Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-0488 |
N/A
|
pcltotiff in HP-UX 10.x has unnecessary set group… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.151Z |
| CVE-2001-0489 |
N/A
|
Format string vulnerability in gftp prior to 2.0.… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.153Z |
| CVE-2001-0494 |
N/A
|
Buffer overflow in IPSwitch IMail SMTP server 6.0… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.582Z |
| CVE-2001-0495 |
N/A
|
Directory traversal in DataWizard WebXQ server 1.… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.612Z |
| CVE-2001-0505 |
N/A
|
Multiple memory leaks in Microsoft Services for U… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:21:38.521Z |
| CVE-2001-0535 |
N/A
|
Example applications (Exampleapps) in ColdFusion … |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:21:38.620Z |
| CVE-2001-0669 |
N/A
|
Various Intrusion Detection Systems (IDS) includi… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.065Z |
| CVE-2001-0712 |
N/A
|
The rendering engine in Internet Explorer determi… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.059Z |
| CVE-2001-0713 |
N/A
|
Sendmail before 8.12.1 does not properly drop pri… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.076Z |
| CVE-2001-0714 |
N/A
|
Sendmail before 8.12.1, without the RestrictQueue… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.105Z |
| CVE-2001-0715 |
N/A
|
Sendmail before 8.12.1, without the RestrictQueue… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.057Z |
| CVE-2001-0729 |
N/A
|
Apache 1.3.20 on Windows servers allows remote at… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.195Z |
| CVE-2001-0734 |
N/A
|
Hitachi Super-H architecture in NetBSD 1.5 and 1.… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.094Z |
| CVE-2001-0735 |
N/A
|
Buffer overflow in cfingerd 1.4.3 and earlier wit… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.238Z |
| CVE-2001-0736 |
N/A
|
Vulnerability in (1) pine before 4.33 and (2) the… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.075Z |
| CVE-2001-0737 |
N/A
|
A long 'synch' delay in Logitech wireless mice an… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.146Z |
| CVE-2001-0742 |
N/A
|
Buffer overflow in Computalynx CMail POP3 mail se… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.193Z |
| CVE-2001-0743 |
N/A
|
Paging function in O'Reilly WebBoard Pager 4.10 a… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.111Z |
| CVE-2001-0744 |
N/A
|
Horde IMP 2.2.4 and earlier allows local users to… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.087Z |
| CVE-2001-0746 |
N/A
|
Buffer overflow in Web Publisher in iPlanet Web S… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.081Z |
| CVE-2001-0747 |
N/A
|
Buffer overflow in iPlanet Web Server (iWS) Enter… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.150Z |
| CVE-2001-0753 |
N/A
|
Cisco CBOS 2.3.8 and earlier stores the passwords… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.150Z |
| CVE-2001-0755 |
N/A
|
Buffer overflow in ftp daemon (ftpd) 6.2 in Debia… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.194Z |
| CVE-2001-0756 |
N/A
|
CatalogMgr.pl in VirtualCatalog (incorrectly clai… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.141Z |
| CVE-2001-0758 |
N/A
|
Directory traversal vulnerability in Shambala 4.5… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.305Z |
| CVE-2001-0759 |
N/A
|
Buffer overflow in bctool in Jetico BestCrypt 0.8… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.196Z |
| CVE-2001-0761 |
N/A
|
Buffer overflow in HttpSave.dll in Trend Micro In… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.128Z |
| CVE-2001-0762 |
N/A
|
Buffer overflow in su-wrapper 1.1.1 allows local … |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.276Z |
| CVE-2001-0766 |
N/A
|
Apache on MacOS X Client 10.0.3 with the HFS+ fil… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.128Z |
| CVE-2001-0767 |
N/A
|
Directory traversal vulnerability in GuildFTPd 0.… |
n/a |
n/a |
2001-10-12T04:00:00 | 2024-08-08T04:30:06.124Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-0268 |
N/A
|
The i386_set_ldt system call in NetBSD 1.5 and ea… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.154Z |
| CVE-2001-0269 |
N/A
|
pam_ldap authentication module in Solaris 8 allow… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.225Z |
| CVE-2001-0270 |
N/A
|
Marconi ASX-1000 ASX switches allow remote attack… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.258Z |
| CVE-2001-0271 |
N/A
|
mailnews.cgi 1.3 and earlier allows remote attack… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.204Z |
| CVE-2001-0272 |
N/A
|
Directory traversal vulnerability in sendtemp.pl … |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.339Z |
| CVE-2001-0273 |
N/A
|
pgp4pine Pine/PGP interface version 1.75-6 does n… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.326Z |
| CVE-2001-0274 |
N/A
|
kicq IRC client 1.0.0, and possibly later version… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.339Z |
| CVE-2001-0275 |
N/A
|
Moby Netsuite Web Server 1.02 allows remote attac… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.289Z |
| CVE-2001-0276 |
N/A
|
ext.dll in BadBlue 1.02.07 Personal Edition web s… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.317Z |
| CVE-2001-0277 |
N/A
|
Buffer overflow in ext.dll in BadBlue 1.02.07 Per… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.292Z |
| CVE-2001-0278 |
N/A
|
Vulnerability in linkeditor in HP MPE/iX 6.5 and … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.361Z |
| CVE-2001-0279 |
N/A
|
Buffer overflow in sudo earlier than 1.6.3p6 allo… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.367Z |
| CVE-2001-0280 |
N/A
|
Buffer overflow in MERCUR SMTP server 3.30 allows… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.362Z |
| CVE-2001-0281 |
N/A
|
Format string vulnerability in DbgPrint function,… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.388Z |
| CVE-2001-0282 |
N/A
|
SEDUM 2.1 HTTP server allows remote attackers to … |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.370Z |
| CVE-2001-0283 |
N/A
|
Directory traversal vulnerability in SunFTP build… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.364Z |
| CVE-2001-0284 |
N/A
|
Buffer overflow in IPSEC authentication mechanism… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.375Z |
| CVE-2001-0285 |
N/A
|
Buffer overflow in A1 HTTP server 1.0a allows rem… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.366Z |
| CVE-2001-0286 |
N/A
|
Directory traversal vulnerability in A1 HTTP serv… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.362Z |
| CVE-2001-0287 |
N/A
|
VERITAS Cluster Server (VCS) 1.3.0 on Solaris all… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.372Z |
| CVE-2001-0288 |
N/A
|
Cisco switches and routers running IOS 12.1 and e… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.372Z |
| CVE-2001-0289 |
N/A
|
Joe text editor 2.8 searches the current working … |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.393Z |
| CVE-2001-0290 |
N/A
|
Vulnerability in Mailman 2.0.1 and earlier allows… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.368Z |
| CVE-2001-0291 |
N/A
|
Buffer overflow in post-query sample CGI program … |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.395Z |
| CVE-2001-0292 |
N/A
|
PHP-Nuke 4.4.1a allows remote attackers to modify… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.391Z |
| CVE-2001-0293 |
N/A
|
Directory traversal vulnerability in FtpXQ FTP se… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.390Z |
| CVE-2001-0294 |
N/A
|
Directory traversal vulnerability in TYPSoft FTP … |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.386Z |
| CVE-2001-0295 |
N/A
|
Directory traversal vulnerability in War FTP 1.67… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-08T04:14:07.397Z |
| CVE-2001-0296 |
N/A
|
Buffer overflow in WFTPD Pro 3.00 allows remote a… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.395Z |
| CVE-2001-0297 |
N/A
|
Directory traversal vulnerability in Simple Serve… |
n/a |
n/a |
2001-04-04T04:00:00 | 2024-08-08T04:14:07.372Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-5hv6-mh8q-q9v8 |
8.5 (3.1)
|
RCE in XWiki | 2020-10-16T16:55:49Z | 2021-11-19T14:41:16Z |
| ghsa-3x8c-fmpc-5rmq |
6.1 (3.1)
5.1 (4.0)
|
Cross-site scripting (XSS) vulnerability in the fallback authentication endpoint | 2020-10-16T16:56:04Z | 2024-09-24T17:41:06Z |
| ghsa-8hxh-r6f7-jf45 |
|
Memory exhaustion in http4s-async-http-client with large or malicious compressed responses | 2020-10-16T17:03:43Z | 2021-10-04T21:26:20Z |
| ghsa-xgh6-85xh-479p |
|
Regular Expression Denial of Service in npm-user-validate | 2020-10-16T18:56:26Z | 2020-10-16T18:56:02Z |
| ghsa-4fc4-chg7-h8gh |
3.7 (3.1)
|
Unprotected dynamically loaded chunks | 2020-10-19T20:02:44Z | 2021-11-19T14:40:52Z |
| ghsa-589w-hccm-265x |
8.0 (3.1)
|
Inline attribute values were not processed. | 2020-10-19T20:17:47Z | 2021-01-07T22:50:45Z |
| ghsa-6gw4-x63h-5499 |
4.3 (3.1)
|
Ability to switch customer email address on account detail page and stay verified | 2020-10-19T20:40:59Z | 2021-11-19T13:51:50Z |
| ghsa-cwx2-736x-mf6w |
7.7 (3.1)
|
Prototype pollution in object-path | 2020-10-19T20:55:55Z | 2021-11-19T14:05:56Z |
| ghsa-8xv9-qcr9-ww9j |
5.6 (3.1)
|
Authenticated XML External Entity Processing | 2020-10-19T21:32:18Z | 2021-10-04T21:28:06Z |
| ghsa-p68v-frgx-4rjp |
|
Denial of Service via Cache Flooding | 2020-10-19T21:34:14Z | 2020-10-19T21:34:01Z |
| ghsa-h385-52j6-9984 |
|
Withdrawn: HTTP Request Smuggling in Agoo | 2020-10-20T19:15:38Z | 2021-01-13T19:25:43Z |
| ghsa-f8cm-364f-q9qh |
7.4 (3.1)
|
Ensure that doorkeeper_token is valid when authenticating requests in API v2 calls | 2020-10-20T20:03:52Z | 2021-11-19T13:51:14Z |
| ghsa-939m-4xpw-v34v |
9.9 (3.1)
6.5 (4.0)
|
Arbitrary Code Execution in blazar-dashboard | 2020-10-27T17:55:04Z | 2024-09-06T16:25:48Z |
| ghsa-c84h-w6cr-5v8q |
9.3 (3.1)
9.3 (4.0)
|
Markdown-supplied Shell Command Execution | 2020-10-27T17:59:54Z | 2024-09-30T20:15:51Z |
| ghsa-2xm2-xj2q-qgpj |
4.3 (3.1)
|
receiving subscription objects with deleted session | 2020-10-27T19:15:19Z | 2021-10-06T22:02:05Z |
| ghsa-r82c-j4mq-5xfw |
|
Update bitlyshortener to >=0.5.0 to prevent generating some invalid short URLs | 2020-10-27T19:19:56Z | 2020-10-27T19:19:44Z |
| ghsa-pv36-h7jh-qm62 |
6.5 (3.1)
|
Heap buffer overflow in CefSharp | 2020-10-27T19:47:38Z | 2025-02-03T15:31:58Z |
| ghsa-94xh-2fmc-xf5j |
8.8 (3.1)
|
systeminformation command injection vulnerability | 2020-10-27T20:30:20Z | 2023-09-06T23:53:46Z |
| ghsa-mp9m-g7qj-6vqr |
7.7 (3.1)
5.1 (4.0)
|
Unauthorized privilege escalation in Mod module | 2020-10-27T20:30:48Z | 2024-10-25T21:47:34Z |
| ghsa-hggm-jpg3-v476 |
5.9 (3.1)
8.2 (4.0)
|
RSA decryption vulnerable to Bleichenbacher timing vulnerability | 2020-10-27T20:33:13Z | 2024-11-18T16:26:10Z |
| ghsa-c27r-x354-4m68 |
|
xml-crypto's HMAC-SHA1 signatures can bypass validation via key confusion | 2020-10-27T20:39:46Z | 2022-08-02T20:03:05Z |
| ghsa-fj59-f6c3-3vw4 |
5.9 (3.1)
|
Command Injection in systeminformation | 2020-10-27T20:40:00Z | 2021-09-10T14:54:48Z |
| ghsa-2xwp-m7mq-7q3r |
|
CLI does not correctly implement strict mode | 2020-10-28T17:05:38Z | 2020-10-28T17:04:54Z |
| ghsa-4p55-xj37-fx7g |
7.5 (3.1)
|
Improper Authorization in Strapi | 2020-10-29T18:29:31Z | 2023-09-13T19:30:47Z |
| ghsa-qvp5-mm7v-4f36 |
5.4 (3.1)
|
Cross-site Scripting in Strapi | 2020-10-29T19:40:08Z | 2023-09-13T22:53:33Z |
| ghsa-6fmv-q269-55cw |
7.2 (3.1)
|
Edit template, Remote Code Execution (RCE) Vulnerability in Latest Release 4.4.0 | 2020-10-30T17:05:59Z | 2021-01-08T21:18:07Z |
| ghsa-jrgf-vfw2-hj26 |
8.0 (3.1)
|
RCE via PHP Object injection via SOAP Requests | 2020-10-30T17:06:06Z | 2021-11-19T13:46:38Z |
| ghsa-fw5q-j9p4-3vxg |
7.7 (3.1)
|
Blog comment posting, Cross Site Scripting(XSS) Vulnerability in Latest Release 4.4.0 | 2020-10-30T19:10:20Z | 2021-01-07T22:49:33Z |
| ghsa-58r4-h6v8-jcvm |
7.4 (3.1)
|
Regression in JWT Signature Validation | 2020-11-03T02:31:38Z | 2023-05-16T16:04:23Z |
| ghsa-g3wg-6mcf-8jj6 |
7.0 (3.1)
|
Local Temp Directory Hijacking Vulnerability | 2020-11-04T17:50:24Z | 2023-11-27T23:07:50Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2024-117 |
9.8 (3.1)
|
man-group/dtale version 3.10.0 is vulnerable to an authentication bypass and remote code … | dtale | 2024-06-06T19:16:00+00:00 | 2024-11-03T20:22:34.425699+00:00 |
| pysec-2024-76 |
7.5 (3.1)
|
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of eboo… | ebookmeta | 2024-06-07T19:15:00+00:00 | 2024-09-13T21:22:04.531357+00:00 |
| pysec-2024-52 |
|
lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. Unless … | authlib | 2024-06-09T19:15:00+00:00 | 2024-06-09T21:20:21.309692+00:00 |
| pysec-2024-177 |
9.8 (3.1)
|
Langflow through 0.6.19 allows remote code execution if untrusted users are able to reach… | langflow | 2024-06-10T20:15:15+00:00 | 2025-01-19T01:52:23.722576+00:00 |
| pysec-2024-236 |
6.1 (3.1)
|
Jupyter Server Proxy allows users to run arbitrary external processes alongside their not… | jupyter-server-proxy | 2024-06-11T22:15:09+00:00 | 2025-02-26T23:22:41.524251+00:00 |
| pysec-2024-97 |
9.8 (3.1)
|
** UNSUPPORTED WHEN ASSIGNED ** Improper Authentication vulnerability in Apache Submarine… | apache-submarine | 2024-06-12T14:15:00+00:00 | 2024-09-26T17:22:54.470974+00:00 |
| pysec-2024-98 |
9.8 (3.1)
|
** UNSUPPORTED WHEN ASSIGNED ** Incorrect Authorization vulnerability in Apache Submarine… | apache-submarine | 2024-06-12T15:15:00+00:00 | 2024-09-26T17:22:54.526846+00:00 |
| pysec-2024-195 |
5.5 (3.1)
|
Use of Web Browser Cache Containing Sensitive Information vulnerability in Apache Airflow… | apache-airflow | 2024-06-14T09:15:09+00:00 | 2025-01-19T16:22:56.419822+00:00 |
| pysec-2024-53 |
|
langchain_experimental (aka LangChain Experimental) before 0.0.61 for LangChain provides … | langchain-experimental | 2024-06-16T15:15:00+00:00 | 2024-06-16T17:20:32.187558+00:00 |
| pysec-2024-54 |
6.5 (3.1)
|
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St… | codechecker | 2024-06-24T18:15:00+00:00 | 2024-06-26T19:19:24.981233+00:00 |
| pysec-2024-167 |
|
NLTK through 3.8.1 allows remote code execution if untrusted packages have pickled Python… | nltk | 2024-06-27T22:15:10+00:00 | 2025-01-18T19:19:06.317325+00:00 |
| pysec-2024-176 |
6.1 (3.1)
|
A reflected Cross-Site Scripting (XSS) vulnerability was identified in zenml-io/zenml ver… | zenml | 2024-06-30T16:15:03+00:00 | 2025-01-18T22:21:45.122426+00:00 |
| pysec-2024-230 |
7.5 (3.1)
|
Certifi is a curated collection of Root Certificates for validating the trustworthiness o… | certifi | 2024-07-05T19:15:10+00:00 | 2025-02-12T21:21:51.559667+00:00 |
| pysec-2024-60 |
7.5 (3.1)
|
A vulnerability was identified in the kjd/idna library, specifically within the `idna.enc… | idna | 2024-07-07T18:15:00+00:00 | 2024-07-11T17:21:37.216928+00:00 |
| pysec-2024-56 |
|
An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urli… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.495359+00:00 |
| pysec-2024-57 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. The django.cont… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.604887+00:00 |
| pysec-2024-58 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.704786+00:00 |
| pysec-2024-59 |
|
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_l… | django | 2024-07-10T05:15:00+00:00 | 2024-07-10T11:20:07.800540+00:00 |
| pysec-2024-61 |
6.1 (3.1)
|
A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt ve… | chuanhuchatgpt | 2024-07-11T11:15:00+00:00 | 2024-07-12T21:33:00.657381+00:00 |
| pysec-2024-86 |
4.9 (3.1)
|
Wagtail is an open source content management system built on Django. A bug in Wagtail's `… | wagtail | 2024-07-11T16:15:00+00:00 | 2024-09-19T19:20:17.668744+00:00 |
| pysec-2024-62 |
|
Versions of the package langchain-experimental from 0.0.15 and before 0.0.21 are vulnerab… | langchain-experimental | 2024-07-15T05:15:00+00:00 | 2024-07-15T11:19:36.686972+00:00 |
| pysec-2024-66 |
7.8 (3.1)
|
dbt enables data analysts and engineers to transform their data using the same practices … | dbt-core | 2024-07-16T23:15:00+00:00 | 2024-07-19T17:21:49.664320+00:00 |
| pysec-2024-189 |
5.4 (3.1)
|
Apache Airflow versions before 2.9.3 have a vulnerability that allows an authenticated at… | apache-airflow | 2024-07-17T08:15:01+00:00 | 2025-01-19T07:21:16.796301+00:00 |
| pysec-2024-190 |
8.8 (3.1)
|
Apache Airflow 2.4.0, and versions before 2.9.3, has a vulnerability that allows authenti… | apache-airflow | 2024-07-17T08:15:02+00:00 | 2025-01-19T07:21:16.859034+00:00 |
| pysec-2024-172 |
3.7 (3.1)
|
Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Apache StreamPipes in … | streampipes | 2024-07-17T09:15:02+00:00 | 2025-01-18T22:21:43.557516+00:00 |
| pysec-2024-174 |
4.3 (3.1)
|
Server-Side Request Forgery (SSRF) vulnerability in Apache StreamPipes during installatio… | streampipes | 2024-07-17T09:15:02+00:00 | 2025-01-18T22:21:43.678475+00:00 |
| pysec-2024-173 |
8.8 (3.1)
|
Unrestricted Upload of File with dangerous type vulnerability in Apache StreamPipes. Such… | streampipes | 2024-07-17T10:15:01+00:00 | 2025-01-18T22:21:43.618882+00:00 |
| pysec-2024-63 |
|
In Roundup before 2.4.0, classhelpers (_generic.help.html) allow XSS. | roundup | 2024-07-17T20:15:00+00:00 | 2024-07-17T23:22:04.949977+00:00 |
| pysec-2024-64 |
|
Roundup before 2.4.0 allows XSS via a SCRIPT element in an HTTP Referer header. | roundup | 2024-07-17T20:15:00+00:00 | 2024-07-17T23:22:04.987078+00:00 |
| pysec-2024-65 |
|
Roundup before 2.4.0 allows XSS via JavaScript in PDF, XML, and SVG documents. | roundup | 2024-07-17T20:15:00+00:00 | 2024-07-17T23:22:05.024899+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-4242 | Malicious code in kvsclient (npm) | 2022-06-20T20:19:04Z | 2022-06-20T20:19:04Z |
| mal-2022-3066 | Malicious code in fkfk (npm) | 2022-06-20T20:19:05Z | 2022-06-20T20:19:12Z |
| mal-2022-3756 | Malicious code in icons-mail (npm) | 2022-06-20T20:19:05Z | 2022-06-20T20:19:05Z |
| mal-2022-4161 | Malicious code in khelahobe (npm) | 2022-06-20T20:19:05Z | 2022-06-20T20:19:06Z |
| mal-2022-4706 | Malicious code in mrg-api-encryptor (npm) | 2022-06-20T20:19:05Z | 2022-06-20T20:19:06Z |
| mal-2022-2879 | Malicious code in etn_validator_list (npm) | 2022-06-20T20:19:06Z | 2022-06-20T20:19:06Z |
| mal-2022-3271 | Malicious code in ganjaop (npm) | 2022-06-20T20:19:06Z | 2022-06-20T20:19:07Z |
| mal-2022-4606 | Malicious code in mirofontawesome (npm) | 2022-06-20T20:19:06Z | 2022-06-20T20:19:07Z |
| mal-2022-800 | Malicious code in a11ydevtool (npm) | 2022-06-20T20:19:06Z | 2022-06-20T20:19:07Z |
| mal-2022-2440 | Malicious code in dependency_confusion_easiscocco (npm) | 2022-06-20T20:19:07Z | 2022-06-20T20:19:08Z |
| mal-2022-2457 | Malicious code in devportal (npm) | 2022-06-20T20:19:07Z | 2022-06-20T20:19:08Z |
| mal-2022-2728 | Malicious code in emerald-workbench (npm) | 2022-06-20T20:19:07Z | 2022-06-20T20:19:07Z |
| mal-2022-6517 | Malicious code in testhackhacks (npm) | 2022-06-20T20:19:07Z | 2022-06-20T20:19:07Z |
| mal-2022-1726 | Malicious code in bulbulka (npm) | 2022-06-20T20:19:08Z | 2022-06-20T20:19:09Z |
| mal-2022-1734 | Malicious code in bv-framework-sites (npm) | 2022-06-20T20:19:08Z | 2022-06-20T20:19:09Z |
| mal-2022-2145 | Malicious code in component-thumbnail (npm) | 2022-06-20T20:19:08Z | 2022-06-20T20:19:08Z |
| mal-2022-2299 | Malicious code in cyberops-test-package (npm) | 2022-06-20T20:19:08Z | 2022-06-20T20:19:08Z |
| mal-2022-1036 | Malicious code in apex-metrics (npm) | 2022-06-20T20:19:09Z | 2022-06-20T20:19:10Z |
| mal-2022-1682 | Malicious code in brightspot-rishad (npm) | 2022-06-20T20:19:09Z | 2022-06-20T20:19:10Z |
| mal-2022-1725 | Malicious code in bulbul (npm) | 2022-06-20T20:19:09Z | 2022-06-20T20:19:09Z |
| mal-2022-4339 | Malicious code in load-image-ios (npm) | 2022-06-20T20:19:09Z | 2022-06-20T20:19:16Z |
| mal-2022-2365 | Malicious code in dbx-i18n (npm) | 2022-06-20T20:19:10Z | 2022-06-20T20:19:10Z |
| mal-2022-2638 | Malicious code in dyson-careers (npm) | 2022-06-20T20:19:10Z | 2022-06-20T20:19:11Z |
| mal-2022-873 | Malicious code in adsscriptloaderstatic (npm) | 2022-06-20T20:19:10Z | 2022-06-20T20:19:11Z |
| mal-2022-890 | Malicious code in agency-web-whitelabel (npm) | 2022-06-20T20:19:10Z | 2022-06-20T20:19:10Z |
| mal-2022-1605 | Malicious code in blancoservices (npm) | 2022-06-20T20:19:11Z | 2022-06-20T20:19:11Z |
| mal-2022-6078 | Malicious code in shared-it-appmod-ui (npm) | 2022-06-20T20:19:11Z | 2022-06-20T20:19:12Z |
| mal-2022-816 | Malicious code in ac-toolkit (npm) | 2022-06-20T20:19:11Z | 2022-06-20T20:19:12Z |
| mal-2022-896 | Malicious code in ahmadsalameh-tp (npm) | 2022-06-20T20:19:11Z | 2022-06-20T20:19:11Z |
| mal-2022-24 | Malicious code in 2k-utils (npm) | 2022-06-20T20:19:12Z | 2022-06-20T20:19:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1150 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-04T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1159 | libssh: Mehrere Schwachstellen ermöglichen Umgehung von Sicherheitsvorkehrungen | 2023-05-04T22:00:00.000+00:00 | 2025-06-26T22:00:00.000+00:00 |
| wid-sec-w-2023-1160 | GitLab: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-07T22:00:00.000+00:00 | 2023-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-1161 | IBM SAN Volume Controller: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-07T22:00:00.000+00:00 | 2023-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-1162 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-07T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1163 | OTRS: Schwachstelle ermöglicht Denial of Service | 2023-05-07T22:00:00.000+00:00 | 2023-05-07T22:00:00.000+00:00 |
| wid-sec-w-2023-1164 | Microsoft Edge: Mehrere Schwachstellen | 2023-05-07T22:00:00.000+00:00 | 2023-10-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1165 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-07T22:00:00.000+00:00 | 2024-07-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1166 | Linux Kernel: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2023-05-08T22:00:00.000+00:00 | 2024-02-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1167 | Gitea: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff | 2023-05-08T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1168 | SAP Patchday Mai 2023 | 2023-05-08T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1169 | Aruba ArubaOS: Mehrere Schwachstellen | 2023-05-08T22:00:00.000+00:00 | 2023-05-10T22:00:00.000+00:00 |
| wid-sec-w-2023-1170 | vim: Mehrere Schwachstellen ermöglichen Denial of Service und Codeausführung | 2023-05-09T22:00:00.000+00:00 | 2025-03-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1171 | tribe29 checkmk: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1172 | Mozilla Firefox und Mozilla Firefox ESR: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2024-01-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1173 | Intel NUC: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1174 | Intel FPGA Firmware: Schwachstelle ermöglicht Privilegieneskalation | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1175 | Intel i915 Graphics Driver für Linux: Schwachstelle ermöglicht Privilegieneskalation | 2023-05-09T22:00:00.000+00:00 | 2025-04-14T22:00:00.000+00:00 |
| wid-sec-w-2023-1176 | Intel Firmware: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1177 | Intel BIOS: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2023-05-11T22:00:00.000+00:00 |
| wid-sec-w-2023-1178 | Microsoft Windows und Microsoft Windows Server: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2024-05-06T22:00:00.000+00:00 |
| wid-sec-w-2023-1179 | Microsoft Office: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2024-01-11T23:00:00.000+00:00 |
| wid-sec-w-2023-1181 | FRRouting Project FRRouting: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-05-09T22:00:00.000+00:00 | 2024-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1182 | libTIFF: Schwachstelle ermöglicht Denial of Service | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1183 | docker: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1184 | Octopus Deploy: Schwachstelle ermöglicht Denial of Service | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1185 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2025-12-02T23:00:00.000+00:00 |
| wid-sec-w-2023-1187 | QT: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-09T22:00:00.000+00:00 | 2025-08-24T22:00:00.000+00:00 |
| wid-sec-w-2023-1188 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-09T22:00:00.000+00:00 | 2024-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1189 | Adobe Creative Cloud "Substance 3D Painter": Mehrere Schwachstellen | 2023-05-09T22:00:00.000+00:00 | 2023-05-09T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2012:1592 | Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update | 2012-12-18T22:23:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2012:1580 | Red Hat Security Advisory: kernel security, bug fix and enhancement update | 2012-12-18T22:25:00+00:00 | 2025-11-21T17:41:42+00:00 |
| rhsa-2012:1593 | Red Hat Security Advisory: JBoss Enterprise SOA Platform 5.3.0 update | 2012-12-18T22:25:00+00:00 | 2025-11-21T17:41:42+00:00 |
| rhsa-2012:1594 | Red Hat Security Advisory: JBoss Enterprise Application Platform 6.0.1 update | 2012-12-18T22:43:00+00:00 | 2026-01-28T22:34:39+00:00 |
| rhsa-2012:1604 | Red Hat Security Advisory: Fuse ESB Enterprise 7.1.0 update | 2012-12-21T03:09:00+00:00 | 2025-11-21T17:41:43+00:00 |
| rhsa-2012:1605 | Red Hat Security Advisory: Fuse MQ Enterprise 7.1.0 update | 2012-12-21T03:12:00+00:00 | 2025-11-21T17:41:43+00:00 |
| rhsa-2012:1606 | Red Hat Security Advisory: Fuse Management Console 7.1.0 update | 2012-12-21T03:13:00+00:00 | 2025-11-21T17:41:44+00:00 |
| rhsa-2013:0004 | Red Hat Security Advisory: tomcat6 security update | 2013-01-03T22:47:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhsa-2013:0005 | Red Hat Security Advisory: tomcat6 security update | 2013-01-03T22:49:00+00:00 | 2026-01-28T22:54:07+00:00 |
| rhba-2013:0022 | Red Hat Bug Fix Advisory: glibc bug fix and enhancement update | 2013-01-07T00:00:00+00:00 | 2025-11-21T17:20:56+00:00 |
| rhba-2013:0009 | Red Hat Bug Fix Advisory: mod_nss bug fix update | 2013-01-07T10:30:14+00:00 | 2025-11-21T17:20:54+00:00 |
| rhsa-2013:0141 | Red Hat Security Advisory: JBoss Enterprise Portal Platform 5.2.2 security update | 2013-01-07T23:31:00+00:00 | 2025-11-21T17:41:49+00:00 |
| rhsa-2013:0120 | Red Hat Security Advisory: quota security and bug fix update | 2013-01-08T04:04:00+00:00 | 2025-11-21T17:41:45+00:00 |
| rhsa-2013:0121 | Red Hat Security Advisory: mysql security and bug fix update | 2013-01-08T04:07:00+00:00 | 2025-11-21T17:41:45+00:00 |
| rhsa-2013:0122 | Red Hat Security Advisory: tcl security and bug fix update | 2013-01-08T04:10:00+00:00 | 2026-01-13T22:30:23+00:00 |
| rhsa-2013:0123 | Red Hat Security Advisory: OpenIPMI security, bug fix, and enhancement update | 2013-01-08T04:10:00+00:00 | 2025-11-21T17:41:46+00:00 |
| rhsa-2013:0124 | Red Hat Security Advisory: net-snmp security and bug fix update | 2013-01-08T04:16:00+00:00 | 2025-11-21T17:41:46+00:00 |
| rhsa-2013:0125 | Red Hat Security Advisory: wireshark security, bug fix, and enhancement update | 2013-01-08T04:16:00+00:00 | 2025-11-21T17:41:46+00:00 |
| rhsa-2013:0126 | Red Hat Security Advisory: squirrelmail security and bug fix update | 2013-01-08T04:20:00+00:00 | 2025-11-21T17:41:47+00:00 |
| rhsa-2013:0127 | Red Hat Security Advisory: libvirt security and bug fix update | 2013-01-08T04:20:00+00:00 | 2025-11-21T17:41:47+00:00 |
| rhsa-2013:0130 | Red Hat Security Advisory: httpd security, bug fix, and enhancement update | 2013-01-08T04:30:00+00:00 | 2025-11-21T17:41:48+00:00 |
| rhsa-2013:0128 | Red Hat Security Advisory: conga security, bug fix, and enhancement update | 2013-01-08T04:31:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0129 | Red Hat Security Advisory: ruby security and bug fix update | 2013-01-08T04:31:00+00:00 | 2025-11-21T17:41:48+00:00 |
| rhsa-2013:0131 | Red Hat Security Advisory: gnome-vfs2 security and bug fix update | 2013-01-08T04:36:00+00:00 | 2025-11-21T17:41:48+00:00 |
| rhsa-2013:0132 | Red Hat Security Advisory: autofs security, bug fix, and enhancement update | 2013-01-08T04:36:00+00:00 | 2025-11-21T17:41:48+00:00 |
| rhsa-2013:0133 | Red Hat Security Advisory: hplip3 security and bug fix update | 2013-01-08T04:36:00+00:00 | 2025-11-21T17:41:48+00:00 |
| rhsa-2013:0134 | Red Hat Security Advisory: freeradius2 security and bug fix update | 2013-01-08T04:39:00+00:00 | 2025-11-21T17:41:49+00:00 |
| rhsa-2013:0135 | Red Hat Security Advisory: gtk2 security and bug fix update | 2013-01-08T04:39:00+00:00 | 2025-11-21T17:41:49+00:00 |
| rhsa-2013:0146 | Red Hat Security Advisory: jbossweb security update | 2013-01-08T20:25:00+00:00 | 2026-01-28T22:54:08+00:00 |
| rhsa-2013:0147 | Red Hat Security Advisory: jbossas security update | 2013-01-08T20:30:00+00:00 | 2026-01-28T22:54:08+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-24-319-16 | Hitachi Energy MSM | 2024-11-14T07:00:00.000000Z | 2024-11-14T07:00:00.000000Z |
| icsa-24-319-17 | 2N Access Commander (Update A) | 2024-11-14T07:00:00.000000Z | 2025-02-11T07:00:00.000000Z |
| icsma-24-319-01 | Baxter Life2000 Ventilation System | 2024-11-14T07:00:00.000000Z | 2024-11-14T07:00:00.000000Z |
| icsa-24-324-01 | Mitsubishi Electric MELSEC iQ-F Series | 2024-11-19T07:00:00.000000Z | 2024-11-19T07:00:00.000000Z |
| va-24-325-01 | Versa Networks Versa Director insecure default PostgreSQL configuration | 2024-11-20T18:33:57Z | 2024-11-20T18:33:57Z |
| icsa-24-326-01 | Automated Logic WebCTRL Premium Server | 2024-11-21T07:00:00.000000Z | 2024-11-21T07:00:00.000000Z |
| icsa-24-326-02 | OSCAT Basic Library | 2024-11-21T07:00:00.000000Z | 2024-11-21T07:00:00.000000Z |
| icsa-24-326-07 | mySCADA myPRO Manager | 2024-11-21T07:00:00.000000Z | 2024-11-21T07:00:00.000000Z |
| icsa-24-338-02 | Siemens RUGGEDCOM APE1808 | 2024-11-22T00:00:00.000000Z | 2025-06-10T00:00:00.000000Z |
| va-24-331-01 | Valor Apps Easy Folder Listing Pro Joomla! extension deserialization vulnerability | 2024-11-26T18:15:49Z | 2024-11-26T18:15:49Z |
| icsa-24-338-01 | Ruijie Reyee OS (Update A) | 2024-12-03T07:00:00.000000Z | 2024-12-10T07:00:00.000000Z |
| icsa-24-338-03 | Open Automation Software | 2024-12-03T07:00:00.000000Z | 2024-12-03T07:00:00.000000Z |
| icsa-24-338-04 | Mitsubishi Electric Iconics Digital Solutions and Mitsubishi Electric Products (Update A) | 2024-12-03T07:00:00.000000Z | 2026-01-08T07:00:00.000000Z |
| icsa-24-338-05 | Fuji Electric Monitouch V-SFT (Update A) | 2024-12-03T07:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-338-06 | Fuji Electric Tellus Lite V-Simulator (Update A) | 2024-12-03T07:00:00.000000Z | 2025-07-29T06:00:00.000000Z |
| icsa-25-182-03 | FESTO CODESYS | 2024-12-03T11:00:00.000000Z | 2024-12-03T11:00:00.000000Z |
| icsa-24-340-01 | AutomationDirect C-More EA9 Programming Software | 2024-12-05T07:00:00.000000Z | 2024-12-05T07:00:00.000000Z |
| icsa-24-340-02 | Planet Technology Planet WGS-804HPT | 2024-12-05T07:00:00.000000Z | 2024-12-05T07:00:00.000000Z |
| icsa-24-347-01 | Siemens CPCI85 Central Processing/Communication | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-02 | Siemens Engineering Platforms | 2024-12-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-347-03 | Siemens RUGGEDCOM ROX II | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-04 | Siemens Parasolid | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-05 | Siemens Siemens Engineering Platforms | 2024-12-10T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-24-347-06 | Siemens Simcenter Femap | 2024-12-10T00:00:00.000000Z | 2024-12-10T00:00:00.000000Z |
| icsa-24-347-07 | Siemens Solid Edge SE2024 | 2024-12-10T00:00:00.000000Z | 2024-12-10T00:00:00.000000Z |
| icsa-24-347-08 | Siemens COMOS | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-09 | Siemens Teamcenter Visualization | 2024-12-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-347-10 | Siemens SENTRON Powercenter 1000 | 2024-12-10T00:00:00.000000Z | 2025-06-10T00:00:00.000000Z |
| icsa-25-010-01 | Schneider Electric PowerChute Serial Shutdown | 2024-12-10T00:00:00.000000Z | 2024-12-10T00:00:00.000000Z |
| icsa-25-010-02 | Schneider Electric Harmony HMI and Pro-Face HMI Products | 2024-12-10T00:00:00.000000Z | 2024-12-10T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-2995 | Incorrect handling of the supplementary groups in the CRI-O container engine might lead to sensitive information disclosure or possible data modification if an attacker has direct access to the affected container where supplementary groups are used to set access permissions and is able to execute a binary code in that container. | 2022-09-02T00:00:00.000Z | 2024-04-15T00:00:00.000Z |
| msrc_cve-2022-3077 | A buffer overflow vulnerability was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way it handled the I2C_SMBUS_BLOCK_PROC_CALL case (via the ioctl I2C_SMBUS) with malicious input data. This flaw could allow a local user to crash the system. | 2022-09-02T00:00:00.000Z | 2022-09-17T00:00:00.000Z |
| msrc_cve-2022-3078 | An issue was discovered in the Linux kernel through 5.16-rc6. There is a lack of check after calling vzalloc() and lack of free after allocation in drivers/media/test-drivers/vidtv/vidtv_s302m.c. | 2022-09-02T00:00:00.000Z | 2022-09-08T00:00:00.000Z |
| msrc_cve-2022-3080 | BIND 9 resolvers configured to answer from stale cache with zero stale-answer-client-timeout may terminate unexpectedly | 2022-09-02T00:00:00.000Z | 2022-09-24T00:00:00.000Z |
| msrc_cve-2022-3099 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-08T00:00:00.000Z |
| msrc_cve-2022-3134 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-3153 | NULL Pointer Dereference in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-17T00:00:00.000Z |
| msrc_cve-2022-31628 | phar wrapper can occur dos when using quine gzip file | 2022-09-02T00:00:00.000Z | 2025-10-01T23:11:18.000Z |
| msrc_cve-2022-31629 | $_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities | 2022-09-02T00:00:00.000Z | 2025-10-01T23:11:18.000Z |
| msrc_cve-2022-3170 | An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when the 'id->name' provided by the user did not end with '\0'. A privileged local user could pass a specially crafted name through ioctl() interface and crash the system or potentially escalate their privileges on the system. | 2022-09-02T00:00:00.000Z | 2022-09-17T00:00:00.000Z |
| msrc_cve-2022-3190 | Infinite loop in the F5 Ethernet Trailer protocol dissector in Wireshark 3.6.0 to 3.6.7 and 3.4.0 to 3.4.15 allows denial of service via packet injection or crafted capture file | 2022-09-02T00:00:00.000Z | 2022-09-15T00:00:00.000Z |
| msrc_cve-2022-3202 | A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information. | 2022-09-02T00:00:00.000Z | 2022-09-17T00:00:00.000Z |
| msrc_cve-2022-3204 | NRDelegation Attack | 2022-09-02T00:00:00.000Z | 2022-09-29T00:00:00.000Z |
| msrc_cve-2022-3234 | Heap-based Buffer Overflow in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-21T00:00:00.000Z |
| msrc_cve-2022-3235 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-23T00:00:00.000Z |
| msrc_cve-2022-3256 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-24T00:00:00.000Z |
| msrc_cve-2022-32743 | Samba does not validate the Validated-DNS-Host-Name right for the dNSHostName attribute which could permit unprivileged users to write it. | 2022-09-02T00:00:00.000Z | 2025-10-01T23:11:19.000Z |
| msrc_cve-2022-3278 | NULL Pointer Dereference in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-27T00:00:00.000Z |
| msrc_cve-2022-3296 | Stack-based Buffer Overflow in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-29T00:00:00.000Z |
| msrc_cve-2022-3297 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-29T00:00:00.000Z |
| msrc_cve-2022-3303 | A race condition flaw was found in the Linux kernel sound subsystem due to improper locking. It could lead to a NULL pointer dereference while handling the SNDCTL_DSP_SYNC ioctl. A privileged local user (root or member of the audio group) could use this flaw to crash the system resulting in a denial of service condition | 2022-09-02T00:00:00.000Z | 2022-09-30T00:00:00.000Z |
| msrc_cve-2022-3324 | Stack-based Buffer Overflow in vim/vim | 2022-09-02T00:00:00.000Z | 2022-09-30T00:00:00.000Z |
| msrc_cve-2022-3352 | Use After Free in vim/vim | 2022-09-02T00:00:00.000Z | 2022-10-01T00:00:00.000Z |
| msrc_cve-2022-35252 | When curl is used to retrieve and parse cookies from a HTTP(S) server itaccepts cookies using control codes that when later are sent back to a HTTPserver might make the server return 400 responses. Effectively allowing a"sister site" to deny service to all siblings. | 2022-09-02T00:00:00.000Z | 2022-09-30T00:00:00.000Z |
| msrc_cve-2022-36049 | Flux2 Helm Controller denial of service | 2022-09-02T00:00:00.000Z | 2022-09-13T00:00:00.000Z |
| msrc_cve-2022-36055 | Denial of service in Helm | 2022-09-02T00:00:00.000Z | 2022-09-09T00:00:00.000Z |
| msrc_cve-2022-36069 | Poetry Argument Injection vulnerability can lead to local Code Execution | 2022-09-02T00:00:00.000Z | 2025-10-01T23:11:20.000Z |
| msrc_cve-2022-36113 | Extracting malicious crates can corrupt arbitrary files | 2022-09-02T00:00:00.000Z | 2025-09-04T05:16:16.000Z |
| msrc_cve-2022-36114 | Extracting malicious crates can fill the file system | 2022-09-02T00:00:00.000Z | 2025-09-04T04:34:20.000Z |
| msrc_cve-2022-36280 | There is an out-of-bounds write vulnerability in vmwgfx driver | 2022-09-02T00:00:00.000Z | 2025-10-01T23:11:20.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201603-0338 | Dahua camera has weak password, allowing initial password login | 2022-05-04T10:27:05.138000Z |
| var-201601-0687 | SilentCircleBlackphone is a smartphone with privacy protection. SilentCircleBlackphone ha… | 2022-05-04T10:27:05.486000Z |
| var-201510-0732 | Siemens SIMATIC S7-300 CPU device Is the German Siemens ( Siemens ) A modular universal c… | 2022-05-04T10:27:06.192000Z |
| var-201308-0227 | The Intelligent Platform Management Interface (IPMI) implementation in Integrated Managem… | 2022-05-04T10:27:21.327000Z |
| var-201012-0378 | EUR Form Client has an arbitrary file execution vulnerability.A remote attacker could exe… | 2022-05-04T10:27:29.986000Z |
| var-201003-0529 | Httpdx is a lightweight http and ftp server. Httpdx handles certain FTP commands with int… | 2022-05-04T10:27:32Z |
| var-202103-1339 | A remote execution of arbitrary commands vulnerability was discovered in some Aruba Insta… | 2022-05-05T06:54:37.054000Z |
| var-201708-1311 | While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do … | 2022-05-05T07:01:50.040000Z |
| var-202103-1341 | A remote buffer overflow vulnerability was discovered in some Aruba Instant Access Point … | 2022-05-05T07:01:52.323000Z |
| var-201103-0201 | bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service (sessi… | 2022-05-05T07:02:32.167000Z |
| var-202103-1338 | A remote unauthorized disclosure of information vulnerability was discovered in some Arub… | 2022-05-05T07:02:59.051000Z |
| var-202109-1791 | A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 198… | 2022-05-05T07:03:08.343000Z |
| var-202103-0053 | A local authentication bypass vulnerability was discovered in some Aruba Instant Access P… | 2022-05-05T07:04:56.111000Z |
| var-202103-1344 | A remote arbitrary directory create vulnerability was discovered in some Aruba Instant Ac… | 2022-05-05T07:06:21.684000Z |
| var-202109-1794 | A vulnerability has been identified in NX 1980 Series (All versions < V1984), Solid Edge … | 2022-05-05T07:08:08.659000Z |
| var-202109-1039 | A vulnerability in the Link Layer Discovery Protocol (LLDP) message parser of Cisco IOS S… | 2022-05-05T07:09:49.939000Z |
| var-202106-0547 | A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Ea… | 2022-05-06T07:05:23.297000Z |
| var-200404-0150 | A vulnerability exists in the reliance of the Border Gateway Protocol (BGP) on the Transm… | 2022-05-06T07:13:31.281000Z |
| var-200403-0166 | Three security vulnerabilities have been reported to affect OpenSSL. Each of these remote… | 2022-05-06T07:44:02.207000Z |
| var-201608-0300 | The AdminUI in HPE Operations Manager (OM) before 9.21.130 on Linux, Unix, and Solaris al… | 2022-05-06T08:03:11.247000Z |
| var-202106-0543 | ** UNSUPPORTED WHEN ASSIGNED ** A CWE-20: Improper Input Validation vulnerability exists … | 2022-05-06T08:27:15.719000Z |
| var-202201-1491 | Improper initialization vulnerability in MELSEC-F series FX3U-ENET Firmware version 1.16 … | 2022-05-06T08:33:48.024000Z |
| var-202105-0408 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exi… | 2022-05-06T08:33:57.497000Z |
| var-201107-0320 | Brocade BigIron RX switch devices are susceptible to an access control list (ACL) bypass … | 2022-05-06T08:38:59.768000Z |
| var-202105-0412 | Improper Verification of Cryptographic Signature vulnerability exists in homeLYnk (Wiser … | 2022-05-06T08:39:50.458000Z |
| var-200106-0110 | TCP implementations that use random increments for initial sequence numbers (ISN) can all… | 2022-05-06T12:31:37.040000Z |
| var-201601-0608 | HPE Operations Manager 8.x and 9.0 on Windows allows remote attackers to execute arbitrar… | 2022-05-06T12:48:47.584000Z |
| var-201712-0147 | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1… | 2022-05-06T12:59:16.669000Z |
| var-201712-0172 | Microsoft Windows 7 SP1, Windows Server 2008 and R2 SP1, Windows 8.1 and Windows RT 8.1, … | 2022-05-06T12:59:16.716000Z |
| var-201711-0179 | Internet Explorer in Microsoft Windows 7 SP1, Windows Server 2008 SP2 and R2 SP1, Windows… | 2022-05-06T12:59:16.773000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2025-009576 | Multiple vulnerabilities in ELECOM wireless LAN routers | 2025-07-23T11:13+09:00 | 2025-07-23T11:13+09:00 |
| jvndb-2025-000051 | Real-time Bus Tracking System vulnerable to improper validation of specified quantity in input | 2025-07-23T13:54+09:00 | 2025-07-23T13:54+09:00 |
| jvndb-2025-000052 | TP-Link Archer C1200 vulnerable to clickjacking | 2025-07-24T14:16+09:00 | 2025-07-24T14:16+09:00 |
| jvndb-2025-010056 | TP-Link VIGI NVR1104H-4P and VIGI NVR2016H-16MP vulnerable to OS command injection | 2025-07-28T17:53+09:00 | 2025-07-28T17:53+09:00 |
| jvndb-2025-000053 | "SwitchBot" App vulnerable to insertion of sensitive information into log file | 2025-07-29T13:44+09:00 | 2025-07-29T13:44+09:00 |
| jvndb-2025-000054 | Apache Jena Fuseki vulnerable to path traversal | 2025-07-30T14:17+09:00 | 2025-07-30T14:17+09:00 |
| jvndb-2025-000055 | ZXHN-F660T and ZXHN-F660A use a common credential for all installations | 2025-07-31T15:12+09:00 | 2025-07-31T15:12+09:00 |
| jvndb-2025-010408 | Multiple vulnerabilities in PowerCMS | 2025-08-01T12:05+09:00 | 2025-08-01T12:05+09:00 |
| jvndb-2025-010603 | Out-of-bounds write vulnerability in FUJIFILM Business Innovation MFPs | 2025-08-05T11:29+09:00 | 2025-08-05T11:29+09:00 |
| jvndb-2025-000056 | Multiple vulnerabilities in Sato label printers CL4/6NX Plus and CL4/6NX-J Plus series | 2025-08-06T16:38+09:00 | 2025-08-06T16:38+09:00 |
| jvndb-2025-010854 | Trend Micro Endpoint security products for enterprises vulnerable to multiple OS command injection | 2025-08-07T12:25+09:00 | 2025-08-19T11:36+09:00 |
| jvndb-2025-000057 | Multiple vulnerabilities in Mubit Powered BLUE 870 | 2025-08-08T14:47+09:00 | 2025-08-08T14:47+09:00 |
| jvndb-2025-010972 | Multiple SEIKO EPSON products use weak initial passwords | 2025-08-08T14:50+09:00 | 2025-08-08T14:50+09:00 |
| jvndb-2025-000058 | WordPress plugin "Advanced Custom Fields" vulnerable to HTML injection | 2025-08-08T15:29+09:00 | 2025-08-08T15:29+09:00 |
| jvndb-2025-000059 | Seagate Toolkit registers a Windows service with an unquoted file path | 2025-08-14T12:32+09:00 | 2025-08-19T14:40+09:00 |
| jvndb-2025-000060 | PgManage vulnerable to injection | 2025-08-18T13:40+09:00 | 2025-08-18T13:40+09:00 |
| jvndb-2025-000061 | Multiple vulnerabilities in Movable Type | 2025-08-20T15:30+09:00 | 2025-08-20T15:30+09:00 |
| jvndb-2025-011884 | FUJIFILM Healthcare Americas Synapse Mobility vulnerable to Privilege Escalation | 2025-08-21T11:49+09:00 | 2025-08-25T10:38+09:00 |
| jvndb-2025-000062 | Multiple vulnerabilities in Group-Office | 2025-08-21T14:03+09:00 | 2025-08-21T14:03+09:00 |
| jvndb-2025-000063 | Western Digital Kitfox registers a Windows service with an unquoted file path | 2025-08-22T13:37+09:00 | 2025-08-22T13:37+09:00 |
| jvndb-2025-000065 | ScanSnap Manager installers vulnerable to privilege escalation | 2025-08-27T14:22+09:00 | 2025-08-27T14:22+09:00 |
| jvndb-2025-000064 | Multiple vulnerabilities in SS1 | 2025-08-27T15:13+09:00 | 2025-08-27T15:13+09:00 |
| jvndb-2025-000066 | Improper file access permission settings in multiple i-FILTER products | 2025-08-27T19:50+09:00 | 2025-09-29T13:45+09:00 |
| jvndb-2025-000067 | Multiple vulnerabilities in multiple iND products | 2025-08-29T14:47+09:00 | 2025-08-29T14:47+09:00 |
| jvndb-2025-012659 | Denial-of-service (DoS) vulnerability in Konica Minolta bizhub series | 2025-09-01T15:22+09:00 | 2025-09-01T15:22+09:00 |
| jvndb-2025-000068 | Seiko Solutions SkyBridge BASIC MB-A130 vulnerable to OS command injection | 2025-09-01T16:21+09:00 | 2025-09-01T16:21+09:00 |
| jvndb-2025-000070 | "Gunosy" App vulnerable to insertion of sensitive information into sent data | 2025-09-02T14:20+09:00 | 2025-09-09T09:51+09:00 |
| jvndb-2025-000069 | Web Caster V130 vulnerable to cross-site request forgery | 2025-09-03T14:23+09:00 | 2025-09-03T14:23+09:00 |
| jvndb-2025-000075 | Multiple vulnerabilities in TkEasyGUI | 2025-09-05T14:53+09:00 | 2025-09-05T14:53+09:00 |
| jvndb-2025-000071 | "Yahoo! Shopping" App for Android fails to restrict custom URL schemes properly | 2025-09-05T15:12+09:00 | 2025-09-05T15:12+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2018:1846-1 | Security update for the Linux Kernel | 2018-06-29T09:36:25Z | 2018-06-29T09:36:25Z |
| suse-su-2018:1850-1 | Security update for python-paramiko | 2018-06-29T12:35:17Z | 2018-06-29T12:35:17Z |
| suse-su-2018:1851-1 | Security update for ImageMagick | 2018-06-29T13:48:42Z | 2018-06-29T13:48:42Z |
| suse-su-2018:1855-1 | Security update for the Linux Kernel | 2018-06-29T14:41:33Z | 2018-06-29T14:41:33Z |
| suse-su-2018:1853-1 | Recommended update for mariadb | 2018-06-29T15:40:54Z | 2018-06-29T15:40:54Z |
| suse-su-2018:1873-1 | Security update for cairo | 2018-07-03T16:09:20Z | 2018-07-03T16:09:20Z |
| suse-su-2018:1872-1 | Security update for git | 2018-07-03T16:09:37Z | 2018-07-03T16:09:37Z |
| suse-su-2018:1874-1 | Security update for zsh | 2018-07-03T16:09:43Z | 2018-07-03T16:09:43Z |
| suse-su-2018:1887-1 | Security update for openssl | 2018-07-05T06:36:31Z | 2018-07-05T06:36:31Z |
| suse-su-2018:1883-1 | Security update for unzip | 2018-07-05T06:38:08Z | 2018-07-05T06:38:08Z |
| suse-su-2018:1886-1 | Security update for php7 | 2018-07-05T06:39:51Z | 2018-07-05T06:39:51Z |
| suse-su-2018:1889-1 | Security update for tiff | 2018-07-05T06:41:28Z | 2018-07-05T06:41:28Z |
| suse-su-2018:1882-1 | Security update for exiv2 | 2018-07-05T06:43:05Z | 2018-07-05T06:43:05Z |
| suse-su-2018:1884-1 | Security update for ghostscript | 2018-07-05T06:44:45Z | 2018-07-05T06:44:45Z |
| suse-su-2018:1885-1 | Security update for libvorbis | 2018-07-05T06:46:22Z | 2018-07-05T06:46:22Z |
| suse-su-2018:1888-1 | Security update for openvpn | 2018-07-05T06:47:58Z | 2018-07-05T06:47:58Z |
| suse-su-2018:1890-1 | Security update for rubygem-yard | 2018-07-05T15:28:08Z | 2018-07-05T15:28:08Z |
| suse-su-2018:1892-1 | Security update for nodejs6 | 2018-07-05T15:29:53Z | 2018-07-05T15:29:53Z |
| suse-su-2018:1902-1 | Security update for libqt4 | 2018-07-06T12:31:00Z | 2018-07-06T12:31:00Z |
| suse-su-2018:1918-1 | Security update for nodejs8 | 2018-07-09T09:55:35Z | 2018-07-09T09:55:35Z |
| suse-su-2018:1917-1 | Security update for openslp | 2018-07-09T09:57:19Z | 2018-07-09T09:57:19Z |
| suse-su-2018:1916-1 | Security update for openslp | 2018-07-09T09:59:53Z | 2018-07-09T09:59:53Z |
| suse-su-2018:1920-1 | Security update for ceph | 2018-07-10T07:42:02Z | 2018-07-10T07:42:02Z |
| suse-su-2018:1926-1 | Security update for ucode-intel | 2018-07-11T13:55:21Z | 2018-07-11T13:55:21Z |
| suse-su-2018:1925-1 | Security update for slurm | 2018-07-11T14:42:41Z | 2018-07-11T14:42:41Z |
| suse-su-2018:1935-1 | Recommended update for ucode-intel | 2018-07-12T06:50:05Z | 2018-07-12T06:50:05Z |
| suse-su-2018:1945-1 | Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2) | 2018-07-12T08:41:51Z | 2018-07-12T08:41:51Z |
| suse-su-2018:1943-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP2) | 2018-07-12T08:41:57Z | 2018-07-12T08:41:57Z |
| suse-su-2018:1940-1 | Security update for the Linux Kernel (Live Patch 16 for SLE 12 SP2) | 2018-07-12T08:42:05Z | 2018-07-12T08:42:05Z |
| suse-su-2018:1944-1 | Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP2) | 2018-07-12T08:42:09Z | 2018-07-12T08:42:09Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2022:10044-1 | Security update for chafa | 2022-07-08T18:01:15Z | 2022-07-08T18:01:15Z |
| opensuse-su-2022:10045-1 | Security update for chafa | 2022-07-08T18:01:18Z | 2022-07-08T18:01:18Z |
| opensuse-su-2022:10049-1 | Security update for libqt5-qtwebengine | 2022-07-10T16:01:15Z | 2022-07-10T16:01:15Z |
| opensuse-su-2022:2361-1 | Security update for pcre | 2022-07-12T10:05:55Z | 2022-07-12T10:05:55Z |
| opensuse-su-2022:10055-1 | Security update for chromium | 2022-07-12T22:21:58Z | 2022-07-12T22:21:58Z |
| opensuse-su-2022:10057-1 | Security update for opera | 2022-07-13T12:10:33Z | 2022-07-13T12:10:33Z |
| opensuse-su-2022:1157-1 | Security update for libsolv, libzypp, zypper | 2022-07-14T09:34:29Z | 2022-07-14T09:34:29Z |
| opensuse-su-2022:2546-1 | Security update for gpg2 | 2022-07-25T12:43:45Z | 2022-07-25T12:43:45Z |
| opensuse-su-2022:10065-1 | Security update for phpPgAdmin | 2022-07-25T21:21:23Z | 2022-07-25T21:21:23Z |
| opensuse-su-2022:2549-1 | Security update for the Linux Kernel | 2022-07-26T11:59:18Z | 2022-07-26T11:59:18Z |
| opensuse-su-2022:10067-1 | Security update for virtualbox | 2022-07-27T08:43:51Z | 2022-07-27T08:43:51Z |
| opensuse-su-2022:2562-1 | Security update for python-M2Crypto | 2022-07-27T12:36:42Z | 2022-07-27T12:36:42Z |
| opensuse-su-2022:10073-1 | Security update for chromium | 2022-08-01T06:43:27Z | 2022-08-01T06:43:27Z |
| opensuse-su-2022:10075-1 | Security update for python-jupyterlab | 2022-08-02T10:20:19Z | 2022-08-02T10:20:19Z |
| opensuse-su-2022:10076-1 | Security update for connman | 2022-08-02T18:21:29Z | 2022-08-02T18:21:29Z |
| opensuse-su-2022:10077-1 | Security update for seamonkey | 2022-08-03T06:55:59Z | 2022-08-03T06:55:59Z |
| opensuse-su-2022:2649-1 | Security update for pcre2 | 2022-08-03T13:06:51Z | 2022-08-03T13:06:51Z |
| opensuse-su-2022:2663-1 | Security update for harfbuzz | 2022-08-04T07:21:35Z | 2022-08-04T07:21:35Z |
| opensuse-su-2022:10080-1 | Security update for caddy | 2022-08-06T12:01:12Z | 2022-08-06T12:01:12Z |
| opensuse-su-2022:10081-1 | Security update for trivy | 2022-08-06T16:01:16Z | 2022-08-06T16:01:16Z |
| opensuse-su-2022:2801-1 | Security update for cifs-utils | 2022-08-12T14:28:36Z | 2022-08-12T14:28:36Z |
| opensuse-su-2022:10086-1 | Security update for chromium | 2022-08-12T15:02:47Z | 2022-08-12T15:02:47Z |
| opensuse-su-2022:10087-1 | Security update for opera | 2022-08-15T22:01:27Z | 2022-08-15T22:01:27Z |
| opensuse-su-2022:10088-1 | Security update for opera | 2022-08-15T22:01:31Z | 2022-08-15T22:01:31Z |
| opensuse-su-2022:10089-1 | Security update for seamonkey | 2022-08-16T07:42:05Z | 2022-08-16T07:42:05Z |
| opensuse-su-2022:10090-1 | Security update for canna | 2022-08-16T07:42:28Z | 2022-08-16T07:42:28Z |
| opensuse-su-2022:10091-1 | Security update for canna | 2022-08-16T07:42:47Z | 2022-08-16T07:42:47Z |
| opensuse-su-2022:10092-1 | Security update for chromium | 2022-08-16T07:43:41Z | 2022-08-16T07:43:41Z |
| opensuse-su-2022:10094-1 | Security update for trivy | 2022-08-20T10:02:00Z | 2022-08-20T10:02:00Z |
| opensuse-su-2022:10095-1 | Security update for nim | 2022-08-24T02:33:29Z | 2022-08-24T02:33:29Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2024-5257 | Improper Access Control in GitLab | 2024-07-13T07:20:36.387Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-2880 | Improper Access Control in GitLab | 2024-07-13T07:23:46.684Z | 2025-05-20T10:02:07.006Z |
| bit-vault-2024-6468 | Vault Vulnerable to Denial of Service When Setting a Proxy Protocol Behavior | 2024-07-17T07:39:35.824Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2024-38360 | Denial of service via Watched Words in Discourse | 2024-07-17T09:56:10.359Z | 2025-05-20T10:02:07.006Z |
| bit-wordpress-2024-3756 | 2024-07-18T07:41:57.570Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2024-3755 | 2024-07-18T07:42:10.574Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2023-51474 | 2024-07-18T07:43:55.364Z | 2025-03-24T17:31:38.612Z | |
| bit-wordpress-2023-28492 | 2024-07-18T07:44:25.068Z | 2024-07-18T07:56:34.499Z | |
| bit-airflow-2024-39877 | Apache Airflow: DAG Author Code Execution possibility in airflow-scheduler | 2024-07-19T07:16:17.842Z | 2025-05-20T10:02:07.006Z |
| bit-airflow-2024-39863 | Apache Airflow: Potential XSS Vulnerability | 2024-07-19T07:16:29.237Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-6595 | Uncontrolled Search Path Element in GitLab | 2024-07-19T07:19:00.729Z | 2025-05-20T10:02:07.006Z |
| bit-moodle-2024-34008 | moodle: CSRF risk in analytics management of models | 2024-07-19T07:25:34.028Z | 2025-05-20T10:02:07.006Z |
| bit-dotnet-2024-35264 | .NET and Visual Studio Remote Code Execution Vulnerability | 2024-07-20T07:17:07.352Z | 2025-05-20T10:02:07.006Z |
| bit-dotnet-2024-30105 | .NET and Visual Studio Denial of Service Vulnerability | 2024-07-20T07:17:25.261Z | 2025-05-20T10:02:07.006Z |
| bit-apache-2024-40898 | Apache HTTP Server: SSRF with mod_rewrite in server/vhost context on Windows | 2024-07-23T07:16:32.016Z | 2025-05-20T10:02:07.006Z |
| bit-apache-2024-40725 | Apache HTTP Server: source code disclosure with handlers configured via AddType | 2024-07-23T07:16:46.614Z | 2025-05-20T10:02:07.006Z |
| bit-syncthing-2022-46165 | Cross-site Scripting (XSS) in Web GUI in syncthing | 2024-07-24T19:38:31.354Z | 2025-05-20T10:02:07.006Z |
| bit-syncthing-2021-21404 | Crash due to malformed relay protocol message | 2024-07-24T19:38:44.658Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-7091 | Exposure of Sensitive Information to an Unauthorized Actor in GitLab | 2024-07-26T07:18:49.551Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-7060 | Exposure of Sensitive Information to an Unauthorized Actor in GitLab | 2024-07-26T07:19:04.262Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-7057 | Improper Access Control in GitLab | 2024-07-26T07:19:19.356Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-7047 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab | 2024-07-26T07:19:35.456Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-5067 | Exposure of Sensitive Information to an Unauthorized Actor in GitLab | 2024-07-26T07:22:33.753Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-0231 | Improper Control of Resource Identifiers ('Resource Injection') in GitLab | 2024-07-26T07:32:53.059Z | 2025-05-20T10:02:07.006Z |
| bit-elasticsearch-2023-49921 | 2024-07-31T07:18:47.750Z | 2025-04-03T14:40:37.652Z | |
| bit-elk-2024-37281 | Kibana Denial of Service issue | 2024-08-01T07:17:29.618Z | 2025-05-20T10:02:07.006Z |
| bit-kibana-2024-37281 | Kibana Denial of Service issue | 2024-08-01T07:22:52.204Z | 2025-05-20T10:02:07.006Z |
| bit-tensorflow-2023-33976 | TensorFlow segfault in array_ops.upper_bound | 2024-08-01T07:38:17.914Z | 2025-05-20T10:02:07.006Z |
| bit-discourse-2024-39320 | Discourse allows iframe injection though default site setting | 2024-08-01T11:17:54.016Z | 2025-05-20T10:02:07.006Z |
| bit-discourse-2024-37299 | Discourse vulnerable to DoS via Tag Group | 2024-08-01T11:18:31.703Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-03140 | Adobe Reader/Acrobat存在未明内存破坏任意代码执行漏洞(CNVD-2015-03140) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03141 | Adobe Reader/Acrobat存在内存错误引用任意代码执行漏洞(CNVD-2015-03141) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03142 | Adobe Reader/Acrobat存在内存错误引用任意代码执行漏洞(CNVD-2015-03142) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03143 | Adobe Reader/Acrobat存在内存错误引用任意代码执行漏洞(CNVD-2015-03143) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03144 | Adobe Reader/Acrobat存在内存错误引用任意代码执行漏洞(CNVD-2015-03144) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03145 | Adobe Reader/Acrobat存在内存错误引用任意代码执行漏洞(CNVD-2015-03145) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03146 | Adobe Reader/Acrobat Javascript API执行限制绕过漏洞(CNVD-2015-03146) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03147 | Adobe Reader/Acrobat Javascript API执行限制绕过漏洞(CNVD-2015-03147) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03148 | Adobe Reader/Acrobat Javascript API执行限制绕过漏洞(CNVD-2015-03148) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03149 | Adobe Reader/Acrobat Javascript API执行限制绕过漏洞(CNVD-2015-03149) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03150 | Adobe Flash Player存在未明类型混淆任意代码执行漏洞(CNVD-2015-03150) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03151 | Adobe Flash Player存在未明类型混淆任意代码执行漏洞(CNVD-2015-03151) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03152 | Adobe Flash Player存在未明类型混淆任意代码执行漏洞(CNVD-2015-03152) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03153 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-03153) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03154 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-03154) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03155 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-03155) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03156 | Adobe Flash Player存在未明内存破坏漏洞(CNVD-2015-03156) | 2015-05-14 | 2015-05-18 |
| cnvd-2015-03173 | QEMU拒绝服务漏洞(CNVD-2015-03173) | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03174 | GNU Libtasn1 'decoding.c'堆缓冲区溢出漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03175 | PHP '__toString()'函数类型混淆信息泄露漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03176 | GNU glibc存在多个缓冲区溢出漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03177 | SAP Sybase Unwired Platform Online Data Proxy信息泄露漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03178 | SAP CRM Business Rules Framework SQL注入漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03179 | SAP CRM Business Rules Framework任意代码执行漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03180 | SAP NetWeaver RFC SDK信息泄露漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03181 | Mozilla Thunderbird Linux Gstreamer插件H.264视频处理缓冲区溢出漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03182 | Mozilla Thunderbird SVG内容和CSS处理缓冲区溢出漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03183 | Mozilla Thunderbird XML内容解析缓冲区溢出漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03184 | Mozilla Firefox on Android信息泄露漏洞 | 2015-05-14 | 2015-05-19 |
| cnvd-2015-03185 | Cisco Headend Digital Broadband Delivery System跨站脚本漏洞 | 2015-05-14 | 2015-05-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2008-avi-204 | Vulnérabilités dans IBM HTTP Server | 2008-04-14T00:00:00.000000 | 2008-04-14T00:00:00.000000 |
| certa-2008-avi-205 | Vulnérabilité dans Symantec Altiris Deployment Solution | 2008-04-14T00:00:00.000000 | 2008-04-14T00:00:00.000000 |
| certa-2008-avi-206 | Multiples vulnérabilités dans ClamAV | 2008-04-15T00:00:00.000000 | 2008-04-15T00:00:00.000000 |
| certa-2008-avi-207 | Multiples vulnérabilités dans VMware ESX Server | 2008-04-16T00:00:00.000000 | 2008-04-16T00:00:00.000000 |
| certa-2008-avi-208 | Multiples vulnérabilités dans les produits Oracle | 2008-04-16T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-209 | Vulnérabilité de Firefox | 2008-04-17T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-210 | Vulnérabilité dans Cisco NAC Appliance | 2008-04-17T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-211 | Multiples vulnérabilités dans Apple Safari | 2008-04-17T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-212 | Vulnérabilité dans divers produits Computer Associates | 2008-04-17T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-213 | Vulnérabilités dans IBM DB2 | 2008-04-17T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-214 | Multiples vulnérabilités dans HP Openview | 2008-04-17T00:00:00.000000 | 2008-04-17T00:00:00.000000 |
| certa-2008-avi-215 | Vulnérabilité dans Dotclear | 2008-04-18T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-216 | Multiples vulnérabilités dans BEA JRockit | 2008-04-18T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-217 | Vulnérabilité dans BusinessObjects XI | 2008-04-18T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-218 | Multiples vulnérabilités dans OpenOffice.org | 2008-04-18T00:00:00.000000 | 2008-05-19T00:00:00.000000 |
| certa-2008-avi-219 | Vulnérabilité dans la bibliothèque speex | 2008-04-18T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-220 | Vulnérabilité dans Xpdf | 2008-04-18T00:00:00.000000 | 2008-04-18T00:00:00.000000 |
| certa-2008-avi-221 | Vulnérabilité dans mplayer | 2008-04-21T00:00:00.000000 | 2008-09-18T00:00:00.000000 |
| certa-2008-avi-222 | Vulnérabilité dans phpMyAdmin | 2008-04-23T00:00:00.000000 | 2008-04-23T00:00:00.000000 |
| certa-2008-avi-223 | Vulnérabilité dans WordPress | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-224 | Vulnérabilité dans SNMPc | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-225 | Multiples vulnérabilités dans PHP | 2008-05-02T00:00:00.000000 | 2008-06-25T00:00:00.000000 |
| certa-2008-avi-226 | Vulnérabilité dans IBM WebSphere Application Server | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-227 | Vulnérabilité dans IBM Lotus Expeditor | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-228 | Vulnérabilité dans Sun Java System Directory Server | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-229 | Vulnérabilité dans Nortel Multimedia Communication Server | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-230 | Vulnerabilité dans Akamai Download Manager | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-231 | Vulnérabilités dans KDE | 2008-05-02T00:00:00.000000 | 2008-05-02T00:00:00.000000 |
| certa-2008-avi-232 | Vulnérabilité dans Sun Solaris | 2008-05-05T00:00:00.000000 | 2008-05-05T00:00:00.000000 |
| certa-2008-avi-233 | Multiples vulnérabilités dans Mozilla Thunderbird | 2008-05-09T00:00:00.000000 | 2008-05-09T00:00:00.000000 |