Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15549 |
N/A
|
FluentCMS 2026 Stored XSS via SVG Upload in File Management |
FluentCMS |
FluentCMS |
2026-01-29T19:41:36.216Z | 2026-01-30T15:01:46.719Z |
| CVE-2026-1684 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Free5GC SMF PFCP UDP Endpoint pfcp_reports.go HandleRe… |
Free5GC |
SMF |
2026-01-30T14:32:07.043Z | 2026-01-30T14:59:58.236Z |
| CVE-2026-1685 |
6.3 (4.0)
3.7 (3.1)
3.7 (3.0)
|
D-Link DIR-823X Login sub_40AC74 excessive authentication |
D-Link |
DIR-823X |
2026-01-30T14:32:10.501Z | 2026-01-30T14:55:54.845Z |
| CVE-2026-1682 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Free5GC SMF PFCP UDP Endpoint handler.go HandlePfcpAss… |
Free5GC |
SMF |
2026-01-30T14:02:07.468Z | 2026-01-30T14:50:52.750Z |
| CVE-2026-1683 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
Free5GC SMF PFCP handler.go HandlePfcpSessionReportReq… |
Free5GC |
SMF |
2026-01-30T14:02:09.654Z | 2026-01-30T14:48:18.216Z |
| CVE-2025-12899 |
6.5 (3.1)
|
net: icmp: Out of bound memory read |
zephyrproject-rtos |
Zephyr |
2026-01-30T05:34:19.703Z | 2026-01-30T14:47:21.249Z |
| CVE-2025-6723 |
5.8 (4.0)
|
Untrusted user data can lead to privilege escalation |
Progress Software |
Chef Inspec |
2026-01-30T14:09:41.182Z | 2026-01-30T14:44:30.165Z |
| CVE-2024-4027 |
7.5 (3.1)
|
Undertow: outofmemoryerror in httpservletrequestimpl.g… |
Red Hat |
OpenShift Serverless |
2026-01-30T14:25:54.405Z | 2026-01-30T14:41:46.201Z |
| CVE-2026-0994 |
8.2 (4.0)
|
Denial of Service in Python Protobuf |
Python |
Protobuf |
2026-01-23T14:55:16.876Z | 2026-01-30T14:28:11.435Z |
| CVE-2025-1395 |
8.2 (3.1)
|
Sensitive Data Exposure in CoDeriApp's HeyGarson |
Codriapp Innovation and Software Technologies Inc. |
HeyGarson |
2026-01-30T08:31:53.477Z | 2026-01-30T14:15:53.390Z |
| CVE-2026-22623 |
7.2 (3.1)
|
Due to insufficient input parameter validation on… |
HIKSEMI |
HS-AFS-S1H1 |
2026-01-30T11:02:26.539Z | 2026-01-30T12:45:23.706Z |
| CVE-2026-22624 |
4.3 (3.1)
|
Due to inadequate access control, authenticated u… |
HIKSEMI |
HS-AFS-S1H1 |
2026-01-30T11:03:02.811Z | 2026-01-30T12:44:19.439Z |
| CVE-2026-22625 |
4.6 (3.1)
|
Improper handling of filenames in certain HIKSEMI… |
HIKSEMI |
HS-AFS-S1H1 |
2026-01-30T11:03:14.801Z | 2026-01-30T12:42:55.098Z |
| CVE-2026-22626 |
4.9 (3.1)
|
Due to insufficient input parameter validation on… |
HIKSEMI |
HS-AFS-S1H1 |
2026-01-30T11:03:29.709Z | 2026-01-30T12:40:44.507Z |
| CVE-2025-26385 |
9.5 (4.0)
|
Metasys product command injection vulnerability could … |
Johnson Controls |
Metasys |
2026-01-30T11:05:16.688Z | 2026-01-30T12:38:11.405Z |
| CVE-2026-0709 |
7.2 (3.1)
|
Some Hikvision Wireless Access Points are vulnera… |
Hikvision |
DS-3WAP521-SI |
2026-01-30T11:01:55.633Z | 2026-01-30T12:14:09.072Z |
| CVE-2025-13919 |
4.4 (3.1)
|
Component Object Model (COM) Hijacking in Symantec End… |
Broadcom |
Symantec Endpoint Protection Windows Client |
2026-01-28T16:41:02.765Z | 2026-01-30T07:15:39.833Z |
| CVE-2026-1340 |
9.8 (3.1)
|
A code injection in Ivanti Endpoint Manager Mobil… |
Ivanti |
Endpoint Manager Mobile |
2026-01-29T21:33:11.768Z | 2026-01-30T04:55:44.259Z |
| CVE-2026-1281 |
9.8 (3.1)
|
A code injection in Ivanti Endpoint Manager Mobil… |
Ivanti |
Endpoint Manager Mobile |
2026-01-29T21:31:17.041Z | 2026-01-30T04:55:43.492Z |
| CVE-2026-1457 |
8.5 (4.0)
|
Authenticated RCE Vulnerability Due to Buffer Overflow… |
TP-Link Systems Inc. |
VIGI C485 V1 |
2026-01-29T18:52:39.283Z | 2026-01-30T04:55:42.737Z |
| CVE-2025-13399 |
7.7 (4.0)
|
Insecure Encryption in Communication with the Web Inte… |
TP-Link Systems Inc. |
VX800v v1.0 |
2026-01-29T18:05:28.668Z | 2026-01-30T04:55:41.785Z |
| CVE-2026-24747 |
8.8 (3.1)
|
PyTorch Vulnerable to Remote Code Execution via Untrus… |
pytorch |
pytorch |
2026-01-27T21:13:46.878Z | 2026-01-30T04:55:40.231Z |
| CVE-2023-4822 |
6.7 (3.1)
|
Grafana is an open-source platform for monitoring… |
Grafana |
Grafana Enterprise |
2023-10-16T08:45:59.756Z | 2026-01-30T04:55:38.864Z |
| CVE-2026-25090 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:08.397Z | |
| CVE-2026-25093 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:07.070Z | |
| CVE-2026-25092 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:07.504Z | |
| CVE-2026-25091 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:07.954Z | |
| CVE-2026-25095 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:06.057Z | |
| CVE-2026-25094 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:06.552Z | |
| CVE-2026-25096 |
N/A
|
Not used | N/A | N/A | 2026-01-30T03:55:05.530Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-6397 |
8.6 (3.1)
|
XSS in Ankara Hosting's web site |
Ankara Hosting Website Design |
Website Software |
2026-02-03T12:15:05.310Z | 2026-02-03T14:30:21.419Z |
| CVE-2025-61658 |
1.3 (4.0)
|
Special:GlobalContributions shows edits on wikis the v… |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:59:30.322Z | 2026-02-03T20:59:54.405Z |
| CVE-2025-61657 |
0 (4.0)
|
Improper Neutralization of Input During Web Page … |
Wikimedia Foundation |
Vector |
2026-02-03T01:00:59.692Z | 2026-02-03T21:00:15.785Z |
| CVE-2025-61656 |
0 (4.0)
|
XSS when pasting into VE |
Wikimedia Foundation |
VisualEditor |
2026-02-03T01:02:48.955Z | 2026-02-03T21:00:33.782Z |
| CVE-2025-61655 |
0 (4.0)
|
Stored XSS through system messages in VisualEditor |
Wikimedia Foundation |
VisualEditor |
2026-02-03T01:04:35.944Z | 2026-02-03T21:00:52.979Z |
| CVE-2025-61654 |
0 (4.0)
|
UserInfoCard: Do permission checking when getting coun… |
Wikimedia Foundation |
Thanks |
2026-02-03T01:08:57.273Z | 2026-02-03T21:01:25.051Z |
| CVE-2025-61653 |
2.7 (4.0)
|
Extension:TextExtracts does not check for authorizeRea… |
Wikimedia Foundation |
TextExtracts |
2026-02-03T00:57:17.832Z | 2026-02-03T20:59:33.973Z |
| CVE-2025-61652 |
2.7 (4.0)
|
Action API discussiontoolspageinfo does not check for … |
Wikimedia Foundation |
DiscussionTools |
2026-02-03T00:55:23.974Z | 2026-02-03T20:57:54.168Z |
| CVE-2025-61651 |
0 (4.0)
|
i18n XSS through Special:CheckUser CheckUser helper |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:53:14.630Z | 2026-02-03T21:08:33.097Z |
| CVE-2025-61650 |
1.1 (4.0)
|
UserInfoCard is vulnerable to message key stored XSS |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:15:24.056Z | 2026-02-03T21:06:17.624Z |
| CVE-2025-61649 |
1.1 (4.0)
|
UserInfoCard: Check that performing user has permissio… |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:17:18.105Z | 2026-02-03T21:06:33.288Z |
| CVE-2025-61648 |
0 (4.0)
|
Stored XSS through system messages in CheckUser |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:19:43.150Z | 2026-02-03T21:06:55.920Z |
| CVE-2025-61647 |
0.3 (4.0)
|
UserInfoCard: Don't allow access to information about … |
Wikimedia Foundation |
CheckUser |
2026-02-03T00:02:04.402Z | 2026-02-03T21:04:17.316Z |
| CVE-2025-61646 |
1.2 (4.0)
|
Watchlist group mode reveals authors of edits with hid… |
Wikimedia Foundation |
MediaWiki |
2026-02-03T00:11:28.576Z | 2026-02-03T21:04:46.313Z |
| CVE-2025-61645 |
0 (4.0)
|
CodexTablePager has i18n XSS |
Wikimedia Foundation |
MediaWiki |
2026-02-03T00:13:23.359Z | 2026-02-03T21:05:06.109Z |
| CVE-2025-61644 |
0 (4.0)
|
i18n XSS through Special:Watchlist |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:57:17.522Z | 2026-02-03T21:03:59.441Z |
| CVE-2025-61643 |
2.7 (4.0)
|
EventStreams publishes suppressed recent change entrie… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:33:50.429Z | 2026-02-03T21:15:48.802Z |
| CVE-2025-61642 |
0 (4.0)
|
Stored XSS through system messages provided to CodexHt… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:36:42.550Z | 2026-02-03T21:16:42.867Z |
| CVE-2025-61641 |
1.7 (4.0)
|
API list=allpages with maxsize is making really slow queries |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:39:38.847Z | 2026-02-03T21:09:29.132Z |
| CVE-2025-61640 |
0 (4.0)
|
Stored XSS through system messages in Special:RecentCh… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:42:03.791Z | 2026-02-03T21:09:52.646Z |
| CVE-2025-61639 |
1.7 (4.0)
|
Suppressed blocked IP is visible in Special:BlockList,… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:48:02.939Z | 2026-02-03T21:10:13.392Z |
| CVE-2025-61638 |
0 (4.0)
|
Sanitizer::validateAttributes data-XSS |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:52:10.457Z | 2026-02-03T21:10:33.348Z |
| CVE-2025-61637 |
0 (4.0)
|
Stored XSS through system messages in MW Core |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:54:04.225Z | 2026-02-03T21:10:49.797Z |
| CVE-2025-61636 |
0 (4.0)
|
Codex Special:Block vulnerable to message key XSS |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:23:27.050Z | 2026-02-03T21:13:13.672Z |
| CVE-2025-61635 |
0 (4.0)
|
Add rate limiting to ApiFancyCaptchaReload |
Wikimedia Foundation |
ConfirmEdit |
2026-02-02T23:26:14.537Z | 2026-02-03T21:13:41.151Z |
| CVE-2025-61634 |
0 (4.0)
|
HTML rest endpoint needs PoolCounter and proper parser… |
Wikimedia Foundation |
MediaWiki |
2026-02-02T23:28:53.841Z | 2026-02-03T21:15:20.700Z |
| CVE-2025-59902 |
7.1 (4.0)
|
HTML injection in NICE Chat |
NICE |
NICE Chat |
2026-02-03T09:28:17.240Z | 2026-02-03T17:16:31.965Z |
| CVE-2025-41065 |
5.1 (4.0)
|
Stored Cross-Site Scripting (XSS) in LUNA from Luna Imaging |
Luna Imaging |
LUNA |
2026-02-03T09:27:01.117Z | 2026-02-03T17:16:58.867Z |
| CVE-2025-36436 |
6.4 (3.1)
|
Multiple security vulnerabilities are addressed with I… |
IBM |
Cloud Pak for Business Automation |
2026-02-02T21:51:04.342Z | 2026-02-04T16:54:09.241Z |
| CVE-2025-36253 |
5.9 (3.1)
|
Multiple Vulnerabilities in IBM Concert Software. |
IBM |
Concert |
2026-02-02T21:52:55.260Z | 2026-02-04T16:54:04.031Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-6397 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T13:15:53.457 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61658 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T02:16:08.303 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61657 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.150 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61656 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:08.010 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61655 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:07.887 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61654 | Vulnerability in Wikimedia Foundation Thanks. This vulnerability is associated with program files i… | 2026-02-03T02:16:07.760 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61653 | Vulnerability in Wikimedia Foundation TextExtracts. This vulnerability is associated with program f… | 2026-02-03T02:16:07.653 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61652 | Vulnerability in Wikimedia Foundation DiscussionTools.This issue affects DiscussionTools: from * be… | 2026-02-03T02:16:07.540 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61651 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T02:16:07.407 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61650 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T01:15:58.920 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61649 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T01:15:58.803 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61648 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T01:15:58.680 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61647 | Vulnerability in Wikimedia Foundation CheckUser. This vulnerability is associated with program file… | 2026-02-03T00:16:10.520 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61646 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T01:15:58.560 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61645 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T01:15:58.433 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61644 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:10.397 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61643 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T00:16:10.270 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61642 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:10.140 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61641 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T00:16:10.020 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61640 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:09.890 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61639 | Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation Me… | 2026-02-03T00:16:09.753 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61638 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:09.617 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61637 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:09.480 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61636 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnera… | 2026-02-03T00:16:09.317 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61635 | Vulnerability in Wikimedia Foundation ConfirmEdit. This vulnerability is associated with program fi… | 2026-02-03T00:16:09.193 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-61634 | Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program file… | 2026-02-03T00:16:08.630 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-59902 | HTML injection vulnerability in NICE Chat. This vulnerability allows an attacker to inject and rend… | 2026-02-03T10:15:56.160 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-41065 | Stored Cross-Site Scripting (XSS) vulnerability type in LUNA software v7.5.5.6. This vulnerability … | 2026-02-03T10:15:55.140 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-36436 | IBM Cloud Pak for Business Automation 25.0.0 through 25.0.0 Interim Fix 002, 24.0.1 through 24.0.1 … | 2026-02-02T23:15:59.710 | 2026-02-03T16:44:03.343 |
| fkie_cve-2025-36253 | IBM Concert 1.0.0 through 2.1.0 uses weaker than expected cryptographic algorithms that could allow… | 2026-02-02T23:15:59.550 | 2026-02-03T16:44:03.343 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-mwjm-9r99-f56x |
8.8 (3.1)
8.7 (4.0)
|
M/Monit 3.7.4 contains a privilege escalation vulnerability that allows authenticated users to modi… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mhpf-wffw-p7vp |
8.2 (3.1)
8.8 (4.0)
|
WebDamn User Registration Login System contains a SQL injection vulnerability that allows unauthent… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mgpr-67wh-564q |
7.5 (3.1)
8.7 (4.0)
|
Intelbras Router RF 301K firmware version 1.1.2 contains an authentication bypass vulnerability tha… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-mc39-mcp7-82wg |
8.4 (3.1)
6.9 (4.0)
|
PMB 5.6 contains a local file disclosure vulnerability in getgif.php that allows attackers to read … | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-jjx9-wqhx-pw9m |
7.5 (3.1)
6.7 (4.0)
|
aSc TimeTables 2021.6.2 contains a denial of service vulnerability that allows attackers to crash t… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-hmhj-hh4g-c89r |
8.4 (3.1)
8.4 (4.0)
|
Nidesoft 3GP Video Converter 2.6.18 contains a local stack buffer overflow vulnerability in the lic… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-h5jp-4qg2-hm8r |
8.2 (3.1)
8.8 (4.0)
|
SmartBlog 2.0.1 contains a blind SQL injection vulnerability in the 'id_post' parameter of the deta… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-4q3w-jgfx-4792 |
9.8 (3.1)
5.3 (4.0)
|
Tendenci 12.3.1 contains a CSV formula injection vulnerability in the contact form message field th… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-4p7v-9jxw-m3mp |
5.3 (3.1)
5.5 (4.0)
|
A weakness has been identified in Open5GS up to 2.7.6. This vulnerability affects the function sgwc… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-2rvg-p9mc-wr6c |
4.0 (3.1)
6.9 (4.0)
|
ILIAS Learning Management System 4.3 contains a server-side request forgery vulnerability that allo… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-24h7-3qfx-598p |
8.4 (3.1)
8.4 (4.0)
|
docPrint Pro 8.0 contains a local buffer overflow vulnerability in the 'Add URL' input field that a… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-237r-v2jq-99fc |
9.8 (3.1)
8.7 (4.0)
|
YATinyWinFTP contains a denial of service vulnerability that allows attackers to crash the FTP serv… | 2026-01-28T18:30:48Z | 2026-01-28T18:30:48Z |
| ghsa-x4cc-vgcc-h5h4 |
5.8 (3.1)
|
A flaw was found in libsoup. An attacker who can control the input for the Content-Disposition head… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-wj9p-f539-2mhr |
5.8 (3.1)
|
A flaw was found in the libsoup HTTP library that can cause proxy authentication credentials to be … | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-vq9r-cp35-p48q |
8.8 (3.1)
|
Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. So… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-rr2p-52gj-855x |
6.7 (3.1)
|
Symantec Endpoint Protection, prior to 14.3 RU10 Patch 1, RU9 Patch 2, and RU8 Patch 3, may be susc… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-pxqc-5jg3-xfqm |
2.9 (3.1)
|
In the context switch logic Xen attempts to skip an IBPB in the case of a vCPU returning to a CPU o… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-gjxw-mrg7-952f |
5.5 (3.1)
|
Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of … | 2026-01-27T18:32:15Z | 2026-01-28T18:30:47Z |
| ghsa-76fr-3xrv-xw26 |
5.4 (3.1)
|
Symantec Endpoint Protection, prior to 14.3 RU10 Patch 1, RU9 Patch 2, and RU8 Patch 3, may be susc… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-472x-v993-m3jx |
7.0 (3.1)
|
WSS Agent, prior to 9.8.5, may be susceptible to a Elevation of Privilege vulnerability, which is a… | 2026-01-28T18:30:47Z | 2026-01-28T18:30:47Z |
| ghsa-x5x7-57r8-grmr |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in designthemes OneLife onelife allows Object Injec… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-vgx4-c3r7-g963 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-v3pw-vpp7-pqgc |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-pxhj-59jv-75r7 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-m4gg-mrh3-p357 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-j2jw-74w2-j7r9 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-f8hj-36vr-j5f4 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in strongholdthemes Dental Care CPT dentalcare-cpt … | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-8pwv-j76x-qwv3 |
8.1 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-76rh-jcwv-2rf9 |
5.3 (3.1)
|
Improper Control of Generation of Code ('Code Injection') vulnerability in Shahjahan Jewel FluentFo… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ghsa-3rqq-gxwh-m3xr |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in strongholdthemes Tech Life CPT techlife-cpt allo… | 2026-01-22T18:30:37Z | 2026-01-28T18:30:45Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2014-18 |
|
Multiple unspecified vulnerabilities in Salt (aka SaltStack) before 2014.1.10 allow local… | salt | 2014-08-22T17:55:00Z | 2021-07-05T00:01:26.140564Z |
| pysec-2013-15 |
|
The salt master in Salt (aka SaltStack) 0.11.0 through 0.17.0 does not properly drop grou… | salt | 2013-11-05T18:55:00Z | 2021-07-05T00:01:26.106423Z |
| pysec-2013-14 |
|
Salt (aka SaltStack) before 0.15.0 through 0.17.0 allows remote authenticated minions to … | salt | 2013-11-05T18:55:00Z | 2021-07-05T00:01:26.068729Z |
| pysec-2013-13 |
|
Salt (aka SaltStack) before 0.17.1 allows remote attackers to execute arbitrary YAML code… | salt | 2013-11-05T18:55:00Z | 2021-07-05T00:01:26.005200Z |
| pysec-2020-212 |
|
Multiple cross-site scripting (XSS) vulnerabilities in Roundup before 1.4.20 allow remote… | roundup | 2020-01-30T21:15:00Z | 2021-07-05T00:01:25.863651Z |
| pysec-2020-211 |
|
packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators … | pyrad | 2020-01-28T16:15:00Z | 2021-07-05T00:01:25.072912Z |
| pysec-2019-155 |
|
python-dbusmock before version 0.15.1 AddTemplate() D-Bus method call or DBusTestCase.spa… | python-dbusmock | 2019-04-22T16:29:00Z | 2021-07-05T00:01:25.330872Z |
| pysec-2019-154 |
|
The CreateID function in packet.py in pyrad before 2.1 uses sequential packet IDs, which … | pyrad | 2019-12-09T21:15:00Z | 2021-07-05T00:01:25.106986Z |
| pysec-2018-49 |
|
In PyYAML before 5.1, the yaml.load() API could execute arbitrary code if used with untru… | pyyaml | 2018-06-27T12:29:00Z | 2021-07-05T00:01:25.530537Z |
| pysec-2018-48 |
|
pysaml2 version 4.4.0 and older accept any password when run with python optimizations en… | pysaml2 | 2018-01-02T23:29:00Z | 2021-07-05T00:01:25.224283Z |
| pysec-2017-28 |
|
python-jose before 1.3.2 allows attackers to have unspecified impact by leveraging failur… | python-jose | 2017-01-23T21:59:00Z | 2021-07-05T00:01:25.423622Z |
| pysec-2017-27 |
|
python-fedora 0.8.0 and lower is vulnerable to an open redirect resulting in loss of CSRF… | python-fedora | 2017-09-14T13:29:00Z | 2021-07-05T00:01:25.360500Z |
| pysec-2017-26 |
|
Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across … | pysaml2 | 2017-11-17T04:29:00Z | 2021-07-05T00:01:25.184392Z |
| pysec-2017-25 |
|
XML External Entity (XXE) vulnerability in PySAML2 4.4.0 and earlier allows remote attack… | pysaml2 | 2017-03-24T14:59:00Z | 2021-07-05T00:01:25.139700Z |
| pysec-2016-10 |
|
The verify function in the RSA package for Python (Python-RSA) before 3.3 allows attacker… | rsa | 2016-01-13T15:59:00Z | 2021-07-05T00:01:25.929299Z |
| pysec-2015-17 |
|
The resolve_redirects function in sessions.py in requests 2.1.0 through 2.5.3 allows remo… | requests | 2015-03-18T16:59:00Z | 2021-07-05T00:01:25.716066Z |
| pysec-2014-17 |
|
The parser cache functionality in parsergenerator.py in RPLY (aka python-rply) before 0.7… | rply | 2014-01-28T00:55:00Z | 2021-07-05T00:01:25.895879Z |
| pysec-2014-16 |
|
Cross-site scripting (XSS) vulnerability in cgi/client.py in Roundup before 1.4.20 allows… | roundup | 2014-04-11T15:55:00Z | 2021-07-05T00:01:25.823373Z |
| pysec-2014-15 |
|
Cross-site scripting (XSS) vulnerability in the history display in Roundup before 1.4.20 … | roundup | 2014-04-11T15:55:00Z | 2021-07-05T00:01:25.790750Z |
| pysec-2014-14 |
|
Requests (aka python-requests) before 2.3.0 allows remote servers to obtain sensitive inf… | requests | 2014-10-15T14:55:00Z | 2021-07-05T00:01:25.679942Z |
| pysec-2014-13 |
|
Requests (aka python-requests) before 2.3.0 allows remote servers to obtain a netrc passw… | requests | 2014-10-15T14:55:00Z | 2021-07-05T00:01:25.632991Z |
| pysec-2014-12 |
|
The OpenStack Python client library for Swift (python-swiftclient) 1.0 through 1.9.0 does… | python-swiftclient | 2014-02-18T19:55:00Z | 2021-07-05T00:01:25.452828Z |
| pysec-2013-12 |
|
Salt (aka SaltStack) 0.15.0 through 0.17.0 allows remote authenticated users who are usin… | salt | 2013-11-05T18:55:00Z | 2021-07-05T00:01:25.968572Z |
| pysec-2013-11 |
|
The Python client library for Glance (python-glanceclient) before 0.10.0 does not properl… | python-glanceclient | 2013-08-28T21:55:00Z | 2021-07-05T00:01:25.393576Z |
| pysec-2013-10 |
|
pyshop before 0.7.1 uses HTTP to retrieve packages from the PyPI repository, and does not… | pyshop | 2013-08-06T02:52:00Z | 2021-07-05T00:01:25.257414Z |
| pysec-2011-7 |
|
Multiple SQL injection vulnerabilities in the get_userinfo method in the MySQLAuthHandler… | pywebdav | 2011-03-14T19:55:00Z | 2021-07-05T00:01:25.487912Z |
| pysec-2017-24 |
|
In PyJWT 1.5.0 and below the `invalid_strings` check in `HMACAlgorithm.prepare_key` does … | pyjwt | 2017-08-24T16:29:00Z | 2021-07-05T00:01:24.915848Z |
| pysec-2017-23 |
|
An exploitable vulnerability exists in the YAML parsing functionality in the YAMLParser m… | pyanyapi | 2017-11-08T03:29:00Z | 2021-07-05T00:01:24.581595Z |
| pysec-2016-9 |
|
Pillow before 3.3.2 allows context-dependent attackers to execute arbitrary code by using… | pillow | 2016-11-04T10:59:00Z | 2021-07-05T00:01:24.189764Z |
| pysec-2016-8 |
|
Pillow before 3.3.2 allows context-dependent attackers to obtain sensitive information by… | pillow | 2016-11-04T10:59:00Z | 2021-07-05T00:01:24.104078Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-3468 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.375137Z |
| gsd-2024-3467 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.239156Z |
| gsd-2024-3466 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.073213Z |
| gsd-2024-3465 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.229133Z |
| gsd-2024-3464 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.070091Z |
| gsd-2024-3463 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.365118Z |
| gsd-2024-3462 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.104245Z |
| gsd-2024-3461 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.194392Z |
| gsd-2024-3460 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.064276Z |
| gsd-2024-3459 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.119527Z |
| gsd-2024-3458 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.160386Z |
| gsd-2024-3457 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.075941Z |
| gsd-2024-3456 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.379834Z |
| gsd-2024-3455 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has be… | 2024-04-11T05:03:27.392000Z |
| gsd-2024-3454 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.399220Z |
| gsd-2024-3453 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.402291Z |
| gsd-2024-3452 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.298658Z |
| gsd-2024-3451 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.305078Z |
| gsd-2024-3450 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.173283Z |
| gsd-2024-3449 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.172017Z |
| gsd-2024-3448 | Users with low privileges can perform certain AJAX actions. In this vulnerability instan… | 2024-04-11T05:03:27.391262Z |
| gsd-2024-3447 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-11T05:03:27.312326Z |
| gsd-2024-3446 | A double free vulnerability was found in QEMU virtio devices (virtio-gpu, virtio-serial-b… | 2024-04-11T05:03:27.164685Z |
| gsd-2024-3445 | A vulnerability was found in SourceCodester Laundry Management System 1.0. It has been de… | 2024-04-11T05:03:27.428338Z |
| gsd-2024-3444 | A vulnerability was found in Wangshen SecGate 3600 up to 20240408. It has been classified… | 2024-04-11T05:03:27.403753Z |
| gsd-2024-3443 | A vulnerability classified as problematic was found in SourceCodester Prison Management S… | 2024-04-11T05:03:27.185340Z |
| gsd-2024-3442 | A vulnerability classified as critical has been found in SourceCodester Prison Management… | 2024-04-11T05:03:27.188160Z |
| gsd-2024-3441 | A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rat… | 2024-04-11T05:03:27.050071Z |
| gsd-2024-3440 | A vulnerability was found in SourceCodester Prison Management System 1.0. It has been dec… | 2024-04-11T05:03:27.214422Z |
| gsd-2024-3439 | A vulnerability was found in SourceCodester Prison Management System 1.0. It has been cla… | 2024-04-11T05:03:27.294064Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| MAL-2025-192194 | Malicious code in elf-stats-wintry-fir-892 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192192 | Malicious code in elf-stats-whimsical-rocket-922 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192191 | Malicious code in elf-stats-whimsical-muffin-613 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192190 | Malicious code in elf-stats-whimsical-marshmallow-258 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192189 | Malicious code in elf-stats-whimsical-marshmallow-212 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192188 | Malicious code in elf-stats-whimsical-ledger-767 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192187 | Malicious code in elf-stats-whimsical-lantern-823 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192181 | Malicious code in elf-stats-twinkling-marshmallow-913 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192178 | Malicious code in elf-stats-tinsel-pantry-856 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192173 | Malicious code in elf-stats-sugarplum-star-404 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192171 | Malicious code in elf-stats-sugarplum-fireplace-278 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-192169 | Malicious code in elf-stats-storybook-reindeer-552 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T22:09:11Z |
| MAL-2025-191974 | Malicious code in elf-stats-wintry-northstar-674 (npm) | 2025-12-03T12:25:23Z | 2025-12-23T22:09:11Z |
| mal-2025-192533 | Malicious code in elf-stats-sprucey-train-710 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T21:38:09Z |
| mal-2025-192532 | Malicious code in elf-stats-sparkly-toolkit-821 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T21:38:09Z |
| mal-2025-192531 | Malicious code in elf-stats-sparkly-fir-398 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T21:38:09Z |
| mal-2025-192528 | Malicious code in elf-stats-snowdusted-marshmallow-228 (npm) | 2025-12-11T19:46:09Z | 2025-12-23T21:38:09Z |
| mal-2025-192340 | Malicious code in elf-stats-sparkly-icicle-845 (npm) | 2025-12-05T21:10:10Z | 2025-12-23T21:38:09Z |
| mal-2025-192283 | Malicious code in elf-stats-sparkly-candy-805 (npm) | 2025-12-03T19:42:46Z | 2025-12-23T21:38:09Z |
| mal-2025-192276 | Malicious code in elf-stats-snowy-northstar-860 (npm) | 2025-12-03T19:25:36Z | 2025-12-23T21:38:09Z |
| mal-2025-192267 | Malicious code in elf-stats-snowdusted-lantern-234 (npm) | 2025-12-03T18:57:54Z | 2025-12-23T21:38:09Z |
| mal-2025-192235 | Malicious code in elf-stats-sprucey-stockpile-628 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T21:38:09Z |
| mal-2025-192233 | Malicious code in elf-stats-snowy-candy-518 (npm) | 2025-12-03T17:22:10Z | 2025-12-23T21:38:09Z |
| mal-2025-192167 | Malicious code in elf-stats-storybook-cookiejar-481 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192166 | Malicious code in elf-stats-storybook-cookiejar-394 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192165 | Malicious code in elf-stats-storybook-bow-866 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192163 | Malicious code in elf-stats-starlit-rocket-905 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192162 | Malicious code in elf-stats-starlit-northstar-873 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192160 | Malicious code in elf-stats-sprucey-train-471 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| mal-2025-192157 | Malicious code in elf-stats-sprucey-icicle-606 (npm) | 2025-12-03T15:59:29Z | 2025-12-23T21:38:09Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-0344 | Fortinet FortiManager: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0343 | Red Hat OpenShift: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0342 | Fortinet FortiPortal: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0341 | Fortinet FortiWeb: Mehrere Schwachstellen ermöglichen Ausführung von Kommandos | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0340 | Fortinet FortiAnalyzer und FortiManager: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0339 | Fortinet FortiAnalyzer: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0338 | Adobe Creative Cloud Applikationen: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0337 | Adobe Magento: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0335 | Microsoft Apps (Outlook und PC Manager): Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0334 | Microsoft Azure (Network Watcher und HPC Pack): Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0333 | Microsoft Visual Studio und Visual Studio Code: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0332 | Microsoft Surface: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0330 | Intel Driver and Support Assistant: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0328 | Intel BMC Server Firmware: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0326 | Intel Server M50FCP Family BIOS: Schwachstelle ermöglicht Privilegieneskalation | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0322 | Adobe Photoshop Elements: Schwachstelle ermöglicht Privilegieneskalation | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0321 | Fortinet FortiOS und FortiProxy: Schwachstelle ermöglicht Codeausführung | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0319 | Fortinet FortiOS: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0318 | Insyde UEFI Firmware: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0317 | JetBrains TeamCity: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0315 | Ivanti Cloud Services Appliance: Mehrere Schwachstellen | 2025-02-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0190 | Cacti: Mehrere Schwachstellen | 2025-01-26T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0070 | Fortinet FortiOS: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2025-01-14T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2024-3686 | Drupal: Mehrere Schwachstellen ermöglichen | 2024-12-11T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2024-3418 | Intel Firmware: Mehrere Schwachstellen | 2024-11-12T23:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2024-3088 | Cacti: Mehrere Schwachstellen | 2024-10-06T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2024-1700 | Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-07-23T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2024-1506 | Dell BSAFE: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2024-07-02T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2023-1754 | IBM InfoSphere Information Server: Mehrere Schwachstellen | 2023-07-16T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| wid-sec-w-2022-1575 | wget: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-04-28T22:00:00.000+00:00 | 2025-02-11T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2022:8535 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:13:37+00:00 | 2026-02-03T21:13:46+00:00 |
| rhsa-2022:8534 | Red Hat Security Advisory: OpenShift Container Platform 4.11.16 security update | 2022-11-24T04:11:41+00:00 | 2026-02-03T21:13:45+00:00 |
| rhsa-2022:8250 | Red Hat Security Advisory: grafana-pcp security update | 2022-11-15T15:16:26+00:00 | 2026-02-03T21:13:43+00:00 |
| rhsa-2022:8098 | Red Hat Security Advisory: toolbox security and bug fix update | 2022-11-15T15:12:42+00:00 | 2026-02-03T21:13:43+00:00 |
| rhsa-2022:8057 | Red Hat Security Advisory: grafana security, bug fix, and enhancement update | 2022-11-15T10:31:43+00:00 | 2026-02-03T21:13:43+00:00 |
| rhsa-2022:8008 | Red Hat Security Advisory: buildah security and bug fix update | 2022-11-15T15:06:08+00:00 | 2026-02-03T21:13:41+00:00 |
| rhsa-2022:7950 | Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update | 2022-11-15T12:38:51+00:00 | 2026-02-03T21:13:40+00:00 |
| rhsa-2022:7874 | Red Hat Security Advisory: OpenShift Container Platform 4.8.53 bug fix and security update | 2022-11-18T05:14:22+00:00 | 2026-02-03T21:13:40+00:00 |
| rhsa-2022:7648 | Red Hat Security Advisory: grafana-pcp security update | 2022-11-08T09:46:12+00:00 | 2026-02-03T21:13:39+00:00 |
| rhsa-2022:7548 | Red Hat Security Advisory: Image Builder security, bug fix, and enhancement update | 2022-11-08T09:47:13+00:00 | 2026-02-03T21:13:38+00:00 |
| rhsa-2022:7529 | Red Hat Security Advisory: container-tools:3.0 security update | 2022-11-08T09:43:29+00:00 | 2026-02-03T21:13:36+00:00 |
| rhsa-2022:7519 | Red Hat Security Advisory: grafana security, bug fix, and enhancement update | 2022-11-08T09:34:04+00:00 | 2026-02-03T21:13:36+00:00 |
| rhsa-2022:7469 | Red Hat Security Advisory: container-tools:4.0 security and bug fix update | 2022-11-08T09:43:38+00:00 | 2026-02-03T21:13:36+00:00 |
| rhsa-2022:7457 | Red Hat Security Advisory: container-tools:rhel8 security, bug fix, and enhancement update | 2022-11-08T09:27:39+00:00 | 2026-02-03T21:13:35+00:00 |
| rhsa-2022:7435 | Red Hat Security Advisory: Logging Subsystem 5.4.8 - Red Hat OpenShift security update | 2022-11-16T12:13:01+00:00 | 2026-02-03T21:13:34+00:00 |
| rhsa-2022:7434 | Red Hat Security Advisory: Logging Subsystem 5.5.4 - Red Hat OpenShift security update | 2022-11-10T03:50:23+00:00 | 2026-02-03T21:13:34+00:00 |
| rhsa-2022:7407 | Red Hat Security Advisory: Service Binding Operator 1.3.1 security update | 2022-11-03T13:32:17+00:00 | 2026-02-03T21:13:32+00:00 |
| rhsa-2022:7401 | Red Hat Security Advisory: OpenShift Container Platform 4.12 security update | 2023-01-17T19:35:30+00:00 | 2026-02-03T21:13:32+00:00 |
| rhsa-2022:6905 | Red Hat Security Advisory: OpenShift Container Platform 4.9.50 bug fix and security update | 2022-10-19T19:49:51+00:00 | 2026-02-03T21:13:30+00:00 |
| rhsa-2022:7261 | Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.0.5 security and bug fix update | 2022-10-31T10:58:27+00:00 | 2026-02-03T21:13:29+00:00 |
| rhsa-2022:7216 | Red Hat Security Advisory: OpenShift Container Platform 4.9.51 bug fix and security update | 2022-11-03T05:55:12+00:00 | 2026-02-03T21:13:28+00:00 |
| rhsa-2022:7211 | Red Hat Security Advisory: OpenShift Container Platform 4.10.39 bug fix and security update | 2022-11-02T07:24:04+00:00 | 2026-02-03T21:13:28+00:00 |
| rhsa-2022:7201 | Red Hat Security Advisory: OpenShift Container Platform 4.11.12 security update | 2022-11-02T06:25:16+00:00 | 2026-02-03T21:13:28+00:00 |
| rhsa-2022:7058 | Red Hat Security Advisory: OpenShift sandboxed containers 1.3.1 security fix and bug fix update | 2022-10-19T22:19:53+00:00 | 2026-02-03T21:13:26+00:00 |
| rhsa-2022:6882 | Red Hat Security Advisory: Openshift Logging 5.3.13 security and bug fix release | 2022-11-09T16:43:13+00:00 | 2026-02-03T21:13:26+00:00 |
| rhsa-2022:6537 | Red Hat Security Advisory: Moderate:OpenShift Container Platform 4.11.5 security and extras update | 2022-09-20T08:13:12+00:00 | 2026-02-03T21:13:25+00:00 |
| rhsa-2022:6805 | Red Hat Security Advisory: OpenShift Container Platform 4.10.36 security update | 2022-10-12T08:13:59+00:00 | 2026-02-03T21:13:24+00:00 |
| rhsa-2022:6801 | Red Hat Security Advisory: OpenShift Container Platform 4.8.51 packages and security update | 2022-10-13T07:44:51+00:00 | 2026-02-03T21:13:24+00:00 |
| rhsa-2022:6714 | Red Hat Security Advisory: RHACS 3.72 enhancement and security update | 2022-09-26T15:26:11+00:00 | 2026-02-03T21:13:23+00:00 |
| rhsa-2022:6696 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.4.6 security update and bug fixes | 2022-09-26T14:49:03+00:00 | 2026-02-03T21:13:23+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-21-159-06 | Thales Sentinel LDK Run-Time Environment | 2021-06-08T00:00:00.000000Z | 2021-06-08T00:00:00.000000Z |
| icsa-21-159-05 | Schneider Electric Modicon X80 | 2021-06-08T00:00:00.000000Z | 2021-06-08T00:00:00.000000Z |
| icsa-21-159-04 | Schneider Electric IGSS | 2021-06-08T00:00:00.000000Z | 2021-06-08T00:00:00.000000Z |
| icsa-21-159-03 | AVEVA InTouch | 2021-06-08T00:00:00.000000Z | 2021-06-08T00:00:00.000000Z |
| icsa-21-159-01 | Johnson Controls Metasys | 2021-06-08T00:00:00.000000Z | 2021-06-08T00:00:00.000000Z |
| icsa-21-154-01 | Advantech iView | 2021-06-03T00:00:00.000000Z | 2021-06-03T00:00:00.000000Z |
| icsa-21-147-05 | Mitsubishi Electric MELSEC iQ-R Series | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-04 | Siemens JT2Go and Teamcenter Visualization | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-03 | MesaLabs AmegaView | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-02 | Johnson Controls Sensormatic Electronics VideoEdge | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-147-01 | GENIVI Alliance DLT | 2021-05-27T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-012-03 | Siemens JT2Go and Teamcenter Visualization (Update B) | 2021-01-12T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-20-212-03 | Mitsubishi Electric Factory Automation Products Path Traversal (Update C) | 2020-07-30T00:00:00.000000Z | 2021-05-27T00:00:00.000000Z |
| icsa-21-145-02 | Rockwell Automation Micro800 and MicroLogix 1400 | 2021-05-25T00:00:00.000000Z | 2021-05-25T00:00:00.000000Z |
| icsa-21-145-01 | Datakit Libraries bundled in Luxion KeyShot | 2021-05-25T00:00:00.000000Z | 2021-05-25T00:00:00.000000Z |
| icsa-21-138-01 | ICSA-21-138-01_Emerson Rosemount X-STREAM | 2021-05-18T00:00:00.000000Z | 2021-05-18T00:00:00.000000Z |
| icsa-21-021-04 | Mitsubishi Electric MELFA (Update A) | 2021-01-21T00:00:00.000000Z | 2021-05-18T00:00:00.000000Z |
| icsa-21-133-04 | OPC UA Products Built with the .NET Framework 4.5, 4.0, and 3.5 | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-03 | OPC Foundation UA Products Built with .NET Framework | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-02 | Johnson Controls Sensormatic Tyco AI | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-133-01 | Rockwell Automation Connected Components Workbench | 2021-05-13T00:00:00.000000Z | 2021-05-13T00:00:00.000000Z |
| icsa-21-131-01 | Omron CX-One | 2021-05-11T00:00:00.000000Z | 2021-05-11T00:00:00.000000Z |
| icsa-21-040-08 | Siemens SIMARIS Configuration (Update A) | 2021-02-09T00:00:00.000000Z | 2021-05-11T00:00:00.000000Z |
| icsa-21-124-02 | Delta Electronics CNCSoft ScreenEditor | 2021-05-04T00:00:00.000000Z | 2021-05-04T00:00:00.000000Z |
| icsa-21-124-01 | Advantech WISE-PaaS RMM | 2021-05-04T00:00:00.000000Z | 2021-05-04T00:00:00.000000Z |
| icsa-21-119-03 | Johnson Controls Exacq Technologies exacqVision | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-119-02 | Cassia Networks Access Controller | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-119-01 | Texas Instruments SimpleLink | 2021-04-29T00:00:00.000000Z | 2021-04-29T00:00:00.000000Z |
| icsa-21-112-01 | Horner Automation Cscape | 2021-04-22T00:00:00.000000Z | 2021-04-22T00:00:00.000000Z |
| icsa-21-110-06 | Eaton Intelligent Power Manager | 2021-04-20T00:00:00.000000Z | 2021-04-20T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-dcnm-rest-inj-bct8pwaj | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-rest-inj-BCt8pwAJ | Cisco Data Center Network Manager Command Injection Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-path-trav-2xzonjdr | Cisco Data Center Network Manager Path Traversal Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-path-trav-2xZOnJdR | Cisco Data Center Network Manager Path Traversal Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-info-disclosure-tfx3kerc | Cisco Data Center Network Manager Information Disclosure Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-info-disclosure-tFX3KerC | Cisco Data Center Network Manager Information Disclosure Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-improper-auth-7krd9tdt | Cisco Data Center Network Manager Improper Authorization Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-improper-auth-7Krd9TDT | Cisco Data Center Network Manager Improper Authorization Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-bypass-dyeejums | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-bypass-dyEejUMs | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-auth-bypass-jkubgpu3 | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-dcnm-auth-bypass-JkubGpu3 | Cisco Data Center Network Manager Authentication Bypass Vulnerability | 2020-07-29T16:00:00+00:00 | 2020-07-29T16:00:00+00:00 |
| cisco-sa-webex-html-bj4y9tx | Cisco Webex Meetings and Cisco Webex Meetings Server HTML Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-20T14:31:42+00:00 |
| cisco-sa-webex-html-BJ4Y9tX | Cisco Webex Meetings and Cisco Webex Meetings Server HTML Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-20T14:31:42+00:00 |
| cisco-sa-20190904-ise-xss | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2019-09-04T16:00:00+00:00 | 2020-07-16T17:26:05+00:00 |
| cisco-sa-esa-filt-39jxvmfm | Cisco Email Security Appliance Filter Bypass Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-16T16:44:30+00:00 |
| cisco-sa-ESA-filt-39jXvMfM | Cisco Email Security Appliance Filter Bypass Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-16T16:44:30+00:00 |
| cisco-sa-vmanage-v78fubgv | Cisco SD-WAN vManage Software SQL Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T20:56:20+00:00 |
| cisco-sa-vmanage-v78FubGV | Cisco SD-WAN vManage Software SQL Injection Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T20:56:20+00:00 |
| cisco-sa-vmpresc-syzcs4kc | Cisco SD-WAN Solution Software Privilege Escalation Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmpresc-SyzcS4kC | Cisco SD-WAN Solution Software Privilege Escalation Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmdirtrav-efdaxsjg | Cisco SD-WAN vManage Software Directory Traversal Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmdirtrav-eFdAxsJg | Cisco SD-WAN vManage Software Directory Traversal Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxss-z7bhvhpy | Cisco SD-WAN vManage Software Cross-Site Scripting Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxss-z7bhvHpy | Cisco SD-WAN vManage Software Cross-Site Scripting Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxml-aj4gfekd | Cisco SD-WAN vManage Software XML External Entity Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanxml-Aj4GFEKd | Cisco SD-WAN vManage Software XML External Entity Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanwebid-5qwmccvt | Cisco SD-WAN vManage Software Information Disclosure Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanwebid-5QWMcCvt | Cisco SD-WAN vManage Software Information Disclosure Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| cisco-sa-vmanrce-4jtwt28p | Cisco SD-WAN vManage Software Remote Code Execution Vulnerability | 2020-07-15T16:00:00+00:00 | 2020-07-15T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-38500 | xfrm: interface: fix use-after-free after changing collect_md xfrm interface | 2025-08-02T00:00:00.000Z | 2025-09-03T23:19:48.000Z |
| msrc_cve-2022-46883 | Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 106. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.<br />*Note*: This advisory was added on December 13th, 2022 after discovering it was inadvertently left out of the original advisory. The fix was included in the original release of Firefox 107. This vulnerability affects Firefox < 107. | 2022-12-02T00:00:00.000Z | 2025-09-03T23:19:26.000Z |
| msrc_cve-2024-26866 | spi: lpspi: Avoid potential use-after-free in probe() | 2024-04-02T07:00:00.000Z | 2025-09-03T23:19:20.000Z |
| msrc_cve-2024-26677 | rxrpc: Fix delayed ACKs to not set the reference serial number | 2024-04-02T07:00:00.000Z | 2025-09-03T23:18:53.000Z |
| msrc_cve-2025-52496 | Mbed TLS before 3.6.4 has a race condition in AESNI detection if certain compiler optimizations occur. An attacker may be able to extract an AES key from a multithreaded program, or perform a GCM forgery. | 2025-07-02T00:00:00.000Z | 2025-09-03T23:18:31.000Z |
| msrc_cve-2023-39318 | Improper handling of HTML-like comments in script contexts in html/template | 2023-09-01T00:00:00.000Z | 2025-09-03T23:18:21.000Z |
| msrc_cve-2023-52757 | smb: client: fix potential deadlock when releasing mids | 2024-05-02T07:00:00.000Z | 2025-09-03T23:17:53.000Z |
| msrc_cve-2025-8844 | NASM Netwide Assember preproc.c parse_smacro_template null pointer dereference | 2025-08-02T00:00:00.000Z | 2025-09-03T23:16:28.000Z |
| msrc_cve-2024-26893 | firmware: arm_scmi: Fix double free in SMC transport cleanup path | 2024-04-02T07:00:00.000Z | 2025-09-03T23:15:44.000Z |
| msrc_cve-2010-2249 | Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks. | 2010-06-02T00:00:00.000Z | 2025-09-03T23:15:39.000Z |
| msrc_cve-2024-35870 | smb: client: fix UAF in smb2_reconnect_server() | 2024-05-02T07:00:00.000Z | 2025-09-03T23:14:40.000Z |
| msrc_cve-2025-38646 | wifi: rtw89: avoid NULL dereference when RX problematic packet on unsupported 6 GHz band | 2025-08-02T00:00:00.000Z | 2025-09-03T23:14:25.000Z |
| msrc_cve-2023-42364 | A use-after-free vulnerability in BusyBox v.1.36.1 allows attackers to cause a denial of service via a crafted awk pattern in the awk.c evaluate function. | 2023-11-01T07:00:00.000Z | 2025-09-03T23:14:03.000Z |
| msrc_cve-2025-0677 | Grub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinks | 2025-02-02T00:00:00.000Z | 2025-09-03T23:13:01.000Z |
| msrc_cve-2024-23829 | aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators | 2024-01-01T08:00:00.000Z | 2025-09-03T23:12:33.000Z |
| msrc_cve-2024-6610 | Form validation popups could capture escape key presses. Therefore, spamming form validation messages could be used to prevent users from exiting full-screen mode. This vulnerability affects Firefox < 128 and Thunderbird < 128. | 2024-07-01T07:00:00.000Z | 2025-09-03T23:12:15.000Z |
| msrc_cve-2022-49342 | net: ethernet: bgmac: Fix refcount leak in bcma_mdio_mii_register | 2025-02-02T00:00:00.000Z | 2025-09-03T23:11:30.000Z |
| msrc_cve-2018-25091 | urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in host, port, or scheme). This can allow for credentials in the authorization header to be exposed to unintended hosts or transmitted in cleartext. NOTE: this issue exists because of an incomplete fix for CVE-2018-20060 (which was case-sensitive). | 2023-10-01T00:00:00.000Z | 2025-09-03T23:11:12.000Z |
| msrc_cve-2022-49901 | blk-mq: Fix kmemleak in blk_mq_init_allocated_queue | 2025-05-02T00:00:00.000Z | 2025-09-03T23:11:01.000Z |
| msrc_cve-2023-52737 | btrfs: lock the inode in shared mode before starting fiemap | 2024-05-02T07:00:00.000Z | 2025-09-03T23:10:25.000Z |
| msrc_cve-2025-38237 | media: platform: exynos4-is: Add hardware sync wait to fimc_is_hw_change_mode() | 2025-07-02T00:00:00.000Z | 2025-09-03T23:10:02.000Z |
| msrc_cve-2025-38640 | bpf: Disable migration in nf_hook_run_bpf(). | 2025-08-02T00:00:00.000Z | 2025-09-03T23:09:33.000Z |
| msrc_cve-2025-38364 | maple_tree: fix MA_STATE_PREALLOC flag in mas_preallocate() | 2025-07-02T00:00:00.000Z | 2025-09-03T23:08:55.000Z |
| msrc_cve-2023-3482 | When Firefox is configured to block storage of all cookies, it was still possible to store data in localstorage by using an iframe with a source of 'about:blank'. This could have led to malicious websites storing tracking data without permission. This vulnerability affects Firefox < 115. | 2023-07-01T07:00:00.000Z | 2025-09-03T23:08:41.000Z |
| msrc_cve-2018-14042 | In Bootstrap before 4.1.2, XSS is possible in the data-container property of tooltip. | 2018-07-02T00:00:00.000Z | 2025-09-03T23:08:20.000Z |
| msrc_cve-2025-8843 | NASM Netwide Assember outmacho.c macho_no_dead_strip heap-based overflow | 2025-08-02T00:00:00.000Z | 2025-09-03T23:08:17.000Z |
| msrc_cve-2021-33450 | An issue was discovered in NASM version 2.16rc0. There are memory leaks in nasm_calloc() in nasmlib/alloc.c. | 2022-07-02T00:00:00.000Z | 2025-09-03T23:07:56.000Z |
| msrc_cve-2024-35784 | btrfs: fix deadlock with fiemap and extent locking | 2024-05-02T07:00:00.000Z | 2025-09-03T23:07:39.000Z |
| msrc_cve-2024-50009 | cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value | 2024-10-01T07:00:00.000Z | 2025-09-03T23:06:55.000Z |
| msrc_cve-2023-49558 | An issue in YASM 1.3.0.86.g9def allows a remote attacker to cause a denial of service via the expand_mmac_params function in the modules/preprocs/nasm/nasm-pp.c component. | 2024-01-01T08:00:00.000Z | 2025-09-03T23:05:13.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:13636-1 | ansible-core-2.16.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13635-1 | python3-onionshare-2.6-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13634-1 | python310-grpcio-1.60.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13633-1 | libopenssl-3-devel-3.1.4-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13632-1 | libxreaderdocument3-4.0.2-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13631-1 | squid-6.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13630-1 | python3-salt-3006.0-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13629-1 | ghostscript-10.02.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13628-1 | tinyssh-20240101-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13627-1 | libtiff-devel-32bit-4.6.0-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13626-1 | MozillaFirefox-122.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13625-1 | libnss_slurm2-23.11.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13624-1 | sevctl-0.4.3-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13623-1 | libruby3_3-3_3-3.3.0-1.2 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13622-1 | mlocate-0.26-37.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13621-1 | grpc-devel-1.60.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13620-1 | coredns-1.11.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13619-1 | libmspack-devel-0.11-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13618-1 | coreutils-9.4-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13617-1 | MozillaThunderbird-115.7.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13616-1 | pam-1.6.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13615-1 | etcd-3.5.11-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13614-1 | atril-1.26.1-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13613-1 | libzstd-devel-1.5.5-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13612-1 | rear-2.7-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13611-1 | python310-Pillow-10.2.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13610-1 | python310-Mako-1.3.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13609-1 | openjfx-17.0.10.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13608-1 | apache-sshd-2.12.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:13607-1 | jupyter-panel-1.3.7-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-envoy-2022-23606 | Crash when a cluster is deleted in Envoy | 2024-03-06T10:55:43.299Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-21657 | X.509 Extended Key Usage and Trust Purposes bypass in Envoy | 2024-03-06T10:55:54.594Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-21656 | X.509 subjectAltName matching bypass in Envoy | 2024-03-06T10:56:05.460Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-21655 | Incorrect handling of internal redirects results in crash in Envoy | 2024-03-06T10:56:14.571Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2022-21654 | Incorrect configuration handling allows TLS session re-use without re-validation in Envoy | 2024-03-06T10:56:26.107Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-43826 | Crash when tunneling TCP over HTTP in Envoy | 2024-03-06T10:56:37.576Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-43825 | Use-after-free in Envoy | 2024-03-06T10:56:48.783Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-43824 | Null pointer dereference in envoy | 2024-03-06T10:56:58.513Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-39206 | Incorrect Authorization with specially crafted requests | 2024-03-06T10:57:12.174Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-39204 | Excessive CPU usage in Pomerium | 2024-03-06T10:57:21.991Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-39162 | Incorrect handling of H2 GOAWAY + SETTINGS frames | 2024-03-06T10:57:33.498Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-32781 | Continued processing of requests after locally generated response | 2024-03-06T10:57:44.379Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-32780 | Incorrect handling of H/2 GOAWAY followed by SETTINGS frames | 2024-03-06T10:57:54.997Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-32779 | Incorrectly handling of URI '#fragment' element as part of the path element | 2024-03-06T10:58:04.972Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-32778 | Excessive CPU utilization when closing HTTP/2 streams | 2024-03-06T10:58:13.992Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-32777 | Incorrect concatenation of multiple value request headers in ext-authz extension | 2024-03-06T10:58:27.361Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-29492 | Bypass of path matching rules using escaped slash characters | 2024-03-06T10:58:39.469Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2021-21378 | JWT authentication bypass with unknown issuer token | 2024-03-06T10:59:25.814Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2020-15104 | TLS Validation Vulnerability in Envoy | 2024-03-06T11:00:31.369Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2025-25016 | Kibana Unrestricted Upload of File | 2025-05-03T05:39:08.441Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2025-25015 | Kibana arbitrary code execution via prototype pollution | 2025-03-07T20:52:06.865Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-52972 | Kibana allocation of resources without limits or throttling leads to crash | 2025-01-27T07:09:41.033Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-43710 | Kibana server-side request forgery | 2025-01-27T07:09:48.425Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-37281 | Kibana Denial of Service issue | 2024-08-01T07:17:29.618Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-37279 | Kibana Broken Access Control issue | 2024-06-17T07:17:38.239Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-23442 | Kibana open redirect issue | 2024-06-18T07:17:33.634Z | 2025-05-20T10:02:07.006Z |
| bit-elk-2024-11390 | Kibana Unrestricted Upload of File with Dangerous Type Can Lead to XSS | 2025-05-03T05:37:15.652Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2024-52980 | Elasticsearch Uncontrolled Resource Consumption vulnerability | 2025-04-10T07:10:13.338Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2024-43709 | Elasticsearch allocation of resources without limits or throttling leads to crash | 2025-02-01T07:09:48.913Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2024-37280 | Elasticsearch StackOverflow vulnerability | 2024-06-17T07:17:36.635Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Updated |
|---|---|---|
| var-201006-0273 | Linksys WAP54Gv3 firmware 3.04.03 and earlier uses a hard-coded username (Gemtek) and pas… | 2024-03-01T22:56:13.017000Z |
| var-201007-0198 | Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows loc… | 2024-03-01T22:55:17.916000Z |
| var-202007-0079 | An improper authentication vulnerability in SSL VPN in FortiOS 6.4.0, 6.2.0 to 6.2.3, 6.0… | 2024-03-01T22:49:15.179000Z |
| var-200907-0114 | The Huawei D100 stores the administrator's account name and password in cleartext in a co… | 2024-03-01T22:41:28.183000Z |
| var-201209-0235 | Microsoft Windows Phone 7 does not verify the domain name in the subject's Common Name (C… | 2024-03-01T22:40:04.392000Z |
| var-200905-0048 | iChat in Apple Mac OS X 10.5 before 10.5.7 disables SSL for AOL Instant Messenger (AIM) c… | 2024-03-01T21:53:31.210000Z |
| var-201912-0613 | A use after free issue was addressed with improved memory management. This issue is fixed… | 2024-03-01T20:37:13.449000Z |
| var-200809-0567 | The Networking subsystem in Apple iPod touch 2.0 through 2.0.2, and iPhone 2.0 through 2.… | 2024-03-01T20:07:50.871000Z |
| var-200303-0122 | Buffer overflow in Sendmail 5.79 to 8.12.7 allows remote attackers to execute arbitrary c… | 2024-03-01T20:03:34.039000Z |
| var-201402-0405 | The SSLVerifySignedServerKeyExchange function in libsecurity_ssl/lib/sslKeyExchange.c in … | 2024-03-01T19:51:35.543000Z |
| var-201106-0150 | The Certificate Trust Policy component in Apple Mac OS X before 10.6.8 does not perform C… | 2024-03-01T19:30:40.278000Z |
| var-202401-2283 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-02-29T23:19:33.744000Z |
| var-202401-2084 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-02-29T23:16:24.012000Z |
| var-202401-0254 | There is a possible information disclosure due to a missing permission check. This could … | 2024-02-29T23:15:30.743000Z |
| var-200212-0581 | Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universa… | 2024-02-29T23:15:29.315000Z |
| var-202401-2186 | TOTOLINK A8000RU v7.1cu.643_B20200521 was discovered to contain a hardcoded password for … | 2024-02-29T23:13:48.024000Z |
| var-202401-0564 | In checkDebuggingDisallowed of DeviceVersionFragment.java, there is a possible way t… | 2024-02-29T23:12:50.065000Z |
| var-202401-2141 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-02-29T23:12:49.820000Z |
| var-202401-2259 | TOTOLINK A3300R V17.0.0cu.557_B20221024 was discovered to contain a command injection vul… | 2024-02-29T23:08:15.450000Z |
| var-200801-0023 | Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and … | 2024-02-29T22:55:27.112000Z |
| var-202308-2597 | OS command injection vulnerability in ELECOM network devices allows an authenticated user… | 2024-02-29T22:50:12.395000Z |
| var-200711-0309 | CoreText in Apple Mac OS X 10.4 through 10.4.10 allows attackers to cause a denial of ser… | 2024-02-29T21:33:21.636000Z |
| var-200807-0073 | Mozilla Firefox 3 before 3.0.1 on Mac OS X allows remote attackers to cause a denial of s… | 2024-02-29T20:42:33.575000Z |
| var-201605-0211 | The xmlStringGetNodeList function in tree.c in libxml2 2.9.3 and earlier, when used in re… | 2024-02-29T19:41:39.979000Z |
| var-200901-0727 | The XSL stylesheet implementation in WebKit in Apple Safari before 4.0, iPhone OS 1.0 thr… | 2024-02-29T19:24:21.374000Z |
| var-200308-0014 | Off-by-one error in the fb_realpath() function, as derived from the realpath function in … | 2024-02-28T22:37:56.784000Z |
| var-202202-1806 | Improper input validation in Exynos baseband prior to SMR Feb-2022 Release 1 allows attac… | 2024-02-28T22:21:42.312000Z |
| var-201701-0167 | An issue was discovered on the D-Link DWR-932B router. WPS PIN generation is based on sra… | 2024-02-28T22:16:09.429000Z |
| var-201003-0130 | Use-after-free vulnerability in WebKit in Apple Safari before 4.0.5 allows remote attacke… | 2024-02-28T21:23:47.906000Z |
| var-200711-0288 | The kernel in Apple Mac OS X 10.4 through 10.4.10 does not reset the current Mach Thread … | 2024-02-28T19:38:33.132000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2009-001931 | Issue of Access Control Failure in Hitachi Device Manager Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-001930 | Issue of Access Control Failure in Groupmax Scheduler Server | 2009-08-31T15:52+09:00 | 2009-08-31T15:52+09:00 |
| jvndb-2009-000058 | bingo!CMS core and bingo!CMS vulnerable to cross-site request forgery | 2009-08-27T15:29+09:00 | 2009-08-27T15:29+09:00 |
| jvndb-2009-000055 | Site Calendar 'mycaljp' vulnerable to cross-site scripting | 2009-08-26T15:25+09:00 | 2009-08-26T15:25+09:00 |
| jvndb-2009-001893 | Hitachi Business Logic Cross-Site Scripting Vulnerability | 2009-08-25T10:50+09:00 | 2009-08-25T10:50+09:00 |
| jvndb-2009-000056 | SugarCRM vulnerable to SQL injection | 2009-08-24T16:25+09:00 | 2009-08-24T16:25+09:00 |
| jvndb-2009-000054 | ColdFusion vulnerable to cross-site scripting | 2009-08-19T16:33+09:00 | 2009-08-19T16:33+09:00 |
| jvndb-2007-000295 | APOP password recovery vulnerability | 2008-05-21T00:00+09:00 | 2009-08-06T11:39+09:00 |
| jvndb-2009-000053 | Cross-site request forgery vulnerability in FreeNAS | 2009-08-05T15:59+09:00 | 2009-08-05T15:59+09:00 |
| jvndb-2009-000052 | Cross-site scripting vulnerability in FreeNAS | 2009-08-05T15:58+09:00 | 2009-08-05T15:58+09:00 |
| jvndb-2009-000051 | Webservice-DIC yoyaku_v41 vulnerable to command injection | 2009-07-31T15:34+09:00 | 2009-07-31T15:34+09:00 |
| jvndb-2009-000050 | MySQL Connector/J vulnerable to SQL injection | 2009-07-29T15:30+09:00 | 2009-07-29T15:30+09:00 |
| jvndb-2009-000020 | Movable Type cross-site scripting vulnerability | 2009-04-28T16:18+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000002 | Movable Type Enterprise cross-site scripting vulnerability | 2009-01-13T18:50+09:00 | 2009-07-29T12:22+09:00 |
| jvndb-2009-000049 | Cross-site scripting vulnerability in RevoCounter CGI (Animation Counter) | 2009-07-24T17:19+09:00 | 2009-07-24T17:19+09:00 |
| jvndb-2009-000048 | shiromuku(fs6)DIARY cross-site scripting vulnerability | 2009-07-15T18:15+09:00 | 2009-07-15T18:15+09:00 |
| jvndb-2008-000069 | Apache Tomcat allows access from a non-permitted IP address | 2008-10-10T15:44+09:00 | 2009-07-08T11:38+09:00 |
| jvndb-2009-001545 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Zip File Scanning Utility | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-001544 | Cosminexus Processing Kit for XML and Hitachi Developer's Kit for Java Possible Unauthorized Access through Vulnerability in Encoding Process | 2009-07-07T11:12+09:00 | 2009-07-07T11:12+09:00 |
| jvndb-2009-000046 | PHP-I-BOARD from Let's PHP! vulnerable to directory traversal | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000045 | PHP-I-BOARD from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:54+09:00 | 2009-07-01T17:54+09:00 |
| jvndb-2009-000044 | Tree BBS from Let's PHP! vulnerable to cross-site scripting | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000043 | Movable Type access restriction bypass vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2009-000042 | Movable Type cross-site scripting vulnerability | 2009-07-01T17:53+09:00 | 2009-07-01T17:53+09:00 |
| jvndb-2008-000075 | EC-CUBE vulnerable to SQL injection | 2008-11-06T16:04+09:00 | 2009-06-25T15:44+09:00 |
| jvndb-2009-000041 | Cross-site scripting vulnerability in PukiWikiMod from XOOPS Maniac | 2009-06-19T16:35+09:00 | 2009-06-19T16:35+09:00 |
| jvndb-2009-000040 | iPhone OS denial of service (DoS) vulnerability | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000039 | Buffer overflow vulnerability in Microsoft Works converters | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000038 | Cross-site scripting vulnerability in activeCollab | 2009-06-18T17:54+09:00 | 2009-06-18T17:54+09:00 |
| jvndb-2009-000035 | Predictable session ID vulnerability in Serene Bach | 2009-06-18T17:53+09:00 | 2009-06-18T17:53+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:01652-1 | Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6) | 2025-05-22T09:04:21Z | 2025-05-22T09:04:21Z |
| suse-su-2025:01651-1 | Security update for ucode-intel | 2025-05-22T08:52:40Z | 2025-05-22T08:52:40Z |
| suse-su-2025:01650-1 | Security update for ucode-intel | 2025-05-22T08:51:44Z | 2025-05-22T08:51:44Z |
| suse-su-2025:01649-1 | Security update for python-tornado6 | 2025-05-22T07:44:54Z | 2025-05-22T07:44:54Z |
| suse-su-2025:20336-1 | Security update for ca-certificates-mozilla | 2025-05-21T15:40:23Z | 2025-05-21T15:40:23Z |
| suse-su-2025:20335-1 | Security update for runc | 2025-05-21T15:39:04Z | 2025-05-21T15:39:04Z |
| suse-su-2025:20334-1 | Security update for perl | 2025-05-21T15:37:32Z | 2025-05-21T15:37:32Z |
| suse-su-2025:01644-1 | Security update for postgresql17 | 2025-05-21T14:35:16Z | 2025-05-21T14:35:16Z |
| suse-su-2025:01640-1 | Security update for the Linux Kernel | 2025-05-21T11:52:08Z | 2025-05-21T11:52:08Z |
| suse-su-2025:01639-1 | Security update for libwebp | 2025-05-21T11:44:11Z | 2025-05-21T11:44:11Z |
| suse-su-2025:20333-1 | Security update for libxml2 | 2025-05-21T11:23:02Z | 2025-05-21T11:23:02Z |
| suse-su-2025:20353-1 | Security update for runc | 2025-05-21T11:11:43Z | 2025-05-21T11:11:43Z |
| suse-su-2025:20332-1 | Security update for glibc | 2025-05-21T11:04:20Z | 2025-05-21T11:04:20Z |
| suse-su-2025:01638-1 | Security update for openssh | 2025-05-21T10:48:36Z | 2025-05-21T10:48:36Z |
| suse-su-2025:01633-1 | Security update for the Linux Kernel | 2025-05-21T10:09:47Z | 2025-05-21T10:09:47Z |
| suse-su-2025:01631-1 | Security update for s390-tools | 2025-05-21T10:03:45Z | 2025-05-21T10:03:45Z |
| suse-su-2025:01627-1 | Security update for the Linux Kernel | 2025-05-21T10:02:17Z | 2025-05-21T10:02:17Z |
| suse-su-2025:01620-1 | Security update for the Linux Kernel | 2025-05-21T09:58:56Z | 2025-05-21T09:58:56Z |
| suse-su-2025:01619-1 | Security update for s390-tools | 2025-05-21T09:57:18Z | 2025-05-21T09:57:18Z |
| suse-su-2025:01615-1 | Security update for grub2 | 2025-05-21T09:53:07Z | 2025-05-21T09:53:07Z |
| suse-su-2025:01614-1 | Security update for the Linux Kernel | 2025-05-21T09:52:35Z | 2025-05-21T09:52:35Z |
| suse-su-2025:01611-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4) | 2025-05-21T08:03:50Z | 2025-05-21T08:03:50Z |
| suse-su-2025:01610-1 | Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3) | 2025-05-21T07:03:54Z | 2025-05-21T07:03:54Z |
| suse-su-2025:01603-1 | Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP6) | 2025-05-20T12:04:02Z | 2025-05-20T12:04:02Z |
| suse-su-2025:01601-1 | Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6) | 2025-05-20T12:03:40Z | 2025-05-20T12:03:40Z |
| suse-su-2025:01600-1 | Security update for the Linux Kernel | 2025-05-20T11:49:32Z | 2025-05-20T11:49:32Z |
| suse-su-2025:01599-1 | Security update for glib2 | 2025-05-20T10:52:51Z | 2025-05-20T10:52:51Z |
| suse-su-2025:20331-1 | Security update for python-httpcore, python-h11 | 2025-05-20T08:49:02Z | 2025-05-20T08:49:02Z |
| suse-su-2025:20330-1 | Security update for python-h11, python-httpcore | 2025-05-20T08:39:06Z | 2025-05-20T08:39:06Z |
| suse-su-2025:01598-1 | Security update for the Linux Kernel (Live Patch 63 for SLE 12 SP5) | 2025-05-20T08:34:45Z | 2025-05-20T08:34:45Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-25750 | D-Link DI-8400 yyxz.asp文件堆栈缓冲区溢出漏洞 | 2025-09-05 | 2025-10-30 |
| cnvd-2025-25749 | Simple Grading System login.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25748 | Simple Grading System edit_student.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25747 | Simple Grading System edit_account.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25746 | Online Bidding System showprod.php文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25745 | Online Bidding System login.php文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25744 | Online Bidding System details.php文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25743 | Online Bidding System bidnow.php文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25742 | Online Bidding System bidlog.php文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25741 | Online Bidding System administrator文件SQL注入漏洞 | 2025-06-27 | 2025-10-30 |
| cnvd-2025-25735 | Human Resource Integrated System action.php文件跨站脚本漏洞 | 2025-08-04 | 2025-10-30 |
| cnvd-2025-25731 | Simple Grading System delete_student.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25730 | Simple Grading System delete_account.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25729 | Simple Grading System add_student_grade.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25728 | Online Event Judging System create_account.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25727 | Human Resource Integrated System login_timeee.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25726 | Human Resource Integrated System login_query12.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25725 | Human Resource Integrated System login_attendance2.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25724 | Human Resource Integrated System login.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25723 | Human Resource Integrated System log_query.php文件SQL注入漏洞 | 2025-09-02 | 2025-10-30 |
| cnvd-2025-25722 | Online Event Judging System index.php文件SQL注入漏洞 | 2025-09-10 | 2025-10-30 |
| cnvd-2025-25721 | Online Event Judging System /review_search.php文件SQL注入漏洞 | 2025-09-10 | 2025-10-30 |
| cnvd-2025-25720 | Human Resource Integrated System Childs Name字段跨站脚本漏洞 | 2025-09-18 | 2025-10-30 |
| cnvd-2025-25719 | Online Bidding System weweee.php文件SQL注入漏洞 | 2025-09-24 | 2025-10-30 |
| cnvd-2025-25718 | Online Bidding System remove.php文件SQL注入漏洞 | 2025-09-25 | 2025-10-30 |
| cnvd-2025-25717 | Online Bidding System index.php文件SQL注入漏洞 | 2025-09-25 | 2025-10-30 |
| cnvd-2025-25716 | Online Bidding System bidupdate.php文件SQL注入漏洞 | 2025-09-25 | 2025-10-30 |
| cnvd-2025-25740 | Automated Voting System存在未明漏洞 | 2025-07-11 | 2025-10-29 |
| cnvd-2025-25739 | Job Diary view-details.php文件SQL注入漏洞 | 2025-07-18 | 2025-10-29 |
| cnvd-2025-25738 | Job Diary search.php文件SQL注入漏洞 | 2025-07-18 | 2025-10-29 |
| ID | Description | Published | Updated |
|---|---|---|---|
| CERTFR-2024-AVI-0989 | Vulnérabilité dans MongoDB | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| CERTFR-2024-AVI-0988 | Multiples vulnérabilités dans Microsoft Edge | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| CERTFR-2024-AVI-0987 | Multiples vulnérabilités dans PostgreSQL | 2024-11-15T00:00:00.000000 | 2024-11-15T00:00:00.000000 |
| certfr-2024-avi-0986 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| certfr-2024-avi-0985 | Multiples vulnérabilités dans Stormshield Network Security | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| certfr-2024-avi-0984 | Vulnérabilité dans les produits Symfony | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| certfr-2024-avi-0983 | Vulnérabilité dans les produits Mozilla | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| CERTFR-2024-AVI-0986 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| CERTFR-2024-AVI-0985 | Multiples vulnérabilités dans Stormshield Network Security | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| CERTFR-2024-AVI-0984 | Vulnérabilité dans les produits Symfony | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| CERTFR-2024-AVI-0983 | Vulnérabilité dans les produits Mozilla | 2024-11-14T00:00:00.000000 | 2024-11-14T00:00:00.000000 |
| certfr-2024-avi-0982 | Vulnérabilité dans CPython | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0981 | Multiples vulnérabilités dans GitLab | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0980 | Multiples vulnérabilités dans les produits Intel | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0979 | Multiples vulnérabilités dans les produits Fortinet | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0978 | Multiples vulnérabilités dans les produits Microsoft | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0977 | Multiples vulnérabilités dans Microsoft Azure | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0976 | Multiples vulnérabilités dans Microsoft .Net | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0975 | Multiples vulnérabilités dans Microsoft Windows | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0974 | Multiples vulnérabilités dans Microsoft Office | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0973 | Vulnérabilité dans les produits Citrix | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0972 | Vulnérabilité dans les produits Adobe | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0971 | Multiples vulnérabilités dans Grafana | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0970 | Multiples vulnérabilités dans Google Chrome | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0968 | Multiples vulnérabilités dans les produits Siemens | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0967 | Multiples vulnérabilités dans les produits Ivanti | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0966 | Multiples vulnérabilités dans Nagios XI | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0965 | Multiples vulnérabilités dans les produits PrimX | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| certfr-2024-avi-0964 | Multiples vulnérabilités dans les produits Citrix | 2024-11-12T00:00:00.000000 | 2024-11-13T00:00:00.000000 |
| CERTFR-2024-AVI-0982 | Vulnérabilité dans CPython | 2024-11-13T00:00:00.000000 | 2024-11-13T00:00:00.000000 |