Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2020-37019 |
5.1 (4.0)
6.4 (3.1)
|
Orchard Core RC1 - Persistent Cross-Site Scripting |
Orchardcore |
Orchard Core |
2026-01-30T16:16:39.149Z | 2026-01-30T16:32:21.964Z |
| CVE-2020-37014 |
5.1 (4.0)
6.4 (3.1)
|
Tryton 5.4 - Persistent Cross-Site Scripting |
Tryton |
Tryton |
2026-01-30T16:16:38.719Z | 2026-01-30T16:31:58.040Z |
| CVE-2020-37003 |
5.1 (4.0)
6.4 (3.1)
|
Sellacious eCommerce 4.6 - Persistent Cross-Site Scripting |
Sellacious |
Sellacious eCommerce |
2026-01-30T16:16:38.301Z | 2026-01-30T16:31:36.265Z |
| CVE-2020-36998 |
5.1 (4.0)
6.4 (3.1)
|
forma.lms The E-Learning Suite 2.3.0.2 - Persistent Cr… |
forma |
E-Learning Suite |
2026-01-30T16:16:37.882Z | 2026-01-30T16:30:54.395Z |
| CVE-2020-36996 |
5.1 (4.0)
6.4 (3.1)
|
PHPFusion 9.03.50 - Persistent Cross-Site Scripting |
Php-Fusion |
PHPFusion |
2026-01-30T16:16:37.568Z | 2026-01-30T16:30:26.002Z |
| CVE-2020-36966 |
5.1 (4.0)
6.4 (3.1)
|
Dolibarr 11.0.3 - 'ldap.php' - Persistent Cross-Site S… |
Dolibarr |
Dolibarr |
2026-01-30T16:16:37.164Z | 2026-01-30T16:29:34.682Z |
| CVE-2026-1688 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
itsourcecode Directory Management System index.php sql… |
itsourcecode |
Directory Management System |
2026-01-30T16:02:11.374Z | 2026-01-30T16:27:00.285Z |
| CVE-2026-1687 |
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
|
Tenda HG10 Boa Webserver formSamba command injection |
Tenda |
HG10 |
2026-01-30T16:02:09.067Z | 2026-01-30T16:26:27.737Z |
| CVE-2025-4686 |
8.6 (3.1)
|
Time-Based Blind SQLi in Kodmatic Computer's Online Ex… |
Kodmatic Computer Software Tourism Construction Industry and Trade Ltd. Co. |
Online Exam and Assessment |
2026-01-30T15:54:05.480Z | 2026-01-30T16:25:53.007Z |
| CVE-2025-62986 |
7.1 (3.1)
|
WordPress FanBridge signup plugin <= 0.6 - Cross Site … |
FanBridge |
FanBridge signup |
2025-10-27T01:34:21.481Z | 2026-01-30T16:20:54.667Z |
| CVE-2025-66090 |
6.5 (3.1)
|
WordPress SKT Skill Bar plugin <= 2.5 - Cross Site Scr… |
sonalsinha21 |
SKT Skill Bar |
2025-11-21T12:29:58.912Z | 2026-01-30T16:16:41.907Z |
| CVE-2025-66098 |
6.5 (3.1)
|
WordPress Travelers' Map plugin <= 2.3.2 - Cross Site … |
Camille V |
Travelers' Map |
2025-11-21T12:30:00.878Z | 2026-01-30T16:14:58.790Z |
| CVE-2025-52741 |
7.1 (3.1)
|
WordPress Post Connector Plugin <= 1.0.11 - Cross Site… |
Barry Kooij |
Post Connector |
2025-10-22T14:32:23.521Z | 2026-01-30T16:13:53.872Z |
| CVE-2025-62897 |
4.7 (3.1)
|
WordPress WP Recipe Maker plugin <= 10.1.1 - Content I… |
Brecht |
WP Recipe Maker |
2025-10-27T01:33:49.016Z | 2026-01-30T16:12:42.818Z |
| CVE-2025-59593 |
5.4 (3.1)
|
WordPress Colibri Page Builder Plugin < 1.0.334 - Cros… |
Extend Themes |
Colibri Page Builder |
2025-10-22T14:32:39.727Z | 2026-01-30T16:01:10.679Z |
| CVE-2026-24854 |
8.8 (3.1)
|
Church CRM has SQL injection in PaddleNumEditor.php |
ChurchCRM |
CRM |
2026-01-30T15:05:12.017Z | 2026-01-30T15:57:32.491Z |
| CVE-2026-24855 |
7.2 (4.0)
|
ChurchCRM has Stored Cross-Site Scripting (XSS) in Cre… |
ChurchCRM |
CRM |
2026-01-30T15:08:31.006Z | 2026-01-30T15:50:58.147Z |
| CVE-2026-25050 |
2.7 (4.0)
|
Vendure vulnerable to timing attack that enables user … |
vendurehq |
vendure |
2026-01-30T15:11:40.296Z | 2026-01-30T15:45:50.463Z |
| CVE-2025-49908 |
6.5 (3.1)
|
WordPress WPC Countdown Timer for WooCommerce plugin <… |
WPClever |
WPC Countdown Timer for WooCommerce |
2025-10-22T14:32:10.858Z | 2026-01-30T15:44:51.526Z |
| CVE-2026-25128 |
7.5 (3.1)
|
fast-xml-parser has RangeError DoS Numeric Entities Bug |
NaturalIntelligence |
fast-xml-parser |
2026-01-30T15:14:58.244Z | 2026-01-30T15:40:55.259Z |
| CVE-2025-7964 |
9.2 (4.0)
|
Zigbee Router Denial of Service |
silabs.com |
Silicon Labs Zigbee Stack |
2026-01-30T15:02:53.825Z | 2026-01-30T15:36:46.637Z |
| CVE-2025-68333 |
N/A
|
sched_ext: Fix possible deadlock in the deferred_irq_w… |
Linux |
Linux |
2025-12-22T16:14:11.081Z | 2026-01-30T15:35:35.831Z |
| CVE-2025-38248 |
N/A
|
bridge: mcast: Fix use-after-free during router port c… |
Linux |
Linux |
2025-07-09T10:42:29.133Z | 2026-01-30T15:35:32.070Z |
| CVE-2025-38011 |
N/A
|
drm/amdgpu: csa unmap use uninterruptible lock |
Linux |
Linux |
2025-06-18T09:28:21.453Z | 2026-01-30T15:35:29.546Z |
| CVE-2025-37945 |
N/A
|
net: phy: allow MDIO bus PM ops to start/stop state ma… |
Linux |
Linux |
2025-05-20T15:58:20.841Z | 2026-01-30T15:35:28.290Z |
| CVE-2024-58097 |
5.5 (3.1)
|
wifi: ath11k: fix RCU stall while reaping monitor dest… |
Linux |
Linux |
2025-04-16T14:11:45.330Z | 2026-01-30T15:35:25.318Z |
| CVE-2026-1686 |
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
|
Totolink A3600R app.so setAppEasyWizardConfig buffer o… |
Totolink |
A3600R |
2026-01-30T15:02:08.241Z | 2026-01-30T15:34:05.530Z |
| CVE-2025-15550 |
5.1 (4.0)
5.3 (3.1)
|
birkir prime <= 0.4.0.beta.0 - Cross-Site Request Forg… |
birkir |
prime |
2026-01-29T19:41:52.866Z | 2026-01-30T15:01:56.214Z |
| CVE-2025-15549 |
N/A
|
FluentCMS 2026 Stored XSS via SVG Upload in File Management |
FluentCMS |
FluentCMS |
2026-01-29T19:41:36.216Z | 2026-01-30T15:01:46.719Z |
| CVE-2026-1684 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Free5GC SMF PFCP UDP Endpoint pfcp_reports.go HandleRe… |
Free5GC |
SMF |
2026-01-30T14:32:07.043Z | 2026-01-30T14:59:58.236Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-6927 |
2.3 (4.0)
|
Autoblocks from global account suppressions are public… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T22:55:09.395Z | 2026-02-03T21:12:49.615Z |
| CVE-2025-69207 |
5.4 (3.1)
|
Khoj has an IDOR in Notion OAuth Flow Enables Index Po… |
khoj-ai |
khoj |
2026-02-02T21:16:49.041Z | 2026-02-03T15:45:38.393Z |
| CVE-2025-67857 |
4.3 (3.1)
|
Moodle: moodle: data exposure of user identifiers in urls |
|
|
2026-02-03T10:52:22.459Z | 2026-02-03T15:40:59.601Z |
| CVE-2025-67856 |
5.4 (3.1)
|
Moodle: moodle: privilege escalation via incomplete ro… |
|
|
2026-02-03T10:52:19.744Z | 2026-02-03T15:42:54.452Z |
| CVE-2025-67855 |
5.4 (3.1)
|
Mooodle: mooodle: information disclosure and script ex… |
|
|
2026-02-03T10:52:15.809Z | 2026-02-03T15:43:19.863Z |
| CVE-2025-67853 |
7.5 (3.1)
|
Moodle: moodle: brute-force facilitation due to missin… |
|
|
2026-02-03T10:52:12.755Z | 2026-02-03T15:43:49.951Z |
| CVE-2025-67852 |
3.5 (3.1)
|
Moodle: moodle: open redirect vulnerability in oauth l… |
|
|
2026-02-03T10:52:09.893Z | 2026-02-03T15:44:29.178Z |
| CVE-2025-67851 |
6.1 (3.1)
|
Moodle: moodle: formula injection allows arbitrary for… |
|
|
2026-02-03T10:52:06.974Z | 2026-02-03T17:02:43.231Z |
| CVE-2025-67850 |
7.3 (3.1)
|
Moodle: moodle: cross-site scripting vulnerability via… |
|
|
2026-02-03T10:52:03.962Z | 2026-02-04T04:55:47.904Z |
| CVE-2025-67849 |
7.3 (3.1)
|
Moodle: moodle: cross-site scripting (xss) via imprope… |
|
|
2026-02-03T10:52:01.127Z | 2026-02-04T04:55:49.524Z |
| CVE-2025-67848 |
8.1 (3.1)
|
Moodle: moodle: authentication bypass via lti provider… |
|
|
2026-02-03T10:51:58.208Z | 2026-02-04T04:55:50.381Z |
| CVE-2025-67484 |
0 (4.0)
|
Action API xslt option allows JavaScript execution by … |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:24:56.405Z | 2026-02-03T21:02:09.373Z |
| CVE-2025-67483 |
0 (4.0)
|
Theoretical i18n XSS in mediawiki.page.preview.js when… |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:26:27.931Z | 2026-02-03T21:02:32.581Z |
| CVE-2025-67482 |
1.7 (4.0)
|
Lua segfault in unpack() |
Wikimedia Foundation |
Scribunto |
2026-02-03T01:28:56.233Z | 2026-02-03T15:31:50.791Z |
| CVE-2025-67481 |
0 (4.0)
|
mw.message(…).parse() doesn't output safe HTML, but it… |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:30:39.642Z | 2026-02-03T15:31:43.813Z |
| CVE-2025-67480 |
0 (4.0)
|
list=allrevisions can be used to bypass Extension:Lockdown |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:23:01.717Z | 2026-02-03T21:01:54.925Z |
| CVE-2025-67479 |
0 (4.0)
|
Magic word replacement in legacy parser allows using r… |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:12:21.567Z | 2026-02-03T15:32:35.931Z |
| CVE-2025-67478 |
0 (4.0)
|
Wrong E-Mail address composition for usernames with a … |
Wikimedia Foundation |
CheckUser |
2026-02-03T01:14:17.814Z | 2026-02-03T15:32:27.124Z |
| CVE-2025-67477 |
0 (4.0)
|
Stored XSS through a system message in Special:ApiSandbox |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:16:40.616Z | 2026-02-03T15:32:21.011Z |
| CVE-2025-67476 |
1.3 (4.0)
|
Importing leaks IP address of importer via EventStreams |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:18:55.104Z | 2026-02-03T15:32:15.153Z |
| CVE-2025-67475 |
0 (4.0)
|
Stored XSS through edit summaries in MW Core |
Wikimedia Foundation |
MediaWiki |
2026-02-03T01:21:09.480Z | 2026-02-03T15:32:07.211Z |
| CVE-2025-66480 |
9.8 (3.1)
|
Wildfire has Arbitrary File Upload via Directory Trave… |
wildfirechat |
im-server |
2026-02-02T21:33:23.989Z | 2026-02-03T15:46:51.569Z |
| CVE-2025-6597 |
0 (4.0)
|
MediaWiki should not consider autocreation as login fo… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T22:57:30.161Z | 2026-02-03T21:12:31.606Z |
| CVE-2025-6596 |
0 (4.0)
|
Vector inserts portlet labels as HTML, allowing for st… |
Wikimedia Foundation |
Vector |
2026-02-02T22:58:20.912Z | 2026-02-03T21:12:11.934Z |
| CVE-2025-6590 |
4.6 (4.0)
|
Complete content leak of private wikis due to Password… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:03:07.979Z | 2026-02-03T21:11:40.284Z |
| CVE-2025-6589 |
2.1 (4.0)
|
With MultiBlocks enabled and a user who is suppressed … |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:03:45.939Z | 2026-02-03T21:11:20.527Z |
| CVE-2025-65017 |
8.2 (4.0)
|
Decidim's private data exports can lead to data leaks |
decidim |
decidim |
2026-02-03T15:05:24.738Z | 2026-02-03T17:09:47.635Z |
| CVE-2025-6397 |
8.6 (3.1)
|
XSS in Ankara Hosting's web site |
Ankara Hosting Website Design |
Website Software |
2026-02-03T12:15:05.310Z | 2026-02-03T14:30:21.419Z |
| CVE-2025-61658 |
1.3 (4.0)
|
Special:GlobalContributions shows edits on wikis the v… |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:59:30.322Z | 2026-02-03T20:59:54.405Z |
| CVE-2025-61657 |
0 (4.0)
|
Improper Neutralization of Input During Web Page … |
Wikimedia Foundation |
Vector |
2026-02-03T01:00:59.692Z | 2026-02-03T21:00:15.785Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67484 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T02:16:09.593 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67483 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:09.467 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67482 | Vulnerability in Wikimedia Foundation Scribunto, Wikimedia Foundation luasandbox. This vulnerabilit… | 2026-02-03T02:16:09.337 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67481 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:09.207 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67480 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T02:16:09.083 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67479 | Vulnerability in Wikimedia Foundation MediaWiki, Wikimedia Foundation Cite. This vulnerability is a… | 2026-02-03T02:16:08.953 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67478 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T02:16:08.840 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67477 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.707 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67476 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T02:16:08.590 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-67475 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.457 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-66480 | Wildfire IM is an instant messaging and real-time audio/video solution. Prior to 1.4.3, a critical … | 2026-02-02T23:16:00.687 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-6597 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-02T23:16:02.450 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-6596 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-02T23:16:02.310 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-6590 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Me… | 2026-02-02T23:16:01.503 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-6589 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-02T23:16:01.360 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-65017 | Decidim is a participatory democracy framework. In versions from 0.30.0 to before 0.30.4 and from 0… | 2026-02-03T15:16:12.403 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-6397 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T13:15:53.457 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61658 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T02:16:08.303 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61657 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.150 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61656 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.010 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61655 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:07.887 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61654 | Vulnerability in Wikimedia Foundation Thanks. This vulnerability is associated with program files i… | 2026-02-03T02:16:07.760 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61653 | Vulnerability in Wikimedia Foundation TextExtracts. This vulnerability is associated with program f… | 2026-02-03T02:16:07.653 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61652 | Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from * be… | 2026-02-03T02:16:07.540 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61651 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:07.407 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61650 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T01:15:58.920 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61649 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T01:15:58.803 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61648 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T01:15:58.680 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61647 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T00:16:10.520 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61646 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T01:15:58.560 | 2026-02-03T16:44:03.343 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-hxcg-77v3-qx52 |
5.9 (3.1)
|
If an attacker causes kdcproxy to connect to an attacker-controlled KDC server (e.g. through server… | 2025-11-12T18:31:25Z | 2026-01-28T21:31:17Z |
| ghsa-h3vg-292w-9x2c |
5.3 (3.1)
|
Improper authorization in Smart suggestions prior to SMR Apr-2023 Release 1 in Android 13 and 4.1.0… | 2026-01-28T21:31:17Z | 2026-01-28T21:31:17Z |
| ghsa-9rmh-gmj9-rv2m |
9.9 (3.1)
|
Unrestricted Upload of File with Dangerous Type vulnerability in InspiryThemes Real Homes CRM realh… | 2026-01-22T18:30:34Z | 2026-01-28T21:31:17Z |
| ghsa-6jv6-w2pq-vr7g |
6.5 (3.1)
|
Missing Authorization vulnerability in Tickera Tickera tickera-event-ticketing-system allows Exploi… | 2026-01-22T18:30:33Z | 2026-01-28T21:31:17Z |
| ghsa-26cj-fq73-4g9h |
5.5 (3.1)
|
Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-202… | 2026-01-28T21:31:17Z | 2026-01-28T21:31:17Z |
| ghsa-86hp-xrhj-fhpq |
8.8 (3.1)
|
TYPO3 Vulnerable to Insecure Deserialization | 2022-05-24T22:00:13Z | 2026-01-28T21:28:48Z |
| ghsa-rvxj-7f72-mhrx |
8.7 (4.0)
|
EGroupware has SQL Injection in Nextmatch Filter Processing | 2026-01-28T20:39:27Z | 2026-01-28T20:39:27Z |
| ghsa-xcvv-2phh-wm85 |
7.8 (3.1)
|
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest c… | 2026-01-28T18:30:49Z | 2026-01-28T18:30:49Z |
| ghsa-h92q-fpwc-x9x5 |
7.8 (3.1)
|
NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attac… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:49Z |
| ghsa-cww3-jp3g-84xg |
7.8 (3.1)
|
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could trigger a use af… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:49Z |
| ghsa-67qq-rj26-wj76 |
5.5 (3.1)
|
NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL … | 2026-01-28T18:30:49Z | 2026-01-28T18:30:49Z |
| ghsa-4p4m-966v-gqhf |
7.8 (3.1)
|
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.s… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:49Z |
| ghsa-vcq8-wcj4-22xm |
6.5 (3.1)
8.7 (4.0)
|
PDW File Browser 1.3 contains a remote code execution vulnerability that allows authenticated users… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-rw7c-7pw9-f8cv |
9.8 (3.1)
8.4 (4.0)
|
Zortam Mp3 Media Studio 27.60 contains a buffer overflow vulnerability in the library creation file… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-r4vc-qvp9-9h22 |
6.5 (3.1)
7.1 (4.0)
|
M/Monit 3.7.4 contains an authentication vulnerability that allows authenticated attackers to retri… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-qwcg-c534-7pw3 |
9.8 (3.1)
8.4 (4.0)
|
10-Strike Network Inventory Explorer 8.65 contains a buffer overflow vulnerability in exception han… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mwjm-9r99-f56x |
8.8 (3.1)
8.7 (4.0)
|
M/Monit 3.7.4 contains a privilege escalation vulnerability that allows authenticated users to modi… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mhpf-wffw-p7vp |
8.2 (3.1)
8.8 (4.0)
|
WebDamn User Registration Login System contains a SQL injection vulnerability that allows unauthent… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mgpr-67wh-564q |
7.5 (3.1)
8.7 (4.0)
|
Intelbras Router RF 301K firmware version 1.1.2 contains an authentication bypass vulnerability tha… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mc39-mcp7-82wg |
8.4 (3.1)
6.9 (4.0)
|
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read … | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-jjx9-wqhx-pw9m |
7.5 (3.1)
6.7 (4.0)
|
aSc TimeTables 2021.6.2 contains a denial of service vulnerability that allows attackers to crash t… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-hmhj-hh4g-c89r |
8.4 (3.1)
8.4 (4.0)
|
Nidesoft 3GP Video Converter 2.6.18 contains a local stack buffer overflow vulnerability in the lic… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-h5jp-4qg2-hm8r |
8.2 (3.1)
8.8 (4.0)
|
SmartBlog 2.0.1 contains a blind SQL injection vulnerability in the 'id_post' parameter of the deta… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-4q3w-jgfx-4792 |
9.8 (3.1)
5.3 (4.0)
|
Tendenci 12.3.1 contains a CSV formula injection vulnerability in the contact form message field th… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-4p7v-9jxw-m3mp |
5.3 (3.1)
5.5 (4.0)
|
A weakness has been identified in Open5GS up to 2.7.6. This vulnerability affects the function sgwc… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-2rvg-p9mc-wr6c |
4.0 (3.1)
6.9 (4.0)
|
ILIAS Learning Management System 4.3 contains a server-side request forgery vulnerability that allo… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-24h7-3qfx-598p |
8.4 (3.1)
8.4 (4.0)
|
docPrint Pro 8.0 contains a local buffer overflow vulnerability in the 'Add URL' input field that a… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-237r-v2jq-99fc |
9.8 (3.1)
8.7 (4.0)
|
YATinyWinFTP contains a denial of service vulnerability that allows attackers to crash the FTP serv… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-x4cc-vgcc-h5h4 |
5.8 (3.1)
|
A flaw was found in libsoup. An attacker who can control the input for the Content-Disposition head… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-wj9p-f539-2mhr |
5.8 (3.1)
|
A flaw was found in the libsoup HTTP library that can cause proxy authentication credentials to be … | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2009-2 |
|
Multiple cross-site scripting (XSS) vulnerabilities in Buildbot 0.7.6 through 0.7.11p2 al… | buildbot | 2009-08-26T14:24:00Z | 2021-07-15T02:22:07.247020Z |
| pysec-2009-1 |
|
Cross-site scripting (XSS) vulnerability in the waterfall web status view (status/web/wat… | buildbot | 2009-08-25T17:30:00Z | 2021-07-15T02:22:07.208084Z |
| pysec-2008-2 |
|
The administration application in Django 0.91, 0.95, and 0.96 stores unauthenticated HTTP… | django | 2008-09-04T17:41:00Z | 2021-07-15T02:22:07.826825Z |
| pysec-2008-1 |
|
Cross-site scripting (XSS) vulnerability in the login form in the administration applicat… | django | 2008-05-23T15:32:00Z | 2021-07-15T02:22:07.778598Z |
| pysec-2007-1 |
|
The internationalization (i18n) framework in Django 0.91, 0.95, 0.95.1, and 0.96, and as … | django | 2007-10-30T19:46:00Z | 2021-07-15T02:22:07.728618Z |
| pysec-2021-112 |
|
An integer overflow exists in pywin32 prior to version b301 when adding an access control… | pywin32 | 2021-07-06T12:15:00Z | 2021-07-08T03:14:30.948663Z |
| pysec-2021-111 |
|
`projen` is a project generation tool that synthesizes project configuration files such a… | projen | 2021-04-06T19:15:00Z | 2021-07-08T03:14:29.411085Z |
| pysec-2021-110 |
|
In Plone 5.0 through 5.2.4, Editors are vulnerable to XSS in the folder contents view, if… | plone | 2021-06-30T01:15:00Z | 2021-07-08T03:14:29.124687Z |
| pysec-2021-109 |
|
Django 3.1.x before 3.1.13 and 3.2.x before 3.2.5 allows QuerySet.order_by SQL injection … | django | 2021-07-02T10:15:00Z | 2021-07-08T03:14:19.151485Z |
| pysec-2020-214 |
|
Twisted before 16.3.1 does not attempt to address RFC 3875 section 4.1.18 namespace confl… | twisted | 2020-03-11T20:15:00Z | 2021-07-05T00:01:28.092827Z |
| pysec-2017-43 |
|
Cross-site scripting (XSS) vulnerability in the render_full function in debug/tbtools.py … | werkzeug | 2017-10-23T16:29:00Z | 2021-07-05T00:01:28.359311Z |
| pysec-2017-42 |
|
The password reset form in Weblate before 2.10.1 provides different error messages depend… | weblate | 2017-03-15T15:59:00Z | 2021-07-05T00:01:28.288013Z |
| pysec-2020-213 |
|
Tornado before 3.2.2 sends arbitrary responses that contain a fixed CSRF token and may be… | tornado | 2020-01-24T18:15:00Z | 2021-07-05T00:01:27.333585Z |
| pysec-2019-156 |
|
The scipy.weave component in SciPy before 0.12.1 creates insecure temporary directories. | scipy | 2019-11-04T20:15:00Z | 2021-07-05T00:01:27.093286Z |
| pysec-2017-41 |
|
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, an… | supervisor | 2017-08-23T14:29:00Z | 2021-07-05T00:01:27.197995Z |
| pysec-2017-40 |
|
Sanic before 0.5.1 allows reading arbitrary files with directory traversal, as demonstrat… | sanic | 2017-11-10T09:29:00Z | 2021-07-05T00:01:27.045850Z |
| pysec-2016-11 |
|
model/modelstorage.py in trytond 3.2.x before 3.2.10, 3.4.x before 3.4.8, 3.6.x before 3.… | trytond | 2016-04-13T15:59:00Z | 2021-07-05T00:01:27.588881Z |
| pysec-2012-6 |
|
model/modelstorage.py in the Tryton application framework (trytond) before 2.4.0 for Pyth… | trytond | 2012-07-12T20:55:00Z | 2021-07-05T00:01:27.407587Z |
| pysec-2012-5 |
|
CRLF injection vulnerability in the tornado.web.RequestHandler.set_header function in Tor… | tornado | 2012-05-23T20:55:00Z | 2021-07-05T00:01:27.298545Z |
| pysec-2018-50 |
|
In SaltStack Salt before 2016.3.6, compromised salt-minions can impersonate the salt-master. | salt | 2018-04-23T22:29:00Z | 2021-07-05T00:01:26.870701Z |
| pysec-2017-39 |
|
Salt-api in SaltStack Salt before 2015.8.13, 2016.3.x before 2016.3.5, and 2016.11.x befo… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.833704Z |
| pysec-2017-38 |
|
When using the local_batch client from salt-api in SaltStack Salt before 2015.8.13, 2016.… | salt | 2017-09-26T14:29:00Z | 2021-07-05T00:01:26.736529Z |
| pysec-2017-37 |
|
SaltStack Salt before 2016.3.8, 2016.11.x before 2016.11.8, and 2017.7.x before 2017.7.2 … | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.641829Z |
| pysec-2017-36 |
|
Directory traversal vulnerability in minion id validation in SaltStack Salt before 2016.3… | salt | 2017-10-24T17:29:00Z | 2021-07-05T00:01:26.552235Z |
| pysec-2017-34 |
|
Salt before 2015.8.11 allows deleted minions to read or write to minions with the same id… | salt | 2017-02-07T17:59:00Z | 2021-07-05T00:01:26.392976Z |
| pysec-2017-33 |
|
Salt before 2015.5.10 and 2015.8.x before 2015.8.8, when PAM external authentication is e… | salt | 2017-01-31T19:59:00Z | 2021-07-05T00:01:26.354816Z |
| pysec-2017-32 |
|
The state.sls function in Salt before 2015.8.3 uses weak permissions on the cache data, w… | salt | 2017-01-30T22:59:00Z | 2021-07-05T00:01:26.287704Z |
| pysec-2017-31 |
|
Salt before 2014.7.6 does not verify certificates when connecting via the aliyun, proxmox… | salt | 2017-08-25T18:29:00Z | 2021-07-05T00:01:26.252043Z |
| pysec-2017-30 |
|
modules/chef.py in SaltStack before 2014.7.4 does not properly handle files in /tmp. | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.213768Z |
| pysec-2017-29 |
|
modules/serverdensity_device.py in SaltStack before 2014.7.4 does not properly handle fil… | salt | 2017-04-13T14:59:00Z | 2021-07-05T00:01:26.175371Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3498 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.399440Z |
| gsd-2024-3497 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.034610Z |
| gsd-2024-3496 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.380375Z |
| gsd-2024-3495 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.297826Z |
| gsd-2024-3494 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.046614Z |
| gsd-2024-3493 | A specific malformed fragmented packet type (fragmented packets may be generated automat… | 2024-04-11T05:03:27.299090Z |
| gsd-2024-3492 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.322144Z |
| gsd-2024-3491 | The Schema & Structured Data for WP & AMP plugin for WordPress is vulnerable to Stored Cr… | 2024-04-11T05:03:27.414151Z |
| gsd-2024-3490 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.188864Z |
| gsd-2024-3489 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.072664Z |
| gsd-2024-3488 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.153214Z |
| gsd-2024-3487 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.178428Z |
| gsd-2024-3486 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.203222Z |
| gsd-2024-3485 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338142Z |
| gsd-2024-3484 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.325802Z |
| gsd-2024-3483 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.338353Z |
| gsd-2024-3482 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.107708Z |
| gsd-2024-3481 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.393633Z |
| gsd-2024-3480 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.241931Z |
| gsd-2024-3479 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.205824Z |
| gsd-2024-3478 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.071659Z |
| gsd-2024-3477 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.211266Z |
| gsd-2024-3476 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.232056Z |
| gsd-2024-3475 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.191635Z |
| gsd-2024-3474 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.103698Z |
| gsd-2024-3473 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.291821Z |
| gsd-2024-3472 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.043104Z |
| gsd-2024-3471 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.402076Z |
| gsd-2024-3470 | An Improper Privilege Management vulnerability was identified in GitHub Enterprise Server… | 2024-04-11T05:03:27.172214Z |
| gsd-2024-3469 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.237925Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192238 | Malicious code in elf-stats-sugarplum-muffin-944 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| mal-2025-192237 | Malicious code in elf-stats-storybook-snowglobe-157 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| mal-2025-192198 | Malicious code in elf-stats-wintry-ornament-960 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192196 | Malicious code in elf-stats-wintry-hollyberry-832 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192194 | Malicious code in elf-stats-wintry-fir-892 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192192 | Malicious code in elf-stats-whimsical-rocket-922 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192191 | Malicious code in elf-stats-whimsical-muffin-613 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192190 | Malicious code in elf-stats-whimsical-marshmallow-258 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192189 | Malicious code in elf-stats-whimsical-marshmallow-212 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192188 | Malicious code in elf-stats-whimsical-ledger-767 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192187 | Malicious code in elf-stats-whimsical-lantern-823 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192181 | Malicious code in elf-stats-twinkling-marshmallow-913 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192178 | Malicious code in elf-stats-tinsel-pantry-856 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192173 | Malicious code in elf-stats-sugarplum-star-404 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192171 | Malicious code in elf-stats-sugarplum-fireplace-278 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-192169 | Malicious code in elf-stats-storybook-reindeer-552 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| mal-2025-191974 | Malicious code in elf-stats-wintry-northstar-674 (npm) | 2025-12-03T12:25:23Z | 2025-12-23T22:09:11Z |
| MAL-2025-192628 | Malicious code in elf-stats-wintry-chimney-348 (npm) | 2025-12-19T08:44:11Z | 2025-12-23T22:09:11Z |
| MAL-2025-192540 | Malicious code in elf-stats-twinkling-wishlist-283 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T22:09:11Z |
| MAL-2025-192534 | Malicious code in elf-stats-sugarplum-snowman-116 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T22:09:11Z |
| MAL-2025-192286 | Malicious code in elf-stats-tinsel-sparkler-289 (npm) | 2025-12-03T19:38:32Z | 2025-12-23T22:09:11Z |
| MAL-2025-192285 | Malicious code in elf-stats-sugarplum-cookiejar-287 (npm) | 2025-12-03T19:42:46Z | 2025-12-23T22:09:11Z |
| MAL-2025-192270 | Malicious code in elf-stats-tinsel-candy-605 (npm) | 2025-12-03T18:49:05Z | 2025-12-23T22:09:11Z |
| MAL-2025-192243 | Malicious code in elf-stats-wintry-cocoa-831 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| MAL-2025-192241 | Malicious code in elf-stats-velvet-snowman-470 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| MAL-2025-192240 | Malicious code in elf-stats-velvet-ornament-148 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| MAL-2025-192238 | Malicious code in elf-stats-sugarplum-muffin-944 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| MAL-2025-192237 | Malicious code in elf-stats-storybook-snowglobe-157 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T22:09:11Z |
| MAL-2025-192198 | Malicious code in elf-stats-wintry-ornament-960 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192196 | Malicious code in elf-stats-wintry-hollyberry-832 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-1857 | Grafana Loki: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-14T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2024-0894 | Oracle MySQL: Mehrere Schwachstellen | 2024-04-16T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2024-0499 | Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-02-27T23:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2024-0358 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-02-13T23:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-2773 | Apache ActiveMQ: Schwachstelle ermöglicht Codeausführung | 2023-10-29T23:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-2698 | Redis: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-10-17T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-2690 | Oracle MySQL: Mehrere Schwachstellen | 2023-10-17T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-2115 | BusyBox: Schwachstelle ermöglicht Codeausführung | 2023-08-22T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-1698 | Redis: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-07-10T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-1551 | Grafana: Schwachstelle ermöglicht Übernahme von Benutzerkonto | 2023-06-22T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0989 | Redis: Schwachstelle ermöglicht Denial of Service | 2023-04-17T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0510 | Redis: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-02-28T23:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2023-0102 | Redis: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-01-16T23:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2022-0071 | OpenSSL: Mehrere Schwachstellen | 2022-05-03T22:00:00.000+00:00 | 2025-02-13T23:00:00.000+00:00 |
| wid-sec-w-2025-0364 | IBM Power Hardware Management Console: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-02-12T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0363 | Drupal: Mehrere Schwachstellen | 2025-02-12T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0359 | IBM Business Automation Workflow: Schwachstelle ermöglicht Denial of Service | 2025-02-12T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0357 | D-LINK Router: Schwachstelle ermöglicht Codeausführung | 2025-02-12T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0356 | Progress Software Telerik Report Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-02-12T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2024-0266 | Linux Kernel: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2024-01-31T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2023-2816 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Codeausführung | 2023-11-02T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2023-2351 | gcc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-09-13T22:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2022-1899 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2022-10-30T23:00:00.000+00:00 | 2025-02-12T23:00:00.000+00:00 |
| wid-sec-w-2025-0352 | Cacti: Schwachstelle ermöglicht Manipulation von Dateien | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0351 | Ivanti Connect Secure, Policy Secure und Secure Access Client: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0350 | Microsoft Office: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0348 | Fortinet FortiSIEM: Schwachstelle ermöglicht Cross-Site Scripting | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0347 | Fortinet FortiSandbox: Schwachstelle ermöglicht Cross-Site Scripting | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0346 | Fortinet FortiClient: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0345 | Ivanti Neurons for MDM: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2023:0651 | Red Hat Security Advisory: OpenShift Container Platform 4.11.27 security update | 2023-02-15T07:42:48+00:00 | 2026-02-03T21:14:05+00:00 |
| rhsa-2023:0632 | Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update | 2023-02-15T11:08:43+00:00 | 2026-02-03T21:14:04+00:00 |
| rhsa-2023:0631 | Red Hat Security Advisory: RHSA: Submariner 0.14 - bug fix and security updates | 2023-02-07T17:23:40+00:00 | 2026-02-03T21:14:03+00:00 |
| rhsa-2023:0630 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.7.0 security and bug fix updates | 2023-02-07T18:36:08+00:00 | 2026-02-03T21:14:02+00:00 |
| rhsa-2023:0584 | Red Hat Security Advisory: Secondary Scheduler Operator for Red Hat OpenShift 1.1.1 security update | 2023-05-18T14:27:34+00:00 | 2026-02-03T21:14:02+00:00 |
| rhsa-2023:0574 | Red Hat Security Advisory: OpenShift Container Platform 4.9.55 security update | 2023-02-13T04:31:46+00:00 | 2026-02-03T21:14:02+00:00 |
| rhsa-2023:0566 | Red Hat Security Advisory: OpenShift Container Platform 4.11.26 security update | 2023-02-07T06:18:30+00:00 | 2026-02-03T21:14:00+00:00 |
| rhsa-2023:0565 | Red Hat Security Advisory: OpenShift Container Platform 4.11.26 security update | 2023-02-07T13:22:19+00:00 | 2026-02-03T21:13:59+00:00 |
| rhsa-2023:0561 | Red Hat Security Advisory: OpenShift Container Platform 4.10.51 security update | 2023-02-08T18:49:28+00:00 | 2026-02-03T21:13:58+00:00 |
| rhsa-2023:0542 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.3.1 Containers security update | 2023-01-30T17:18:54+00:00 | 2026-02-03T21:13:57+00:00 |
| rhsa-2023:0540 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.1.6 security update | 2023-01-30T16:25:41+00:00 | 2026-02-03T21:13:56+00:00 |
| rhsa-2023:0481 | Red Hat Security Advisory: Submariner 0.12.3 - security update and bug fix | 2023-01-26T21:22:22+00:00 | 2026-02-03T21:13:56+00:00 |
| rhsa-2023:0408 | Red Hat Security Advisory: OpenShift Virtualization 4.12.0 Images security update | 2023-01-25T11:11:29+00:00 | 2026-02-03T21:13:56+00:00 |
| rhsa-2023:0328 | Red Hat Security Advisory: go-toolset and golang security and bug fix update | 2023-01-23T15:26:30+00:00 | 2026-02-03T21:13:56+00:00 |
| rhsa-2023:0449 | Red Hat Security Advisory: OpenShift Container Platform 4.12.1 security update | 2023-01-30T17:31:00+00:00 | 2026-02-03T21:13:55+00:00 |
| rhsa-2023:0446 | Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update | 2023-01-25T09:20:12+00:00 | 2026-02-03T21:13:54+00:00 |
