Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-20749 |
6.7 (3.1)
|
In charger, there is a possible out of bounds wri… |
MediaTek, Inc. |
MT6789, MT6835, MT6855, MT6878, MT6879, MT6886, MT6897, MT6899, MT6983, MT6985, MT6989, MT6991, MT8169, MT8188, MT8195, MT8196, MT8781, MT8796 |
2025-11-04T06:20:51.979Z | 2026-02-26T17:47:19.762Z |
| CVE-2025-62507 |
7.7 (4.0)
|
Redis: Bug in XACKDEL may lead to stack overflow and p… |
redis |
redis |
2025-11-04T21:24:44.802Z | 2026-02-26T17:47:18.954Z |
| CVE-2025-59237 |
8.8 (3.1)
|
Microsoft SharePoint Remote Code Execution Vulnerability |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2025-10-14T17:00:39.579Z | 2026-02-26T17:47:18.427Z |
| CVE-2025-59236 |
8.4 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-10-14T17:00:39.007Z | 2026-02-26T17:47:18.788Z |
| CVE-2025-21078 |
8.8 (3.1)
|
Use of insufficiently random value of secretKey i… |
Samsung Mobile |
Smart Switch |
2025-11-05T05:41:00.294Z | 2026-02-26T17:47:18.156Z |
| CVE-2025-21071 |
5.7 (3.1)
|
Out-of-bounds write in handling opcode in fingerp… |
Samsung Mobile |
Samsung Mobile Devices |
2025-11-05T05:40:51.956Z | 2026-02-26T17:47:18.613Z |
| CVE-2025-59242 |
7.8 (3.1)
|
Windows Ancillary Function Driver for WinSock Elevatio… |
Microsoft |
Windows 10 Version 1507 |
2025-10-14T17:00:40.139Z | 2026-02-26T17:47:17.930Z |
| CVE-2025-49708 |
9.9 (3.1)
|
Microsoft Graphics Component Elevation of Privilege Vu… |
Microsoft |
Windows 10 Version 1809 |
2025-10-14T17:00:40.805Z | 2026-02-26T17:47:17.474Z |
| CVE-2025-10622 |
8 (3.1)
|
Foreman: os command injection via ct_location and fcct… |
The Foreman |
Foreman |
2025-11-05T07:32:14.390Z | 2026-02-26T17:47:17.722Z |
| CVE-2025-64459 |
N/A
|
Potential SQL injection via _connector keyword argumen… |
djangoproject |
Django |
2025-11-05T15:09:58.239Z | 2026-02-26T17:47:16.519Z |
| CVE-2025-59249 |
8.8 (3.1)
|
Microsoft Exchange Server Elevation of Privilege Vulne… |
Microsoft |
Microsoft Exchange Server 2016 Cumulative Update 23 |
2025-10-14T17:00:42.051Z | 2026-02-26T17:47:16.347Z |
| CVE-2025-59243 |
7.8 (3.1)
|
Microsoft Excel Remote Code Execution Vulnerability |
Microsoft |
Microsoft 365 Apps for Enterprise |
2025-10-14T17:00:41.431Z | 2026-02-26T17:47:16.676Z |
| CVE-2025-55108 |
9.5 (4.0)
10 (3.1)
|
BMC Control-M/Agent default configuration does not enf… |
BMC |
Control-M/Agent |
2025-11-05T09:07:29.915Z | 2026-02-26T17:47:16.862Z |
| CVE-2025-45378 |
9.1 (3.1)
|
Dell CloudLink, versions 8.0 through 8.1.2, conta… |
Dell |
CloudLink |
2025-11-05T16:23:15.673Z | 2026-02-26T17:47:16.150Z |
| CVE-2025-59282 |
7 (3.1)
|
Internet Information Services (IIS) Inbox COM Objects … |
Microsoft |
Windows 10 Version 1507 |
2025-10-14T17:00:48.096Z | 2026-02-26T17:47:15.216Z |
| CVE-2025-59255 |
7.8 (3.1)
|
Windows DWM Core Library Elevation of Privilege Vulner… |
Microsoft |
Windows 10 Version 1809 |
2025-10-14T17:00:43.754Z | 2026-02-26T17:47:15.676Z |
| CVE-2025-59250 |
8.1 (3.1)
|
JDBC Driver for SQL Server Spoofing Vulnerability |
Microsoft |
Microsoft JDBC Driver for SQL Server 10.2 |
2025-10-14T17:00:42.700Z | 2026-02-26T17:47:15.996Z |
| CVE-2025-30479 |
8.4 (3.1)
|
Dell CloudLink, versions prior to 8.2, contain a … |
Dell |
CloudLink |
2025-11-05T16:27:33.266Z | 2026-02-26T17:47:15.839Z |
| CVE-2025-20354 |
9.8 (3.1)
|
Cisco Unified Contact Center Express Remote Code Execu… |
Cisco |
Cisco Unified Contact Center Express |
2025-11-05T16:31:14.821Z | 2026-02-26T17:47:15.433Z |
| CVE-2025-59494 |
7.8 (3.1)
|
Azure Monitor Agent Elevation of Privilege Vulnerability |
Microsoft |
Azure Monitor |
2025-10-14T17:00:52.507Z | 2026-02-26T17:47:14.330Z |
| CVE-2025-59295 |
8.8 (3.1)
|
Windows URL Parsing Remote Code Execution Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-10-14T17:00:51.908Z | 2026-02-26T17:47:14.729Z |
| CVE-2025-20376 |
6.5 (3.1)
|
Cisco Unified Contact Center Express Remote Code Execu… |
Cisco |
Cisco Unified Contact Center Express |
2025-11-05T16:31:38.793Z | 2026-02-26T17:47:14.572Z |
| CVE-2025-20375 |
6.5 (3.1)
|
Cisco Unified Contact Center Express Arbitrary File Up… |
Cisco |
Cisco Unified Contact Center Express |
2025-11-05T16:31:43.035Z | 2026-02-26T17:47:14.139Z |
| CVE-2025-20358 |
9.4 (3.1)
|
Cisco Unified Contact Center Express Editor Authentica… |
Cisco |
Cisco Unified Contact Center Express |
2025-11-05T16:31:23.210Z | 2026-02-26T17:47:14.895Z |
| CVE-2025-53717 |
7 (3.1)
|
Windows Virtualization-Based Security (VBS) Enclave El… |
Microsoft |
Windows 11 version 22H2 |
2025-10-14T17:00:54.875Z | 2026-02-26T17:47:13.386Z |
| CVE-2025-48813 |
6.3 (3.1)
|
Virtual Secure Mode Spoofing Vulnerability |
Microsoft |
Windows 10 Version 1809 |
2025-10-14T17:00:53.668Z | 2026-02-26T17:47:13.981Z |
| CVE-2025-46365 |
5.3 (3.1)
|
Dell CloudLink, versions prior 8.1.1, contain a C… |
Dell |
CloudLink |
2025-11-05T16:40:39.934Z | 2026-02-26T17:47:13.147Z |
| CVE-2025-46364 |
9.1 (3.1)
|
Dell CloudLink, versions prior to 8.1.1, contain … |
Dell |
CloudLin |
2025-11-05T16:36:00.347Z | 2026-02-26T17:47:13.534Z |
| CVE-2025-45379 |
8.4 (3.1)
|
Dell CloudLink, versions prior to 8.2, contain a … |
Dell |
CloudLink |
2025-11-05T16:31:57.457Z | 2026-02-26T17:47:13.822Z |
| CVE-2025-25004 |
7.3 (3.1)
|
PowerShell Elevation of Privilege Vulnerability |
Microsoft |
PowerShell 7.4 |
2025-10-14T17:00:54.227Z | 2026-02-26T17:47:13.677Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-2473 |
7.7 (4.0)
|
Bucket Squatting in Vertex AI Experiments leads to RCE… |
Google Cloud |
Vertex AI Experiments |
2026-02-20T19:39:51.015Z | 2026-02-23T19:54:20.923Z |
| CVE-2026-2035 |
6.8 (3.0)
|
Deciso OPNsense diag_backup.php filename Command Injec… |
Deciso |
OPNsense |
2026-02-20T22:13:02.904Z | 2026-02-24T14:59:50.931Z |
| CVE-2026-2033 |
8.1 (3.0)
|
MLflow Tracking Server Artifact Handler Directory Trav… |
MLflow |
MLflow |
2026-02-20T22:12:06.040Z | 2026-02-26T14:44:13.266Z |
| CVE-2026-0777 |
7.8 (3.0)
|
Xmind Attachment Insufficient UI Warning Remote Code E… |
Xmind |
Xmind |
2026-02-20T22:11:08.647Z | 2026-02-26T14:44:13.391Z |
| CVE-2021-35402 |
10 (3.1)
|
PROLiNK PRC2402M 20190909 before 2021-06-13 allow… |
PROLiNK |
PRC2402M |
2026-02-20T00:00:00.000Z | 2026-02-23T20:48:11.839Z |
| CVE-2019-25441 |
9.3 (4.0)
9.8 (3.1)
|
thesystem 1.0 Command Injection via run_command endpoint |
kostasmitroglou |
thesystem |
2026-02-20T22:54:52.006Z | 2026-02-24T15:33:57.130Z |
| CVE-2019-25437 |
6.7 (4.0)
6.2 (3.1)
|
Foscam Video Management System 1.1.6.6 Buffer Overflow… |
Foscam |
Foscam Video Management System |
2026-02-20T22:54:50.198Z | 2026-02-24T15:29:50.923Z |
| CVE-2019-25434 |
6.7 (4.0)
7.5 (3.1)
|
SpotAuditor 5.3.1.0 Denial of Service via Registration… |
Nsasoft |
Nsauditor SpotAuditor |
2026-02-20T22:54:47.430Z | 2026-02-24T15:25:18.607Z |
| CVE-2019-25432 |
8.8 (4.0)
7.5 (3.1)
|
Part-DB 0.4 Authentication Bypass via login.php |
Part-DB |
Part-DB |
2026-02-20T22:54:46.521Z | 2026-02-24T15:23:40.735Z |
| CVE-2019-25431 |
8.8 (4.0)
8.2 (3.1)
|
delpino73 Blue-Smiley-Organizer 1.32 SQL Injection via… |
delpino73 |
Blue-Smiley-Organizer |
2026-02-20T22:54:45.596Z | 2026-02-24T15:22:34.074Z |
| CVE-2018-25158 |
8.7 (4.0)
8.8 (3.1)
|
Chamilo LMS 1.11.8 Arbitrary File Upload via elfinder |
Chamilo |
Chamillo LMS |
2026-02-20T22:54:44.547Z | 2026-02-24T15:20:59.316Z |
| CVE-2026-2998 |
8.5 (4.0)
7.8 (3.1)
|
eAI Technologies|ERP - DLL Hijacking |
eAI Technologies |
ERP F2 |
2026-02-23T02:42:30.294Z | 2026-02-23T13:31:55.139Z |
| CVE-2026-2997 |
5.4 (3.1)
6.5 (4.0)
|
WisdomGarden|Tronclass - Insecure Direct Object Reference |
WisdomGarden |
Tronclass |
2026-02-23T01:55:37.610Z | 2026-02-23T13:46:00.906Z |
| CVE-2026-2985 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Tiandy Video Surveillance System 视频监控平台 CLSBODownLoad.… |
Tiandy |
Video Surveillance System 视频监控平台 |
2026-02-23T10:32:49.611Z | 2026-02-23T12:37:00.359Z |
| CVE-2026-2974 |
2 (4.0)
2.5 (3.1)
2.5 (3.0)
|
AliasVault App Backup aliasvault.xml backup |
n/a |
AliasVault App |
2026-02-23T05:32:10.154Z | 2026-02-23T13:23:56.502Z |
| CVE-2026-2965 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
07FLYCMS/07FLY-CMS/07FlyCRM System Extension edit.html… |
n/a |
07FLYCMS |
2026-02-23T01:32:08.157Z | 2026-02-23T13:46:48.205Z |
| CVE-2026-2963 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Jinher OA C6 OfficeSupplyTypeRight.aspx sql injection |
Jinher |
OA C6 |
2026-02-23T00:32:13.932Z | 2026-02-23T13:50:26.894Z |
| CVE-2026-2945 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
JeecgBoot uploadImgByHttp server-side request forgery |
n/a |
JeecgBoot |
2026-02-22T13:02:13.406Z | 2026-02-25T16:27:44.943Z |
| CVE-2026-2943 |
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
|
SapneshNaik Student Management System index.php cross … |
SapneshNaik |
Student Management System |
2026-02-22T10:32:08.454Z | 2026-02-25T18:22:37.345Z |
| CVE-2026-2940 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Zaher1307 tiny_web_server URL tiny.c out-of-bounds write |
Zaher1307 |
tiny_web_server |
2026-02-22T10:02:08.625Z | 2026-02-23T19:12:30.061Z |
| CVE-2026-2903 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
skvadrik re2c ast.cc check_and_merge_special_rules nul… |
skvadrik |
re2c |
2026-02-22T00:32:09.412Z | 2026-02-26T16:21:15.725Z |
| CVE-2026-2889 |
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
|
CCExtractor mp4.c processmp4 use after free |
n/a |
CCExtractor |
2026-02-21T22:02:11.011Z | 2026-02-23T19:29:40.587Z |
| CVE-2026-2864 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
feng_ha_ha/megagao ssm-erp/production_ssm PictureContr… |
feng_ha_ha |
ssm-erp |
2026-02-21T07:32:07.446Z | 2026-02-23T19:41:53.728Z |
| CVE-2026-2863 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
feng_ha_ha/megagao ssm-erp/production_ssm FileServiceI… |
feng_ha_ha |
ssm-erp |
2026-02-21T06:02:09.608Z | 2026-02-23T19:25:45.383Z |
| CVE-2026-2860 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
feng_ha_ha/megagao ssm-erp/production_ssm EmployeeCont… |
feng_ha_ha |
ssm-erp |
2026-02-21T04:32:06.851Z | 2026-02-24T15:37:22.550Z |
| CVE-2026-27579 |
7.4 (3.1)
|
CollabPlatform : CORS Misconfiguration Allows Arbitrar… |
karnop |
realtime-collaboration-platform |
2026-02-21T10:22:15.671Z | 2026-02-24T18:07:30.160Z |
| CVE-2026-27469 |
6.1 (3.1)
|
Isso: Stored XSS via comment website field |
isso-comments |
isso |
2026-02-21T07:24:38.971Z | 2026-02-24T18:50:07.650Z |
| CVE-2026-27464 |
7.7 (3.1)
|
Metabase: Server-Side Template Injection via Notificat… |
metabase |
metabase |
2026-02-21T07:57:50.957Z | 2026-02-24T18:51:05.408Z |
| CVE-2026-27452 |
9.2 (4.0)
|
ASN.1 TypeScript Library: Decoding an INTEGER could le… |
JonathanWilbur |
asn1-ts |
2026-02-21T06:50:35.877Z | 2026-02-24T18:54:48.702Z |
| CVE-2026-27210 |
5.3 (4.0)
|
Pannellum has a XSS vulnerability in hot spot attributes |
mpetroff |
pannellum |
2026-02-21T05:24:16.137Z | 2026-02-25T21:16:34.830Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2026-2473 | Predictable bucket naming in Vertex AI Experiments in Google Cloud Vertex AI from version 1.21.0 up… | 2026-02-20T20:25:24.497 | 2026-02-23T18:14:13.887 |
| fkie_cve-2026-2035 | Deciso OPNsense diag_backup.php filename Command Injection Remote Code Execution Vulnerability. Thi… | 2026-02-20T23:16:03.370 | 2026-02-23T18:14:13.887 |
| fkie_cve-2026-2033 | MLflow Tracking Server Artifact Handler Directory Traversal Remote Code Execution Vulnerability. Th… | 2026-02-20T23:16:03.093 | 2026-02-23T18:14:13.887 |
| fkie_cve-2026-0777 | Xmind Attachment Insufficient UI Warning Remote Code Execution Vulnerability. This vulnerability al… | 2026-02-20T22:16:19.097 | 2026-02-23T18:14:13.887 |
| fkie_cve-2021-35402 | PROLiNK PRC2402M 20190909 before 2021-06-13 allows live_api.cgi?page=satellite_list OS command inje… | 2026-02-20T19:23:14.200 | 2026-02-23T18:14:13.887 |
| fkie_cve-2019-25441 | thesystem 1.0 contains a command injection vulnerability that allows unauthenticated attackers to e… | 2026-02-20T23:16:00.990 | 2026-02-23T18:14:13.887 |
| fkie_cve-2019-25437 | Foscam Video Management System 1.1.6.6 contains a buffer overflow vulnerability in the UID field th… | 2026-02-20T23:16:00.630 | 2026-02-23T18:14:13.887 |
| fkie_cve-2019-25434 | SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attacker… | 2026-02-20T23:16:00.037 | 2026-02-23T18:14:13.887 |
| fkie_cve-2019-25432 | Part-DB 0.4 contains an authentication bypass vulnerability that allows unauthenticated attackers t… | 2026-02-20T23:15:59.840 | 2026-02-23T18:14:13.887 |
| fkie_cve-2019-25431 | delpino73 Blue-Smiley-Organizer 1.32 contains an SQL injection vulnerability in the datetime parame… | 2026-02-20T23:15:59.647 | 2026-02-23T18:14:13.887 |
| fkie_cve-2018-25158 | Chamilo LMS 1.11.8 contains an arbitrary file upload vulnerability that allows authenticated users … | 2026-02-20T23:15:59.373 | 2026-02-23T18:14:13.887 |
| fkie_cve-2026-2998 | ERP developed by eAI Technologies has a DLL Hijacking vulnerability, allowing authenticated local a… | 2026-02-23T04:16:02.537 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2997 | Tronclass developed by WisdomGarden has a Insecure Direct Object Reference vulnerability. After obt… | 2026-02-23T03:15:59.657 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2985 | A security flaw has been discovered in Tiandy Video Surveillance System 视频监控平台 7.17.0. This impacts… | 2026-02-23T11:16:39.770 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2974 | A vulnerability was identified in AliasVault App up to 0.25.3 on Android/iOS. This vulnerability af… | 2026-02-23T06:16:16.760 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2965 | A security flaw has been discovered in 07FLYCMS, 07FLY-CMS and 07FlyCRM up to 1.2.9. The affected e… | 2026-02-23T03:15:58.917 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2963 | A vulnerability was determined in Jinher OA C6 up to 20260210. This issue affects some unknown proc… | 2026-02-23T01:16:18.130 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2945 | A weakness has been identified in JeecgBoot 3.9.0. Affected by this vulnerability is an unknown fun… | 2026-02-22T13:16:12.267 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2943 | A vulnerability was identified in SapneshNaik Student Management System up to f4b4f0928f0b5551a28ee… | 2026-02-22T11:16:11.620 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2940 | A vulnerability was determined in Zaher1307 tiny_web_server up to 8d77b1044a0ca3a5297d8726ac8aa2cf9… | 2026-02-22T10:15:56.747 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2903 | A flaw has been found in skvadrik re2c up to 4.4. Impacted is the function check_and_merge_special_… | 2026-02-22T01:16:00.563 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2889 | A vulnerability was detected in CCExtractor up to 0.96.5. Affected is the function processmp4 in th… | 2026-02-21T22:15:59.353 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2864 | A vulnerability has been found in feng_ha_ha/megagao ssm-erp and production_ssm up to 4288d53bd3575… | 2026-02-21T08:16:12.377 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2863 | A flaw has been found in feng_ha_ha/megagao ssm-erp and production_ssm up to 4288d53bd35757b27f2d07… | 2026-02-21T06:17:02.177 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-2860 | A security vulnerability has been detected in feng_ha_ha/megagao ssm-erp and production_ssm up to 4… | 2026-02-21T05:17:30.210 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-27579 | CollabPlatform is a full-stack, real-time doc collaboration platform. In all versions of CollabPlat… | 2026-02-21T11:15:57.600 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-27469 | Isso is a lightweight commenting server written in Python and JavaScript. In commits before 0afbfe0… | 2026-02-21T08:16:11.993 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-27464 | Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.… | 2026-02-21T08:16:10.553 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-27452 | ASN.1 TypeScript ESM library, including codecs for Basic Encoding Rules (BER) and Distinguished Enc… | 2026-02-21T07:16:13.210 | 2026-02-23T18:13:53.397 |
| fkie_cve-2026-27210 | Pannellum is a lightweight, free, and open source panorama viewer for the web. In versions 3.5.0 th… | 2026-02-21T06:17:01.083 | 2026-02-23T18:13:53.397 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-hp2h-w474-f9g4 |
5.4 (3.1)
4.8 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability in the system_advanced_sysctl… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-8v3q-9fpq-83mr |
6.1 (3.1)
5.1 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated a… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-6rfq-gmm4-49p9 |
6.1 (3.1)
5.1 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated a… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-6333-cc9f-9589 |
6.1 (3.1)
5.1 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated a… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-58cm-5853-qxj5 |
6.1 (3.1)
5.1 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows attackers to inje… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-48j5-wgv3-9c7p |
5.4 (3.1)
4.8 (4.0)
|
OPNsense 19.1 contains multiple cross-site scripting vulnerabilities in the diag_backup.php endpoin… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-2wpq-gf9v-758w |
5.4 (3.1)
4.8 (4.0)
|
ArangoDB Community Edition 3.4.2-1 contains multiple cross-site scripting vulnerabilities in the Aa… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-2444-5vx9-4q2f |
6.1 (3.1)
5.1 (4.0)
|
OPNsense 19.1 contains a reflected cross-site scripting vulnerability that allows unauthenticated a… | 2026-02-15T15:31:31Z | 2026-02-15T15:31:31Z |
| ghsa-x78v-9635-m8h6 |
6.7 (3.1)
|
The system suffers from the absence of a kernel module signature verification. If an attacker can e… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-x677-27jv-v4hg |
9.3 (3.1)
|
The Infotainment ECU manufactured by Bosch uses a RH850 module for CAN communication. RH850 is conn… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-rh27-rh4c-2g53 |
8.8 (3.1)
|
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment EC… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-p4c6-vgj5-cp35 |
6.8 (3.1)
|
There is a misconfiguration vulnerability inside the Infotainment ECU manufactured by BOSCH. The vu… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-m26w-8h7j-ggp7 |
8.8 (3.1)
|
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment EC… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-h385-cwmv-vj9f |
6.4 (4.0)
|
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-95x5-2fg3-wr5q |
8.8 (3.1)
|
The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment EC… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-88gg-5jpf-jc8f |
5.7 (4.0)
|
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames.… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-822c-h5gx-7pw7 |
8.4 (4.0)
|
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks.… | 2026-02-15T12:30:25Z | 2026-02-15T12:30:25Z |
| ghsa-wp7f-392c-hj4c |
8.8 (3.1)
|
The Ecwid by Lightspeed Ecommerce Shopping Cart plugin for WordPress is vulnerable to Privilege Esc… | 2026-02-15T06:31:35Z | 2026-02-15T06:31:35Z |
| ghsa-r6q3-r9p8-6prh |
9.8 (3.1)
|
The Spam protection, Anti-Spam, FireWall by CleanTalk plugin for WordPress is vulnerable to unautho… | 2026-02-15T06:31:35Z | 2026-02-15T06:31:35Z |
| ghsa-9xfq-99mh-jq67 |
6.5 (3.1)
|
The Element Pack Addons for Elementor plugin for WordPress is vulnerable to arbitrary file reads in… | 2026-02-15T06:31:35Z | 2026-02-15T06:31:35Z |
| ghsa-xwq7-47qj-qwwf |
|
In the Linux kernel, the following vulnerability has been resolved: mm, shmem: prevent infinite lo… | 2026-02-14T18:30:15Z | 2026-02-14T18:30:16Z |
| ghsa-xcg5-9p3p-fgrj |
|
In the Linux kernel, the following vulnerability has been resolved: cgroup/dmem: avoid pool UAF A… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-x3gh-q355-f5px |
|
In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access a… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-x2mr-3x78-f97g |
|
In the Linux kernel, the following vulnerability has been resolved: dpaa2-switch: prevent ZERO_SIZ… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-wr52-6c6f-x6gv |
|
In the Linux kernel, the following vulnerability has been resolved: net: cpsw_new: Execute ndo_set… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-vm5x-8w9j-f2rm |
|
In the Linux kernel, the following vulnerability has been resolved: platform/x86: toshiba_haps: Fi… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-rwhg-vqv9-mjpv |
|
In the Linux kernel, the following vulnerability has been resolved: spi: tegra: Fix a memory leak … | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-rhhh-mwpc-m2qj |
|
In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid: fix potential bu… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-rf63-9f5h-hhg6 |
|
In the Linux kernel, the following vulnerability has been resolved: net/sched: cls_u32: use skb_he… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ghsa-r35m-5r25-v2fx |
|
In the Linux kernel, the following vulnerability has been resolved: ceph: fix NULL pointer derefer… | 2026-02-14T18:30:16Z | 2026-02-14T18:30:16Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2009-2 |
|
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 al… | buildbot | 2009-08-26T14:24:00Z | 2021-07-15T02:22:07.247020Z |
| pysec-2009-1 |
|
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat… | buildbot | 2009-08-25T17:30:00Z | 2021-07-15T02:22:07.208084Z |
| pysec-2008-2 |
|
The administration application in Django 0.91, 0.95, and 0.96 stores unauthenticated HTTP… | django | 2008-09-04T17:41:00Z | 2021-07-15T02:22:07.826825Z |
| pysec-2008-1 |
|
Cross-site scripting (XSS) vulnerability in the login form in the administration applicat… | django | 2008-05-23T15:32:00Z | 2021-07-15T02:22:07.778598Z |
| pysec-2007-1 |
|
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as … | django | 2007-10-30T19:46:00Z | 2021-07-15T02:22:07.728618Z |
| pysec-2021-112 |
|
An integer overflow exists in pywin32 prior to version b301 when adding an access control… | pywin32 | 2021-07-06T12:15:00Z | 2021-07-08T03:14:30.948663Z |
| pysec-2021-111 |
|
`projen` is a project generation tool that synthesizes project configuration files such a… | projen | 2021-04-06T19:15:00Z | 2021-07-08T03:14:29.411085Z |
| pysec-2021-110 |
|
In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if… | plone | 2021-06-30T01:15:00Z | 2021-07-08T03:14:29.124687Z |
| pysec-2021-109 |
|
Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection … | django | 2021-07-02T10:15:00Z | 2021-07-08T03:14:19.151485Z |
| pysec-2020-214 |
|
Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace confl… | twisted | 2020-03-11T20:15:00Z | 2021-07-05T00:01:28.092827Z |
| pysec-2017-43 |
|
Cross-site scripting (XSS) vulnerability in the render_full function in debug/tbtools.py … | werkzeug | 2017-10-23T16:29:00Z | 2021-07-05T00:01:28.359311Z |
| pysec-2017-42 |
|
The password reset form in Weblate before 2.10.1 provides different error messages depend… | weblate | 2017-03-15T15:59:00Z | 2021-07-05T00:01:28.288013Z |
| pysec-2020-213 |
|
Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be… | tornado | 2020-01-24T18:15:00Z | 2021-07-05T00:01:27.333585Z |
| pysec-2019-156 |
|
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | scipy | 2019-11-04T20:15:00Z | 2021-07-05T00:01:27.093286Z |
| pysec-2017-41 |
|
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, an… | supervisor | 2017-08-23T14:29:00Z | 2021-07-05T00:01:27.197995Z |
| pysec-2017-40 |
|
Sanic before 0.5.1 allows reading arbitrary files with directory traversal, as demonstrat… | sanic | 2017-11-10T09:29:00Z | 2021-07-05T00:01:27.045850Z |
| pysec-2016-11 |
|
model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.… | trytond | 2016-04-13T15:59:00Z | 2021-07-05T00:01:27.588881Z |
| pysec-2012-6 |
|
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Pyth… | trytond | 2012-07-12T20:55:00Z | 2021-07-05T00:01:27.407587Z |
| pysec-2012-5 |
|
CRLF injection vulnerability in the tornado.web.RequestHandler.set_header function in Tor… | tornado | 2012-05-23T20:55:00Z | 2021-07-05T00:01:27.298545Z |
| pysec-2018-50 |
|
In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master. | salt | 2018-04-23T22:29:00Z | 2021-07-05T00:01:26.870701Z |
| pysec-2017-39 |
|
Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x befo… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.833704Z |
| pysec-2017-38 |
|
When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.736529Z |
| pysec-2017-37 |
|
SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 … | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.641829Z |
| pysec-2017-36 |
|
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3… | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.552235Z |
| pysec-2017-34 |
|
Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id… | salt | 2017-02-07T17:59:00Z | 2021-07-05T00:01:26.392976Z |
| pysec-2017-33 |
|
Salt before 2015.5.10 and 2015.8.x before 2015.8.8, when PAM external authentication is e… | salt | 2017-01-31T19:59:00Z | 2021-07-05T00:01:26.354816Z |
| pysec-2017-32 |
|
The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, w… | salt | 2017-01-30T22:59:00Z | 2021-07-05T00:01:26.287704Z |
| pysec-2017-31 |
|
Salt before 2014.7.6 does not verify certificates when connecting via the aliyun, proxmox… | salt | 2017-08-25T18:29:00Z | 2021-07-05T00:01:26.252043Z |
| pysec-2017-30 |
|
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp. | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.213768Z |
| pysec-2017-29 |
|
modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle fil… | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.175371Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3498 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.399440Z |
| gsd-2024-3497 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.034610Z |
| gsd-2024-3496 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.380375Z |
| gsd-2024-3495 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.297826Z |
| gsd-2024-3494 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.046614Z |
| gsd-2024-3493 | A specific malformed fragmented packet type (fragmented packets may be generated automat… | 2024-04-11T05:03:27.299090Z |
| gsd-2024-3492 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.322144Z |
| gsd-2024-3491 | The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cr… | 2024-04-11T05:03:27.414151Z |
| gsd-2024-3490 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.188864Z |
| gsd-2024-3489 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.072664Z |
| gsd-2024-3488 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.153214Z |
| gsd-2024-3487 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.178428Z |
| gsd-2024-3486 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.203222Z |
| gsd-2024-3485 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338142Z |
| gsd-2024-3484 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.325802Z |
| gsd-2024-3483 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338353Z |
| gsd-2024-3482 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.107708Z |
| gsd-2024-3481 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.393633Z |
| gsd-2024-3480 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.241931Z |
| gsd-2024-3479 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.205824Z |
| gsd-2024-3478 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.071659Z |
| gsd-2024-3477 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.211266Z |
| gsd-2024-3476 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.232056Z |
| gsd-2024-3475 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.191635Z |
| gsd-2024-3474 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.103698Z |
| gsd-2024-3473 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.291821Z |
| gsd-2024-3472 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.043104Z |
| gsd-2024-3471 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.402076Z |
| gsd-2024-3470 | An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server… | 2024-04-11T05:03:27.172214Z |
| gsd-2024-3469 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.237925Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-48892 | Malicious code in hackerone-app-sdk (PyPI) | 2025-09-17T15:17:50Z | 2025-12-31T02:45:15Z |
| mal-2025-48889 | Malicious code in cugraph-service-server (PyPI) | 2025-09-21T09:56:16Z | 2025-12-31T02:45:15Z |
| mal-2025-47799 | Malicious code in python-ledgercommon (PyPI) | 2025-08-21T14:59:29Z | 2025-12-31T02:45:15Z |
| mal-2025-47798 | Malicious code in python-datetil (PyPI) | 2025-08-28T05:31:14Z | 2025-12-31T02:45:15Z |
| mal-2025-47795 | Malicious code in pytensorlite (PyPI) | 2025-08-17T19:36:01Z | 2025-12-31T02:45:15Z |
| mal-2025-47788 | Malicious code in noonutil (PyPI) | 2025-08-20T15:39:33Z | 2025-12-31T02:45:15Z |
| mal-2025-47784 | Malicious code in license-checker (PyPI) | 2025-08-29T18:43:12Z | 2025-12-31T02:45:15Z |
| mal-2025-47783 | Malicious code in libgomp (PyPI) | 2025-08-15T16:17:26Z | 2025-12-31T02:45:15Z |
| mal-2025-47782 | Malicious code in learning-pypi-demo-nisimi (PyPI) | 2025-09-03T15:52:06Z | 2025-12-31T02:45:15Z |
| mal-2025-47778 | Malicious code in k7eela (PyPI) | 2025-08-21T09:05:54Z | 2025-12-31T02:45:15Z |
| mal-2025-47777 | Malicious code in k7eel (PyPI) | 2025-08-20T10:58:45Z | 2025-12-31T02:45:15Z |
| mal-2025-47764 | Malicious code in etherweb3 (PyPI) | 2025-08-21T11:21:42Z | 2025-12-31T02:45:15Z |
| mal-2025-47763 | Malicious code in enumeratiam (PyPI) | 2025-08-25T09:33:08Z | 2025-12-31T02:45:15Z |
| mal-2025-47762 | Malicious code in electrum-bch (PyPI) | 2025-08-23T11:16:26Z | 2025-12-31T02:45:15Z |
| mal-2025-47756 | Malicious code in datetime-zones (PyPI) | 2025-09-13T21:46:19Z | 2025-12-31T02:45:15Z |
| mal-2025-47754 | Malicious code in consolecolornew (PyPI) | 2025-09-12T18:08:12Z | 2025-12-31T02:45:15Z |
| mal-2025-47749 | Malicious code in brotli-python (PyPI) | 2025-09-07T18:53:07Z | 2025-12-31T02:45:15Z |
| mal-2025-47746 | Malicious code in awesome-tools-collection (PyPI) | 2025-09-03T15:52:43Z | 2025-12-31T02:45:15Z |
| mal-2025-47452 | Malicious code in secmeasure (PyPI) | 2025-08-03T08:15:27Z | 2025-12-31T02:45:15Z |
| mal-2025-4222 | Malicious code in kms-tls-sdk (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2025-4215 | Malicious code in discord-boteasy (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2025-4213 | Malicious code in ctftestsowwy (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2025-4207 | Malicious code in byted-torch-monitor (PyPI) | 2025-04-24T21:02:16Z | 2025-12-31T02:45:15Z |
| mal-2025-41729 | Malicious code in raknet-testing-package (PyPI) | 2025-08-07T21:53:03Z | 2025-12-31T02:45:15Z |
| mal-2025-41675 | Malicious code in flask-tdg-cyber (PyPI) | 2025-08-11T15:54:48Z | 2025-12-31T02:45:15Z |
| mal-2025-41666 | Malicious code in dsidelib (PyPI) | 2025-08-03T16:49:34Z | 2025-12-31T02:45:15Z |
| mal-2025-3742 | Malicious code in document-inference (PyPI) | 2025-05-10T11:05:49Z | 2025-12-31T02:45:15Z |
| mal-2025-3462 | Malicious code in quicolor (PyPI) | 2025-03-25T09:28:59Z | 2025-12-31T02:45:15Z |
| mal-2025-3451 | Malicious code in multiutils (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2025-3450 | Malicious code in logax (PyPI) | 2025-03-18T09:49:12Z | 2025-12-31T02:45:15Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1796 | Oracle Java SE: Mehrere Schwachstellen | 2023-07-18T22:00:00.000+00:00 | 2025-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-1011 | Oracle Java SE: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2025-02-19T23:00:00.000+00:00 |
| wid-sec-w-2023-0128 | Oracle Java SE: Mehrere Schwachstellen | 2023-01-17T23:00:00.000+00:00 | 2025-02-19T23:00:00.000+00:00 |
| wid-sec-w-2022-1789 | Oracle Java SE: Mehrere Schwachstellen | 2022-10-18T22:00:00.000+00:00 | 2025-02-19T23:00:00.000+00:00 |
| wid-sec-w-2025-0412 | Checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0409 | Citrix Systems NetScaler Console und NetScaler Agent: Schwachstelle ermöglicht Privilegieneskalation | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0405 | D-LINK Router (DIR-823 EOL): Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0404 | Citrix Systems Secure Access client: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0402 | Atlassian Bitbucket: Schwachstelle ermöglicht Codeausführung | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0400 | Atlassian Bamboo/Jira : Mehrere Schwachstellen ermöglichen Denial of Service | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0399 | Fluent Bit: Mehrere Schwachstellen ermöglichen Denial of Service | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0398 | Joomla: Schwachstelle ermöglicht SQL Injection | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0397 | Mozilla Firefox: Schwachstelle ermöglicht Codeausführung | 2025-02-18T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2024-3736 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Manipulation von Dateien | 2024-12-19T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2024-3470 | binutils: Schwachstelle ermöglicht Denial of Service | 2024-11-14T23:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2024-3169 | OpenBSD: Schwachstelle ermöglicht Denial of Service | 2024-10-14T22:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2024-1086 | IBM QRadar SIEM: Mehrere Schwachstellen | 2024-05-09T22:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2022-0200 | Oracle Java SE und OpenJDK: Mehrere Schwachstellen | 2022-04-19T22:00:00.000+00:00 | 2025-02-18T23:00:00.000+00:00 |
| wid-sec-w-2025-0395 | Dell NetWorker "Management Console": Schwachstelle ermöglicht Codeausführung | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0393 | Juniper Session Smart Router: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0391 | systemd: Mehrere Schwachstellen | 2018-10-28T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0390 | Moodle: Mehrere Schwachstellen | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0389 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0388 | Dell BIOS (Client Platform): Schwachstelle ermöglicht Privilegieneskalation | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0387 | RSA Authentication Manager: Schwachstelle ermöglicht Manipulation von Dateien | 2025-02-17T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0361 | PaloAlto Networks PAN-OS: Mehrere Schwachstellen | 2025-02-12T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2024-3495 | Apache Tomcat: Schwachstelle ermöglicht Cross-Site Scripting | 2024-11-18T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2024-0547 | Red Hat Enterprise Linux und Directory Server: Schwachstelle ermöglicht Denial of Service | 2024-03-04T23:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2022-1660 | systemd: Schwachstelle ermöglicht Denial of Service | 2021-04-26T22:00:00.000+00:00 | 2025-02-17T23:00:00.000+00:00 |
| wid-sec-w-2025-0386 | HP LaserJet: Mehrere Schwachstellen | 2025-02-16T23:00:00.000+00:00 | 2025-02-16T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2019:4273 | Red Hat Security Advisory: container-tools:1.0 security update | 2019-12-17T12:56:46+00:00 | 2026-02-27T11:01:59+00:00 |
| rhsa-2019:4045 | Red Hat Security Advisory: Red Hat Single Sign-On 7.3.5 security update | 2019-12-02T17:21:07+00:00 | 2026-02-27T11:01:58+00:00 |
| rhsa-2019:4042 | Red Hat Security Advisory: Red Hat Single Sign-On 7.3.5 security update on RHEL 8 | 2019-12-02T17:04:50+00:00 | 2026-02-27T11:01:55+00:00 |
| rhsa-2019:4041 | Red Hat Security Advisory: Red Hat Single Sign-On 7.3.5 security update on RHEL 7 | 2019-12-02T17:04:03+00:00 | 2026-02-27T11:01:55+00:00 |
| rhsa-2019:4040 | Red Hat Security Advisory: Red Hat Single Sign-On 7.3.5 security update on RHEL 6 | 2019-12-02T17:04:39+00:00 | 2026-02-27T11:01:55+00:00 |
| rhsa-2019:4021 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.5 security update | 2019-11-26T19:58:39+00:00 | 2026-02-27T11:01:52+00:00 |
| rhsa-2019:4020 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.5 on RHEL 8 security update | 2019-11-26T19:57:14+00:00 | 2026-02-27T11:01:45+00:00 |
| rhsa-2019:4019 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.5 on RHEL 7 security update | 2019-11-26T20:01:24+00:00 | 2026-02-27T11:01:40+00:00 |
| rhsa-2019:4018 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.2.5 on RHEL 6 security update | 2019-11-26T19:57:07+00:00 | 2026-02-27T11:01:38+00:00 |
| rhsa-2019:3906 | Red Hat Security Advisory: OpenShift Container Platform 3.11 HTTP/2 security update | 2019-11-18T16:26:09+00:00 | 2026-02-27T11:01:37+00:00 |
| rhsa-2019:3892 | Red Hat Security Advisory: Red Hat Fuse 7.5.0 security update | 2019-11-14T21:17:38+00:00 | 2026-02-27T11:01:35+00:00 |
| rhsa-2019:3265 | Red Hat Security Advisory: OpenShift Container Platform 4.1 security update | 2019-10-30T18:20:03+00:00 | 2026-02-27T11:01:33+00:00 |
| rhsa-2019:3245 | Red Hat Security Advisory: OpenShift Container Platform 4.2 security update | 2019-10-29T17:43:03+00:00 | 2026-02-27T11:01:31+00:00 |
| rhsa-2019:3131 | Red Hat Security Advisory: OpenShift Container Platform 4.1.20 golang security update | 2019-10-16T15:36:43+00:00 | 2026-02-27T11:01:31+00:00 |
| rhsa-2019:2966 | Red Hat Security Advisory: Red Hat Quay v3.1.1 security update | 2019-10-03T18:57:22+00:00 | 2026-02-27T11:01:21+00:00 |
| rhsa-2019:2955 | Red Hat Security Advisory: rh-nodejs8-nodejs security update | 2019-10-02T14:29:13+00:00 | 2026-02-27T11:01:20+00:00 |
| rhsa-2019:2925 | Red Hat Security Advisory: nodejs:10 security update | 2019-09-30T15:15:54+00:00 | 2026-02-27T11:01:19+00:00 |
| rhsa-2019:2861 | Red Hat Security Advisory: OpenShift Container Platform 4.1.18 gRPC security update | 2019-09-26T17:19:31+00:00 | 2026-02-27T11:01:17+00:00 |
| rhsa-2019:2817 | Red Hat Security Advisory: OpenShift Container Platform 3.11 security update | 2019-09-23T20:37:17+00:00 | 2026-02-27T11:01:16+00:00 |
| rhsa-2019:2769 | Red Hat Security Advisory: OpenShift Container Platform 3.9 security update | 2019-10-24T21:31:32+00:00 | 2026-02-27T11:01:13+00:00 |
| rhba-2019:3139 | Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update | 2019-10-18T02:02:14+00:00 | 2026-02-27T11:01:05+00:00 |
| rhba-2019:2819 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.1.17 packages update | 2019-09-25T06:26:23+00:00 | 2026-02-27T11:01:03+00:00 |
| rhsa-2019:2796 | Red Hat Security Advisory: skydive security update | 2019-09-19T02:32:15+00:00 | 2026-02-27T11:01:00+00:00 |
| rhsa-2019:2939 | Red Hat Security Advisory: rh-nodejs10-nodejs security update | 2019-10-01T10:03:49+00:00 | 2026-02-27T11:00:59+00:00 |
| rhsa-2019:2766 | Red Hat Security Advisory: Red Hat OpenShift Enterprise 4.1.15 gRPC security update | 2019-09-12T18:32:52+00:00 | 2026-02-27T11:00:46+00:00 |
| rhsa-2019:2690 | Red Hat Security Advisory: OpenShift Container Platform 3.10 security update | 2019-09-12T06:37:28+00:00 | 2026-02-27T11:00:42+00:00 |
| rhsa-2019:2594 | Red Hat Security Advisory: OpenShift Container Platform 4.1.14 security and bug fix update | 2019-09-10T15:58:57+00:00 | 2026-02-27T11:00:41+00:00 |
| rhsa-2019:2682 | Red Hat Security Advisory: go-toolset-1.11 and go-toolset-1.11-golang security update | 2019-09-10T17:47:41+00:00 | 2026-02-27T11:00:39+00:00 |
| rhsa-2019:2726 | Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update | 2019-09-12T12:29:22+00:00 | 2026-02-27T11:00:38+00:00 |
| rhsa-2019:2661 | Red Hat Security Advisory: Red Hat OpenShift Container Platform 4.1 openshift RPM security update | 2019-09-11T05:53:28+00:00 | 2026-02-27T11:00:38+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-21-245-01 | Johnson Controls Sensormatic Electronics Illustra | 2021-09-02T00:00:00.000000Z | 2021-09-02T00:00:00.000000Z |
| icsa-21-238-02 | Annke Network Video Recorder | 2021-08-26T00:00:00.000000Z | 2021-08-26T00:00:00.000000Z |
| icsa-21-238-01 | Johnson Controls Controlled Electronic Management Systems CEM Systems AC2000 | 2021-08-26T00:00:00.000000Z | 2021-08-26T00:00:00.000000Z |
| icsa-21-236-03 | Delta Electronics TPEditor | 2021-08-24T00:00:00.000000Z | 2021-08-24T00:00:00.000000Z |
| icsa-21-236-02 | Hitachi ABB Power Grids Retail Operations and CSB Products | 2021-08-24T00:00:00.000000Z | 2021-08-24T00:00:00.000000Z |
| icsa-21-236-01 | Hitachi ABB Power Grids TropOS | 2021-08-24T00:00:00.000000Z | 2021-08-24T00:00:00.000000Z |
| icsa-21-168-03 | Advantech WebAccess/SCADA (Update A) | 2021-06-17T00:00:00.000000Z | 2021-08-24T00:00:00.000000Z |
| icsa-21-231-01 | ICSA-21-231-01_AVEVA SuiteLink Server | 2021-08-19T00:00:00.000000Z | 2021-08-19T00:00:00.000000Z |
| icsa-21-229-03 | xArrow SCADA | 2021-08-17T00:00:00.000000Z | 2021-08-17T00:00:00.000000Z |
| icsa-21-229-02 | Advantech WebAccess/NMS | 2021-08-17T00:00:00.000000Z | 2021-08-17T00:00:00.000000Z |
| icsa-21-229-01 | ThroughTek Kalay P2P SDK | 2021-08-17T00:00:00.000000Z | 2021-08-17T00:00:00.000000Z |
| icsa-21-224-02 | Horner Automation Cscape | 2021-08-12T00:00:00.000000Z | 2021-08-12T00:00:00.000000Z |
| icsa-21-224-01 | Cognex In-Sight OPC Server | 2021-08-12T00:00:00.000000Z | 2021-08-12T00:00:00.000000Z |
| icsa-21-182-02 | Sensormatic Electronics C-CURE 9000 (Update A) | 2021-07-01T00:00:00.000000Z | 2021-08-12T00:00:00.000000Z |
| icsa-21-222-08 | ICSA-21-222-08_Siemens Solid Edge | 2021-08-10T00:00:00.000000Z | 2021-08-10T00:00:00.000000Z |
| icsa-21-131-13 | Siemens SINAMICS Medium Voltage Products Telnet (Update A) | 2021-05-11T00:00:00.000000Z | 2021-08-10T00:00:00.000000Z |
| icsa-20-070-01 | ICSA-20-070-01_Siemens and PKE SiNVR/SiVMS Video Server (Update B) | 2020-03-10T00:00:00.000000Z | 2021-08-10T00:00:00.000000Z |
| icsa-21-217-04 | Advantech WebAccess SCADA | 2021-08-05T00:00:00.000000Z | 2021-08-05T00:00:00.000000Z |
| icsa-21-217-03 | ICSA-21-217-03_mySCADA myPRO | 2021-08-05T00:00:00.000000Z | 2021-08-05T00:00:00.000000Z |
| icsa-21-217-02 | FATEK Automation FvDesigner | 2021-08-05T00:00:00.000000Z | 2021-08-05T00:00:00.000000Z |
| icsma-21-215-01 | Swisslog Healthcare Translogic PTS | 2021-08-03T00:00:00.000000Z | 2021-08-03T00:00:00.000000Z |
| icsa-21-210-01 | Hitachi ABB Power Grids eSOMS | 2021-07-29T00:00:00.000000Z | 2021-07-29T00:00:00.000000Z |
| icsa-21-208-05 | Delta Electronics DIAScreen | 2021-07-27T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-208-04 | LCDS LAquis SCADA | 2021-07-27T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-208-03 | Geutebrück G-Cam E2 and G-Code | 2021-07-27T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-208-02 | Mitsubishi Electric GOT2000 series and GT SoftGOT2000 | 2021-07-27T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-208-01 | KUKA KR C4 | 2021-07-27T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-194-02 | Schneider Electric Modicon Controllers and Software (Update A) | 2021-07-13T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-180-05 | AVEVA System Platform (Update A) | 2021-06-29T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| icsa-21-112-02 | Mitsubishi Electric GOT (Update A) | 2021-04-22T00:00:00.000000Z | 2021-07-27T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-webex-makmv4qc | Cisco Webex Meetings User Email Address Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-webex-mAkmV4qc | Cisco Webex Meetings User Email Address Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-webex-client-g3zevbcp | Cisco Webex Meetings Desktop App Information Disclosure Vulnerabilities | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-webex-client-g3zevBcp | Cisco Webex Meetings Desktop App Information Disclosure Vulnerabilities | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-ucs-director-xss-o7t8oryr | Cisco UCS Director Stored Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-ucs-director-xss-O7T8ORYR | Cisco UCS Director Stored Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-ise-pass-disclosure-k8p2nsgg | Cisco Identity Services Engine Password Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-ise-pass-disclosure-K8p2Nsgg | Cisco Identity Services Engine Password Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-esa-sma-log-yxq6g2kg | Cisco Email Security Appliance and Cisco Content Security Management Appliance Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-esa-sma-log-YxQ6g2kG | Cisco Email Security Appliance and Cisco Content Security Management Appliance Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-dna-info-disc-3bz8bcgr | Cisco DNA Center Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-dna-info-disc-3bz8BCgR | Cisco DNA Center Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cvc-bypass-k99cb2ff | Cisco Cyber Vision Center Software Access Control Bypass Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cvc-bypass-K99Cb2ff | Cisco Cyber Vision Center Software Access Control Bypass Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-selfcare-drasc7sr | Cisco Unified Communications Manager Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-selfcare-drASc7sr | Cisco Unified Communications Manager Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-cuc-imp-xss-xtpzfm5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-cuc-imp-xss-XtpzfM5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhf8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhF8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zjljfgbf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zJLJFgBf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3perkf | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3PERKF | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-fexq4tav | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-feXq4tAV | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-rv-routers-rj5jrff8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-rv-routers-Rj5JRfF8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-racerts-wvuypxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-racerts-WvuYpxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-39494 | ima: Fix use-after-free on a dentry's dname.name | 2024-07-01T07:00:00.000Z | 2026-02-18T02:43:32.000Z |
| msrc_cve-2025-38231 | nfsd: Initialize ssc before laundromat_work to prevent NULL dereference | 2025-07-02T00:00:00.000Z | 2026-02-18T02:43:31.000Z |
| msrc_cve-2024-57254 | An integer overflow in sqfs_inode_size in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem. | 2025-02-02T00:00:00.000Z | 2026-02-18T02:43:20.000Z |
| msrc_cve-2024-0752 | A use-after-free crash could have occurred on macOS if a Firefox update were being applied on a very busy system. This could have resulted in an exploitable crash. This vulnerability affects Firefox < 122. | 2024-01-01T08:00:00.000Z | 2026-02-18T02:43:18.000Z |
| msrc_cve-2025-61105 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_link_info function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2026-02-18T02:43:12.000Z |
| msrc_cve-2024-27316 | Apache HTTP Server: HTTP/2 DoS by memory exhaustion on endless continuation frames | 2024-04-02T07:00:00.000Z | 2026-02-18T02:43:12.000Z |
| msrc_cve-2025-37857 | scsi: st: Fix array overflow in st_setup() | 2025-05-02T00:00:00.000Z | 2026-02-18T02:43:07.000Z |
| msrc_cve-2022-25881 | This affects versions of the package http-cache-semantics before 4.1.1. The issue can be exploited via malicious request header values sent to a server when that server reads the cache policy from the request using this library. | 2023-01-04T00:00:00.000Z | 2026-02-18T02:42:48.000Z |
| msrc_cve-2024-49930 | wifi: ath11k: fix array out-of-bound access in SoC stats | 2024-10-01T07:00:00.000Z | 2026-02-18T02:42:47.000Z |
| msrc_cve-2024-39495 | greybus: Fix use-after-free bug in gb_interface_release due to race condition. | 2024-07-01T07:00:00.000Z | 2026-02-18T02:42:45.000Z |
| msrc_cve-2025-14178 | Heap buffer overflow in array_merge() | 2025-12-02T00:00:00.000Z | 2026-02-18T02:42:39.000Z |
| msrc_cve-2025-61102 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_link_adj_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted OSPF packet. | 2025-10-02T00:00:00.000Z | 2026-02-18T02:42:38.000Z |
| msrc_cve-2025-37851 | fbdev: omapfb: Add 'plane' value check | 2025-05-02T00:00:00.000Z | 2026-02-18T02:42:37.000Z |
| msrc_cve-2024-45009 | mptcp: pm: only decrement add_addr_accepted for MPJ req | 2024-09-01T07:00:00.000Z | 2026-02-18T02:42:35.000Z |
| msrc_cve-2022-34835 | In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the "i2c md" command enables the corruption of the return address pointer of the do_i2c_md function. | 2022-06-02T00:00:00.000Z | 2026-02-18T02:42:33.000Z |
| msrc_cve-2024-31744 | In Jasper 4.2.2 the jpc_streamlist_remove function in src/libjasper/jpc/jpc_dec.c:2407 has an assertion failure vulnerability allowing attackers to cause a denial of service attack through a specific image file. | 2024-04-02T07:00:00.000Z | 2026-02-18T02:42:21.000Z |
| msrc_cve-2023-29404 | Improper handling of non-optional LDFLAGS in go command with cgo in cmd/go | 2023-06-01T07:00:00.000Z | 2026-02-18T02:42:15.000Z |
| msrc_cve-2024-45336 | Sensitive headers incorrectly sent after cross-domain redirect in net/http | 2025-01-02T00:00:00.000Z | 2026-02-18T02:42:07.000Z |
| msrc_cve-2025-38200 | i40e: fix MMIO write access to an invalid page in i40e_clear_hw | 2025-07-02T00:00:00.000Z | 2026-02-18T02:42:03.000Z |
| msrc_cve-2025-37787 | net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered | 2025-05-02T00:00:00.000Z | 2026-02-18T02:42:01.000Z |
| msrc_cve-2022-25883 | Versions of the package semver before 7.5.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the function new Range when untrusted user data is provided as a range. | 2023-06-01T07:00:00.000Z | 2026-02-18T02:42:00.000Z |
| msrc_cve-2025-14177 | Information Leak of Memory in getimagesize | 2025-12-02T00:00:00.000Z | 2026-02-18T02:41:55.000Z |
| msrc_cve-2024-49884 | ext4: fix slab-use-after-free in ext4_split_extent_at() | 2024-10-01T07:00:00.000Z | 2026-02-18T02:41:49.000Z |
| msrc_cve-2025-61107 | FRRouting/frr from v4.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the show_vty_ext_pref_pref_sid function at ospf_ext.c. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted LSA Update packet. | 2025-10-02T00:00:00.000Z | 2026-02-18T02:41:48.000Z |
| msrc_cve-2024-1737 | BIND's database will be slow if a very large number of RRs exist at the same name | 2024-07-01T07:00:00.000Z | 2026-02-18T02:41:47.000Z |
| msrc_cve-2019-14204 | An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply. | 2019-07-02T00:00:00.000Z | 2026-02-18T02:41:45.000Z |
| msrc_cve-2023-52905 | octeontx2-pf: Fix resource leakage in VF driver unbind | 2024-08-02T00:00:00.000Z | 2026-02-18T02:41:39.000Z |
| msrc_cve-2025-38192 | net: clear the dst when changing skb protocol | 2025-07-02T00:00:00.000Z | 2026-02-18T02:41:28.000Z |
| msrc_cve-2023-39325 | HTTP/2 rapid reset can cause excessive work in net/http | 2023-10-01T00:00:00.000Z | 2026-02-18T02:41:27.000Z |
| msrc_cve-2025-37881 | usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev() | 2025-05-02T00:00:00.000Z | 2026-02-18T02:41:23.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:13848-1 | apache2-mod_auth_mellon-0.19.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13847-1 | syncthing-1.27.6-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13846-1 | nodejs-electron-28.2.10-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13845-1 | kubo-0.27.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13844-1 | libQt6Concurrent6-6.7.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13843-1 | pgadmin4-8.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13842-1 | openssh-9.6p1-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13841-1 | kubernetes1.29-apiserver-1.29.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13840-1 | kubernetes1.28-apiserver-1.28.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13839-1 | kubernetes1.27-apiserver-1.27.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13838-1 | kubernetes1.26-apiserver-1.26.15-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13837-1 | forgejo-1.21.10+0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13836-1 | etcd-for-k8s1.29-3.5.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13835-1 | etcd-for-k8s1.28-3.5.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13834-1 | etcd-for-k8s1.27-3.5.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13833-1 | tomcat10-10.1.20-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13832-1 | tomcat-9.0.87-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13831-1 | grafana-10.3.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13830-1 | system-user-velociraptor-1.0.0-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13829-1 | xwayland-23.2.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13828-1 | xorg-x11-server-21.1.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13827-1 | python310-Pillow-10.3.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13826-1 | podman-5.0.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13825-1 | libnghttp2-14-1.61.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13824-1 | kubeseal-0.26.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13823-1 | go1.22-1.22.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13822-1 | go1.21-1.21.9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13821-1 | python310-pyzmq-25.1.2-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13820-1 | python310-numpy-1.26.2-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13819-1 | python310-cryptography-42.0.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2020-289 | Stack-buffer-overflow in ot::Message::Write | 2020-06-30T00:00:46.759589Z | 2022-04-13T03:04:38.982639Z |
| osv-2020-258 | Stack-buffer-overflow in ot::Message::Write | 2020-06-30T00:00:42.072474Z | 2022-04-13T03:04:38.925390Z |
| osv-2020-250 | UNKNOWN READ in Sass::Inspect::operator | 2020-06-26T00:00:10.424929Z | 2022-04-13T03:04:38.471160Z |
| osv-2020-24 | Heap-buffer-overflow in pcpp::SSLCertificateRequestMessage::SSLCertificateRequestMessage | 2020-06-24T01:51:10.683077Z | 2022-04-13T03:04:38.543369Z |
| osv-2020-2264 | Stack-buffer-overflow in ot::IsValidUtf8String | 2020-12-16T00:00:05.494996Z | 2022-04-13T03:04:38.967076Z |
| osv-2020-2241 | Heap-buffer-overflow in mk_string_copy_substr | 2020-12-05T00:00:48.941441Z | 2022-04-13T03:04:38.424624Z |
| osv-2020-224 | Use-of-uninitialized-value in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch | 2020-06-24T01:51:19.717840Z | 2022-04-13T03:04:38.702666Z |
| osv-2020-223 | Heap-use-after-free in CRYPTO_DOWN_REF | 2020-06-24T01:51:19.666966Z | 2022-04-13T03:04:38.747259Z |
| osv-2020-218 | Heap-buffer-overflow in __libcpp_strstr | 2020-06-24T01:51:19.441010Z | 2022-04-13T03:04:38.612407Z |
| osv-2020-2159 | Heap-buffer-overflow in flb_parser_json_do | 2020-11-15T22:34:00.821965Z | 2022-04-13T03:04:38.236583Z |
| osv-2020-2140 | Heap-double-free in flb_free | 2020-11-08T00:00:51.289278Z | 2022-04-13T03:04:38.267162Z |
| osv-2020-2139 | Heap-double-free in flb_free | 2020-11-08T00:00:50.376469Z | 2022-04-13T03:04:38.261902Z |
| osv-2020-2135 | Heap-buffer-overflow in _flb_strptime | 2020-11-08T00:00:24.458250Z | 2022-04-13T03:04:38.231350Z |
| osv-2020-2132 | Heap-buffer-overflow in flb_gzip_compress | 2020-11-08T00:00:02.510551Z | 2022-04-13T03:04:38.279749Z |
| osv-2020-2100 | Bad-cast to pcpp::IDnsResource from invalid vptr | 2020-10-28T00:00:12.022327Z | 2022-04-13T03:04:38.601681Z |
| osv-2020-2094 | Heap-buffer-overflow in flb_utils_time_to_seconds | 2020-10-24T00:00:09.093170Z | 2022-04-13T03:04:38.350404Z |
| osv-2020-208 | Use-of-uninitialized-value in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch | 2020-06-24T01:51:19.019962Z | 2022-04-13T03:04:38.657493Z |
| osv-2020-2075 | Heap-use-after-free in flb_parser_decoder_list_destroy | 2020-10-16T00:00:35.685490Z | 2022-04-13T03:04:38.344561Z |
| osv-2020-2072 | Heap-buffer-overflow in _conv_num | 2020-10-15T00:00:40.514544Z | 2022-04-13T03:04:38.325877Z |
| osv-2020-2071 | Heap-buffer-overflow in flb_log_print | 2020-10-15T00:00:37.893897Z | 2022-04-13T03:04:38.379480Z |
| osv-2020-207 | Heap-buffer-overflow in pcpp::IPv6Layer::parseExtensions | 2020-06-24T01:51:18.953301Z | 2022-04-13T03:04:38.531844Z |
| osv-2020-2014 | Stack-buffer-overflow in flb_sds_cat | 2020-10-11T00:00:12.565611Z | 2022-04-13T03:04:38.285201Z |
| osv-2020-1999 | Bad-cast to pcpp::IDnsResource from invalid vptr | 2020-10-09T00:00:05.287047Z | 2022-04-13T03:04:38.651934Z |
| osv-2020-1965 | UNKNOWN READ in asn1_item_print_ctx | 2020-10-03T00:00:22.855250Z | 2022-04-13T03:04:38.790305Z |
| osv-2020-1923 | Heap-buffer-overflow in do_print_ex | 2020-10-02T00:00:28.271775Z | 2022-04-13T03:04:38.819877Z |
| osv-2020-1863 | Bad-cast to pcpp::Layer from invalid vptr | 2020-09-28T00:00:15.902359Z | 2022-04-13T03:04:38.504701Z |
| osv-2020-1839 | UNKNOWN READ in flb_sds_cat | 2020-09-25T00:00:21.320950Z | 2022-04-13T03:04:38.309534Z |
| osv-2020-1816 | Heap-buffer-overflow in encoded_to_buf | 2020-09-20T00:00:19.063209Z | 2022-04-13T03:04:38.437196Z |
| osv-2020-1813 | Heap-buffer-overflow in flb_msgpack_to_gelf | 2020-09-20T00:00:05.229654Z | 2022-04-13T03:04:38.189395Z |
| osv-2020-1687 | Bad-cast to pcpp::Layer from invalid vptr | 2020-09-02T00:00:36.557488Z | 2022-04-13T03:04:38.674561Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2023-3994 | Inefficient Regular Expression Complexity in GitLab | 2024-03-06T11:00:53.875Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3993 | Insertion of Sensitive Information into Log File in GitLab | 2024-03-06T11:01:06.172Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3979 | Incorrect Authorization in GitLab | 2024-03-06T11:01:15.790Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3964 | Incorrect Authorization in GitLab | 2024-03-06T11:01:24.492Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3950 | Cleartext Storage of Sensitive Information in GitLab | 2024-03-06T11:01:33.975Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3949 | Insertion of Sensitive Information Into Sent Data in GitLab | 2024-03-06T11:01:45.006Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3932 | Incorrect User Management in GitLab | 2024-03-06T11:01:54.178Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3922 | URL Redirection to Untrusted Site ('Open Redirect') in GitLab | 2024-03-06T11:02:04.162Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3920 | Incorrect Authorization in GitLab | 2024-03-06T11:02:16.277Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3917 | Improper Validation of Specified Type of Input in GitLab | 2024-03-06T11:02:27.067Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3915 | Incorrect Execution-Assigned Permissions in GitLab | 2024-03-06T11:02:39.174Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3914 | Incorrect User Management in GitLab | 2024-03-06T11:02:49.276Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3909 | Inefficient Regular Expression Complexity in GitLab | 2024-03-06T11:02:58.072Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3907 | Improper User Management in GitLab | 2024-03-06T11:03:07.886Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3906 | Improper Validation of Specified Type of Input in GitLab | 2024-03-06T11:03:19.001Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3904 | Improper Validation of Specified Type of Input in GitLab | 2024-03-06T11:03:27.476Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3900 | Improper Validation of Specified Type of Input in GitLab | 2024-03-06T11:03:40.193Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3511 | Incorrect Authorization in GitLab | 2024-03-06T11:03:50.106Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3509 | Incorrect Authorization in GitLab | 2024-03-06T11:04:01.070Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3500 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2024-03-06T11:04:10.871Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3484 | Incorrect Authorization in GitLab | 2024-03-06T11:04:20.968Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3444 | Incorrect Authorization in GitLab | 2024-03-06T11:04:34.691Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3443 | Incorrect Authorization in GitLab | 2024-03-06T11:04:44.368Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3441 | Exposure of Sensitive Information Due to Incompatible Policies in GitLab | 2024-10-03T07:38:54.069Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3424 | Inefficient Regular Expression Complexity in GitLab | 2024-03-06T11:04:54.702Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3413 | Insertion of Sensitive Information Into Sent Data in GitLab | 2024-03-06T11:05:05.395Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3401 | Improper Control of Generation of Code ('Code Injection') in GitLab | 2024-03-06T11:05:16.794Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3399 | Insertion of Sensitive Information Into Sent Data in GitLab | 2024-03-06T11:05:27.387Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3385 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in GitLab | 2024-03-06T11:05:38.479Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2023-3364 | Inefficient Regular Expression Complexity in GitLab | 2024-03-06T11:05:47.492Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-202312-2736 | Beijing Xingwang Ruijie Network Technology Co., Ltd. is a professional network manufactur… | 2024-03-07T22:55:59.879000Z |
| var-202402-2401 | Agile Controller is an automation controller suitable for various industrial application … | 2024-03-07T22:55:40.023000Z |
| var-202401-2673 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:55:40.164000Z |
| var-202401-2652 | SuperMap iServer is a cloud GIS application server based on a high-performance cross-plat… | 2024-03-07T22:55:40.174000Z |
| var-202204-1039 | A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software c… | 2024-03-07T22:53:03.340000Z |
| var-202401-2669 | TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel. | 2024-03-07T22:53:00.412000Z |
| var-202401-2417 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the fu… | 2024-03-07T22:53:00.546000Z |
| var-202401-2391 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:52:24.051000Z |
| var-202401-2674 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:51:00.556000Z |
| var-202401-2519 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:48:01.098000Z |
| var-202401-2418 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in… | 2024-03-07T22:43:46.826000Z |
| var-202401-2495 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the… | 2024-03-07T22:40:55.390000Z |
| var-202403-0394 | EG3210 is a multi-service security gateway. There is a command execution vulnerabilit… | 2024-03-07T22:40:54.045000Z |
| var-202401-2636 | An improper limitation of a pathname to a restricted directory ('path traversal') vulnera… | 2024-03-07T22:31:26.032000Z |
| var-200609-0995 | OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key… | 2024-03-07T21:38:05.856000Z |
| var-202402-2601 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG3210 is a router product. Ther… | 2024-03-07T19:11:58.512000Z |
| var-202402-1750 | Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with ze… | 2024-03-06T22:47:01.648000Z |
| var-202402-1804 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:45:37.541000Z |
| var-201903-0559 | A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and … | 2024-03-05T22:43:45.716000Z |
| var-201903-0600 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.156000Z |
| var-201903-0599 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.191000Z |
| var-201903-0565 | A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software cou… | 2024-03-05T22:39:11.295000Z |
| var-202402-1924 | Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection… | 2024-03-05T22:39:02.953000Z |
| var-201903-0563 | A vulnerability in the ISDN functions of Cisco IOS Software and Cisco IOS XE Software cou… | 2024-03-05T22:37:28.681000Z |
| var-202402-1915 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:37:15.368000Z |
| var-202204-0268 | Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cis… | 2024-03-05T22:26:38.616000Z |
| var-202310-0300 | Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_dat… | 2024-03-04T22:57:37.269000Z |
| var-202104-1667 | Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vul… | 2024-03-03T22:14:02.715000Z |
| var-200801-0247 | GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier uses HTTP Basic Authenticat… | 2024-03-02T23:20:39.974000Z |
| var-200803-0332 | ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is no… | 2024-03-01T22:58:19.942000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2010-000015 | Ichitaro series vulnerable to arbitrary code execution | 2010-04-12T17:17+09:00 | 2010-04-12T17:17+09:00 |
| jvndb-2010-001204 | Accela BizSearch Access Control Bypass Vulnerability | 2010-04-09T16:36+09:00 | 2010-04-09T16:36+09:00 |
| jvndb-2010-000014 | Cisco Router and Security Device Manager vulnerable to cross-site scripting | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000013 | MODx vulnerable to cross-site scripting | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000012 | MODx vulnerable to SQL injection | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000011 | Internet Explorer information disclosure vulnerability | 2010-04-08T17:47+09:00 | 2010-04-08T17:47+09:00 |
| jvndb-2010-000010 | HL-SiteManager vulnerable to SQL injection | 2010-04-02T17:33+09:00 | 2010-04-02T17:33+09:00 |
| jvndb-2010-000009 | Compiere vulnerable to cross-site scripting | 2010-04-02T17:32+09:00 | 2010-04-02T17:32+09:00 |
| jvndb-2010-000008 | Compiere vulnerable to cross-site scripting | 2010-04-02T17:32+09:00 | 2010-04-02T17:32+09:00 |
| jvndb-2010-000007 | PrettyFormMail vulnerable to cross-site scripting | 2010-04-02T17:31+09:00 | 2010-04-02T17:31+09:00 |
| jvndb-2009-000057 | ATOK screen lock bypass vulnerability | 2010-03-23T17:42+09:00 | 2010-03-23T17:42+09:00 |
| jvndb-2009-000018 | Ichitaro series buffer overflow vulnerability | 2010-03-23T17:42+09:00 | 2010-03-23T17:42+09:00 |
| jvndb-2010-001147 | JP1/Cm2/Network Node Manager Remote Console Insecure File Permissions Vulnerability | 2010-03-15T12:21+09:00 | 2010-03-15T12:21+09:00 |
| jvndb-2010-000006 | OpenPNE authentication bypass vulnerability | 2010-03-12T15:29+09:00 | 2010-03-12T15:29+09:00 |
| jvndb-2010-001088 | uCosminexus Portal Framework Cross-Site Scripting Vulnerability | 2010-03-03T12:00+09:00 | 2010-03-03T12:00+09:00 |
| jvndb-2010-000005 | tDiary plugin tb-send.rb vulnerable to cross-site scripting | 2010-02-26T12:45+09:00 | 2010-02-26T12:45+09:00 |
| jvndb-2009-002475 | Buffer Overflow Vulnerability in Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java | 2010-02-09T14:03+09:00 | 2010-02-09T14:03+09:00 |
| jvndb-2009-000068 | Implementations of IPv6 may be vulnerable to denial of service (DoS) attacks | 2009-10-26T15:58+09:00 | 2010-01-25T12:02+09:00 |
| jvndb-2010-000004 | Oracle Application Server vulnerable to cross-site scripting | 2010-01-14T21:24+09:00 | 2010-01-14T21:24+09:00 |
| jvndb-2010-000003 | WebCalenderC3 vulnerable to directory traversal | 2010-01-14T21:24+09:00 | 2010-01-14T21:24+09:00 |
| jvndb-2010-000002 | WebCalenderC3 cross-site scripting vulnerability | 2010-01-14T21:23+09:00 | 2010-01-14T21:23+09:00 |
| jvndb-2010-000001 | Movable Type access restriction bypass vulnerability | 2010-01-06T16:26+09:00 | 2010-01-06T16:26+09:00 |
| jvndb-2008-000009 | Apache Tomcat fails to properly handle cookie value | 2008-05-21T00:00+09:00 | 2010-01-05T12:14+09:00 |
| jvndb-2009-002358 | Fujitsu Interstage and Systemwalker SSL Vulnerabilities | 2009-12-28T11:19+09:00 | 2009-12-28T11:19+09:00 |
| jvndb-2009-002345 | StartTLS not enabled in Hitachi Storage Command Suite products | 2009-12-24T14:32+09:00 | 2009-12-24T14:32+09:00 |
| jvndb-2009-000084 | P forum vulnerable to directory traversal | 2009-12-17T14:18+09:00 | 2009-12-17T14:18+09:00 |
| jvndb-2009-000077 | Active! mail 2003 cookie disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000076 | Active! mail 2003 session ID disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000075 | Active! mail 2003 cross-site scripting vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000079 | SEIL/B1 authentication issue | 2009-12-09T19:38+09:00 | 2009-12-09T19:38+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20373-1 | Security update for elemental-toolkit | 2025-06-03T09:03:45Z | 2025-06-03T09:03:45Z |
| suse-su-2025:01802-1 | Security update for libsoup2 | 2025-06-03T01:15:16Z | 2025-06-03T01:15:16Z |
| suse-su-2025:01801-1 | Security update for libsoup | 2025-06-02T23:45:00Z | 2025-06-02T23:45:00Z |
| suse-su-2025:01799-1 | Security update for postgresql, postgresql16, postgresql17 | 2025-06-02T13:28:47Z | 2025-06-02T13:28:47Z |
| suse-su-2025:01794-1 | Security update for libsoup | 2025-06-02T09:04:15Z | 2025-06-02T09:04:15Z |
| suse-su-2025:01792-1 | Security update for dnsdist | 2025-06-02T07:38:53Z | 2025-06-02T07:38:53Z |
| suse-su-2025:01788-1 | Security update for java-1_8_0-ibm | 2025-05-31T10:34:31Z | 2025-05-31T10:34:31Z |
| suse-su-2025:01456-1 | Security update for sqlite3 | 2025-05-31T00:59:21Z | 2025-05-31T00:59:21Z |
| suse-su-2025:01787-1 | Security update for bind | 2025-05-30T17:15:20Z | 2025-05-30T17:15:20Z |
| suse-su-2025:01786-1 | Security update for postgresql14 | 2025-05-30T16:12:13Z | 2025-05-30T16:12:13Z |
| suse-su-2025:01785-1 | Security update for postgresql15 | 2025-05-30T16:11:11Z | 2025-05-30T16:11:11Z |
| suse-su-2025:01784-1 | Security update for glibc | 2025-05-30T16:10:00Z | 2025-05-30T16:10:00Z |
| suse-su-2025:01783-1 | Security update for postgresql17 | 2025-05-30T15:37:40Z | 2025-05-30T15:37:40Z |
| suse-su-2025:01782-1 | Security update for postgresql16 | 2025-05-30T15:33:27Z | 2025-05-30T15:33:27Z |
| suse-su-2025:01780-1 | Security update for poppler | 2025-05-30T13:43:45Z | 2025-05-30T13:43:45Z |
| suse-su-2025:01779-1 | Security update for iputils | 2025-05-30T13:39:04Z | 2025-05-30T13:39:04Z |
| suse-su-2025:01778-1 | Security update for open-vm-tools | 2025-05-30T13:05:19Z | 2025-05-30T13:05:19Z |
| suse-su-2025:01777-1 | Security update for iputils | 2025-05-30T13:04:03Z | 2025-05-30T13:04:03Z |
| suse-su-2025:01776-1 | Security update for iputils | 2025-05-30T13:02:56Z | 2025-05-30T13:02:56Z |
| suse-su-2025:01774-1 | Security update for python312-setuptools | 2025-05-30T12:10:38Z | 2025-05-30T12:10:38Z |
| suse-su-2025:01772-1 | Security update for postgresql14 | 2025-05-30T10:44:48Z | 2025-05-30T10:44:48Z |
| suse-su-2025:01771-1 | Security update for iputils | 2025-05-30T10:41:24Z | 2025-05-30T10:41:24Z |
| suse-su-2025:01770-1 | Security update for java-1_8_0-ibm | 2025-05-30T10:09:24Z | 2025-05-30T10:09:24Z |
| suse-su-2025:01769-1 | Security update for MozillaFirefox | 2025-05-30T09:30:30Z | 2025-05-30T09:30:30Z |
| suse-su-2025:01767-1 | Security update for postgresql16 | 2025-05-30T07:47:19Z | 2025-05-30T07:47:19Z |
| suse-su-2025:01766-1 | Security update for postgresql16 | 2025-05-30T07:45:38Z | 2025-05-30T07:45:38Z |
| suse-su-2025:01765-1 | Security update for postgresql17 | 2025-05-30T07:44:39Z | 2025-05-30T07:44:39Z |
| suse-su-2025:01763-1 | Security update for augeas | 2025-05-29T20:55:38Z | 2025-05-29T20:55:38Z |
| suse-su-2025:01762-1 | Security update for brotli | 2025-05-29T20:55:26Z | 2025-05-29T20:55:26Z |
| suse-su-2025:01761-1 | Security update for slurm_24_11 | 2025-05-29T16:08:32Z | 2025-05-29T16:08:32Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-27318 | Modern Bag product-update.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27317 | Modern Bag product-detail.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27316 | Modern Bag productadd_back.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27315 | Modern Bag login-back.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27314 | Modern Bag contact-list.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27313 | Modern Bag contact-back.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27312 | Modern Bag category-list.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27311 | Modern Bag action.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27310 | Voting System voters_row.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27309 | Voting System voters_edit.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27308 | Voting System voters_add.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27307 | Voting System positions_row.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27306 | Voting System positions_edit.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27305 | Mobile Shop LoginAsAdmin.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27304 | Mobile Shop EditMobile.php文件SQL注入漏洞 | 2025-07-18 | 2025-11-07 |
| cnvd-2025-27303 | Mobile Shop login.php文件SQL注入漏洞 | 2025-07-21 | 2025-11-07 |
| cnvd-2025-27302 | Mobile Shop Management System AddNewProduct.php文件代码问题漏洞 | 2025-09-05 | 2025-11-07 |
| cnvd-2025-27277 | TOTOLINK N600R硬编码漏洞 | 2022-08-30 | 2025-11-07 |
| cnvd-2025-27276 | TOTOLINK A7000R访问控制错误漏洞 | 2022-08-31 | 2025-11-07 |
| cnvd-2025-27275 | TOTOLINK A7000R setOpModeCfg栈缓冲区溢出漏洞 | 2023-12-13 | 2025-11-07 |
| cnvd-2025-27274 | TOTOLINK A7000R setIpPortFilterRules堆栈缓冲区溢出漏洞 | 2023-12-13 | 2025-11-07 |
| cnvd-2025-27273 | TOTOLINK N600R main函数空指针取消引用漏洞 | 2025-10-24 | 2025-11-07 |
| cnvd-2025-27272 | TOTOLINK N600R setWiFiBasicConfig函数栈缓冲区溢出漏洞 | 2025-10-24 | 2025-11-07 |
| cnvd-2025-27271 | TOTOLINK N600R sub_41773C函数空指针取消引用漏洞 | 2025-10-24 | 2025-11-07 |
| cnvd-2025-27270 | TOTOLINK N600R setWiFiMultipleConfig函数堆栈缓冲区溢出漏洞 | 2025-10-24 | 2025-11-07 |
| cnvd-2025-27269 | TOTOLINK LR350 sub_421BAC函数堆栈缓冲区溢出漏洞 | 2025-11-05 | 2025-11-07 |
| cnvd-2025-27268 | TOTOLINK A7000R urldecode函数堆栈缓冲区溢出漏洞 | 2025-11-05 | 2025-11-07 |
| cnvd-2025-27267 | TOTOLINK A7000R sub_4222E0函数栈缓冲区溢出漏洞 | 2025-11-05 | 2025-11-07 |
| cnvd-2025-27266 | TOTOLINK A7000R sub_421CF0函数栈缓冲区溢出漏洞 | 2025-11-05 | 2025-11-07 |
| cnvd-2025-27265 | TOTOLINK A7000R sub_421A04函数堆栈缓冲区溢出漏洞 | 2025-11-05 | 2025-11-07 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2025-AVI-0014 | Multiples vulnérabilités dans les produits Ivanti | 2025-01-09T00:00:00.000000 | 2025-01-09T00:00:00.000000 |
| certfr-2025-avi-0013 | Multiples vulnérabilités dans les produits SonicWall | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0012 | Vulnérabilité dans Google Chrome | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0011 | Vulnérabilité dans VMware Aria automation et Cloud Fondation | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0010 | Multiples vulnérabilités dans les produits Splunk | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0008 | Multiples vulnérabilités dans Joomla! | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0007 | Multiples vulnérabilités dans HPE Aruba Networking 501 Wireless Client Bridge | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0006 | Multiples vulnérabilités dans LibreOffice | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0005 | Vulnérabilité dans Google Pixel | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0013 | Multiples vulnérabilités dans les produits SonicWall | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0012 | Vulnérabilité dans Google Chrome | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0011 | Vulnérabilité dans VMware Aria automation et Cloud Fondation | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0010 | Multiples vulnérabilités dans les produits Splunk | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0008 | Multiples vulnérabilités dans Joomla! | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0007 | Multiples vulnérabilités dans HPE Aruba Networking 501 Wireless Client Bridge | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0006 | Multiples vulnérabilités dans LibreOffice | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| CERTFR-2025-AVI-0005 | Vulnérabilité dans Google Pixel | 2025-01-08T00:00:00.000000 | 2025-01-08T00:00:00.000000 |
| certfr-2025-avi-0004 | Multiples vulnérabilités dans Google Android | 2025-01-07T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| CERTFR-2025-AVI-0004 | Multiples vulnérabilités dans Google Android | 2025-01-07T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| certfr-2025-avi-0002 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2025-01-03T00:00:00.000000 | 2025-01-06T00:00:00.000000 |
| CERTFR-2025-AVI-0002 | Multiples vulnérabilités dans le noyau Linux de Debian LTS | 2025-01-03T00:00:00.000000 | 2025-01-06T00:00:00.000000 |
| certfr-2025-avi-0003 | Multiples vulnérabilités dans les produits IBM | 2025-01-03T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| certfr-2025-avi-0001 | Multiples vulnérabilités dans les produits Moxa | 2025-01-03T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| CERTFR-2025-AVI-0003 | Multiples vulnérabilités dans les produits IBM | 2025-01-03T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| CERTFR-2025-AVI-0001 | Multiples vulnérabilités dans les produits Moxa | 2025-01-03T00:00:00.000000 | 2025-01-03T00:00:00.000000 |
| certfr-2024-avi-1110 | Multiples vulnérabilités dans le greffon Security QRadar Log Management AQL de IBM | 2024-12-27T00:00:00.000000 | 2024-12-27T00:00:00.000000 |
| certfr-2024-avi-1109 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-12-27T00:00:00.000000 | 2024-12-27T00:00:00.000000 |
| certfr-2024-avi-1108 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-12-27T00:00:00.000000 | 2024-12-27T00:00:00.000000 |
| certfr-2024-avi-1107 | Vulnérabilité dans les produits Palo Alto Networks | 2024-12-27T00:00:00.000000 | 2024-12-27T00:00:00.000000 |
| CERTFR-2024-AVI-1110 | Multiples vulnérabilités dans le greffon Security QRadar Log Management AQL de IBM | 2024-12-27T00:00:00.000000 | 2024-12-27T00:00:00.000000 |