Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-0385
5 (3.1)
Microsoft Edge (Chromium-based) for Android Spoofing V… Microsoft
 Microsoft Edge for Android
 2026-03-13T21:55:20.781Z 2026-03-13T22:25:36.898Z
CVE-2026-32732
0 (4.0)
XSS in @leanprover/unicode-input-component leanprover
 vscode-lean4
 2026-03-13T21:43:22.209Z 2026-03-13T21:43:22.209Z
CVE-2026-32729
8.1 (3.1)
Runtipi has a TOTP two-factor authentication bypass vi… runtipi
 runtipi
 2026-03-13T21:41:11.699Z 2026-03-13T21:41:11.699Z
CVE-2026-32724
5.3 (3.1)
PX4 autopilot has a heap Use-After-Free in MavlinkShel… PX4
 PX4-Autopilot
 2026-03-13T21:39:19.207Z 2026-03-13T21:39:19.207Z
CVE-2026-3227
8.5 (4.0)
Authenticated Command Injection on TP-Link TL-WR802N, … TP-Link Systems Inc.
 TL-WR802N v4
 2026-03-13T21:38:31.666Z 2026-03-13T21:38:31.666Z
CVE-2026-32720
7.1 (4.0)
Improper Access Control in github.com/ctfer-io/monitoring ctfer-io
 monitoring
 2026-03-13T21:27:52.824Z 2026-03-13T21:27:52.824Z
CVE-2026-32719
4.2 (3.1)
AnythingLLM has a Zip Slip Path Traversal and Code Exe… Mintplex-Labs
 anything-llm
 2026-03-13T21:25:31.682Z 2026-03-13T21:25:31.682Z
CVE-2026-32717
2.7 (3.1)
AnythingLLM access control bypass: suspended users can… Mintplex-Labs
 anything-llm
 2026-03-13T21:23:48.659Z 2026-03-13T21:23:48.659Z
CVE-2026-32715
3.8 (3.1)
AnythingLLM Manager Privilege Bypass Allows Access to … Mintplex-Labs
 anything-llm
 2026-03-13T21:22:00.783Z 2026-03-13T21:22:00.783Z
CVE-2026-32713
4.3 (3.1)
PX4 Autopilot MAVLink FTP Session Validation Logic Err… PX4
 PX4-Autopilot
 2026-03-13T21:20:09.352Z 2026-03-13T21:20:09.352Z
CVE-2026-32709
5.4 (3.1)
PX4 Autopilot MAVLink FTP Unauthenticated Path Travers… PX4
 PX4-Autopilot
 2026-03-13T21:19:33.528Z 2026-03-13T21:19:33.528Z
CVE-2026-32708
7.8 (3.1)
Zenoh uORB Subscriber Allows Arbitrary Stack Allocatio… PX4
 PX4-Autopilot
 2026-03-13T21:18:53.025Z 2026-03-13T21:18:53.025Z
CVE-2026-32707
5.2 (3.1)
PX4 autopilot has a stack buffer overflow in tattu_can… PX4
 PX4-Autopilot
 2026-03-13T21:18:09.118Z 2026-03-13T21:18:09.118Z
CVE-2026-32706
7.1 (3.1)
PX4 autopilot has a global buffer overflow in crsf_rc … PX4
 PX4-Autopilot
 2026-03-13T21:17:02.719Z 2026-03-13T21:17:02.719Z
CVE-2026-32705
6.8 (3.1)
PX4 autopilot BST Device Name Length Can Overflow Driv… PX4
 PX4-Autopilot
 2026-03-13T21:15:55.509Z 2026-03-13T21:15:55.509Z
CVE-2026-32616
8.2 (3.1)
Pigeon has a Host Header Injection in email verificati… kasuganosoras
 Pigeon
 2026-03-13T21:12:40.529Z 2026-03-13T21:12:40.529Z
CVE-2026-32704
6.5 (3.1)
SiYuan renderSprig: missing admin check allows any use… siyuan-note
 siyuan
 2026-03-13T21:10:36.613Z 2026-03-13T21:10:36.613Z
CVE-2026-26133
7.1 (3.1)
M365 Copilot Information Disclosure Vulnerability Microsoft
 Microsoft 365 Copilot for Android
 2026-03-13T21:10:13.535Z 2026-03-13T22:25:36.382Z
CVE-2026-32702
6.9 (4.0)
Cleanuparr has Username Enumeration via Timing Attack Cleanuparr
 Cleanuparr
 2026-03-13T21:09:00.127Z 2026-03-13T21:09:00.127Z
CVE-2026-32640
8.7 (4.0)
(SimpleEval) Objects (including modules) can leak dang… danthedeckie
 simpleeval
 2026-03-13T21:03:53.435Z 2026-03-13T21:04:44.386Z
CVE-2026-32772
3.4 (3.1)
telnet in GNU inetutils through 2.7 allows server… GNU
 inetutils
 2026-03-13T21:01:17.782Z 2026-03-13T21:10:46.673Z
CVE-2026-32635
8.6 (4.0)
Angular has XSS in i18n attribute bindings @angular
 compiler
 2026-03-13T20:58:12.554Z 2026-03-13T20:58:12.554Z
CVE-2026-32630
5.3 (3.1)
file-type affected by ZIP Decompression Bomb DoS via [… sindresorhus
 file-type
 2026-03-13T20:54:16.960Z 2026-03-13T20:54:16.960Z
CVE-2026-32628
7.7 (4.0)
AnythingLLM has SQL Injection in Built-in SQL Agent Pl… Mintplex-Labs
 anything-llm
 2026-03-13T20:50:15.991Z 2026-03-13T20:50:15.991Z
CVE-2026-32627
8.7 (3.1)
cpp-httplib has a Silent TLS Certificate Verification … yhirose
 cpp-httplib
 2026-03-13T20:48:14.442Z 2026-03-13T20:48:14.442Z
CVE-2025-15060
9.8 (3.0)
claude-hovercraft executeClaudeCode Command Injection … claude-hovercraft
 claude-hovercraft
 2026-03-13T20:43:36.780Z 2026-03-13T20:43:36.780Z
CVE-2026-2491
6.3 (3.0)
Socomec DIRIS A-40 HTTP API Authentication Bypass Vuln… Socomec
 DIRIS A-40
 2026-03-13T20:43:15.417Z 2026-03-13T20:43:15.417Z
CVE-2026-2493
7.5 (3.0)
IceWarp collaboration Directory Traversal Information … IceWarp
 IceWarp
 2026-03-13T20:42:38.658Z 2026-03-13T20:42:38.658Z
CVE-2026-3084
7.8 (3.0)
GStreamer H.266 Codec Parser Integer Underflow Remote … GStreamer
 GStreamer
 2026-03-13T20:42:03.443Z 2026-03-13T20:42:03.443Z
CVE-2026-2921
7.8 (3.0)
GStreamer RIFF Palette Integer Overflow Remote Code Ex… GStreamer
 GStreamer
 2026-03-13T20:41:50.780Z 2026-03-13T20:41:50.780Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-4111
7.5 (3.1)
Libarchive: infinite loop denial of service in rar5 de… Red Hat
 Red Hat Enterprise Linux 10
 2026-03-13T11:45:20.653Z 2026-03-13T13:36:18.676Z
CVE-2026-4105
6.7 (3.1)
Systemd: systemd: privilege escalation via improper ac… Red Hat
 Red Hat Enterprise Linux 10
 2026-03-13T08:52:08.179Z 2026-03-13T16:03:14.694Z
CVE-2026-4092
8.7 (4.0)
Arbitrary File Write via Path Traversal in Google clas… Google
 Clasp
 2026-03-13T15:44:55.099Z 2026-03-13T15:44:55.099Z
CVE-2026-4063
4.3 (3.1)
Social Icons Widget & Block <= 4.5.8 - Missing Authori… wpzoom
 Social Icons Widget & Block – Social Media Icons & Share Buttons
 2026-03-13T09:25:00.829Z 2026-03-13T15:57:28.037Z
CVE-2026-3999
8.8 (4.0)
Broken access control vulnerability affecting ID Server Pointsharp
 ID Server
 2026-03-13T08:38:59.468Z 2026-03-13T16:04:58.102Z
CVE-2026-3986
6.4 (3.1)
Calculated Fields Form <= 5.4.5.0 - Authenticated (Con… codepeople
 Calculated Fields Form
 2026-03-13T08:25:17.634Z 2026-03-13T16:03:46.416Z
CVE-2026-3910
8.8 (3.1)
Inappropriate implementation in V8 in Google Chro… Google
 Chrome
 2026-03-12T21:30:51.861Z 2026-03-13T22:20:23.872Z
CVE-2026-3909
8.8 (3.1)
Out of bounds write in Skia in Google Chrome prio… Google
 Chrome
 2026-03-12T21:30:51.265Z 2026-03-13T22:20:24.276Z
CVE-2026-3891
9.8 (3.1)
Pix for WooCommerce <= 1.5.0 - Unauthenticated Arbitra… linknacional
 Pix for WooCommerce
 2026-03-13T07:23:37.971Z 2026-03-13T14:12:25.521Z
CVE-2026-3873
7.2 (3.1)
Legacy built-in user account syslink software AG
 Avantra
 2026-03-13T08:14:29.350Z 2026-03-13T16:05:47.203Z
CVE-2026-32746
9.8 (3.1)
telnetd in GNU inetutils through 2.7 allows an ou… GNU
 inetutils
 2026-03-13T17:15:14.876Z 2026-03-14T02:55:48.456Z
CVE-2026-3045
7.5 (3.1)
Appointment Booking Calendar <= 1.6.9.29 - Missing Aut… croixhaug
 Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin
 2026-03-13T07:23:38.549Z 2026-03-13T16:06:57.240Z
CVE-2026-32745
6.3 (3.1)
In JetBrains Datalore before 2026.1 session hijac… JetBrains
 Datalore
 2026-03-13T15:50:04.434Z 2026-03-13T15:50:04.434Z
CVE-2026-32612
5.4 (3.1)
Statamic: privilege escalation via stored cross-site s… statamic
 cms
 2026-03-12T21:47:21.697Z 2026-03-13T16:38:42.464Z
CVE-2026-32598
6.9 (4.0)
OneUptime: Password Reset Token Logged at INFO Level OneUptime
 oneuptime
 2026-03-12T21:31:12.776Z 2026-03-12T21:31:12.776Z
CVE-2026-32597
7.5 (3.1)
PyJWT accepts unknown `crit` header extensions (RFC 75… jpadilla
 pyjwt
 2026-03-12T21:41:50.427Z 2026-03-13T14:58:58.769Z
CVE-2026-32543
5.3 (3.1)
WordPress Responsive Blocks plugin <= 2.2.0 - Broken A… CyberChimps
 Responsive Blocks
 2026-03-13T11:42:24.104Z 2026-03-13T18:53:34.389Z
CVE-2026-32487
5.3 (3.1)
WordPress Lawyer Landing Page theme <= 1.2.7 - Broken … raratheme
 Lawyer Landing Page
 2026-03-13T11:42:23.913Z 2026-03-13T13:53:06.707Z
CVE-2026-32486
5.3 (3.1)
WordPress Travel Booking theme <= 1.3.9 - Broken Acces… wptravelengine
 Travel Booking
 2026-03-13T11:42:23.741Z 2026-03-13T18:53:34.204Z
CVE-2026-32462
N/A
WordPress Master Addons for Elementor plugin <= 2.1.3 … Liton Arefin
 Master Addons for Elementor
 2026-03-13T11:42:23.560Z 2026-03-13T11:42:23.560Z
CVE-2026-32461
5.3 (3.1)
WordPress Really Simple SSL plugin <= 9.5.7 - Broken A… Really Simple Plugins
 Really Simple SSL
 2026-03-13T11:42:23.380Z 2026-03-13T18:32:33.789Z
CVE-2026-32460
N/A
WordPress Ultimate Addons for Contact Form 7 plugin <=… Themefic
 Ultimate Addons for Contact Form 7
 2026-03-13T11:42:23.111Z 2026-03-13T11:42:23.111Z
CVE-2026-32459
8.5 (3.1)
WordPress UpsellWP plugin <= 2.2.4 - SQL Injection vul… flycart
 UpsellWP
 2026-03-13T11:42:22.929Z 2026-03-13T19:33:50.959Z
CVE-2026-32458
7.6 (3.1)
WordPress WOLF plugin <= 1.0.8.7 - SQL Injection vulne… RealMag777
 WOLF
 2026-03-13T11:42:22.748Z 2026-03-13T14:09:19.411Z
CVE-2026-32457
5.3 (3.1)
WordPress Advanced Product Fields (Product Addons) for… Wombat Plugins
 Advanced Product Fields (Product Addons) for WooCommerce
 2026-03-13T11:42:22.574Z 2026-03-13T18:53:34.058Z
CVE-2026-32456
4.3 (3.1)
WordPress Admin Menu Editor plugin <= 1.14.1 - Cross S… Janis Elsts
 Admin Menu Editor
 2026-03-13T11:42:22.381Z 2026-03-13T14:21:53.842Z
CVE-2026-32455
6.5 (3.1)
WordPress MDTF plugin <= 1.3.5 - Cross Site Scripting … RealMag777
 MDTF
 2026-03-13T11:42:22.200Z 2026-03-13T19:17:49.086Z
CVE-2026-32454
6.5 (3.1)
WordPress Avada Core plugin < 5.15.0 - Cross Site Scri… ThemeFusion
 Avada Core
 2026-03-13T11:42:22.010Z 2026-03-13T14:27:26.579Z
CVE-2026-32453
5.3 (3.1)
WordPress Avada Core plugin < 5.15.0 - Broken Access C… ThemeFusion
 Avada Core
 2026-03-13T11:42:21.829Z 2026-03-13T18:53:33.921Z
CVE-2026-32452
5.3 (3.1)
WordPress Fusion Builder plugin < 3.15.0 - Broken Acce… ThemeFusion
 Fusion Builder
 2026-03-13T11:42:21.652Z 2026-03-13T14:30:38.057Z
ID Description Published Updated
fkie_cve-2026-1657 The EventPrime plugin for WordPress is vulnerable to unauthorized image file upload in all versions… 2026-02-17T06:16:18.173 2026-02-18T17:52:22.253
fkie_cve-2026-2592 The Zarinpal Gateway for WooCommerce plugin for WordPress is vulnerable to Improper Access Control … 2026-02-17T05:16:17.430 2026-02-18T17:52:22.253
fkie_cve-2026-2002 The Forminator Forms – Contact Form, Payment Form & Custom Form Builder plugin for WordPress is vul… 2026-02-17T05:16:17.080 2026-02-18T17:52:22.253
fkie_cve-2026-26220 LightLLM version 1.1.0 and prior contain an unauthenticated remote code execution vulnerability in … 2026-02-17T03:16:01.893 2026-02-18T17:52:22.253
fkie_cve-2025-12062 The WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin for… 2026-02-17T00:16:17.080 2026-02-18T17:52:22.253
fkie_cve-2026-2439 Concierge::Sessions versions from 0.8.1 before 0.8.5 for Perl generate insecure session ids. The ge… 2026-02-16T22:22:41.470 2026-03-10T18:12:46.927
fkie_cve-2025-15578 Maypole versions from 2.10 through 2.13 for Perl generates session ids insecurely. The session id i… 2026-02-16T22:22:40.557 2026-03-10T15:07:31.793
fkie_cve-2026-2474 Crypt::URandom versions from 0.41 before 0.55 for Perl is vulnerable to a heap buffer overflow in t… 2026-02-16T21:22:18.107 2026-03-04T02:27:15.217
fkie_cve-2026-2001 The WowRevenue plugin for WordPress is vulnerable to unauthorized plugin installation due to a miss… 2026-02-16T20:19:36.190 2026-02-18T17:52:22.253
fkie_cve-2026-2567 A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the functio… 2026-02-16T18:19:45.217 2026-02-18T19:41:03.690
fkie_cve-2026-2566 A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the fu… 2026-02-16T18:19:45.017 2026-02-18T17:52:22.253
fkie_cve-2019-25395 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple stored cross-site scripting vulne… 2026-02-16T18:19:44.480 2026-02-20T16:31:49.890
fkie_cve-2019-25394 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple stored cross-site scripting vulne… 2026-02-16T18:19:44.313 2026-02-20T16:31:34.660
fkie_cve-2019-25393 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:44.147 2026-02-20T16:31:23.993
fkie_cve-2019-25392 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:43.980 2026-02-20T16:31:18.553
fkie_cve-2019-25390 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:43.810 2026-02-20T16:31:10.263
fkie_cve-2019-25389 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:43.643 2026-02-20T16:30:56.780
fkie_cve-2019-25388 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:43.473 2026-02-20T16:27:01.120
fkie_cve-2019-25387 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:43.303 2026-02-20T16:26:53.380
fkie_cve-2019-25386 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:43.133 2026-02-20T16:26:47.313
fkie_cve-2019-25385 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:42.967 2026-02-20T16:26:41.493
fkie_cve-2019-25384 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:42.803 2026-02-20T16:26:36.247
fkie_cve-2019-25383 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:42.640 2026-02-20T16:26:19.230
fkie_cve-2019-25382 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains a reflected cross-site scripting vulnerabi… 2026-02-16T18:19:42.480 2026-02-20T19:12:29.937
fkie_cve-2019-25381 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:42.317 2026-02-20T16:26:07.903
fkie_cve-2019-25380 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple reflected cross-site scripting vu… 2026-02-16T18:19:42.153 2026-02-20T16:25:48.847
fkie_cve-2019-25379 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains stored and reflected cross-site scripting … 2026-02-16T18:19:41.987 2026-02-20T16:30:43.613
fkie_cve-2019-25378 Smoothwall Express 3.1-SP4-polar-x86_64-update9 contains multiple cross-site scripting vulnerabilit… 2026-02-16T18:19:41.430 2026-02-20T21:23:50.410
fkie_cve-2026-2565 A weakness has been identified in Wavlink WL-NU516U1 20251208. Affected by this issue is the functi… 2026-02-16T17:18:09.360 2026-02-18T19:42:27.167
fkie_cve-2026-2564 A security flaw has been discovered in Intelbras VIP 3260 Z IA 2.840.00IB005.0.T. Affected by this … 2026-02-16T17:18:09.150 2026-02-18T17:52:22.253
ID Severity Description Published Updated
ghsa-xrqh-48jh-pjv2
7.5 (3.1)
A flaw was identified in the RAR5 archive decompression logic of the libarchive library, specifical… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-wmhj-8382-jc9f
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-vj9g-gh94-w9mc
5.3 (3.1)
Missing Authorization vulnerability in raratheme Lawyer Landing Page lawyer-landing-page allows Exp… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-qvfm-56cp-4988
9.8 (3.1)
telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local C… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-q26g-448c-9p4x
7.2 (3.1)
Use of Hard-coded Credentials vulnerability in Avantra allows Accessing Functionality Not Properly… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-p8qp-4c23-f45x
6.3 (3.1)
In JetBrains Datalore before 2026.1 session hijacking was possible due to missing secure attribute … 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-fpj4-w3j6-3v3w
9.8 (3.1)
The Pix for WooCommerce plugin for WordPress is vulnerable to arbitrary file uploads due to missing… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-88q8-44wc-h3v9
5.3 (3.1)
Missing Authorization vulnerability in CyberChimps Responsive Blocks responsive-block-editor-addons… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-69wh-543j-25h6
8.8 (3.1)
Inappropriate implementation in V8 in Google Chrome prior to 146.0.7680.75 allowed a remote attacke… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-5xh8-vh3c-9fxf
4.3 (3.1)
The Social Icons Widget & Block by WPZOOM plugin for WordPress is vulnerable to unauthorized data m… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-5x5h-6jf5-qqx7
5.3 (3.1)
Missing Authorization vulnerability in wptravelengine Travel Booking travel-booking allows Exploiti… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-543v-622p-pfx5
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-4w38-6pqj-mw46
7.5 (3.1)
The Appointment Booking Calendar — Simply Schedule Appointments plugin for WordPress is vulnerable … 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-2x88-jf9m-g87v
6.4 (3.1)
The Calculated Fields Form plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-2v57-2pxf-54cx
5.3 (3.1)
Missing Authorization vulnerability in Really Simple Plugins Really Simple SSL really-simple-ssl al… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-2p4q-qchf-h9q6
8.8 (4.0)
A broken access control may allow an authenticated user to perform a horizontal privilege escalati… 2026-03-13T21:31:51Z 2026-03-13T21:31:51Z
ghsa-xjr6-jrh9-wc2p
4.3 (3.1)
Missing Authorization vulnerability in E2Pdf e2pdf e2pdf allows Exploiting Incorrectly Configured A… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-xg3w-r3f7-rx2p
6.5 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Josh Kohlbach Product Feed PRO for WooCommerce w… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-x3xh-742h-fx6p
5.3 (3.1)
Missing Authorization vulnerability in codepeople WP Time Slots Booking Form wp-time-slots-booking-… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-w87c-f5r3-xjm3
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Janis Elsts Admin Menu Editor admin-menu-editor … 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-w4j7-3667-4q2g
5.3 (3.1)
Missing Authorization vulnerability in ThemeFusion Fusion Builder fusion-builder allows Exploiting … 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-w4gg-m224-vj64
5.3 (3.1)
Missing Authorization vulnerability in Ays Pro Popup Like box ays-facebook-popup-likebox allows Exp… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-rxqf-34r4-h992
5.3 (3.1)
Missing Authorization vulnerability in vowelweb VW Education Lite vw-education-lite allows Exploiti… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-rjh7-pfj7-7mq7
5.3 (3.1)
Missing Authorization vulnerability in vowelweb VW Fitness vw-fitness allows Exploiting Incorrectly… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-rgh7-rxgp-vf84
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-pfjj-r8pf-vq9c
5.3 (3.1)
Missing Authorization vulnerability in Agile Logix Post Timeline post-timeline allows Exploiting In… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-mjgf-6qrw-3ghf
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-jcph-9xhx-47p8
5.3 (3.1)
Missing Authorization vulnerability in vowelweb VW Portfolio vw-portfolio allows Exploiting Incorre… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-j25f-52qh-vv7j
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ghsa-hv2q-78pj-8c72
5.4 (3.1)
Missing Authorization vulnerability in Bowo Admin and Site Enhancements (ASE) admin-site-enhancemen… 2026-03-13T21:31:50Z 2026-03-13T21:31:50Z
ID Severity Description Package Published Updated
pysec-2026-1
A PyPI user account compromised by an attacker and was able to upload a malicious version… dydx-v4-client 2026-01-28T21:09:02+00:00
pysec-2025-71
Cadwyn creates production-ready community-driven modern Stripe-like API versioning in Fas… cadwyn 2025-07-21T21:15:25+00:00 2025-07-23T15:24:03.825615+00:00
pysec-2025-69
In Roundup before 2.5.0, XSS can occur via interaction between URLs and issue tracker tem… roundup 2025-07-13T20:15:25+00:00 2025-07-13T21:23:01.161315+00:00
pysec-2025-65
A path traversal vulnerability exists in run-llama/llama_index versions 0.12.27 through 0… llama-index 2025-07-07T13:15:28+00:00 2025-07-07T15:23:42.730681+00:00
pysec-2025-61
Pillow is a Python imaging library. In versions 11.2.0 to before 11.3.0, there is a heap … pillow 2025-07-01T19:15:27Z 2025-07-07T14:12:46.226030Z
pysec-2025-51
Failure to Sanitize Special Elements into a Different Plane (Special Element Injection) v… apache-airflow-providers-snowflake 2025-06-24T08:15:24+00:00 2025-06-26T21:23:03.132527+00:00
pysec-2025-70
10.0 (3.1)
A Server-Side Request Forgery (SSRF) vulnerability exists in the RequestsToolkit componen… langchain-community 2025-06-23T21:15:25+00:00 2025-07-16T21:23:40.211079+00:00
pysec-2025-52
gateway_proxy_handler in MLflow before 3.1.0 lacks gateway_path validation. mlflow 2025-06-23T15:15:29Z 2025-12-05T13:25:55.146081Z
pysec-2025-68
8.0 (3.1)
A vulnerability, which was classified as critical, has been found in Upsonic up to 0.55.6… upsonic 2025-06-19T21:15:27+00:00 2025-07-08T19:22:27.449399+00:00
pysec-2025-67
9.8 (3.1)
A vulnerability classified as critical was found in Upsonic up to 0.55.6. This vulnerabil… upsonic 2025-06-19T21:15:27+00:00 2025-07-08T19:22:27.385619+00:00
pysec-2025-64
9.8 (3.1)
A vulnerability classified as critical has been found in themanojdesai python-a2a up to 0… python-a2a 2025-06-17T07:15:18+00:00 2025-07-02T21:23:13.806273+00:00
pysec-2025-47
An issue was discovered in Django 5.2 before 5.2.2, 5.1 before 5.1.10, and 4.2 before 4.2… django 2025-06-05T03:15:25+00:00 2025-06-05T05:23:28.296596+00:00
pysec-2025-44
django-helpdesk before 1.0.0 allows Sensitive Data Exposure because of os.umask(0) in mod… django-helpdesk 2025-05-31T01:15:19+00:00 2025-05-31T03:09:35.357757+00:00
pysec-2025-55
vLLM is an inference and serving engine for large language models (LLMs). Version 0.8.0 u… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.407481+00:00
pysec-2025-54
vLLM is an inference and serving engine for large language models (LLMs). In versions 0.8… vllm 2025-05-30T19:15:30+00:00 2025-06-26T21:23:06.319321+00:00
pysec-2025-50
vLLM, an inference and serving engine for large language models (LLMs), has a Regular Exp… vllm 2025-05-30T18:15:32+00:00 2025-06-19T03:02:28.572160+00:00
pysec-2025-53
vLLM is an inference and serving engine for large language models (LLMs). Prior to versio… vllm 2025-05-29T17:15:21+00:00 2025-06-26T21:23:06.231251+00:00
pysec-2025-43
vLLM is an inference and serving engine for large language models (LLMs). In versions sta… vllm 2025-05-29T17:15:21+00:00 2025-05-29T19:21:01.611587+00:00
pysec-2025-46
5.5 (3.1)
A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri… pypickle 2025-05-26T08:15:19+00:00 2025-06-03T17:36:58.579358+00:00
pysec-2025-45
7.8 (3.1)
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.… pypickle 2025-05-26T07:15:26+00:00 2025-06-03T17:36:58.528116+00:00
pysec-2025-40
7.5 (3.1)
A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`… transformers 2025-05-19T12:15:19+00:00 2025-05-21T19:22:10.801823+00:00
pysec-2025-49
8.8 (3.1)
setuptools is a package that allows users to download, build, install, upgrade, and unins… setuptools 2025-05-17T16:15:19+00:00 2025-06-12T22:23:11.115559+00:00
pysec-2025-39
motionEye is an online interface for the software motion, a video surveillance program wi… motioneye 2025-05-14T16:15:29+00:00 2025-05-14T17:22:51.050788+00:00
pysec-2025-60
Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform… apache-iotdb 2025-05-14T11:16:28+00:00 2025-07-01T21:22:47.232036+00:00
pysec-2025-59
Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack… apache-iotdb 2025-05-14T11:15:47+00:00 2025-07-01T21:22:47.177405+00:00
pysec-2025-38
OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im… ironic 2025-05-08T17:16:01Z 2025-05-13T04:24:03.083929Z
pysec-2025-37
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2… django 2025-05-08T04:17:18+00:00 2025-05-08T05:23:16.210893+00:00
pysec-2025-42
9.8 (3.1)
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver… vllm 2025-04-30T01:15:51+00:00 2025-05-28T21:23:12.396609+00:00
pysec-2025-34
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_… picklescan 2025-04-24T01:15:49+00:00 2025-04-24T03:08:15.436691+00:00
pysec-2025-56
4.3 (3.1)
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t… octoprint 2025-04-22T18:15:59+00:00 2025-06-27T17:22:53.513680+00:00
ID Description Updated
ID Description Published Updated
mal-2026-1421 Malicious code in devlino (npm) 2026-03-13T20:35:45Z 2026-03-13T23:45:03Z
mal-2026-1422 Malicious code in fastapi-middleware-cors (PyPI) 2026-03-13T20:20:02Z 2026-03-13T20:20:02Z
mal-2026-1420 Malicious code in cw-isdk (npm) 2026-03-13T15:38:25Z 2026-03-13T18:49:49Z
mal-2026-1418 Malicious code in tailwind-mainanimation (npm) 2026-03-13T14:20:40Z 2026-03-13T14:20:40Z
mal-2026-1419 Malicious code in tailwindcss-style-modify (npm) 2026-03-13T14:15:45Z 2026-03-13T14:15:45Z
mal-2026-1412 Malicious code in project47 (PyPI) 2026-03-13T10:54:54Z 2026-03-13T10:54:54Z
mal-2026-1409 Malicious code in darkig (PyPI) 2026-03-13T10:50:53Z 2026-03-13T10:50:53Z
mal-2026-1410 Malicious code in ighack (PyPI) 2026-03-13T10:47:01Z 2026-03-13T10:47:01Z
mal-2026-1411 Malicious code in nfd (PyPI) 2026-03-13T10:41:13Z 2026-03-13T10:41:13Z
mal-2026-1417 Malicious code in twitch.dashboard-v2.core (npm) 2026-03-13T10:37:20Z 2026-03-13T10:37:27Z
mal-2026-1416 Malicious code in twitch-security (npm) 2026-03-13T10:37:20Z 2026-03-13T10:37:20Z
mal-2026-1415 Malicious code in pulsard-utils (npm) 2026-03-13T10:37:20Z 2026-03-13T10:37:20Z
mal-2026-1414 Malicious code in hardhat2-config (npm) 2026-03-13T10:37:20Z 2026-03-13T10:37:20Z
mal-2026-1413 Malicious code in brlc-base (npm) 2026-03-13T10:37:19Z 2026-03-13T10:37:20Z
mal-2026-1408 Malicious code in nai (PyPI) 2026-03-13T10:31:39Z 2026-03-13T10:31:39Z
mal-2026-1407 Malicious code in thief-utils (PyPI) 2026-03-13T08:43:52Z 2026-03-13T08:43:52Z
mal-2026-1406 Malicious code in makenotion-ppetest (PyPI) 2026-03-13T08:13:53Z 2026-03-13T08:13:53Z
mal-2026-1400 Malicious code in solana-pumpfun-sdk (npm) 2026-03-13T06:55:58Z 2026-03-13T06:55:58Z
mal-2026-1399 Malicious code in pino-sdk (npm) 2026-03-13T06:55:58Z 2026-03-13T06:55:58Z
mal-2026-1392 Malicious code in @dinzid04/libsignal-node (npm) 2026-03-13T06:54:12Z 2026-03-13T06:54:13Z
mal-2026-1391 Malicious code in @dinzid04/baileys (npm) 2026-03-13T06:54:12Z 2026-03-13T06:54:13Z
mal-2026-1401 Malicious code in tailwindcss-animation-advanced (npm) 2026-03-13T06:51:42Z 2026-03-13T06:51:42Z
mal-2026-1393 Malicious code in cortana-md-bot (npm) 2026-03-13T06:48:27Z 2026-03-13T06:48:28Z
mal-2026-1390 Malicious code in @depro-tech/cortana-md (npm) 2026-03-13T06:48:27Z 2026-03-13T06:48:28Z
mal-2026-1404 Malicious code in whatsapp-core-auth-drzak (npm) 2026-03-13T06:47:07Z 2026-03-13T06:47:14Z
mal-2026-1398 Malicious code in meta-internal-logger-drzak (npm) 2026-03-13T06:47:07Z 2026-03-13T06:47:14Z
mal-2026-1405 Malicious code in whatsapp-fastdesk-utils-drzak (npm) 2026-03-13T06:47:06Z 2026-03-13T06:47:07Z
mal-2026-1403 Malicious code in tradepmr-fusion-core-drzak (npm) 2026-03-13T06:47:06Z 2026-03-13T06:47:07Z
mal-2026-1402 Malicious code in tradepmr-api-utils-drzak (npm) 2026-03-13T06:47:06Z 2026-03-13T06:47:06Z
mal-2026-1397 Malicious code in fusion-internal-common-drzak (npm) 2026-03-13T06:47:06Z 2026-03-13T06:47:06Z
ID Description Published Updated
4jno000329 AWIN Gateways Vulnerabilities in Embedded Webserver 2026-03-13T00:30:00.000Z 2026-03-13T00:30:00.000Z
3adr011536 AC500 V3 Stack buffer overflow in Cryptographic Message Syntax 2026-03-12T00:30:00.000Z 2026-03-12T00:30:00.000Z
3adr011525 ABB Automation Builder Gateway for Windows with insecure defaults 2026-02-24T00:30:00.000Z 2026-02-24T00:30:00.000Z
3adr011524 AC500 V3 Multiple vulnerabilities 2026-02-24T00:30:00.000Z 2026-02-24T00:30:00.000Z
sa25p007 B&R Automation Studio Update of SQLite version 2026-02-18T00:30:00.000Z 2026-02-18T00:30:00.000Z
sa26p001 ​​PVI​ ​​Insertion of Sensitive Information into Logfile 2026-01-29T00:30:00.000Z 2026-01-29T00:30:00.000Z
sa24p003 ​B&R PCs vulnerable to PixieFail attack​ 2026-01-29T00:30:00.000Z 2026-01-29T00:30:00.000Z
sa25p005 B&R Automation Runtime Improper Handling of Flooding conditions on ANSL Server 2026-01-19T00:30:00.000Z 2026-01-19T00:30:00.000Z
sa25p004 Automation Studio Insufficient Server Certificate Validation 2026-01-19T00:30:00.000Z 2026-01-19T00:30:00.000Z
9akk108472a1331 ABB Ability™ OPTIMAX® Authentication Bypass in Single-Sign On with Azure Active Directory 2026-01-16T00:30:00.000Z 2026-01-16T00:30:00.000Z
2crt000009 WebPro SNMP Card PowerValue Multiple Vulnerabilities 2026-01-07T00:30:00.000Z 2026-01-07T00:30:00.000Z
4hzm000603 ABB Ability Camera Connect Vulnerabilities in outdated 3rd party component (VLC) 2025-11-27T00:30:00.000Z 2025-11-28T00:30:00.000Z
7paa022088 Edgenius Management Portal Authentication Bypass 2025-11-20T00:30:00.000Z 2025-11-20T00:30:00.000Z
2nga002813 PCM600 SharpZip library vulnerability 2025-11-03T00:30:00.000Z 2025-11-03T00:30:00.000Z
9akk108471a8948 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-10-20T00:30:00.000Z 2025-10-21T00:30:00.000Z
4tz00000006007 ALS-mini-S4/S8 IP Missing Authentication Vulnerability and its Mitigations 2025-10-20T00:30:00.000Z 2025-10-23T00:30:00.000Z
4tz00000006008 LVS MConfig Insecure memory handling 2025-10-08T00:30:00.000Z 2025-10-08T00:30:00.000Z
sa25p003 B&R Automation Runtime Vulnerabilities in System Diagnostic Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-14T00:30:00.000Z
sa25p002 B&R Automation Runtime DoS Vulnerability in System Diagnostics Manager (SDM) 2025-10-07T00:30:00.000Z 2025-10-07T00:30:00.000Z
9akk108471a7808 EIBPORT Reflected XSS 2025-10-07T00:30:00.000Z 2025-10-07T00:30:00.000Z
9akk108471a8107 Terra AC wallbox Heap Memory Corruption Vulnerability 2025-09-16T00:30:00.000Z 2025-11-28T08:00:00.000Z
9akk108471a7121 FLXeon Controllers Multiple vulnerabilities 2025-09-09T00:30:00.000Z 2025-09-18T00:30:00.000Z
2nga002743 ABB AbilityTM zenon Remote Transport Vulnerability 2025-08-12T00:30:00.000Z 2025-08-12T00:30:00.000Z
9akk108471a4462 ELSB/BLBA ASPECT advisory several CVEs 2025-08-11T00:30:00.000Z 2025-09-04T00:30:00.000Z
3adr011432 AC500 V2 Buffer overread on Modbus protocol 2025-07-23T00:30:00.000Z 2025-07-23T00:30:00.000Z
9akk108471a4556 Busch-Welcome® 2 wire Door opener actuator by default in compatibility mode. 2025-07-21T00:30:00.000Z 2025-07-21T00:30:00.000Z
9akk108471a3623 RMC - 100 Vulnerabilities in web UI (REST Interface) 2025-07-03T00:30:00.000Z 2025-08-18T00:30:00.000Z
2crt000008 Lite Panel Pro Vulnerability in Session Management 2025-06-26T00:30:00.000Z 2025-06-26T00:30:00.000Z
9akk108471a1621 EIBPORT Session Management Fail 2025-06-02T00:30:00.000Z 2025-06-04T00:30:00.000Z
9akk108470a8948 ELSB/Home Solutions Outdated SW Components in ABB Welcome IP-Gateway. 2025-05-29T00:30:00.000Z 2025-06-05T00:30:00.000Z
ID Description Published Updated
wid-sec-w-2026-0705 Apple iOS und iPadOS: Mehrere Schwachstellen 2026-03-11T23:00:00.000+00:00 2026-03-12T23:00:00.000+00:00
wid-sec-w-2026-0695 GNU libc: Schwachstelle ermöglicht Denial of Service 2026-03-11T23:00:00.000+00:00 2026-03-12T23:00:00.000+00:00
wid-sec-w-2026-0660 Microsoft System Center Operations Manager: Schwachstelle ermöglicht Erlangen von Administratorrechten 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0659 Microsoft Office und SharePoint Produkte: Mehrere Schwachstellen 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0658 Microsoft SQL Server: Mehrere Schwachstellen ermöglichen Erlangen von Administratorrechten 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0657 Microsoft ASP.NET und .NET: Mehrere Schwachstellen 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0656 Microsoft Authenticator App: Schwachstelle ermöglicht Offenlegung von Informationen 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0655 Microsoft Azure Komponenten: Mehrere Schwachstellen 2026-03-10T23:00:00.000+00:00 2026-03-10T23:00:00.000+00:00
wid-sec-w-2026-0629 Zabbix: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2026-03-05T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0628 Nextcloud: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten 2026-03-05T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0627 CoreDNS: Mehrere Schwachstellen 2026-03-05T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0626 Flowise: Mehrere Schwachstellen 2026-03-05T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0615 Red Hat Enterprise Linux (nfs-utils): Schwachstelle ermöglicht Offenlegung von Informationen 2026-03-05T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0612 Google Chrome: Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0611 Eclipse Jetty: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2026-03-04T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0579 Django: Mehrere Schwachstellen 2026-03-03T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0565 FreeType: Schwachstelle ermöglicht nicht spezifizierten Angriff 2026-03-02T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0554 Red Hat Enterprise Linux (udisks): Mehrere Schwachstellen 2026-03-01T23:00:00.000+00:00 2026-03-02T23:00:00.000+00:00
wid-sec-w-2026-0551 OpenClaw: Mehrere Schwachstellen 2026-02-26T23:00:00.000+00:00 2026-03-11T23:00:00.000+00:00
wid-sec-w-2026-0548 Golang Go: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2026-02-26T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0546 Red Hat Enterprise Linux (Valkey): Mehrere Schwachstellen 2026-02-26T23:00:00.000+00:00 2026-03-02T23:00:00.000+00:00
wid-sec-w-2026-0535 Juniper JUNOS Evolved: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten 2026-02-25T23:00:00.000+00:00 2026-03-03T23:00:00.000+00:00
wid-sec-w-2026-0526 IBM App Connect Enterprise: Mehrere Schwachstellen 2026-02-25T23:00:00.000+00:00 2026-03-02T23:00:00.000+00:00
wid-sec-w-2026-0525 GStreamer: Mehrere Schwachstellen 2026-02-25T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0507 util-linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2026-02-24T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0497 Mozilla Firefox, Firefox ESR und Thunderbird: Mehrere Schwachstellen 2026-02-24T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0490 OpenClaw: Mehrere Schwachstellen 2026-02-23T23:00:00.000+00:00 2026-03-11T23:00:00.000+00:00
wid-sec-w-2026-0484 ImageMagick: Mehrere Schwachstellen 2026-02-23T23:00:00.000+00:00 2026-02-25T23:00:00.000+00:00
wid-sec-w-2026-0481 Google Chrome und Microsoft Edge: Mehrere Schwachstellen 2026-02-23T23:00:00.000+00:00 2026-03-08T23:00:00.000+00:00
wid-sec-w-2026-0472 OpenClaw: Mehrere Schwachstellen 2026-02-22T23:00:00.000+00:00 2026-03-11T23:00:00.000+00:00
ID Description Published Updated
icsa-26-071-06 Inductive Automation Ignition Software 2026-03-12T06:00:00.000000Z 2026-03-13T06:00:00.000000Z
icsa-26-071-01 Trane Tracer SC, Tracer SC+, and Tracer Concierge 2026-03-12T06:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-069-03 Honeywell IQ4x BMS Controller 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-02 Lantronix EDS3000PS and EDS5000 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-01 Apeman Cameras 2026-03-10T06:00:00.000000Z 2026-03-10T06:00:00.000000Z
icsa-26-069-04 Ceragon Siklu MultiHaul and EtherHaul Series 2026-03-10T05:00:00.000000Z 2026-03-10T05:00:00.000000Z
icsa-26-071-05 Siemens Heliox EV Chargers 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-04 Siemens SIMATIC 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-03 Siemens SIDIS Prime 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-071-02 Siemens RUGGEDCOM APE1808 Devices 2026-03-10T00:00:00.000000Z 2026-03-12T06:00:00.000000Z
icsa-26-064-01 Delta Electronics CNCSoft-G2 2026-03-05T07:00:00.000000Z 2026-03-05T07:00:00.000000Z
icsa-26-062-05 Labkotec LID-3300IP 2026-03-03T07:00:00.000000Z 2026-03-03T07:00:00.000000Z
icsa-26-062-04 Portwell Engineering Toolkits 2026-03-03T07:00:00.000000Z 2026-03-03T07:00:00.000000Z
icsa-26-062-08 Everon OCPP Backends 2026-03-03T06:00:00.000000Z 2026-03-03T06:00:00.000000Z
icsa-26-062-07 ePower epower.ie 2026-03-03T06:00:00.000000Z 2026-03-03T06:00:00.000000Z
icsa-26-062-06 Mobiliti e-mobi.hu 2026-03-03T06:00:00.000000Z 2026-03-03T06:00:00.000000Z
icsa-26-062-01 Mitsubishi Electric MELSEC iQ-F Series EtherNet/IP module and Ethernet module 2026-03-03T00:00:00.000000Z 2026-03-03T07:00:00.000000Z
icsa-26-057-10 Copeland XWEB and XWEB Pro 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-09 Yokogawa CENTUM VP R6, R7 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-08 Mobility46 mobility46.se 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-07 EV Energy ev.energy 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-06 SWITCH EV swtchenergy.com 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-05 Chargemap chargemap.com 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-04 EV2GO ev2go.io 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-03 CloudCharge cloudcharge.se 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-02 Pelco, Inc. Sarix Pro 3 Series IP Cameras 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-057-01 Johnson Controls, Inc. Frick Controls Quantum HD 2026-02-26T07:00:00.000000Z 2026-02-26T07:00:00.000000Z
icsa-26-055-01 InSAT MasterSCADA BUK-TS 2026-02-24T07:00:00.000000Z 2026-02-24T07:00:00.000000Z
icsa-26-055-03 Gardyn Home Kit 2026-02-24T06:00:00.000000Z 2026-02-24T06:00:00.000000Z
icsa-26-062-03 Hitachi Energy RTU500 Product 2026-02-24T00:00:00.000000Z 2026-03-03T07:00:00.000000Z
ID Description Published Updated
cisco-sa-isis-dos-kdmxpszk Cisco IOS XR Software Multi-Instance Intermediate System-to-Intermediate System Denial of Service Vulnerability 2026-03-11T16:00:00+00:00 2026-03-11T16:00:00+00:00
cisco-sa-iosxr-privesc-bf8d5u4w Cisco IOS XR Software CLI Privilege Escalation Vulnerabilities 2026-03-11T16:00:00+00:00 2026-03-11T16:00:00+00:00
cisco-sa-cc-xss-mrnah5jh Multiple Cisco Contact Center Products Cross-Site Scripting Vulnerabilities 2026-03-11T16:00:00+00:00 2026-03-11T16:00:00+00:00
cisco-sa-onprem-fmc-authbypass-5jpp45v2 Cisco Secure Firewall Management Center Software Authentication Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftdfmc-dir-trav-wergjhwq Cisco Secure Firewall Management Center and Secure Firewall Threat Defense Software Path Traversal Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-tcp-dos-rhfqnwrg Cisco Secure Firewall Threat Defense Software TLS with Snort 3 Detection Engine Denial of Service Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-snort-bypass-rlggkzvf Cisco Secure Firewall Threat Defense Software Snort Deep Inspection Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-dnd-dos-bpecg7b7 Cisco Secure Firewall Threat Defense Software SSL Decryption Policy Denial of Service Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ftd-cmd-inj-mtzgzexf Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Authenticated Command Injection Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-fmc-sql-injection-2qh6ccjd Cisco Secure Firewall Management Center Software SQL Injection Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-fmc-rce-nkhnuljh Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-vpn-m9sx6mbc Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-saml-lkttrwzp Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software SAML Reflected Cross-Site Scripting Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-ospf-zh8phbsw Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software OSPF Protocol Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-luainject-vescqgms Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Lua Code Injection Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-ikev2-dos-ebuegdeg Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software IKEv2 Denial of Service Vulnerabilities 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asaftd-desync-n5avzeqw Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software VPN Web Services Client-Side Request Smuggling Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-asa-ssh-keybypass-cr5xpusf Cisco Secure Firewall Adaptive Security Appliance Software SSH Partial Private Key Authentication Bypass Vulnerability 2026-03-04T16:00:00+00:00 2026-03-04T16:00:00+00:00
cisco-sa-ucsm-cmdinj-gvxlpesb Cisco UCS Manager Software Command Injection Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsm-afwae-mogufyln Cisco UCS Manager Software Privilege Escalation Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsfxosxss-7skve8zv Cisco FXOS and UCS Manager Software Stored Cross-Site Scripting Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-ucsciv-wgytc78q Cisco FXOS and UCS Manager Software Command Injection Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-sdwan-rpa-ehchtzk Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability 2026-02-25T16:00:00+00:00 2026-03-03T00:38:56+00:00
cisco-sa-sdwan-authbp-qwcx8d4v Cisco Catalyst SD-WAN Vulnerabilities 2026-02-25T16:00:00+00:00 2026-03-05T00:06:17+00:00
cisco-sa-nxos-ether-dos-kv8ynwz4 Cisco Nexus 3600 and 9500-R Series Switching Platforms Layer 2 Loop Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-dsnmp-cnn39uh Cisco Nexus 9000 Series Fabric Switches in ACI Mode SNMP Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-nxos-cpdos-qlsv6pfd Cisco Nexus 9000 Series Fabric Switches in ACI Mode Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-n3kn9k_aci_lldp_dos-ndgrrra3 Cisco NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-apic-dos-rnus8efw Cisco Application Policy Infrastructure Controller Denial of Service Vulnerability 2026-02-25T16:00:00+00:00 2026-02-25T16:00:00+00:00
cisco-sa-wsa-archive-bypass-scx2e8zf Cisco Secure Web Appliance Real-Time Scanning Archive File Bypass Vulnerability 2026-02-04T16:00:00+00:00 2026-02-20T21:08:47+00:00
ID Description Published Updated
msrc_cve-2026-26148 Microsoft Azure AD SSH Login extension for Linux Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-11T07:00:00.000Z
msrc_cve-2026-26144 Microsoft Excel Information Disclosure Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26141 Hybrid Worker Extension (Arc‑enabled Windows VMs) Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26134 Microsoft Office Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26133 M365 Copilot Information Disclosure Vulnerability 2026-03-10T07:00:00.000Z 2026-03-12T07:00:00.000Z
msrc_cve-2026-26132 Windows Kernel Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26131 .NET Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26130 ASP.NET Core Denial of Service Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26128 Windows SMB Server Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26123 Microsoft Authenticator Information Disclosure Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26121 Azure IOT Explorer Spoofing Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26118 Azure MCP Server Tools Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26117 Arc Enabled Servers - Azure Connected Machine Agent Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26116 SQL Server Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26115 SQL Server Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26114 Microsoft SharePoint Server Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26113 Microsoft Office Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26112 Microsoft Excel Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26111 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-13T07:00:00.000Z
msrc_cve-2026-26110 Microsoft Office Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26109 Microsoft Excel Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26108 Microsoft Excel Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26107 Microsoft Excel Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26106 Microsoft SharePoint Server Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-26105 Microsoft SharePoint Server Spoofing Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-25190 GDI Remote Code Execution Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-25189 Windows DWM Core Library Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-25188 Windows Telephony Service Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-25187 Winlogon Elevation of Privilege Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
msrc_cve-2026-25186 Windows Accessibility Infrastructure (ATBroker.exe) Information Disclosure Vulnerability 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
ID Description Published Updated
ncsc-2026-0098 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2026-03-13T08:41:19.155490Z 2026-03-13T08:41:19.155490Z
ncsc-2026-0097 Kwetsbaarheden verholpen in Google Chrome 2026-03-13T08:33:43.877125Z 2026-03-13T08:33:43.877125Z
ncsc-2026-0096 Kwetsbaarheden verholpen in Veeam Backup & Replication 2026-03-12T14:54:08.200676Z 2026-03-12T14:54:08.200676Z
ncsc-2026-0095 Kwetsbaarheid verholpen in pac4j-jwt 2026-03-12T14:45:51.156512Z 2026-03-12T14:45:51.156512Z
ncsc-2026-0094 Kwetsbaarheden verholpen in Cisco IOS XR 2026-03-12T14:44:08.106602Z 2026-03-12T14:44:08.106602Z
ncsc-2026-0093 Kwetsbaarheden verholpen in GitLab 2026-03-12T14:42:46.936248Z 2026-03-12T14:42:46.936248Z
ncsc-2026-0092 Kwetsbaarheden verholpen in Fortinet FortiWeb 2026-03-12T07:46:15.529522Z 2026-03-12T07:46:15.529522Z
ncsc-2026-0091 Kwetsbaarheden verholpen in SAP-producten 2026-03-12T07:24:16.575638Z 2026-03-12T07:24:16.575638Z
ncsc-2026-0090 Kwetsbaarheden verholpen in Adobe Experience Manager 2026-03-12T07:12:51.952931Z 2026-03-12T07:12:51.952931Z
ncsc-2026-0089 Kwetsbaarheden verholpen in Adobe Acrobat Reader 2026-03-12T07:03:24.148324Z 2026-03-12T07:03:24.148324Z
ncsc-2026-0088 Kwetsbaarheden verholpen in Adobe Illustrator 2026-03-12T06:55:39.712240Z 2026-03-12T06:55:39.712240Z
ncsc-2026-0087 Kwetsbaarheden verholpen in Adobe Commerce 2026-03-12T06:49:56.459199Z 2026-03-12T06:49:56.459199Z
ncsc-2026-0086 Kwetsbaarheden verholpen in Fortinet FortiManager en FortiAnalyzer 2026-03-11T09:19:38.777277Z 2026-03-11T09:19:38.777277Z
ncsc-2026-0085 Kwetsbaarheden verholpen in Microsoft Developer tools 2026-03-10T20:35:10.478398Z 2026-03-10T20:35:10.478398Z
ncsc-2026-0084 Kwetsbaarheden verholpen in Microsoft Office 2026-03-10T20:20:08.157658Z 2026-03-10T20:20:08.157658Z
ncsc-2026-0083 Kwetsbaarheid verholpen in Microsoft Authenticator app 2026-03-10T20:18:35.792755Z 2026-03-10T20:18:35.792755Z
ncsc-2026-0082 Kwetsbaarheden verholpen in Microsoft Azure 2026-03-10T20:15:41.528951Z 2026-03-10T20:15:41.528951Z
ncsc-2026-0081 Kwetsbaarheden verholpen in Microsoft SQL Server 2026-03-10T20:12:56.032261Z 2026-03-10T20:12:56.032261Z
ncsc-2026-0080 Kwetsbaarheden verholpen in Microsoft Windows 2026-03-10T20:07:55.976638Z 2026-03-10T20:07:55.976638Z
ncsc-2026-0079 Kwetsbaarheden verholpen in Siemens producten 2026-03-10T12:39:14.474522Z 2026-03-10T12:39:14.474522Z
ncsc-2026-0078 Kwetsbaarheden verholpen in Kibana 2026-03-05T09:36:49.056247Z 2026-03-05T09:36:49.056247Z
ncsc-2026-0077 Kwetsbaarheden verholpen in Cisco Secure Firewall systemen 2026-03-05T09:05:21.646499Z 2026-03-05T09:05:21.646499Z
ncsc-2026-0076 Kwetsbaarheden verholpen in Cisco Secure Firewall Management Center 2026-03-04T20:49:12.211658Z 2026-03-04T20:49:12.211658Z
ncsc-2026-0075 Kwetsbaarheid verholpen in n8n Automation Platform 2026-03-04T14:03:54.207583Z 2026-03-04T14:03:54.207583Z
ncsc-2026-0074 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2026-03-03T09:07:09.279353Z 2026-03-03T09:07:09.279353Z
ncsc-2026-0073 Kwetsbaarheid verholpen in Juniper Junos OS Evolved 2026-02-27T09:48:51.845864Z 2026-02-27T09:48:51.845864Z
ncsc-2026-0072 Kwetsbaarheden verholpen in GitLab 2026-02-27T07:15:18.318821Z 2026-02-27T07:15:18.318821Z
ncsc-2026-0071 Kwetsbaarheden verholpen in Cisco Catalyst SD-WAN Manager 2026-02-25T17:11:09.013125Z 2026-03-06T12:07:02.595940Z
ncsc-2026-0070 Kwetsbaarheden verholpen in VMware Aria Operations 2026-02-25T11:24:46.807867Z 2026-03-04T08:54:08.940512Z
ncsc-2026-0069 Kwetsbaarheden verholpen in SolarWinds Serv-U 2026-02-25T10:39:38.154815Z 2026-02-25T10:39:38.154815Z
ID Description Published Updated
nn-2025:18-01 Lack of TLS certificate validation when connecting Arc to a Guardian or CMC, in Arc before v2.2.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2025:17-01 HTML injection in Sensor Map in CMC before 25.6.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2025:16-01 HTML injection in Alerted Nodes Dashboard in Guardian/CMC before 25.6.0 2026-03-04T11:00:00.000Z 2026-03-04T11:00:00.000Z
nn-2025:15-01 Path traversal in Import Arc data archive functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:14-01 HTML injection in Asset List in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:13-01 Stored Cross-Site Scripting (XSS) in Reports in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:12-01 HTML injection in in Time Machine functionality in Guardian/CMC before 25.5.0 2025-12-18T11:00:00.000Z 2025-12-18T11:00:00.000Z
nn-2025:11-01 Stored Cross-Site Scripting (XSS) in Dashboards in Guardian/CMC before 25.4.0 2025-11-25T11:00:00.000Z 2025-11-26T11:00:00.000Z
nn-2025:9-01 Path traversal in Time Machine functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:8-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:7-01 Authenticated SQL Injection on Alert functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:6-01 Authenticated SQL Injection on Smart Polling functionality in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:5-01 Incorrect authorization for CLI in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:4-01 Client-side path traversal in Guardian/CMC before 25.2.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:10-01 Authenticated SQL Injection on CLI functionality in Guardian/CMC before 25.3.0 2025-10-07T11:00:00.000Z 2025-10-07T11:00:00.000Z
nn-2025:3-01 Incorrect authorization for traces request/download in CMC before 25.1.0 2025-08-26T11:00:00.000Z 2025-08-26T11:00:00.000Z
nn-2025:2-01 Privilege escalation in Guardian/CMC before 24.6.0 2025-06-10T11:00:00.000Z 2025-06-10T11:00:00.000Z
nn-2025:1-01 Authenticated RCE in update functionality in Guardian/CMC before 24.6.0 2025-06-10T11:00:00.000Z 2025-06-10T11:00:00.000Z
nn-2024_1-01 DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-10T11:00:00.000Z
nn-2024:1-01 DoS on IDS parsing of malformed Radius packets in Guardian before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-10T11:00:00.000Z
nn-2023_17-01 Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-11T11:00:00.000Z
nn-2023:17-01 Information disclosure via audit records for OpenAPI requests in Guardian/CMC before 23.4.1 2024-04-10T11:00:00.000Z 2024-04-11T11:00:00.000Z
nn-2023_12-01 Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0 2024-01-15T11:00:00.000Z 2024-01-16T11:00:00.000Z
nn-2023:12-01 Check Point IoT integration: WebSocket returns assets data without authentication in Guardian/CMC before 23.3.0 2024-01-15T11:00:00.000Z 2024-01-16T11:00:00.000Z
nn-2023_9-01 Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_11-01 SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023_10-01 DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023:9-01 Authenticated SQL Injection on Query functionality in Guardian/CMC before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023:11-01 SQL Injection on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
nn-2023:10-01 DoS on IDS parsing of malformed asset fields in Guardian/CMC >= 22.6.0 before 22.6.3 and 23.1.0 2023-09-18T11:00:00.000Z 2023-11-16T11:00:00.000Z
ID Description Published Updated
opensuse-su-2026:20348-1 Security update for python-PyPDF2 2026-03-11T20:15:02Z 2026-03-11T20:15:02Z
opensuse-su-2026:20345-1 Security update for python-lxml_html_clean 2026-03-11T18:05:18Z 2026-03-11T18:05:18Z
opensuse-su-2026:10323-1 traefik-3.6.10-1.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10322-1 python311-lxml_html_clean-0.4.4-1.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10321-1 python311-PyPDF2-2.11.1-6.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10320-1 perl-Compress-Raw-Zlib-2.222-1.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10319-1 helm3-3.20.0-2.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10318-1 helm-4.1.1-3.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10317-1 grype-0.109.1-1.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10316-1 ghostty-1.3.0-1.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10315-1 GraphicsMagick-1.3.46-2.1 on GA media 2026-03-10T00:00:00Z 2026-03-10T00:00:00Z
opensuse-su-2026:10311-1 corepack24-24.13.0-4.1 on GA media 2026-03-08T00:00:00Z 2026-03-08T00:00:00Z
opensuse-su-2026:10310-1 go1.25-1.25.8-1.1 on GA media 2026-03-08T00:00:00Z 2026-03-08T00:00:00Z
opensuse-su-2026:20332-1 Security update for chromium 2026-03-07T12:59:14Z 2026-03-07T12:59:14Z
opensuse-su-2026:10309-1 weblate-5.16.1-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10308-1 virtiofsd-1.13.2-2.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10307-1 tomcat11-11.0.18-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10306-1 tomcat10-10.1.52-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10305-1 tomcat-9.0.115-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10304-1 python311-nltk-3.9.3-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10303-1 libIex-3_4-33-3.4.6-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10302-1 kubeshark-cli-53.1.0-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10301-1 kernel-devel-longterm-6.18.16-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10300-1 jetty-annotations-9.4.58-3.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10299-1 go1.26-1.26.1-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10298-1 exiv2-0.28.8-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10297-1 coredns-1.14.2-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10296-1 chromedriver-145.0.7632.159-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:10295-1 NetworkManager-applet-strongswan-1.6.4-1.1 on GA media 2026-03-07T00:00:00Z 2026-03-07T00:00:00Z
opensuse-su-2026:20333-1 Security update for python-PyPDF2 2026-03-06T21:01:39Z 2026-03-06T21:01:39Z
ID Description Published Updated
oxdc-adv-2025-0001 OX Dovecot Pro Security Advisory OXDC-ADV-2025-0001 2025-10-31T00:00:00+00:00 2025-11-27T00:00:00+00:00
oxas-adv-2025-0003 OX App Suite Security Advisory OXAS-ADV-2025-0003 2025-09-24T00:00:00+02:00 2025-11-27T00:00:00+00:00
oxas-adv-2025-0002 OX App Suite Security Advisory OXAS-ADV-2025-0002 2025-08-12T00:00:00+02:00 2025-10-31T00:00:00+00:00
oxas-adv-2025-0001 OX App Suite Security Advisory OXAS-ADV-2025-0001 2025-01-27T00:00:00+01:00 2025-04-07T00:00:00+00:00
oxdc-adv-2024-0003 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0003 2024-09-10T00:00:00+02:00 2024-09-10T00:00:00+00:00
oxdc-adv-2024-0002 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0002 2024-09-10T00:00:00+02:00 2024-09-10T00:00:00+00:00
oxdc-adv-2024-0001 OX Dovecot Pro Security Advisory OXDC-ADV-2024-0001 2024-09-02T00:00:00+02:00 2024-09-06T00:00:00+00:00
oxas-adv-2024-0005 OX App Suite Security Advisory OXAS-ADV-2024-0005 2024-07-08T00:00:00+02:00 2024-09-09T00:00:00+00:00
oxas-adv-2024-0004 OX App Suite Security Advisory OXAS-ADV-2024-0004 2024-06-13T00:00:00+02:00 2024-08-19T00:00:00+00:00
oxas-adv-2024-0003 OX App Suite Security Advisory OXAS-ADV-2024-0003 2024-04-24T00:00:00+02:00 2024-08-19T00:00:00+00:00
oxas-adv-2024-0002 OX App Suite Security Advisory OXAS-ADV-2024-0002 2024-03-06T00:00:00+01:00 2024-05-06T00:00:00+00:00
oxas-adv-2024-0001 OX App Suite Security Advisory OXAS-ADV-2024-0001 2024-02-08T00:00:00+01:00 2024-04-25T00:00:00+00:00
oxas-adv-2023-0007 OX App Suite Security Advisory OXAS-ADV-2023-0007 2023-12-11T00:00:00+01:00 2024-02-16T00:00:00+00:00
oxas-adv-2023-0006 OX App Suite Security Advisory OXAS-ADV-2023-0006 2023-09-25T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0005 OX App Suite Security Advisory OXAS-ADV-2023-0005 2023-09-19T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0004 OX App Suite Security Advisory OXAS-ADV-2023-0004 2023-08-01T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0003 OX App Suite Security Advisory OXAS-ADV-2023-0003 2023-05-02T00:00:00+02:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0002 OX App Suite Security Advisory OXAS-ADV-2023-0002 2023-03-20T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2023-0001 OX App Suite Security Advisory OXAS-ADV-2023-0001 2023-02-06T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2022-0002 OX App Suite Security Advisory OXAS-ADV-2022-0002 2022-11-02T00:00:00+01:00 2024-01-22T00:00:00+00:00
oxas-adv-2022-0001 OX App Suite Security Advisory OXAS-ADV-2022-0001 2022-08-10T00:00:00+02:00 2024-01-22T00:00:00+00:00
ID Description Published Updated
rhsa-2026:4548 Red Hat Security Advisory: postgresql:15 security update 2026-03-12T23:07:13+00:00 2026-03-13T00:37:49+00:00
rhsa-2026:4550 Red Hat Security Advisory: vsftpd security update 2026-03-12T22:51:53+00:00 2026-03-13T00:37:32+00:00
rhsa-2026:4547 Red Hat Security Advisory: postgresql:16 security update 2026-03-12T22:47:13+00:00 2026-03-13T00:37:49+00:00
rhsa-2026:4544 Red Hat Security Advisory: postgresql:16 security update 2026-03-12T22:40:08+00:00 2026-03-13T00:37:49+00:00
rhsa-2026:4546 Red Hat Security Advisory: postgresql:15 security update 2026-03-12T22:31:03+00:00 2026-03-13T00:37:49+00:00
rhsa-2026:4533 Red Hat Security Advisory: podman security update 2026-03-12T21:34:53+00:00 2026-03-14T00:38:29+00:00
rhsa-2026:4532 Red Hat Security Advisory: buildah security update 2026-03-12T21:01:29+00:00 2026-03-14T00:38:27+00:00
rhsa-2026:4531 Red Hat Security Advisory: runc security update 2026-03-12T20:57:13+00:00 2026-03-14T00:38:27+00:00
rhsa-2026:4543 Red Hat Security Advisory: vsftpd security update 2026-03-12T20:45:47+00:00 2026-03-13T00:37:42+00:00
rhsa-2026:4528 Red Hat Security Advisory: postgresql security update 2026-03-12T19:02:17+00:00 2026-03-13T00:37:52+00:00
rhsa-2026:4525 Red Hat Security Advisory: vsftpd security update 2026-03-12T18:17:47+00:00 2026-03-13T00:37:42+00:00
rhsa-2026:4524 Red Hat Security Advisory: postgresql security update 2026-03-12T18:08:13+00:00 2026-03-13T00:37:52+00:00
rhsa-2026:4522 Red Hat Security Advisory: vsftpd security update 2026-03-12T17:56:43+00:00 2026-03-13T00:37:41+00:00
rhsa-2026:4517 Red Hat Security Advisory: php:7.4 security update 2026-03-12T16:34:02+00:00 2026-03-12T19:15:13+00:00
rhsa-2026:4515 Red Hat Security Advisory: postgresql:15 security update 2026-03-12T16:33:02+00:00 2026-03-13T00:37:47+00:00
rhsa-2026:4513 Red Hat Security Advisory: vsftpd security update 2026-03-12T16:28:37+00:00 2026-03-13T00:37:37+00:00
rhsa-2026:4516 Red Hat Security Advisory: postgresql:13 security update 2026-03-12T16:20:17+00:00 2026-03-13T00:37:48+00:00
rhsa-2026:4514 Red Hat Security Advisory: php:7.4 security update 2026-03-12T16:17:44+00:00 2026-03-12T19:15:12+00:00
rhsa-2026:4518 Red Hat Security Advisory: postgresql security update 2026-03-12T16:17:32+00:00 2026-03-13T00:37:49+00:00
rhsa-2026:4456 Red Hat Security Advisory: .NET 9.0 security update 2026-03-12T15:37:08+00:00 2026-03-12T19:15:15+00:00
rhsa-2026:4472 Red Hat Security Advisory: compat-openssl11 security update 2026-03-12T15:34:47+00:00 2026-03-12T19:15:19+00:00
rhsa-2026:4445 Red Hat Security Advisory: .NET 10.0 security update 2026-03-12T15:34:02+00:00 2026-03-12T19:15:18+00:00
rhsa-2026:4507 Red Hat Security Advisory: php:7.4 security update 2026-03-12T15:31:38+00:00 2026-03-12T19:15:12+00:00
rhsa-2026:4505 Red Hat Security Advisory: postgresql:12 security update 2026-03-12T15:30:06+00:00 2026-03-13T00:37:42+00:00
rhsa-2026:4509 Red Hat Security Advisory: postgresql:12 security update 2026-03-12T15:29:42+00:00 2026-03-13T00:37:43+00:00
rhsa-2026:4454 Red Hat Security Advisory: .NET 8.0 security update 2026-03-12T15:27:16+00:00 2026-03-12T19:15:13+00:00
rhsa-2026:4447 Red Hat Security Advisory: libvpx security update 2026-03-12T15:24:51+00:00 2026-03-12T19:15:32+00:00
rhsa-2026:4504 Red Hat Security Advisory: postgresql:13 security update 2026-03-12T15:18:47+00:00 2026-03-13T00:37:42+00:00
rhsa-2026:4506 Red Hat Security Advisory: postgresql:12 security update 2026-03-12T15:13:25+00:00 2026-03-13T00:37:46+00:00
rhsa-2026:4501 Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage 2026-03-12T14:50:34+00:00 2026-03-13T12:47:32+00:00
ID Description Published Updated
sevd-2026-069-06 Deserialization of Untrusted Data vulnerability on Multiple Products 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-069-05 Use of Hard-coded Credentials vulnerability in EcoStruxure™ IT Data Center Expert 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-069-04 Improper Control of Generation of Code ('Code Injection') vulnerability on EcoStruxure™ Automation Expert 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-069-03 Deserialization of Untrusted Data vulnerability on EcoStruxure™ Foxboro DCS 2026-03-10T07:00:00.000Z 2026-03-13T07:00:00.000Z
sevd-2026-069-02 Improper Neutralization in Multiple Products 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-069-01 Improper Resource Shutdown or Release vulnerability in Multiple Products 2026-03-10T07:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-041-02 Multiple Vulnerabilities on EcoStruxure™ Building Operation Workstation and EcoStruxure™ Building Operation Webstation 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
sevd-2026-041-01 Improper Check for Unusual or Exceptional Conditions on Multiple Products 2026-02-10T08:00:00.000Z 2026-02-10T08:00:00.000Z
sevd-2026-013-04 Multiple Vulnerabilities on EcoStruxure Power Build Rapsody 2026-01-13T08:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2026-013-03 Multiple Vulnerabilities on Zigbee Products 2026-01-13T08:00:00.000Z 2026-01-13T08:00:00.000Z
sevd-2026-013-02 Incorrect Default Permissions Vulnerability on EcoStruxure™ Process Expert 2026-01-13T08:00:00.000Z 2026-01-13T08:00:00.000Z
sevd-2026-013-01 Multiple Third-Party Vulnerabilities on ProLeiT Plant iT/Brewmaxx 2026-01-13T08:00:00.000Z 2026-03-10T07:00:00.000Z
sevd-2025-343-02 EcoStruxure™ Foxboro DCS Advisor 2025-12-09T08:00:00.000Z 2025-12-09T08:00:00.000Z
sevd-2025-343-01 EcoStruxure™ Foxboro DCS 2025-12-09T08:00:00.000Z 2026-02-10T08:00:00.000Z
sevd-2025-315-02 EcoStruxure™ Machine SCADA Expert & Pro-face BLUE Open Studio 2025-11-11T08:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-315-01 PowerChute™ Serial Shutdown 2025-11-11T08:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-287-01 EcoStruxure™ OPC UA Server Expert and EcoStruxure™ Modicon Communication Server 2025-10-14T07:00:00.000Z 2025-10-14T07:00:00.000Z
sevd-2025-252-02 Saitel DR & Saitel DP Remote Terminal Unit 2025-09-09T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-252-01 Multiple Altivar Process Drives and Communication Modules 2025-09-09T04:00:00.000Z 2025-12-09T08:00:00.000Z
sevd-2025-224-05 Modicon M340 Controller and Communication Modules 2025-08-12T04:00:00.000Z 2025-08-12T04:00:00.000Z
sevd-2025-224-04 EcoStruxure™ Building Operation Enterprise Server, EcoStruxure™ Building Operation Enterprise Central, and EcoStruxure™ Workstation 2025-08-12T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-224-03 Schneider Electric Software Update 2025-08-12T04:00:00.000Z 2025-09-09T04:00:00.000Z
sevd-2025-224-02 EcoStruxure™ Power Monitoring Expert Software & EcoStruxure™ Power Operation (EPO) and EcoStruxure™ Power SCADA Operation (PSO) 2025-08-12T04:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-224-01 Saitel DR & Saitel DP Remote Terminal Unit 2025-08-12T04:00:00.000Z 2025-11-11T08:00:00.000Z
sevd-2025-189-04 EcoStruxure™ Power Monitoring Expert (PME) and EcoStruxure™ Power Operation (EPO) with Advanced Reporting and Dashboards 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-189-03 EcoStruxure™ Power Operation 2025-07-08T04:00:00.000Z 2026-02-10T08:00:00.000Z
sevd-2025-189-02 System Monitor Application in Harmony and Pro-face PS5000 Legacy Industrial PCs 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-189-01 EcoStruxure™ IT Data Center Expert 2025-07-08T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-161-03 EVLink WallBox 2025-06-10T04:00:00.000Z 2025-07-08T04:00:00.000Z
sevd-2025-161-02 Modicon Controllers M241/M251/M258/LMC058/M262 2025-06-10T04:00:00.000Z 2025-07-08T04:00:00.000Z
ID Description Published Updated
sca-2026-0006 Vulnerabilities affecting SICK Lector85x and SICK Lector83x 2026-03-06T14:00:00.000Z 2026-03-06T14:00:00.000Z
sca-2026-0005 Vulnerabilities affecting SICK LMS1000 and SICK MRS1000 2026-02-27T14:00:00.000Z 2026-02-27T14:00:00.000Z
sca-2026-0004 Eclipse Cyclone DDS Vulnerabilities have no impact on SICK picoScan150 & SICK picoScan120 products 2026-02-13T14:00:00.000Z 2026-02-13T14:00:00.000Z
sca-2026-0003 Vulnerability affecting SICK nanoScan3 and microScan3 2026-01-26T14:00:00.000Z 2026-01-26T14:00:00.000Z
sca-2026-0002 Vulnerabilities affecting SICK Incoming Goods Suite 2026-01-15T14:00:00.000Z 2026-01-22T19:00:00.000Z
sca-2026-0001 Vulnerabilities affecting SICK TDC-X401GL 2026-01-15T14:00:00.000Z 2026-01-15T14:00:00.000Z
sca-2025-0014 CodeMeter vulnerablity affects SICK CODE-LOC and SICK LIDAR-LOC 2025-11-03T11:00:00.000Z 2025-11-03T14:00:00.000Z
sca-2025-0013 Vulnerabilities affecting SICK TLOC100-100 2025-10-27T14:00:00.000Z 2025-11-11T14:00:00.000Z
sca-2025-0012 Sudo vulnerability affects SICK SID products 2025-10-27T11:00:00.000Z 2025-10-27T14:00:00.000Z
sca-2025-0011 Vulnerabilities affecting Endress+Hauser SSG-E210GC 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0010 Multiple vulnerabilities in SICK Enterprise Analytics and SICK Logistic Analytics Products 2025-10-02T13:00:00.000Z 2025-10-02T13:00:00.000Z
sca-2025-0009 Vulnerabilities affecting SICK TDC-E210GC 2025-08-01T13:00:00.000Z 2025-08-01T13:00:00.000Z
sca-2025-0008 Multiple vulnerabilities in Endress+Hauser MEAC300-FNADE4 2025-07-03T13:00:00.000Z 2025-07-03T13:00:00.000Z
sca-2025-0007 Multiple vulnerabilities in SICK Field Analytics and SICK Media Server 2025-06-12T13:00:00.000Z 2025-06-12T13:00:00.000Z
sca-2025-0006 Vulnerability affecting picoScan and multiScan 2025-04-28T13:00:00.000Z 2025-04-28T13:00:00.000Z
sca-2025-0005 Vulnerabilities in SICK Flexi Compact 2025-04-28T10:00:00.000Z 2025-04-28T10:00:00.000Z
sca-2025-0004 Critical vulnerabilities in SICK DL100-2xxxxxxx 2025-03-14T11:00:00.000Z 2025-03-14T11:00:00.000Z
sca-2025-0003 FreeRTOS Vulnerabilities have no impact on SICK Products 2025-02-28T00:00:00.000Z 2025-05-20T11:00:00.000Z
sca-2025-0001 Multiple vulnerabilities in SICK MEAC300 2025-02-14T14:00:00.000Z 2025-02-21T14:00:00.000Z
sca-2025-0002 Vulnerability in SICK Lector8xx and SICK InspectorP8xx 2025-02-14T10:19:00.000Z 2025-02-14T10:19:00.000Z
sca-2024-0007 Vulnerability in SICK OLM 2024-12-31T00:00:00.000Z 2024-12-31T00:00:00.000Z
sca-2024-0006 Critical vulnerabilities in SICK InspectorP61x, InspectorP62x and TiM3xx 2024-12-06T00:00:00.000Z 2024-12-06T00:00:00.000Z
sca-2024-0005 Vulnerability in SICK Incoming Goods Suite 2024-11-19T00:00:00.000Z 2024-11-19T00:00:00.000Z
sca-2024-0004 Third party vulnerabilities in SICK CDE-100 2024-11-07T12:00:00.000Z 2024-11-07T12:00:00.000Z
sca-2024-0003 Critical vulnerability in multiple SICK products 2024-10-17T13:00:00.000Z 2024-10-17T13:00:00.000Z
sca-2024-0002 Vulnerability in SICK MSC800 2024-09-11T23:00:00.000Z 2024-09-11T23:00:00.000Z
sca-2024-0001 Vulnerability in SICK Logistics Analytics Products and SICK Field Analytics 2024-01-29T00:00:00.000Z 2024-01-29T00:00:00.000Z
sca-2023-0011 Vulnerability in multiple SICK Flexi Soft Gateways 2023-10-23T11:00:00.000Z 2023-10-23T11:00:00.000Z
sca-2023-0010 Vulnerabilities in SICK Application Processing Unit 2023-10-09T11:00:00.000Z 2023-10-09T11:00:00.000Z
sca-2023-0008 Vulnerability in SICK SIM1012 2023-09-29T13:00:00.000Z 2023-09-29T13:00:00.000Z
ID Description Published Updated
ssa-975644 SSA-975644: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-903736 SSA-903736: Multiple vulnerabilities in SICAM SIAPP SDK before V2.1.7 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-485750 SSA-485750: Multiple Vulnerabilities in SIDIS Prime Before V4.0.800 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-452276 SSA-452276: Stored Cross-Site Scripting Vulnerability in SIMATIC S7-1500 2026-03-10T00:00:00.000Z 2026-03-13T00:00:00.000Z
ssa-126399 SSA-126399: Improper Access Control Vulnerability in Heliox EV Chargers 2026-03-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-965753 SSA-965753: Multiple File Parsing Vulnerabilities in Simcenter Femap and Nastran Before V2512 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-625934 SSA-625934: Improper Access Control Vulnerability in the Webhooks Implementation of Siveillance Video Management Servers 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-535115 SSA-535115: Data Validation Vulnerability in NX Before V2512 2026-02-10T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-507364 SSA-507364: Heap Based Buffer Overflow Vulnerability in WIBU CodeMeter Runtime Affecting the Desigo CC Product Family and SENTRON Powermanager 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-445819 SSA-445819: Out of Bounds Read in PS/IGES Parasolid Translator Component in Solid Edge 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-311973 SSA-311973: Multiple Local Privilege Escalation Vulnerabilities in SINEC NMS and User Management Component (UMC) 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-035571 SSA-035571: Cross Site Scripting Vulnerability in Polarion Before V2506 2026-02-10T00:00:00Z 2026-02-10T00:00:00Z
ssa-089022 SSA-089022: Multiple Vulnerabilities in Third-Party Components in SINEC OS before V3.3 2026-01-28T00:00:00Z 2026-02-24T00:00:00Z
ssa-827968 SSA-827968: Vulnerability in Nozomi Guardian/CMC on RUGGEDCOM APE1808 Devices 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-674753 SSA-674753: Denial-of-Service Vulnerability in ET 200 Devices 2026-01-13T00:00:00Z 2026-02-10T00:00:00Z
ssa-192617 SSA-192617: Local Privilege Escalation Vulnerability in TeleControl Server Basic Before V3.1.2.4 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-014678 SSA-014678: Authorization Bypass Vulnerability in Industrial Edge Device Kit 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-001536 SSA-001536: Authorization Bypass Vulnerability in Siemens Industrial Edge Devices 2026-01-13T00:00:00Z 2026-01-13T00:00:00Z
ssa-512988 SSA-512988: File Parsing Vulnerability in Simcenter Femap Before V2512 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
ssa-915282 SSA-915282: Denial of service Vulnerability in Interniche IP-Stack based Industrial Devices 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-912274 SSA-912274: Multiple Vulnerabilities in RUGGEDCOM ROX Before V2.17 2025-12-09T00:00:00Z 2026-01-13T00:00:00Z
ssa-882673 SSA-882673: Multiple Vulnerabilities in SINEC Security Monitor before V4.10.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-868571 SSA-868571: Missing Server Certificate Validation in IAM Client 2025-12-09T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-763474 SSA-763474: Denial of Service Vulnerability in Ruggedcom ROS devices before V5.10.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-734261 SSA-734261: Authentication Bypass Vulnerability in Energy Services Using Elspec G5DFR 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-710408 SSA-710408: Missing Server Certificate Validation in Siemens Advanced Licensing (SALT) Toolkit 2025-12-09T00:00:00.000Z 2026-03-10T00:00:00.000Z
ssa-626856 SSA-626856: Multiple Vulnerabilities in SINEMA Remote Connect Sever Before V3.2 SP4 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-471761 SSA-471761: Multiple Vulnerabilities in SICAM T Before V3.0 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-420375 SSA-420375: Improper Integrity Check of Firmware Updates in Building X - Security Manager Edge Controller (ACC-AP) 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ssa-416652 SSA-416652: Multiple Vulnerabilities in SIMATIC CN 4100 Before V4.0.1 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
ID Description Published Updated
suse-su-2026:0886-1 Security update for libsoup2 2026-03-12T14:50:32Z 2026-03-12T14:50:32Z
suse-su-2026:0885-1 Security update for curl 2026-03-12T14:50:17Z 2026-03-12T14:50:17Z
suse-su-2026:0884-1 Security update for python36 2026-03-12T10:20:30Z 2026-03-12T10:20:30Z
suse-su-2026:0883-1 Security update for postgresql17 2026-03-12T10:20:03Z 2026-03-12T10:20:03Z
suse-su-2026:0882-1 Security update for postgresql16 2026-03-12T10:19:26Z 2026-03-12T10:19:26Z
suse-su-2026:0881-1 Security update for postgresql18 2026-03-12T10:18:52Z 2026-03-12T10:18:52Z
suse-su-2026:0880-1 Security update for MozillaThunderbird 2026-03-12T10:18:33Z 2026-03-12T10:18:33Z
suse-su-2026:0879-1 Security update for curl 2026-03-12T10:04:20Z 2026-03-12T10:04:20Z
suse-su-2026:0862-1 Security update for gnutls 2026-03-11T10:00:03Z 2026-03-11T10:00:03Z
suse-su-2026:0858-1 Security update for python-aiohttp 2026-03-10T12:38:39Z 2026-03-10T12:38:39Z
suse-su-2026:0857-1 Security update for util-linux 2026-03-10T11:01:32Z 2026-03-10T11:01:32Z
suse-su-2026:0856-1 Security update for util-linux 2026-03-10T08:35:29Z 2026-03-10T08:35:29Z
suse-su-2026:0855-1 Security update for c3p0 and mchange-commons 2026-03-10T05:06:36Z 2026-03-10T05:06:36Z
suse-su-2026:0848-1 Security update for valkey 2026-03-07T18:18:45Z 2026-03-07T18:18:45Z
suse-su-2026:0847-1 Security update for libsoup 2026-03-07T01:34:36Z 2026-03-07T01:34:36Z
suse-su-2026:0846-1 Security update for python-Markdown 2026-03-06T17:04:39Z 2026-03-06T17:04:39Z
suse-su-2026:0831-1 Security update for openvpn 2026-03-05T15:18:06Z 2026-03-05T15:18:06Z
suse-su-2026:0830-1 Security update for ocaml 2026-03-05T15:17:30Z 2026-03-05T15:17:30Z
suse-su-2026:0829-1 Security update for gnutls 2026-03-05T15:17:09Z 2026-03-05T15:17:09Z
suse-su-2026:0828-1 Security update for python-Authlib 2026-03-05T15:16:58Z 2026-03-05T15:16:58Z
suse-su-2026:0827-1 Security update for glibc-livepatches 2026-03-05T15:16:49Z 2026-03-05T15:16:49Z
suse-su-2026:0826-1 Security update for expat 2026-03-05T15:16:40Z 2026-03-05T15:16:40Z
suse-su-2026:0825-1 Security update for php-composer2 2026-03-05T15:16:16Z 2026-03-05T15:16:16Z
suse-su-2026:0824-1 Security update for openCryptoki 2026-03-05T15:16:07Z 2026-03-05T15:16:07Z
suse-su-2026:0821-1 Security update for python-Django 2026-03-05T11:43:12Z 2026-03-05T11:43:12Z
suse-su-2026:0819-1 Security update for virtiofsd 2026-03-05T10:49:51Z 2026-03-05T10:49:51Z
suse-su-2026:0817-1 Security update for wireshark 2026-03-05T09:51:15Z 2026-03-05T09:51:15Z
suse-su-2026:0816-1 Security update for virtiofsd 2026-03-05T09:50:59Z 2026-03-05T09:50:59Z
suse-su-2026:0814-1 Security update for mozilla-nss 2026-03-05T09:06:46Z 2026-03-05T09:06:46Z
suse-su-2026:0813-1 Security update for mozilla-nss 2026-03-05T08:34:14Z 2026-03-05T08:34:14Z
ID Description Published Updated
alsa-2026:4235 Moderate: nginx:1.26 security update 2026-03-10T00:00:00Z 2026-03-11T11:13:12Z
alsa-2026:4174 Important: opentelemetry-collector security update 2026-03-10T00:00:00Z 2026-03-11T17:46:34Z
alsa-2026:4173 Important: gimp security update 2026-03-10T00:00:00Z 2026-03-10T19:59:39Z
alsa-2026:4165 Moderate: python3.12 security update 2026-03-10T00:00:00Z 2026-03-10T20:09:00Z
alsa-2026:4164 Important: git-lfs security update 2026-03-10T00:00:00Z 2026-03-11T09:33:00Z
alsa-2026:4162 Moderate: mysql8.4 security update 2026-03-10T00:00:00Z 2026-03-11T09:43:31Z
alsa-2026:4146 Important: python-pyasn1 security update 2026-03-10T00:00:00Z 2026-03-10T08:51:50Z
alsa-2026:4110 Important: postgresql:16 security update 2026-03-09T00:00:00Z 2026-03-10T19:55:53Z
alsa-2026:4064 Important: postgresql:12 security update 2026-03-09T00:00:00Z 2026-03-11T09:29:57Z
alsa-2026:4063 Important: postgresql:16 security update 2026-03-09T00:00:00Z 2026-03-11T09:46:43Z
alsa-2026:4059 Important: postgresql:15 security update 2026-03-09T00:00:00Z 2026-03-11T09:49:31Z
alsa-2026:4024 Important: postgresql:13 security update 2026-03-09T00:00:00Z 2026-03-11T09:52:09Z
alsa-2026:3967 Important: libvpx security update 2026-03-09T00:00:00Z 2026-03-10T01:53:59Z
alsa-2026:3966 Moderate: kernel security update 2026-03-09T00:00:00Z 2026-03-11T10:10:37Z
alsa-2026:3964 Moderate: kernel-rt security update 2026-03-09T00:00:00Z 2026-03-10T02:07:14Z
alsa-2026:3963 Moderate: kernel security update 2026-03-09T00:00:00Z 2026-03-10T02:04:41Z
alsa-2026:3939 Moderate: nfs-utils security update 2026-03-05T00:00:00Z 2026-03-11T09:35:33Z
alsa-2026:3938 Moderate: nfs-utils security update 2026-03-05T00:00:00Z 2026-03-10T01:58:47Z
alsa-2026:3928 Important: git-lfs security update 2026-03-05T00:00:00Z 2026-03-06T13:16:21Z
alsa-2026:3898 Important: osbuild-composer security update 2026-03-05T00:00:00Z 2026-03-11T09:54:32Z
alsa-2026:3896 Important: postgresql:15 security update 2026-03-05T00:00:00Z 2026-03-10T19:52:06Z
alsa-2026:3887 Important: postgresql16 security update 2026-03-05T00:00:00Z 2026-03-06T13:21:51Z
alsa-2026:3864 Important: delve security update 2026-03-05T00:00:00Z 2026-03-06T13:19:09Z
alsa-2026:3753 Important: osbuild-composer security update 2026-03-04T00:00:00Z 2026-03-10T19:47:08Z
alsa-2026:3752 Important: osbuild-composer security update 2026-03-04T00:00:00Z 2026-03-11T09:57:01Z
alsa-2026:3730 Important: postgresql security update 2026-03-04T00:00:00Z 2026-03-11T10:01:08Z
alsa-2026:3669 Important: go-rpm-macros security update 2026-03-03T00:00:00Z 2026-03-04T11:09:35Z
alsa-2026:3668 Important: go-rpm-macros security update 2026-03-03T00:00:00Z 2026-03-04T11:06:04Z
alsa-2026:3638 Moderate: nginx:1.24 security update 2026-03-03T00:00:00Z 2026-03-04T10:33:37Z
alsa-2026:3551 Important: libpng security update 2026-03-02T00:00:00Z 2026-03-04T10:21:19Z
ID Description Published Updated
hsec-2024-0004 Hackage package and doc upload stored XSS vulnerability 2026-01-16T11:18:20Z 2026-01-16T11:18:20Z
hsec-2025-0007 cmark-gfm: resource exhaustion due to quadratic complexity in parser 2025-12-27T08:58:56Z 2025-12-27T08:58:56Z
hsec-2025-0006 Private key leak via inherited file descriptor 2025-11-17T02:22:38Z 2025-11-17T02:22:38Z
hsec-2025-0005 cabal-install dependency confusion 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2025-0004 Broken Path Sanitization in spacecookie Library 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2025-0003 Use after free in multithreaded lzma (.xz) decoder 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2025-0002 Double Public Key Signing Function Oracle Attack on Ed25519 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2025-0001 Subword division operations may produce incorrect results 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0009 Public key confusion in third-party blocks 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0008 Sign extension error in the PPC64le FFI 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0007 Sign extension error in the AArch64 NCG 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0006 fromIntegral: conversion error 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0003 process: command injection via argument list on Windows 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0002 out-of-bounds write when there are many bzip2 selectors 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2024-0001 Reflected XSS vulnerability in keter 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0015 cabal-install uses expired key policies 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0014 Arbitrary file write is possible when using PDF output or --extract-media with untrusted input 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0013 git-annex plaintext storage of embedded credentials on encrypted remotes 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0012 git-annex checksum exposure to encrypted special remotes 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0011 git-annex GPG decryption attack via compromised remote 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0010 git-annex private data exfiltration to compromised remote 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0009 git-annex command injection via malicious SSH hostname 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0008 Stored XSS in hledger-web 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0007 readFloat: memory exhaustion with large exponent 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0006 x509-validation does not enforce pathLenConstraint 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0005 tls-extra: certificate validation does not check Basic Constraints 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0004 xml-conduit unbounded entity expansion 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0003 code injection in xmonad-contrib 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0002 Improper Verification of Cryptographic Signature 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
hsec-2023-0001 Hash flooding vulnerability in aeson 2025-11-14T14:45:34Z 2025-11-14T14:45:34Z
ID Description Published Updated
osec-2026-02 ARP unbounded memory usage 2026-02-18T10:30:00Z 2026-02-18T10:30:00Z
osec-2026-01 Buffer Over-Read in OCaml Marshal Deserialization 2026-02-17T13:30:00Z 2026-02-27T09:30:00Z
osec-2025-01 Albatross console out of memory 2025-08-15T00:18:22Z 2026-01-13T12:00:00Z
osec-2023-01 Time of check time of use issue in opam's cache 2023-05-25T12:00:00Z 2026-01-09T12:00:00Z
osec-2022-01 Infinite loop in console output on xen 2022-12-07T00:00:00Z 2026-02-18T09:30:00Z
osec-2019-02 Grant unshare vulnerability in mirage-xen 2019-04-26T00:00:00Z 2026-01-13T12:00:00Z
osec-2019-01 Memory disclosure in mirage-net-xen 2019-03-21T00:00:00Z 2026-01-13T12:00:00Z
osec-2018-01 An integer overflow in the `bigarray` serialization module leads to arbitrary code execution 2018-04-06T18:29:00Z 2025-12-16T12:00:00Z
osec-2017-01 Local privilege escalation issue with ocaml binaries 2017-06-23T15:19:47Z 2025-12-16T12:00:00Z
osec-2016-02 Memory disclosure in mirage-net-xen 2016-05-03T00:00:00Z 2026-01-13T12:00:00Z
osec-2016-01 Buffer overflow and information leak in OCaml < 4.03.0 2016-04-29T00:18:22Z 2026-01-01T12:00:00Z
ID Description Published Updated
osv-2026-371 Heap-buffer-overflow in tinyobj::tryParseDouble 2026-03-09T00:09:41.689616Z 2026-03-09T00:09:41.689926Z
osv-2026-359 Segv on unknown address in gpsd_vlog 2026-03-07T00:03:40.062221Z 2026-03-07T00:03:40.062505Z
osv-2026-311 UNKNOWN READ in strncasecmp 2026-02-26T00:16:50.091819Z 2026-02-26T00:16:50.092121Z
osv-2026-308 Heap-buffer-overflow in vcardstructured_new_from_string 2026-02-25T00:19:49.963815Z 2026-02-25T00:19:49.964188Z
osv-2026-307 Global-buffer-overflow in navcom_parse 2026-02-25T00:16:23.864362Z 2026-02-25T00:16:23.864694Z
osv-2026-304 Heap-use-after-free in tf::Executor::_invoke 2026-02-25T00:09:10.290694Z 2026-02-25T00:09:10.291030Z
osv-2026-300 UNKNOWN WRITE in nmeaid_to_prn 2026-02-25T00:06:00.225480Z 2026-02-25T00:06:00.225972Z
osv-2026-297 Security exception in org.apache.poi.util.IOUtils.safelyAllocate 2026-02-24T00:02:29.789817Z 2026-02-24T00:02:29.790144Z
osv-2026-292 UNKNOWN WRITE in <wasmtime::runtime::func::Func>::call_unchecked_raw::< 2026-02-23T00:19:15.717984Z 2026-02-23T00:19:15.718280Z
osv-2026-272 Heap-use-after-free in vcardproperty_get_value 2026-02-21T00:20:10.455944Z 2026-02-21T00:20:10.456357Z
osv-2026-261 Segv on unknown address in ___interceptor_strtol 2026-02-19T00:09:21.893775Z 2026-02-19T00:09:21.894076Z
osv-2026-259 Use-of-uninitialized-value in tsip_parse_input 2026-02-18T00:14:29.378028Z 2026-02-18T00:14:29.378341Z
osv-2026-255 UNKNOWN WRITE in nmeaid_to_prn 2026-02-17T00:17:19.574579Z 2026-02-17T00:17:19.574905Z
osv-2026-244 Use-of-uninitialized-value in ihevcd_fmt_conv 2026-02-15T00:03:36.246033Z 2026-02-15T00:03:36.246568Z
osv-2026-242 Use-of-uninitialized-value in ntrip_parse_url 2026-02-14T00:17:42.945923Z 2026-02-14T00:17:42.946299Z
osv-2026-240 Use-of-uninitialized-value in packet_get1 2026-02-14T00:09:50.559032Z 2026-02-14T00:09:50.559326Z
osv-2026-229 Segv on unknown address in aiAnimation::~aiAnimation 2026-02-11T00:12:18.313233Z 2026-02-11T00:12:18.313574Z
osv-2026-226 UNKNOWN WRITE in decode_xa2_00 2026-02-11T00:10:08.757600Z 2026-02-11T00:10:08.757920Z
osv-2026-216 Heap-buffer-overflow in mg_mqtt_next_prop 2026-02-10T00:08:51.349946Z 2026-02-11T14:08:38.238200Z
osv-2026-212 UNKNOWN READ in gpsd_poll 2026-02-09T00:15:09.775765Z 2026-02-09T00:15:09.776491Z
osv-2026-209 Use-of-uninitialized-value in ntrip_parse_url 2026-02-08T00:06:08.137216Z 2026-02-08T00:06:08.137699Z
osv-2026-205 UNKNOWN READ in gpsd_poll 2026-02-07T00:03:03.099317Z 2026-02-07T00:03:03.099778Z
osv-2026-204 Segv on unknown address in icalarray_append 2026-02-06T00:20:37.969087Z 2026-02-06T00:20:37.969390Z
osv-2026-200 Global-buffer-overflow in nameMatch 2026-02-06T00:15:58.927791Z 2026-02-06T00:15:58.928058Z
osv-2026-195 Use-of-uninitialized-value in vcardstructured_free 2026-02-05T00:15:22.587525Z 2026-02-05T00:15:22.587818Z
osv-2026-189 Global-buffer-overflow in gpsd_poll 2026-02-04T00:05:14.950372Z 2026-02-04T00:05:14.950857Z
osv-2026-182 Use-of-uninitialized-value in json_internal_read_object 2026-02-03T00:11:05.023029Z 2026-02-03T00:11:05.023344Z
osv-2026-177 Security exception in org.apache.poi.util.IOUtils.safelyAllocate 2026-02-02T00:20:01.368972Z 2026-02-02T00:20:01.369362Z
osv-2026-167 Use-of-uninitialized-value in aivdm_analyze 2026-01-31T00:10:49.750917Z 2026-01-31T00:10:49.751204Z
osv-2026-166 Use-of-uninitialized-value in ntrip_parse_url 2026-01-31T00:10:39.163525Z 2026-01-31T00:10:39.163931Z
ID Description Published Updated
rustsec-2026-0039 `chrono_anchor` was removed from crates.io due to malicious code 2026-03-10T12:00:00Z 2026-03-10T20:34:44Z
rustsec-2026-0037 Denial of service in Quinn endpoints 2026-03-09T12:00:00Z 2026-03-09T23:32:50Z
rustsec-2026-0038 RustSec Advisory 2026-03-08T12:00:00Z 2026-03-11T06:21:51Z
rustsec-2026-0036 `time-sync` was removed from crates.io due to malicious code 2026-03-04T12:00:00Z 2026-03-06T06:03:13Z
rustsec-2026-0035 Cache poisoning via insecure-by-default cache key 2026-03-04T12:00:00Z 2026-03-09T20:53:55Z
rustsec-2026-0034 HTTP Request Smuggling via HTTP/1.0 and Transfer-Encoding Misparsing 2026-03-04T12:00:00Z 2026-03-09T20:53:55Z
rustsec-2026-0033 HTTP Request Smuggling via Premature Upgrade 2026-03-04T12:00:00Z 2026-03-09T20:53:55Z
rustsec-2026-0032 `dnp3times` was removed from crates.io due to malicious code 2026-03-04T12:00:00Z 2026-03-05T05:53:11Z
rustsec-2026-0031 `time_calibrators` was removed from crates.io due to malicious code 2026-03-03T12:00:00Z 2026-03-05T05:53:11Z
rustsec-2026-0030 `time_calibrator` was removed from crates.io due to malicious code 2026-03-03T12:00:00Z 2026-03-05T05:53:11Z
rustsec-2026-0029 Double-free and use-after-free for Hive 2026-02-26T12:00:00Z 2026-03-01T06:01:36Z
rustsec-2026-0028 `tracing_checks` was removed from crates.io for transitively including malicious code 2026-02-26T12:00:00Z 2026-02-26T21:11:05Z
rustsec-2026-0027 `tracings` was removed from crates.io for malicious code 2026-02-26T12:00:00Z 2026-02-26T21:11:05Z
rustsec-2026-0022 Panic when dropping a `[Typed]Func::call_async` future 2026-02-24T12:00:00Z 2026-02-24T19:42:18Z
rustsec-2026-0021 Panic adding excessive fields to a `wasi:http/types.fields` instance 2026-02-24T12:00:00Z 2026-02-24T19:42:18Z
rustsec-2026-0020 Guest-controlled resource exhaustion in WASI implementations 2026-02-24T12:00:00Z 2026-02-24T19:42:18Z
rustsec-2026-0019 `tracing-check` was removed from crates.io for malicious code 2026-02-24T12:00:00Z 2026-03-05T05:53:11Z
rustsec-2026-0018 `rpc-check` was removed from crates.io for malicious code 2026-02-24T12:00:00Z 2026-02-24T16:32:13Z
rustsec-2026-0017 `clob-sdk` was removed from crates.io for malicious code 2026-02-20T12:00:00Z 2026-02-21T01:48:10Z
rustsec-2026-0016 `polymarkets-rs-clob-client` was removed from crates.io for malicious code 2026-02-20T12:00:00Z 2026-02-20T18:09:09Z
rustsec-2026-0015 `polymarkets-client-sdk` was removed from crates.io for malicious code 2026-02-19T12:00:00Z 2026-02-19T22:41:14Z
rustsec-2026-0014 `rpc-check` was removed from crates.io for malicious code 2026-02-19T12:00:00Z 2026-02-19T22:41:14Z
rustsec-2026-0013 Type confusion when accessing data from sublasses of subclasses of native types with `abi3` feature targeting Python 3.12 and up 2026-02-18T12:00:00Z 2026-02-23T07:15:28Z
rustsec-2026-0011 `polymarket-client-sdks` was removed from crates.io for malicious code 2026-02-13T12:00:00Z 2026-02-14T08:13:56Z
rustsec-2026-0012 Unsoundness in opt-in ARMv8 assembly backend for `keccak` 2026-02-12T12:00:00Z 2026-02-20T04:00:15Z
rustsec-2026-0025 Panic in `libcrux-psq` on decryption of malformed AES-GCM ciphertext 2026-02-08T12:00:00Z 2026-02-25T17:22:43Z
rustsec-2026-0010 `polymarket-clients-sdk` was removed from crates.io for malicious code 2026-02-06T12:00:00Z 2026-02-23T07:15:28Z
rustsec-2026-0026 Unnecessary clamping of seed reduces seed entropy to 251 bits 2026-02-05T12:00:00Z 2026-02-25T17:22:43Z
rustsec-2026-0009 Denial of Service via Stack Exhaustion 2026-02-05T12:00:00Z 2026-02-06T09:12:16Z
rustsec-2026-0007 Integer overflow in `BytesMut::reserve` 2026-02-03T12:00:00Z 2026-02-04T06:56:11Z
ID Description Published Updated
bit-parse-2026-32234 Parse Server has a SQL injection via query field name when using PostgreSQL 2026-03-13T12:28:58.177Z 2026-03-13T12:55:29.610Z
bit-parse-2026-32098 Parse Server has a protected fields bypass via LiveQuery subscription WHERE clause 2026-03-13T12:28:55.457Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31901 Parse Server has user enumeration via email verification endpoint 2026-03-13T12:28:52.748Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31875 Parse Server MFA recovery codes not consumed after use 2026-03-13T12:28:49.853Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31872 Parse Server has a protected fields bypass via dot-notation in query and sort 2026-03-13T12:28:47.303Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31871 Parse Server has a SQL Injection via dot-notation sub-key name in `Increment` operation on PostgreSQL 2026-03-13T12:28:44.452Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31868 Parse Server has Stored XSS via file upload of HTML-renderable file types 2026-03-13T12:28:41.729Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31856 Parse Server has a SQL injection via `Increment` operation on nested object field in PostgreSQL 2026-03-13T12:28:38.912Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31840 Parse Server has a SQL injection via dot-notation field name in PostgreSQL 2026-03-13T12:28:36.029Z 2026-03-13T12:55:29.610Z
bit-gitlab-2026-3848 Improper Neutralization of CRLF Sequences ('CRLF Injection') in GitLab 2026-03-13T09:35:49.642Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1732 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab 2026-03-13T09:35:40.993Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1663 Missing Authorization in GitLab 2026-03-13T09:35:36.922Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1230 Use of Incorrectly-Resolved Name or Reference in GitLab 2026-03-13T09:35:23.537Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1090 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-03-13T09:35:17.166Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1069 Uncontrolled Recursion in GitLab 2026-03-13T09:35:15.010Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-0602 Authentication Bypass Using an Alternate Path or Channel in GitLab 2026-03-13T09:35:05.636Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-14513 Improper Validation of Specified Quantity in Input in GitLab 2026-03-13T09:31:32.729Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-13929 Allocation of Resources Without Limits or Throttling in GitLab 2026-03-13T09:31:23.093Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-13690 Allocation of Resources Without Limits or Throttling in GitLab 2026-03-13T09:31:10.589Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-12704 Missing Authorization in GitLab 2026-03-13T09:30:55.187Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-12697 Improper Encoding or Escaping of Output in GitLab 2026-03-13T09:30:53.383Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-12576 Allocation of Resources Without Limits or Throttling in GitLab 2026-03-13T09:30:49.795Z 2026-03-13T09:37:20.375Z
bit-gitlab-2025-12555 Incorrect Authorization in GitLab 2026-03-13T09:30:40.688Z 2026-03-13T09:37:20.375Z
bit-wordpress-2026-3906 WordPress 6.9 - 6.9.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Note Creation via REST API 2026-03-13T09:17:59.157Z 2026-03-13T09:37:20.375Z
bit-consul-2026-2808 Consul vulnerable to arbitrary file reads through the vault kubernetes authentication provider 2026-03-13T09:02:37.072Z 2026-03-13T09:37:20.375Z
bit-parse-2026-31828 Parse Server has an LDAP injection via unsanitized user input in DN and group filter construction 2026-03-12T14:48:18.251Z 2026-03-12T15:11:51.041Z
bit-parse-2026-31800 Parse Server: Classes `_GraphQLConfig` and `_Audience` master key bypass via generic class routes 2026-03-12T14:48:16.613Z 2026-03-12T15:11:51.041Z
bit-parse-2026-30972 Parse Server has a rate limit bypass via batch request endpoint 2026-03-12T14:48:14.900Z 2026-03-12T15:11:51.041Z
bit-parse-2026-30967 Parse Server OAuth2 authentication adapter account takeover via identity spoofing 2026-03-12T14:48:13.390Z 2026-03-12T15:11:51.041Z
bit-parse-2026-30966 Parse Server role escalation and CLP bypass via direct `_Join` table write 2026-03-12T14:48:11.522Z 2026-03-12T15:11:51.041Z
ID Description Published Updated
cleanstart-2026-zv38826 Within HostnameError 2026-03-10T01:00:05.764793Z 2026-03-09T13:15:34Z
cleanstart-2026-qy24299 @octokit/endpoint turns REST API endpoints into generic request options 2026-03-07T00:39:47.646997Z 2026-03-06T13:08:41Z
cleanstart-2026-pp62083 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-07T00:39:46.558367Z 2026-03-06T13:08:41Z
cleanstart-2026-gi57625 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-07T00:39:46.578400Z 2026-03-06T13:08:41Z
cleanstart-2026-sm37781 Due to missing nil check, sending 0x0a-0x0f HTTP/2 frames will cause a running server to panic 2026-03-04T00:45:05.719125Z 2026-03-03T12:59:01Z
cleanstart-2026-ay29369 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:43:31.868035Z 2026-03-03T12:59:01Z
cleanstart-2026-xj84245 Rack is a modular Ruby web server interface 2026-03-04T00:43:02.364521Z 2026-03-03T12:59:01Z
cleanstart-2026-cq83284 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:43:01.818359Z 2026-03-03T12:59:01Z
cleanstart-2026-yp32652 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:42:01.150900Z 2026-03-03T12:59:01Z
cleanstart-2026-na21773 GNU patch through 2 2026-03-04T00:42:01.122309Z 2026-03-03T12:59:01Z
cleanstart-2026-bz70876 Redis is an open source, in-memory database that persists on disk 2026-03-04T00:42:00.996564Z 2026-03-03T12:59:01Z
cleanstart-2026-wy43835 PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access 2026-03-04T00:41:31.079681Z 2026-03-03T12:59:01Z
cleanstart-2026-ew93264 Security fixes for GHSA-4cx2-fc23-5wg6, GHSA-6xw4-3v39-52mm, GHSA-72qj-48g4-5xgx, GHSA-mr3q-g2mv-mr4q, GHSA-p543-xpfm-54cp, GHSA-vc5p-v9hr-52mj, GHSA-vqg5-3255-v292 applied in versions: 9.0.8-r2, 9.0.8-r3, 9.0.8-r4, 9.3.0-r1, 9.3.0-r2 2026-03-04T00:39:32.590174Z 2026-03-03T12:59:01Z
cleanstart-2026-vc01496 Security fixes for GHSA-f6x5-jh6r-wrfv, GHSA-j5w8-q4qc-rx2x applied in versions: 0.8.4-r0 2026-03-04T00:39:30.734261Z 2026-03-03T12:59:01Z
cleanstart-2026-mw73882 filippo 2026-03-03T00:39:03.237072Z 2026-03-02T17:13:50Z
cleanstart-2026-by85815 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-03-03T00:39:03.275022Z 2026-03-02T17:13:50Z
cleanstart-2026-jy06700 vulnerability has been identified in Node 2026-02-27T01:09:46.914639Z 2026-02-26T12:09:56Z
cleanstart-2026-zg64300 Within HostnameError 2026-02-27T01:05:11.090007Z 2026-02-26T12:09:56Z
cleanstart-2026-ls98939 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T01:04:10.463954Z 2026-02-26T12:09:56Z
cleanstart-2026-hf45264 filippo 2026-02-27T01:03:40.135210Z 2026-02-26T12:09:56Z
cleanstart-2026-yw12690 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T01:01:12.144914Z 2026-02-26T12:09:56Z
cleanstart-2026-qc30410 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-02-27T01:01:12.325618Z 2026-02-26T12:09:56Z
cleanstart-2026-id51598 Cancelling a query (e 2026-02-27T01:01:11.850782Z 2026-02-26T12:09:56Z
cleanstart-2026-dz05206 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T01:00:40.158214Z 2026-02-26T12:09:56Z
cleanstart-2026-wp10148 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-02-27T00:57:40.231450Z 2026-02-26T12:09:56Z
cleanstart-2026-ac12204 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T00:54:09.647466Z 2026-02-26T12:09:56Z
cleanstart-2026-aj16639 Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate 2026-02-27T00:53:09.299313Z 2026-02-26T12:09:56Z
cleanstart-2026-ff98917 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T00:51:38.790691Z 2026-02-26T12:09:56Z
cleanstart-2026-zn32454 When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers 2026-02-27T00:50:08.716833Z 2026-02-26T12:09:56Z
cleanstart-2026-er93728 go-git is a highly extensible git implementation library written in pure Go 2026-02-27T00:46:38.846728Z 2026-02-26T12:09:56Z
ID Description Published Updated
drupal-contrib-2026-029 2026-03-11T16:35:02.000Z 2026-03-11T16:35:02.000Z
drupal-contrib-2026-028 2026-03-11T16:33:14.000Z 2026-03-11T16:33:14.000Z
drupal-contrib-2026-027 2026-03-04T18:02:59.000Z 2026-03-04T18:02:59.000Z
drupal-contrib-2026-026 2026-03-04T18:02:14.000Z 2026-03-04T18:02:14.000Z
drupal-contrib-2026-025 2026-03-04T18:00:41.000Z 2026-03-04T18:00:41.000Z
drupal-contrib-2026-024 2026-03-04T17:59:51.000Z 2026-03-05T14:03:05.000Z
drupal-contrib-2026-023 2026-03-04T17:58:55.000Z 2026-03-04T17:58:55.000Z
drupal-contrib-2026-022 2026-03-04T17:57:58.000Z 2026-03-04T17:57:58.000Z
drupal-contrib-2026-021 2026-03-04T17:56:18.000Z 2026-03-04T17:56:18.000Z
drupal-contrib-2026-020 2026-03-04T17:54:27.000Z 2026-03-04T17:54:27.000Z
drupal-contrib-2026-019 2026-02-25T18:51:43.000Z 2026-02-25T18:51:43.000Z
drupal-contrib-2026-018 2026-02-25T18:51:26.000Z 2026-02-25T18:51:26.000Z
drupal-contrib-2026-017 2026-02-25T18:51:01.000Z 2026-02-25T18:51:01.000Z
drupal-contrib-2026-016 2026-02-25T18:49:59.000Z 2026-02-25T19:30:03.000Z
drupal-contrib-2026-015 2026-02-25T18:47:57.000Z 2026-02-25T19:07:00.000Z
drupal-contrib-2026-014 2026-02-25T18:46:10.000Z 2026-02-25T18:46:10.000Z
drupal-contrib-2026-013 2026-02-25T18:45:13.000Z 2026-02-25T18:45:13.000Z
drupal-contrib-2026-012 2026-02-25T18:44:38.000Z 2026-02-25T18:44:38.000Z
drupal-contrib-2026-011 2026-02-25T18:43:32.000Z 2026-02-25T18:43:32.000Z
drupal-contrib-2026-010 2026-02-11T16:54:18.000Z 2026-02-25T17:17:46.000Z
drupal-contrib-2026-009 2026-02-11T16:53:32.000Z 2026-02-12T15:37:20.000Z
drupal-contrib-2026-008 2026-02-04T17:23:40.000Z 2026-02-04T17:23:40.000Z
ID Description Updated
ID Description Published Updated
certfr-2026-ale-002 [MàJ] Vulnérabilité dans Cisco Catalyst SD-WAN 2026-02-25T00:00:00.000000 2026-02-26T00:00:00.000000
certfr-2026-ale-001 [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile 2026-01-30T00:00:00.000000 2026-02-03T00:00:00.000000
CERTFR-2026-ALE-001 [MàJ] Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile 2026-01-30T00:00:00.000000 2026-02-03T00:00:00.000000
certfr-2025-ale-014 [MàJ] Vulnérabilité dans React Server Components 2025-12-05T00:00:00.000000 2026-02-12T00:00:00.000000
CERTFR-2025-ALE-014 [MàJ] Vulnérabilité dans React Server Components 2025-12-05T00:00:00.000000 2026-02-12T00:00:00.000000
certfr-2025-ale-013 [MàJ] Multiples vulnérabilités dans Cisco ASA et FTD 2025-09-25T00:00:00.000000 2025-10-06T00:00:00.000000
CERTFR-2025-ALE-013 [MàJ] Multiples vulnérabilités dans Cisco ASA et FTD 2025-09-25T00:00:00.000000 2025-10-06T00:00:00.000000
certfr-2025-ale-012 Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-09-26T00:00:00.000000
CERTFR-2025-ALE-012 Vulnérabilité dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-09-26T00:00:00.000000
certfr-2025-ale-011 Incidents de sécurité dans les pare-feux SonicWall 2025-08-05T00:00:00.000000 2025-08-18T00:00:00.000000
CERTFR-2025-ALE-011 Incidents de sécurité dans les pare-feux SonicWall 2025-08-05T00:00:00.000000 2025-08-18T00:00:00.000000
certfr-2025-ale-010 [MàJ] Multiples vulnérabilités dans Microsoft SharePoint 2025-07-21T00:00:00.000000 2025-08-26T00:00:00.000000
CERTFR-2025-ALE-010 [MàJ] Multiples vulnérabilités dans Microsoft SharePoint 2025-07-21T00:00:00.000000 2025-08-26T00:00:00.000000
certfr-2025-ale-009 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-07-01T00:00:00.000000 2025-07-17T00:00:00.000000
CERTFR-2025-ALE-009 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-07-01T00:00:00.000000 2025-07-17T00:00:00.000000
certfr-2025-ale-008 [MàJ] Vulnérabilité dans Roundcube 2025-06-05T00:00:00.000000 2025-07-21T00:00:00.000000
CERTFR-2025-ALE-008 [MàJ] Vulnérabilité dans Roundcube 2025-06-05T00:00:00.000000 2025-07-21T00:00:00.000000
certfr-2025-ale-007 Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) 2025-05-14T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-007 Multiples vulnérabilités dans Ivanti Endpoint Manager Mobile (EPMM) 2025-05-14T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-006 Vulnérabilité dans les produits Fortinet 2025-05-13T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-006 Vulnérabilité dans les produits Fortinet 2025-05-13T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-002 [MàJ] Vulnérabilité dans les produits Fortinet 2025-05-07T00:00:00.000000 2025-01-14T00:00:00.000000
CERTFR-2025-ALE-002 [MàJ] Vulnérabilité dans les produits Fortinet 2025-05-07T00:00:00.000000 2025-01-14T00:00:00.000000
certfr-2025-ale-005 Vulnérabilité dans SAP NetWeaver 2025-04-28T00:00:00.000000 2025-06-24T00:00:00.000000
CERTFR-2025-ALE-005 Vulnérabilité dans SAP NetWeaver 2025-04-28T00:00:00.000000 2025-06-24T00:00:00.000000
certfr-2025-ale-004 Activités de post-exploitation dans Fortinet FortiGate 2025-04-11T00:00:00.000000 2025-08-07T00:00:00.000000
CERTFR-2025-ALE-004 Activités de post-exploitation dans Fortinet FortiGate 2025-04-11T00:00:00.000000 2025-08-07T00:00:00.000000
certfr-2025-ale-003 [MàJ] Vulnérabilité dans les produits Ivanti 2025-04-04T00:00:00.000000 2025-04-11T00:00:00.000000
CERTFR-2025-ALE-003 [MàJ] Vulnérabilité dans les produits Ivanti 2025-04-04T00:00:00.000000 2025-04-11T00:00:00.000000
certfr-2024-ale-013 Exploitations de vulnérabilités dans Ivanti Cloud Services Appliance (CSA) 2025-03-31T00:00:00.000000 2024-10-25T00:00:00.000000
ID Description Published Updated
certfr-2026-avi-0295 Vulnérabilité dans les produits Microsoft 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0294 Vulnérabilité dans Microsoft Office 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0293 Vulnérabilité dans Microsoft Edge 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0292 Multiples vulnérabilités dans les produits IBM 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0291 Multiples vulnérabilités dans le noyau Linux de Debian 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0290 Multiples vulnérabilités dans le noyau Linux de Red Hat 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0289 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0288 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0287 Multiples vulnérabilités dans les produits NetApp 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0286 Multiples vulnérabilités dans Google Chrome 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0285 Vulnérabilité dans Python 2026-03-13T00:00:00.000000 2026-03-13T00:00:00.000000
certfr-2026-avi-0284 Multiples vulnérabilités dans les produits Microsoft 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0283 Vulnérabilité dans Microsoft Edge 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0282 Multiples vulnérabilités dans Veeam Backup & Replication 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0281 Multiples vulnérabilités dans les produits Splunk 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0280 Multiples vulnérabilités dans les produits Apple 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0279 Multiples vulnérabilités dans Cisco IOS XR 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0278 Multiples vulnérabilités dans Google Chrome 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0277 Multiples vulnérabilités dans les produits Palo Alto Networks 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0276 Multiples vulnérabilités dans GitLab 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0275 Vulnérabilité dans GLPI 2026-03-12T00:00:00.000000 2026-03-12T00:00:00.000000
certfr-2026-avi-0274 Multiples vulnérabilités dans les produits Microsoft 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0273 Multiples vulnérabilités dans Microsoft Azure 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0272 Multiples vulnérabilités dans Microsoft .Net 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0271 Multiples vulnérabilités dans Microsoft Windows 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0270 Multiples vulnérabilités dans Microsoft Office 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0269 Multiples vulnérabilités dans Curl 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0268 Multiples vulnérabilités dans Traefik 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0267 Multiples vulnérabilités dans Mozilla Firefox 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
certfr-2026-avi-0266 Multiples vulnérabilités dans VMware Tanzu 2026-03-11T00:00:00.000000 2026-03-11T00:00:00.000000
ID Description Published Updated
jvndb-2026-006887 Multiple vulnerabilities in Micro Research MR-GM5L-S1 and MR-GM5A-L1 2026-03-12T17:22+09:00 2026-03-12T17:22+09:00
jvndb-2026-000036 Improper file access permission settings in multiple Digital Arts products 2026-03-09T14:57+09:00 2026-03-09T16:23+09:00
jvndb-2026-000035 Installer for Qsee Client may insecurely load Dynamic Link Libraries 2026-03-09T14:57+09:00 2026-03-09T14:57+09:00
jvndb-2026-006102 Security issues in ESC/POS 2026-03-06T10:31+09:00 2026-03-06T10:31+09:00
jvndb-2026-000034 django-allauth vulnerable to open redirect 2026-03-05T12:36+09:00 2026-03-05T12:36+09:00
jvndb-2026-000033 EC-CUBE vulnerable to multi-factor authentication bypass 2026-03-05T12:36+09:00 2026-03-05T12:36+09:00
jvndb-2026-000032 Multiple vulnerabilities in Dell UPS Multi-UPS Management Console (MUMC) 2026-03-04T12:20+09:00 2026-03-04T12:20+09:00
jvndb-2026-005746 Multiple vulnerabilities in Trend Micro Endpoint security products for enterprises (February 2026) 2026-03-04T10:40+09:00 2026-03-04T10:40+09:00
jvndb-2026-005744 Canon IJ Scan Utility registers Windows services with unquoted file paths 2026-03-04T10:40+09:00 2026-03-04T10:40+09:00
jvndb-2026-005259 Out-of-bounds write vulnerability in Fujitsu BIOS Driver (fbiosdrv.sys) 2026-03-02T11:46+09:00 2026-03-02T11:46+09:00
jvndb-2026-000031 Improper file access permission settings in the installers for multiple Soliton Systems products 2026-02-27T15:41+09:00 2026-02-27T15:41+09:00
jvndb-2026-000030 IM-LogicDesigner module of intra-mart Accel Platform vulnerable to untrusted data deserialization 2026-02-27T15:41+09:00 2026-03-03T10:06+09:00
jvndb-2026-000029 Multiple vulnerabilities in the installer of FinalCode Client 2026-02-26T14:24+09:00 2026-02-26T14:24+09:00
jvndb-2026-004811 Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager 2026-02-26T11:02+09:00 2026-02-26T11:02+09:00
jvndb-2026-004810 Vulnerability in Hitachi Configuration Manager and Hitachi Ops Center API Configuration Manager 2026-02-26T11:02+09:00 2026-02-26T11:02+09:00
jvndb-2026-000026 Lanscope Endpoint Manager (On-Premises) vulnerable to path traversal 2026-02-25T15:14+09:00 2026-02-25T15:14+09:00
jvndb-2026-004359 Security information for Hitachi Disk Array Systems 2026-02-20T18:35+09:00 2026-02-20T18:35+09:00
jvndb-2026-000027 WordPress Plugin "Survey Maker" vulnerable to cross-site scripting 2026-02-20T12:32+09:00 2026-02-20T12:32+09:00
jvndb-2026-000028 Installer for Job log aggregation/analysis software RICOH Job Log Aggregation Tool may insecurely load Dynamic Link Libraries 2026-02-20T12:31+09:00 2026-02-20T12:31+09:00
jvndb-2026-003912 Vulnerability in Cosminexus HTTP Server and Hitachi Web Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003911 Vulnerability in Cosminexus HTTP Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003910 Multiple Vulnerabilities in Cosminexus HTTP Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003909 Multiple Vulnerabilities in Hitachi Command Suite products 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003908 Multiple Vulnerabilities in Hitachi Command Suite, Hitachi Automation Director, Hitachi Configuration Manager, Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003907 Multiple Vulnerabilities in JP1 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003906 Multiple Vulnerabilities in Cosminexus 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-003905 Multiple Vulnerabilities in Cosminexus HTTP Server and Hitachi Web Server 2026-02-17T20:46+09:00 2026-02-17T20:46+09:00
jvndb-2026-000025 Joomla! CMS vulnerable to cross-site scripting 2026-02-17T12:46+09:00 2026-02-17T12:46+09:00
jvndb-2026-000023 FileZen vulnerable to OS command injection 2026-02-13T16:51+09:00 2026-02-13T17:08+09:00
jvndb-2026-000024 Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries 2026-02-12T13:32+09:00 2026-02-12T13:32+09:00
ID Description Published Updated
cnvd-2026-12777 FreeRDP缓冲区溢出漏洞(CNVD-2026-12777) 2026-03-06 2026-03-06
cnvd-2026-12776 Textream资源管理错误漏洞 2026-03-06 2026-03-06
cnvd-2026-12778 Fiber安全特征问题漏洞 2026-03-04 2026-03-06
cnvd-2026-12892 Apache Shiro身份验证绕过漏洞 2026-03-02 2026-03-04
cnvd-2026-12770 WordPress插件Web Accessibility by accessiBe信息泄露漏洞 2026-03-02 2026-03-06
cnvd-2026-12769 WordPress插件Simple Ajax Chat信息泄露漏洞 2026-03-02 2026-03-06
cnvd-2026-12768 WordPress插件Context Blog信息泄露漏洞 2026-03-02 2026-03-06
cnvd-2026-12767 D-Link DWR-M960 formDdns文件缓冲区溢出漏洞 2026-03-02 2026-03-06
cnvd-2026-12763 Google Chrome缓冲区溢出漏洞(CNVD-2026-12763) 2026-03-02 2026-03-06
cnvd-2026-12702 Adobe After Effects存在内存释放后使用漏洞 2026-03-02 2026-03-04
cnvd-2026-12701 Adobe After Effects存在二进制漏洞 2026-03-02 2026-03-04
cnvd-2026-12700 Adobe ‌Substance 3D Stager‌存在越界读取漏洞 2026-03-02 2026-03-04
cnvd-2026-12699 Adobe ‌Substance 3D Stager‌存在越界读取漏洞(CNVD-2026-12699) 2026-03-02 2026-03-04
cnvd-2026-12698 Adobe Substance 3D Stager‌存在越界写入漏洞 2026-03-02 2026-03-04
cnvd-2026-12697 Adobe Substance 3D Stager‌存在越界写入漏洞(CNVD-2026-12697) 2026-03-02 2026-03-05
cnvd-2026-12696 Adobe InDesign Desktop存在越界读取漏洞 2026-03-02 2026-03-04
cnvd-2026-12694 Adobe After Effects 25.6及之前版本存在内存释放后使用漏洞 2026-03-02 2026-03-04
cnvd-2026-12693 Adobe After Effects存在越界写入漏洞 2026-03-02 2026-03-04
cnvd-2026-12691 Adobe After Effects存在越界写入漏洞(CNVD-2026-12691) 2026-03-02 2026-03-04
cnvd-2026-12690 Adobe After Effects存在越界读取漏洞 2026-03-02 2026-03-04
cnvd-2026-12689 Adobe After Effects存在越界读取漏洞(CNVD-2026-12689) 2026-03-02 2026-03-04
cnvd-2026-12688 Adobe After Effects存在越界读取漏洞(CNVD-2026-12688) 2026-03-02 2026-03-04
cnvd-2026-12668 IBM webMethods Integration Server存在HTML注入漏洞 2026-03-02 2026-03-05
cnvd-2026-12667 IBM Sterling B2B Integrator和IBM Sterling File Gateway存在信息泄露漏洞 2026-03-02 2026-03-05
cnvd-2026-12666 IBM MQ Operator和IBM‑supplied MQ Advanced container images存在日志注入漏洞 2026-03-02 2026-03-05
cnvd-2026-12665 IBM Db2存在拒绝服务漏洞 2026-03-02 2026-03-05
cnvd-2026-12664 IBM Db2存在XML外部实体注入漏洞 2026-03-02 2026-03-05
cnvd-2026-12663 IBM Concert存在弱密码算法漏洞 2026-03-02 2026-03-05
cnvd-2026-12560 Microsoft Windows资源管理错误漏洞(CNVD-2026-12560) 2026-03-02 2026-03-04
cnvd-2026-12559 Microsoft Windows Notepad命令注入漏洞 2026-03-02 2026-03-04
ID Description Published Updated
bdu:2026-01844 Уязвимость сервиса безопасности Advanced DNS Security (ADNS) операционной системы PAN-OS,… 16.02.2026 16.02.2026
bdu:2026-01843 Уязвимость функции loadRLE() загрузчика TGA-изображений (PluginTARGA.cpp) графической биб… 16.02.2026 16.02.2026
bdu:2026-01842 Уязвимость функции ws_user_gerList() сценария pwg.users.php системы управления контентом … 16.02.2026 16.02.2026
bdu:2026-01841 Уязвимость компонента Updater облачной платформы управления контейнерами Arcane, позволяю… 16.02.2026 16.02.2026
bdu:2026-01840 Уязвимость ИИ-агента OpenClaw (ранее - ClawdBot или MoltBot), связанная с отсутствием про… 16.02.2026 16.02.2026
bdu:2026-01839 Уязвимость функции blocked_path() пакета Python для создания приложений для моделей машин… 16.02.2026 16.02.2026
bdu:2026-01838 Уязвимость драйверов графических процессоров NVIDIA NVS, Quadro, NVIDIA RTX, GeForce, свя… 16.02.2026 16.02.2026
bdu:2026-01837 Уязвимость микропрограммного обеспечения графических процессоров Imagination, позволяющая… 16.02.2026 16.02.2026
bdu:2026-01836 Уязвимость микропрограммного обеспечения графических процессоров Imagination, позволяющая… 16.02.2026 16.02.2026
bdu:2026-01835 Уязвимость драйвера ESXi base микропрограммного обеспечения сетевых контроллеров Intel 80… 16.02.2026 16.02.2026
bdu:2026-01834 Уязвимость микропрограммного обеспечения контроллеров Intel Ethernet серии E810, связанна… 16.02.2026 16.02.2026
bdu:2026-01833 Уязвимость технологий Intel Active Management Technology (AMT) и Intel Standard Manageabi… 16.02.2026 16.02.2026
bdu:2026-01832 Уязвимость технологий Intel Active Management Technology (AMT) и Intel Standard Manageabi… 16.02.2026 16.02.2026
bdu:2026-01831 Уязвимость технологий Intel Active Management Technology (AMT) и Intel Standard Manageabi… 16.02.2026 16.02.2026
bdu:2026-01830 Уязвимость компонента File input браузера Google Chrome, позволяющая нарушителю осуществи… 16.02.2026 16.02.2026
bdu:2026-01829 Уязвимость компонента PictureInPicture браузера Google Chrome, позволяющая нарушителю ока… 16.02.2026 16.02.2026
bdu:2026-01828 Уязвимость компонента Animation браузера Google Chrome, позволяющая нарушителю оказать во… 16.02.2026 16.02.2026
bdu:2026-01827 Уязвимость функции конфиденциальности Fenced Frames браузера Google Chrome, позволяющая н… 16.02.2026 16.02.2026
bdu:2026-01826 Уязвимость компонента WebGPU браузера Google Chrome, позволяющая нарушителю вызвать отказ… 16.02.2026 16.02.2026
bdu:2026-01825 Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связ… 16.02.2026 16.02.2026
bdu:2026-01824 Уязвимость программной платформы на базе git для совместной работы над кодом GitLab, связ… 16.02.2026 16.02.2026
bdu:2026-01823 Уязвимость функции межсетевых экранов SSL-VPN операционных систем Fortinet FortiOS, позво… 16.02.2026 16.02.2026
bdu:2026-01822 Уязвимость операционных систем Fortinet FortiOS, связанная с недостаточной проверкой исто… 16.02.2026 16.02.2026
bdu:2026-01821 Уязвимость функции межсетевых экранов SSL-VPN операционных систем Fortinet FortiOS, позво… 16.02.2026 16.02.2026
bdu:2026-01820 Уязвимость интерфейса командной строки операционных систем Fortinet FortiOS, позволяющая … 16.02.2026 16.02.2026
bdu:2026-01819 Уязвимость графического пользовательского интерфейса операционных систем Fortinet FortiOS… 16.02.2026 16.02.2026
bdu:2026-01818 Уязвимость программного обеспечения для разработки 3D-моделей Autodesk Fusion, связанная … 16.02.2026 16.02.2026
bdu:2026-01817 Уязвимость программного обеспечения для разработки 3D-моделей Autodesk Fusion, связанная … 16.02.2026 16.02.2026
bdu:2026-01816 Уязвимость программного обеспечения для разработки 3D-моделей Autodesk Fusion, связанная … 16.02.2026 16.02.2026
bdu:2026-01815 Уязвимость программного обеспечения Microsoft ACI Confidential Containers, связанная с не… 16.02.2026 16.02.2026
ID Description Updated
var-202407-2188 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:32.699000Z
var-202406-3119 Beijing StarNet Ruijie Network Technology Co., Ltd. EG3220 is a new generation of multi-s… 2024-07-23T22:46:22.685000Z
var-202407-1740 NBR6135-E is a router. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6135-E ha… 2024-07-23T22:46:18.378000Z
var-202407-1417 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:07.784000Z
var-202407-1103 Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digita… 2024-07-23T22:46:01.992000Z
var-202407-0957 WinCC is a SCADA system suitable for all walks of life. It can access devices from mobile… 2024-07-23T22:45:59.391000Z
var-202407-0819 SIMATIC S7-1500 is a modular control system suitable for various automation applications … 2024-07-23T22:45:56.958000Z
var-202407-0818 NBR6210-E is a router product. Beijing Xingwang Ruijie Network Technology Co., Ltd. NBR6… 2024-07-23T22:45:56.946000Z
var-202407-0779 Tenda i29V1.0 V1.0.0.5 was discovered to contain a hardcoded password for root. Tenda of … 2024-07-23T22:45:56.150000Z
var-202407-0778 Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera… 2024-07-23T22:45:56.131000Z
var-202407-0745 Tenda AC18 V15.03.3.10_EN was discovered to contain a stack-based buffer overflow vulnera… 2024-07-23T22:45:55.498000Z
var-202305-1479 D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution … 2024-07-23T22:45:09.335000Z
var-202108-1158 A race condition was addressed with improved locking. This issue is fixed in macOS Monter… 2024-07-23T22:44:06.976000Z
var-201109-0089 Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used… 2024-07-23T22:43:49.590000Z
var-200702-0378 Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 … 2024-07-23T22:43:25.614000Z
var-201011-0225 Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent … 2024-07-23T22:41:43.584000Z
var-201112-0297 Multiple cross-site scripting (XSS) vulnerabilities in the Virus Scan Interface in SAP Ne… 2024-07-23T22:41:20.004000Z
var-201507-0645 D-Link is an internationally renowned provider of network equipment and solutions, includ… 2024-07-23T22:41:18.832000Z
var-201803-1810 A Stack-based Buffer Overflow issue was discovered in Delta Electronics Delta Industrial … 2024-07-23T22:41:17.171000Z
var-201809-0087 WECON LeviStudio Versions 1.8.29 and 1.8.44 have multiple stack-based buffer overflow vul… 2024-07-23T22:41:16.554000Z
var-200607-0396 Multiple stack-based buffer overflows in eIQnetworks Enterprise Security Analyzer (ESA) b… 2024-07-23T22:41:04.279000Z
var-201702-0423 An issue was discovered in Delta Electronics WPLSoft, Versions prior to V2.42.11, ISPSoft… 2024-07-23T22:40:53.160000Z
var-202305-1588 D-Link DIR-2150 SetNTPServerSettings Command Injection Remote Code Execution Vulnerabilit… 2024-07-23T22:40:05.297000Z
var-201112-0173 The default configuration of the HP CM8060 Color MFP with Edgeline; Color LaserJet 3xxx, … 2024-07-23T22:39:32.535000Z
var-201103-0371 SAP Crystal Reports Server is a complete reporting solution for creating, managing, and d… 2024-07-23T22:39:32.874000Z
var-201706-0017 In FortiClientWindows 5.4.1 and 5.4.2, an attacker may escalate privilege via a FortiClie… 2024-07-23T22:38:34.494000Z
var-202305-1520 D-Link DIR-2150 SetSysEmailSettings EmailFrom Command Injection Remote Code Execution Vul… 2024-07-23T22:38:26.576000Z
var-202407-0490 A vulnerability has been identified in SIMATIC PCS neo V4.0 (All versions), SIMATIC STEP … 2024-07-23T22:38:24.768000Z
var-201810-0396 Advantech WebAccess 8.3.1 and earlier has several stack-based buffer overflow vulnerabili… 2024-07-23T22:37:44.850000Z
var-202001-0833 A Denial of Service vulnerability exists in the WRITE_C function in the msg_server.exe mo… 2024-07-23T22:37:43.471000Z
ID CVSS Description Vendor Product Published Updated
GCVE-1-2026-0015
7.2 (4.0)
Threat actors use FortiCloud SSO bypass to collect LDA… fortinet
 fortios
 2026-02-09T09:09:00.000Z 2026-02-09T09:14:59.004089Z
GCVE-1-2026-0014
7.4 (4.0)
Missing Authorization Check Allows Unauthorized Modifi… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:32:14.341383Z 2026-02-04T19:32:14.341383Z
GCVE-1-2026-0013
2.1 (4.0)
Flask Application Username Route Collision Allows Rese… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:27:00.000Z 2026-02-04T19:32:49.787763Z
GCVE-1-2026-0012
2.1 (4.0)
Authentication Error Message Allows Email Address Enum… vulnerability-lookup
 vulnerability-lookup
 2026-02-04T19:21:34.411344Z 2026-02-04T19:21:34.411344Z
GCVE-1-2026-0011
8.7 (4.0)
Out-of-bounds memory write in the network packet … EA Games
 Command & Conquer: Generals
 2026-01-29T14:37:00.000Z 2026-01-29T14:39:17.728822Z
GCVE-1-2026-0010
9.3 (4.0)
Improper input validation in the file transfer ha… EA Games
 Command & Conquer: Generals
 2026-01-29T14:33:18.822829Z 2026-01-29T14:33:18.822829Z
GCVE-1-2026-0009
9.3 (4.0)
Stack-based buffer overflow in the multiplayer ne… EA Games
 Command & Conquer: Generals
 2026-01-29T14:30:38.596928Z 2026-01-29T14:30:38.596928Z
GCVE-1-2026-0008
10 (4.0)
gpg-agent stack buffer overflow in pkdecrypt using KEM gnupg
 gpg-agent
 2026-01-28T13:48:12.350509Z 2026-01-28T13:48:12.350509Z
GCVE-1-2026-0007
10 (4.0)
GNU InetUtils Security Advisory: remote authentication… gnu
 InetUtils
 2026-01-20T20:57:00.000Z 2026-01-26T16:32:40.831364Z
GCVE-1-2026-0006
8.5 (4.0)
Improper Access Control in Cerebrate AuthKey and Encry… cerebrate
 cerebrate
 2026-01-13T15:37:17.337254Z 2026-01-13T15:37:17.337254Z
GCVE-1-2026-0005
8.5 (4.0)
Improper Access Control in Cerebrate Alignment Model A… cerebrate
 cerebrate
 2026-01-13T15:31:00.000Z 2026-01-13T15:38:02.888546Z
GCVE-1-2026-0004
8.5 (4.0)
Authorization Bypass in Cerebrate IndividualsControlle… cerebrate
 cerebrate
 2026-01-13T15:28:00.000Z 2026-01-13T15:38:37.744618Z
GCVE-1-2026-0003
6.3 (4.0)
Stored/Reflected XSS via Unsanitized Parameters in URL… misp
 misp
 2026-01-13T10:50:00.000Z 2026-01-13T10:54:13.659223Z
GCVE-1-2026-0002
10 (4.0)
Heap-buffer-overflow in EXIF writer for extra IFD tags ffmpeg
 ffmpeg
 2026-01-02T19:50:00.000Z 2026-01-02T20:05:27.269877Z
GCVE-1-2026-0001
N/A
Bundle reference to gpg.fail gnupg
 gnupg
 2026-01-02T10:20:00.000Z 2026-01-02T13:31:14.359346Z
GCVE-1-2025-0041
6.4 (4.0)
[online services] Reflected Cross-Site Scripting (XSS)… typo3
 typo3
 2025-12-19T14:25:00.000Z 2025-12-19T14:54:51.594645Z
GCVE-1-2025-0040
7.2 (4.0)
A cross-site scripting (XSS) vulnerability was id… misp
 misp
 2025-12-13T08:44:32.378924Z 2025-12-13T08:44:32.378924Z
GCVE-1-2025-0039
8.5 (4.0)
XSS Reintroduced in MISP Dashboard World Map Widget Du… misp
 misp
 2025-12-10T14:33:52.856734Z 2025-12-10T14:33:52.856734Z
GCVE-1-2025-0038
5 (4.0)
Reflected XSS in MISP Template Tag Removal and MISP Ad… misp
 misp
 2025-12-10T14:10:00.000Z 2025-12-10T14:16:55.918270Z
GCVE-1-2025-0037
7 (4.0)
Reflected XSS in MISP Dashboard Widgets via Unescaped … misp
 misp
 2025-12-10T14:01:03.200804Z 2025-12-10T14:01:03.200804Z
GCVE-1-2025-0036
8.3 (4.0)
A reflected cross-site scripting (XSS) vulnerability w… misp
 misp
 2025-12-10T13:46:07.170083Z 2025-12-10T13:46:07.170083Z
GCVE-1-2025-0035
8.3 (4.0)
Insufficient sanitization of bundle metadata (availabl… CIRCL
 vulnerability-lookup
 2025-12-08T10:25:00.000Z 2025-12-08T12:14:06.307298Z
GCVE-1-2025-0034
7 (4.0)
Missing CSRF protection on state-changing endpoints in… CIRCL
 vulnerability-lookup
 2025-12-08T10:19:00.000Z 2025-12-08T12:13:24.197294Z
GCVE-1-2025-0033
8.1 (4.0)
Vulnerability-lookup did not track or limit failed One… CIRCL
 vulnerability-lookup
 2025-12-08T10:11:00.000Z 2025-12-08T12:12:53.235996Z
GCVE-1-2025-0032
10 (4.0)
The default configuration of WatchGuard Firebox device… watchguard
 firebox
 2025-12-03T16:25:00.000Z 2025-12-19T13:48:34.570799Z
GCVE-1-2025-0031
7.1 (4.0)
A cross-site scripting (XSS) vulnerability was identif… misp
 misp
 2025-12-03T10:58:00.000Z 2025-12-16T09:36:09.594750Z
GCVE-1-2025-0030
6.2 (4.0)
A cross-site scripting (XSS) vulnerability in the MISP… misp
 misp
 2025-12-03T10:53:00.000Z 2025-12-03T10:58:55.845341Z
GCVE-1-2025-0029
6.3 (4.0)
Reflected cross-site scripting (XSS) vulnerabilities i… misp
 misp
 2025-11-27T12:41:00.000Z 2025-11-27T12:48:51.085860Z
GCVE-1-2025-0028
8.5 (4.0)
Information leakage vulnerability in the MISP Feed con… misp
 misp
 2025-11-27T07:23:00.000Z 2025-12-02T08:51:35.429494Z
GCVE-1-2025-0027
9.4 (4.0)
Reflected cross-site scripting (XSS) vulnerability in … misp
 misp
 2025-11-27T07:17:00.000Z 2025-12-02T08:51:04.323899Z
ID CVSS Description Vendor Product Published Updated
GCVE-1337-2025-00000000000000000000000000000000000000000000000000111111111111111111111111000000000000000000000000000000000000000000000000000000011
9.1 (3.1)
HexStrike AI MCP Server Command Injection 0x4m4
 HexStrike AI
 2025-11-30T21:27:56.057Z 2025-11-30T21:27:56.057Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111111111011111111110000000000000000000000000000000000000000000000000000000100
6.5 (3.1)
Abilis CPX Fallback Shell Connection Relay Abilis
 CPX
 2025-11-04T00:23:23.924Z 2025-11-04T00:23:23.924Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011011111110011111111110000000000000000000000000000000000000000000000000000000010
7.3 (3.1)
Unitree Multiple Robotic Products Command Injection Unitree
 Go2
 2025-09-26T06:53:49.585Z 2025-09-26T15:16:57.586Z
GCVE-1337-2025-00000000000000000000000000000000000000000000000001011111011111010111111001000000000000000000000000000000000000000000000000000000001
4.3 (3.1)
Unauthenticated leak of sensitive information affectin… Brother Industries, Ltd
 HL-L8260CDN
 2025-08-12T15:23:00.577Z 2025-08-15T05:53:23.017Z