| rhsa-2023:0407 | Red Hat Security Advisory: OpenShift Virtualization 4.12.0 RPMs security update | 2023-01-24T12:51:07+00:00 | 2026-02-03T21:13:54+00:00 |
| rhsa-2023:0264 | Red Hat Security Advisory: Red Hat OpenShift (Logging Subsystem) security update | 2023-01-19T11:03:41+00:00 | 2026-02-03T21:13:52+00:00 |
| rhsa-2023:0245 | Red Hat Security Advisory: OpenShift Container Platform 4.11.25 security update | 2023-01-23T15:53:20+00:00 | 2026-02-03T21:13:52+00:00 |
| rhsa-2022:9047 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.6 security and bug fix update | 2022-12-15T01:57:35+00:00 | 2026-02-03T21:13:52+00:00 |
| rhsa-2022:9111 | Red Hat Security Advisory: OpenShift Container Platform 4.9.54 bug fix and security update | 2023-01-06T10:37:49+00:00 | 2026-02-03T21:13:51+00:00 |
| rhsa-2022:9107 | Red Hat Security Advisory: OpenShift Container Platform 4.11.21 bug fix and security update | 2023-01-04T06:46:11+00:00 | 2026-02-03T21:13:50+00:00 |
| rhsa-2022:9096 | Red Hat Security Advisory: Red Hat OpenShift support for Windows Containers 7.0.0 [security update] | 2023-01-30T05:48:14+00:00 | 2026-02-03T21:13:50+00:00 |
| rhsa-2022:8938 | Red Hat Security Advisory: Release of OpenShift Serverless 1.26.0 | 2022-12-13T02:11:29+00:00 | 2026-02-03T21:13:49+00:00 |
| rhsa-2022:8932 | Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.26.0 | 2022-12-12T18:07:50+00:00 | 2026-02-03T21:13:48+00:00 |
| rhsa-2022:8893 | Red Hat Security Advisory: OpenShift Container Platform 4.11.20 security update | 2022-12-15T21:32:49+00:00 | 2026-02-03T21:13:48+00:00 |
| rhsa-2022:8781 | Red Hat Security Advisory: Logging Subsystem 5.5.5 - Red Hat OpenShift security update | 2022-12-08T07:37:32+00:00 | 2026-02-03T21:13:48+00:00 |
| rhsa-2022:8750 | Red Hat Security Advisory: OpenShift Virtualization 4.11.1 security and bug fix update | 2022-12-01T21:09:40+00:00 | 2026-02-03T21:13:47+00:00 |
| rhsa-2022:8634 | Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.1.1 security and bug fix update | 2022-11-28T02:51:35+00:00 | 2026-02-03T21:13:46+00:00 |
| rhsa-2022:8626 | Red Hat Security Advisory: OpenShift Container Platform 4.11.17 packages and security update | 2022-11-28T20:47:08+00:00 | 2026-02-03T21:13:46+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-21-194-15 | ICSA-21-194-15_Siemens JT2Go and Teamcenter Visualization | 2021-07-13T00:00:00.000000Z | 2021-07-13T00:00:00.000000Z |
| icsa-21-194-01 | Schneider Electric C-Bus Toolkit | 2021-07-13T00:00:00.000000Z | 2021-07-13T00:00:00.000000Z |
| icsa-21-189-02 | MDT AutoSave | 2021-07-08T00:00:00.000000Z | 2021-07-08T00:00:00.000000Z |
| icsa-21-189-01 | Rockwell Automation MicroLogix 1100 | 2021-07-08T00:00:00.000000Z | 2021-07-08T00:00:00.000000Z |
| icsa-21-187-01 | Moxa NPort IAW5000A-I/O Series Serial Device Server | 2021-07-06T00:00:00.000000Z | 2021-07-06T00:00:00.000000Z |
| icsa-21-182-05 | Mitsubishi Electric Air Conditioning Systems | 2021-07-01T00:00:00.000000Z | 2021-07-01T00:00:00.000000Z |
| icsa-21-182-04 | Mitsubishi Electric Air Conditioning System | 2021-07-01T00:00:00.000000Z | 2021-07-01T00:00:00.000000Z |
| icsa-21-182-01 | Johnson Controls Facility Explorer | 2021-07-01T00:00:00.000000Z | 2021-07-01T00:00:00.000000Z |
| icsa-21-026-02 | All Bachmann M1 System Processor Modules | 2021-01-26T00:00:00.000000Z | 2021-07-01T00:00:00.000000Z |
| icsa-21-180-06 | Claroty Secure Remote Access Site | 2021-06-29T00:00:00.000000Z | 2021-06-29T00:00:00.000000Z |
| icsa-21-180-04 | JTEKT TOYOPUC PLC | 2021-06-29T00:00:00.000000Z | 2021-06-29T00:00:00.000000Z |
| icsa-21-180-03 | Panasonic FPWIN Pro | 2021-06-29T00:00:00.000000Z | 2021-06-29T00:00:00.000000Z |
| icsa-21-180-02 | Exacq Technologies exacqVision Enterprise Manager | 2021-06-29T00:00:00.000000Z | 2021-06-29T00:00:00.000000Z |
| icsa-21-180-01 | Exacq Technologies exacqVision Web Service | 2021-06-29T00:00:00.000000Z | 2021-06-29T00:00:00.000000Z |
| icsma-21-175-01 | Philips Interoperability Solution XDS | 2021-06-24T00:00:00.000000Z | 2021-06-24T00:00:00.000000Z |
| icsa-21-175-01 | FATEK Automation WinProladder | 2021-06-24T00:00:00.000000Z | 2021-06-24T00:00:00.000000Z |
| icsa-21-173-04 | CODESYS Control V2 Linux SysFile library | 2021-06-22T00:00:00.000000Z | 2021-06-22T00:00:00.000000Z |
| icsa-21-173-03 | CODESYS Control V2 communication | 2021-06-22T00:00:00.000000Z | 2021-06-22T00:00:00.000000Z |
| icsa-21-173-02 | CODESYS V2 web server | 2021-06-22T00:00:00.000000Z | 2021-06-22T00:00:00.000000Z |
| icsa-21-168-02 | Softing OPC-UA C++ SDK | 2021-06-17T00:00:00.000000Z | 2021-06-17T00:00:00.000000Z |
| icsa-21-168-01 | Schneider Electric Enerlin'X Com 'X 510 | 2021-06-17T00:00:00.000000Z | 2021-06-17T00:00:00.000000Z |
| icsa-21-021-05 | WAGO M&M Software fdtCONTAINER (Update C) | 2021-01-21T00:00:00.000000Z | 2021-06-17T00:00:00.000000Z |
| icsa-20-280-01 | Rockwell Automation ISaGRAF5 Runtime (Update A) | 2020-10-06T00:00:00.000000Z | 2021-06-17T00:00:00.000000Z |
| icsma-20-184-01 | OpenClinic GA (Update B) | 2020-07-02T00:00:00.000000Z | 2021-06-15T00:00:00.000000Z |
| icsa-21-166-02 | Automation Direct CLICK PLC CPU Modules | 2021-06-15T00:00:00.000000Z | 2021-06-15T00:00:00.000000Z |
| icsa-21-166-01 | ThroughTek P2P SDK | 2021-06-15T00:00:00.000000Z | 2021-06-15T00:00:00.000000Z |
| icsma-21-161-01 | ZOLL Defibrillator Dashboard | 2021-06-10T00:00:00.000000Z | 2021-06-10T00:00:00.000000Z |
| icsa-21-161-02 | AGG Software Web Server Plugin | 2021-06-10T00:00:00.000000Z | 2021-06-10T00:00:00.000000Z |
| icsa-21-161-01 | Rockwell Automation FactoryTalk Services Platform | 2021-06-10T00:00:00.000000Z | 2021-06-10T00:00:00.000000Z |
| icsa-21-159-02 | Open Design Alliance Drawings SDK | 2021-06-08T06:00:00.000000Z | 2021-06-08T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-dna-info-disc-3bz8BCgR | Cisco DNA Center Information Disclosure Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cvc-bypass-k99cb2ff | Cisco Cyber Vision Center Software Access Control Bypass Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cvc-bypass-K99Cb2ff | Cisco Cyber Vision Center Software Access Control Bypass Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-selfcare-drasc7sr | Cisco Unified Communications Manager Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-selfcare-drASc7sr | Cisco Unified Communications Manager Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-cuc-imp-xss-xtpzfm5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-cucm-cuc-imp-xss-XtpzfM5e | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhf8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr5k-ipv6-dos-ce3zhF8m | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zjljfgbf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-asr-dos-zJLJFgBf | Cisco StarOS IPv6 Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3perkf | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-profile-7u3PERKF | Cisco AnyConnect Secure Mobility Client for Windows Profile Modification Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-fexq4tav | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-anyconnect-dos-feXq4tAV | Cisco AnyConnect Secure Mobility Client for Windows Denial of Service Vulnerability | 2020-08-05T16:00:00+00:00 | 2020-08-05T16:00:00+00:00 |
| cisco-sa-rv-routers-rj5jrff8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-rv-routers-Rj5JRfF8 | Cisco Small Business RV Series Routers Command Injection Vulnerabilities | 2020-06-17T16:00:00+00:00 | 2020-08-03T16:18:58+00:00 |
| cisco-sa-racerts-wvuypxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-racerts-WvuYpxew | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Trustpoint Configuration Defaults | 2020-07-31T16:00:00+00:00 | 2020-07-31T22:35:48+00:00 |
| cisco-sa-sdbufof-h5f5vsel | Cisco SD-WAN Solution Software Buffer Overflow Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-30T17:13:13+00:00 |
| cisco-sa-sdbufof-h5f5VSeL | Cisco SD-WAN Solution Software Buffer Overflow Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-30T17:13:13+00:00 |
| cisco-sa-20190206-tms-soap | Cisco TelePresence Management Suite Web Services | 2019-02-06T16:00:00+00:00 | 2020-07-29T16:24:11+00:00 |
| cisco-sa-uabvman-sygzt8bv | Cisco SD-WAN vManage Software Authorization Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-uabvman-SYGzt8Bv | Cisco SD-WAN vManage Software Authorization Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-devmgr-cmd-inj-umc8rhnh | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-devmgr-cmd-inj-Umc8RHNh | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-xss-3jkdlslv | Cisco Data Center Network Manager Cross-Site Scripting Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-xss-3jkDLsLV | Cisco Data Center Network Manager Cross-Site Scripting Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-sql-inject-8hk6pwmf | Cisco Data Center Network Manager SQL Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-sql-inject-8hk6PwmF | Cisco Data Center Network Manager SQL Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-38353 | drm/xe: Fix taking invalid lock on wedge | 2025-07-02T00:00:00.000Z | 2025-09-03T23:31:37.000Z |
| msrc_cve-2024-26706 | parisc: Fix random data corruption from exception handler | 2024-04-02T07:00:00.000Z | 2025-09-03T23:31:33.000Z |
| msrc_cve-2022-49742 | f2fs: initialize locks earlier in f2fs_fill_super() | 2025-03-02T00:00:00.000Z | 2025-09-03T23:31:05.000Z |
| msrc_cve-2024-8443 | Libopensc: heap buffer overflow in openpgp driver when generating key | 2024-09-01T07:00:00.000Z | 2025-09-03T23:30:13.000Z |
| msrc_cve-2020-18780 | A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command. | 2023-08-01T00:00:00.000Z | 2025-09-03T23:30:10.000Z |
| msrc_cve-2025-6817 | HDF5 H5Centry.c H5C__load_entry resource consumption | 2025-06-02T00:00:00.000Z | 2025-09-03T23:30:01.000Z |
| msrc_cve-2016-5386 | The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue. | 2016-07-02T00:00:00.000Z | 2025-09-03T23:29:37.000Z |
| msrc_cve-2025-38666 | net: appletalk: Fix use-after-free in AARP proxy probe | 2025-08-02T00:00:00.000Z | 2025-09-03T23:29:24.000Z |
| msrc_cve-2025-8851 | LibTIFF tiffcrop tiffcrop.c readSeparateStripsetoBuffer stack-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:29:23.000Z |
| msrc_cve-2022-48766 | drm/amd/display: Wrap dcn301_calculate_wm_and_dlg for FPU. | 2024-06-02T07:00:00.000Z | 2025-09-03T23:29:09.000Z |
| msrc_cve-2024-35878 | of: module: prevent NULL pointer dereference in vsnprintf() | 2024-05-02T07:00:00.000Z | 2025-09-03T23:29:01.000Z |
| msrc_cve-2023-52625 | drm/amd/display: Refactor DMCUB enter/exit idle interface | 2024-03-02T08:00:00.000Z | 2025-09-03T23:28:13.000Z |
| msrc_cve-2022-49303 | drivers: staging: rtl8192eu: Fix deadlock in rtw_joinbss_event_prehandle | 2025-02-02T00:00:00.000Z | 2025-09-03T23:27:51.000Z |
| msrc_cve-2025-38246 | bnxt: properly flush XDP redirect lists | 2025-07-02T00:00:00.000Z | 2025-09-03T23:27:31.000Z |
| msrc_cve-2024-9042 | This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below. | 2025-03-02T00:00:00.000Z | 2025-09-03T23:27:21.000Z |
| msrc_cve-2024-45776 | Grub2: grub-core/gettext: integer overflow leads to heap oob write and read. | 2025-02-02T00:00:00.000Z | 2025-09-03T23:26:40.000Z |
| msrc_cve-2025-38616 | tls: handle data disappearing from under the TLS ULP | 2025-08-02T00:00:00.000Z | 2025-09-03T23:26:07.000Z |
| msrc_cve-2024-35869 | smb: client: guarantee refcounted children from parent session | 2024-05-02T07:00:00.000Z | 2025-09-03T23:25:49.000Z |
| msrc_cve-2020-24978 | In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7. | 2020-09-02T00:00:00.000Z | 2025-09-03T23:25:22.000Z |
| msrc_cve-2024-6608 | It was possible to move the cursor using pointerlock from an iframe. This allowed moving the cursor outside of the viewport and the Firefox window. This vulnerability affects Firefox < 128 and Thunderbird < 128. | 2024-07-01T07:00:00.000Z | 2025-09-03T23:24:05.000Z |
| msrc_cve-2025-38645 | net/mlx5: Check device memory pointer before usage | 2025-08-02T00:00:00.000Z | 2025-09-03T23:23:33.000Z |
| msrc_cve-2024-26686 | fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats | 2024-04-02T07:00:00.000Z | 2025-09-03T23:23:24.000Z |
| msrc_cve-2024-26770 | HID: nvidia-shield: Add missing null pointer checks to LED initialization | 2024-04-02T07:00:00.000Z | 2025-09-03T23:22:56.000Z |
| msrc_cve-2024-35843 | iommu/vt-d: Use device rbtree in iopf reporting path | 2024-05-02T07:00:00.000Z | 2025-09-03T23:22:35.000Z |
| msrc_cve-2023-6864 | Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121. | 2023-12-01T08:00:00.000Z | 2025-09-03T23:22:24.000Z |
| msrc_cve-2025-4287 | PyTorch nccl.py torch.cuda.nccl.reduce denial of service | 2025-05-02T00:00:00.000Z | 2025-09-03T23:22:19.000Z |
| msrc_cve-2025-38411 | netfs: Fix double put of request | 2025-07-02T00:00:00.000Z | 2025-09-03T23:21:36.000Z |
| msrc_cve-2024-43823 | PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() | 2024-08-02T00:00:00.000Z | 2025-09-03T23:21:21.000Z |
| msrc_cve-2013-4416 | The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply. | 2013-11-02T00:00:00.000Z | 2025-09-03T23:21:14.000Z |
| msrc_cve-2025-38670 | arm64/entry: Mask DAIF in cpu_switch_to(), call_on_irq_stack() | 2025-08-02T00:00:00.000Z | 2025-09-03T23:20:26.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:13666-1 | gsasl-2.2.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13665-1 | libsystemd0-254.8-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13664-1 | python310-python-multipart-0.0.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13663-1 | libopenssl-3-devel-3.1.4-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13662-1 | libopenssl-1_1-devel-1.1.1w-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13661-1 | libgit2-1_7-1.7.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13660-1 | kernel-devel-6.7.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13659-1 | axis-1.4-307.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13658-1 | libmilter-doc-8.18.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13657-1 | libopenvswitch-3_1-0-3.1.0-18.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13656-1 | libopenssl-1_0_0-devel-1.0.2u-24.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13655-1 | libnetpbm-devel-11.5.2-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13654-1 | java-1_8_0-openjdk-1.8.0.402-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13653-1 | cpio-2.15-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13652-1 | rekor-1.3.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13651-1 | buildkit-0.12.5-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13650-1 | python3-salt-3006.0-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13649-1 | gstreamer-plugins-bad-1.22.9-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13648-1 | xen-4.18.0_06-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13647-1 | glibc-2.39-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13646-1 | cosign-2.2.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13645-1 | virtiofsd-1.10.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13644-1 | runc-1.1.12-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13643-1 | python310-uamqp-1.6.8-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13642-1 | python310-aiohttp-3.9.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13641-1 | nodejs-electron-27.3.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13640-1 | libmbedcrypto7-2.28.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13639-1 | libeverest-3.5.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13638-1 | libssh-config-0.10.6-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13637-1 | curl-8.6.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-envoy-2024-45806 | Potential manipulate `x-envoy` headers from external sources in envoy | 2024-09-21T07:10:58.550Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-34364 | Envoy OOM vector from HTTP async client with unbounded response buffer for mirror response | 2024-06-06T07:17:26.560Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-34363 | Envoy can crash due to uncaught nlohmann JSON exception | 2024-06-06T07:17:42.957Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-34362 | Envoy affected by a crash (use-after-free) in EnvoyQuicServerStream | 2024-06-06T07:17:58.763Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-32976 | Envoy can enter an endless loop while decompressing Brotli data with extra input | 2024-06-06T07:18:14.958Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-32975 | Envoy crashes in QuicheDataReader::PeekVarInt62Length() | 2024-06-06T07:18:33.558Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-32974 | Envoy affected by a crash in EnvoyQuicServerStream::OnInitialHeadersComplete() | 2024-06-06T07:18:49.760Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-32475 | Envoy RELEASE_ASSERT using auto_sni with :authority header > 255 bytes | 2024-04-20T07:17:35.607Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23327 | Crash in proxy protocol when command type of LOCAL in Envoy | 2024-03-06T10:51:34.990Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23326 | Envoy incorrectly accepts HTTP 200 response for entering upgrade mode | 2024-06-06T07:20:12.358Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23325 | Envoy crashes when using an address type that isn’t supported by the OS | 2024-03-06T10:51:44.887Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23324 | Envoy ext auth can be bypassed when Proxy protocol filter sets invalid UTF-8 metadata | 2024-03-06T10:51:54.396Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23323 | Excessive CPU usage when URI template matcher is configured using regex in Envoy | 2024-03-06T10:52:03.196Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-23322 | Envoy crashes when idle and request per try timeout occur within the backoff interval | 2024-03-06T10:52:13.860Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-35945 | Envoy vulnerable to HTTP/2 memory leak in nghttp2 codec | 2024-03-06T10:52:37.891Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-35944 | Envoy vulnerable to incorrect handling of HTTP requests and responses with mixed case schemes | 2024-03-06T10:52:47.709Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-35943 | Envoy vulnerable to CORS filter segfault when origin header is removed | 2024-03-06T10:52:59.499Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-35942 | Envoy's gRPC access log crash caused by the listener draining | 2024-03-06T10:53:10.274Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-35941 | Envoy vulnerable to OAuth2 credentials exploit with permanent validity | 2024-03-06T10:53:21.084Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27496 | Envoy may crash when a redirect url without a state param is received in the oauth filter | 2024-03-06T10:53:33.396Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27493 | Envoy doesn't escape HTTP header values | 2024-03-06T10:53:47.786Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27492 | Envoy may crash when a large request body is processed in Lua filter | 2024-03-06T10:54:01.303Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27491 | Envoy forwards invalid Http2/Http3 downstream headers | 2024-03-06T10:54:12.095Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27488 | Envoy gRPC client produces invalid protobuf when an HTTP header with non-UTF8 value is received. | 2024-03-06T10:54:22.577Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2023-27487 | Envoy client may fake the header `x-envoy-original-path` | 2024-03-06T10:54:33.403Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-29228 | Reachable assertion in Envoy | 2024-03-06T10:54:44.974Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-29227 | Use after free in Envoy | 2024-03-06T10:54:55.978Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-29226 | Trivial authentication bypass in Envoy | 2024-03-06T10:55:07.399Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-29225 | Zip bomb vulnerability in Envoy | 2024-03-06T10:55:19.285Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-29224 | Segmentation fault leading to crash in Envoy | 2024-03-06T10:55:32.703Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-202312-2736 | Beijing Xingwang Ruijie Network Technology Co., Ltd. is a professional network manufactur… | 2024-03-07T22:55:59.879000Z |
| var-202402-2401 | Agile Controller is an automation controller suitable for various industrial application … | 2024-03-07T22:55:40.023000Z |
| var-202401-2673 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:55:40.164000Z |
| var-202401-2652 | SuperMap iServer is a cloud GIS application server based on a high-performance cross-plat… | 2024-03-07T22:55:40.174000Z |
| var-202204-1039 | A vulnerability in the Tool Command Language (Tcl) interpreter of Cisco IOS XE Software c… | 2024-03-07T22:53:03.340000Z |
| var-202401-2669 | TP-Link Tapo APK up to v2.12.703 uses hardcoded credentials for access to the login panel. | 2024-03-07T22:53:00.412000Z |
| var-202401-2417 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the iptv.stb.port parameter in the fu… | 2024-03-07T22:53:00.546000Z |
| var-202401-2391 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:52:24.051000Z |
| var-202401-2674 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG2000GE is a router product. Th… | 2024-03-07T22:51:00.556000Z |
| var-202401-2519 | IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 thro… | 2024-03-07T22:48:01.098000Z |
| var-202401-2418 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stballvlans parameter in… | 2024-03-07T22:43:46.826000Z |
| var-202401-2495 | Tenda AX1803 v1.0.0.1 contains a stack overflow via the adv.iptv.stbpvid parameter in the… | 2024-03-07T22:40:55.390000Z |
| var-202403-0394 | EG3210 is a multi-service security gateway. There is a command execution vulnerabilit… | 2024-03-07T22:40:54.045000Z |
| var-202401-2636 | An improper limitation of a pathname to a restricted directory ('path traversal') vulnera… | 2024-03-07T22:31:26.032000Z |
| var-200609-0995 | OpenSSL before 0.9.7, 0.9.7 before 0.9.7k, and 0.9.8 before 0.9.8c, when using an RSA key… | 2024-03-07T21:38:05.856000Z |
| var-202402-2601 | Beijing Xingwang Ruijie Network Technology Co., Ltd. EG3210 is a router product. Ther… | 2024-03-07T19:11:58.512000Z |
| var-202402-1750 | Dell OS10 Networking Switches running 10.5.2.x and above contain a vulnerability with ze… | 2024-03-06T22:47:01.648000Z |
| var-202402-1804 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:45:37.541000Z |
| var-201903-0559 | A vulnerability in the Cisco Network Plug-and-Play (PnP) agent of Cisco IOS Software and … | 2024-03-05T22:43:45.716000Z |
| var-201903-0600 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.156000Z |
| var-201903-0599 | A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS … | 2024-03-05T22:43:18.191000Z |
| var-201903-0565 | A vulnerability in the Cisco Smart Call Home feature of Cisco IOS and IOS XE Software cou… | 2024-03-05T22:39:11.295000Z |
| var-202402-1924 | Dell OS10 Networking Switches running 10.5.2.x and above contain an OS command injection… | 2024-03-05T22:39:02.953000Z |
| var-201903-0563 | A vulnerability in the ISDN functions of Cisco IOS Software and Cisco IOS XE Software cou… | 2024-03-05T22:37:28.681000Z |
| var-202402-1915 | In Dell Secure Connect Gateway Application and Secure Connect Gateway Appliance (between… | 2024-03-05T22:37:15.368000Z |
| var-202204-0268 | Multiple vulnerabilities in the Cisco IOx application hosting environment on multiple Cis… | 2024-03-05T22:26:38.616000Z |
| var-202310-0300 | Two heap-based buffer overflow vulnerabilities exist in the gwcfg_cgi_set_manage_post_dat… | 2024-03-04T22:57:37.269000Z |
| var-202104-1667 | Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vul… | 2024-03-03T22:14:02.715000Z |
| var-200801-0247 | GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier uses HTTP Basic Authenticat… | 2024-03-02T23:20:39.974000Z |
| var-200803-0332 | ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is no… | 2024-03-01T22:58:19.942000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2010-000002 | WebCalenderC3 cross-site scripting vulnerability | 2010-01-14T21:23+09:00 | 2010-01-14T21:23+09:00 |
| jvndb-2010-000001 | Movable Type access restriction bypass vulnerability | 2010-01-06T16:26+09:00 | 2010-01-06T16:26+09:00 |
| jvndb-2008-000009 | Apache Tomcat fails to properly handle cookie value | 2008-05-21T00:00+09:00 | 2010-01-05T12:14+09:00 |
| jvndb-2009-002358 | Fujitsu Interstage and Systemwalker SSL Vulnerabilities | 2009-12-28T11:19+09:00 | 2009-12-28T11:19+09:00 |
| jvndb-2009-002345 | StartTLS not enabled in Hitachi Storage Command Suite products | 2009-12-24T14:32+09:00 | 2009-12-24T14:32+09:00 |
| jvndb-2009-000084 | P forum vulnerable to directory traversal | 2009-12-17T14:18+09:00 | 2009-12-17T14:18+09:00 |
| jvndb-2009-000077 | Active! mail 2003 cookie disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000076 | Active! mail 2003 session ID disclosure vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000075 | Active! mail 2003 cross-site scripting vulnerability | 2009-12-15T19:52+09:00 | 2009-12-15T19:52+09:00 |
| jvndb-2009-000079 | SEIL/B1 authentication issue | 2009-12-09T19:38+09:00 | 2009-12-09T19:38+09:00 |
| jvndb-2009-000078 | EC-CUBE information disclosure vulnerability | 2009-12-07T14:51+09:00 | 2009-12-07T14:51+09:00 |
| jvndb-2009-000074 | Redmine vulnerable to cross-site request forgery | 2009-11-19T15:45+09:00 | 2009-11-19T15:45+09:00 |
| jvndb-2009-000073 | Redmine vulnerable to cross-site scripting | 2009-11-19T15:45+09:00 | 2009-11-19T15:45+09:00 |
| jvndb-2007-001022 | Apache UTF-7 Encoding Cross-Site Scripting Vulnerability | 2008-05-21T00:00+09:00 | 2009-11-16T11:52+09:00 |
| jvndb-2009-000072 | Roundcube Webmail vulnerable to cross-site request forgery | 2009-11-04T15:27+09:00 | 2009-11-04T15:27+09:00 |
| jvndb-2009-000071 | Roundcube Webmail vulnerable to cross-site request forgery | 2009-11-04T15:27+09:00 | 2009-11-04T15:27+09:00 |
| jvndb-2009-000070 | SEIL/X Series and SEIL/B1 denial of service vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2009-000069 | SEIL/X Series and SEIL/B1 buffer overflow vulnerability | 2009-11-02T16:42+09:00 | 2009-11-02T16:42+09:00 |
| jvndb-2008-000018 | Namazu cross-site scripting vulnerability | 2008-05-21T00:00+09:00 | 2009-10-27T13:43+09:00 |
| jvndb-2009-000066 | Canon IT Solutions Inc. ACCESSGUARDIAN vulnerable to cross-site scripting | 2009-10-20T15:56+09:00 | 2009-10-20T15:56+09:00 |
| jvndb-2009-000067 | Multiple Cybozu products vulnerable to cross-site scripting | 2009-10-15T15:21+09:00 | 2009-10-15T15:21+09:00 |
| jvndb-2009-000065 | SugarCRM vulnerable to cross-site scripting | 2009-10-02T16:02+09:00 | 2009-10-02T16:02+09:00 |
| jvndb-2009-000064 | Directory traversal vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000063 | Cross-site scripting vulnerability in multiple phpspot products | 2009-09-18T18:11+09:00 | 2009-09-18T18:11+09:00 |
| jvndb-2009-000062 | XF-Section vulnerable to cross-site scripting | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-000061 | Third-party cookie issue in Opera | 2009-09-17T15:52+09:00 | 2009-09-17T15:52+09:00 |
| jvndb-2009-001968 | GIF File Processing Denial of Service Vulnerability in Multiple JP1 Products | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-001967 | Multiple Vulnerabilities in Hitachi JP1/File Transmission Server/FTP | 2009-09-14T10:31+09:00 | 2009-09-14T10:31+09:00 |
| jvndb-2009-000060 | Webservice-DIC yoyaku_v41 vulnerable to command injection | 2009-09-11T16:36+09:00 | 2009-09-11T16:36+09:00 |
| jvndb-2009-000059 | Buffer overflow vulnerability in Microsoft Windows | 2009-09-09T17:30+09:00 | 2009-09-09T17:30+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20365-1 | Security update for s390-tools | 2025-05-23T07:59:47Z | 2025-05-23T07:59:47Z |
| suse-su-2025:20352-1 | Security update for s390-tools | 2025-05-23T07:48:14Z | 2025-05-23T07:48:14Z |
| suse-su-2025:20344-1 | Security update for the Linux Kernel | 2025-05-23T07:28:27Z | 2025-05-23T07:28:27Z |
| suse-su-2025:20355-1 | Security update for the Linux Kernel | 2025-05-23T07:28:26Z | 2025-05-23T07:28:26Z |
| suse-su-2025:20354-1 | Security update for the Linux Kernel | 2025-05-23T07:19:59Z | 2025-05-23T07:19:59Z |
| suse-su-2025:20343-1 | Security update for the Linux Kernel | 2025-05-23T07:19:59Z | 2025-05-23T07:19:59Z |
| suse-su-2025:01683-1 | Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP6) | 2025-05-22T21:38:10Z | 2025-05-22T21:38:10Z |
| suse-su-2025:01682-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6) | 2025-05-22T20:04:36Z | 2025-05-22T20:04:36Z |
| suse-su-2025:01677-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP5) | 2025-05-22T20:04:28Z | 2025-05-22T20:04:28Z |
| suse-su-2025:01676-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP5) | 2025-05-22T20:04:19Z | 2025-05-22T20:04:19Z |
| suse-su-2025:01675-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP6) | 2025-05-22T19:34:27Z | 2025-05-22T19:34:27Z |
| suse-su-2025:01668-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP5) | 2025-05-22T19:34:13Z | 2025-05-22T19:34:13Z |
| suse-su-2025:01672-1 | Security update for the Linux Kernel (Live Patch 51 for SLE 15 SP3) | 2025-05-22T19:34:05Z | 2025-05-22T19:34:05Z |
| suse-su-2025:01669-1 | Security update for the Linux Kernel (Live Patch 48 for SLE 15 SP3) | 2025-05-22T19:33:43Z | 2025-05-22T19:33:43Z |
| suse-su-2025:01663-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6) | 2025-05-22T17:33:37Z | 2025-05-22T17:33:37Z |
| suse-su-2025:01662-1 | Security update for python-cryptography | 2025-05-22T16:04:44Z | 2025-05-22T16:04:44Z |
| suse-su-2025:01661-1 | Security update for postgresql14 | 2025-05-22T16:03:02Z | 2025-05-22T16:03:02Z |
| suse-su-2025:01660-1 | Security update for MozillaThunderbird | 2025-05-22T16:01:46Z | 2025-05-22T16:01:46Z |
| suse-su-2025:01658-1 | Security update for open-vm-tools | 2025-05-22T13:34:46Z | 2025-05-22T13:34:46Z |
| suse-su-2025:20370-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_5 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20369-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_4 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20368-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20342-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_5 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20341-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_4 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20340-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_3 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:20339-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_2 | 2025-05-22T13:03:44Z | 2025-05-22T13:03:44Z |
| suse-su-2025:01656-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5) | 2025-05-22T12:33:53Z | 2025-05-22T12:33:53Z |
| suse-su-2025:01655-1 | Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5) | 2025-05-22T12:33:44Z | 2025-05-22T12:33:44Z |
| suse-su-2025:01654-1 | Security update for postgresql13 | 2025-05-22T10:52:10Z | 2025-05-22T10:52:10Z |
| suse-su-2025:01653-1 | Security update for govulncheck-vulndb | 2025-05-22T10:49:48Z | 2025-05-22T10:49:48Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-26085 | Online Medicine Guide /adphar.php文件SQL注入漏洞 | 2025-08-20 | 2025-10-30 |
| cnvd-2025-26084 | Online Medicine Guide /addelivery.php文件SQL注入漏洞 | 2025-08-20 | 2025-10-30 |
| cnvd-2025-26083 | Medical Store Management System UpdateCompany.java文件SQL注入漏洞 | 2025-08-20 | 2025-10-30 |
| cnvd-2025-26082 | Medical Store Management System ChangePassword.java SQL注入漏洞 | 2025-08-20 | 2025-10-30 |
| cnvd-2025-25889 | Newforma Project Center Server远程代码执行漏洞 | 2025-05-07 | 2025-10-30 |
| cnvd-2025-25888 | Newforma Project Center Server信息泄露漏洞(CNVD-2025-25888) | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25887 | Newforma Project Center Server目录遍历漏洞 | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25886 | Newforma Project Center Server信息泄露漏洞(CNVD-2025-25886) | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25885 | Newforma Project Center Server安全绕过漏洞 | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25884 | WordPress Cinza Grid plugin跨站脚本漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25883 | WordPress Plugin Captcha.eu服务端请求伪造攻击漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25882 | WordPress Calendar Plus plugin跨站脚本漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25881 | WordPress Businext plugin文件包含漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25880 | WordPress BugsPatrol plugin反序列化漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25871 | Newforma Project Center Server代码执行漏洞(CNVD-2025-25871) | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25862 | Newforma Project Center Server信息泄露漏洞(CNVD-2025-25862) | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25849 | Newforma Project Center Server跨站脚本漏洞 | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25843 | WordPress Breeze Checkout Plugin缺少授权漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25842 | WordPress Boldermail plugin反序列化漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25841 | WordPress Billey plugin文件包含漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25840 | WordPress Bg Book Publisher plugin跨站脚本漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25839 | WordPress bbp-move-topics plugin跨站脚本漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25838 | WordPress auto-login-after-registration plugin跨站脚本漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25837 | WordPress AppExperts plugin信息泄露漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25836 | WordPress AnyComment plugin SQL注入漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25835 | WordPress Alone Theme plugin代码注入漏洞 | 2025-10-24 | 2025-10-30 |
| cnvd-2025-25829 | Newforma Project Center Server代码执行漏洞 | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25822 | Newforma Project Center Server存在未明漏洞 | 2025-10-21 | 2025-10-30 |
| cnvd-2025-25752 | D-Link DIR-816L /soap.cgi文件os命令注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25751 | D-Link DI-500WF os命令注入漏洞 | 2025-09-02 | 2025-10-30 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2024-AVI-0969 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2024-11-13T00:00:00.000000 | 2024-11-20T00:00:00.000000 |
| certfr-2024-avi-1002 | Vulnérabilité dans les produits Trend Micro | 2024-11-19T00:00:00.000000 | 2024-11-19T00:00:00.000000 |
| certfr-2024-avi-1001 | Vulnérabilité dans les produits Palo Alto Networks | 2024-11-19T00:00:00.000000 | 2024-11-19T00:00:00.000000 |
| CERTFR-2024-AVI-1002 | Vulnérabilité dans les produits Trend Micro | 2024-11-19T00:00:00.000000 | 2024-11-19T00:00:00.000000 |
| CERTFR-2024-AVI-1001 | Vulnérabilité dans les produits Palo Alto Networks | 2024-11-19T00:00:00.000000 | 2024-11-19T00:00:00.000000 |
| certfr-2024-avi-1000 | Multiples vulnérabilités dans Apache Tomcat | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0999 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0998 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0997 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0996 | Multiples vulnérabilités dans GLPI | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0995 | Multiples vulnérabilités dans les produits Nextcloud | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0994 | Vulnérabilité dans Microsoft Azure | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0993 | Vulnérabilité dans les caméras Synology | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0990 | Vulnérabilité dans les produits Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-1000 | Multiples vulnérabilités dans Apache Tomcat | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0999 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0998 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0997 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0996 | Multiples vulnérabilités dans GLPI | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0995 | Multiples vulnérabilités dans les produits Nextcloud | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0994 | Vulnérabilité dans Microsoft Azure | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0993 | Vulnérabilité dans les caméras Synology | 2024-11-18T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| CERTFR-2024-AVI-0990 | Vulnérabilité dans les produits Palo Alto Networks | 2024-11-15T00:00:00.000000 | 2024-11-18T00:00:00.000000 |
| certfr-2024-avi-0992 | Multiples vulnérabilités dans les produits IBM | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| certfr-2024-avi-0991 | Vulnérabilité dans Spring | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| certfr-2024-avi-0989 | Vulnérabilité dans MongoDB | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| certfr-2024-avi-0988 | Multiples vulnérabilités dans Microsoft Edge | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| certfr-2024-avi-0987 | Multiples vulnérabilités dans PostgreSQL | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| CERTFR-2024-AVI-0992 | Multiples vulnérabilités dans les produits IBM | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| CERTFR-2024-AVI-0991 | Vulnérabilité dans Spring | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |