Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-27141
7.5 (3.1)
Sending certain HTTP/2 frames can cause a server to pa… golang.org/x/net
 golang.org/x/net/http2
 2026-02-26T18:50:31.830Z 2026-02-27T19:11:57.260Z
CVE-2026-22722
6.1 (3.1)
VMware Workstation for Windows null pointer dereferenc… VMware
 Workstation
 2026-02-26T18:35:20.563Z 2026-02-27T17:54:16.126Z
CVE-2026-22715
5.9 (3.1)
VMware Workstation/Fusion NAT vulnerability VMware
 Workstation
 2026-02-26T18:29:14.190Z 2026-02-27T17:55:10.640Z
CVE-2026-26938
8.6 (3.1)
Improper Neutralization of Special Elements Used in a … Elastic
 Kibana
 2026-02-26T17:56:48.611Z 2026-02-27T16:03:59.847Z
CVE-2026-26937
6.5 (3.1)
Uncontrolled Resource Consumption in Kibana Leading to… Elastic
 Kibana
 2026-02-26T17:51:35.421Z 2026-02-27T16:04:41.385Z
CVE-2026-26227
6.3 (4.0)
3.7 (3.1)
VLC for Android < 3.7.0 Remote Access OTP Authenticati… VideoLAN
 VLC for Android
 2026-02-26T17:37:19.896Z 2026-02-27T18:15:06.115Z
CVE-2026-23750
7.2 (4.0)
8.1 (3.1)
Golioth Pouch < [INSERT FIXED VERSION] BLE GATT Heap-b… Golioth
 Pouch
 2026-02-26T17:33:13.261Z 2026-02-27T16:05:34.974Z
CVE-2026-23749
2.1 (4.0)
2.9 (3.1)
Golioth Firmware SDK < 0.22.0 Blockwise Transfer Path … Golioth
 Firmware SDK
 2026-02-26T17:32:30.795Z 2026-02-27T17:56:08.833Z
CVE-2026-23748
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 LightDB State Out-of-Bou… Golioth
 Firmware SDK
 2026-02-26T17:31:32.584Z 2026-02-27T16:06:24.182Z
CVE-2026-23747
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 Payload Utils Stack-base… Golioth
 Firmware SDK
 2026-02-26T17:30:13.495Z 2026-02-27T16:07:30.232Z
CVE-2026-26936
4.9 (3.1)
Inefficient Regular Expression Complexity in Kibana Le… Elastic
 Kibana
 2026-02-26T17:07:40.604Z 2026-02-26T18:28:11.114Z
CVE-2026-26935
6.5 (3.1)
Improper Input Validation in Kibana Leading to Denial … Elastic
 Kibana
 2026-02-26T17:05:16.619Z 2026-02-26T18:28:11.607Z
CVE-2026-26934
6.5 (3.1)
Improper Validation of Specified Quantity in Input in … Elastic
 Kibana
 2026-02-26T17:03:17.242Z 2026-02-26T18:28:11.925Z
CVE-2026-26932
5.7 (3.1)
Improper Validation of Array Index in Packetbeat Leadi… Elastic
 Packetbeat
 2026-02-26T16:59:55.310Z 2026-02-26T18:28:12.222Z
CVE-2026-28295
4.3 (3.1)
Gvfs: gvfs ftp backend: information disclosure via unt… Red Hat
 Red Hat Enterprise Linux 10
 2026-02-26T15:33:23.865Z 2026-02-26T18:07:15.054Z
CVE-2026-26228
2.3 (4.0)
4.9 (3.1)
VLC for Android < 3.7.0 Remote Access Path Traversal VideoLAN
 VLC for Android
 2026-02-26T15:21:00.590Z 2026-02-27T18:13:50.230Z
CVE-2026-28296
4.3 (3.1)
Gvfs: ftp gvfs backend: arbitrary ftp command injectio… Red Hat
 Red Hat Enterprise Linux 10
 2026-02-26T15:10:47.917Z 2026-02-26T18:23:09.297Z
CVE-2026-26265
7.5 (3.1)
Discourse has IDOR vulnerability in the directory item… discourse
 discourse
 2026-02-26T15:10:25.929Z 2026-02-27T16:17:05.469Z
CVE-2026-26207
5.4 (3.1)
DIscourse's discourse-policy plugin lacks post access check discourse
 discourse
 2026-02-26T15:04:14.557Z 2026-02-26T21:33:42.157Z
CVE-2026-26078
7.5 (3.1)
Discourse has authentication bypass vulnerability in t… discourse
 discourse
 2026-02-26T15:00:47.130Z 2026-02-27T16:17:41.410Z
CVE-2026-26077
6.5 (3.1)
Discourse doesn't ensure webhooks require a token discourse
 discourse
 2026-02-26T14:58:13.971Z 2026-02-27T16:19:00.984Z
CVE-2026-3071
8.4 (3.1)
Deserialization of untrusted data in the Language… Flair
 Flair
 2026-02-26T14:56:39.524Z 2026-02-27T16:21:29.889Z
CVE-2026-2244
8.4 (4.0)
Sensitive Data Exposure in Google Cloud Vertex AI Workbench Google Cloud
 Vertex AI Workbench
 2026-02-26T14:14:46.460Z 2026-02-26T14:59:56.045Z
CVE-2026-2680
4.8 (4.0)
Multiple vulnerabilities in A3factura software A3factura
 A3factura
 2026-02-26T12:18:48.247Z 2026-02-26T14:04:31.184Z
CVE-2026-2679
4.8 (4.0)
Multiple vulnerabilities in A3factura software A3factura
 A3factura
 2026-02-26T12:18:13.402Z 2026-02-26T14:06:26.035Z
CVE-2026-2678
4.8 (4.0)
Multiple vulnerabilities in A3factura software A3factura
 A3factura
 2026-02-26T12:17:17.445Z 2026-02-26T14:09:15.966Z
CVE-2026-2677
4.8 (4.0)
Multiple vulnerabilities in A3factura software A3factura
 A3factura
 2026-02-26T12:16:03.068Z 2026-02-26T14:13:41.794Z
CVE-2025-14343
7.6 (3.1)
Reflected XSS in Dokuzsoft Technology's E-Commerce Product Dokuzsoft Technology Ltd.
 E-Commerce Product
 2026-02-26T12:06:21.407Z 2026-02-26T14:18:33.982Z
CVE-2026-1198
8.6 (4.0)
SQL Injection in SIMPLE.ERP Simple SA
 Simple.ERP
 2026-02-26T11:27:18.585Z 2026-02-26T14:27:02.779Z
CVE-2025-64999
7.3 (4.0)
Cross-site scripting in HTML logs of Synthetic Monitor… Checkmk GmbH
 Checkmk
 2026-02-26T10:26:00.127Z 2026-02-26T14:28:55.683Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-22206
8.7 (4.0)
8.8 (3.1)
SPIP < 4.4.10 SQL Injection RCE via Union & PHP Tags SPIP
 SPIP
 2026-02-26T20:17:58.443Z 2026-02-27T20:08:48.214Z
CVE-2026-22205
8.7 (4.0)
7.5 (3.1)
SPIP < 4.4.10 Authentication Bypass via PHP Type Juggling SPIP
 SPIP
 2026-02-26T20:18:14.748Z 2026-02-27T20:06:38.973Z
CVE-2023-31364
8.3 (4.0)
Improper handling of direct memory writes in the … AMD
 AMD EPYC™ 7001 Series Processors
 2026-02-26T20:33:28.086Z 2026-02-27T19:06:16.269Z
CVE-2026-27510
6.4 (4.0)
9.6 (3.1)
Unitree Go2 Mobile Program Tampering Enables Root RCE UnitreeRobotics
 Unitree Go2
 2026-02-26T18:56:56.654Z 2026-02-27T18:15:59.996Z
CVE-2026-27509
8.5 (4.0)
8 (3.1)
Unitree Go2 Missing DDS Authentication Enables Adjacent RCE UnitreeRobotics
 Unitree Go2
 2026-02-26T18:56:31.648Z 2026-02-27T18:15:37.037Z
CVE-2026-27141
7.5 (3.1)
Sending certain HTTP/2 frames can cause a server to pa… golang.org/x/net
 golang.org/x/net/http2
 2026-02-26T18:50:31.830Z 2026-02-27T19:11:57.260Z
CVE-2026-26979
0 (4.0)
Discourse: TL4 users are able to change status of rest… discourse
 discourse
 2026-02-26T19:25:15.812Z 2026-02-26T20:38:24.755Z
CVE-2026-26973
4.3 (3.1)
Discourse doesn't scope reviewable notes to user-visib… discourse
 discourse
 2026-02-26T19:19:18.139Z 2026-02-26T20:41:30.698Z
CVE-2026-23939
6.9 (4.0)
Path Traversal in Local File Store Backend hexpm
 hexpm
 2026-02-26T19:41:18.762Z 2026-02-27T03:57:08.485Z
CVE-2026-1565
8.8 (3.1)
User Frontend: AI Powered Frontend Posting, User Direc… wedevs
 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration
 2026-02-26T19:23:09.638Z 2026-02-26T20:45:54.082Z
CVE-2026-1241
8.7 (4.0)
Authentication Bypass Using an Alternate Path or Chann… Pelco, Inc.
 Sarix Professional IMP 3 Series
 2026-02-26T19:21:26.754Z 2026-02-26T20:43:53.216Z
CVE-2025-11384
N/A
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A 2026-02-26T19:27:34.875Z
CVE-2025-11383
N/A
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A 2026-02-26T19:27:19.848Z
CVE-2025-11382
N/A
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A 2026-02-26T19:27:06.298Z
CVE-2025-11381
N/A
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. N/A N/A 2026-02-26T19:26:58.091Z
CVE-2026-26938
8.6 (3.1)
Improper Neutralization of Special Elements Used in a … Elastic
 Kibana
 2026-02-26T17:56:48.611Z 2026-02-27T16:03:59.847Z
CVE-2026-26937
6.5 (3.1)
Uncontrolled Resource Consumption in Kibana Leading to… Elastic
 Kibana
 2026-02-26T17:51:35.421Z 2026-02-27T16:04:41.385Z
CVE-2026-22722
6.1 (3.1)
VMware Workstation for Windows null pointer dereferenc… VMware
 Workstation
 2026-02-26T18:35:20.563Z 2026-02-27T17:54:16.126Z
CVE-2026-22715
5.9 (3.1)
VMware Workstation/Fusion NAT vulnerability VMware
 Workstation
 2026-02-26T18:29:14.190Z 2026-02-27T17:55:10.640Z
CVE-2026-26936
4.9 (3.1)
Inefficient Regular Expression Complexity in Kibana Le… Elastic
 Kibana
 2026-02-26T17:07:40.604Z 2026-02-26T18:28:11.114Z
CVE-2026-26935
6.5 (3.1)
Improper Input Validation in Kibana Leading to Denial … Elastic
 Kibana
 2026-02-26T17:05:16.619Z 2026-02-26T18:28:11.607Z
CVE-2026-26934
6.5 (3.1)
Improper Validation of Specified Quantity in Input in … Elastic
 Kibana
 2026-02-26T17:03:17.242Z 2026-02-26T18:28:11.925Z
CVE-2026-26932
5.7 (3.1)
Improper Validation of Array Index in Packetbeat Leadi… Elastic
 Packetbeat
 2026-02-26T16:59:55.310Z 2026-02-26T18:28:12.222Z
CVE-2026-26682
7.8 (3.1)
An issue in fastCMS before v.0.1.6 allows a local… n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T18:53:00.554Z
CVE-2026-26227
6.3 (4.0)
3.7 (3.1)
VLC for Android < 3.7.0 Remote Access OTP Authenticati… VideoLAN
 VLC for Android
 2026-02-26T17:37:19.896Z 2026-02-27T18:15:06.115Z
CVE-2026-23750
7.2 (4.0)
8.1 (3.1)
Golioth Pouch < [INSERT FIXED VERSION] BLE GATT Heap-b… Golioth
 Pouch
 2026-02-26T17:33:13.261Z 2026-02-27T16:05:34.974Z
CVE-2026-23749
2.1 (4.0)
2.9 (3.1)
Golioth Firmware SDK < 0.22.0 Blockwise Transfer Path … Golioth
 Firmware SDK
 2026-02-26T17:32:30.795Z 2026-02-27T17:56:08.833Z
CVE-2026-23748
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 LightDB State Out-of-Bou… Golioth
 Firmware SDK
 2026-02-26T17:31:32.584Z 2026-02-27T16:06:24.182Z
CVE-2026-23747
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 Payload Utils Stack-base… Golioth
 Firmware SDK
 2026-02-26T17:30:13.495Z 2026-02-27T16:07:30.232Z
CVE-2025-50857
9.8 (3.1)
ZenTaoPMS v18.11 through v21.6.beta is vulnerable… n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T18:48:30.603Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-6v6h-v95w-6g6x
8.4 (3.1)
Deserialization of untrusted data in the LanguageModel class of Flair from versions 0.4.1 to latest… 2026-02-26T15:30:30Z 2026-02-26T15:30:30Z
ghsa-65m8-95c4-38hm
8.4 (4.0)
A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker… 2026-02-26T15:30:30Z 2026-02-26T15:30:31Z
ghsa-42wg-38gx-85rh
7.2 (3.1)
Vikunja has Path Traversal in CLI Restore 2026-02-26T15:23:30Z 2026-02-26T15:23:30Z
ghsa-w789-49fc-v8hr
8.7 (4.0)
TerriaJS-Server has a domain validation bypass vulnerability in its proxy allowlist 2026-02-26T15:22:11Z 2026-02-26T15:22:11Z
ghsa-24p2-j2jr-386w
6.8 (4.0)
psd-tools: Compression module has unguarded zlib decompression, missing dimension validation, and h… 2026-02-26T15:20:51Z 2026-02-26T15:20:51Z
ghsa-mpf7-p9x7-96r3
5.8 (3.1)
Mailpit is Vulnerable to Server-Side Request Forgery (SSRF) via Link Check API 2026-02-26T15:18:46Z 2026-02-26T15:18:46Z
ghsa-vjqx-cfc4-9h6v
6.4 (4.0)
mcp-server-git : Path traversal in git_add allows staging files outside repository boundaries 2026-02-26T15:16:57Z 2026-02-26T15:16:57Z
ghsa-mjf5-7g4m-gx5w
8.9 (4.0)
Storybook Dev Server is Vulnerable to WebSocket Hijacking 2026-02-26T15:16:10Z 2026-02-26T15:16:10Z
ghsa-49xw-vfc4-7p43
5.1 (4.0)
Fleet has an SQL Injection vulnerability via backtick escape in ORDER BY parameter 2026-02-26T15:14:12Z 2026-02-26T15:14:12Z
ghsa-p5q4-qc3r-2w36
7.3 (4.0)
Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p… 2026-02-26T12:30:25Z 2026-02-26T12:30:25Z
ghsa-ggxg-6g5h-6m7w
8.6 (4.0)
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window… 2026-02-26T12:30:25Z 2026-02-26T12:30:25Z
ghsa-wc4c-6r77-mp37
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-02-26T09:30:27Z 2026-02-26T15:30:30Z
ghsa-jxpv-ww5c-x2c3
7.6 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2026-02-26T09:30:27Z 2026-02-26T21:31:30Z
ghsa-9284-m2hp-cfp4
7.2 (3.1)
Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object Injecti… 2026-02-26T09:30:27Z 2026-02-26T15:30:30Z
ghsa-827f-mrm2-f6xh
6.5 (3.1)
Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements… 2026-02-26T09:30:27Z 2026-02-27T18:31:04Z
ghsa-77v4-gvxh-3ccf
5.3 (3.1)
Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in vill… 2026-02-26T09:30:27Z 2026-02-26T15:30:30Z
ghsa-7693-hmcm-7whx
5.3 (4.0)
An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and … 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-6hjh-5rvg-rp2f
2.3 (4.0)
HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the … 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-5w3f-m935-fxvq
5.3 (4.0)
The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservi… 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-4v7c-97mg-h3wh
5.3 (4.0)
The Secure and SameSite attribute are missing in the GraphicalData web services and WebClient web a… 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-4r52-fgmg-vqxc
2.3 (4.0)
Some HTTP security headers are not properly set by the web server when sending responses to the cli… 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-3fqx-3cg9-chg9
5.3 (4.0)
A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used… 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-35x7-r658-wx7f
5.3 (4.0)
A HTTP Host header attack vulnerability affects WebClient and the WebScheduler web apps of PcVue in… 2026-02-26T09:30:27Z 2026-02-26T09:30:27Z
ghsa-xp3r-qr68-xr3w
8.8 (3.1)
The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, … 2026-02-26T06:30:51Z 2026-02-26T06:30:51Z
ghsa-jx5h-hvfq-fcgj
7.8 (3.1)
8.4 (4.0)
The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL sear… 2026-02-26T06:30:51Z 2026-02-26T06:30:51Z
ghsa-627f-gvh5-phrq
7.8 (3.1)
8.5 (4.0)
The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permi… 2026-02-26T06:30:51Z 2026-02-26T06:30:51Z
ghsa-xm8p-wgjh-pfxf
8.1 (3.1)
The User Registration & Membership plugin for WordPress is vulnerable to authentication bypass in v… 2026-02-26T03:31:18Z 2026-02-26T03:31:18Z
ghsa-mhrq-g838-222j
6.1 (3.1)
The EM Cost Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting in version… 2026-02-26T03:31:18Z 2026-02-26T03:31:18Z
ghsa-mfwc-76p3-m2rc
5.3 (3.1)
The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin … 2026-02-26T03:31:18Z 2026-02-26T03:31:18Z
ghsa-fq9v-x83p-g6p3
4.4 (3.1)
The WP Social Meta plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin sett… 2026-02-26T03:31:18Z 2026-02-26T03:31:18Z
ID Severity Description Package Published Updated
pysec-2024-147
5.3 (3.1)
Vyper is a Pythonic Smart Contract Language for the EVM. There is an error in the stack m… vyper 2024-02-05T21:15:00+00:00 2024-11-21T14:23:02.864019+00:00
pysec-2024-38
7.5 (3.1)
FastAPI is a web framework for building APIs with Python 3.8+ based on standard Python ty… fastapi 2024-02-05T15:15:00+00:00 2024-02-16T18:22:32.607118+00:00
pysec-2024-148
5.3 (3.1)
Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine. When calls … vyper 2024-02-02T17:15:00+00:00 2024-11-21T14:23:02.917464+00:00
pysec-2024-35
5.4 (3.1)
Versions of the package dash-core-components before 2.13.0; all versions of the package d… dash 2024-02-02T05:15:00+00:00 2024-02-10T07:18:43.563257+00:00
pysec-2024-149
9.8 (3.1)
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. In versions… vyper 2024-02-01T17:15:00+00:00 2024-11-21T14:23:02.970591+00:00
pysec-2024-29
4.9 (3.1)
OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1… octoprint 2024-01-31T18:15:00+00:00 2024-02-08T07:19:40.535297+00:00
pysec-2024-127
5.3 (3.1)
Label Studio is a popular open source data labeling tool. The vulnerability affects all v… label-studio 2024-01-31T17:15:00+00:00 2024-11-21T14:22:53.294472+00:00
pysec-2024-151
5.3 (3.1)
Vyper is a pythonic Smart Contract Language for the ethereum virtual machine. Vyper compi… vyper 2024-01-30T21:15:00+00:00 2024-11-21T14:23:03.091183+00:00
pysec-2024-34
9.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6-server 2024-01-30T16:15:00+00:00 2024-02-08T20:20:16.896186+00:00
pysec-2024-33
9.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6-node 2024-01-30T16:15:00+00:00 2024-02-08T20:20:16.842528+00:00
pysec-2024-32
4.3 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.342089+00:00
pysec-2024-31
3.7 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.276390+00:00
pysec-2024-30
8.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.210087+00:00
pysec-2024-25
9.8 (3.1)
DuckDB <=0.9.2 and DuckDB extension-template <=0.9.2 are vulnerable to malicious extensio… duckdb 2024-01-30T01:16:00+00:00 2024-02-06T00:25:51.550516+00:00
pysec-2024-27
9.8 (3.1)
CrateDB 5.5.1 is contains an authentication bypass vulnerability in the Admin UI componen… crate 2024-01-30T01:15:00Z 2025-01-30T22:47:57.847403Z
pysec-2024-26
6.5 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Security-… aiohttp 2024-01-29T23:15:00+00:00 2024-02-06T20:20:18.162431+00:00
pysec-2024-24
7.5 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. When usin… aiohttp 2024-01-29T23:15:00+00:00 2024-02-05T20:20:47.716944+00:00
pysec-2024-21
8.8 (3.1)
A vulnerability classified as critical was found in van_der_Schaar LAB TemporAI 0.0.3. Af… temporai 2024-01-26T17:15:00+00:00 2024-02-01T18:22:23.971296+00:00
pysec-2024-14
Apache Airflow, versions before 2.8.1, have a vulnerability that allows an authenticated … apache-airflow 2024-01-24T13:15:00+00:00 2024-01-24T16:22:57.416385+00:00
pysec-2024-13
Apache Airflow, versions before 2.8.1, have a vulnerability that allows a potential attac… apache-airflow 2024-01-24T13:15:00+00:00 2024-01-24T16:22:57.352530+00:00
pysec-2024-128
6.1 (3.1)
Label Studio, an open source data labeling tool had a remote import feature allowed users… label-studio 2024-01-24T00:15:00+00:00 2024-11-21T14:22:53.406222+00:00
pysec-2024-126
5.4 (3.1)
Label Studio is an a popular open source data labeling tool. Versions prior to 1.9.2 have… label-studio 2024-01-23T23:15:00+00:00 2024-11-21T14:22:53.235341+00:00
pysec-2024-23
5.3 (3.1)
Whoogle Search is a self-hosted metasearch engine. Versions 0.8.3 and prior have a limite… whoogle-search 2024-01-23T18:15:00+00:00 2024-02-02T07:18:33.382718+00:00
pysec-2024-22
6.1 (3.1)
TuiTse-TsuSin is a package for organizing the comparative corpus of Taiwanese Chinese cha… tuitse-tsusin 2024-01-23T18:15:00+00:00 2024-02-01T22:21:01.486817+00:00
pysec-2024-20
9.8 (3.1)
Whoogle Search is a self-hosted metasearch engine. In versions prior to 0.8.4, the `eleme… whoogle-search 2024-01-23T18:15:00+00:00 2024-01-30T18:22:32.803340+00:00
pysec-2024-19
6.1 (3.1)
Whoogle Search is a self-hosted metasearch engine. In versions 0.8.3 and prior, the `elem… whoogle-search 2024-01-23T18:15:00+00:00 2024-01-29T22:21:01.226431+00:00
pysec-2024-18
9.8 (3.1)
Whoogle Search is a self-hosted metasearch engine. In versions 0.8.3 and prior, the `wind… whoogle-search 2024-01-23T18:15:00+00:00 2024-01-29T22:21:01.170723+00:00
pysec-2024-16
5.4 (3.1)
Nautobot is a Network Source of Truth and Network Automation Platform built as a web appl… nautobot 2024-01-23T00:15:00+00:00 2024-01-29T20:20:58.065227+00:00
pysec-2024-9
MetaGPT through 0.6.4 allows the QaEngineer role to execute arbitrary code because RunCod… metagpt 2024-01-22T01:15:00+00:00 2024-01-22T07:20:28.329958+00:00
pysec-2024-12
LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feat… llama-index 2024-01-22T01:15:00Z 2024-02-10T01:22:25.611009Z
ID Description Type
ID Description Updated
ID Description Published Updated
mal-2026-820 Malicious code in json-web-sources (npm) 2026-02-09T17:25:32Z 2026-02-23T04:21:33Z
mal-2026-819 Malicious code in json-mapping-sources (npm) 2026-02-09T17:25:32Z 2026-02-23T04:21:33Z
mal-2026-822 Malicious code in react-svg-handler (npm) 2026-02-09T17:16:37Z 2026-02-23T04:21:35Z
mal-2026-818 Malicious code in thecorrectjames (PyPI) 2026-02-09T16:25:34Z 2026-02-09T16:25:50Z
mal-2026-817 Malicious code in ctf-pipline-test (PyPI) 2026-02-09T15:35:47Z 2026-02-09T16:28:03Z
mal-2026-816 Malicious code in @skyeng/libs (npm) 2026-02-09T15:12:24Z 2026-02-23T04:21:31Z
mal-2026-814 Malicious code in http-notifier-test (PyPI) 2026-02-09T09:29:06Z 2026-02-09T09:29:06Z
mal-2026-815 Malicious code in skydeo (PyPI) 2026-02-09T09:12:05Z 2026-02-09T09:12:05Z
mal-2026-813 Malicious code in teligram (PyPI) 2026-02-08T22:19:04Z 2026-02-08T22:19:04Z
mal-2026-812 Malicious code in hardixx-code (PyPI) 2026-02-08T21:21:34Z 2026-02-08T22:46:48Z
mal-2026-811 Malicious code in grokwrapper (PyPI) 2026-02-08T10:34:16Z 2026-02-26T09:50:46Z
mal-2026-809 Malicious code in ccxt-bullish (PyPI) 2026-02-08T07:47:19Z 2026-02-08T07:47:19Z
mal-2026-810 Malicious code in thread-pipeline-test (PyPI) 2026-02-08T07:41:19Z 2026-02-08T07:41:19Z
mal-2026-808 Malicious code in carcent (PyPI) 2026-02-06T15:23:01Z 2026-02-06T15:23:01Z
mal-2026-807 Malicious code in web3-sinon (npm) 2026-02-06T14:44:08Z 2026-02-06T18:21:39Z
mal-2026-806 Malicious code in web3-chain-sinon (npm) 2026-02-06T14:44:08Z 2026-02-06T18:21:39Z
mal-2026-805 Malicious code in aligned-arrays (npm) 2026-02-06T14:24:56Z 2026-02-06T16:19:56Z
mal-2025-193012 Malicious code in gridifies (PyPI) 2026-02-06T14:04:11Z 2026-02-14T18:48:58Z
mal-2026-804 Malicious code in breadcrumb-service (npm) 2026-02-06T12:30:53Z 2026-02-06T16:19:57Z
mal-2026-803 Malicious code in moveworks-pipeline-test (PyPI) 2026-02-06T11:36:06Z 2026-02-06T11:36:06Z
mal-2026-802 Malicious code in @sbseg-plugin/qbo-web-app-ui (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-801 Malicious code in @rsgweb/utils (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-800 Malicious code in @rsgweb/tina (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-799 Malicious code in @rsgweb/rockstar-account (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-798 Malicious code in @rsgweb/modules-core-www-page (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-797 Malicious code in @rsgweb/modules-core-feedback (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-796 Malicious code in @rdxportal/ui-components (npm) 2026-02-06T11:10:48Z 2026-02-06T16:19:56Z
mal-2026-795 Malicious code in @opposhop/nuxt-ssr-cache (npm) 2026-02-06T11:10:47Z 2026-02-06T16:19:56Z
mal-2026-792 Malicious code in @meli-lint/eslint-config-base (npm) 2026-02-06T11:10:47Z 2026-02-06T16:19:56Z
mal-2026-794 Malicious code in @meli-lint/eslint-config-tests-jest (npm) 2026-02-06T11:10:46Z 2026-02-06T16:19:56Z
ID Description Published Updated
wid-sec-w-2025-2826 Microsoft GitHub Enterprise: Schwachstelle ermöglicht Cross-Site Scripting 2025-12-11T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2825 MediaWiki: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-12-10T23:00:00.000+00:00 2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2824 pgAdmin: Schwachstelle ermöglicht Codeausführung 2025-12-10T23:00:00.000+00:00 2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2823 Drupal (Acquia Content Hub): Schwachstelle ermöglicht Darstellen falscher Informationen 2025-12-10T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2822 GitLab: Mehrere Schwachstellen 2025-12-10T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2821 Gogs: Schwachstelle ermöglicht Codeausführung 2025-12-10T23:00:00.000+00:00 2025-12-15T23:00:00.000+00:00
wid-sec-w-2025-2820 Red Hat Enterprise Linux (luksmeta): Schwachstelle ermöglicht Manipulation von Dateien 2025-12-10T23:00:00.000+00:00 2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2819 Jenkins: Mehrere Schwachstellen 2025-12-10T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2818 Pega Platform: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-10T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2817 Exim: Schwachstelle ermöglicht Codeausführung 2025-12-10T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2816 ImageMagick: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-10T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2815 xwiki: Schwachstelle ermöglicht Codeausführung 2025-12-10T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2814 Google Chrome/Microsoft Edge: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2025-12-10T23:00:00.000+00:00 2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2813 Webmin: Schwachstelle ermöglicht Codeausführung 2025-12-10T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2812 Mozilla Firefox: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-2811 xwiki: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2810 Bitdefender Antivirus, Total Security und Internet Security: Schwachstelle ermöglicht Privilegieneskalation 2025-12-09T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2809 AMD- und Intel-Prozessoren (PCIe IDE): Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2808 Insyde UEFI Firmware: Schwachstelle ermöglicht Codeausführung 2025-12-09T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2807 TianoCore EDK2: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-09T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-2806 Fortinet FortiAuthenticator: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2805 TianoCore EDK2: Schwachstelle ermöglicht Codeausführung 2025-12-09T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2804 Moxa MXsecurity: Schwachstelle ermöglicht Manipulation von Dateien 2025-12-09T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2803 MongoDB: Schwachstelle ermöglicht Beeinträchtigung von Integrität und Verfügbarkeit 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2802 Notepad++: Schwachstelle ermöglicht Codeausführung 2025-12-09T23:00:00.000+00:00 2026-02-03T23:00:00.000+00:00
wid-sec-w-2025-2801 Adobe Acrobat und Reader: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2800 Adobe ColdFusion: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2799 Docker Desktop: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-09T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2798 Red Hat OpenShift Service Mesh: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2026-02-16T23:00:00.000+00:00
wid-sec-w-2025-2797 Zoom Video Communications Rooms: Mehrere Schwachstellen 2025-12-09T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
ID Description Published Updated
ncsc-2025-0208 Kwetsbaarheden verholpen in Adobe Commerce 2025-06-30T12:59:12.105658Z 2025-06-30T12:59:12.105658Z
ncsc-2025-0207 Kwetsbaarheden verholpen in Adobe InDesign Desktop 2025-06-30T12:58:32.421661Z 2025-06-30T12:58:32.421661Z
ncsc-2025-0206 Kwetsbaarheden verholpen in Adobe Acrobat Reader 2025-06-30T12:57:43.622242Z 2025-06-30T12:57:43.622242Z
ncsc-2025-0205 Kwetsbaarheid verholpen in IBM WebSphere Application Server 2025-06-26T12:32:54.177712Z 2025-06-26T12:32:54.177712Z
ncsc-2025-0204 Kwetsbaarheden verholpen in Cisco ISE en ISE-PIC 2025-06-26T09:02:07.224036Z 2025-07-23T07:46:25.364521Z
ncsc-2025-0203 Kwetsbaarheid verholpen in Citrix NetScaler ADC en NetScaler Gateway 2025-06-25T14:54:38.413413Z 2025-06-25T14:54:38.413413Z
ncsc-2025-0202 Kwetsbaarheden verholpen in IBM InfoSphere Information Server 2025-06-22T08:19:47.485567Z 2025-06-22T08:19:47.485567Z
ncsc-2025-0201 Kwetsbaarheid verholpen in IBM Spectrum Protect Server 2025-06-22T08:17:03.146698Z 2025-06-22T08:17:03.146698Z
ncsc-2025-0200 Kwetsbaarheden verholpen in IBM QRadar SIEM 2025-06-20T11:04:50.445218Z 2025-06-20T11:04:50.445218Z
ncsc-2025-0199 Kwetsbaarheid verholpen in Cisco AnyConnect VPN voor Meraki MX en Z 2025-06-19T08:42:22.673078Z 2025-06-19T08:42:22.673078Z
ncsc-2025-0198 Kwetsbaarheden verholpen in Veeam Backup 2025-06-18T12:18:39.049977Z 2025-06-18T12:18:39.049977Z
ncsc-2025-0197 Kwetsbaarheid verholpen in GeoServer 2025-06-18T10:17:42.472544Z 2025-06-18T10:17:42.472544Z
ncsc-2025-0196 Kwetsbaarheden verholpen in Citrix NetScaler ADC en NetScaler Gateway 2025-06-18T08:32:32.792202Z 2025-07-18T09:51:52.738778Z
ncsc-2025-0195 Kwetsbaarheden verholpen in Apache Tomcat 2025-06-18T08:01:06.984131Z 2025-06-18T08:01:06.984131Z
ncsc-2025-0194 Kwetsbaarheden verholpen in Trend Micro Apex One en Apex Central 2025-06-12T11:12:33.408725Z 2025-06-12T11:12:33.408725Z
ncsc-2025-0193 Kwetsbaarheden verholpen in Ivanti Workspace Control 2025-06-12T11:08:41.247215Z 2025-06-12T11:08:41.247215Z
ncsc-2025-0192 Kwetsbaarheden verholpen in Fortinet FortiOS 2025-06-12T11:04:45.167843Z 2025-06-12T11:04:45.167843Z
ncsc-2025-0191 Kwetsbaarheden verholpen in Adobe Commerce en Magento 2025-06-11T06:58:19.840921Z 2025-06-11T06:58:19.840921Z
ncsc-2025-0190 Kwetsbaarheden verholpen in Microsoft Developer Tools 2025-06-10T18:46:10.932182Z 2025-06-10T18:46:10.932182Z
ncsc-2025-0189 Kwetsbaarheden verholpen in Microsoft Office 2025-06-10T18:45:25.061778Z 2025-06-10T18:45:25.061778Z
ncsc-2025-0188 Kwetsbaarheden verholpen in Microsoft Windows 2025-06-10T18:43:18.187461Z 2025-06-10T18:43:18.187461Z
ncsc-2025-0187 Kwetsbaarheden verholpen in Siemens producten 2025-06-10T13:11:56.672768Z 2025-06-10T13:11:56.672768Z
ncsc-2025-0186 Kwetsbaarheden verholpen in SAP Producten 2025-06-10T10:15:56.898255Z 2025-06-10T10:15:56.898255Z
ncsc-2025-0185 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-06-10T07:19:02.701613Z 2025-06-10T07:19:02.701613Z
ncsc-2025-0184 Kwetsbaarheden verholpen in HPE StoreOnce Software 2025-06-05T10:37:04.196801Z 2025-06-05T10:37:04.196801Z
ncsc-2025-0183 Kwetsbaarheid verholpen in Cisco Identity Services Engine voor cloudplatformen 2025-06-05T10:25:46.291683Z 2025-06-05T10:25:46.291683Z
ncsc-2025-0182 Kwetsbaarheden verholpen in Google Chrome en Microsoft Edge 2025-06-03T07:52:36.009178Z 2025-06-10T18:44:36.060357Z
ncsc-2025-0181 Kwetsbaarheid verholpen in Roundcube Webmail 2025-06-02T09:04:58.900416Z 2025-06-05T14:19:00.303593Z
ncsc-2025-0180 Kwetsbaarheid verholpen in IBM Tivoli Monitoring 2025-06-02T09:00:25.515472Z 2025-06-02T09:00:25.515472Z
ncsc-2025-0179 Kwetsbaarheid verholpen in Siemens SiPass Integrated 2025-05-27T11:42:46.878569Z 2025-05-27T11:42:46.878569Z
ID Description Published Updated
ID Description Published Updated
ssa-555292 SSA-555292: Security Vulnerabilities Fixed in SIMATIC Cloud Connect 7 V2.1 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-516174 SSA-516174: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W1750D 2023-05-09T00:00:00Z 2023-10-10T00:00:00Z
ssa-325383 SSA-325383: Multiple Vulnerabilities in SCALANCE LPE9403 before V2.1 2023-05-09T00:00:00Z 2023-05-09T00:00:00Z
ssa-813746 SSA-813746: BadAlloc Vulnerabilities in SCALANCE X-200, X-200IRT, and X-300 Switch Families 2023-04-11T00:00:00Z 2024-08-13T00:00:00Z
ssa-699404 SSA-699404: Observable Response Discrepancy in Mendix Forgot Password Module 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-642810 SSA-642810: JT File Parsing Vulnerability in JT Open and JT Utilities 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-632164 SSA-632164: External Entity Injection Vulnerability in Polarion ALM 2023-04-11T00:00:00Z 2023-05-09T00:00:00Z
ssa-629917 SSA-629917: Datalogics File Parsing Vulnerability in Teamcenter Visualization and JT2Go 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-572164 SSA-572164: Luxion KeyShot Vulnerability in Solid Edge 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-566905 SSA-566905: Multiple Denial of Service Vulnerabilities in the Webserver of Industrial Products 2023-04-11T00:00:00Z 2024-09-10T00:00:00Z
ssa-558014 SSA-558014: Third-Party Component Vulnerabilities in SCALANCE XCM332 before V2.2 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-511182 SSA-511182: Use of Static TLS Certificate Known Hard Coded Private Keys in Adaptec Maxview Application 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-479249 SSA-479249: Weak Encryption Vulnerability in SCALANCE X-200IRT Devices 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-472454 SSA-472454: Command Injection Vulnerability in CPCI85 Firmware of SICAM A8000 Devices 2023-04-11T00:00:00Z 2023-04-11T00:00:00Z
ssa-322980 SSA-322980: Denial of Service Vulnerability in SIPROTEC 5 Devices 2023-04-11T00:00:00Z 2025-11-11T00:00:00Z
ssa-116924 SSA-116924: Path Traversal Vulnerability in TIA Portal 2023-04-11T00:00:00Z 2024-08-13T00:00:00Z
ssa-851884 SSA-851884: Authentication Bypass Vulnerability in Mendix SAML Module 2023-03-14T00:00:00Z 2023-08-08T00:00:00Z
ssa-726834 SSA-726834: Denial of Service Vulnerability in the RADIUS Client of SIPROTEC 5 Devices 2023-03-14T00:00:00Z 2023-03-14T00:00:00Z
ssa-419740 SSA-419740: Multiple Third-Party Component Vulnerabilities in RUGGEDCOM and SCALANCE Products before V7.2 2023-03-14T00:00:00Z 2023-03-14T00:00:00Z
ssa-320629 SSA-320629: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.3 2023-03-14T00:00:00Z 2023-03-14T00:00:00Z
ssa-260625 SSA-260625: Security Vulnerabilities Fixed in RUGGEDCOM CROSSBOW V5.2 2023-03-14T00:00:00Z 2023-03-14T00:00:00Z
ssa-203374 SSA-203374: Multiple OpenSSL Vulnerabilities in SCALANCE W1750D Devices 2023-03-14T00:00:00Z 2024-04-09T00:00:00Z
ssa-953464 SSA-953464: Multiple Vulnerabilites in Siemens Brownfield Connectivity - Client before V2.15 2023-02-14T00:00:00Z 2023-02-14T00:00:00Z
ssa-847261 SSA-847261: Multiple SPP File Parsing Vulnerabilities in Tecnomatix Plant Simulation 2023-02-14T00:00:00Z 2023-03-14T00:00:00Z
ssa-836777 SSA-836777: JT File Parsing Vulnerabilities in JT Open, JT Utilities and Parasolid 2023-02-14T00:00:00Z 2023-02-14T00:00:00Z
ssa-744259 SSA-744259: Golang Vulnerabilities in Brownfield Connectivity - Gateway before V1.10.1 2023-02-14T00:00:00Z 2023-02-14T00:00:00Z
ssa-686975 SSA-686975: IPU 2022.3 Vulnerabilities in Siemens Industrial Products using Intel CPUs 2023-02-14T00:00:00Z 2025-04-08T00:00:00Z
ssa-658793 SSA-658793: Command Injection Vulnerability in SiPass integrated AC5102 / ACC-G2 and ACC-AP 2023-02-14T00:00:00Z 2023-02-14T00:00:00Z
ssa-640968 SSA-640968: Untrusted Search Path Vulnerability in TIA Project-Server formerly known as TIA Multiuser Server 2023-02-14T00:00:00Z 2024-08-13T00:00:00Z
ssa-617755 SSA-617755: Denial of Service Vulnerability in the SNMP Agent of SCALANCE X-200IRT Products 2023-02-14T00:00:00Z 2023-02-14T00:00:00Z
ID Description Published Updated
rhsa-2026:1871 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update 2026-02-04T05:16:20+00:00 2026-02-16T19:38:44+00:00
rhsa-2026:1555 Red Hat Security Advisory: OpenShift Container Platform 4.20.13 bug fix and security update 2026-02-04T04:50:43+00:00 2026-02-17T08:01:40+00:00
rhsa-2026:1872 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.4 security update 2026-02-04T04:47:19+00:00 2026-02-16T19:38:31+00:00
rhsa-2026:1556 Red Hat Security Advisory: OpenShift Container Platform 4.20.13 security and extras update 2026-02-04T04:16:28+00:00 2026-02-17T08:01:41+00:00
rhsa-2026:0980 Red Hat Security Advisory: OpenShift Container Platform 4.18.32 bug fix and security update 2026-02-03T21:03:49+00:00 2026-02-05T19:46:33+00:00
rhsa-2026:1820 Red Hat Security Advisory: kpatch-patch-5_14_0-611_9_1 security update 2026-02-03T18:41:33+00:00 2026-02-11T18:58:07+00:00
rhsa-2026:1859 Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update 2026-02-03T17:24:45+00:00 2026-02-11T15:13:31+00:00
rhsa-2026:1858 Red Hat Security Advisory: Red Hat Ceph Storage 2026-02-03T17:17:26+00:00 2026-02-11T15:13:31+00:00
rhsa-2026:1062 Red Hat Security Advisory: OpenShift Container Platform 4.18.32 bug fix and security update 2026-02-03T17:11:40+00:00 2026-02-17T08:01:14+00:00
rhsa-2026:1845 Red Hat Security Advisory: Red Hat build of Cryostat security update 2026-02-03T16:03:10+00:00 2026-02-17T12:41:31+00:00
rhsa-2026:1828 Red Hat Security Advisory: python3.12 security update 2026-02-03T15:42:58+00:00 2026-02-16T14:15:02+00:00
rhsa-2026:1825 Red Hat Security Advisory: curl security update 2026-02-03T15:41:33+00:00 2026-02-11T14:41:30+00:00
rhsa-2026:1813 Red Hat Security Advisory: golang security update 2026-02-03T14:57:18+00:00 2026-02-17T12:41:30+00:00
rhsa-2026:1823 Red Hat Security Advisory: JMC bug fix and enhancement update 2026-02-03T13:51:18+00:00 2026-02-04T18:56:06+00:00
rhsa-2026:1815 Red Hat Security Advisory: openssh security update 2026-02-03T13:31:42+00:00 2026-02-03T20:56:58+00:00
rhsa-2026:1814 Red Hat Security Advisory: golang security update 2026-02-03T12:29:57+00:00 2026-02-17T12:41:30+00:00
rhsa-2026:1805 Red Hat Security Advisory: resource-agents security update 2026-02-03T10:17:28+00:00 2026-02-17T12:41:30+00:00
rhsa-2026:1803 Red Hat Security Advisory: fence-agents security update 2026-02-03T09:45:07+00:00 2026-02-17T12:41:29+00:00
rhsa-2026:1795 Red Hat Security Advisory: resource-agents security update 2026-02-03T07:28:32+00:00 2026-02-17T09:27:45+00:00
rhsa-2026:1792 Red Hat Security Advisory: fence-agents security update 2026-02-03T07:25:42+00:00 2026-02-17T12:41:30+00:00
rhsa-2026:1791 Red Hat Security Advisory: fence-agents security update 2026-02-03T07:21:33+00:00 2026-02-17T12:41:28+00:00
rhsa-2026:1794 Red Hat Security Advisory: resource-agents security update 2026-02-03T07:18:11+00:00 2026-02-17T12:41:29+00:00
rhsa-2026:1793 Red Hat Security Advisory: resource-agents security update 2026-02-03T07:17:26+00:00 2026-02-17T12:41:29+00:00
rhsa-2026:1790 Red Hat Security Advisory: openssh security update 2026-02-03T07:04:31+00:00 2026-02-03T20:56:58+00:00
rhsa-2026:1773 Red Hat Security Advisory: iperf3 security update 2026-02-03T01:32:30+00:00 2026-02-10T19:02:40+00:00
rhsa-2026:1760 Red Hat Security Advisory: iperf3 security update 2026-02-02T22:02:25+00:00 2026-02-10T19:02:38+00:00
rhsa-2026:1606 Red Hat Security Advisory: OpenJDK 25.0.2 Security Update for Windows Builds 2026-02-02T20:20:07+00:00 2026-02-03T02:44:10+00:00
rhsa-2026:1735 Red Hat Security Advisory: fence-agents security update 2026-02-02T17:50:59+00:00 2026-02-17T12:41:27+00:00
rhsa-2026:1734 Red Hat Security Advisory: fence-agents security update 2026-02-02T17:45:39+00:00 2026-02-17T12:41:27+00:00
rhsa-2026:1733 Red Hat Security Advisory: openssl security update 2026-02-02T17:33:59+00:00 2026-02-12T19:28:18+00:00
ID Description Published Updated
icsa-25-254-08 Schneider Electric EcoStruxure 2025-08-12T04:00:00.000000Z 2025-09-09T04:00:00.000000Z
icsa-25-240-03 Schneider Electric Saitel DR & Saitel DP Remote Terminal Unit 2025-08-12T04:00:00.000000Z 2025-08-12T04:00:00.000000Z
icsa-25-238-03 Schneider Electric Modicon M340 Controller and Communication Modules 2025-08-12T04:00:00.000000Z 2025-08-12T04:00:00.000000Z
icsa-25-224-03 Schneider Electric EcoStruxure Power Monitoring Expert 2025-08-12T04:00:00.000000Z 2025-11-11T08:00:00.000000Z
icsa-25-226-22 Siemens Web Installer 2025-08-12T00:00:00.000000Z 2026-02-12T07:00:00.000000Z
icsa-25-226-21 Siemens BFCClient 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-20 Siemens RUGGEDCOM ROX II 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-19 Siemens SINUMERIK 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-18 Siemens SIMOTION SCOUT, SIMOTION SCOUT TIA, and SINAMICS STARTER 2025-08-12T00:00:00.000000Z 2025-10-14T00:00:00.000000Z
icsa-25-226-17 Siemens SINEC Traffic Analyzer 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-16 Siemens SICAM Q100/Q200 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-15 Siemens SINEC OS 2025-08-12T00:00:00.000000Z 2026-02-25T07:00:00.000000Z
icsa-25-226-14 Siemens RUGGEDCOM ROX II 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-13 Siemens SIMATIC RTLS Locating Manager 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-12 Siemens SIPROTEC 4 and SIPROTEC 4 Compact 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-11 Siemens SIMATIC S7-PLCSIM 2025-08-12T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
icsa-25-226-10 Siemens SIPROTEC 5 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-09 Siemens RUGGEDCOM APE1808 2025-08-12T00:00:00.000000Z 2026-01-14T22:05:42.880807Z
icsa-25-226-08 Siemens RUGGEDCOM CROSSBOW Station Access Controller 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-07 Siemens Third-Party Components in SINEC OS 2025-08-12T00:00:00.000000Z 2026-02-25T07:00:00.000000Z
icsa-25-226-06 Siemens Opcenter Quality 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-05 Siemens WIBU CodeMeter Runtime 2025-08-12T00:00:00.000000Z 2025-09-09T00:00:00.000000Z
icsa-25-226-04 Siemens Simcenter Femap 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-03 Siemens SIMATIC S7-PLCSIM 2025-08-12T00:00:00.000000Z 2025-12-09T00:00:00.000000Z
icsa-25-226-02 Siemens COMOS 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-01 Siemens SIMATIC RTLS Locating Manager 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-219-08 Yealink IP Phones and RPS (Redirect and Provisioning Service) 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-07 EG4 Electronics EG4 Inverters (Update B) 2025-08-07T06:00:00.000000Z 2025-09-09T06:00:00.000000Z
icsa-25-219-05 Packet Power EMX and EG 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-04 Rockwell Automation Arena 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
ID Description Published Updated
cisco-sa-ndfc-cmdinj-uvyzrkfr Cisco Nexus Dashboard Fabric Controller Arbitrary Command Execution Vulnerability 2024-10-02T16:00:00+00:00 2024-10-02T16:00:00+00:00
cisco-sa-ndfc-cidv-xvyx2wlj Cisco Nexus Dashboard Fabric Controller Configuration Backup Information Disclosure Vulnerability 2024-10-02T16:00:00+00:00 2024-10-02T16:00:00+00:00
cisco-sa-meraki-mx-vpn-dos-qtrhzg2 Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Denial of Service Vulnerabilities 2024-10-02T16:00:00+00:00 2025-06-02T14:22:28+00:00
cisco-sa-meraki-mx-vpn-dos-by-qwukqv7x Cisco Meraki MX and Z Series Teleworker Gateway AnyConnect VPN Session Takeover and Denial of Service Vulnerability 2024-10-02T16:00:00+00:00 2025-06-02T14:22:27+00:00
cisco-sa-ise-info-disc-zyf2neex Cisco Identity Services Engine Information Disclosure Vulnerability 2024-10-02T16:00:00+00:00 2024-10-02T16:00:00+00:00
cisco-sa-expw-escalation-3bkz77bd Cisco Expressway Series Privilege Escalation Vulnerability 2024-10-02T16:00:00+00:00 2024-10-02T16:00:00+00:00
cisco-sa-cimc-redfish-cominj-sbkv5zz Cisco UCS B-Series, Managed C-Series, and X-Series Servers Redfish API Command Injection Vulnerability 2024-10-02T16:00:00+00:00 2024-10-02T16:00:00+00:00
cisco-sa-webui-csrf-ycuyxkko Cisco IOS XE Software Web UI Cross-Site Request Forgery Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-vlan-dos-27pur5rt Cisco Catalyst 9000 Series Switches Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-10-04T21:53:25+00:00
cisco-sa-utd-snort3-dos-bypas-b4ouewxd Cisco Unified Threat Defense Snort Intrusion Prevention System Engine for Cisco IOS XE Software Security Policy Bypass and Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-sdwan-xss-zq4kpvyd Cisco Catalyst SD-WAN Manager Cross-Site Scripting Vulnerability 2024-09-25T16:00:00+00:00 2025-03-28T18:38:53+00:00
cisco-sa-sdwan-utd-dos-hdatqxs Cisco Catalyst SD-WAN Routers Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-sdw-vedos-kqffhps3 Cisco SD-WAN vEdge Software UDP Packet Validation Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-rsvp-dos-oypvgvzf Cisco IOS and IOS XE Software Resource Reservation Protocol Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-repacl-9exgnbpd Cisco IOS Software on Cisco Industrial Ethernet Series Switches Access Control List Bypass Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-pim-apbvfysj Cisco IOS XE Software Protocol Independent Multicast Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-ios-xe-sda-edge-dos-mbcbg9k Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-ios-webui-hfwnrgk Cisco IOS and IOS XE Software Web UI Cross-Site Request Forgery Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-httpsrvr-dos-yozthut Cisco IOS XE Software HTTP Server Telephony Services Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-dnac-ssh-e4uodasj Cisco Catalyst Center Static SSH Host Key Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-cpp-vfr-dos-nhhkggo Cisco IOS XE Software IPv4 Fragmentation Reassembly Denial of Service Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-c9800-cwa-acl-npsbhsna Cisco IOS XE Software for Wireless Controllers CWA Pre-Authentication ACL Bypass Vulnerability 2024-09-25T16:00:00+00:00 2024-09-25T16:00:00+00:00
cisco-sa-pak-mem-exhst-3ke9fefy Cisco IOS XR Software UDP Packet Memory Exhaustion Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-nso-auth-bypass-qnteesp Multiple Cisco Products Web-Based Management Interface Privilege Escalation Vulnerability 2024-09-11T16:00:00+00:00 2024-09-25T13:05:54+00:00
cisco-sa-l2services-2mvhdnuc Cisco IOS XR Software Network Convergence System Denial of Service Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-isis-xehpbvne Cisco IOS XR Software Segment Routing for Intermediate System-to-Intermediate System Denial of Service Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-iosxr-xml-tcpdos-zexvru2s Cisco IOS XR Software Dedicated XML Agent TCP Denial of Service Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-iosxr-shellutil-hcb278wd Cisco IOS XR Software CLI Arbitrary File Read Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-iosxr-priv-esc-crg5vhcq Cisco IOS XR Software CLI Privilege Escalation Vulnerability 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
cisco-sa-iosxr-ponctlr-ci-ohchmsfl Cisco Routed Passive Optical Network Controller Vulnerabilities 2024-09-11T16:00:00+00:00 2024-09-11T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2026-0989 Libxml2: unbounded relaxng include recursion leading to stack overflow 2026-01-02T00:00:00.000Z 2026-02-18T14:59:51.000Z
msrc_cve-2026-0915 getnetbyaddr and getnetbyaddr_r leak stack contents to DNS resovler 2026-01-02T00:00:00.000Z 2026-02-18T14:49:58.000Z
msrc_cve-2026-0897 Denial of Service in Keras via Excessive Memory Allocation in HDF5 Metadata 2026-01-02T00:00:00.000Z 2026-02-18T14:49:12.000Z
msrc_cve-2026-0861 Integer overflow in memalign leads to heap corruption 2026-01-02T00:00:00.000Z 2026-02-18T14:37:56.000Z
msrc_cve-2026-0719 Libsoup: signed to unsigned conversion error leading to stack-based buffer overflow in libsoup ntlm authentication 2026-01-02T00:00:00.000Z 2026-01-13T01:45:18.000Z
msrc_cve-2026-0716 Libsoup: out-of-bounds read in libsoup websocket frame processing 2026-01-02T00:00:00.000Z 2026-02-18T14:50:43.000Z
msrc_cve-2025-71163 dmaengine: idxd: fix device leaks on compat bind and unbind 2026-01-02T00:00:00.000Z 2026-02-28T01:03:17.000Z
msrc_cve-2025-71162 dmaengine: tegra-adma: Fix use-after-free 2026-01-02T00:00:00.000Z 2026-02-28T01:03:11.000Z
msrc_cve-2025-71161 dm-verity: disable recursive forward error correction 2026-01-02T00:00:00.000Z 2026-02-28T01:03:06.000Z
msrc_cve-2025-71160 netfilter: nf_tables: avoid chain re-validation if possible 2026-01-02T00:00:00.000Z 2026-02-28T01:03:01.000Z
msrc_cve-2025-71154 net: usb: rtl8150: fix memory leak on usb_submit_urb() failure 2026-01-02T00:00:00.000Z 2026-02-28T01:02:55.000Z
msrc_cve-2025-71152 net: dsa: properly keep track of conduit reference 2026-01-02T00:00:00.000Z 2026-02-28T01:02:50.000Z
msrc_cve-2025-71150 ksmbd: Fix refcount leak when invalid session is found on session lookup 2026-01-02T00:00:00.000Z 2026-02-28T01:02:44.000Z
msrc_cve-2025-71147 KEYS: trusted: Fix a memory leak in tpm2_load_cmd 2026-01-02T00:00:00.000Z 2026-02-28T01:02:39.000Z
msrc_cve-2025-71143 clk: samsung: exynos-clkout: Assign .num before accessing .hws 2026-01-02T00:00:00.000Z 2026-02-21T04:16:38.000Z
msrc_cve-2025-71138 drm/msm/dpu: Add missing NULL pointer check for pingpong interface 2026-01-02T00:00:00.000Z 2026-02-18T14:46:38.000Z
msrc_cve-2025-71137 octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" 2026-01-02T00:00:00.000Z 2026-02-18T14:41:20.000Z
msrc_cve-2025-71136 media: adv7842: Avoid possible out-of-bounds array accesses in adv7842_cp_log_status() 2026-01-02T00:00:00.000Z 2026-02-18T14:38:41.000Z
msrc_cve-2025-71133 RDMA/irdma: avoid invalid read in irdma_net_event 2026-01-02T00:00:00.000Z 2026-02-21T04:26:01.000Z
msrc_cve-2025-71132 smc91x: fix broken irq-context in PREEMPT_RT 2026-01-02T00:00:00.000Z 2026-02-18T14:40:28.000Z
msrc_cve-2025-71131 crypto: seqiv - Do not use req->iv after crypto_aead_encrypt 2026-01-02T00:00:00.000Z 2026-02-18T14:44:07.000Z
msrc_cve-2025-71130 drm/i915/gem: Zero-initialize the eb.vma array in i915_gem_do_execbuffer 2026-01-02T00:00:00.000Z 2026-02-18T14:44:46.000Z
msrc_cve-2025-71129 LoongArch: BPF: Sign extend kfunc call arguments 2026-01-02T00:00:00.000Z 2026-02-18T14:42:51.000Z
msrc_cve-2025-71127 wifi: mac80211: Discard Beacon frames to non-broadcast address 2026-01-02T00:00:00.000Z 2026-02-18T14:44:12.000Z
msrc_cve-2025-71125 tracing: Do not register unsupported perf events 2026-01-02T00:00:00.000Z 2026-02-18T14:45:24.000Z
msrc_cve-2025-71122 iommufd/selftest: Check for overflow in IOMMU_TEST_OP_ADD_RESERVED 2026-01-02T00:00:00.000Z 2026-02-21T04:19:03.000Z
msrc_cve-2025-71121 parisc: Do not reprogram affinitiy on ASP chip 2026-01-02T00:00:00.000Z 2026-02-18T14:43:31.000Z
msrc_cve-2025-71120 SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in gss_read_proxy_verf 2026-01-02T00:00:00.000Z 2026-02-18T14:48:45.000Z
msrc_cve-2025-71119 powerpc/kexec: Enable SMT before waking offline CPUs 2026-01-02T00:00:00.000Z 2026-02-18T14:40:05.000Z
msrc_cve-2025-71118 ACPICA: Avoid walking the Namespace if start_node is NULL 2026-01-02T00:00:00.000Z 2026-02-18T14:39:35.000Z
ID Description Published Updated
ID Description Updated
var-201804-1149 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2025-12-22T22:56:50.365000Z
var-202206-1186 Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may all… 2025-12-22T22:55:16.251000Z
var-201804-1185 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2025-12-22T22:55:15.903000Z
var-201109-0209 Google Chrome before 14.0.835.163 does not properly handle Cascading Style Sheets (CSS) t… 2025-12-22T22:55:15.389000Z
var-200701-0156 Integer overflow in the byte_swap_sbin function in bsd/ufs/ufs/ufs_byte_order.c in Mac OS… 2025-12-22T22:55:14.806000Z
var-201811-0912 Simultaneous Multi-threading (SMT) in processors can enable local users to exploit softwa… 2025-12-22T22:55:14.343000Z
var-202008-1140 In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> … 2025-12-22T22:55:02.218000Z
var-202104-1571 A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lea… 2025-12-22T22:54:50.569000Z
var-201904-1473 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:54:46.436000Z
var-200704-0225 Buffer overflow in the AirPortDriver module for AirPort in Apple Mac OS X 10.3.9 through … 2025-12-22T22:54:40.539000Z
var-202107-1361 fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly res… 2025-12-22T22:53:38.711000Z
var-200505-0350 The AppleScript Editor in Mac OS X 10.3.9 does not properly display script code for an ap… 2025-12-22T22:53:38.390000Z
var-201210-0267 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:53:37.280000Z
var-201302-0406 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:53:36.765000Z
var-201912-1848 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:53:01.637000Z
var-201408-0300 Off-by-one error in the krb5_encode_krbsecretkey function in plugins/kdb/ldap/libkdb_ldap… 2025-12-22T22:52:41.795000Z
var-201912-0509 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:52:41.462000Z
var-200408-0145 TCP, when using a large Window Size, makes it easier for remote attackers to guess sequen… 2025-12-22T22:51:38.200000Z
var-202006-1806 regcomp.c in Perl before 5.30.3 allows a buffer overflow via a crafted regular expression… 2025-12-22T22:51:26.528000Z
var-201804-1188 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2025-12-22T22:51:26.276000Z
var-201605-0078 The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote a… 2025-12-22T22:51:25.570000Z
var-200610-0022 User interface inconsistency in Workgroup Manager in Apple Mac OS X 10.4 through 10.4.7 a… 2025-12-22T22:51:19.217000Z
var-200701-0124 The ufs_lookup function in the Mac OS X 10.4.8 and FreeBSD 6.1 kernels allows local users… 2025-12-22T22:51:18.575000Z
var-201912-0648 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:51:17.375000Z
var-202210-1530 A logic issue was addressed with improved state management. This issue is fixed in tvOS 1… 2025-12-22T22:51:15.937000Z
var-201603-0222 The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denia… 2025-12-22T22:51:15.660000Z
var-201912-0624 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:50:54.806000Z
var-202205-2059 Out-of-bounds Write in GitHub repository vim/vim prior to 8.2. Vim is a cross-platform te… 2025-12-22T22:49:48.637000Z
var-200902-0880 International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in A… 2025-12-22T22:49:48.376000Z
var-202212-1523 The issue was addressed with improved memory handling. This issue is fixed in Safari 16.2… 2025-12-22T22:49:42.660000Z
ID Description Published Updated
jvndb-2024-009481 Insecure initial password configuration issue in SEIKO EPSON Web Config 2024-10-01T14:14+09:00 2024-11-12T10:25+09:00
jvndb-2024-000107 RevoWorks Cloud vulnerable to unintended process execution 2024-09-30T15:17+09:00 2024-09-30T15:17+09:00
jvndb-2024-003932 File Permissions Vulnerability in Hitachi Ops Center Common Services 2024-09-30T14:15+09:00 2024-09-30T14:15+09:00
jvndb-2024-000105 Multiple vulnerabilities in Smart-tab 2024-09-30T14:14+09:00 2024-09-30T14:14+09:00
jvndb-2024-009396 SNMP service is enabled by default in Sharp NEC Display Solutions projectors 2024-09-30T12:46+09:00 2024-09-30T12:46+09:00
jvndb-2024-000104 MF Teacher Performance Management System vulnerable to cross-site scripting 2024-09-27T15:00+09:00 2024-10-10T11:14+09:00
jvndb-2024-000103 The installer of e-Tax software(common program) vulnerable to privilege escalation 2024-09-24T16:12+09:00 2024-09-24T16:12+09:00
jvndb-2024-000102 Multiple NTT EAST Home GateWay/Hikari Denwa routers fail to restrict access permissions 2024-09-24T16:00+09:00 2024-10-18T11:02+09:00
jvndb-2024-000101 Multiple vulnerabilities in PLANEX COMMUNICATIONS network devices 2024-09-24T15:26+09:00 2024-09-24T15:26+09:00
jvndb-2024-008391 Multiple vulnerabilities in TAKENAKA ENGINEERING digital video recorders 2024-09-19T14:07+09:00 2024-09-19T14:07+09:00
jvndb-2024-000100 Multiple vulnerabilities in WordPress plugin "Welcart e-Commerce" 2024-09-18T14:34+09:00 2024-09-18T14:34+09:00
jvndb-2024-000099 Assimp vulnerable to heap-based buffer overflow 2024-09-18T14:20+09:00 2024-09-18T14:20+09:00
jvndb-2020-018328 Falsification and eavesdropping of contents across multiple websites via Web Rehosting services 2024-09-12T12:23+09:00 2024-09-12T12:23+09:00
jvndb-2023-027250 Security Problem in Web Browser Permission Mechanism 2024-09-11T18:19+09:00 2024-09-11T18:19+09:00
jvndb-2020-018327 Malleability attack against executables encrypted by CBC mode with no integrity check 2024-09-11T18:19+09:00 2024-09-11T18:19+09:00
jvndb-2024-000095 Multiple Alps System Integration products and the OEM products vulnerable to cross-site request forgery 2024-09-09T16:40+09:00 2024-09-09T16:40+09:00
jvndb-2024-000096 Pgpool-II vulnerable to information disclosure 2024-09-09T14:58+09:00 2024-09-09T14:58+09:00
jvndb-2024-000094 "@cosme" App fails to restrict custom URL schemes properly 2024-09-09T14:20+09:00 2024-09-09T14:20+09:00
jvndb-2024-000097 WordPress Plugin "Forminator" vulnerable to cross-site scripting 2024-09-09T13:51+09:00 2024-09-09T13:51+09:00
jvndb-2024-000098 Multiple products from KINGSOFT JAPAN vulnerable to path traversal 2024-09-06T15:07+09:00 2024-09-06T15:07+09:00
jvndb-2024-000090 Secure Boot bypass Vulnerability in PRIMERGY 2024-09-06T14:39+09:00 2024-09-06T14:39+09:00
jvndb-2024-000093 WordPress Plugin "Advanced Custom Fields" vulnerable to cross-site scripting 2024-09-04T13:01+09:00 2024-09-04T13:01+09:00
jvndb-2024-007002 Panasonic Control FPWIN Pro7 vulnerable to stack-based buffer overflow 2024-09-02T14:57+09:00 2024-09-02T14:57+09:00
jvndb-2024-000091 IPCOM vulnerable to information disclosure 2024-08-30T14:56+09:00 2024-08-30T14:56+09:00
jvndb-2024-000092 Multiple vulnerabilities in WordPress plugin "Carousel Slider" 2024-08-30T13:58+09:00 2024-08-30T13:58+09:00
jvndb-2024-000089 WindLDR and WindO/I-NV4 store sensitive information in cleartext 2024-08-29T15:08+09:00 2024-09-24T17:14+09:00
jvndb-2024-006787 xfpt vulnerable to stack-based buffer overflow 2024-08-29T14:07+09:00 2024-08-29T14:07+09:00
jvndb-2024-000088 Multiple vulnerabilities in ELECOM wireless LAN routers and access points 2024-08-27T14:40+09:00 2024-11-26T15:17+09:00
jvndb-2024-006646 Authentication Bypass Vulnerability in Hitachi Ops Center Common Services 2024-08-27T12:01+09:00 2024-08-27T12:01+09:00
jvndb-2024-006367 Unquoted Service Path in Hitachi Device Manager 2024-08-26T16:27+09:00 2024-08-26T16:27+09:00
ID Description Updated
ID Description Published Updated
suse-su-2026:0243-1 Security update for librsvg 2026-01-22T13:57:37Z 2026-01-22T13:57:37Z
suse-su-2026:20123-1 Security update for buildah 2026-01-22T13:01:23Z 2026-01-22T13:01:23Z
suse-su-2026:20122-1 Security update for go1.24 2026-01-22T12:53:24Z 2026-01-22T12:53:24Z
suse-su-2026:0238-1 Security update for dpdk 2026-01-22T12:26:26Z 2026-01-22T12:26:26Z
suse-su-2026:0237-1 Security update for wireshark 2026-01-22T12:26:09Z 2026-01-22T12:26:09Z
suse-su-2026:0236-1 Security update for busybox 2026-01-22T12:25:35Z 2026-01-22T12:25:35Z
suse-su-2026:0235-1 Security update for busybox 2026-01-22T12:25:06Z 2026-01-22T12:25:06Z
suse-su-2026:0234-1 Security update for libpng16 2026-01-22T12:24:45Z 2026-01-22T12:24:45Z
suse-su-2026:0233-1 Security update for python-virtualenv 2026-01-22T12:24:32Z 2026-01-22T12:24:32Z
suse-su-2026:0232-1 Security update for pgadmin4 2026-01-22T12:24:10Z 2026-01-22T12:24:10Z
suse-su-2026:0231-1 Security update for exiv2-0_26 2026-01-22T12:22:53Z 2026-01-22T12:22:53Z
suse-su-2026:0230-1 Security update for util-linux 2026-01-22T12:22:40Z 2026-01-22T12:22:40Z
suse-su-2026:0229-1 Security update for ffmpeg-4 2026-01-22T12:22:22Z 2026-01-22T12:22:22Z
suse-su-2026:0228-1 Security update for net-snmp 2026-01-22T12:21:52Z 2026-01-22T12:21:52Z
suse-su-2026:0227-1 Security update for net-snmp 2026-01-22T12:21:35Z 2026-01-22T12:21:35Z
suse-su-2026:0226-1 Security update for python-marshmallow 2026-01-22T12:20:21Z 2026-01-22T12:20:21Z
suse-su-2026:0225-1 Security update for net-snmp 2026-01-22T12:19:54Z 2026-01-22T12:19:54Z
suse-su-2026:0224-1 Security update for libtasn1 2026-01-22T12:18:33Z 2026-01-22T12:18:33Z
suse-su-2026:0223-1 Security update for libsodium 2026-01-22T12:18:02Z 2026-01-22T12:18:02Z
suse-su-2026:0222-1 Security update for python-tornado 2026-01-22T12:16:49Z 2026-01-22T12:16:49Z
suse-su-2026:0221-1 Security update for curl 2026-01-22T12:15:38Z 2026-01-22T12:15:38Z
suse-su-2026:0220-1 Security update for python-filelock 2026-01-22T12:15:26Z 2026-01-22T12:15:26Z
suse-su-2026:0219-1 Security update for go1.24 2026-01-22T12:13:47Z 2026-01-22T12:13:47Z
suse-su-2026:0218-1 Security update for go1.25 2026-01-22T12:12:47Z 2026-01-22T12:12:47Z
suse-su-2026:0217-1 Security update for keylime 2026-01-22T12:11:40Z 2026-01-22T12:11:40Z
suse-su-2026:0216-1 Security update for kernel-firmware 2026-01-22T12:11:01Z 2026-01-22T12:11:01Z
suse-su-2026:0215-1 Security update for gpg2 2026-01-22T12:10:17Z 2026-01-22T12:10:17Z
suse-su-2026:0214-1 Security update for gpg2 2026-01-22T12:09:32Z 2026-01-22T12:09:32Z
suse-su-2026:0213-1 Security update for ovmf 2026-01-22T12:08:49Z 2026-01-22T12:08:49Z
suse-su-2026:0212-1 Security update for ovmf 2026-01-22T12:08:32Z 2026-01-22T12:08:32Z
ID Description Published Updated
opensuse-su-2026:20013-1 Security update for avahi 2026-01-11T16:54:00Z 2026-01-11T16:54:00Z
opensuse-su-2026:20020-1 Security update for chromium 2026-01-10T02:17:54Z 2026-01-10T02:17:54Z
opensuse-su-2026:10026-1 python311-urllib3-2.6.2-1.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-su-2026:10025-1 python311-aiohttp-3.13.3-1.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-su-2026:10024-1 libsoup-2_4-1-2.74.3-13.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-su-2026:10023-1 libsoup-3_0-0-3.6.5-10.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-su-2026:10022-1 libsodium-devel-1.0.21-1.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-su-2026:10021-1 coredns-1.14.0-1.1 on GA media 2026-01-09T00:00:00Z 2026-01-09T00:00:00Z
opensuse-ru-2026:20010-1 Recommended update for trivy 2026-01-08T14:37:24Z 2026-01-08T14:37:24Z
opensuse-su-2026:10020-1 traefik-3.6.6-1.1 on GA media 2026-01-08T00:00:00Z 2026-01-08T00:00:00Z
opensuse-su-2026:10019-1 gdk-pixbuf-loader-libheif-1.21.1-1.1 on GA media 2026-01-08T00:00:00Z 2026-01-08T00:00:00Z
opensuse-su-2026:10018-1 gimp-3.0.6-4.1 on GA media 2026-01-08T00:00:00Z 2026-01-08T00:00:00Z
opensuse-su-2026:10017-1 curl-8.18.0-1.1 on GA media 2026-01-08T00:00:00Z 2026-01-08T00:00:00Z
opensuse-su-2026:10016-1 chromedriver-143.0.7499.192-1.1 on GA media 2026-01-08T00:00:00Z 2026-01-08T00:00:00Z
opensuse-su-2026:20003-1 Security update of valkey 2026-01-07T09:43:28Z 2026-01-07T09:43:28Z
opensuse-su-2026:10015-1 libwget4-2.2.1-1.1 on GA media 2026-01-07T00:00:00Z 2026-01-07T00:00:00Z
opensuse-su-2026:10014-1 python311-cbor2-5.8.0-2.1 on GA media 2026-01-07T00:00:00Z 2026-01-07T00:00:00Z
opensuse-su-2026:10013-1 apptainer-1.4.5-1.1 on GA media 2026-01-07T00:00:00Z 2026-01-07T00:00:00Z
opensuse-su-2026:10012-1 ImageMagick-7.1.2.12-1.1 on GA media 2026-01-07T00:00:00Z 2026-01-07T00:00:00Z
opensuse-su-2026:10011-1 python314-3.14.2-1.1 on GA media 2026-01-06T00:00:00Z 2026-01-06T00:00:00Z
opensuse-su-2026:10010-1 python311-filelock-3.20.2-1.1 on GA media 2026-01-06T00:00:00Z 2026-01-06T00:00:00Z
opensuse-su-2026:10009-1 log4j-2.20.0-1.1 on GA media 2026-01-06T00:00:00Z 2026-01-06T00:00:00Z
opensuse-su-2026:10008-1 gpsd-3.27.3-1.1 on GA media 2026-01-06T00:00:00Z 2026-01-06T00:00:00Z
opensuse-su-2026:10007-1 c-ares-devel-1.34.6-1.1 on GA media 2026-01-06T00:00:00Z 2026-01-06T00:00:00Z
opensuse-su-2026:10006-1 dcmtk-3.7.0-1.1 on GA media 2026-01-05T00:00:00Z 2026-01-05T00:00:00Z
opensuse-su-2026:10005-1 python312-Django6-6.0-1.1 on GA media 2026-01-03T00:00:00Z 2026-01-03T00:00:00Z
opensuse-su-2026:10004-1 fluidsynth-2.5.2-1.1 on GA media 2026-01-03T00:00:00Z 2026-01-03T00:00:00Z
opensuse-su-2026:20001-1 Security update for sssd 2026-01-02T16:58:16Z 2026-01-02T16:58:16Z
opensuse-su-2026:20002-1 Security update for MozillaThunderbird 2026-01-02T12:14:18Z 2026-01-02T12:14:18Z
opensuse-su-2026:10003-1 python311-marshmallow-3.26.2-1.1 on GA media 2026-01-02T00:00:00Z 2026-01-02T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-apache-2025-65082 Apache HTTP Server: CGI environment variable override 2025-12-09T11:38:18.501Z 2025-12-09T12:08:00.393Z
bit-apache-2025-59775 Apache HTTP Server: NTLM Leakage on Windows through UNC SSRF 2025-12-09T11:38:16.754Z 2025-12-09T12:08:00.393Z
bit-apache-2025-58098 Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... 2025-12-09T11:38:15.033Z 2025-12-09T12:08:00.393Z
bit-apache-2025-55753 Apache HTTP Server: mod_md (ACME), unintended retry intervals 2025-12-09T11:38:13.178Z 2025-12-09T12:08:00.393Z
bit-pgbouncer-2025-12819 Untrusted search path in auth_query connection in PgBouncer 2025-12-06T11:44:20.875Z 2025-12-28T12:07:40.562Z
bit-mongodb-2025-13507 Time-series operations may cause internal BSON size limit to be exceed 2025-12-06T11:42:49.537Z 2025-12-06T12:06:23.267Z
bit-mongodb-2025-12893 Improper Certificate Validation May Allow Successful TLS Handshaking Despite Invalid Extended Key Usage Fields in MongoDB Server 2025-12-06T11:42:47.994Z 2025-12-06T12:06:23.267Z
bit-mongodb-2025-11979 Use-after-free in the MongoDB server query planner may lead to crash or undefined behavior 2025-12-06T11:42:46.232Z 2025-12-06T12:06:23.267Z
bit-golang-2025-61727 Improper application of excluded DNS name constraints when verifying wildcard names in crypto/x509 2025-12-06T11:41:09.464Z 2025-12-06T12:06:23.267Z
bit-envoy-2025-66220 Envoy’s TLS certificate matcher for `match_typed_subject_alt_names` may incorrectly treat certificates containing an embedded null byte 2025-12-06T11:38:21.122Z 2025-12-09T12:08:00.393Z
bit-envoy-2025-64763 Envoy forwards early CONNECT data in TCP proxy mode 2025-12-06T11:38:19.488Z 2025-12-09T12:08:00.393Z
bit-envoy-2025-64527 Envoy crashes when JWT authentication is configured with the remote JWKS fetching 2025-12-06T11:38:17.923Z 2025-12-09T12:08:00.393Z
bit-python-2025-6075 Quadratic complexity in os.path.expandvars() with user-controlled template 2025-12-05T11:13:34.373Z 2025-12-05T11:40:36.013Z
bit-python-2025-13837 Out-of-memory when loading Plist 2025-12-05T11:13:08.742Z 2025-12-23T12:07:14.245Z
bit-python-2025-13836 Excessive read buffering DoS in http.client 2025-12-05T11:13:05.077Z 2026-01-27T09:14:53.416Z
bit-libpython-2025-6075 Quadratic complexity in os.path.expandvars() with user-controlled template 2025-12-05T11:08:28.184Z 2025-12-05T11:40:36.013Z
bit-libpython-2025-13837 Out-of-memory when loading Plist 2025-12-05T11:07:43.325Z 2025-12-23T12:07:14.245Z
bit-libpython-2025-13836 Excessive read buffering DoS in http.client 2025-12-05T11:07:36.854Z 2026-01-27T09:14:53.416Z
bit-golang-2025-61729 Excessive resource consumption when printing error string for host certificate validation in crypto/x509 2025-12-04T11:41:52.637Z 2025-12-04T12:07:39.656Z
bit-activemq-2025-27533 Apache ActiveMQ: Unchecked buffer length can cause excessive memory allocation 2025-12-03T14:35:40.173Z 2025-12-03T15:08:24.036Z
bit-activemq-2023-46604 Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack 2025-12-03T14:35:38.733Z 2025-12-03T15:08:24.036Z
bit-activemq-2022-41678 Apache ActiveMQ: Insufficient API restrictions on Jolokia allow authenticated users to perform RCE 2025-12-03T14:35:37.010Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-26117 ActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind 2025-12-03T14:35:35.296Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21351 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:33.786Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21350 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:32.295Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21349 A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host 2025-12-03T14:35:30.789Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21348 XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos) 2025-12-03T14:35:29.299Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21347 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:27.664Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21346 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:26.027Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21345 XStream is vulnerable to a Remote Command Execution attack 2025-12-03T14:35:24.382Z 2025-12-03T15:08:24.036Z
ID Description Published Updated
cleanstart-2026-kq33111 Cancelling a query (e 2026-01-30T15:02:22.834896Z 2026-01-29T18:58:54Z
cleanstart-2026-rl45001 tar 2026-01-30T15:01:22.967754Z 2026-01-29T18:58:54Z
cleanstart-2026-ys66739 Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3 2026-01-30T15:00:53.250874Z 2026-01-29T18:58:54Z
cleanstart-2026-oo42606 Cancelling a query (e 2026-01-30T15:00:52.876848Z 2026-01-29T18:58:54Z
cleanstart-2026-xs24366 Cancelling a query (e 2026-01-30T15:00:52.862887Z 2026-01-29T18:58:54Z
cleanstart-2026-bj28314 Within HostnameError 2026-01-30T15:00:22.906070Z 2026-01-29T18:58:54Z
cleanstart-2026-pd17156 Cancelling a query (e 2026-01-30T15:00:22.872625Z 2026-01-29T18:58:54Z
cleanstart-2026-bj35875 tar 2026-01-30T14:59:52.925710Z 2026-01-29T18:58:54Z
cleanstart-2026-yj61997 Cancelling a query (e 2026-01-30T14:59:52.788649Z 2026-01-29T18:58:54Z
cleanstart-2026-nd19988 Cancelling a query (e 2026-01-30T14:59:22.824513Z 2026-01-29T18:58:54Z
cleanstart-2026-aj76138 tar 2026-01-30T14:58:52.957172Z 2026-01-29T18:58:54Z
cleanstart-2026-vf66781 Within HostnameError 2026-01-30T14:57:22.763452Z 2026-01-29T18:58:54Z
cleanstart-2026-kv78041 processing time for parsing some invalid inputs scales non-linearly with respect to the size of the input 2026-01-30T14:56:23.125184Z 2026-01-29T18:58:54Z
cleanstart-2026-ez55127 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:54:23.021613Z 2026-01-29T18:58:54Z
cleanstart-2026-ew68942 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:53:53.713652Z 2026-01-29T18:58:54Z
cleanstart-2026-kf66928 Within HostnameError 2026-01-30T14:53:23.030035Z 2026-01-29T18:58:54Z
cleanstart-2026-dd39330 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:53:22.793144Z 2026-01-29T18:58:54Z
cleanstart-2026-ld23143 Cancelling a query (e 2026-01-30T14:52:52.766441Z 2026-01-29T18:58:54Z
cleanstart-2026-fr57243 Cancelling a query (e 2026-01-30T14:52:52.746706Z 2026-01-29T18:58:54Z
cleanstart-2026-nz19387 Within HostnameError 2026-01-30T14:52:23.218213Z 2026-01-29T18:58:54Z
cleanstart-2026-ol60454 Within HostnameError 2026-01-30T14:52:23.086717Z 2026-01-29T18:58:54Z
cleanstart-2026-il55587 Cancelling a query (e 2026-01-30T14:51:52.694658Z 2026-01-29T18:58:54Z
cleanstart-2026-cb20757 Cancelling a query (e 2026-01-30T14:51:22.636956Z 2026-01-29T18:58:54Z
cleanstart-2026-ia26094 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:51:22.634752Z 2026-01-29T18:58:54Z
cleanstart-2026-do68350 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:50:22.886394Z 2026-01-29T18:58:54Z
cleanstart-2026-ph90623 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:49:52.682724Z 2026-01-29T18:58:54Z
cleanstart-2026-xo66167 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:49:52.662006Z 2026-01-29T18:58:54Z
cleanstart-2026-mi26039 Within HostnameError 2026-01-30T14:49:22.768843Z 2026-01-29T18:58:54Z
cleanstart-2026-gn47077 Within HostnameError 2026-01-30T14:48:53.159123Z 2026-01-29T18:58:54Z
cleanstart-2026-uu20906 excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate 2026-01-30T14:48:52.774829Z 2026-01-29T18:58:54Z
ID Description Published Updated
drupal-contrib-2022-048 2022-07-13T15:44:42.000Z 2023-08-10T21:36:29.000Z
drupal-contrib-2022-047 2022-06-29T17:25:39.000Z 2023-08-10T21:35:49.000Z
drupal-contrib-2022-046 2022-06-29T16:51:17.000Z 2023-08-10T21:35:30.000Z
drupal-contrib-2022-045 2022-05-25T17:03:55.000Z 2023-08-10T21:35:00.000Z
drupal-contrib-2022-044 2022-05-25T16:53:45.000Z 2023-08-10T21:33:53.000Z
drupal-contrib-2022-043 2022-05-25T16:49:46.000Z 2023-08-10T21:32:49.000Z
drupal-contrib-2022-042 2022-05-25T16:45:17.000Z 2023-08-10T21:02:21.000Z
drupal-contrib-2022-040 2022-05-18T17:13:43.000Z 2023-08-10T21:05:48.000Z
drupal-contrib-2022-038 2022-05-04T16:26:47.000Z 2023-08-10T21:00:44.000Z
drupal-contrib-2022-036 2022-05-04T16:11:07.000Z 2023-08-10T21:43:53.000Z
drupal-contrib-2022-035 2022-05-04T16:06:53.000Z 2023-08-10T21:43:30.000Z
drupal-contrib-2022-032 2022-03-30T18:23:29.000Z 2023-08-10T21:41:21.000Z
drupal-contrib-2022-029 2022-03-09T18:57:52.000Z 2023-08-10T21:39:44.000Z
drupal-contrib-2022-028 2022-03-09T18:28:39.000Z 2023-08-10T21:39:01.000Z
drupal-contrib-2022-027 2022-02-23T17:18:07.000Z 2023-08-10T21:37:54.000Z
drupal-contrib-2022-026 2022-02-23T17:10:52.000Z 2023-08-11T13:50:17.000Z
drupal-contrib-2022-025 2022-02-16T17:07:35.000Z 2023-08-11T13:49:36.000Z
drupal-contrib-2022-024 2022-02-09T15:20:08.000Z 2023-08-11T13:49:13.000Z
drupal-contrib-2022-023 2022-02-09T15:17:56.000Z 2023-08-11T13:48:49.000Z
drupal-contrib-2022-014 2022-01-26T17:18:11.000Z 2023-08-11T13:48:18.000Z
drupal-contrib-2022-021 2022-01-25T18:41:04.000Z 2023-08-11T13:47:07.000Z
drupal-contrib-2022-019 2022-01-25T18:40:00.000Z 2023-10-24T16:11:02.000Z
drupal-contrib-2022-018 2022-01-25T18:39:50.000Z 2023-08-11T13:46:46.000Z
drupal-contrib-2022-017 2022-01-25T18:39:38.000Z 2023-08-11T13:56:08.000Z
drupal-contrib-2022-016 2022-01-25T18:39:26.000Z 2023-10-06T19:27:29.000Z
drupal-contrib-2022-015 2022-01-25T18:39:13.000Z 2023-08-11T14:02:31.000Z
drupal-contrib-2022-013 2022-01-25T18:37:38.000Z 2024-01-25T20:19:13.000Z
drupal-contrib-2022-012 2022-01-25T18:37:20.000Z 2023-08-11T13:55:41.000Z
drupal-contrib-2022-009 2022-01-25T18:36:37.000Z 2023-08-11T14:02:59.000Z
drupal-contrib-2022-008 2022-01-25T18:36:22.000Z 2023-08-11T14:01:01.000Z
ID Description Published Updated
cnvd-2026-06107 Soda PDF Desktop代码执行漏洞 2026-01-09 2026-01-21
cnvd-2026-05016 UTT 520W formUser函数缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-05015 UTT 512W formConfigCliForEngineerOnly函数缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-05014 Tenda WH450 goform/PPTPUserSetting文件缓冲区溢出漏洞 2026-01-09 2026-01-14
cnvd-2026-04543 Tenda AC23缓冲区溢出漏洞 2026-01-09 2026-01-13
cnvd-2026-03262 Tenda WH450命令注入漏洞 2026-01-09 2026-01-09
cnvd-2026-03261 Echo Specto CM跨站脚本漏洞 2026-01-09 2026-01-13
cnvd-2026-03090 Tenda WH450 goform/PPTPServer文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03089 Tenda WH450 goform/PPTPDClient文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03088 Tenda WH450 goform/PPTPClient文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03087 Tenda WH450 goform/Natlimit文件缓冲区溢出漏洞 2026-01-09 2026-01-09
cnvd-2026-03086 FluentCMS输入验证错误漏洞 2026-01-09 2026-01-09
cnvd-2026-02980 WordPress插件Shortcodes and extra features for Phlox theme信息泄露漏洞 2026-01-09 2026-01-13
cnvd-2026-02887 WordPress ilGhera Support System for WooCommerce plugin未经授权的数据修改漏洞 2026-01-09 2026-01-09
cnvd-2026-02886 WordPress Geo Controller plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-02885 WordPress FS Registration Password plugin权限提升漏洞 2026-01-09 2026-01-09
cnvd-2026-02884 WordPress FlexTable plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-02883 WordPress FastDup plugin路径遍历漏洞 2026-01-09 2026-01-09
cnvd-2026-02882 WordPress Car Rental Manager plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02881 WordPress Calafate plugin文件包含漏洞 2026-01-09 2026-01-09
cnvd-2026-02880 WordPress Better Business Reviews plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02879 WordPress AffiliateX plugin缺少授权漏洞 2026-01-09 2026-01-09
cnvd-2026-02878 WordPress Accordion plugin跨站脚本漏洞 2026-01-09 2026-01-09
cnvd-2026-04470 北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞(CNVD-C-2026-35542) 2026-01-08 2026-01-21
cnvd-2026-04457 北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞(CNVD-C-2026-33516) 2026-01-07 2026-01-21
cnvd-2026-06098 Tenda M3 /goform/exeCommand文件堆栈缓冲区溢出漏洞 2026-01-06 2026-01-21
cnvd-2026-06097 Tenda M3 /goform/setAdPushInfo文件堆栈缓冲区溢出漏洞 2026-01-06 2026-01-21
cnvd-2026-06096 Tenda M3 /goform/setAdInfoDetail文件堆缓冲区溢出漏洞 2026-01-06 2026-01-21
cnvd-2026-06095 Tenda M3 /goform/setVlanInfo文件堆栈缓冲区溢出漏洞 2026-01-06 2026-01-21
cnvd-2026-02877 Online Music Site AlbumByCategory.php文件SQL注入漏洞 2026-01-06 2026-01-12
ID Description Published Updated
certfr-2025-avi-1099 Multiples vulnérabilités dans les produits Mozilla 2025-12-11T00:00:00.000000 2025-12-11T00:00:00.000000
certfr-2025-avi-1098 Vulnérabilité dans Broadcom Carbon Black Cloud 2025-12-11T00:00:00.000000 2025-12-11T00:00:00.000000
certfr-2025-avi-1097 Vulnérabilité dans les produits Mitel 2025-12-11T00:00:00.000000 2026-01-06T00:00:00.000000
certfr-2025-avi-1096 Multiples vulnérabilités dans Google Chrome 2025-12-11T00:00:00.000000 2025-12-15T00:00:00.000000
certfr-2025-avi-1095 Multiples vulnérabilités dans GitLab 2025-12-11T00:00:00.000000 2025-12-11T00:00:00.000000
certfr-2025-avi-1094 Multiples vulnérabilités dans les produits Microsoft 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1093 Vulnérabilité dans Microsoft Azure Monitor Agent 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1092 Multiples vulnérabilités dans Microsoft Windows 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1091 Multiples vulnérabilités dans Microsoft Office 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1090 Vulnérabilité dans les produits Moxa 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1089 Vulnérabilité dans les produits Bitdefender 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1088 Multiples vulnérabilités dans Ivanti Endpoint Manager (EPM) 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1087 Multiples vulnérabilités dans les produits Mozilla 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1086 Multiples vulnérabilités dans les produits Intel 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1085 Multiples vulnérabilités dans les produits Adobe 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1084 Multiples vulnérabilités dans les produits Fortinet 2025-12-10T00:00:00.000000 2025-12-10T00:00:00.000000
certfr-2025-avi-1083 Multiples vulnérabilités dans les produits Siemens 2025-12-09T00:00:00.000000 2025-12-09T00:00:00.000000
certfr-2025-avi-1082 Multiples vulnérabilités dans les produits Microsoft 2025-12-09T00:00:00.000000 2025-12-09T00:00:00.000000
certfr-2025-avi-1081 Vulnérabilité dans Citrix XenServer 2025-12-09T00:00:00.000000 2025-12-09T00:00:00.000000
certfr-2025-avi-1080 Multiples vulnérabilités dans VMware Tanzu RabbitMQ 2025-12-09T00:00:00.000000 2025-12-09T00:00:00.000000
certfr-2025-avi-1079 Multiples vulnérabilités dans les produits SAP 2025-12-09T00:00:00.000000 2025-12-09T00:00:00.000000
certfr-2025-avi-1078 Multiples vulnérabilités dans les produits Microsoft 2025-12-08T00:00:00.000000 2025-12-08T00:00:00.000000
certfr-2025-avi-1077 Multiples vulnérabilités dans Traefik 2025-12-08T00:00:00.000000 2025-12-08T00:00:00.000000
certfr-2025-avi-1076 Multiples vulnérabilités dans MISP 2025-12-08T00:00:00.000000 2025-12-24T00:00:00.000000
certfr-2025-avi-1075 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
certfr-2025-avi-1074 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
certfr-2025-avi-1073 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
certfr-2025-avi-1072 Multiples vulnérabilités dans les produits IBM 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
certfr-2025-avi-1071 Multiples vulnérabilités dans Apache HTTP Server 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
certfr-2025-avi-1070 Multiples vulnérabilités dans Microsoft CBL Mariner 2025-12-05T00:00:00.000000 2025-12-05T00:00:00.000000
ID Description Published Updated
certa-2008-ale-008 Vulnérabilité du navigateur Safari 2008-06-02T00:00:00.000000 2008-06-20T00:00:00.000000
certa-2008-ale-007 Multiples vulnérabilités dans Apple iCal 2008-05-23T00:00:00.000000 2008-05-29T00:00:00.000000
certa-2008-ale-006 Vulnérabilités dans HP OpenView NNM 2008-04-18T00:00:00.000000 2010-06-10T00:00:00.000000
certa-2008-ale-005 Vulnérabilité dans Microsoft Jet Database Engine 2008-03-25T00:00:00.000000 2008-05-14T00:00:00.000000
certa-2008-ale-004 Vulnérabilité dans VMware 2008-02-27T00:00:00.000000 2008-04-16T00:00:00.000000
certa-2008-ale-003 Vulnérabilité dans Excel 2008-01-16T00:00:00.000000 2008-03-12T00:00:00.000000
certa-2008-ale-002 Vulnérabilité dans Joomla! 2008-01-14T00:00:00.000000 2008-02-25T00:00:00.000000
certa-2008-ale-001 Vulnérabilité dans Apple QuickTime 2008-01-11T00:00:00.000000 2008-02-07T00:00:00.000000
certa-2007-ale-017 Vulnérabilité dans la gestion RTSP d'Apple QuickTime 2007-11-27T00:00:00.000000 2007-12-14T00:00:00.000000
certa-2007-ale-016 Vulnérabilité d'Oracle 10g 2007-11-16T00:00:00.000000 2007-11-16T00:00:00.000000
certa-2007-ale-015 Vulnérabilité dans le traitement des URI sous Windows 2007-10-10T00:00:00.000000 2007-11-14T00:00:00.000000
certa-2007-ale-014 Vulnérabilité dans Apple QuickTime 2007-09-13T00:00:00.000000 2007-10-12T00:00:00.000000
certa-2007-ale-013 Vulnérabilité dans Mozilla Firefox 2007-07-27T00:00:00.000000 2007-07-31T00:00:00.000000
certa-2007-ale-012 Multiples vulnérabilités dans Mozilla Firefox 2007-06-06T00:00:00.000000 2007-07-18T00:00:00.000000
certa-2007-ale-011 Vulnérabilité du composant d'indexation des serveurs Microsoft IIS 2007-06-06T00:00:00.000000 2013-02-19T00:00:00.000000
certa-2007-ale-010 Vulnérabilité de Microsoft DNS Server 2007-04-16T00:00:00.000000 2007-05-09T00:00:00.000000
certa-2007-ale-009 Vulnérabilité dans BrightStor ARCServe Backup 2007-03-30T00:00:00.000000 2007-04-27T00:00:00.000000
certa-2007-ale-008 Vulnérabilité dans Mirosoft Windows 2007-03-29T00:00:00.000000 2007-04-03T00:00:00.000000
certa-2007-ale-007 Vulnérabilité de Microsoft Windows Explorer 2007-03-09T00:00:00.000000 2008-10-09T00:00:00.000000
certa-2007-ale-006 Vulnérabilité dans le logiciel Microsoft Word 2007-02-16T00:00:00.000000 2007-05-09T00:00:00.000000
certa-2007-ale-005 Vulnérabilité de Sun Solaris 2007-02-12T00:00:00.000000 2008-09-18T00:00:00.000000
certa-2007-ale-004 Vulnérabilité dans Microsoft Office 2007-02-03T00:00:00.000000 2007-02-13T00:00:00.000000
certa-2007-ale-003 Filoutage contre le site voyages-sncf.com 2007-01-15T00:00:00.000000 2007-01-15T00:00:00.000000
certa-2007-ale-002 Vulnérabilité dans Windows 2007-01-12T00:00:00.000000 2007-04-03T00:00:00.000000
certa-2007-ale-001 Vulnérablité dans Apple Quicktime 2007-01-04T00:00:00.000000 2007-01-24T00:00:00.000000
certa-2006-ale-014 Vulnérabilités dans Microsoft Word 2006-12-06T00:00:00.000000 2007-02-14T00:00:00.000000
certa-2006-ale-013 Vulnérabilité de MacOS X 2006-11-23T00:00:00.000000 2007-02-16T00:00:00.000000
certa-2006-ale-012 Vulnérabilité de Microsoft PowerPoint 2006-10-13T00:00:00.000000 2008-10-09T00:00:00.000000
certa-2006-ale-011 Multiples vulnérabilités de produits Microsoft 2006-08-31T00:00:00.000000 2006-10-11T00:00:00.000000
certa-2006-ale-010 Vulnérabilité dans Internet Explorer 2006-08-23T00:00:00.000000 2006-08-25T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated