Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-0994 |
N/A
|
Marconi ForeThought 7.1 allows remote attackers t… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.017Z |
| CVE-2001-0996 |
N/A
|
POP3Lite before 0.2.4 does not properly quote a .… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.089Z |
| CVE-2001-0997 |
N/A
|
Textor Webmasters Ltd listrec.pl CGI program allo… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.091Z |
| CVE-2001-0999 |
N/A
|
Outlook Express 6.00 allows remote attackers to e… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:06.996Z |
| CVE-2001-1000 |
N/A
|
rlmadmin RADIUS management utility in Merit AAA S… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.100Z |
| CVE-2001-1003 |
N/A
|
Respondus 1.1.2 for WebCT uses weak encryption to… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.104Z |
| CVE-2001-1004 |
N/A
|
Cross-site scripting (CSS) vulnerability in gnut … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.089Z |
| CVE-2001-1005 |
N/A
|
Starfish Truesync Desktop 2.0b as used on the REX… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.043Z |
| CVE-2001-1006 |
N/A
|
Starfish Truesync Desktop 2.0b as used on the REX… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.198Z |
| CVE-2001-1007 |
N/A
|
Starfish Truesync Desktop 2.0b as used on the REX… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.227Z |
| CVE-2001-1009 |
N/A
|
Fetchmail (aka fetchmail-ssl) before 5.8.17 allow… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.103Z |
| CVE-2001-1012 |
N/A
|
Vulnerability in screen before 3.9.10, related to… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:37:07.164Z |
| CVE-2001-1013 |
N/A
|
Apache on Red Hat Linux with with the UserDir dir… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.462Z |
| CVE-2001-1014 |
N/A
|
eshop.pl in WebDiscount(e)shop allows remote atta… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.493Z |
| CVE-2001-1015 |
N/A
|
Buffer overflow in Snes9x 1.37, when installed se… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.523Z |
| CVE-2001-1018 |
N/A
|
Lotus Domino web server 5.08 allows remote attack… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.448Z |
| CVE-2001-1019 |
N/A
|
Directory traversal vulnerability in view_item CG… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.474Z |
| CVE-2001-1021 |
N/A
|
Buffer overflows in WS_FTP 2.02 allow remote atta… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.506Z |
| CVE-2001-1023 |
N/A
|
Xcache 2.1 allows remote attackers to determine t… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.430Z |
| CVE-2001-1024 |
N/A
|
login.gas.bat and other CGI scripts in Entrust ge… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.655Z |
| CVE-2001-1025 |
N/A
|
PHP-Nuke 5.x allows remote attackers to perform a… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.627Z |
| CVE-2001-1026 |
N/A
|
Trend Micro InterScan AppletTrap 2.0 does not pro… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.556Z |
| CVE-2001-1031 |
N/A
|
Directory traversal vulnerability in Meteor FTP 1… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.647Z |
| CVE-2001-1033 |
N/A
|
Compaq TruCluster 1.5 allows remote attackers to … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.635Z |
| CVE-2001-1034 |
N/A
|
Format string vulnerability in Hylafax on FreeBSD… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:07.008Z |
| CVE-2001-1039 |
N/A
|
The JetAdmin web interface for HP JetDirect does … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:07.195Z |
| CVE-2001-1040 |
N/A
|
HP LaserJet, and possibly other JetDirect devices… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.667Z |
| CVE-2001-1041 |
N/A
|
oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 a… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.978Z |
| CVE-2001-1042 |
N/A
|
Transsoft Broker 5.9.5.0 allows remote attackers … |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:07.126Z |
| CVE-2001-1044 |
N/A
|
Basilix Webmail 0.9.7beta, and possibly other ver… |
n/a |
n/a |
2002-02-02T05:00:00 | 2024-08-08T04:44:06.959Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2001-0379 |
N/A
|
Vulnerability in the newgrp program included with… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.055Z |
| CVE-2001-0380 |
N/A
|
Crosscom/Olicom XLT-F running XL 80 IM Version 5.… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.202Z |
| CVE-2001-0382 |
N/A
|
Computer Associates CCC\Harvest 5.0 for Windows N… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.243Z |
| CVE-2001-0383 |
N/A
|
banners.php in PHP-Nuke 4.4 and earlier allows re… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.102Z |
| CVE-2001-0392 |
N/A
|
Navision Financials Server 2.60 and earlier allow… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.831Z |
| CVE-2001-0393 |
N/A
|
Navision Financials Server 2.0 allows remote atta… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.810Z |
| CVE-2001-0397 |
N/A
|
Buffer overflow in Silent Runner Collector (SRC) … |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.691Z |
| CVE-2001-0398 |
N/A
|
The BAT! mail client allows remote attackers to b… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.237Z |
| CVE-2001-0399 |
N/A
|
Caucho Resin 1.3b1 and earlier allows remote atta… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.192Z |
| CVE-2001-0401 |
N/A
|
Buffer overflow in tip in Solaris 8 and earlier a… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.215Z |
| CVE-2001-0402 |
N/A
|
IPFilter 3.4.16 and earlier does not include suff… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.217Z |
| CVE-2001-0403 |
N/A
|
/opt/JSparm/bin/perfmon program in Solaris allows… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.692Z |
| CVE-2001-0404 |
N/A
|
Directory traversal vulnerability in JavaServer W… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.693Z |
| CVE-2001-0408 |
N/A
|
vim (aka gvim) processes VIM control codes that a… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.608Z |
| CVE-2001-0409 |
N/A
|
vim (aka gvim) allows local users to modify files… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.227Z |
| CVE-2001-0410 |
N/A
|
Buffer overflow in Trend Micro Virus Buster 2001 … |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.701Z |
| CVE-2001-0411 |
N/A
|
Reliant Unix 5.44 and earlier allows remote attac… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.058Z |
| CVE-2001-0412 |
N/A
|
Cisco Content Services (CSS) switch products 1180… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.634Z |
| CVE-2001-0413 |
N/A
|
BinTec X4000 Access router, and possibly other ve… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.670Z |
| CVE-2001-0414 |
N/A
|
Buffer overflow in ntpd ntp daemon 4.0.99k and ea… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:37.665Z |
| CVE-2001-0420 |
N/A
|
Directory traversal vulnerability in talkback.cgi… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:37.661Z |
| CVE-2001-0427 |
N/A
|
Cisco VPN 3000 series concentrators before 2.5.2(… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.518Z |
| CVE-2001-0433 |
N/A
|
Buffer overflow in Savant 3.0 web server allows r… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.248Z |
| CVE-2001-0446 |
N/A
|
IBM WCS (WebSphere Commerce Suite) 4.0.1 with App… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.577Z |
| CVE-2001-0447 |
N/A
|
Web configuration server in 602Pro LAN SUITE allo… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.431Z |
| CVE-2001-0448 |
N/A
|
Web configuration server in 602Pro LAN SUITE allo… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.534Z |
| CVE-2001-0465 |
N/A
|
TurboTax saves passwords in a temporary file when… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.600Z |
| CVE-2001-0466 |
N/A
|
Directory traversal vulnerability in ustorekeeper… |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.581Z |
| CVE-2001-0482 |
N/A
|
Configuration error in Argus PitBull LX allows ro… |
n/a |
n/a |
2001-09-18T04:00:00 | 2024-08-08T04:21:38.159Z |
| CVE-2001-0483 |
N/A
|
Configuration error in Axent Raptor Firewall 6.5 … |
n/a |
n/a |
2001-05-24T04:00:00 | 2024-08-08T04:21:38.290Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-fxwf-4rqh-v8g3 |
4.3 (3.1)
|
CORS misconfiguration in socket.io | 2021-01-20T21:22:37Z | 2023-09-11T22:46:42Z |
| ghsa-9qmh-276g-x5pj |
7.5 (3.1)
|
Prototype Pollution in immer | 2021-01-20T21:27:56Z | 2024-04-25T22:17:51Z |
| ghsa-49wp-qq6x-g2rf |
8.8 (3.1)
|
Cross-site Request Forgery in fastify-csrf | 2021-01-20T21:30:34Z | 2022-06-29T21:54:32Z |
| ghsa-5v44-7647-xfw9 |
8.2 (3.1)
|
Blind SQL injection in PrestaShop productcomments module | 2021-01-20T21:33:53Z | 2022-01-07T16:07:46Z |
| ghsa-f4g9-h89h-jgv9 |
6.5 (3.1)
|
SAML XML Signature wrapping in PySAML2 | 2021-01-21T14:12:16Z | 2024-10-14T15:50:30Z |
| ghsa-5p3x-r448-pc62 |
6.5 (3.1)
6.9 (4.0)
|
Improper Verification of Cryptographic Signature in PySAML2 | 2021-01-21T14:12:18Z | 2024-10-14T15:41:51Z |
| ghsa-hvf8-h2qh-37m9 |
5.4 (3.1)
|
IPC messages delivered to the wrong frame in Electron | 2021-01-28T19:11:34Z | 2025-05-27T15:20:19Z |
| ghsa-w8fh-pvq2-x8c4 |
|
Malicious npm package: sonatype | 2021-01-29T18:11:20Z | 2021-01-29T18:10:59Z |
| ghsa-qv2g-99x4-45x6 |
|
Malicious npm package: discord-fix | 2021-01-29T18:12:07Z | 2021-01-29T18:11:36Z |
| ghsa-7xcv-wvr7-4h6p |
|
Malicious npm package: an0n-chat-lib | 2021-01-29T18:12:19Z | 2021-01-29T18:11:48Z |
| ghsa-cghx-9gcr-r42x |
7.5 (3.1)
|
Path Traversal in the Java Kubernetes Client | 2021-01-29T18:12:54Z | 2022-10-07T20:36:09Z |
| ghsa-43hg-g44q-474q |
|
Cross Site Scripting (XSS) in XWiki | 2021-01-29T18:13:03Z | 2021-01-22T18:46:09Z |
| ghsa-vhhw-xjvf-wprr |
8.8 (3.1)
|
Command Injection in @graphql-tools/git-loader | 2021-01-29T18:13:14Z | 2022-05-31T21:40:49Z |
| ghsa-32wx-4gxx-h48f |
|
Users can edit the tags of any discussion | 2021-01-29T18:13:32Z | 2021-01-26T03:45:41Z |
| ghsa-h3gg-7wx2-cq3h |
|
XSS in Flarum Sticky extension | 2021-01-29T18:13:41Z | 2021-01-26T20:41:58Z |
| ghsa-2hw7-mxvj-m455 |
|
Path traversal in Node-RED-Dashboard | 2021-01-29T18:13:52Z | 2021-01-27T23:26:39Z |
| ghsa-6c3f-p5wp-34mh |
9.8 (3.1)
|
OS Command Injection in async-git | 2021-01-29T18:14:00Z | 2022-05-03T02:56:05Z |
| ghsa-2cwj-8chv-9pp9 |
9.8 (3.1)
|
XML External Entity attack in log4net | 2021-01-29T19:47:23Z | 2021-08-25T20:55:11Z |
| ghsa-p7v4-gm6j-cw9m |
|
XSS in Mautic | 2021-01-29T20:51:20Z | 2021-01-29T20:31:59Z |
| ghsa-hhw9-35p2-q2c5 |
|
Steam Socialite Provider v1 does not correctly validate openid server | 2021-01-29T20:51:30Z | 2021-01-29T20:39:56Z |
| ghsa-3crj-w4f5-gwh4 |
6.3 (3.1)
|
Processing untrusted theming resources might execute arbitrary code (ACE) | 2021-01-29T20:51:37Z | 2021-02-16T17:35:25Z |
| ghsa-hgmg-hhc8-g5wr |
6.5 (3.1)
|
CKEditor 5 Markdown plugin Regular expression Denial of Service | 2021-01-29T21:51:22Z | 2022-08-11T18:16:15Z |
| ghsa-c497-v8pv-ch6x |
7.5 (3.1)
|
Prototype pollution in nested-object-assign | 2021-02-01T15:01:14Z | 2023-08-08T19:28:27Z |
| ghsa-j6px-jwvv-vpwq |
8.8 (3.1)
|
Angular Expressions - Remote Code Execution | 2021-02-01T15:01:26Z | 2022-10-20T13:26:13Z |
| ghsa-p4pj-mg4r-x6v4 |
7.5 (3.1)
|
Denial of Service in uap-core | 2021-02-02T15:46:38Z | 2024-02-08T22:17:20Z |
| ghsa-f92j-qf46-p6vm |
|
Reflected Cross-site Scripting in ACS Commons | 2021-02-02T15:46:52Z | 2021-02-02T15:34:21Z |
| ghsa-x7p5-p2c9-phvg |
7.2 (3.1)
|
Unexpected database bindings | 2021-02-02T15:47:08Z | 2021-02-02T15:46:07Z |
| ghsa-vv2x-vrpj-qqpq |
6.1 (3.1)
6.9 (4.0)
|
Cross-site scripting in Bleach | 2021-02-02T17:58:40Z | 2025-03-20T18:50:31Z |
| ghsa-qrqm-fpv6-6r8g |
7.4 (3.1)
|
Command Injection Vulnerability in Mechanize | 2021-02-02T18:50:27Z | 2022-04-27T20:24:21Z |
| ghsa-xmw9-q7x9-j5qc |
7.5 (3.1)
|
Unbounded connection acceptance leads to file handle exhaustion | 2021-02-02T21:42:49Z | 2022-10-25T20:21:46Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2025-20 |
6.5 (3.1)
|
picklescan before 0.0.23 is vulnerable to a ZIP archive manipulation attack that causes i… | picklescan | 2025-03-10T12:15:10+00:00 | 2025-04-09T17:27:26.966215+00:00 |
| pysec-2025-21 |
9.8 (3.1)
|
picklescan before 0.0.23 fails to detect malicious pickle files inside PyTorch model arch… | picklescan | 2025-03-10T12:15:12+00:00 | 2025-04-09T17:27:27.016747+00:00 |
| pysec-2025-22 |
9.8 (3.1)
|
A vulnerability, that could result in Remote Code Execution (RCE), has been found in Plot… | plotai | 2025-03-10T14:15:24+00:00 | 2025-04-09T17:27:27.203714+00:00 |
| pysec-2025-8 |
|
The `pygments-style-solarized` project was removed from PyPI by its owner on 2021-08-26. … | pygments-style-solarized | 2025-03-17T16:35:37+00:00 | |
| pysec-2025-63 |
|
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Whe… | vllm | 2025-03-19T16:15:32+00:00 | 2025-07-01T23:22:49.176005+00:00 |
| pysec-2025-9 |
|
A remote code execution vulnerability exists in invoke-ai/invokeai versions 5.3.1 through… | invokeai | 2025-03-20T10:15:26+00:00 | 2025-03-20T11:21:37.872971+00:00 |
| pysec-2025-11 |
5.9 (3.1)
|
A vulnerability in the `KnowledgeBaseWebReader` class of the run-llama/llama_index reposi… | llama-index | 2025-03-20T10:15:31+00:00 | 2025-04-01T23:22:47.294256+00:00 |
| pysec-2025-10 |
9.1 (3.1)
|
A vulnerability in the `download_model` function of the onnx/onnx framework, before and i… | onnx | 2025-03-20T10:15:37+00:00 | 2025-03-26T19:21:38.843396+00:00 |
| pysec-2025-57 |
|
A Denial of Service (DoS) vulnerability in zenml-io/zenml version 0.66.0 allows unauthent… | zenml | 2025-03-20T10:15:48+00:00 | 2025-06-27T17:22:55.175431+00:00 |
| pysec-2025-17 |
5.5 (3.1)
|
In mlflow/mlflow version 2.18, an admin is able to create a new user account without sett… | mlflow | 2025-03-20T10:15:54+00:00 | 2025-04-09T17:27:26.322333+00:00 |
| pysec-2025-48 |
9.8 (3.1)
|
Mobile Security Framework (MobSF) is a pen-testing, malware analysis and security assessm… | mobsf | 2025-03-31T17:15:42+00:00 | 2025-06-12T22:23:10.476087+00:00 |
| pysec-2025-14 |
|
An issue was discovered in Django 5.1 before 5.1.8 and 5.0 before 5.0.14. The NFKC normal… | django | 2025-04-02T13:15:44+00:00 | 2025-04-09T17:27:25.169049+00:00 |
| pysec-2025-16 |
7.5 (3.1)
|
LNbits is a Lightning wallet and accounts system. A Server-Side Request Forgery (SSRF) vu… | lnbits | 2025-04-06T20:15:15+00:00 | 2025-04-09T17:27:25.872691+00:00 |
| pysec-2025-36 |
9.8 (3.1)
|
Langflow versions prior to 1.3.0 are susceptible to code injection in the /api/v1/valida… | langflow | 2025-04-07T15:15:44+00:00 | 2025-05-07T19:22:44.993642+00:00 |
| pysec-2025-32 |
9.8 (3.1)
|
BentoML is a Python library for building online serving systems optimized for AI apps and… | bentoml | 2025-04-09T16:15:25+00:00 | 2025-04-22T19:21:34.073355+00:00 |
| pysec-2025-35 |
7.5 (3.1)
|
Weblate is a web based localization tool. Prior to version 5.11, when creating a new comp… | weblate | 2025-04-15T21:16:04+00:00 | 2025-04-30T17:22:51.467257+00:00 |
| pysec-2025-41 |
9.8 (3.1)
|
PyTorch is a Python package that provides tensor computation with strong GPU acceleration… | torch | 2025-04-18T16:15:23+00:00 | 2025-05-28T15:23:37.843138+00:00 |
| pysec-2025-56 |
4.3 (3.1)
|
OctoPrint provides a web interface for controlling consumer 3D printers. In versions up t… | octoprint | 2025-04-22T18:15:59+00:00 | 2025-06-27T17:22:53.513680+00:00 |
| pysec-2025-34 |
|
The unsafe globals in Picklescan before 0.0.25 do not include ssl. Consequently, ssl.get_… | picklescan | 2025-04-24T01:15:49+00:00 | 2025-04-24T03:08:15.436691+00:00 |
| pysec-2025-42 |
9.8 (3.1)
|
vLLM is a high-throughput and memory-efficient inference and serving engine for LLMs. Ver… | vllm | 2025-04-30T01:15:51+00:00 | 2025-05-28T21:23:12.396609+00:00 |
| pysec-2025-37 |
|
An issue was discovered in Django 4.2 before 4.2.21, 5.1 before 5.1.9, and 5.2 before 5.2… | django | 2025-05-08T04:17:18+00:00 | 2025-05-08T05:23:16.210893+00:00 |
| pysec-2025-38 |
|
OpenStack Ironic before 29.0.1 can write unintended files to a target node disk during im… | ironic | 2025-05-08T17:16:01Z | 2025-05-13T04:24:03.083929Z |
| pysec-2025-59 |
|
Remote Code Execution with untrusted URI of UDF vulnerability in Apache IoTDB. The attack… | apache-iotdb | 2025-05-14T11:15:47+00:00 | 2025-07-01T21:22:47.177405+00:00 |
| pysec-2025-60 |
|
Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Inform… | apache-iotdb | 2025-05-14T11:16:28+00:00 | 2025-07-01T21:22:47.232036+00:00 |
| pysec-2025-39 |
|
motionEye is an online interface for the software motion, a video surveillance program wi… | motioneye | 2025-05-14T16:15:29+00:00 | 2025-05-14T17:22:51.050788+00:00 |
| pysec-2025-49 |
8.8 (3.1)
|
setuptools is a package that allows users to download, build, install, upgrade, and unins… | setuptools | 2025-05-17T16:15:19+00:00 | 2025-06-12T22:23:11.115559+00:00 |
| pysec-2025-40 |
7.5 (3.1)
|
A vulnerability in the `preprocess_string()` function of the `transformers.testing_utils`… | transformers | 2025-05-19T12:15:19+00:00 | 2025-05-21T19:22:10.801823+00:00 |
| pysec-2025-45 |
7.8 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5 and classified as problematic.… | pypickle | 2025-05-26T07:15:26+00:00 | 2025-06-03T17:36:58.528116+00:00 |
| pysec-2025-46 |
5.5 (3.1)
|
A vulnerability was found in erdogant pypickle up to 1.1.5. It has been classified as cri… | pypickle | 2025-05-26T08:15:19+00:00 | 2025-06-03T17:36:58.579358+00:00 |
| pysec-2025-43 |
|
vLLM is an inference and serving engine for large language models (LLMs). In versions sta… | vllm | 2025-05-29T17:15:21+00:00 | 2025-05-29T19:21:01.611587+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-6463 | Malicious code in tesla-commerce-ui (npm) | 2022-06-20T20:19:41Z | 2022-06-20T20:19:41Z |
| mal-2022-6649 | Malicious code in tribe-translation (npm) | 2022-06-20T20:19:41Z | 2022-06-20T20:19:41Z |
| mal-2022-887 | Malicious code in afisha-guides-landing (npm) | 2022-06-20T20:19:41Z | 2022-06-20T20:19:42Z |
| mal-2022-1622 | Malicious code in blocks-cloud (npm) | 2022-06-20T20:19:42Z | 2022-06-20T20:19:43Z |
| mal-2022-4713 | Malicious code in mrg-smokescreen (npm) | 2022-06-20T20:19:42Z | 2022-06-20T20:19:42Z |
| mal-2022-5472 | Malicious code in product-tools (npm) | 2022-06-20T20:19:42Z | 2022-06-20T20:19:42Z |
| mal-2022-6608 | Malicious code in toolkit-common (npm) | 2022-06-20T20:19:42Z | 2022-06-20T20:19:43Z |
| mal-2022-2727 | Malicious code in emerald-vue (npm) | 2022-06-20T20:19:43Z | 2022-06-20T20:19:44Z |
| mal-2022-3310 | Malicious code in gd-i18n-lib (npm) | 2022-06-20T20:19:43Z | 2022-06-20T20:19:44Z |
| mal-2022-3495 | Malicious code in guest-payment (npm) | 2022-06-20T20:19:43Z | 2022-06-20T20:19:44Z |
| mal-2022-4707 | Malicious code in mrg-device-tools (npm) | 2022-06-20T20:19:43Z | 2022-06-20T20:19:44Z |
| mal-2022-4708 | Malicious code in mrg-form (npm) | 2022-06-20T20:19:43Z | 2022-06-20T20:19:43Z |
| mal-2022-2393 | Malicious code in deep-integrations (npm) | 2022-06-20T20:19:44Z | 2022-06-20T20:19:44Z |
| mal-2022-2469 | Malicious code in dig-illustrations (npm) | 2022-06-20T20:19:44Z | 2022-06-20T20:19:45Z |
| mal-2022-5770 | Malicious code in retrieval-components (npm) | 2022-06-20T20:19:44Z | 2022-06-20T20:19:44Z |
| mal-2022-6232 | Malicious code in spectrum-arbor (npm) | 2022-06-20T20:19:44Z | 2022-06-20T20:19:45Z |
| mal-2022-2468 | Malicious code in dig-fonts (npm) | 2022-06-20T20:19:45Z | 2022-06-20T20:19:45Z |
| mal-2022-558 | Malicious code in @relap/kit (npm) | 2022-06-20T20:19:45Z | 2022-06-20T20:19:46Z |
| mal-2022-5737 | Malicious code in relap-ui (npm) | 2022-06-20T20:19:45Z | 2022-06-20T20:19:45Z |
| mal-2022-5738 | Malicious code in relap-widgets (npm) | 2022-06-20T20:19:45Z | 2022-06-20T20:19:46Z |
| mal-2022-257 | Malicious code in @exness/select-component-ab (npm) | 2022-06-20T20:19:46Z | 2022-06-20T20:19:46Z |
| mal-2022-4785 | Malicious code in native-utils (npm) | 2022-06-20T20:19:46Z | 2022-06-20T20:19:47Z |
| mal-2022-56 | Malicious code in @aadiam/ibiza-search (npm) | 2022-06-20T20:19:46Z | 2022-06-20T20:19:47Z |
| mal-2022-78 | Malicious code in @answers/exp-id-tools (npm) | 2022-06-20T20:19:46Z | 2022-06-20T20:19:47Z |
| mal-2022-1784 | Malicious code in calc_i8wt6fmbwb (npm) | 2022-06-20T20:19:47Z | 2022-06-20T20:19:48Z |
| mal-2022-3403 | Malicious code in godata (npm) | 2022-06-20T20:19:47Z | 2022-06-20T20:19:47Z |
| mal-2022-6318 | Malicious code in stories-carousel (npm) | 2022-06-20T20:19:47Z | 2022-06-20T20:19:47Z |
| mal-2022-6501 | Malicious code in test7458 (npm) | 2022-06-20T20:19:47Z | 2022-06-20T20:19:48Z |
| mal-2022-1769 | Malicious code in calc_9lmhs75x86 (npm) | 2022-06-20T20:19:48Z | 2022-06-20T20:19:48Z |
| mal-2022-1805 | Malicious code in calc_wzpz618zfk (npm) | 2022-06-20T20:19:48Z | 2022-06-20T20:19:49Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-1341 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-31T22:00:00.000+00:00 | 2024-04-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1342 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-05-31T22:00:00.000+00:00 | 2023-09-06T22:00:00.000+00:00 |
| wid-sec-w-2023-1343 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1344 | Samsung Android: Mehrere Schwachstellen | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1345 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2023-05-31T22:00:00.000+00:00 | 2023-05-31T22:00:00.000+00:00 |
| wid-sec-w-2023-1346 | Splunk Splunk Enterprise: Mehrere Schwachstellen | 2023-06-01T22:00:00.000+00:00 | 2023-10-09T22:00:00.000+00:00 |
| wid-sec-w-2023-1347 | IBM Security Guardium: Schwachstelle ermöglicht Codeausführung | 2023-06-01T22:00:00.000+00:00 | 2023-06-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1348 | IBM Security Guardium: Mehrere Schwachstellen | 2023-06-01T22:00:00.000+00:00 | 2023-06-01T22:00:00.000+00:00 |
| wid-sec-w-2023-1349 | CUPS: Schwachstelle ermöglicht Denial of Service | 2023-06-01T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-1350 | Splunk Splunk Enterprise: Mehrere Schwachstellen in Komponenten von Drittanbietern | 2023-06-01T22:00:00.000+00:00 | 2025-11-18T23:00:00.000+00:00 |
| wid-sec-w-2023-1351 | Progress Software MOVEit: Schwachstelle ermöglicht SQL Injection | 2023-06-01T22:00:00.000+00:00 | 2023-06-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1354 | Red Hat OpenShift Container Platform: Mehrere Schwachstellen | 2023-06-04T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1355 | Bluetooth: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-06-04T22:00:00.000+00:00 | 2023-06-04T22:00:00.000+00:00 |
| wid-sec-w-2023-1356 | xpdf: Schwachstelle ermöglicht Denial of Service | 2023-06-04T22:00:00.000+00:00 | 2024-09-24T22:00:00.000+00:00 |
| wid-sec-w-2023-1357 | QT: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-06-04T22:00:00.000+00:00 | 2025-09-28T22:00:00.000+00:00 |
| wid-sec-w-2023-1358 | Microsoft Edge: Mehrere Schwachstellen | 2023-06-04T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1363 | SolarWinds Serv-U Managed File Transfer Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1364 | Extreme Networks IQ Engine: Mehrere Schwachstellen | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1365 | Android Patchday Juni 2023 | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1366 | IBM Business Automation Workflow: Schwachstelle ermöglicht Cross-Site Scripting | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1367 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-06-05T22:00:00.000+00:00 | 2026-01-19T23:00:00.000+00:00 |
| wid-sec-w-2023-1368 | Google Chrome und Microsoft Edge: Schwachstelle ermöglicht Codeausführung | 2023-06-05T22:00:00.000+00:00 | 2024-01-31T23:00:00.000+00:00 |
| wid-sec-w-2023-1369 | IBM Business Automation Workflow: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1370 | GitLab: Mehrere Schwachstellen | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1371 | Samsung Android: Mehrere Schwachstellen | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1372 | Camunda: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-06-05T22:00:00.000+00:00 | 2023-06-05T22:00:00.000+00:00 |
| wid-sec-w-2023-1373 | Red Hat OpenStack Platform : Mehrere Schwachstellen | 2023-06-05T22:00:00.000+00:00 | 2023-11-30T23:00:00.000+00:00 |
| wid-sec-w-2023-1377 | Golang Go: Mehrere Schwachstellen | 2023-06-06T22:00:00.000+00:00 | 2024-11-14T23:00:00.000+00:00 |
| wid-sec-w-2023-1378 | Red Hat OpenShift Container Platform: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2023-06-06T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2023-1379 | D-LINK DIR-842V2: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-06-06T22:00:00.000+00:00 | 2023-06-06T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2013:0544 | Red Hat Security Advisory: Subscription Asset Manager 1.2 update | 2013-02-21T19:04:00+00:00 | 2026-01-28T22:54:17+00:00 |
| rhsa-2013:0550 | Red Hat Security Advisory: bind security and enhancement update | 2013-02-21T19:06:00+00:00 | 2025-11-21T17:42:35+00:00 |
| rhsa-2013:0551 | Red Hat Security Advisory: acroread security update | 2013-02-21T19:07:00+00:00 | 2025-11-21T17:42:36+00:00 |
| rhsa-2013:0569 | Red Hat Security Advisory: JBoss Web Services security update | 2013-02-26T18:07:00+00:00 | 2025-11-21T17:42:40+00:00 |
| rhsa-2013:0568 | Red Hat Security Advisory: dbus-glib security update | 2013-02-26T18:12:00+00:00 | 2025-11-21T17:42:40+00:00 |
| rhsa-2013:0567 | Red Hat Security Advisory: kernel security update | 2013-02-26T19:37:00+00:00 | 2025-11-21T17:42:40+00:00 |
| rhba-2013:0571 | Red Hat Bug Fix Advisory: Red Hat Update Infrastructure 2.1.1 bug fix update | 2013-02-27T16:58:22+00:00 | 2025-11-21T17:20:57+00:00 |
| rhsa-2013:0574 | Red Hat Security Advisory: flash-plugin security update | 2013-02-27T21:36:00+00:00 | 2025-11-21T17:42:41+00:00 |
| rhsa-2013:0578 | Red Hat Security Advisory: Red Hat Enterprise Linux Extended Update Support 5.6 5-Month EOL Notice | 2013-02-28T18:36:00+00:00 | 2025-11-21T17:42:41+00:00 |
| rhsa-2013:0579 | Red Hat Security Advisory: rhev-hypervisor6 security, bug fix, and enhancement update | 2013-02-28T18:40:00+00:00 | 2025-11-21T17:42:42+00:00 |
| rhsa-2013:0580 | Red Hat Security Advisory: cups security update | 2013-02-28T18:47:00+00:00 | 2025-11-21T17:42:43+00:00 |
| rhsa-2013:0581 | Red Hat Security Advisory: libxml2 security update | 2013-02-28T18:47:00+00:00 | 2025-11-21T17:42:43+00:00 |
| rhsa-2013:0582 | Red Hat Security Advisory: Red Hat OpenShift Enterprise 1.1.1 update | 2013-02-28T18:53:00+00:00 | 2026-01-28T22:54:18+00:00 |
| rhsa-2013:0586 | Red Hat Security Advisory: jbosssx security update | 2013-03-04T20:55:00+00:00 | 2025-11-21T17:42:43+00:00 |
| rhsa-2013:0590 | Red Hat Security Advisory: nss-pam-ldapd security update | 2013-03-04T21:00:00+00:00 | 2025-11-21T17:42:45+00:00 |
| rhsa-2013:0589 | Red Hat Security Advisory: git security update | 2013-03-04T21:02:00+00:00 | 2025-11-21T17:42:45+00:00 |
| rhsa-2013:0588 | Red Hat Security Advisory: gnutls security update | 2013-03-04T21:04:00+00:00 | 2025-11-21T17:42:44+00:00 |
| rhsa-2013:0587 | Red Hat Security Advisory: openssl security update | 2013-03-04T21:05:00+00:00 | 2026-01-28T22:34:40+00:00 |
| rhsa-2013:0594 | Red Hat Security Advisory: kernel security and bug fix update | 2013-03-05T20:50:00+00:00 | 2025-11-21T17:42:46+00:00 |
| rhsa-2013:0595 | Red Hat Security Advisory: openstack-packstack security and bug fix update | 2013-03-05T20:55:00+00:00 | 2025-11-21T17:42:47+00:00 |
| rhsa-2013:0596 | Red Hat Security Advisory: openstack-keystone security, bug fix, and enhancement update | 2013-03-05T20:56:00+00:00 | 2026-01-28T22:34:40+00:00 |
| rhsa-2013:0564 | Red Hat Security Advisory: Red Hat Enterprise MRG Grid 2.3 security update | 2013-03-06T18:37:00+00:00 | 2025-11-21T17:42:38+00:00 |
| rhsa-2013:0561 | Red Hat Security Advisory: Red Hat Enterprise MRG Messaging 2.3 security update | 2013-03-06T18:38:00+00:00 | 2025-11-21T17:42:37+00:00 |
| rhsa-2013:0565 | Red Hat Security Advisory: Red Hat Enterprise MRG Grid 2.3 security update | 2013-03-06T18:39:00+00:00 | 2025-11-21T17:42:38+00:00 |
| rhsa-2013:0562 | Red Hat Security Advisory: Red Hat Enterprise MRG Messaging 2.3 security update | 2013-03-06T18:41:00+00:00 | 2025-11-21T17:42:37+00:00 |
| rhsa-2013:0599 | Red Hat Security Advisory: xen security update | 2013-03-06T18:43:00+00:00 | 2026-01-28T22:34:41+00:00 |
| rhsa-2013:0600 | Red Hat Security Advisory: java-1.7.0-oracle security update | 2013-03-06T18:56:00+00:00 | 2025-11-21T17:42:49+00:00 |
| rhsa-2013:0601 | Red Hat Security Advisory: java-1.6.0-sun security update | 2013-03-06T18:58:00+00:00 | 2025-11-21T17:42:49+00:00 |
| rhsa-2013:0602 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2013-03-06T19:02:00+00:00 | 2025-11-21T17:42:50+00:00 |
| rhsa-2013:0603 | Red Hat Security Advisory: java-1.7.0-openjdk security update | 2013-03-06T19:05:00+00:00 | 2025-11-21T17:42:50+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-093-05 | B&R APROL | 2025-03-24T00:30:00.000000Z | 2025-03-24T00:30:00.000000Z |
| icsa-25-084-02 | Rockwell Automation Verve Asset Manager | 2025-03-25T06:00:00.000000Z | 2025-03-25T06:00:00.000000Z |
| icsa-25-084-03 | Rockwell Automation 440G TLS-Z | 2025-03-25T06:00:00.000000Z | 2025-03-25T06:00:00.000000Z |
| icsa-25-084-04 | Inaba Denki Sangyo CHOCO TEI WATCHER mini | 2025-03-25T06:00:00.000000Z | 2025-03-25T06:00:00.000000Z |
| icsa-25-093-01 | Hitachi Energy RTU500 Series (Update B) | 2025-03-25T12:30:00.000000Z | 2025-09-09T12:30:00.000000Z |
| icsa-25-093-02 | Hitachi Energy TRMTracker | 2025-03-25T13:30:00.000000Z | 2025-03-25T13:30:00.000000Z |
| icsa-25-093-03 | ABB ACS880 Drives Containing CODESYS RTS | 2025-03-26T00:30:00.000000Z | 2025-03-26T00:30:00.000000Z |
| icsa-25-093-04 | ABB Low Voltage DC Drives and Power Controllers CODESYS RTS | 2025-03-26T00:30:00.000000Z | 2025-03-26T00:30:00.000000Z |
| icsa-25-091-01 | Rockwell Automation Lifecycle Services with Veeam Backup and Replication | 2025-04-01T06:00:00.000000Z | 2025-04-01T06:00:00.000000Z |
| icsa-25-100-09 | ABB Arctic Wireless Gateways | 2025-04-07T10:30:00.000000Z | 2025-04-07T10:30:00.000000Z |
| icsa-25-105-08 | ABB M2M Gateway | 2025-04-07T10:30:00.000000Z | 2025-04-07T10:30:00.000000Z |
| icsa-25-100-01 | Siemens License Server (SLS) | 2025-04-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-02 | Siemens SIDIS Prime | 2025-04-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-03 | Siemens Solid Edge | 2025-04-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-04 | Siemens Industrial Edge Devices | 2025-04-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-05 | Siemens Insights Hub Private Cloud | 2025-04-08T00:00:00.000000Z | 2025-04-08T00:00:00.000000Z |
| icsa-25-100-06 | Siemens SENTRON 7KT PAC1260 Data Manager | 2025-04-08T00:00:00.000000Z | 2025-04-08T00:00:00.000000Z |
| icsa-25-105-01 | Siemens Mendix Runtime | 2025-04-08T00:00:00.000000Z | 2025-06-10T00:00:00.000000Z |
| icsa-25-105-02 | Siemens Industrial Edge Device Kit | 2025-04-08T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-25-105-03 | Siemens SIMOCODE, SIMATIC, SIPLUS, SIDOOR, SIWAREX | 2025-04-08T00:00:00.000000Z | 2025-07-10T00:00:00.000000Z |
| icsa-25-107-01 | Schneider Electric Trio Q Licensed Data Radio | 2025-04-08T04:00:00.000000Z | 2025-04-08T04:00:00.000000Z |
| icsa-25-107-03 | Schneider Electric ConneXium Network Manager Software | 2025-04-08T04:00:00.000000Z | 2025-04-08T04:00:00.000000Z |
| icsa-25-100-07 | Rockwell Automation Arena | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-08 | Subnet Solutions PowerSYSTEM Center | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsma-25-100-01 | INFINITT Healthcare INFINITT PACS | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-112-04 | ABB MV Drives | 2025-04-10T08:30:00.000000Z | 2025-04-10T08:30:00.000000Z |
| icsa-25-105-04 | Growatt Cloud Applications | 2025-04-15T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-105-05 | Lantronix XPort (Update A) | 2025-04-15T06:00:00.000000Z | 2025-04-29T06:00:00.000000Z |
| icsa-25-105-06 | National Instruments LabVIEW | 2025-04-15T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-105-07 | Delta Electronics COMMGR (Update A) | 2025-04-15T06:00:00.000000Z | 2025-09-04T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2022-32149 | Denial of service via crafted Accept-Language header in golang.org/x/text/language | 2022-10-02T00:00:00.000Z | 2025-05-27T00:00:00.000Z |
| msrc_cve-2022-3344 | A flaw was found in the KVM's AMD nested virtualization (SVM). A malicious L1 guest could purposely fail to intercept the shutdown of a cooperative nested guest (L2) possibly leading to a page fault and kernel panic in the host (L0). | 2022-10-02T00:00:00.000Z | 2022-10-29T00:00:00.000Z |
| msrc_cve-2022-3474 | Bazel leaks user credentials through the remote assets API | 2022-10-02T00:00:00.000Z | 2024-12-03T00:00:00.000Z |
| msrc_cve-2022-3521 | Linux Kernel kcm kcmsock.c kcm_tx_work race condition | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-3533 | Linux Kernel BPF usdt.c parse_usdt_arg memory leak | 2022-10-02T00:00:00.000Z | 2023-07-21T00:00:00.000Z |
| msrc_cve-2022-3541 | Linux Kernel BPF spl2sw_driver.c spl2sw_nvmem_get_mac_address use after free | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-3543 | Linux Kernel BPF af_unix.c unix_release_sock memory leak | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-3544 | Linux Kernel Netfilter sysfs.c damon_sysfs_add_target memory leak | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-3545 | Linux Kernel IPsec nfp_cppcore.c area_cache_get use after free | 2022-10-02T00:00:00.000Z | 2022-10-19T00:00:00.000Z |
| msrc_cve-2022-3563 | Linux Kernel BlueZ mgmt-tester.c read_50_controller_cap_complete null pointer dereference | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-3570 | Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash potential information disclosure or any other context-dependent impact | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3586 | A flaw was found in the Linux kernel’s networking code. A use-after-free was found in the way the sch_sfb enqueue function used the socket buffer (SKB) cb field after the same SKB had been enqueued (and freed) into a child qdisc. This flaw allows a local unprivileged user to crash the system causing a denial of service. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3594 | Linux Kernel BPF r8152.c intr_callback logging of excessive data | 2022-10-02T00:00:00.000Z | 2022-10-21T00:00:00.000Z |
| msrc_cve-2022-3595 | Linux Kernel CIFS sess.c sess_free_buffer double free | 2022-10-02T00:00:00.000Z | 2022-10-21T00:00:00.000Z |
| msrc_cve-2022-3597 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection tools/tiffcrop.c:6826 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 236b7191. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3598 | LibTIFF 4.4.0 has an out-of-bounds write in extractContigSamplesShifted24bits in tools/tiffcrop.c:3604 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit cfbb883b. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3599 | LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit e8131125. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3606 | Linux Kernel BPF libbpf.c find_prog_by_sec_insn null pointer dereference | 2022-10-02T00:00:00.000Z | 2023-07-21T00:00:00.000Z |
| msrc_cve-2022-3626 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemset in libtiff/tif_unix.c:340 when called from processCropSelections tools/tiffcrop.c:7619 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 236b7191. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3627 | LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection tools/tiffcrop.c:6860 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 236b7191. | 2022-10-02T00:00:00.000Z | 2022-10-22T00:00:00.000Z |
| msrc_cve-2022-3637 | Linux Kernel BlueZ jlink.c jlink_init denial of service | 2022-10-02T00:00:00.000Z | 2025-09-04T00:15:11.000Z |
| msrc_cve-2022-3647 | Redis Crash Report debug.c sigsegvHandler denial of service | 2022-10-02T00:00:00.000Z | 2022-10-25T00:00:00.000Z |
| msrc_cve-2022-3697 | A flaw was found in Ansible in the amazon.aws collection when using the tower_callback parameter from the amazon.aws.ec2_instance module. This flaw allows an attacker to take advantage of this issue as the module is handling the parameter insecurely, leading to the password leaking in the logs. | 2022-10-02T00:00:00.000Z | 2025-10-01T23:11:21.000Z |
| msrc_cve-2022-3705 | vim autocmd quickfix.c qf_update_buffer use after free | 2022-10-02T00:00:00.000Z | 2022-10-29T00:00:00.000Z |
| msrc_cve-2022-37454 | The Keccak XKCP SHA-3 reference implementation before fdc6fef has an integer overflow and resultant buffer overflow that allows attackers to execute arbitrary code or eliminate expected cryptographic properties. This occurs in the sponge function interface. | 2022-10-02T00:00:00.000Z | 2022-11-29T08:00:00.000Z |
| msrc_cve-2022-37601 | Prototype pollution vulnerability in function parseQuery in parseQuery.js in webpack loader-utils via the name variable in parseQuery.js. This affects all versions prior to 1.4.1 and 2.0.3. | 2022-10-02T00:00:00.000Z | 2023-04-19T00:00:00.000Z |
| msrc_cve-2022-37603 | A Regular expression denial of service (ReDoS) flaw was found in Function interpolateName in interpolateName.js in webpack loader-utils 2.0.0 via the url variable in interpolateName.js. | 2022-10-02T00:00:00.000Z | 2025-09-03T21:40:32.000Z |
| msrc_cve-2022-37616 | A prototype pollution vulnerability exists in the function copy in dom.js in the xmldom (published as @xmldom/xmldom) package before 0.8.3 for Node.js via the p variable. NOTE: the vendor states "we are in the process of marking this report as invalid"; however some third parties takes the position that "A prototype injection/Prototype pollution is not just when global objects are polluted with recursive merge or deep cloning but also when a target object is polluted." | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-39348 | Twisted vulnerable to NameVirtualHost Host header injection | 2022-10-02T00:00:00.000Z | 2022-10-29T00:00:00.000Z |
| msrc_cve-2022-39400 | Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.30 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H). | 2022-10-02T00:00:00.000Z | 2022-10-20T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201402-0449 | NetGear N300 DGN2200 is a wireless ADSL2 + Modem router product from NetGear. The follow… | 2022-05-17T01:41:21.604000Z |
| var-201401-0728 | Netgear DGN2000 is a wireless router product. The Telnet service part monitored on … | 2022-05-17T01:41:22.022000Z |
| var-201312-0496 | GE Intelligent Platforms Proficy HMI/SCADA\342\200\223iFIX is the world's leading industr… | 2022-05-17T01:41:25.015000Z |
| var-201303-0440 | SAP NetWeaver is the technical foundation of SAP's integrated technology platform and all… | 2022-05-17T01:41:29.437000Z |
| var-201302-0562 | The Linksys WAG200G is a wireless router device. A command execution vulnerability exists… | 2022-05-17T01:41:29.756000Z |
| var-201302-0520 | The D-Link DIR-645 is a router device. The D-Link DIR-645 application does not properly r… | 2022-05-17T01:41:29.799000Z |
| var-201209-0659 | Ezylog photovoltaic management server is a SCADA product. Ezylog photovoltaic management … | 2022-05-17T01:41:31.145000Z |
| var-201110-0510 | The D-Link DCS-2121 is a network camera device. The D-Link DCS-2121 is based on the Linux… | 2022-05-17T01:41:34.648000Z |
| var-201103-0382 | It sends 10 or more consecutive messages to the web console or UPnP port within 1 second,… | 2022-05-17T01:41:36.728000Z |
| var-201102-0400 | MuPDF is prone to multiple integer-overflow vulnerabilities because it fails to properly … | 2022-05-17T01:41:37.308000Z |
| var-201101-0544 | Hitachi JP1/NETM/DM is prone to a local information-disclosure vulnerability and a denial… | 2022-05-17T01:41:37.570000Z |
| var-201012-0367 | Kerio WinRoute Firewall is a proxy server that enables multiple computers on a company to… | 2022-05-17T01:41:37.986000Z |
| var-201011-0287 | Local users can execute arbitrary kernel mode code by running malicious programs. Trend M… | 2022-05-17T01:41:38.293000Z |
| var-201008-0397 | Mereo is a small HTTP server running on the Windows platform. A remote attacker can cause… | 2022-05-17T01:41:39.808000Z |
| var-201006-0501 | The Motorola SB5101 is a cable modem. Motorola SB5101 Hax0rware has multiple security vul… | 2022-05-17T01:41:43.371000Z |
| var-201005-0437 | Nginx is a high-performance web server that is widely used. It is not only often used as … | 2022-05-17T01:41:43.694000Z |
| var-201004-0521 | The local file seraching function in IntelligentSearch and Accela BizSearch is prone to a… | 2022-05-17T01:41:44.151000Z |
| var-201002-0327 | This vulnerability allows remote attackers to execute arbitrary code on vulnerable instal… | 2022-05-17T01:41:44.759000Z |
| var-200909-0577 | Intuity Audix LX is a powerful multimedia messaging server. Multiple CGI perl scripts in … | 2022-05-17T01:41:45.787000Z |
| var-200907-0583 | SAP NetWeaver is prone to an information-disclosure vulnerability because it fails to pro… | 2022-05-17T01:41:46.141000Z |
| var-200903-0571 | uCosminexus Portal Framework contains multiple vulnerabilities.A remote attacker could pe… | 2022-05-17T01:41:46.982000Z |
| var-200811-0451 | 3Com Wireless 8760 Dual-Radio 11a/b/g PoE is a wireless access router for all types of bu… | 2022-05-17T01:41:48.159000Z |
| var-200809-0455 | RealWin is a data acquisition and monitoring control system (SCADA) server product runnin… | 2022-05-17T01:41:48.763000Z |
| var-200712-0451 | Easy File Sharing Web Server allows visitors to upload/download files via a browser, with… | 2022-05-17T01:41:51.516000Z |
| var-200601-0386 | ACT P202S VOIP WIFI is a wireless VOIP phone. MPM HP-180W VOIP WIFI phones have multiple … | 2022-05-17T01:42:14.456000Z |
| var-200511-0514 | Nortel's Switched Firewall is a small, rack-mounted firewall appliance that leverages uni… | 2022-05-17T01:42:45.205000Z |
| var-200406-0087 | It has been reported that Cisco CatOS is vulnerable to a denial of service attack. Improp… | 2022-05-17T01:42:51.422000Z |
| var-200308-0245 | It has been reported that under some circumstances, a Cisco appliance running IOS may ans… | 2022-05-17T01:42:52.461000Z |
| var-200303-0127 | The 3com SuperStack II Remote Access System 1500 is a device that accesses telecommunicat… | 2022-05-17T01:42:53.023000Z |
| var-200010-0156 | IOS is the firmware used by many Cisco network devices. In some versions of IOS 12.x (ver… | 2022-05-17T01:42:55.189000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2018:2223-1 | Security update for the Linux Kernel | 2018-08-06T17:25:54Z | 2018-08-06T17:25:54Z |
| suse-su-2018:2222-1 | Security update for the Linux Kernel | 2018-08-06T17:26:20Z | 2018-08-06T17:26:20Z |
| suse-su-2018:2232-1 | Security update for clamav | 2018-08-07T07:38:39Z | 2018-08-07T07:38:39Z |
| suse-su-2018:2230-1 | Security update for clamav | 2018-08-07T07:39:11Z | 2018-08-07T07:39:11Z |
| suse-su-2018:2235-1 | Security update for pidgin | 2018-08-07T10:47:06Z | 2018-08-07T10:47:06Z |
| suse-su-2018:2233-1 | Security update for cups | 2018-08-07T10:47:47Z | 2018-08-07T10:47:47Z |
| suse-su-2018:2236-1 | Security update for libcdio | 2018-08-07T10:48:04Z | 2018-08-07T10:48:04Z |
| suse-su-2018:2243-1 | Security update for enigmail | 2018-08-07T16:05:05Z | 2018-08-07T16:05:05Z |
| suse-su-2018:2262-1 | Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP3) | 2018-08-08T17:52:43Z | 2018-08-08T17:52:43Z |
| suse-su-2018:2264-1 | Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP3) | 2018-08-08T17:52:49Z | 2018-08-08T17:52:49Z |
| suse-su-2018:2255-1 | Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP3) | 2018-08-08T17:52:54Z | 2018-08-08T17:52:54Z |
| suse-su-2018:2248-1 | Security update for the Linux Kernel (Live Patch 5 for SLE 12 SP3) | 2018-08-08T17:52:59Z | 2018-08-08T17:52:59Z |
| suse-su-2018:2263-1 | Security update for the Linux Kernel (Live Patch 2 for SLE 12 SP3) | 2018-08-08T17:53:05Z | 2018-08-08T17:53:05Z |
| suse-su-2018:2254-1 | Security update for the Linux Kernel (Live Patch 3 for SLE 12 SP3) | 2018-08-08T17:53:11Z | 2018-08-08T17:53:11Z |
| suse-su-2018:2250-1 | Security update for the Linux Kernel (Live Patch 1 for SLE 12 SP3) | 2018-08-08T17:53:15Z | 2018-08-08T17:53:15Z |
| suse-su-2018:2269-1 | Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP3) | 2018-08-09T05:13:09Z | 2018-08-09T05:13:09Z |
| suse-su-2018:2271-1 | Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP3) | 2018-08-09T05:13:22Z | 2018-08-09T05:13:22Z |
| suse-su-2018:2266-1 | Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP3) | 2018-08-09T05:13:29Z | 2018-08-09T05:13:29Z |
| suse-su-2018:2268-1 | Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP3) | 2018-08-09T05:13:35Z | 2018-08-09T05:13:35Z |
| suse-su-2018:2270-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 12 SP3) | 2018-08-09T05:13:40Z | 2018-08-09T05:13:40Z |
| suse-su-2018:2267-1 | Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP3) | 2018-08-09T05:13:50Z | 2018-08-09T05:13:50Z |
| suse-su-2018:2275-1 | Security update for openssh | 2018-08-09T13:56:33Z | 2018-08-09T13:56:33Z |
| suse-su-2018:2298-1 | Security update for MozillaFirefox | 2018-08-10T09:36:01Z | 2018-08-10T09:36:01Z |
| suse-su-2018:2299-1 | Security update for ceph | 2018-08-10T09:36:47Z | 2018-08-10T09:36:47Z |
| suse-su-2018:2297-1 | Recommended update for NetworkManager-vpnc | 2018-08-10T09:39:10Z | 2018-08-10T09:39:10Z |
| suse-su-2018:2301-1 | Security update for wireshark | 2018-08-10T09:39:42Z | 2018-08-10T09:39:42Z |
| suse-su-2018:2302-1 | Security update for glibc | 2018-08-10T13:23:31Z | 2018-08-10T13:23:31Z |
| suse-su-2018:2305-1 | Security update for ffmpeg | 2018-08-10T20:25:31Z | 2018-08-10T20:25:31Z |
| suse-su-2018:2304-1 | Security update for libvirt | 2018-08-10T20:25:49Z | 2018-08-10T20:25:49Z |
| suse-su-2018:2317-1 | Security update for grafana, kafka, logstash, openstack-monasca-installer | 2018-08-14T06:03:57Z | 2018-08-14T06:03:57Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2023:0061-1 | Security update for chromium | 2023-02-27T09:07:05Z | 2023-02-27T09:07:05Z |
| opensuse-su-2023:0062-1 | Security update for python-Django | 2023-02-28T15:43:17Z | 2023-02-28T15:43:17Z |
| opensuse-su-2023:0063-1 | Security update for opera | 2023-03-02T17:01:36Z | 2023-03-02T17:01:36Z |
| opensuse-su-2023:0064-1 | Security update for trivy | 2023-03-05T19:03:40Z | 2023-03-05T19:03:40Z |
| opensuse-su-2023:0066-1 | Security update for opera | 2023-03-09T13:01:39Z | 2023-03-09T13:01:39Z |
| opensuse-su-2023:0068-1 | Security update for chromium | 2023-03-13T17:04:22Z | 2023-03-13T17:04:22Z |
| opensuse-su-2023:0069-1 | Security update for amanda | 2023-03-14T13:49:00Z | 2023-03-14T13:49:00Z |
| opensuse-su-2023:0071-1 | Security update for peazip | 2023-03-14T15:01:30Z | 2023-03-14T15:01:30Z |
| opensuse-su-2023:0075-1 | Security update for python-Django | 2023-03-14T15:01:49Z | 2023-03-14T15:01:49Z |
| opensuse-su-2023:0077-1 | Security update for python-Django | 2023-03-20T15:09:03Z | 2023-03-20T15:09:03Z |
| opensuse-su-2023:0080-1 | Security update for squirrel | 2023-03-23T17:01:16Z | 2023-03-23T17:01:16Z |
| opensuse-su-2023:0082-1 | Security update for chromium | 2023-03-27T11:03:36Z | 2023-03-27T11:03:36Z |
| opensuse-su-2023:0083-1 | Security update for nextcloud | 2023-04-03T14:24:07Z | 2023-04-03T14:24:07Z |
| opensuse-su-2023:0087-1 | Security update for seamonkey | 2023-04-11T07:07:27Z | 2023-04-11T07:07:27Z |
| opensuse-su-2023:0088-1 | Security update for upx | 2023-04-11T07:07:29Z | 2023-04-11T07:07:29Z |
| opensuse-su-2023:0090-1 | Security update for nextcloud-desktop | 2023-04-12T10:56:37Z | 2023-04-12T10:56:37Z |
| opensuse-su-2023:0092-1 | Security update for chromium | 2023-04-19T15:21:29Z | 2023-04-19T15:21:29Z |
| opensuse-su-2023:0093-1 | Security update for chromium | 2023-04-24T09:58:05Z | 2023-04-24T09:58:05Z |
| opensuse-su-2023:0096-1 | Security update for liferea | 2023-04-27T12:51:25Z | 2023-04-27T12:51:25Z |
| opensuse-su-2023:0097-1 | Security update for stellarium | 2023-04-27T14:00:33Z | 2023-04-27T14:00:33Z |
| opensuse-su-2023:0101-1 | Security update for pdns-recursor | 2023-05-02T07:36:56Z | 2023-05-02T07:36:56Z |
| opensuse-su-2023:0102-1 | Security update for editorconfig-core-c | 2023-05-04T10:31:23Z | 2023-05-04T10:31:23Z |
| opensuse-su-2023:0108-1 | Security update for dcmtk | 2023-05-14T22:01:36Z | 2023-05-14T22:01:36Z |
| opensuse-su-2023:0111-1 | Security update for qt6-svg | 2023-05-22T16:01:51Z | 2023-05-22T16:01:51Z |
| opensuse-su-2023:0114-1 | Security update for opera | 2023-05-27T12:01:46Z | 2023-05-27T12:01:46Z |
| opensuse-su-2023:0115-1 | Security update for opera | 2023-05-27T12:01:50Z | 2023-05-27T12:01:50Z |
| opensuse-su-2023:0117-1 | Security update for chromium | 2023-05-31T14:40:39Z | 2023-05-31T14:40:39Z |
| opensuse-su-2023:0123-1 | Security update for chromium | 2023-06-09T11:41:40Z | 2023-06-09T11:41:40Z |
| opensuse-su-2023:0124-1 | Security update for chromium | 2023-06-09T11:42:19Z | 2023-06-09T11:42:19Z |
| opensuse-su-2023:0126-1 | Security update for syncthing | 2023-06-12T14:01:56Z | 2023-06-12T14:01:56Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-gitlab-2024-8124 | Inefficient Regular Expression Complexity in GitLab | 2024-09-14T07:06:46.628Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-6678 | Authentication Bypass by Spoofing in GitLab | 2024-09-14T07:08:36.238Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-6446 | Business Logic Errors in GitLab | 2024-09-14T07:09:14.036Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-6389 | Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitLab | 2024-09-14T07:09:28.429Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-5435 | Generation of Error Message Containing Sensitive Information in GitLab | 2024-09-14T07:10:53.429Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-4660 | Missing Authorization in GitLab | 2024-09-14T07:12:55.540Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-4612 | URL Redirection to Untrusted Site ('Open Redirect') in GitLab | 2024-09-14T07:13:08.316Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-4472 | Insertion of Sensitive Information into Log File in GitLab | 2024-09-14T07:13:58.424Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-2743 | Incorrect Authorization in GitLab | 2024-09-14T07:17:52.830Z | 2025-05-20T10:02:07.006Z |
| bit-python-2024-7592 | Quadratic complexity parsing cookies with backslashes | 2024-09-16T12:03:55.576Z | 2025-11-06T13:25:46.476Z |
| bit-python-2024-6232 | Regular-expression DoS when parsing TarFile headers | 2024-09-16T12:04:20.671Z | 2025-11-06T13:25:46.476Z |
| bit-gitlab-2024-6685 | Authorization Bypass Through User-Controlled Key in GitLab | 2024-09-18T07:17:55.746Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-4283 | URL Redirection to Untrusted Site ('Open Redirect') in GitLab | 2024-09-18T07:23:19.137Z | 2025-05-20T10:02:07.006Z |
| bit-mongodb-2024-7553 | Accessing Untrusted Directory May Allow Local Privilege Escalation | 2024-09-20T07:17:59.251Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-45810 | Envoy crashes for LocalReply in http async client | 2024-09-21T07:10:05.550Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-45809 | Jwt filter crash in the clear route cache with remote JWKs in envoy | 2024-09-21T07:10:18.152Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-45808 | Malicious log injection via access logs in envoy | 2024-09-21T07:10:31.256Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-45807 | oghttp2 crash on OnBeginHeadersForStream in envoy | 2024-09-21T07:10:45.353Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-45806 | Potential manipulate `x-envoy` headers from external sources in envoy | 2024-09-21T07:10:58.550Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-45409 | The Ruby SAML library vulnerable to a SAML authentication bypass via Incorrect XPath selector | 2024-09-21T07:19:08.053Z | 2025-05-20T10:02:07.006Z |
| bit-envoy-2024-7207 | 2024-09-26T07:10:09.460Z | 2024-09-26T07:51:02.528Z | |
| bit-gitlab-2024-4278 | Incorrect Synchronization in GitLab | 2024-09-27T07:24:05.639Z | 2025-05-20T10:02:07.006Z |
| bit-gitlab-2024-8974 | Incorrect Provision of Specified Functionality in GitLab | 2024-09-30T08:53:12.028Z | 2025-05-20T10:02:07.006Z |
| bit-vault-2024-7594 | Vault SSH Secrets Engine Configuration Did Not Restrict Valid Principals By Default | 2024-09-30T09:10:31.036Z | 2025-08-11T00:06:06.142Z |
| bit-gitlab-2023-3441 | Exposure of Sensitive Information Due to Incompatible Policies in GitLab | 2024-10-03T07:38:54.069Z | 2025-05-20T10:02:07.006Z |
| bit-jenkins-2024-47804 | 2024-10-04T07:09:09.019Z | 2025-04-03T14:40:37.652Z | |
| bit-jenkins-2024-47803 | 2024-10-04T07:09:20.135Z | 2025-04-03T14:40:37.652Z | |
| bit-prestashop-2024-41651 | 2024-10-04T07:18:17.936Z | 2025-09-03T11:06:29.028Z | |
| bit-python-2023-6507 | Groups not dropped before running subprocess when using empty 'extra_groups' parameter | 2024-10-04T16:35:46.829Z | 2025-05-20T10:02:07.006Z |
| bit-python-2023-41105 | 2024-10-04T16:35:59.533Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-03290 | Pacemaker安全绕过漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03291 | Pligg CMS 'dmin_page.php' HTML注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03292 | Openfire XMPP Server中间人攻击漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03293 | Laravel 'prepareForUnserialize()'函数远程PHP对象注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03294 | libnetfilter_cthelper内存错误引用漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03295 | IBM SPSS Statistics ActiveX控件代码执行漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03296 | IBM Workflow for Bluemix信息泄露漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03297 | EFMNetworks ipTIME CGI文件处理远程代码执行漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03298 | NetCat.ru NetCat CMS HTML注入漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03299 | Drupal Imagefield Info模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03300 | Drupal Current Search Links模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03301 | Drupal Petition模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03302 | Drupal Ubercart Webform Checkout Pane模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03303 | Drupal Linear Case模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03304 | Drupal Invoice模块跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03305 | Drupal HybridAuth Social Login模块信息泄露漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03306 | Drupal Webform Multiple File Upload模块跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03308 | Drupal Decisions模块跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03309 | Drupal CiviCRM private report模块跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03310 | IBM WebSphere Commerce本地信息泄露漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03311 | Drupal Node Template模块跨站脚本漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03312 | Drupal Keyword Research模块跨站请求伪造漏洞 | 2015-05-20 | 2015-05-22 |
| cnvd-2015-03313 | Moodle错误消息重定向漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03314 | Moodle目标用户名信息泄露漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03315 | Moodle site-wide事件监控规则订阅漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03316 | Moodle已封用户登录漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03317 | Moodle敏感课程结构泄露漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03318 | Moodle私有文件上传漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03319 | Moodle 'mod/quiz:grade'跨站脚本漏洞 | 2015-05-20 | 2015-05-25 |
| cnvd-2015-03320 | WSO2 Identity Server /carbon/user/add-finish.jsp用户跨站请求伪造漏洞 | 2015-05-20 | 2015-05-25 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2008-avi-358 | Vulnérabilité dans les produits Cisco | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-359 | Vulnérabilités dans ISC BIND | 2008-07-09T00:00:00.000000 | 2008-07-25T00:00:00.000000 |
| certa-2008-avi-360 | Vulnérabilité dans l'implémentation du protocole DNS par Juniper | 2008-07-09T00:00:00.000000 | 2008-07-09T00:00:00.000000 |
| certa-2008-avi-361 | Vulnérabilité dans PCRE | 2008-07-10T00:00:00.000000 | 2008-07-10T00:00:00.000000 |
| certa-2008-avi-362 | Vulnérabilités dans Opera | 2008-07-10T00:00:00.000000 | 2008-07-10T00:00:00.000000 |
| certa-2008-avi-363 | Vulnérabilité dans Novell eDirectory | 2008-07-10T00:00:00.000000 | 2008-07-10T00:00:00.000000 |
| certa-2008-avi-364 | Vulnérabilité du langage Ruby | 2008-07-11T00:00:00.000000 | 2008-07-11T00:00:00.000000 |
| certa-2008-avi-365 | Multiples vulnérabilités dans Drupal | 2008-07-11T00:00:00.000000 | 2008-07-11T00:00:00.000000 |
| certa-2008-avi-366 | Multiples vulnérabilités dans la machine virtuelle Java de Sun | 2008-07-11T00:00:00.000000 | 2008-12-23T00:00:00.000000 |
| certa-2008-avi-367 | Multiples vulnérabilités dans les produits Oracle et Weblogic | 2008-07-16T00:00:00.000000 | 2008-07-16T00:00:00.000000 |
| certa-2008-avi-368 | Vulnérabilités dans Mozilla Firefox | 2008-07-17T00:00:00.000000 | 2008-07-17T00:00:00.000000 |
| certa-2008-avi-369 | Multiples vulnérabilités dans Claroline | 2008-07-17T00:00:00.000000 | 2008-07-17T00:00:00.000000 |
| certa-2008-avi-370 | Vulnérabilité dans des produits BlackBerry | 2008-07-18T00:00:00.000000 | 2008-07-18T00:00:00.000000 |
| certa-2008-avi-371 | Vulnérabilités de l'antivirus F-Prot | 2008-07-18T00:00:00.000000 | 2008-07-18T00:00:00.000000 |
| certa-2008-avi-372 | Vulnérabilité dans IBM WebSphere Application Server | 2008-07-18T00:00:00.000000 | 2008-07-18T00:00:00.000000 |
| certa-2008-avi-373 | Multiples vulnérabilités dans les produits Asterisk | 2008-07-24T00:00:00.000000 | 2008-07-24T00:00:00.000000 |
| certa-2008-avi-374 | Vulnérabilités de Claroline | 2008-07-25T00:00:00.000000 | 2008-07-25T00:00:00.000000 |
| certa-2008-avi-375 | Multiples vulnéabilités dans dnsmasq | 2008-07-25T00:00:00.000000 | 2008-07-25T00:00:00.000000 |
| certa-2008-avi-376 | Multiples vulnérabilités du client de messagerie Mozilla Thunderbird | 2008-07-25T00:00:00.000000 | 2008-07-25T00:00:00.000000 |
| certa-2008-avi-377 | Vulnérabilité dans Drupal | 2008-07-25T00:00:00.000000 | 2008-07-25T00:00:00.000000 |
| certa-2008-avi-378 | Multiples vulnérabilités dans RealPlayer | 2008-07-28T00:00:00.000000 | 2008-07-28T00:00:00.000000 |
| certa-2008-avi-379 | Vulnérabilité de openSUSE | 2008-07-28T00:00:00.000000 | 2008-07-28T00:00:00.000000 |
| certa-2008-avi-380 | Multiples vulnérabilités dans VMware ESX | 2008-07-29T00:00:00.000000 | 2008-07-29T00:00:00.000000 |
| certa-2008-avi-381 | Vulnérabilité dans AVG Anti-Virus | 2008-07-29T00:00:00.000000 | 2008-07-29T00:00:00.000000 |
| certa-2008-avi-382 | Multiples vulnérabilités de l'antivirus ClamAV | 2008-07-29T00:00:00.000000 | 2008-07-29T00:00:00.000000 |
| certa-2008-avi-383 | Vulnérabilités de phpMyAdmin | 2008-08-01T00:00:00.000000 | 2008-08-01T00:00:00.000000 |
| certa-2008-avi-384 | Vulnérabilité dans SAP MaxDB | 2008-08-01T00:00:00.000000 | 2008-08-01T00:00:00.000000 |
| certa-2008-avi-385 | Vulnérabilité dans HP-UX | 2008-08-01T00:00:00.000000 | 2008-08-01T00:00:00.000000 |
| certa-2008-avi-386 | Vulnérabilité CA ARCserve Backup | 2008-08-01T00:00:00.000000 | 2008-08-01T00:00:00.000000 |
| certa-2008-avi-387 | Vulnérabilité de libxslt | 2008-08-01T00:00:00.000000 | 2008-08-01T00:00:00.000000 |