2026-02-23T18:24:25.303 |
| fkie_cve-2020-1338 | <p>A remote code execution vulnerability exists in Microsoft Word software when it fails to properl… | 2020-09-11T17:15:20.510 | 2026-02-23T18:24:25.123 |
| fkie_cve-2020-1337 | An elevation of privilege vulnerability exists when the Windows Print Spooler service improperly al… | 2020-08-17T19:15:14.210 | 2026-02-23T18:24:24.730 |
| fkie_cve-2020-1336 | An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects i… | 2020-07-14T23:15:12.650 | 2026-02-23T18:24:24.463 |
| fkie_cve-2020-1335 | <p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails… | 2020-09-11T17:15:20.450 | 2026-02-23T18:24:24.250 |
| fkie_cve-2020-1332 | <p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails… | 2020-09-11T17:15:20.387 | 2026-02-23T18:24:23.533 |
| fkie_cve-2020-1319 | <p>A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library ha… | 2020-09-11T17:15:20.340 | 2026-02-23T18:24:22.277 |
| fkie_cve-2020-1308 | <p>An elevation of privilege vulnerability exists when DirectX improperly handles objects in memory… | 2020-09-11T17:15:20.277 | 2026-02-23T18:24:19.733 |
| fkie_cve-2020-1303 | <p>An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objec… | 2020-09-11T17:15:20.213 | 2026-02-23T18:24:18.480 |
| fkie_cve-2020-1285 | <p>A remote code execution vulnerability exists in the way that the Windows Graphics Device Interfa… | 2020-09-11T17:15:20.153 | 2026-02-23T18:24:14.843 |
| fkie_cve-2020-1256 | <p>An information disclosure vulnerability exists when the Windows GDI component improperly disclos… | 2020-09-11T17:15:20.090 | 2026-02-23T18:24:07.953 |
| fkie_cve-2020-1252 | <p>A remote code execution vulnerability exists when Windows improperly handles objects in memory. … | 2020-09-11T17:15:20.043 | 2026-02-23T18:24:06.667 |
| fkie_cve-2020-1250 | <p>An information disclosure vulnerability exists when the win32k component improperly provides ker… | 2020-09-11T17:15:19.997 | 2026-02-23T18:24:06.013 |
| fkie_cve-2020-1245 | <p>An elevation of privilege vulnerability exists in Windows when the Win32k component fails to pro… | 2020-09-11T17:15:19.933 | 2026-02-23T18:24:04.387 |
| fkie_cve-2020-1243 | <p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to proper… | 2020-10-16T23:15:17.680 | 2026-02-23T18:24:03.973 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-4rj2-gpmh-qq5x |
9.4 (3.1)
|
OpenClaw has an inbound allowlist policy bypass in voice-call extension (empty caller ID + suffix m… | 2026-02-17T21:36:34Z | 2026-02-17T21:36:34Z |
| ghsa-r5h9-vjqc-hq3r |
9.3 (4.0)
|
Nextcloud Talk allowlist bypass via actor.name display name spoofing | 2026-02-17T21:36:15Z | 2026-02-17T21:36:15Z |
| ghsa-fhvm-j76f-qmjv |
9.1 (4.0)
|
OpenClaw has a potential access-group authorization bypass if channel type lookup fails | 2026-02-17T21:34:36Z | 2026-02-17T21:34:36Z |
| ghsa-rmxw-jxxx-4cpc |
6.5 (3.1)
|
OpenClaw has a Matrix allowlist bypass via displayName and cross-homeserver localpart matching | 2026-02-17T21:34:17Z | 2026-02-17T21:34:17Z |
| ghsa-3m3q-x3gj-f79x |
5.9 (3.1)
|
OpenClaw optional voice-call plugin: webhook verification may be bypassed behind certain proxy conf… | 2026-02-17T21:31:58Z | 2026-02-17T21:31:58Z |
| ghsa-g27f-9qjv-22pm |
3.1 (3.1)
|
OpenClaw log poisoning (indirect prompt injection) via WebSocket headers | 2026-02-17T21:31:39Z | 2026-02-17T21:31:39Z |
| ghsa-mv9j-6xhh-g383 |
6.3 (4.0)
|
OpenClaw's unauthenticated Nostr profile HTTP endpoints allow remote profile/config tampering | 2026-02-17T21:31:17Z | 2026-02-17T21:31:17Z |
| ghsa-v929-j8mj-vc74 |
6.5 (3.1)
|
Vulnerabilities in the API error handling of an HPE Aruba Networking 5G Core server API could allo… | 2026-02-17T21:31:15Z | 2026-02-17T21:31:15Z |
| ghsa-rm24-2x6v-8w7f |
3.5 (3.1)
2.0 (4.0)
|
A vulnerability was detected in Blossom up to 1.17.1. This vulnerability affects the function conte… | 2026-02-17T21:31:15Z | 2026-02-17T21:31:15Z |
| ghsa-mrc8-4r2p-q3ww |
7.3 (3.1)
5.5 (4.0)
|
A security vulnerability has been detected in Sciyon Koyuan Thermoelectricity Heat Network Manageme… | 2026-02-17T21:31:15Z | 2026-02-17T21:31:15Z |
| ghsa-8rh3-rvv2-3mr4 |
6.5 (3.1)
|
A vulnerability in the management API of the affected product could allow an unauthenticated remote… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:15Z |
| ghsa-74jq-6q38-p5wf |
8.8 (3.1)
|
An authentication bypass in the application API allows an unauthorized administrative account to be… | 2026-02-17T21:31:15Z | 2026-02-17T21:31:15Z |
| ghsa-5fc6-h8m7-2wfc |
6.5 (3.1)
|
Vulnerabilities in the API error handling of an HPE Aruba Networking 5G Core server API could allo… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:15Z |
| ghsa-wrqj-g5w9-qq86 |
6.5 (3.1)
|
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 IBM Db2 Recovery Expert for Linux, UNIX and Win… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-wrgv-jmfr-c4gr |
5.9 (3.1)
|
IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptogr… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-wm8j-hgw9-h534 |
5.3 (3.1)
|
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 discloses sensitive information in an environme… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-wj4m-c5pc-p9r9 |
6.5 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information or pe… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-vp3m-qh4p-wg7c |
3.1 (3.1)
|
Under specific conditions, a malicious webpage may trigger autofill population after two consecutiv… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-qc7g-qpr2-qpjj |
6.5 (3.1)
|
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an authenticated user to caus… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-p937-j3mh-5m6r |
|
lty628 aidigu v1.9.1 is vulnerable to Cross Site Scripting (XSS) on the /tools/Password/add page in… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-p2xq-4rwg-xcp7 |
5.9 (3.1)
|
IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man i… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-hp59-976f-xjmx |
6.8 (3.1)
|
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 could allow a remote attacker to conduct phishi… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-hf4g-rr9m-7fx6 |
|
Rocket TRUfusion Enterprise through 7.10.4.0 uses a reverse proxy to handle incoming connections. H… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-gr4h-93qx-7636 |
6.6 (3.1)
|
Dell SmartFabric OS10 Software, versions prior to 10.5.6.12, contains an Improper Neutralization of… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-gpj4-p4vm-jmrr |
8.1 (3.1)
|
IBM DataStage on Cloud Pak for Data 5.1.2 through 5.3.0 returns sensitive information in an HTTP re… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-g268-rwhc-cj9f |
|
A SQL injection vulnerability in the alldayoffs feature in Jorani up to v1.0.4, allows an authentic… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-fwv6-g5vr-pgpx |
6.5 (3.1)
|
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 IBM Db2 Recovery Expert for Linux, UNIX and Win… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-fvpc-p8pv-qjmp |
5.9 (3.1)
|
IBM DB2 Recovery Expert for LUW 5.5 Interim Fix 002 IBM Db2 Recovery Expert for Linux, UNIX and Win… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-fp2x-rmwp-chww |
6.5 (3.1)
|
Dell Avamar, versions prior to 19.12 with patch 338905, contains an Improper Limitation of a Pathna… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ghsa-cxcr-rj95-h6f4 |
6.3 (3.1)
|
IBM Security QRadar EDR 3.12 through 3.12.23 does not invalidate session after a session expiration… | 2026-02-17T21:31:14Z | 2026-02-17T21:31:14Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-178 |
|
When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there… | elastic-apm | 2019-08-22T17:15:00Z | 2021-08-27T03:22:03.550445Z |
| pysec-2019-177 |
|
An error-handling flaw was found in python-ecdsa before version 0.13.3. During signature … | ecdsa | 2019-11-26T13:15:00Z | 2021-08-27T03:22:03.507805Z |
| pysec-2019-175 |
|
An eval() vulnerability exists in Python Software Foundation Djblets 0.7.21 and Beanbag R… | djblets | 2019-11-04T21:15:00Z | 2021-08-27T03:22:03.149747Z |
| pysec-2016-25 |
|
flask-oidc version 0.1.2 and earlier is vulnerable to an open redirect | flask-oidc | 2016-10-07T18:59:00Z | 2021-08-27T03:22:03.924557Z |
| pysec-2015-35 |
|
Buffer overflow in the C implementation of the apply_delta function in _pack.c in Dulwich… | dulwich | 2015-03-31T14:59:00Z | 2021-08-27T03:22:03.427700Z |
| pysec-2015-34 |
|
The build_index_from_tree function in index.py in Dulwich before 0.9.9 allows remote atta… | dulwich | 2015-03-31T14:59:00Z | 2021-08-27T03:22:03.389388Z |
| pysec-2014-80 |
|
Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connectio… | docker-py | 2014-11-17T16:59:00Z | 2021-08-27T03:22:03.349219Z |
| pysec-2014-79 |
|
Cross-site scripting (XSS) vulnerability in gravatars/templatetags/gravatars.py in Djblet… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.303468Z |
| pysec-2014-78 |
|
Cross-site scripting (XSS) vulnerability in util/templatetags/djblets_js.py in Djblets be… | djblets | 2014-06-16T18:55:00Z | 2021-08-27T03:22:03.219875Z |
| pysec-2012-14 |
|
Universal Feed Parser (aka feedparser or python-feedparser) before 5.1.2 allows remote at… | feedparser | 2012-05-21T22:55:00Z | 2021-08-27T03:22:03.863933Z |
| pysec-2012-13 |
|
Elixir 0.8.0 uses Blowfish in CFB mode without constructing a unique initialization vecto… | elixir | 2012-08-26T21:55:00Z | 2021-08-27T03:22:03.583910Z |
| pysec-2011-21 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.831291Z |
| pysec-2011-20 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.796807Z |
| pysec-2011-19 |
|
feedparser.py in Universal Feed Parser (aka feedparser or python-feedparser) before 5.0.1… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.762667Z |
| pysec-2011-18 |
|
Cross-site scripting (XSS) vulnerability in feedparser.py in Universal Feed Parser (aka f… | feedparser | 2011-04-11T18:55:00Z | 2021-08-27T03:22:03.724216Z |
| pysec-2020-230 |
|
In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow use… | django-user-sessions | 2020-01-24T20:15:00Z | 2021-08-27T03:21:57.616152Z |
| pysec-2020-229 |
|
django-nopassword before 5.0.0 stores cleartext secrets in the database. | django-nopassword | 2020-03-18T15:15:00Z | 2021-08-27T03:21:57.541967Z |
| pysec-2019-174 |
|
Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin… | django-crm | 2019-08-27T15:15:00Z | 2021-08-27T03:21:57.382280Z |
| pysec-2018-83 |
|
diffoscope before 77 writes to arbitrary locations on disk based on the contents of an un… | diffoscope | 2018-04-13T16:29:00Z | 2021-08-27T03:21:57.266779Z |
| pysec-2018-82 |
|
There is a vulnerability in load() method in definitions/parser.py in the Danijar Hafner … | definitions | 2018-12-21T23:29:00Z | 2021-08-27T03:21:57.237018Z |
| pysec-2017-86 |
|
There is a cross-site scripting vulnerability in django-epiceditor 0.2.3 via crafted cont… | django-epiceditor | 2017-03-09T20:59:00Z | 2021-08-27T03:21:57.430234Z |
| pysec-2021-129 |
|
The package bottle from 0 and before 0.12.19 are vulnerable to Web Cache Poisoning by usi… | bottle | 2021-01-18T12:15:00Z | 2021-08-27T03:21:56.437494Z |
| pysec-2020-228 |
|
An insecure-credentials flaw was found in all openstack-cinder versions before openstack-… | cinder | 2020-06-10T17:15:00Z | 2021-08-27T03:21:56.949334Z |
| pysec-2020-227 |
|
All versions of package cabot are vulnerable to Cross-site Scripting (XSS) via the Endpoi… | cabot | 2020-09-22T08:15:00Z | 2021-08-27T03:21:56.574917Z |
| pysec-2020-226 |
|
Cross Site Scripting (XSS) vulnerability in Arachnys Cabot 0.11.12 can be exploited via t… | cabot | 2020-12-04T20:15:00Z | 2021-08-27T03:21:56.543783Z |
| pysec-2020-225 |
|
An issue was discovered in OpenStack blazar-dashboard before 1.3.1, 2.0.0, and 3.0.0. A u… | blazar-dashboard | 2020-10-16T06:15:00Z | 2021-08-27T03:21:56.229273Z |
| pysec-2016-24 |
|
redirect() in bottle.py in bottle 0.12.10 doesn't filter a "\r\n" sequence, which leads t… | bottle | 2016-12-16T09:59:00Z | 2021-08-27T03:21:56.402931Z |
| pysec-2014-77 |
|
Bottle 0.10.x before 0.10.12, 0.11.x before 0.11.7, and 0.12.x before 0.12.6 does not pro… | bottle | 2014-10-25T22:55:00Z | 2021-08-27T03:21:56.361083Z |
| pysec-2011-17 |
|
Celery 2.1 and 2.2 before 2.2.8, 2.3 before 2.3.4, and 2.4 before 2.4.4 changes the effec… | celery | 2011-12-05T11:55:00Z | 2021-08-27T03:21:56.662825Z |
| pysec-2021-128 |
|
Apache Superset up to and including 1.0.1 allowed for the creation of an external URL tha… | apache-superset | 2021-04-27T10:15:00Z | 2021-08-27T03:21:55.733407Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-32137 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.136897Z |
| gsd-2024-32136 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.143714Z |
| gsd-2024-32135 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.141282Z |
| gsd-2024-32134 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.139635Z |
| gsd-2024-32133 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.127437Z |
| gsd-2024-32132 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.148901Z |
| gsd-2024-32131 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.157365Z |
| gsd-2024-32130 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.236360Z |
| gsd-2024-32129 | URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Freshworks Freshdesk… | 2024-04-12T05:02:22.139177Z |
| gsd-2024-32128 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.124496Z |
| gsd-2024-32127 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.136218Z |
| gsd-2024-32126 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-12T05:02:22.130590Z |
| gsd-2024-32125 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vuln… | 2024-04-12T05:02:22.127635Z |
| gsd-2024-32124 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.133313Z |
| gsd-2024-32123 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.135258Z |
| gsd-2024-32122 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.159280Z |
| gsd-2024-32121 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.160945Z |
| gsd-2024-32120 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.130814Z |
| gsd-2024-32119 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.151656Z |
| gsd-2024-32118 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.137310Z |
| gsd-2024-32117 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.161416Z |
| gsd-2024-32116 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.140690Z |
| gsd-2024-32115 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.124942Z |
| gsd-2024-32114 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.128946Z |
| gsd-2024-32113 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:02:22.152051Z |
| gsd-2023-52718 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:42.490161Z |
| gsd-2023-7257 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:23.450972Z |
| gsd-2023-7256 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-12T05:01:23.556926Z |
| gsd-2021-47258 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:05:09.564568Z |
| gsd-2021-47257 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:05:09.628891Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-192952 | Malicious code in eslint-config-sdk (npm) | 2025-12-27T20:20:29Z | 2026-01-02T21:37:27Z |
| mal-2025-193009 | Malicious code in @polystream/streaming (npm) | 2025-12-31T16:15:38Z | 2026-01-02T21:37:26Z |
| mal-2025-193004 | Malicious code in @vietmoney/vision-camera-code-scanner (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-193003 | Malicious code in @vietmoney/vietmoneywork (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-193002 | Malicious code in @vietmoney/react-native-vnpay-merchant (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-193001 | Malicious code in @vietmoney/react-native-true-id (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-193000 | Malicious code in @vietmoney/react-native-tags-input (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192999 | Malicious code in @vietmoney/react-native-smart-page (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192998 | Malicious code in @vietmoney/react-native-smart-gallery (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192997 | Malicious code in @vietmoney/react-native-image-transformer (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192996 | Malicious code in @vietmoney/react-native-htmlview (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192995 | Malicious code in @vietmoney/react-native-action-button (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192994 | Malicious code in @vietmoney/react-big-calendar (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| mal-2025-192984 | Malicious code in chai-promised-chains (npm) | 2025-12-30T17:11:04Z | 2026-01-02T21:37:26Z |
| mal-2025-192983 | Malicious code in bigmathex (npm) | 2025-12-30T16:59:03Z | 2026-01-02T21:37:26Z |
| mal-2025-192982 | Malicious code in @ptest2535/ui-core_mal (npm) | 2025-12-30T17:05:14Z | 2026-01-02T21:37:26Z |
| mal-2025-192981 | Malicious code in @ptest2535/test_package (npm) | 2025-12-30T17:05:14Z | 2026-01-02T21:37:26Z |
| mal-2025-192980 | Malicious code in @ptest2535/l_woker_mal (npm) | 2025-12-30T17:05:14Z | 2026-01-02T21:37:26Z |
| mal-2025-192979 | Malicious code in @ptest2535/artifactory-demo-ptest (npm) | 2025-12-30T17:05:14Z | 2026-01-02T21:37:26Z |
| mal-2025-192966 | Malicious code in cdd-plugin-for-datawarrior (npm) | 2025-12-30T16:12:28Z | 2026-01-02T21:37:26Z |
| mal-2025-192965 | Malicious code in awsmcc (npm) | 2025-12-30T16:12:28Z | 2026-01-02T21:37:26Z |
| mal-2025-192964 | Malicious code in @peter_wilson12091/internal-json-test-parser (npm) | 2025-12-30T16:12:03Z | 2026-01-02T21:37:26Z |
| mal-2025-192941 | Malicious code in bola511 (npm) | 2025-12-26T14:09:11Z | 2026-01-02T21:37:26Z |
| mal-2025-192938 | Malicious code in bettermode-icons (npm) | 2025-12-25T21:52:38Z | 2026-01-02T21:37:26Z |
| mal-2025-192932 | Malicious code in cc-raiesy (npm) | 2025-12-25T18:19:57Z | 2026-01-02T21:37:26Z |
| mal-2025-192927 | Malicious code in adril7123 (npm) | 2025-12-24T17:05:44Z | 2026-01-02T21:37:26Z |
| MAL-2025-193009 | Malicious code in @polystream/streaming (npm) | 2025-12-31T16:15:38Z | 2026-01-02T21:37:26Z |
| MAL-2025-193004 | Malicious code in @vietmoney/vision-camera-code-scanner (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| MAL-2025-193003 | Malicious code in @vietmoney/vietmoneywork (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| MAL-2025-193002 | Malicious code in @vietmoney/react-native-vnpay-merchant (npm) | 2025-12-31T13:21:20Z | 2026-01-02T21:37:26Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0601 | Google Cloud Platform - Gemini Cloud Assist: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-03-19T23:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0598 | IBM InfoSphere Information Server: Schwachstelle ermöglicht Privilegieneskalation | 2025-03-19T23:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0597 | SAP: Mehrere Schwachstellen | 2017-08-07T22:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0596 | Veeam Backup & Replication: Schwachstelle ermöglicht Codeausführung | 2025-03-19T23:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0595 | Jenkins Plugins: Mehrere Schwachstellen | 2025-03-19T23:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0792 | ffmpeg: Schwachstelle ermöglicht Codeausführung | 2023-03-29T22:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2022-0210 | ffmpeg: Mehrere Schwachstellen | 2021-05-26T22:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2022-0146 | Python: Schwachstelle ermöglicht Cross-Site Scripting | 2022-01-31T23:00:00.000+00:00 | 2025-03-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0592 | Microsoft Windows: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0591 | Synology DiskStation Manager: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0590 | Checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0589 | Google Cloud Platform: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0588 | Kemp LoadMaster: Schwachstelle ermöglicht Codeausführung | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0586 | Aruba AOS-CX: Mehrere Schwachstellen | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0584 | IBM AIX: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-03-18T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2024-3378 | Synology DiskStation Manager: Mehrere Schwachstellen | 2024-11-07T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2024-0216 | GitLab: Mehrere Schwachstellen | 2024-01-25T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2022-0910 | PostgreSQL JDBC Treiber: Schwachstelle ermöglicht SQL Injection | 2022-08-03T22:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2022-0416 | PostgreSQL JDBC Treiber: Schwachstelle ermöglicht Codeausführung | 2022-02-01T23:00:00.000+00:00 | 2025-03-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0583 | CODESYS Gateway: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0582 | CODESYS Control: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0581 | CODESYS Runtime Toolkit: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0577 | Dell BSAFE Crypto-J: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0576 | Contao: Schwachstelle ermöglicht Cross-Site Scripting | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0575 | TYPO3 Extension: Mehrere Schwachstellen | 2025-03-17T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0550 | Apache Camel: Schwachstelle ermöglicht Manipulation von Dateien | 2025-03-12T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0385 | Mattermost Desktop: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2025-02-16T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0043 | IBM QRadar SIEM (Log Source Management App): Mehrere Schwachstellen | 2025-01-12T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2024-3665 | Ruby on Rails: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2024-12-10T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| wid-sec-w-2024-3317 | IBM QRadar SIEM: Mehrere Schwachstellen | 2024-10-30T23:00:00.000+00:00 | 2025-03-17T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:0918 | Red Hat Security Advisory: Service Binding Operator security update | 2023-02-27T00:55:36+00:00 | 2026-02-27T15:30:32+00:00 |
| rhsa-2023:0794 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.4 bug fixes and security updates | 2023-02-15T21:17:30+00:00 | 2026-02-27T15:30:14+00:00 |
| rhsa-2023:0769 | Red Hat Security Advisory: OpenShift Container Platform 4.12.4 security update | 2023-02-20T18:30:20+00:00 | 2026-02-27T15:30:03+00:00 |
| rhsa-2023:0727 | Red Hat Security Advisory: OpenShift Container Platform 4.12.3 security update | 2023-02-16T16:12:02+00:00 | 2026-02-27T15:30:01+00:00 |
| rhsa-2023:0709 | Red Hat Security Advisory: Release of OpenShift Serverless 1.27.0 | 2023-02-09T12:04:35+00:00 | 2026-02-27T15:29:59+00:00 |
| rhsa-2023:0708 | Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.27.0 | 2023-02-09T09:28:45+00:00 | 2026-02-27T15:29:57+00:00 |
| rhsa-2023:0632 | Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update | 2023-02-15T11:08:43+00:00 | 2026-02-27T15:29:42+00:00 |
| rhsa-2023:0584 | Red Hat Security Advisory: Secondary Scheduler Operator for Red Hat OpenShift 1.1.1 security update | 2023-05-18T14:27:34+00:00 | 2026-02-27T15:29:37+00:00 |
| rhsa-2023:0471 | Red Hat Security Advisory: Migration Toolkit for Runtimes security update | 2023-01-26T12:14:50+00:00 | 2026-02-27T15:29:24+00:00 |
| rhsa-2023:0445 | Red Hat Security Advisory: go-toolset-1.18 security update | 2023-01-25T08:34:43+00:00 | 2026-02-27T15:29:19+00:00 |
| rhsa-2023:0446 | Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update | 2023-01-25T09:20:12+00:00 | 2026-02-27T15:29:18+00:00 |
| rhsa-2023:0328 | Red Hat Security Advisory: go-toolset and golang security and bug fix update | 2023-01-23T15:26:30+00:00 | 2026-02-27T15:29:15+00:00 |
| rhsa-2023:0321 | Red Hat Security Advisory: nodejs and nodejs-nodemon security, bug fix, and enhancement update | 2023-01-23T15:20:34+00:00 | 2026-02-27T15:29:14+00:00 |
| rhsa-2023:0264 | Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update | 2023-01-19T11:03:41+00:00 | 2026-02-27T15:29:12+00:00 |
| rhsa-2023:0050 | Red Hat Security Advisory: nodejs:14 security, bug fix, and enhancement update | 2023-01-09T14:55:37+00:00 | 2026-02-27T15:29:12+00:00 |
| rhsa-2023:0076 | Red Hat Security Advisory: Red Hat Ceph Storage 5.3 security update and Bug Fix | 2023-01-11T17:43:06+00:00 | 2026-02-27T15:29:10+00:00 |
| rhsa-2022:9073 | Red Hat Security Advisory: nodejs:16 security, bug fix, and enhancement update | 2022-12-15T16:20:58+00:00 | 2026-02-27T15:29:07+00:00 |
| rhsa-2022:9040 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.6.3 security update | 2022-12-14T22:38:40+00:00 | 2026-02-27T15:29:04+00:00 |
| rhsa-2022:8833 | Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update | 2022-12-06T15:39:50+00:00 | 2026-02-27T15:29:02+00:00 |
| rhsa-2022:8832 | Red Hat Security Advisory: nodejs:18 security, bug fix, and enhancement update | 2022-12-06T15:35:44+00:00 | 2026-02-27T15:29:02+00:00 |
| rhsa-2022:8781 | Red Hat Security Advisory: Logging Subsystem 5.5.5 - Red Hat OpenShift security update | 2022-12-08T07:37:32+00:00 | 2026-02-27T15:29:01+00:00 |
| rhsa-2022:8652 | Red Hat Security Advisory: Red Hat Fuse 7.11.1 release and security update | 2022-11-28T14:39:27+00:00 | 2026-02-27T15:28:58+00:00 |
| rhsa-2022:8634 | Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.1 security and bug fix update | 2022-11-28T02:51:35+00:00 | 2026-02-27T15:28:55+00:00 |
| rhsa-2022:8626 | Red Hat Security Advisory: OpenShift Container Platform 4.11.17 packages and security update | 2022-11-28T20:47:08+00:00 | 2026-02-27T15:28:52+00:00 |
| rhsa-2022:8535 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:13:37+00:00 | 2026-02-27T15:28:49+00:00 |
| rhsa-2022:8534 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:11:41+00:00 | 2026-02-27T15:28:48+00:00 |
| rhsa-2022:8250 | Red Hat Security Advisory: grafana-pcp security update | 2022-11-15T15:16:26+00:00 | 2026-02-27T15:28:47+00:00 |
| rhsa-2022:8098 | Red Hat Security Advisory: toolbox security and bug fix update | 2022-11-15T15:12:42+00:00 | 2026-02-27T15:28:42+00:00 |
| rhsa-2022:7950 | Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update | 2022-11-15T12:38:51+00:00 | 2026-02-27T15:28:40+00:00 |
| rhsa-2022:7648 | Red Hat Security Advisory: grafana-pcp security update | 2022-11-08T09:46:12+00:00 | 2026-02-27T15:28:39+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-22-181-01 | Exemys RME1 | 2022-06-30T00:00:00.000000Z | 2022-06-30T00:00:00.000000Z |
| icsa-22-179-06 | Motorola Solutions ACE1000 | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsa-22-179-05 | Motorola Solutions MDLC | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsa-22-179-04 | Motorola Solutions MOSCAD IP and ACE IP Gateways | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsa-22-179-03 | Advantech iView | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsa-22-179-02 | Omron SYSMAC CS/CJ/CP Series and NJ/NX Series | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsa-22-179-01 | ABB e-Design | 2022-06-28T00:00:00.000000Z | 2022-06-28T00:00:00.000000Z |
| icsma-22-174-01 | OFFIS DCMTK | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-174-05 | Elcomplus SmartICS | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-174-04 | Pyramid Solutions EtherNet/IP Adapter Development Kit | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-174-03 | Secheron SEPCOS Control and Protection Relay | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-174-02 | Yokogawa CAMS for HIS | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-174-01 | Yokogawa STARDOM | 2022-06-23T00:00:00.000000Z | 2022-06-23T00:00:00.000000Z |
| icsa-22-172-06 | Siemens WinCC OA | 2022-06-21T00:00:00.000000Z | 2022-06-21T00:00:00.000000Z |
| icsa-22-172-05 | Phoenix Contact Classic Line Industrial Controllers | 2022-06-21T00:00:00.000000Z | 2022-06-21T00:00:00.000000Z |
| icsa-22-172-04 | Phoenix Contact ProConOS and MULTIPROG | 2022-06-21T00:00:00.000000Z | 2022-06-21T00:00:00.000000Z |
| icsa-22-172-03 | Phoenix Contact Classic Line Controllers | 2022-06-21T00:00:00.000000Z | 2022-06-21T00:00:00.000000Z |
| icsa-22-172-02 | JTEKT TOYOPUC | 2022-06-21T00:00:00.000000Z | 2022-06-21T00:00:00.000000Z |
| icsma-22-167-01 | Hillrom Medical Device Management | 2022-06-16T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-22-167-03 | AutomationDirect DirectLOGIC with Ethernet | 2022-06-16T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-22-167-02 | AutomationDirect DirectLOGIC with Serial Communication | 2022-06-16T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-22-167-01 | AutomationDirect C-More EA9 HMI | 2022-06-16T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-22-132-10 | Siemens Desigo PXC and DXR Devices | 2022-05-12T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-20-014-05 | Siemens TIA Portal (Update F) | 2020-01-16T00:00:00.000000Z | 2022-06-16T00:00:00.000000Z |
| icsa-22-167-16 | Siemens SCALANCE LPE 4903 and SINUMERIK Edge | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| icsa-22-167-15 | Siemens Teamcenter Active Workspace | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| icsa-22-167-12 | Siemens Spectrum Power Systems | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| icsa-22-167-10 | Siemens SCALANCE XM-400 and XR-500 | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| icsa-22-167-09 | Siemens SCALANCE LPE9403 Third-Party Vulnerabilities | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| icsa-22-167-07 | Siemens SINEMA Remote Connect Server | 2022-06-14T00:00:00.000000Z | 2022-06-14T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-ftd-icmp-dos-hxxcycm | Cisco Firepower 4110 ICMP Flood Denial of Service Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-icmp-dos-hxxcycM | Cisco Firepower 4110 ICMP Flood Denial of Service Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-hidcmd-pfdewvbd | Cisco Firepower Threat Defense Software Hidden Commands Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-hidcmd-pFDeWVBd | Cisco Firepower Threat Defense Software Hidden Commands Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-container-esc-fmyqfbqv | Cisco Firepower Threat Defense Software Multi-Instance Container Escape Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-container-esc-FmYqFBQV | Cisco Firepower Threat Defense Software Multi-Instance Container Escape Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-bypass-3ecfd24j | Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-ftd-bypass-3eCfd24j | Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-xss-6vqh4rpz | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-xss-6VqH4rpZ | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-redirect-nyduseqn | Cisco Firepower Management Center Software Open Redirect Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-redirect-NYDuSEQn | Cisco Firepower Management Center Software Open Redirect Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-dos-3wymywkh | Cisco Firepower Management Center Software Denial of Service Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-dos-3WymYWKh | Cisco Firepower Management Center Software Denial of Service Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-cacauthbyp-nclgzm3q | Cisco Firepower Management Center Software Common Access Card Authentication Bypass Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-fmc-cacauthbyp-NCLGZm3Q | Cisco Firepower Management Center Software Common Access Card Authentication Bypass Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-asaftd-tls-bb-2g9uwkp | Cisco Firepower 1000 Series Bleichenbacher Attack Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-asaftd-tls-bb-2g9uWkP | Cisco Firepower 1000 Series Bleichenbacher Attack Vulnerability | 2020-10-21T16:00:00+00:00 | 2020-10-21T16:00:00+00:00 |
| cisco-sa-20200205-iosxr-cdp-rce | Cisco IOS XR Software Cisco Discovery Protocol Format String Vulnerability | 2020-02-05T16:00:00+00:00 | 2020-10-20T18:23:29+00:00 |
| cisco-sa-webex-teams-dll-drsnh5an | Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-webex-teams-dll-drsnH5AN | Cisco Webex Teams Client for Windows DLL Hijacking Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-privilege-esc-pyb7ytd | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-privilege-esc-pyb7YTd | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-priv-esc-ggcumfxv | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-staros-priv-esc-gGCUMFxv | Cisco StarOS Privilege Escalation Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-sdwan-xss-xxelfpc3 | Cisco SD-WAN vManage Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-sdwan-xss-xXeLFpC3 | Cisco SD-WAN vManage Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ndb-path-traversal-wvdyxzpy | Cisco Nexus Data Broker Software Path Traversal Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ndb-path-traversal-wVDyXZPy | Cisco Nexus Data Broker Software Path Traversal Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| cisco-sa-ise-xxs-mf5cbyx5 | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2020-10-07T16:00:00+00:00 | 2020-10-07T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-37758 | ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe() | 2025-05-02T00:00:00.000Z | 2026-02-18T03:00:33.000Z |
| msrc_cve-2024-49997 | net: ethernet: lantiq_etop: fix memory disclosure | 2024-10-01T07:00:00.000Z | 2026-02-18T03:00:33.000Z |
| msrc_cve-2025-10966 | missing SFTP host verification with wolfSSH | 2025-11-02T00:00:00.000Z | 2026-02-18T03:00:31.000Z |
| msrc_cve-2025-38248 | bridge: mcast: Fix use-after-free during router port configuration | 2025-07-02T00:00:00.000Z | 2026-02-18T03:00:28.000Z |
| msrc_cve-2024-42074 | ASoC: amd: acp: add a null check for chip_pdev structure | 2024-07-01T07:00:00.000Z | 2026-02-18T03:00:23.000Z |
| msrc_cve-2024-32650 | Rustls vulnerable to an infinite loop in rustls::conn::ConnectionCommon::complete_io() with proper client input | 2024-04-02T07:00:00.000Z | 2026-02-18T03:00:18.000Z |
| msrc_cve-2022-30790 | Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552. | 2022-06-02T00:00:00.000Z | 2026-02-18T03:00:10.000Z |
| msrc_cve-2025-37998 | openvswitch: Fix unsafe attribute parsing in output_userspace() | 2025-05-02T00:00:00.000Z | 2026-02-18T03:00:07.000Z |
| msrc_cve-2025-38244 | smb: client: fix potential deadlock when reconnecting channels | 2025-07-02T00:00:00.000Z | 2026-02-18T02:59:55.000Z |
| msrc_cve-2024-42065 | drm/xe: Add a NULL check in xe_ttm_stolen_mgr_init | 2024-07-01T07:00:00.000Z | 2026-02-18T02:59:41.000Z |
| msrc_cve-2023-28155 | The Request package through 2.88.1 for Node.js allows a bypass of SSRF mitigations via an attacker-controller server that does a cross-protocol redirect (HTTP to HTTPS or HTTPS to HTTP). NOTE: This vulnerability only affects products that are no longer supported by the maintainer. | 2023-03-10T00:00:00.000Z | 2026-02-18T02:59:40.000Z |
| msrc_cve-2025-22079 | ocfs2: validate l_tree_depth to avoid out-of-bounds access | 2025-04-02T00:00:00.000Z | 2026-02-18T02:59:37.000Z |
| msrc_cve-2024-8612 | Qemu-kvm: information leak in virtio devices | 2024-09-01T07:00:00.000Z | 2026-02-18T02:59:32.000Z |
| msrc_cve-2024-29180 | webpack-dev-middleware Path Traversal vulnerability | 2024-03-02T08:00:00.000Z | 2026-02-18T02:59:16.000Z |
| msrc_cve-2025-38264 | nvme-tcp: sanitize request list handling | 2025-07-02T00:00:00.000Z | 2026-02-18T02:59:13.000Z |
| msrc_cve-2024-49957 | ocfs2: fix null-ptr-deref when journal load failed. | 2024-10-01T07:00:00.000Z | 2026-02-18T02:59:11.000Z |
| msrc_cve-2025-37780 | isofs: Prevent the use of too small fid | 2025-05-02T00:00:00.000Z | 2026-02-18T02:59:10.000Z |
| msrc_cve-2024-42071 | ionic: use dev_consume_skb_any outside of napi | 2024-07-01T07:00:00.000Z | 2026-02-18T02:59:09.000Z |
| msrc_cve-2024-57798 | drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() | 2025-01-02T00:00:00.000Z | 2026-02-18T02:59:03.000Z |
| msrc_cve-2023-24537 | Infinite loop in parsing in go/scanner | 2023-04-01T00:00:00.000Z | 2026-02-18T02:59:03.000Z |
| msrc_cve-2019-14192 | An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call. | 2019-07-02T00:00:00.000Z | 2026-02-18T02:58:59.000Z |
| msrc_cve-2023-26136 | Versions of the package tough-cookie before 4.1.3 are vulnerable to Prototype Pollution due to improper handling of Cookies when using CookieJar in rejectPublicSuffixes=false mode. This issue arises from the manner in which the objects are initialized. | 2023-07-01T07:00:00.000Z | 2026-02-18T02:58:51.000Z |
| msrc_cve-2025-37915 | net_sched: drr: Fix double list add in class with netem as child qdisc | 2025-05-02T00:00:00.000Z | 2026-02-18T02:58:40.000Z |
| msrc_cve-2025-38260 | btrfs: handle csum tree error with rescue=ibadroots correctly | 2025-07-02T00:00:00.000Z | 2026-02-18T02:58:39.000Z |
| msrc_cve-2024-49962 | ACPICA: check null return of ACPI_ALLOCATE_ZEROED() in acpi_db_convert_to_package() | 2024-10-01T07:00:00.000Z | 2026-02-18T02:58:29.000Z |
| msrc_cve-2024-42082 | xdp: Remove WARN() from __xdp_reg_mem_model() | 2024-07-01T07:00:00.000Z | 2026-02-18T02:58:25.000Z |
| msrc_cve-2023-44270 | An issue was discovered in PostCSS before 8.4.31. The vulnerability affects linters using PostCSS to parse external untrusted CSS. An attacker can prepare CSS in such a way that it will contains parts parsed by PostCSS as a CSS comment. After processing by PostCSS, it will be included in the PostCSS output in CSS nodes (rules, properties) despite being included in a comment. | 2023-09-01T00:00:00.000Z | 2026-02-18T02:58:25.000Z |
| msrc_cve-2021-38578 | Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize. | 2022-03-02T00:00:00.000Z | 2026-02-18T02:58:25.000Z |
| msrc_cve-2024-53239 | ALSA: 6fire: Release resources at card release | 2024-12-02T00:00:00.000Z | 2026-02-18T02:58:21.000Z |
| msrc_cve-2025-37742 | jfs: Fix uninit-value access of imap allocated in the diMount() function | 2025-05-02T00:00:00.000Z | 2026-02-18T02:58:14.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:14086-1 | python310-Js2Py-0.74-3.1 on GA media | 2024-07-01T00:00:00Z | 2024-07-01T00:00:00Z |
| opensuse-su-2024:14085-1 | fiona-fio-1.9.6-1.1 on GA media | 2024-07-01T00:00:00Z | 2024-07-01T00:00:00Z |
| opensuse-su-2024:14084-1 | nodejs-electron-29.4.3-1.1 on GA media | 2024-07-01T00:00:00Z | 2024-07-01T00:00:00Z |
| opensuse-su-2024:14083-1 | python310-3.10.14-3.1 on GA media | 2024-06-29T00:00:00Z | 2024-06-29T00:00:00Z |
| opensuse-su-2024:14082-1 | python311-3.11.9-3.1 on GA media | 2024-06-28T00:00:00Z | 2024-06-28T00:00:00Z |
| opensuse-su-2024:14081-1 | containerd-1.7.17-2.1 on GA media | 2024-06-28T00:00:00Z | 2024-06-28T00:00:00Z |
| opensuse-su-2024:14080-1 | squid-6.10-1.1 on GA media | 2024-06-27T00:00:00Z | 2024-06-27T00:00:00Z |
| opensuse-su-2024:14079-1 | python39-3.9.19-3.1 on GA media | 2024-06-27T00:00:00Z | 2024-06-27T00:00:00Z |
| opensuse-su-2024:14078-1 | python38-3.8.19-4.1 on GA media | 2024-06-27T00:00:00Z | 2024-06-27T00:00:00Z |
| opensuse-su-2024:14077-1 | helmfile-0.166.0-1.1 on GA media | 2024-06-27T00:00:00Z | 2024-06-27T00:00:00Z |
| opensuse-su-2024:14076-1 | traefik2-2.11.5-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14075-1 | ruby3.3-rubygem-sprockets-3.7-3.7.3-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14074-1 | ruby3.3-rubygem-rails-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14073-1 | ruby3.3-rubygem-http-cookie-1.0.6-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14072-1 | ruby3.3-rubygem-fluentd-1.17.0-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14071-1 | ruby3.3-rubygem-activesupport-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14070-1 | ruby3.3-rubygem-activestorage-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14069-1 | ruby3.3-rubygem-activerecord-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14068-1 | ruby3.3-rubygem-actiontext-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14067-1 | ruby3.3-rubygem-actionpack-7.0-7.0.8.4-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14066-1 | python310-3.10.14-2.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14065-1 | python310-django-allauth-0.63.3-1.1 on GA media | 2024-06-24T00:00:00Z | 2024-06-24T00:00:00Z |
| opensuse-su-2024:14064-1 | python39-3.9.19-2.1 on GA media | 2024-06-22T00:00:00Z | 2024-06-22T00:00:00Z |
| opensuse-su-2024:14063-1 | python38-3.8.19-3.1 on GA media | 2024-06-22T00:00:00Z | 2024-06-22T00:00:00Z |
| opensuse-su-2024:14062-1 | python310-dnspython-2.6.1-1.1 on GA media | 2024-06-21T00:00:00Z | 2024-06-21T00:00:00Z |
| opensuse-su-2024:14061-1 | perl-DBI-1.643-4.1 on GA media | 2024-06-21T00:00:00Z | 2024-06-21T00:00:00Z |
| opensuse-su-2024:14060-1 | gnome-settings-daemon-46.0-5.1 on GA media | 2024-06-21T00:00:00Z | 2024-06-21T00:00:00Z |
| opensuse-su-2024:14059-1 | singularity-ce-4.1.3-1.1 on GA media | 2024-06-20T00:00:00Z | 2024-06-20T00:00:00Z |
| opensuse-su-2024:14058-1 | kubevirt-container-disk-1.2.2-2.1 on GA media | 2024-06-20T00:00:00Z | 2024-06-20T00:00:00Z |
| opensuse-su-2024:14057-1 | sngrep-1.8.1-2.1 on GA media | 2024-06-19T00:00:00Z | 2024-06-19T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2017-167 | Global-buffer-overflow in vte_write_debug | 2021-01-15T05:22:10.388343Z | 2022-04-13T03:04:40.029553Z |
| osv-2017-161 | Global-buffer-overflow in vte_write_debug | 2021-01-15T05:21:13.160609Z | 2022-04-13T03:04:40.020187Z |
| osv-2017-157 | Global-buffer-overflow in vte_write_debug | 2021-01-15T05:20:53.280212Z | 2022-04-13T03:04:40.048151Z |
| osv-2017-126 | Bad-cast to const std::__1::__less<unsigned long, unsigned long> *_start | 2021-01-15T00:00:07.054153Z | 2022-04-13T03:04:40.015212Z |
| osv-2017-121 | Global-buffer-overflow in vte_write_debug | 2021-01-15T00:00:02.372502Z | 2022-04-13T03:04:40.024896Z |
| osv-2016-5 | Global-buffer-overflow in vte_write_debug | 2021-01-15T05:21:11.929776Z | 2022-04-13T03:04:40.038855Z |
| osv-2016-4 | Global-buffer-overflow in vte_write_debug | 2021-01-15T05:21:11.020482Z | 2022-04-13T03:04:40.052783Z |
| osv-2022-93 | Heap-buffer-overflow in strtol | 2022-01-27T00:00:50.546211Z | 2022-04-13T03:04:39.865451Z |
| osv-2022-67 | Heap-buffer-overflow in cli_bcomp_freemeta | 2022-01-21T00:00:45.048694Z | 2022-04-13T03:04:39.425407Z |
| osv-2022-62 | Stack-buffer-overflow in load_regex_matcher | 2022-01-21T00:00:07.079980Z | 2022-04-13T03:04:39.385734Z |
| osv-2022-61 | Heap-buffer-overflow in cli_loadcrt | 2022-01-21T00:00:05.087581Z | 2022-04-13T03:04:39.408377Z |
| osv-2022-321 | Stack-use-after-scope in std::__1::__function::__func<bool grk::WaveletReverse::decompress_partial_tile<g | 2022-04-09T00:00:21.286205Z | 2022-04-13T03:04:39.574474Z |
| osv-2022-280 | Heap-buffer-overflow in Exiv2::getULong | 2022-03-26T00:00:34.484159Z | 2022-04-13T03:04:39.315882Z |
| osv-2022-243 | Heap-buffer-overflow in grk::PacketIter::next_pcrl | 2022-03-15T00:00:45.636919Z | 2022-04-13T03:04:39.523343Z |
| osv-2022-223 | Container-overflow in Exiv2::Photoshop::locateIrb | 2022-03-08T00:00:07.482401Z | 2022-04-13T03:04:39.309960Z |
| osv-2022-220 | Stack-buffer-overflow in load_regex_matcher | 2022-03-07T00:00:32.716453Z | 2022-04-13T03:04:39.413972Z |
| osv-2022-180 | Heap-buffer-overflow in row_mt_worker_hook | 2022-02-21T00:00:46.102389Z | 2022-04-13T03:04:39.473707Z |
| osv-2022-179 | Heap-buffer-overflow in row_mt_worker_hook | 2022-02-21T00:00:40.376028Z | 2022-04-13T03:04:39.479274Z |
| osv-2022-158 | Heap-buffer-overflow in parse_primitive | 2022-02-16T00:00:29.292668Z | 2022-04-13T03:04:39.859876Z |
| osv-2022-147 | Heap-buffer-overflow in parse_primitive | 2022-02-13T00:01:52.104750Z | 2022-04-13T03:04:39.871047Z |
| osv-2022-136 | Heap-buffer-overflow in cli_js_parse_done | 2022-02-10T00:01:30.573024Z | 2022-04-13T03:04:39.419617Z |
| osv-2022-116 | Heap-buffer-overflow in parse_object | 2022-02-04T00:00:28.846023Z | 2022-04-13T03:04:39.876645Z |
| osv-2022-115 | UNKNOWN READ in unescape_string | 2022-02-04T00:00:20.060698Z | 2022-04-13T03:04:39.882511Z |
| osv-2022-109 | UNKNOWN READ in unescape_string | 2022-02-01T00:01:34.223287Z | 2022-04-13T03:04:39.889052Z |
| osv-2022-105 | Heap-buffer-overflow in parse_object | 2022-01-31T00:00:44.191266Z | 2022-04-13T03:04:39.854288Z |
| osv-2021-914 | UNKNOWN READ in mrb_vm_ci_env | 2021-07-03T00:01:26.278614Z | 2022-04-13T03:04:39.759907Z |
| osv-2021-913 | Heap-buffer-overflow in dispatch | 2021-07-03T00:00:29.297612Z | 2022-04-13T03:04:39.790952Z |
| osv-2021-912 | Heap-buffer-overflow in mrb_vm_exec | 2021-07-03T00:00:06.973804Z | 2022-04-13T03:04:39.677891Z |
| osv-2021-904 | UNKNOWN READ in helper_uc_tracecode | 2021-06-27T00:01:32.667386Z | 2022-04-13T03:04:39.109056Z |
| osv-2021-895 | Segv on unknown address in helper_uc_tracecode | 2021-06-25T00:01:11.105162Z | 2022-04-13T03:04:39.292252Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-golang-2023-39326 | Denial of service via chunk extensions in net/http | 2024-03-06T10:53:23.071Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39325 | HTTP/2 rapid reset can cause excessive work in net/http | 2024-03-06T10:53:35.567Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39323 | Arbitrary code execution during build via line directives in cmd/go | 2024-03-06T10:53:48.482Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39322 | Memory exhaustion in QUIC connection handling in crypto/tls | 2024-03-06T10:53:58.705Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39321 | Panic when processing post-handshake message on QUIC connections in crypto/tls | 2024-03-06T10:54:10.069Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39320 | Arbitrary code execution via go.mod toolchain directive in cmd/go | 2024-03-06T10:54:20.860Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39319 | Improper handling of special tags within script contexts in html/template | 2024-03-06T10:54:32.276Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-39318 | Improper handling of HTML-like comments in script contexts in html/template | 2024-03-06T10:54:41.909Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29409 | Large RSA keys can cause high CPU usage in crypto/tls | 2024-03-06T10:54:53.392Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29406 | Insufficient sanitization of Host header in net/http | 2024-03-06T10:55:04.890Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29405 | Improper sanitization of LDFLAGS with embedded spaces in go command with cgo in cmd/go | 2024-03-06T10:55:15.285Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29404 | Improper handling of non-optional LDFLAGS in go command with cgo in cmd/go | 2024-03-06T10:55:27.675Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29403 | Unsafe behavior in setuid/setgid binaries in runtime | 2024-03-06T10:55:36.361Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29402 | Code injection via go command with cgo in cmd/go | 2024-03-06T10:55:47.592Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-29400 | Improper handling of empty HTML attributes in html/template | 2024-03-06T10:55:58.472Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24540 | Improper handling of JavaScript whitespace in html/template | 2024-03-06T10:56:09.496Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24539 | Improper sanitization of CSS values in html/template | 2024-03-06T10:56:20.094Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24538 | Backticks not treated as string delimiters in html/template | 2024-03-06T10:56:31.898Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24537 | Infinite loop in parsing in go/scanner | 2024-03-06T10:56:42.169Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24536 | Excessive resource consumption in net/http, net/textproto and mime/multipart | 2024-03-06T10:56:52.802Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24534 | Excessive memory allocation in net/http and net/textproto | 2024-03-06T10:57:03.774Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24532 | Incorrect calculation on P256 curves in crypto/internal/nistec | 2024-03-06T10:57:15.189Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2023-24531 | Output of "go env" does not sanitize values in cmd/go | 2024-07-04T07:29:14.949Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41725 | Excessive resource consumption in mime/multipart | 2024-03-06T10:57:26.992Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41724 | Panic on large handshake records in crypto/tls | 2024-03-06T10:57:37.680Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41723 | Denial of service via crafted HTTP/2 stream in net/http and golang.org/x/net | 2024-03-06T10:57:47.288Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41722 | Path traversal on Windows in path/filepath | 2024-03-06T10:57:57.994Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41720 | Restricted file access on Windows in os and net/http | 2024-03-06T10:58:08.803Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41717 | Excessive memory growth in net/http and golang.org/x/net/http2 | 2024-03-06T10:58:17.486Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2022-41716 | Unsanitized NUL in environment variables on Windows in syscall and os/exec | 2024-03-06T10:58:28.267Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-201412-0535 | Multiple stack-based buffer overflows in (1) HWOPOSScale.ocx and (2) HWOPOSSCANNER.ocx in… | 2024-04-19T22:49:54.970000Z |
| var-201406-0321 | Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.… | 2024-04-19T22:47:35.081000Z |
| var-201512-0076 | Cross-site request forgery (CSRF) vulnerability on Belkin F9K1102 2 devices with firmware… | 2024-04-19T22:44:32.715000Z |
| var-201512-0075 | Belkin F9K1102 2 devices with firmware 2.10.17 rely on client-side JavaScript code for au… | 2024-04-19T22:44:32.748000Z |
| var-201512-0074 | The web management interface on Belkin F9K1102 2 devices with firmware 2.10.17 has a blan… | 2024-04-19T22:44:32.781000Z |
| var-201512-0073 | Belkin F9K1102 2 devices with firmware 2.10.17 use an improper algorithm for selecting th… | 2024-04-19T22:44:32.681000Z |
| var-202403-1239 | An arbitrary code execution vulnerability in Rockwell Automation Arena Simulation could … | 2024-04-19T22:43:55.992000Z |
| var-201504-0521 | The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate… | 2024-04-19T22:40:11.917000Z |
| var-201607-0243 | Integer overflow in the rtxMemHeapAlloc function in asn1rt_a.lib in Objective Systems ASN… | 2024-04-19T22:40:09.559000Z |
| var-201508-0177 | Apache Flex BlazeDS, as used in flex-messaging-core.jar in Adobe LiveCycle Data Services … | 2024-04-19T22:40:08.722000Z |
| var-202112-0166 | ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9… | 2024-04-19T22:39:53.036000Z |
| var-202112-0023 | Improper access control vulnerability in ELECOM LAN routers (WRC-1167GST2 firmware v1.25 … | 2024-04-19T22:39:53.058000Z |
| var-202108-1931 | D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to OS comma… | 2024-04-19T22:39:53.666000Z |
| var-202108-1930 | D-Link router DSL-2750U with firmware vME1.16 or prior versions is vulnerable to unauthor… | 2024-04-19T22:39:53.641000Z |
| var-202112-0026 | Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and… | 2024-04-19T22:39:52.996000Z |
| var-202112-0025 | Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and… | 2024-04-19T22:39:52.974000Z |
| var-202112-0024 | Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and… | 2024-04-19T22:39:52.948000Z |
| var-202112-0008 | Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and… | 2024-04-19T22:39:52.902000Z |
| var-202112-0004 | Cross-site request forgery (CSRF) vulnerability in ELECOM LAN routers (WRC-1167GST2 firmw… | 2024-04-19T22:39:52.927000Z |
| var-201402-0185 | Cross-site scripting (XSS) vulnerability in user/ldap_user/add in Fortinet FortiOS 5.0.3 … | 2024-04-19T22:37:05.363000Z |
| var-201006-1205 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T22:25:26.489000Z |
| var-201507-0105 | Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) imple… | 2024-04-19T22:16:04.240000Z |
| var-201006-1222 | Array index error in AcroForm.api in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x b… | 2024-04-19T22:12:06.565000Z |
| var-201408-0271 | Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-2886, CVE-2014-2… | 2024-04-19T22:11:18.963000Z |
| var-201006-1242 | Unspecified vulnerability in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.… | 2024-04-19T21:51:57.530000Z |
| var-201006-1214 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:51:26.481000Z |
| var-201006-1213 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:47:43.907000Z |
| var-201006-1193 | Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, … | 2024-04-19T21:45:26.115000Z |
| var-201006-0264 | Buffer overflow in Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Win… | 2024-04-19T21:12:04.344000Z |
| var-201711-0420 | An issue was discovered in certain Apple products. macOS High Sierra before Security Upda… | 2024-04-19T21:11:20.488000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000045 | Drupal Form API fails to validate the redirect URL | 2012-05-17T13:55+09:00 | 2012-05-17T13:55+09:00 |
| jvndb-2012-000043 | baserCMS vulnerable to session management | 2012-05-15T16:56+09:00 | 2012-05-15T16:56+09:00 |
| jvndb-2012-000042 | WEB MART from KENT-WEB vulnerable to cross-site scripting | 2012-05-15T16:53+09:00 | 2012-05-15T16:53+09:00 |
| jvndb-2012-000041 | WEB MART from KENT-WEB vulnerable to cross-site scripting | 2012-05-15T16:44+09:00 | 2012-05-15T16:44+09:00 |
| jvndb-2012-002377 | Arbitrary Code Execution Vulnerability in Hitachi COBOL GUI Option on Windows | 2012-05-15T15:14+09:00 | 2012-05-15T15:14+09:00 |
| jvndb-2012-000035 | Multiple JustSystems products vulnerable to buffer overflow | 2012-04-24T13:37+09:00 | 2012-05-09T19:49+09:00 |
| jvndb-2012-000005 | osCommerce vulnerable to cross-site scripting | 2012-01-20T16:15+09:00 | 2012-04-26T16:58+09:00 |
| jvndb-2012-000037 | sp mode mail issue in the verification of SSL certificates | 2012-04-26T14:21+09:00 | 2012-04-26T14:21+09:00 |
| jvndb-2012-000036 | OSQA vulnerable to cross-site scripting | 2012-04-26T14:15+09:00 | 2012-04-26T14:15+09:00 |
| jvndb-2012-000034 | Multiple JustSystems products may insecurely load dynamic libraries | 2012-04-24T13:36+09:00 | 2012-04-24T13:36+09:00 |
| jvndb-2012-000033 | TwitRocker2 (Android version) vulnerable in the WebView class | 2012-04-20T12:21+09:00 | 2012-04-20T12:21+09:00 |
| jvndb-2012-000031 | ActiveScriptRuby vulnerable to arbitrary Ruby script execution | 2012-04-13T14:08+09:00 | 2012-04-13T14:08+09:00 |
| jvndb-2012-000032 | Dokodemo Rikunabi 2013 vulnerable to cross-site scripting | 2012-04-13T14:03+09:00 | 2012-04-13T14:03+09:00 |
| jvndb-2012-001932 | Vulnerability in Fujitsu Interstage List Works Where Permissions Cannot Be Denied | 2012-04-11T11:45+09:00 | 2012-04-11T11:45+09:00 |
| jvndb-2012-000030 | SENCHA SNS vulnerable to session fixation | 2012-04-05T16:41+09:00 | 2012-04-05T16:41+09:00 |
| jvndb-2012-000029 | SENCHA SNS vulnerable to cross-site request forgery | 2012-04-05T16:41+09:00 | 2012-04-05T16:41+09:00 |
| jvndb-2012-000028 | TOSHIBA TEC e-Studio series vulnerable to authentication bypass | 2012-04-05T16:40+09:00 | 2012-04-05T16:40+09:00 |
| jvndb-2012-000027 | Janetter vulnerable to cross-site request forgery | 2012-03-19T14:31+09:00 | 2012-03-19T14:31+09:00 |
| jvndb-2012-000026 | Janetter vulnerable to information disclosure | 2012-03-19T14:27+09:00 | 2012-03-19T14:27+09:00 |
| jvndb-2012-001793 | JP1/Cm2/Network Node Manager i Denial of Service (DoS) Vulnerability | 2012-03-19T12:04+09:00 | 2012-03-19T12:04+09:00 |
| jvndb-2012-000025 | Redmine vulnerable to cross-site scripting | 2012-03-13T13:39+09:00 | 2012-03-13T13:39+09:00 |
| jvndb-2012-000024 | twicca fails to restrict access permissions | 2012-03-13T13:36+09:00 | 2012-03-13T13:36+09:00 |
| jvndb-2012-000023 | Jenkins vulnerable to cross-site scripting | 2012-03-09T14:35+09:00 | 2012-03-09T14:35+09:00 |
| jvndb-2012-000022 | Jenkins vulnerable to cross-site scripting | 2012-03-09T14:28+09:00 | 2012-03-09T14:28+09:00 |
| jvndb-2012-000021 | SquirrelMail plugin Autocomplete vulnerable to cross-site scripting | 2012-03-09T14:18+09:00 | 2012-03-09T14:18+09:00 |
| jvndb-2012-000020 | ES File Explorer fails to restrict access permissions | 2012-03-05T15:50+09:00 | 2012-03-05T15:50+09:00 |
| jvndb-2012-000019 | Kingsoft Internet Security 2011 vulnerable to denial-of-service | 2012-03-01T14:03+09:00 | 2012-03-01T14:03+09:00 |
| jvndb-2012-000014 | Multiple COOKPAD applications for Android vulnerable in WebView class | 2012-02-22T14:44+09:00 | 2012-02-29T10:56+09:00 |
| jvndb-2012-000018 | Movable Type vulnerable to session hijacking | 2012-02-23T14:28+09:00 | 2012-02-23T14:28+09:00 |
| jvndb-2012-000017 | Movable Type vulnerable to OS command injection | 2012-02-23T14:21+09:00 | 2012-02-23T14:21+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:02073-1 | Security update for the Linux Kernel RT (Live Patch 7 for SLE 15 SP6) | 2025-06-23T21:20:29Z | 2025-06-23T21:20:29Z |
| suse-su-2025:02072-1 | Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP6) | 2025-06-23T20:03:58Z | 2025-06-23T20:03:58Z |
| suse-su-2025:02071-1 | Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6) | 2025-06-23T20:03:55Z | 2025-06-23T20:03:55Z |
| suse-su-2025:02070-1 | Security update for the Linux Kernel RT (Live Patch 2 for SLE 15 SP6) | 2025-06-23T20:03:51Z | 2025-06-23T20:03:51Z |
| suse-su-2025:02069-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) | 2025-06-23T16:04:03Z | 2025-06-23T16:04:03Z |
| suse-su-2025:20450-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-06-23T15:27:40Z | 2025-06-23T15:27:40Z |
| suse-su-2025:20431-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-06-23T15:27:40Z | 2025-06-23T15:27:40Z |
| suse-su-2025:20430-1 | Security update for python-tornado6 | 2025-06-23T13:44:42Z | 2025-06-23T13:44:42Z |
| suse-su-2025:20444-1 | Security update for gpg2 | 2025-06-23T13:33:24Z | 2025-06-23T13:33:24Z |
| suse-su-2025:02066-1 | Security update for distribution | 2025-06-23T10:48:35Z | 2025-06-23T10:48:35Z |
| suse-su-2025:02059-1 | Security update for icu | 2025-06-23T01:38:08Z | 2025-06-23T01:38:08Z |
| suse-su-2025:02058-1 | Security update for gstreamer-plugins-good | 2025-06-21T09:04:59Z | 2025-06-21T09:04:59Z |
| suse-su-2025:02057-1 | Security update for python311 | 2025-06-21T09:04:25Z | 2025-06-21T09:04:25Z |
| suse-su-2025:02056-1 | Security update for apache-commons-beanutils | 2025-06-20T16:17:22Z | 2025-06-20T16:17:22Z |
| suse-su-2025:02055-1 | Security update for gstreamer-plugins-good | 2025-06-20T15:35:07Z | 2025-06-20T15:35:07Z |
| suse-su-2025:20442-1 | Security update for iputils | 2025-06-20T14:28:28Z | 2025-06-20T14:28:28Z |
| suse-su-2025:20429-1 | Security update for afterburn | 2025-06-20T14:11:51Z | 2025-06-20T14:11:51Z |
| suse-su-2025:02053-1 | Security update for gstreamer-plugins-good | 2025-06-20T13:05:43Z | 2025-06-20T13:05:43Z |
| suse-su-2025:02052-1 | Security update for apache2-mod_security2 | 2025-06-20T13:04:57Z | 2025-06-20T13:04:57Z |
| suse-su-2025:02051-1 | Security update for perl | 2025-06-20T12:42:29Z | 2025-06-20T12:42:29Z |
| suse-su-2025:02050-1 | Security update for python39 | 2025-06-20T12:41:57Z | 2025-06-20T12:41:57Z |
| suse-su-2025:02049-1 | Security update for python311 | 2025-06-20T12:41:35Z | 2025-06-20T12:41:35Z |
| suse-su-2025:02048-1 | Security update for python312 | 2025-06-20T12:40:39Z | 2025-06-20T12:40:39Z |
| suse-su-2025:02047-1 | Security update for python310 | 2025-06-20T12:40:08Z | 2025-06-20T12:40:08Z |
| suse-su-2025:02046-1 | Security update for ignition | 2025-06-20T12:33:38Z | 2025-06-20T12:33:38Z |
| suse-su-2025:02045-1 | Security update for nodejs20 | 2025-06-20T11:04:00Z | 2025-06-20T11:04:00Z |
| suse-su-2025:02044-1 | Security update for libblockdev | 2025-06-20T10:44:00Z | 2025-06-20T10:44:00Z |
| suse-su-2025:02043-1 | Security update for libblockdev | 2025-06-20T10:41:38Z | 2025-06-20T10:41:38Z |
| suse-su-2025:02042-1 | Security update for openssl-3 | 2025-06-20T10:38:46Z | 2025-06-20T10:38:46Z |
| suse-su-2025:02041-1 | Security update for ignition | 2025-06-20T10:04:07Z | 2025-06-20T10:04:07Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-27902 | Tenda AC6 addressNat函数堆栈缓冲区溢出漏洞 | 2025-10-24 | 2025-11-14 |
| cnvd-2025-27901 | Tenda AC23 SetVirtualServerCfg文件缓冲区溢出漏洞 | 2025-11-05 | 2025-11-14 |
| cnvd-2025-27900 | Tenda AC23 saveParentControlInfo文件缓冲区溢出漏洞 | 2025-11-05 | 2025-11-14 |
| cnvd-2025-27899 | Tenda AC8 DatabaseIniSet文件缓冲区溢出漏洞 | 2025-11-05 | 2025-11-14 |
| cnvd-2025-27897 | Tenda AC23越界写入漏洞 | 2023-02-15 | 2025-11-14 |
| cnvd-2025-27896 | Tenda AC23 sub_4781A4函数堆栈缓冲区溢出漏洞 | 2023-08-29 | 2025-11-14 |
| cnvd-2025-27895 | Tenda AC23 sub_450A4C函数缓冲区溢出漏洞 | 2023-08-29 | 2025-11-14 |
| cnvd-2025-27894 | Tenda AC23 get_parentControl_list_Info函数堆缓冲区溢出漏洞 | 2023-08-29 | 2025-11-14 |
| cnvd-2025-27889 | WordPress All in One Time Clock Lite plugin未经授权访问漏洞 | 2025-11-11 | 2025-11-14 |
| cnvd-2025-27888 | WordPress Ace User Management plugin未正确验证密码重置令牌漏洞 | 2025-11-11 | 2025-11-14 |
| cnvd-2025-27887 | WordPress WPFunnels plugin路径遍历漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27886 | WordPress WPFunnels plugin未经授权的用户注册漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27885 | WordPress WP Airbnb Review Slider plugin跨站脚本漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27884 | WordPress Smart Auto Upload Images plugin任意文件上传漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27883 | WordPress Simple Downloads List plugin未经授权的数据修改漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27882 | WordPress Ovatheme Events Manager plugin未经授权的访问漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27881 | WordPress Mang Board plugin跨站脚本漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27880 | WordPress LC Wizard plugin权限提升漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27879 | WordPress IDonate plugin不安全的直接对象引用漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27878 | WordPress Gravity Forms plugin任意文件上传漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27877 | WordPress Course Booking System plugin未授权访问数据漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27876 | WordPress Contact Form 7 AWeber Extension plugin未经授权的数据修改漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27875 | WordPress Asgaros Forum plugin SQL注入漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27874 | Inventory Management viewProduct.php文件SQL注入漏洞 | 2024-09-14 | 2025-11-13 |
| cnvd-2025-27873 | Inventory Management editProduct.php文件SQL注入漏洞 | 2024-11-21 | 2025-11-13 |
| cnvd-2025-27872 | Online Shoe Store summary.php文件SQL注入漏洞 | 2025-01-10 | 2025-11-13 |
| cnvd-2025-27871 | Online Shoe Store /login.php文件SQL注入漏洞 | 2025-01-10 | 2025-11-13 |
| cnvd-2025-27870 | Online Shoe Store details2.php文件SQL注入漏洞 | 2025-01-10 | 2025-11-13 |
| cnvd-2025-27869 | Online Shoe Store details.php文件SQL注入漏洞 | 2025-01-10 | 2025-11-13 |
| cnvd-2025-27868 | Online Shoe Store访问控制不当漏洞 | 2025-01-10 | 2025-11-13 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0130 | Vulnérabilité dans PostgreSQL | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0135 | Multiples vulnérabilités dans IBM QRadar Deployment Intelligence App | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0134 | Multiples vulnérabilités dans le noyau Linux de Debian | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0133 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0132 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0131 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| CERTFR-2025-AVI-0130 | Vulnérabilité dans PostgreSQL | 2025-02-14T00:00:00.000000 | 2025-02-14T00:00:00.000000 |
| certfr-2025-avi-0128 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2025-02-13T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| certfr-2025-avi-0127 | Multiples vulnérabilités dans Google Chrome | 2025-02-13T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| certfr-2025-avi-0123 | Multiples vulnérabilités dans GitLab | 2025-02-12T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| certfr-2025-avi-0063 | Multiples vulnérabilités dans GitLab | 2025-01-23T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| CERTFR-2025-AVI-0128 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2025-02-13T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| CERTFR-2025-AVI-0127 | Multiples vulnérabilités dans Google Chrome | 2025-02-13T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| CERTFR-2025-AVI-0123 | Multiples vulnérabilités dans GitLab | 2025-02-12T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| CERTFR-2025-AVI-0063 | Multiples vulnérabilités dans GitLab | 2025-01-23T00:00:00.000000 | 2025-02-13T00:00:00.000000 |
| certfr-2025-avi-0126 | Vulnérabilité dans les produits Juniper Networks | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0125 | Multiples vulnérabilités dans les produits SolarWinds | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0124 | Vulnérabilité dans le greffon "Saisies pour formulaire" pour SPIP | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0122 | Multiples vulnérabilités dans les produits Adobe | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0121 | Multiples vulnérabilités dans les produits Ivanti | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0120 | Multiples vulnérabilités dans les produits Fortinet | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0119 | Multiples vulnérabilités dans les produits Intel | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0118 | Multiples vulnérabilités dans les produits Microsoft | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0117 | Vulnérabilité dans Microsoft Azure | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0116 | Multiples vulnérabilités dans Microsoft Windows | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0115 | Multiples vulnérabilités dans Microsoft Office | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| certfr-2025-avi-0030 | Multiples vulnérabilités dans les produits Fortinet | 2025-01-14T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| CERTFR-2025-AVI-0126 | Vulnérabilité dans les produits Juniper Networks | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| CERTFR-2025-AVI-0125 | Multiples vulnérabilités dans les produits SolarWinds | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |
| CERTFR-2025-AVI-0124 | Vulnérabilité dans le greffon "Saisies pour formulaire" pour SPIP | 2025-02-12T00:00:00.000000 | 2025-02-12T00:00:00.000000 |