Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-0945 |
N/A
|
Buffer overflow in Outlook Express 5.0 through 5.… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.228Z |
| CVE-2001-0947 |
N/A
|
Forms.exe CGI program in ValiCert Enterprise Vali… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.821Z |
| CVE-2001-0948 |
N/A
|
Cross-site scripting (CSS) vulnerability in ValiC… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.779Z |
| CVE-2001-0949 |
N/A
|
Buffer overflows in forms.exe CGI program in Vali… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.826Z |
| CVE-2001-0950 |
N/A
|
ValiCert Enterprise Validation Authority (EVA) Ad… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.002Z |
| CVE-2001-0952 |
N/A
|
THQ Volition Red Faction Game allows remote attac… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.962Z |
| CVE-2001-0953 |
N/A
|
Kebi WebMail allows remote attackers to access th… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.905Z |
| CVE-2001-0955 |
N/A
|
Buffer overflow in fbglyph.c in XFree86 before 4.… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.098Z |
| CVE-2001-0956 |
N/A
|
speechd 0.54 and earlier, with the Festival or rs… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.120Z |
| CVE-2001-0958 |
N/A
|
Buffer overflows in eManager plugin for Trend Mic… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.123Z |
| CVE-2001-0964 |
N/A
|
Buffer overflow in client for Half-Life 1.1.0.8 a… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.020Z |
| CVE-2001-0966 |
N/A
|
Directory traversal vulnerability in Nudester 1.1… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.811Z |
| CVE-2001-0967 |
N/A
|
Knox Arkeia server 4.2, and possibly other versio… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.831Z |
| CVE-2001-0968 |
N/A
|
Knox Arkeia server 4.2, and possibly other versio… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.090Z |
| CVE-2001-0970 |
N/A
|
Cross-site scripting vulnerability in TDForum 1.2… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.172Z |
| CVE-2001-0971 |
N/A
|
Directory traversal vulnerability in ACI 4d webse… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.039Z |
| CVE-2001-0972 |
N/A
|
Surf-Net ASP Forum before 2.30 uses easily guessa… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.908Z |
| CVE-2001-0974 |
N/A
|
Format string vulnerabilities in Oracle Internet … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.016Z |
| CVE-2001-0975 |
N/A
|
Buffer overflow vulnerabilities in Oracle Interne… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.064Z |
| CVE-2001-0976 |
N/A
|
Vulnerability in HP Process Resource Manager (PRM… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.285Z |
| CVE-2001-0979 |
N/A
|
Buffer overflow in swverify in HP-UX 11.0, and po… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.075Z |
| CVE-2001-0983 |
N/A
|
UltraEdit uses weak encryption to record FTP pass… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.967Z |
| CVE-2001-0984 |
N/A
|
Password Safe 1.7(1) leaves cleartext passwords i… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.905Z |
| CVE-2001-0985 |
N/A
|
shop.pl in Hassan Consulting Shopping Cart 1.23 a… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.091Z |
| CVE-2001-0986 |
N/A
|
SQLQHit.asp sample file in Microsoft Index Server… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.158Z |
| CVE-2001-0988 |
N/A
|
Arkeia backup server 4.2.8-2 and earlier creates … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.103Z |
| CVE-2001-0989 |
N/A
|
Buffer overflows in Pileup before 1.2 allows loca… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.167Z |
| CVE-2001-0990 |
N/A
|
Inter7 vpopmail 4.10.35 and earlier, when using t… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.064Z |
| CVE-2001-0991 |
N/A
|
Cross-site scripting vulnerability in Proxomitron… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.091Z |
| CVE-2001-0992 |
N/A
|
shopplus.cgi in ShopPlus shopping cart allows rem… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.065Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-1046 |
N/A
|
Buffer overflow in qpopper (aka qpop or popper) 4… |
n/a |
n/a |
2002-06-25T04:00:00 | 2024-08-08T04:44:06.995Z |
| CVE-2001-1047 |
N/A
|
Race condition in OpenBSD VFS allows local users … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:07.058Z |
| CVE-2001-1088 |
N/A
|
Microsoft Outlook 8.5 and earlier, and Outlook Ex… |
n/a |
n/a |
2002-06-25T04:00:00 | 2024-08-08T04:44:07.407Z |
| CVE-2001-1345 |
N/A
|
bctool in Jetico BestCrypt 0.7 and earlier trusts… |
n/a |
n/a |
2002-06-25T04:00:00 | 2024-08-08T04:51:07.751Z |
| CVE-2001-1263 |
N/A
|
telnet95.exe in Pragma InterAccess 4.0 build 5 al… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:08.221Z |
| CVE-2001-1359 |
N/A
|
Volution clients 1.0.7 and earlier attempt to con… |
n/a |
n/a |
2003-04-02T05:00:00 | 2024-08-08T04:51:08.224Z |
| CVE-2001-1256 |
N/A
|
kmmodreg in HP-UX 11.11, 11.04 and 11.00 allows l… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:08.422Z |
| CVE-2001-1277 |
N/A
|
makewhatis in the man package before 1.5i2 allows… |
n/a |
n/a |
2002-06-25T04:00:00 | 2024-08-08T04:51:07.538Z |
| CVE-2001-1329 |
N/A
|
Buffer overflow in rsh on AIX 4.2.0.0 may allow l… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:07.819Z |
| CVE-2001-1330 |
N/A
|
Buffer overflow in rsh on AIX 4.2.0.0 may allow l… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:08.144Z |
| CVE-2001-1368 |
N/A
|
Vulnerability in iPlanet Web Server 4 included in… |
n/a |
n/a |
2002-06-11T04:00:00 | 2024-08-08T04:51:08.232Z |
| CVE-2001-1430 |
N/A
|
Cayman 3220-H DSL Router 1.0 ship without a passw… |
n/a |
n/a |
2005-03-24T05:00:00 | 2024-08-08T04:58:09.615Z |
| CVE-2001-1343 |
N/A
|
ws_mail.cgi in WebStore 400/400CS 4.14 allows rem… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:08.199Z |
| CVE-2001-1344 |
N/A
|
WSSecurity.pl in WebStore allows remote attackers… |
n/a |
n/a |
2002-05-03T04:00:00 | 2024-08-08T04:51:07.818Z |
| CVE-2001-1148 |
N/A
|
Multiple buffer overflows in programs used by sco… |
n/a |
n/a |
2002-03-15T05:00:00 | 2024-08-08T04:44:07.891Z |
| CVE-2001-1077 |
N/A
|
Buffer overflow in tt_printf function of rxvt 2.6… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:07.816Z |
| CVE-2001-1163 |
N/A
|
Buffer overflow in Munica Corporation NetSQL 1.0 … |
n/a |
n/a |
2002-03-15T05:00:00 | 2024-08-08T04:44:07.878Z |
| CVE-2001-0247 |
N/A
|
Buffer overflows in BSD-based FTP servers allows … |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:06.661Z |
| CVE-2001-0248 |
N/A
|
Buffer overflow in FTP server in HPUX 11 allows r… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:06.960Z |
| CVE-2001-0249 |
N/A
|
Heap overflow in FTP daemon in Solaris 8 allows r… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:07.069Z |
| CVE-2001-0263 |
N/A
|
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) a… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:07.307Z |
| CVE-2001-0264 |
N/A
|
Gene6 G6 FTP Server 2.0 (aka BPFTP Server 2.10) a… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:07.279Z |
| CVE-2001-0265 |
N/A
|
ASCII Armor parser in Windows PGP 7.0.3 and earli… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.215Z |
| CVE-2001-0371 |
N/A
|
Race condition in the UFS and EXT2FS file systems… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.429Z |
| CVE-2001-0372 |
N/A
|
Akopia Interchange 4.5.3 through 4.6.3 installs d… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:07.426Z |
| CVE-2001-0373 |
N/A
|
The default configuration of the Dr. Watson progr… |
n/a |
n/a |
2002-03-09T05:00:00 | 2024-08-08T04:14:07.424Z |
| CVE-2001-0374 |
N/A
|
The HTTP server in Compaq web-enabled management … |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:14:07.430Z |
| CVE-2001-0375 |
N/A
|
Cisco PIX Firewall 515 and 520 with 5.1.4 OS runn… |
n/a |
n/a |
2004-09-01T04:00:00 | 2024-08-08T04:21:37.090Z |
| CVE-2001-0376 |
N/A
|
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 f… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.228Z |
| CVE-2001-0377 |
N/A
|
Infradig Inframail prior to 3.98a allows a remote… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.069Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-4w2v-q235-vp99 |
5.9 (3.1)
|
Axios vulnerable to Server-Side Request Forgery | 2021-01-04T20:59:40Z | 2022-09-14T20:36:52Z |
| ghsa-p4q6-qxjx-8jgp |
7.7 (3.1)
|
Directory Traversal in spring-boot-actuator-logview | 2021-01-05T17:29:40Z | 2021-01-07T22:28:53Z |
| ghsa-hq37-853p-g5cf |
7.5 (3.1)
7.7 (4.0)
|
Regular Expression Denial of Service in CairoSVG | 2021-01-06T16:57:50Z | 2024-09-13T17:42:15Z |
| ghsa-h96f-fc7c-9r55 |
|
Regex denial of service vulnerability in codesample plugin | 2021-01-06T19:25:46Z | 2021-01-06T19:25:24Z |
| ghsa-w7jx-j77m-wp65 |
|
Cross-site scripting vulnerability in TinyMCE | 2021-01-06T19:27:54Z | 2024-01-03T22:31:57Z |
| ghsa-395w-qhqr-9fr6 |
7.5 (3.1)
|
Path Traversal in Apache Flink | 2021-01-06T20:01:34Z | 2025-10-22T17:58:28Z |
| ghsa-pgww-xf46-h92r |
6.1 (3.1)
5.3 (4.0)
|
lxml vulnerable to Cross-site Scripting | 2021-01-07T21:54:01Z | 2025-12-20T05:10:35Z |
| ghsa-q3wr-qw3g-3p4h |
6.8 (3.1)
|
Injection/XSS in Redcarpet | 2021-01-11T19:06:10Z | 2022-10-07T20:41:40Z |
| ghsa-hh7m-rx4f-4vpv |
7.4 (3.1)
8.3 (4.0)
|
CSRF can expose users authentication token | 2021-01-11T20:38:28Z | 2024-09-20T17:48:13Z |
| ghsa-jxwx-85vp-gvwm |
7.5 (3.1)
|
Regular Expression Denial of Service in jquery-validation | 2021-01-13T18:21:54Z | 2023-08-31T18:34:36Z |
| ghsa-487w-pqcm-63hq |
9.8 (3.1)
|
Command injection in buns | 2021-01-13T18:22:13Z | 2023-09-08T22:44:01Z |
| ghsa-ww4j-c2rq-47q8 |
9.8 (3.1)
|
Command injection in ts-process-promises | 2021-01-13T18:22:28Z | 2023-09-08T20:18:49Z |
| ghsa-7jh9-6cpf-h4m7 |
9.9 (3.1)
|
XSS in hello.js | 2021-01-13T19:07:01Z | 2023-09-12T18:13:25Z |
| ghsa-v5rv-hpxg-8x49 |
|
Signature validation bypass in ServiceStack | 2021-01-13T19:13:11Z | 2021-01-13T19:12:58Z |
| ghsa-2ccx-2gf3-8xvv |
6.8 (3.1)
|
Kirby .dev domains and some reverse proxy setups were treated as local | 2021-01-14T19:15:19Z | 2022-07-20T17:00:39Z |
| ghsa-wjx2-7hqq-8h7m |
6.1 (3.1)
|
rails_admin ruby gem XSS vulnerability | 2021-01-14T19:17:16Z | 2023-07-03T21:56:16Z |
| ghsa-523c-xh4g-mh5m |
7.5 (3.1)
|
Denial of Service in Apache POI | 2021-01-14T19:18:22Z | 2022-11-17T20:57:31Z |
| ghsa-3p32-j457-pg5x |
7.2 (3.1)
|
Query Binding Exploitation | 2021-01-19T19:36:51Z | 2021-03-29T17:41:17Z |
| ghsa-39wj-j3jc-858m |
|
XSS vulnerability leveraged through referrers could allow un-authorized admin access in Mautic | 2021-01-19T20:43:56Z | 2021-01-19T20:43:12Z |
| ghsa-qpgw-2c72-4c89 |
6.5 (3.1)
|
Mautic users able to download any files from server using filemanager | 2021-01-19T20:50:38Z | 2023-09-11T13:40:01Z |
| ghsa-xcf7-cj8q-pcjm |
6.1 (3.1)
|
XSS vulnerability in Author URL of themes in Mautic | 2021-01-19T21:16:14Z | 2023-09-11T13:41:18Z |
| ghsa-5w74-jx7m-x6hv |
6.1 (3.1)
|
XSS vulnerability in theme config file in Mautic | 2021-01-19T21:16:17Z | 2023-09-11T13:42:01Z |
| ghsa-6x98-fx9j-7c78 |
8.1 (3.1)
|
Disabled users able to log in with third party SSO plugin | 2021-01-19T21:16:19Z | 2023-09-11T13:39:35Z |
| ghsa-vfxj-qg93-7wwc |
7.5 (3.1)
|
Mautic Sessions could be hijacked due to tracking contacts by an auto-incremented ID | 2021-01-19T21:16:21Z | 2023-09-11T15:06:08Z |
| ghsa-qjhr-c23f-w76q |
6.1 (3.1)
|
Inline JS XSS vulnerability in Mautic | 2021-01-19T21:16:24Z | 2021-01-19T21:14:13Z |
| ghsa-9hx7-rg7w-xm79 |
6.1 (3.1)
|
XSS vulnerability in company name field in Mautic | 2021-01-19T21:16:26Z | 2021-01-19T21:13:14Z |
| ghsa-29v9-2fpx-j5g9 |
9.8 (3.1)
|
CSV Injection vulnerability with exported contact lists in Mautic | 2021-01-19T21:16:29Z | 2021-01-19T21:13:01Z |
| ghsa-5949-rw7g-wx7w |
8.1 (3.1)
|
Deserialization of untrusted data in jackson-databind | 2021-01-20T21:20:15Z | 2024-03-15T00:16:03Z |
| ghsa-qwp9-52h8-xgg8 |
|
Prototype pollution in JointJS | 2021-01-20T21:21:16Z | 2021-01-20T05:24:47Z |
| ghsa-6g8v-hpgw-h2v7 |
7.5 (3.1)
|
Prototype pollution in gsap | 2021-01-20T21:21:50Z | 2023-09-12T20:56:09Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2024-156 |
|
An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2… | django | 2024-12-06T12:15:17+00:00 | 2025-01-14T05:22:11.736011+00:00 |
| pysec-2024-157 |
|
An issue was discovered in Django 5.1 before 5.1.4, 5.0 before 5.0.10, and 4.2 before 4.2… | django | 2024-12-06T12:15:18+00:00 | 2025-01-14T05:22:11.817473+00:00 |
| pysec-2024-159 |
|
Versions of the package luigi before 3.6.0 are vulnerable to Arbitrary File Write via Arc… | luigi | 2024-12-10T05:15:07+00:00 | 2025-01-14T05:22:17.204098+00:00 |
| pysec-2024-154 |
8.6 (3.1)
8.7 (4.0)
|
Ultralytics has identified a supply chain attack affecting affecting multiple versions of… | ultralytics | 2024-12-10T19:20:27.097505+00:00 | |
| pysec-2024-158 |
|
Versions of the package djoser before 2.3.0 are vulnerable to Authentication Bypass when … | djoser | 2024-12-13T05:15:07+00:00 | 2025-01-14T05:22:11.856636+00:00 |
| pysec-2025-33 |
7.5 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the EVM. When the Vyper Compiler uses the… | vyper | 2025-01-14T18:16:05+00:00 | 2025-04-23T21:23:01.322686+00:00 |
| pysec-2025-1 |
|
An issue was discovered in Django 5.1 before 5.1.5, 5.0 before 5.0.11, and 4.2 before 4.2… | django | 2025-01-14T19:15:32+00:00 | 2025-01-14T21:22:18.665005+00:00 |
| pysec-2025-12 |
|
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St… | codechecker | 2025-01-21T15:15:13+00:00 | 2025-04-08T10:23:23.899726+00:00 |
| pysec-2025-2 |
|
uniapi version 1.0.7 introduces code that would execute on import of the module and downl… | uniapi | 2025-01-24T19:56:53+00:00 | |
| pysec-2025-58 |
8.8 (3.1)
|
vLLM is a library for LLM inference and serving. vllm/model_executor/weight_utils.py impl… | vllm | 2025-01-27T18:15:41+00:00 | 2025-06-27T21:22:36.583615+00:00 |
| pysec-2025-26 |
|
The Snowflake Connector for Python provides an interface for developing Python applicatio… | snowflake-connector-python | 2025-01-29T21:15:21+00:00 | 2025-04-09T17:27:27.645758+00:00 |
| pysec-2025-27 |
|
The Snowflake Connector for Python provides an interface for developing Python applicatio… | snowflake-connector-python | 2025-01-29T21:15:21+00:00 | 2025-04-09T17:27:27.711157+00:00 |
| pysec-2025-28 |
|
The Snowflake Connector for Python provides an interface for developing Python applicatio… | snowflake-connector-python | 2025-01-29T21:15:21+00:00 | 2025-04-09T17:27:27.772920+00:00 |
| pysec-2025-62 |
|
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Mal… | vllm | 2025-02-07T20:15:34+00:00 | 2025-07-01T23:22:49.083695+00:00 |
| pysec-2025-29 |
|
vyper is a Pythonic Smart Contract Language for the EVM. Vyper `sqrt()` builtin uses the … | vyper | 2025-02-21T22:15:13+00:00 | 2025-04-09T17:27:28.005382+00:00 |
| pysec-2025-30 |
|
vyper is a Pythonic Smart Contract Language for the EVM. Multiple evaluation of a single … | vyper | 2025-02-21T22:15:13+00:00 | 2025-04-09T17:27:28.064106+00:00 |
| pysec-2025-31 |
|
vyper is a Pythonic Smart Contract Language for the EVM. Vyper handles AugAssign statemen… | vyper | 2025-02-21T22:15:13+00:00 | 2025-04-09T17:27:28.116292+00:00 |
| pysec-2025-18 |
|
picklescan before 0.0.21 does not treat 'pip' as an unsafe global. An attacker could craf… | picklescan | 2025-02-26T15:15:24+00:00 | 2025-04-09T17:27:26.867210+00:00 |
| pysec-2025-4 |
|
Published in 2019, the automslc package is a Python library that bypasses Deezer API rest… | automslc | 2025-02-26T19:26:49+00:00 | |
| pysec-2025-3 |
|
Published in 2019, the autodzee package is a Python library that bypasses Deezer API rest… | autodzee | 2025-02-26T20:54:20+00:00 | |
| pysec-2025-5 |
|
Published in 2020, the autodzee package is a Python library that bypasses Deezer API rest… | browsercmdhbt2 | 2025-02-26T20:57:11+00:00 | |
| pysec-2025-6 |
|
Published in 2021, the colabrun package is a Python library that exfiltrates user cookies… | colabrun | 2025-02-26T20:59:48+00:00 | |
| pysec-2025-7 |
|
Published in 2021, the imblog package is a Python library that scrapes data from a blog p… | imblog | 2025-02-26T21:19:19+00:00 | |
| pysec-2025-66 |
|
Improper privilege management in a REST interface allowed registered users to access unau… | streampipes | 2025-03-03T11:15:11+00:00 | 2025-07-08T15:23:46.628375+00:00 |
| pysec-2025-15 |
5.3 (3.1)
|
Flask-AppBuilder is an application development framework. Prior to 4.5.3, Flask-AppBuilde… | flask-appbuilder | 2025-03-03T16:15:41+00:00 | 2025-04-09T17:27:25.227116+00:00 |
| pysec-2025-24 |
7.5 (3.1)
|
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the /api/remove… | rembg | 2025-03-03T17:15:14+00:00 | 2025-04-09T17:27:27.486485+00:00 |
| pysec-2025-25 |
6.5 (3.1)
|
Rembg is a tool to remove images background. In Rembg 2.0.57 and earlier, the CORS middle… | rembg | 2025-03-03T17:15:14+00:00 | 2025-04-09T17:27:27.532849+00:00 |
| pysec-2025-19 |
9.8 (3.1)
|
picklescan before 0.0.22 only considers standard pickle file extensions in the scope for … | picklescan | 2025-03-03T19:15:34+00:00 | 2025-04-09T17:27:26.916350+00:00 |
| pysec-2025-23 |
|
Versions of the package ray before 2.43.0 are vulnerable to Insertion of Sensitive Inform… | ray | 2025-03-06T05:15:16+00:00 | 2025-04-09T17:27:27.434099+00:00 |
| pysec-2025-13 |
|
An issue was discovered in Django 5.1 before 5.1.7, 5.0 before 5.0.13, and 4.2 before 4.2… | django | 2025-03-06T19:15:27+00:00 | 2025-04-09T17:27:25.095679+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-2434 | Malicious code in dependency-from-npm (npm) | 2022-06-20T20:19:34Z | 2022-06-20T20:19:34Z |
| mal-2022-2973 | Malicious code in fb-arcanist-rpc (npm) | 2022-06-20T20:19:34Z | 2022-06-20T20:19:34Z |
| mal-2022-3030 | Malicious code in figma-scripts (npm) | 2022-06-20T20:19:34Z | 2022-06-20T20:19:35Z |
| mal-2022-3330 | Malicious code in generatedloggerutils (npm) | 2022-06-20T20:19:34Z | 2022-06-20T20:19:35Z |
| mal-2022-5375 | Malicious code in plugin-typings (npm) | 2022-06-20T20:19:34Z | 2022-06-20T20:19:34Z |
| mal-2022-1016 | Malicious code in anpgvytdohnmusxxexicyoojcrmmzvartwuisqqtnaqolfyddhcfkpnrncyc (npm) | 2022-06-20T20:19:35Z | 2022-06-20T20:19:35Z |
| mal-2022-3029 | Malicious code in figma-intern-shell (npm) | 2022-06-20T20:19:35Z | 2022-06-20T20:19:36Z |
| mal-2022-3792 | Malicious code in igrepoposide (npm) | 2022-06-20T20:19:35Z | 2022-06-20T20:19:35Z |
| mal-2022-6472 | Malicious code in test-container-utils (npm) | 2022-06-20T20:19:35Z | 2022-06-20T20:19:36Z |
| mal-2022-263 | Malicious code in @fbpay/merchant-demo (npm) | 2022-06-20T20:19:36Z | 2022-06-20T20:19:37Z |
| mal-2022-265 | Malicious code in @fbpay/test-container-utils (npm) | 2022-06-20T20:19:36Z | 2022-06-20T20:19:37Z |
| mal-2022-266 | Malicious code in @fbsystem/figma-graphql (npm) | 2022-06-20T20:19:36Z | 2022-06-20T20:19:37Z |
| mal-2022-4692 | Malicious code in moodules (npm) | 2022-06-20T20:19:36Z | 2022-06-20T20:19:36Z |
| mal-2022-264 | Malicious code in @fbpay/sdk (npm) | 2022-06-20T20:19:37Z | 2022-06-20T20:19:37Z |
| mal-2022-267 | Malicious code in @fbsystem/figma-intern-shell (npm) | 2022-06-20T20:19:37Z | 2022-06-20T20:19:38Z |
| mal-2022-268 | Malicious code in @fbsystem/figma-messenger (npm) | 2022-06-20T20:19:37Z | 2022-06-20T20:19:38Z |
| mal-2022-6864 | Malicious code in user-interface-kit (npm) | 2022-06-20T20:19:37Z | 2022-06-20T20:19:38Z |
| mal-2022-1167 | Malicious code in auction2-assets (npm) | 2022-06-20T20:19:38Z | 2022-06-20T20:19:38Z |
| mal-2022-1168 | Malicious code in auction2-im (npm) | 2022-06-20T20:19:38Z | 2022-06-20T20:19:38Z |
| mal-2022-1498 | Malicious code in bem-xjst-static-analyzer (npm) | 2022-06-20T20:19:38Z | 2022-06-20T20:19:39Z |
| mal-2022-6288 | Malicious code in staff-card (npm) | 2022-06-20T20:19:38Z | 2022-06-20T20:19:39Z |
| mal-2022-3341 | Malicious code in geoadv-entities (npm) | 2022-06-20T20:19:39Z | 2022-06-20T20:19:39Z |
| mal-2022-3343 | Malicious code in geoadv-proptypes-codegen (npm) | 2022-06-20T20:19:39Z | 2022-06-20T20:19:40Z |
| mal-2022-3344 | Malicious code in geoadv-ts-codegen (npm) | 2022-06-20T20:19:39Z | 2022-06-20T20:19:40Z |
| mal-2022-5644 | Malicious code in react-dts-codegen (npm) | 2022-06-20T20:19:39Z | 2022-06-20T20:19:42Z |
| mal-2022-3339 | Malicious code in geoadv-account (npm) | 2022-06-20T20:19:40Z | 2022-06-20T20:19:41Z |
| mal-2022-3340 | Malicious code in geoadv-app (npm) | 2022-06-20T20:19:40Z | 2022-06-20T20:19:40Z |
| mal-2022-3342 | Malicious code in geoadv-linters (npm) | 2022-06-20T20:19:40Z | 2022-06-20T20:19:40Z |
| mal-2022-6648 | Malicious code in tribe-api (npm) | 2022-06-20T20:19:40Z | 2022-06-20T20:19:41Z |
| mal-2022-5787 | Malicious code in richmediacore (npm) | 2022-06-20T20:19:41Z | 2022-06-20T20:19:41Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1307 | LibreOffice: Mehrere Schwachstellen | 2023-05-25T22:00:00.000+00:00 | 2024-06-12T22:00:00.000+00:00 |
| wid-sec-w-2023-1309 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-29T22:00:00.000+00:00 | 2023-10-19T22:00:00.000+00:00 |
| wid-sec-w-2023-1310 | Apache Cassandra: Schwachstelle ermöglicht Privilegieneskalation | 2023-05-29T22:00:00.000+00:00 | 2023-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1311 | OpenBSD: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-29T22:00:00.000+00:00 | 2023-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1313 | OpenLDAP: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-29T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1314 | libarchive: Schwachstelle ermöglicht Manipulation von Dateien | 2023-05-29T22:00:00.000+00:00 | 2023-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1315 | Dell PowerEdge: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2023-05-29T22:00:00.000+00:00 | 2024-09-17T22:00:00.000+00:00 |
| wid-sec-w-2023-1316 | ImageMagick: Mehrere Schwachstellen | 2023-05-29T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1317 | Moxa MXsecurity: Mehrere Schwachstellen | 2023-05-29T22:00:00.000+00:00 | 2023-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1318 | Fabasoft Folio: Schwachstelle ermöglicht Erlangen von Benutzerrechten | 2023-05-29T22:00:00.000+00:00 | 2023-05-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1321 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-30T22:00:00.000+00:00 | 2023-09-10T22:00:00.000+00:00 |
| wid-sec-w-2023-1322 | VMware Produkte: Schwachstelle ermöglicht Umleitung und Offenlegung von Informationen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1323 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-05-30T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1324 | OpenSC: Schwachstelle ermöglicht Denial of Service | 2023-05-30T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1325 | Google Chrome: Mehrere Schwachstellen | 2023-05-30T22:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-1326 | Microsoft GitHub Enterprise: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1327 | Joomla: Mehrere Schwachstellen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1328 | IBM QRadar SIEM: Mehrere Schwachstellen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1329 | Canonical Snap: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1330 | Avaya IX Workforce Engagement: Mehrere Schwachstellen | 2023-05-30T22:00:00.000+00:00 | 2023-05-30T22:00:00.000+00:00 |
| wid-sec-w-2023-1331 | ILIAS: Mehrere Schwachstellen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1332 | Symantec Advanced Secure Gateway und Content Analysis: Mehrere Schwachstellen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1333 | IBM Tivoli Business Service Manager: Schwachstelle ermöglicht Codeausführung | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1334 | IBM WebSphere Application Server: Schwachstelle ermöglicht Denial of Service | 2023-05-31T22:00:00.000+00:00 | 2024-01-17T23:00:00.000+00:00 |
| wid-sec-w-2023-1335 | IBM Maximo Asset Management: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1336 | Red Hat Satellite: Schwachstelle ermöglicht Cross-Site Scripting | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1337 | Arista EOS: Schwachstelle ermöglicht Denial of Service | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1338 | Drupal Plugins: Mehrere Schwachstellen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1339 | Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-05-31T22:00:00.000+00:00 | 2024-05-28T22:00:00.000+00:00 |
| wid-sec-w-2023-1340 | Rancher: Mehrere Schwachstellen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2013:0276 | Red Hat Security Advisory: libvirt security, bug fix, and enhancement update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:17+00:00 |
| rhsa-2013:0503 | Red Hat Security Advisory: 389-ds-base security, bug fix, and enhancement update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:19+00:00 |
| rhsa-2013:0504 | Red Hat Security Advisory: dhcp security and bug fix update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:20+00:00 |
| rhsa-2013:0506 | Red Hat Security Advisory: samba4 security, bug fix and enhancement update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:22+00:00 |
| rhsa-2013:0511 | Red Hat Security Advisory: pki-core security, bug fix and enhancement update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:23+00:00 |
| rhsa-2013:0512 | Red Hat Security Advisory: httpd security, bug fix, and enhancement update | 2013-02-20T16:18:00+00:00 | 2025-11-21T17:42:23+00:00 |
| rhsa-2013:0277 | Red Hat Security Advisory: dnsmasq security, bug fix and enhancement update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:17+00:00 |
| rhsa-2013:0505 | Red Hat Security Advisory: squid security and bug fix update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:21+00:00 |
| rhsa-2013:0508 | Red Hat Security Advisory: sssd security, bug fix and enhancement update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:22+00:00 |
| rhsa-2013:0516 | Red Hat Security Advisory: evolution security and bug fix update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:25+00:00 |
| rhsa-2013:0517 | Red Hat Security Advisory: util-linux-ng security, bug fix and enhancement update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:26+00:00 |
| rhsa-2013:0520 | Red Hat Security Advisory: dovecot security and bug fix update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:28+00:00 |
| rhsa-2013:0521 | Red Hat Security Advisory: pam security, bug fix, and enhancement update | 2013-02-20T16:19:00+00:00 | 2025-11-21T17:42:28+00:00 |
| rhsa-2013:0515 | Red Hat Security Advisory: openchange security, bug fix and enhancement update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:25+00:00 |
| rhsa-2013:0519 | Red Hat Security Advisory: openssh security, bug fix and enhancement update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:28+00:00 |
| rhsa-2013:0522 | Red Hat Security Advisory: gdb security and bug fix update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:28+00:00 |
| rhsa-2013:0523 | Red Hat Security Advisory: ccid security and bug fix update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:29+00:00 |
| rhsa-2013:0525 | Red Hat Security Advisory: pcsc-lite security and bug fix update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:30+00:00 |
| rhsa-2013:0526 | Red Hat Security Advisory: automake security update | 2013-02-20T16:20:00+00:00 | 2025-11-21T17:42:30+00:00 |
| rhsa-2013:0509 | Red Hat Security Advisory: rdma security, bug fix and enhancement update | 2013-02-20T16:21:00+00:00 | 2025-11-21T17:42:23+00:00 |
| rhsa-2013:0514 | Red Hat Security Advisory: php security, bug fix and enhancement update | 2013-02-20T16:21:00+00:00 | 2025-11-21T17:42:24+00:00 |
| rhsa-2013:0496 | Red Hat Security Advisory: Red Hat Enterprise Linux 6 kernel update | 2013-02-20T16:32:00+00:00 | 2025-11-21T17:42:18+00:00 |
| rhsa-2013:0528 | Red Hat Security Advisory: ipa security, bug fix and enhancement update | 2013-02-20T16:46:00+00:00 | 2025-11-21T17:42:31+00:00 |
| rhsa-2013:0533 | Red Hat Security Advisory: JBoss Enterprise SOA Platform 5.3.1 update | 2013-02-20T21:33:00+00:00 | 2026-01-28T22:54:17+00:00 |
| rhsa-2013:0531 | Red Hat Security Advisory: java-1.6.0-sun security update | 2013-02-20T21:40:00+00:00 | 2026-01-28T22:54:20+00:00 |
| rhsa-2013:0532 | Red Hat Security Advisory: java-1.7.0-oracle security update | 2013-02-20T21:41:00+00:00 | 2026-01-28T22:54:16+00:00 |
| rhsa-2013:0545 | Red Hat Security Advisory: CloudForms Cloud Engine 1.1.2 update | 2013-02-21T18:53:00+00:00 | 2025-11-21T17:42:33+00:00 |
| rhsa-2013:0547 | Red Hat Security Advisory: CloudForms System Engine 1.1.2 update | 2013-02-21T18:55:00+00:00 | 2025-11-21T17:42:33+00:00 |
| rhsa-2013:0548 | Red Hat Security Advisory: CloudForms Common 1.1.2 update | 2013-02-21T18:56:00+00:00 | 2026-01-28T22:54:19+00:00 |
| rhsa-2013:0549 | Red Hat Security Advisory: Red Hat Directory Server security and bug fix update | 2013-02-21T18:59:00+00:00 | 2025-11-21T17:42:36+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-058-01 | Schneider Electric communication modules for Modicon M580 and Quantum controllers (Update B) | 2025-02-27T07:00:00.000000Z | 2025-09-09T06:00:00.000000Z |
| icsma-25-058-01 | Dario Health USB-C Blood Glucose Monitoring System Starter Kit Android Application | 2025-02-27T07:00:00.000000Z | 2025-02-27T07:00:00.000000Z |
| icsa-25-063-01 | Carrier Block Load | 2025-03-04T07:00:00.000000Z | 2025-03-04T07:00:00.000000Z |
| icsa-25-063-02 | Keysight Ixia Vision Product Family (Update A) | 2025-03-04T07:00:00.000000Z | 2025-09-30T06:00:00.000000Z |
| icsa-25-063-06 | Delta Electronics CNCSoft-G2 | 2025-03-04T07:00:00.000000Z | 2025-03-04T07:00:00.000000Z |
| icsa-25-063-07 | GMOD Apollo | 2025-03-04T07:00:00.000000Z | 2025-03-04T07:00:00.000000Z |
| icsa-25-063-08 | Edimax IC-7100 IP Camera | 2025-03-04T07:00:00.000000Z | 2025-03-04T07:00:00.000000Z |
| icsa-25-072-01 | Siemens Teamcenter Visualization and Tecnomatix | 2025-03-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-072-02 | Siemens SINEMA Remote Connect Server | 2025-03-11T00:00:00.000000Z | 2025-03-11T00:00:00.000000Z |
| icsa-25-072-03 | Siemens SIMATIC S7-1500 TM MFP | 2025-03-11T00:00:00.000000Z | 2025-09-09T00:00:00.000000Z |
| icsa-25-072-04 | Siemens SiPass integrated AC5102/ACC-G2 and ACC-AP | 2025-03-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-072-05 | Siemens SINAMICS S200 | 2025-03-11T00:00:00.000000Z | 2025-03-11T00:00:00.000000Z |
| icsa-25-072-06 | Siemens SCALANCE LPE9403 | 2025-03-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-072-07 | Siemens SCALANCE M-800 and SC-600 Families | 2025-03-11T00:00:00.000000Z | 2025-03-11T00:00:00.000000Z |
| icsa-25-072-08 | Siemens Tecnomatix Plant Simulation | 2025-03-11T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-072-09 | Siemens OPC UA | 2025-03-11T00:00:00.000000Z | 2026-01-14T22:05:42.018496Z |
| icsa-25-072-10 | Siemens SINEMA Remote Connect Client | 2025-03-11T00:00:00.000000Z | 2025-03-11T00:00:00.000000Z |
| icsa-25-072-11 | Siemens SIMATIC IPC Family, ITP1000, and Field PGs | 2025-03-11T00:00:00.000000Z | 2025-11-11T00:00:00.000000Z |
| icsa-25-084-01 | ABB RMC-100 | 2025-03-11T00:30:00.000000Z | 2025-03-11T00:30:00.000000Z |
| icsa-25-077-03 | Schneider Electric EcoStruxure Power Automation System | 2025-03-11T04:00:00.000000Z | 2025-03-11T04:00:00.000000Z |
| icsa-25-077-04 | Schneider Electric EcoStruxure Panel Server | 2025-03-11T04:00:00.000000Z | 2025-03-11T04:00:00.000000Z |
| icsa-25-070-02 | Optigo Networks Visual BACnet Capture Tool / Optigo Visual Networks Capture Tool | 2025-03-11T06:00:00.000000Z | 2025-03-11T06:00:00.000000Z |
| icsa-25-079-03 | Siemens Simcenter Femap | 2025-03-13T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-072-12 | Sungrow iSolarCloud Android App, WiNet Firmware | 2025-03-13T06:00:00.000000Z | 2025-03-13T06:00:00.000000Z |
| icsma-25-072-01 | Philips Intellispace Cardiovascular (ISCV) | 2025-03-13T06:00:00.000000Z | 2025-03-13T06:00:00.000000Z |
| icsa-25-077-01 | Schneider Electric EcoStruxure Power Automation System User Interface (EPAS-UI) | 2025-03-18T06:00:00.000000Z | 2025-03-18T06:00:00.000000Z |
| icsa-25-077-02 | Rockwell Automation Lifecycle Services with VMware | 2025-03-18T06:00:00.000000Z | 2025-03-18T06:00:00.000000Z |
| va-25-079-01 | CentralSquare eTRAKiT.Net SQL injection vulnerability | 2025-03-20T00:00:00Z | 2025-05-02T01:11:43Z |
| icsa-25-079-04 | SMA Sunny Portal | 2025-03-20T06:00:00.000000Z | 2025-03-20T06:00:00.000000Z |
| icsma-25-079-01 | Santesoft Sante DICOM Viewer Pro | 2025-03-20T06:00:00.000000Z | 2025-03-20T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-38020 | Visual Studio Code Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-09-13T07:00:00.000Z |
| msrc_cve-2022-41040 | Microsoft Exchange Server Elevation of Privilege Vulnerability | 2022-09-13T07:00:00.000Z | 2022-11-08T08:00:00.000Z |
| msrc_cve-2022-41082 | Microsoft Exchange Server Remote Code Execution Vulnerability | 2022-09-13T07:00:00.000Z | 2022-11-08T08:00:00.000Z |
| msrc_cve-2021-46848 | GNU Libtasn1 before 4.19.0 has an ETYPE_OK off-by-one array size check that affects asn1_encode_simple_der. | 2022-10-02T00:00:00.000Z | 2022-10-25T00:00:00.000Z |
| msrc_cve-2022-0699 | A double-free condition exists in contrib/shpsort.c of shapelib 1.5.0 and older releases. This issue may allow an attacker to cause a denial of service or have other unspecified impact via control over malloc. | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-21592 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Encryption). Supported versions that are affected are 5.7.39 and prior and 8.0.29 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized read access to a subset of MySQL Server accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21594 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21599 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Stored Procedure). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21604 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21608 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 5.7.39 and prior and 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21611 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where MySQL Server executes to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.1 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21617 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Connection Handling). Supported versions that are affected are 5.7.39 and prior and 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21619 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a | 2022-10-02T00:00:00.000Z | 2025-10-01T23:11:15.000Z |
| msrc_cve-2022-21624 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JNDI). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Java SE, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web | 2022-10-02T00:00:00.000Z | 2025-10-01T23:11:15.000Z |
| msrc_cve-2022-21625 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.4 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21626 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Security). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplie | 2022-10-02T00:00:00.000Z | 2025-10-01T23:11:15.000Z |
| msrc_cve-2022-21628 | Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Lightweight HTTP Server). Supported versions that are affected are Oracle Java SE: 8u341, 8u345-perf, 11.0.16.1, 17.0.4.1, 19; Oracle GraalVM Enterprise Edition: 20.3.7, 21.3.3 and 22.2.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Java SE, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Oracle Java SE, Oracle GraalVM Enterprise Edition. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability does not apply to Java deployments, typically in servers, that load and run o | 2022-10-02T00:00:00.000Z | 2025-10-01T23:11:16.000Z |
| msrc_cve-2022-21632 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Security: Privileges). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21633 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21635 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized creation deletion or modification access to critical data or all MySQL Server accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21637 | Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21638 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21640 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-21641 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| msrc_cve-2022-2879 | Unbounded memory consumption when reading headers in archive/tar | 2022-10-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-2880 | Incorrect sanitization of forwarded query parameters in net/http/httputil | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-2928 | An option refcount overflow exists in dhcpd | 2022-10-02T00:00:00.000Z | 2024-07-12T00:00:00.000Z |
| msrc_cve-2022-2929 | DHCP memory leak | 2022-10-02T00:00:00.000Z | 2024-07-12T00:00:00.000Z |
| msrc_cve-2022-3165 | An integer underflow issue was found in the QEMU VNC server while processing ClientCutText messages in the extended format. A malicious client could use this flaw to make QEMU unresponsive by sending a specially crafted payload message resulting in a denial of service. | 2022-10-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2022-3171 | Memory handling vulnerability in ProtocolBuffers Java core and lite | 2022-10-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201911-1781 | Siemens is a leading global technology company. With innovations in the areas of electrif… | 2022-05-17T01:40:55.341000Z |
| var-201909-1559 | Mitsubishi Electric MELSEC FX5U PLC is the MELSEC FX series programmable logic controller… | 2022-05-17T01:40:55.844000Z |
| var-201905-1339 | SKWorkshop is a configuration software produced by Shenzhen Xiankong Technology Co., Ltd.… | 2022-05-17T01:40:57.282000Z |
| var-201809-1223 | GE Intelligent Platform (GE-IP) 's iFIX is the world's leading industrial automation soft… | 2022-05-17T01:40:59.483000Z |
| var-201809-1202 | MAC1100 PLC is a programmable logic controller produced by Dalian University of Technolog… | 2022-05-17T01:40:59.502000Z |
| var-201807-2224 | Shenzhen Hanglisheng Technology Co., Ltd. has been committed to the research and developm… | 2022-05-17T01:41:02.804000Z |
| var-201805-1200 | MAC1100 PLC Programmable Logic Controller (PLC) is a product in the Dalian CECE Programma… | 2022-05-17T01:41:03.378000Z |
| var-201708-1723 | This vulnerability allows remote attackers to execute arbitrary code on vulnerable instal… | 2022-05-17T01:41:05.815000Z |
| var-201707-1352 | The D-LinkDSL-2640U is a wireless router. The D-LinkDSL-2640U has an unauthenticated DNS … | 2022-05-17T01:41:06.163000Z |
| var-201705-4220 | SAP Enterprise Portal is prone to an unspecified cross-site scripting vulnerability becau… | 2022-05-17T01:41:06.609000Z |
| var-201705-4157 | LAquis SCADA is a tool and language for data collection, process monitoring, industrial a… | 2022-05-17T01:41:06.621000Z |
| var-201703-1389 | Secure Download Links is an application that provides secure downloads. The 'dc' paramet… | 2022-05-17T01:41:07.216000Z |
| var-201702-1104 | A web based timesheet is a program that monitors the work of employees. The Web Base… | 2022-05-17T01:41:07.513000Z |
| var-201611-0433 | SAP NetWeaver is prone to an information-disclosure vulnerability. Attackers can exploit … | 2022-05-17T01:41:08.864000Z |
| var-201611-0391 | ABB is a leader in power and automation technology among the world's top 500 companies. A… | 2022-05-17T01:41:08.878000Z |
| var-201610-0696 | Schneider Electric Electric provides total solutions for the energy and infrastructure, i… | 2022-05-17T01:41:09.098000Z |
| var-201609-0697 | This product is a Fibre Channel switch. The SNMP default community name vulnerability exi… | 2022-05-17T01:41:09.214000Z |
| var-201608-0494 | The IntelSolid-StateDriveDC series is available on some LenovoSystemX servers. A number o… | 2022-05-17T01:41:09.358000Z |
| var-201606-0544 | D-Link DCS-930L is a wireless surveillance camera from D-Link. Command injection vulnera… | 2022-05-17T01:41:09.743000Z |
| var-201603-0336 | SAP 3D Visual Enterprise Viewer (VEV) is a suite of software from SAP, Inc. for viewing, … | 2022-05-17T01:41:10.325000Z |
| var-201511-0386 | Dlink DIR-825 is a wireless router product from D-Link. A buffer overflow vulnerability … | 2022-05-17T01:41:10.830000Z |
| var-201508-0635 | OSIsoft PI System is a system based on the enterprise infrastructure of the United States… | 2022-05-17T01:41:11.440000Z |
| var-201411-0560 | The Apple iPhone is a popular smartphone device. The Apple iPhone has a sandbox security … | 2022-05-17T01:41:18.554000Z |
| var-201409-1157 | OSSEC is an open source multi-platform intrusion detection system developed by the OSSEC … | 2022-05-17T01:41:18.966000Z |
| var-201408-0481 | The TP-LINK TL-WR740N is a wireless router device. The TP-Link TL-WR740N has a command in… | 2022-05-17T01:41:19.713000Z |
| var-201408-0417 | Sharp is a Japanese electrical and electronics company. Sharp Printers is a set of printe… | 2022-05-17T01:41:19.741000Z |
| var-201407-0728 | D-Link DNS-320 Ax is a NAS network storage product from D-Link. A remote command injecti… | 2022-05-17T01:41:20.077000Z |
| var-201405-0589 | The Binatone DT 850W Wireless Router has multiple cross-site request forgery vulnerabilit… | 2022-05-17T01:41:20.593000Z |
| var-201402-0555 | The D-Link DSL-2750B is an ADSL router. The D-Link DSL-2750B has a cross-site request for… | 2022-05-17T01:41:21.522000Z |
| var-201402-0470 | The Trendchip HG520 ADSL2+ is a wireless router. Trendchip HG520 ADSL2+ has a feature tha… | 2022-05-17T01:41:21.580000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2026-000020 | Multiple vulnerabilities in Movable Type | 2026-02-04T16:15+09:00 | 2026-02-04T16:15+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2018:2086-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP1) | 2018-07-27T13:40:06Z | 2018-07-27T13:40:06Z |
| suse-su-2018:2100-1 | Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP1) | 2018-07-27T13:40:11Z | 2018-07-27T13:40:11Z |
| suse-su-2018:2088-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP1) | 2018-07-27T13:40:17Z | 2018-07-27T13:40:17Z |
| suse-su-2018:2099-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP2) | 2018-07-27T13:40:22Z | 2018-07-27T13:40:22Z |
| suse-su-2018:2112-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP2) | 2018-07-27T13:40:29Z | 2018-07-27T13:40:29Z |
| suse-su-2018:2091-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP2) | 2018-07-27T13:40:34Z | 2018-07-27T13:40:34Z |
| suse-su-2018:2145-1 | Security update for gdk-pixbuf | 2018-07-30T16:10:35Z | 2018-07-30T16:10:35Z |
| suse-su-2018:2143-1 | Security update for libcgroup | 2018-07-30T16:10:46Z | 2018-07-30T16:10:46Z |
| suse-su-2018:2142-1 | Security update for libcgroup1 | 2018-07-30T16:11:27Z | 2018-07-30T16:11:27Z |
| suse-su-2018:2141-1 | Security update for libvirt | 2018-07-30T16:11:30Z | 2018-07-30T16:11:30Z |
| suse-su-2018:2144-1 | Security update for sssd | 2018-07-30T16:11:40Z | 2018-07-30T16:11:40Z |
| suse-su-2018:2150-1 | Security update for the Linux Kernel | 2018-07-31T11:22:16Z | 2018-07-31T11:22:16Z |
| suse-su-2018:2163-1 | Security update for polkit | 2018-08-01T11:56:54Z | 2018-08-01T11:56:54Z |
| suse-su-2018:2165-1 | Security update for polkit | 2018-08-01T11:59:46Z | 2018-08-01T11:59:46Z |
| suse-su-2018:2158-1 | Security update for ovmf | 2018-08-01T12:01:28Z | 2018-08-01T12:01:28Z |
| suse-su-2018:2162-1 | Security update for cups | 2018-08-01T12:02:19Z | 2018-08-01T12:02:19Z |
| suse-su-2018:2171-1 | Security update for libtirpc | 2018-08-02T12:19:21Z | 2018-08-02T12:19:21Z |
| suse-su-2018:2174-1 | Security update for Mozilla Thunderbird | 2018-08-02T12:19:39Z | 2018-08-02T12:19:39Z |
| suse-su-2018:2172-1 | Security update for cups | 2018-08-02T12:20:13Z | 2018-08-02T12:20:13Z |
| suse-su-2018:2177-1 | Security update for the Linux Kernel | 2018-08-02T14:40:22Z | 2018-08-02T14:40:22Z |
| suse-su-2018:2176-1 | Security update for rubygem-sprockets-2_12 | 2018-08-02T15:20:25Z | 2018-08-02T15:20:25Z |
| suse-su-2018:2185-1 | Security update for glibc | 2018-08-03T13:49:12Z | 2018-08-03T13:49:12Z |
| suse-su-2018:2187-1 | Security update for glibc | 2018-08-03T13:56:22Z | 2018-08-03T13:56:22Z |
| suse-su-2018:2189-1 | Security update for kernel-firmware | 2018-08-03T15:43:39Z | 2018-08-03T15:43:39Z |
| suse-su-2018:2181-1 | Recommended update for yast2-ftp-server | 2018-08-03T15:43:46Z | 2018-08-03T15:43:46Z |
| suse-su-2018:2193-1 | Security update for ceph | 2018-08-03T17:46:09Z | 2018-08-03T17:46:09Z |
| suse-su-2018:2478-1 | Security update for ceph | 2018-08-03T17:46:09Z | 2018-08-03T17:46:09Z |
| suse-su-2018:2204-1 | Security update for libsoup | 2018-08-06T07:57:27Z | 2018-08-06T07:57:27Z |
| suse-su-2018:2207-1 | Security update for openssl | 2018-08-06T07:58:35Z | 2018-08-06T07:58:35Z |
| suse-su-2018:2217-1 | Security update for rubygem-sprockets-2_12 | 2018-08-06T13:16:56Z | 2018-08-06T13:16:56Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2022:10255-1 | Security update for vlc | 2022-12-31T15:39:13Z | 2022-12-31T15:39:13Z |
| opensuse-su-2022:10257-1 | Security update for mbedtls | 2022-12-31T15:40:39Z | 2022-12-31T15:40:39Z |
| opensuse-su-2023:0001-1 | Security update for minetest | 2023-01-03T09:15:50Z | 2023-01-03T09:15:50Z |
| opensuse-su-2023:0004-1 | Security update for multimon-ng | 2023-01-03T11:01:23Z | 2023-01-03T11:01:23Z |
| opensuse-su-2023:0005-1 | Security update for python-Django | 2023-01-03T11:02:47Z | 2023-01-03T11:02:47Z |
| opensuse-su-2023:0009-1 | Security update for rubygem-activerecord-5.2 | 2023-01-11T07:00:53Z | 2023-01-11T07:00:53Z |
| opensuse-su-2023:0016-1 | Security update for chromium | 2023-01-13T12:05:07Z | 2023-01-13T12:05:07Z |
| opensuse-su-2023:0017-1 | Security update for SDL2 | 2023-01-15T15:34:54Z | 2023-01-15T15:34:54Z |
| opensuse-su-2023:0018-1 | Security update for apptainer | 2023-01-15T17:01:16Z | 2023-01-15T17:01:16Z |
| opensuse-su-2023:0019-1 | Security update for libheimdal | 2023-01-16T08:42:44Z | 2023-01-16T08:42:44Z |
| opensuse-su-2023:0020-1 | Security update for libheimdal | 2023-01-16T08:42:52Z | 2023-01-16T08:42:52Z |
| opensuse-su-2023:0022-1 | Security update for tor | 2023-01-16T15:01:22Z | 2023-01-16T15:01:22Z |
| opensuse-su-2023:0025-1 | Security update for cacti, cacti-spine | 2023-01-21T09:04:19Z | 2023-01-21T09:04:19Z |
| opensuse-su-2023:0027-1 | Security update for tor | 2023-01-21T11:01:06Z | 2023-01-21T11:01:06Z |
| opensuse-su-2023:0030-1 | Security update for python-mechanize | 2023-01-23T15:01:15Z | 2023-01-23T15:01:15Z |
| opensuse-su-2023:0031-1 | Security update for upx | 2023-01-23T17:01:08Z | 2023-01-23T17:01:08Z |
| opensuse-su-2023:0032-1 | Security update for chromium | 2023-01-27T07:40:01Z | 2023-01-27T07:40:01Z |
| opensuse-su-2023:0033-1 | Security update for virtualbox | 2023-01-29T03:02:15Z | 2023-01-29T03:02:15Z |
| opensuse-su-2023:0040-1 | Security update for syslog-ng | 2023-02-03T17:01:12Z | 2023-02-03T17:01:12Z |
| opensuse-su-2023:0041-1 | Security update for EternalTerminal | 2023-02-08T02:02:05Z | 2023-02-08T02:02:05Z |
| opensuse-su-2023:0043-1 | Security update for pkgconf | 2023-02-09T19:01:15Z | 2023-02-09T19:01:15Z |
| opensuse-su-2023:0044-1 | Security update for opera | 2023-02-12T17:01:22Z | 2023-02-12T17:01:22Z |
| opensuse-su-2023:0045-1 | Security update for chromium | 2023-02-13T14:41:37Z | 2023-02-13T14:41:37Z |
| opensuse-su-2023:0046-1 | Security update for timescaledb | 2023-02-14T15:52:16Z | 2023-02-14T15:52:16Z |
| opensuse-su-2023:0047-1 | Security update for phpMyAdmin | 2023-02-15T10:21:02Z | 2023-02-15T10:21:02Z |
| opensuse-su-2023:0048-1 | Security update for gssntlmssp | 2023-02-18T15:01:17Z | 2023-02-18T15:01:17Z |
| opensuse-su-2023:0053-1 | Security update for timescaledb | 2023-02-19T19:01:38Z | 2023-02-19T19:01:38Z |
| opensuse-su-2023:0054-1 | Security update for jhead | 2023-02-20T15:01:14Z | 2023-02-20T15:01:14Z |
| opensuse-su-2023:0057-1 | Security update for python-Django | 2023-02-21T15:01:20Z | 2023-02-21T15:01:20Z |
| opensuse-su-2023:0058-1 | Security update for phpMyAdmin | 2023-02-22T13:26:27Z | 2023-02-22T13:26:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2024-8041 | Uncontrolled Resource Consumption in GitLab | 2024-08-26T08:28:32.807Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-7110 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab | 2024-08-26T08:28:53.762Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-6502 | Incorrect Provision of Specified Functionality in GitLab | 2024-08-26T08:29:33.838Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-3127 | Improper Access Control in GitLab | 2024-08-26T08:32:29.904Z | 2025-05-20T10:02:07.006Z |
| bit-apr-2023-49582 | Apache Portable Runtime (APR): Unexpected lax shared memory permissions | 2024-08-28T07:08:33.525Z | 2025-05-20T10:02:07.006Z |
| bit-jupyterlab-2024-43805 | HTML injection in Jupyter Notebook and JupyterLab leading to DOM Clobbering | 2024-08-30T07:13:49.180Z | 2025-05-20T10:02:07.006Z |
| bit-mongodb-2024-8207 | MongoDB Server binaries may load potentially insecure shared libraries from specific relative paths | 2024-08-31T07:15:12.317Z | 2025-05-20T10:02:07.006Z |
| bit-vault-2024-8365 | Vault Leaks AppRole Client Tokens And Accessor in Audit Log | 2024-09-04T07:26:12.647Z | 2025-08-05T09:07:53.274Z |
| bit-ghost-2024-23724 | 2024-09-06T07:10:49.367Z | 2025-08-20T09:06:12.327Z | |
| bit-airflow-2024-45498 | Apache Airflow: Command Injection in an example DAG | 2024-09-10T07:04:05.933Z | 2025-05-20T10:02:07.006Z |
| bit-airflow-2024-45034 | Apache Airflow: Authenticated DAG authors could execute code on scheduler nodes | 2024-09-10T07:04:17.732Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2024-34158 | Stack exhaustion in Parse in go/build/constraint | 2024-09-10T07:06:15.527Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2024-34156 | Stack exhaustion in Decoder.Decode in encoding/gob | 2024-09-10T07:06:29.133Z | 2025-05-20T10:02:07.006Z |
| bit-golang-2024-34155 | Stack exhaustion in all Parse functions in go/parser | 2024-09-10T07:06:41.834Z | 2025-05-20T10:02:07.006Z |
| bit-node-2024-36138 | 2024-09-10T07:13:39.524Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2024-36137 | 2024-09-10T07:13:50.127Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2023-39333 | 2024-09-10T07:16:15.926Z | 2025-11-06T13:25:46.476Z | |
| bit-node-2023-30587 | 2024-09-10T07:18:58.037Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2023-30584 | 2024-09-10T07:19:33.426Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2023-30583 | 2024-09-10T07:19:44.533Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2023-30582 | 2024-09-10T07:19:56.526Z | 2025-04-03T14:40:37.652Z | |
| bit-elk-2024-37288 | 2024-09-11T07:10:22.120Z | 2025-04-03T14:40:37.652Z | |
| bit-kibana-2024-37288 | 2024-09-11T07:14:18.128Z | 2025-04-03T14:40:37.652Z | |
| bit-node-2023-46809 | 2024-09-11T07:20:44.318Z | 2025-11-06T13:25:46.476Z | |
| bit-gitlab-2024-8754 | External Control of Critical State Data in GitLab | 2024-09-14T07:05:32.625Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8641 | Privilege Context Switching Error in GitLab | 2024-09-14T07:05:45.323Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8640 | Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab | 2024-09-14T07:05:58.226Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8635 | Server-Side Request Forgery (SSRF) in GitLab | 2024-09-14T07:06:09.828Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8631 | Privilege Defined With Unsafe Actions in GitLab | 2024-09-14T07:06:22.032Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8311 | Improper Protection of Alternate Path in GitLab | 2024-09-14T07:06:34.533Z | 2025-05-20T10:02:07.006Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-03246 | Cisco Unified Intelligence Center跨站请求伪造漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03247 | Drupal Services模块访问绕过漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03248 | Drupal Display Suite模块跨站脚本漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03249 | Opoint Media Intelligence 'click.php'远程URL重定向漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03250 | Comsenz SupeSite CMS 'title'字段HTML注入漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03251 | LiteSpeed Web Server 'httpreq.cpp'拒绝服务漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03252 | Kallithea代码注入漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03253 | Lychee 'importUrl()'函数远程代码执行漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03254 | WordPress Content Slide插件跨站请求伪造漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03255 | WordPress Content Slide插件HTML注入漏洞 | 2015-05-20 | 2015-05-21 |
| cnvd-2015-03269 | Apache Ambari /var/lib/ambari-server/ambari-env.sh不安全权限设置漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03270 | Cisco Unified Customer Voice Portal跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03271 | Cisco MediaSense跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03272 | Cisco Wide Area Application Services (WAAS) SMB处理远程拒绝服务漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03273 | Cisco IOS ISDN实现拒绝服务漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03274 | Cisco FireSIGHT Sourcefire 3D System任意文件上传漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03275 | HP Access Control Pull Print未授权访问漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03276 | Cisco Web Security Appliance存在未明跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03277 | Drupal Crumbs模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03279 | WordPress插件WP Photo Album存储跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03280 | IBM InfoSphere Optim Workload Replay跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03281 | WordPress Add Link to Facebook插件HTML注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03282 | WordPress Tune Library插件SQL注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03283 | WordPress Google Analytics by Yoast插件HTML注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03284 | WordPress Citizen Space插件跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03285 | WordPress Exquisite - Ultimate Newspaper插件跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03286 | WordPress The7 theme跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03287 | WordPress WP Statistics插件跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03288 | UniPDF SEH覆盖缓冲区溢出漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03289 | Untangle NGFW信息泄露漏洞 | 2015-05-20 | 2015-05-22 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2008-avi-328 | Vulnérabilité dans Sun Java System Calendar Server | 2008-06-20T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-avi-329 | Vulnérabilité de l'implémentation TCP sous FreeBSD | 2008-06-20T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-avi-330 | Vulnérabilité de Novell eDirectory | 2008-06-20T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-avi-331 | Vulnérabilité du navigateur Safari | 2008-06-20T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-332 | Multiples vulnérabilités dans HP Storage Management Appliance | 2008-06-20T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-avi-333 | Vulnérabilité dans Sun Solaris | 2008-06-20T00:00:00.000000 | 2008-06-20T00:00:00.000000 |
| certa-2008-avi-334 | Vulnérabilité dans phpMyAdmin | 2008-06-24T00:00:00.000000 | 2008-06-27T00:00:00.000000 |
| certa-2008-avi-335 | Vulnérabilité dans Novell GroupWise | 2008-06-25T00:00:00.000000 | 2008-06-25T00:00:00.000000 |
| certa-2008-avi-336 | Vulnérabilité dans les produits Adobe | 2008-06-25T00:00:00.000000 | 2008-06-25T00:00:00.000000 |
| certa-2008-avi-337 | Multiples vulnérabilités du serveur CIFS de HP-UX | 2008-06-25T00:00:00.000000 | 2008-06-25T00:00:00.000000 |
| certa-2008-avi-338 | Vulnérabilité dans Cisco Wide Area Application Services | 2008-06-26T00:00:00.000000 | 2008-06-26T00:00:00.000000 |
| certa-2008-avi-339 | Vulnérabilités dans Cisco Unified Communications Manager | 2008-06-26T00:00:00.000000 | 2008-06-26T00:00:00.000000 |
| certa-2008-avi-340 | Vulnérabilité dans Cisco VPN Client | 2008-06-26T00:00:00.000000 | 2008-06-26T00:00:00.000000 |
| certa-2008-avi-341 | Vulnérabilités dans Mambo | 2008-06-27T00:00:00.000000 | 2008-06-27T00:00:00.000000 |
| certa-2008-avi-342 | Multiples vulnérabilités dans Ruby | 2008-06-27T00:00:00.000000 | 2008-06-27T00:00:00.000000 |
| certa-2008-avi-343 | Multiples vulnérabilités dans Apple Mac OS X | 2008-07-02T00:00:00.000000 | 2008-07-02T00:00:00.000000 |
| certa-2008-avi-344 | Vulnérabilité dans D-Bus | 2008-07-02T00:00:00.000000 | 2008-07-02T00:00:00.000000 |
| certa-2008-avi-345 | Vulnérabilités dans Python | 2008-07-02T00:00:00.000000 | 2008-07-02T00:00:00.000000 |
| certa-2008-avi-346 | Vulnérabilité dans Novell Client | 2008-07-02T00:00:00.000000 | 2008-07-02T00:00:00.000000 |
| certa-2008-avi-347 | Vulnérabilité de Sun Java System Access Manager | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-348 | Vulnérabilité dans VLC Media Player | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-349 | Multiples vulnérabilités dans Sun Solaris | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-350 | Multiples vulnérabilités dans Firefox 2 | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-351 | Vulnérabilité de Sun Solaris | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-352 | Vulnérabilités dans Avaya Call Management System | 2008-07-04T00:00:00.000000 | 2008-07-04T00:00:00.000000 |
| certa-2008-avi-353 | Vulnérabilité DNS dans Microsoft Windows | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-354 | Vulnrabilité de l'explorateur de fichiers Windows | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-355 | Vulnérabilités dans Open Web Access | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-356 | Multiples vulnérabilités dans Microsoft SQL Server | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-357 | Vulnérabilités dans Joomla! | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |