Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-20947 |
8.8 (3.1)
|
Microsoft SharePoint Server Remote Code Execution Vuln… |
Microsoft |
Microsoft SharePoint Enterprise Server 2016 |
2026-01-13T17:56:52.105Z | 2026-02-26T15:04:24.921Z |
| CVE-2025-62673 |
8.6 (4.0)
|
Heap-based Buffer Overflow Vulnerability in TP-Link Ar… |
TP-Link Systems Inc. |
Archer AX53 v1.0 |
2026-02-03T18:53:32.813Z | 2026-02-26T15:04:24.789Z |
| CVE-2026-20843 |
7.8 (3.1)
|
Windows Routing and Remote Access Service (RRAS) Eleva… |
Microsoft |
Windows 10 Version 1607 |
2026-01-13T17:56:52.600Z | 2026-02-26T15:04:24.630Z |
| CVE-2025-65079 |
6.9 (4.0)
|
Heap-based buffer overflow vulnerability in Postscript… |
Lexmark |
MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ |
2026-02-03T20:23:24.405Z | 2026-02-26T15:04:24.490Z |
| CVE-2026-20848 |
7.5 (3.1)
|
Windows SMB Server Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-01-13T17:56:53.183Z | 2026-02-26T15:04:24.337Z |
| CVE-2025-65080 |
6.9 (4.0)
|
Type confusion vulnerability in Postscript interpreter |
Lexmark |
MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ |
2026-02-03T20:35:54.592Z | 2026-02-26T15:04:24.195Z |
| CVE-2026-20849 |
7.5 (3.1)
|
Windows Kerberos Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-01-13T17:56:53.833Z | 2026-02-26T15:04:24.056Z |
| CVE-2025-65081 |
6.9 (4.0)
|
Out-of-bounds read vulnerability in Postscript interpreter |
Lexmark |
MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ |
2026-02-03T20:39:14.501Z | 2026-02-26T15:04:23.914Z |
| CVE-2026-20853 |
7.4 (3.1)
|
Windows WalletService Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 1607 |
2026-01-13T17:56:54.332Z | 2026-02-26T15:04:23.756Z |
| CVE-2025-65077 |
8.8 (4.0)
|
Relative path traversal vulnerability in Embedded Solu… |
Lexmark |
MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ |
2026-02-03T20:44:32.330Z | 2026-02-26T15:04:23.610Z |
| CVE-2026-20854 |
7.5 (3.1)
|
Windows Local Security Authority Subsystem Service (LS… |
Microsoft |
Windows 11 Version 24H2 |
2026-01-13T17:56:54.915Z | 2026-02-26T15:04:23.436Z |
| CVE-2025-65078 |
9.3 (4.0)
|
Untrusted search path vulnerability in Embedded Soluti… |
Lexmark |
MXTCT, MSNGM, MSTGM, MXNGM, MXTGM, CSNGV, CSTGV, CXTGV, MSNGW, MSTGW, MXTGW, CSTLS, CXTLS, MXTLS, CSTMM, CXTMM, CSTPC, CXTPC, MXTPM, MSNSN, MSTSN, MXTSN, CSNZJ, CSTZJ, CXNZJ, CXTZJ |
2026-02-03T20:51:20.556Z | 2026-02-26T15:04:23.262Z |
| CVE-2026-21219 |
7 (3.1)
|
Inbox COM Objects (Global Memory) Remote Code Executio… |
Microsoft |
Windows SDK |
2026-01-13T17:56:55.396Z | 2026-02-26T15:04:23.124Z |
| CVE-2026-1861 |
8.8 (3.1)
|
Heap buffer overflow in libvpx in Google Chrome p… |
Google |
Chrome |
2026-02-03T20:56:47.624Z | 2026-02-26T15:04:22.981Z |
| CVE-2026-20861 |
7.8 (3.1)
|
Windows Management Services Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1809 |
2026-01-13T17:56:55.982Z | 2026-02-26T15:04:22.827Z |
| CVE-2026-1862 |
8.8 (3.1)
|
Type Confusion in V8 in Google Chrome prior to 14… |
Google |
Chrome |
2026-02-03T20:56:48.455Z | 2026-02-26T15:04:22.687Z |
| CVE-2026-20863 |
7 (3.1)
|
Win32k Elevation of Privilege Vulnerability |
Microsoft |
Windows 11 version 22H3 |
2026-01-13T17:56:57.213Z | 2026-02-26T15:04:22.548Z |
| CVE-2026-1580 |
8.8 (3.1)
|
ingress-nginx auth-method nginx configuration injection |
Kubernetes |
ingress-nginx |
2026-02-03T22:16:47.223Z | 2026-02-26T15:04:22.416Z |
| CVE-2026-20866 |
7.8 (3.1)
|
Windows Management Services Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1809 |
2026-01-13T17:56:57.777Z | 2026-02-26T15:04:22.262Z |
| CVE-2026-24512 |
8.8 (3.1)
|
ingress-nginx auth-method nginx configuration injection |
Kubernetes |
ingress-nginx |
2026-02-03T22:17:08.989Z | 2026-02-26T15:04:22.072Z |
| CVE-2026-20867 |
7.8 (3.1)
|
Windows Management Services Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1809 |
2026-01-13T17:56:58.268Z | 2026-02-26T15:04:21.857Z |
| CVE-2026-20979 |
8.4 (4.0)
|
Improper privilege management in Settings prior t… |
Samsung Mobile |
Samsung Mobile Devices |
2026-02-04T06:14:40.116Z | 2026-02-26T15:04:21.706Z |
| CVE-2026-20868 |
8.8 (3.1)
|
Windows Routing and Remote Access Service (RRAS) Remot… |
Microsoft |
Windows 10 Version 1607 |
2026-01-13T17:56:58.903Z | 2026-02-26T15:04:21.562Z |
| CVE-2026-20983 |
8.4 (4.0)
|
Improper export of android application components… |
Samsung Mobile |
Samsung Mobile Devices |
2026-02-04T06:14:45.725Z | 2026-02-26T15:04:21.414Z |
| CVE-2026-20870 |
7.8 (3.1)
|
Windows Win32 Kernel Subsystem Elevation of Privilege … |
Microsoft |
Windows 11 Version 24H2 |
2026-01-13T17:56:59.544Z | 2026-02-26T15:04:21.264Z |
| CVE-2025-14740 |
6.7 (3.1)
|
Docker Desktop for Windows Incorrect Permission Assign… |
Docker Inc. |
Docker Desktop |
2026-02-04T13:57:23.002Z | 2026-02-26T15:04:21.122Z |
| CVE-2026-20871 |
7.8 (3.1)
|
Desktop Window Manager Elevation of Privilege Vulnerability |
Microsoft |
Windows 10 Version 21H2 |
2026-01-13T17:57:00.236Z | 2026-02-26T15:04:20.984Z |
| CVE-2026-0659 |
7.8 (3.1)
|
USD File Parsing Out-of-Bounds Write Vulnerability |
Autodesk |
USD for Arnold |
2026-02-04T16:01:27.307Z | 2026-02-26T15:04:20.838Z |
| CVE-2026-20873 |
7.8 (3.1)
|
Windows Management Services Elevation of Privilege Vul… |
Microsoft |
Windows 10 Version 1809 |
2026-01-13T17:57:01.485Z | 2026-02-26T15:04:20.703Z |
| CVE-2026-20098 |
8.8 (3.1)
|
Cisco Meeting Management Arbitrary File Upload Vulnerability |
Cisco |
Cisco Meeting Management |
2026-02-04T16:11:48.298Z | 2026-02-26T15:04:20.557Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-25492 |
5.3 (4.0)
|
Craft has a save_images_Asset graphql mutation can be … |
craftcms |
cms |
2026-02-09T19:33:24.366Z | 2026-02-10T16:00:41.366Z |
| CVE-2020-37166 |
6.9 (4.0)
6.2 (3.1)
|
AbsoluteTelnet 11.12 - 'SSH2/username' Denial of Service |
Celestial Software |
AbsoluteTelnet |
2026-02-06T23:14:12.943Z | 2026-02-17T16:54:51.820Z |
| CVE-2025-70998 |
9.8 (3.1)
|
UTT HiPER 810 / nv810v4 router firmware v1.5.0-14… |
n/a |
n/a |
2026-02-18T00:00:00.000Z | 2026-02-18T15:37:27.390Z |
| CVE-2018-17366 |
N/A
|
An issue was discovered in MCMS 4.6.5. There is a… |
n/a |
n/a |
2018-09-23T18:00:00.000Z | 2024-08-05T10:47:04.301Z |
| CVE-2026-2666 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
mingSoft MCMS Template Archive uploadTemplate.do unres… |
mingSoft |
MCMS |
2026-02-18T20:02:09.402Z | 2026-02-23T10:19:52.686Z |
| CVE-2026-2648 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-02-18T21:39:03.100Z | 2026-02-26T14:44:15.504Z |
| CVE-2026-2649 |
8.8 (3.1)
|
Integer overflow in V8 in Google Chrome prior to … |
Google |
Chrome |
2026-02-18T21:39:03.873Z | 2026-02-26T14:44:15.324Z |
| CVE-2026-2650 |
8.8 (3.1)
|
Heap buffer overflow in Media in Google Chrome pr… |
Google |
Chrome |
2026-02-18T21:39:04.464Z | 2026-02-26T14:44:15.157Z |
| CVE-2026-24126 |
6.6 (3.1)
|
Weblate has an argument injection in management console |
WeblateOrg |
weblate |
2026-02-18T23:05:03.478Z | 2026-02-19T17:13:53.353Z |
| CVE-2025-67683 |
5.1 (4.0)
|
Reflected XSS in Quick.Cart |
OpenSolution |
Quick.Cart |
2026-01-22T11:57:24.067Z | 2026-01-22T21:17:30.272Z |
| CVE-2025-67684 |
9.4 (4.0)
|
Remote Code Execution via Local File Inclusion in Quick.Cart |
OpenSolution |
Quick.Cart |
2026-01-22T11:57:28.806Z | 2026-01-22T20:36:55.360Z |
| CVE-2026-25926 |
7.3 (3.1)
|
Notepad++ has an Untrusted Search Path |
notepad-plus-plus |
notepad-plus-plus |
2026-02-18T23:07:36.383Z | 2026-02-19T17:45:27.028Z |
| CVE-2026-23796 |
4.8 (4.0)
|
Session Fixation in Quick.Cart |
OpenSolution |
Quick.Cart |
2026-02-05T11:07:59.954Z | 2026-02-05T14:19:55.348Z |
| CVE-2026-24764 |
3.7 (3.1)
|
OpenClaw has Remote Code Execution via System Prompt I… |
clawdbot |
clawdbot |
2026-02-19T01:10:17.540Z | 2026-02-19T17:45:16.959Z |
| CVE-2026-23797 |
6.9 (4.0)
|
Plaintext password display in Quick.Cart |
OpenSolution |
Quick.Cart |
2026-02-05T11:07:55.241Z | 2026-02-05T14:29:00.428Z |
| CVE-2026-22860 |
7.5 (3.1)
|
Rack has a Directory Traversal via Rack:Directory |
rack |
rack |
2026-02-18T18:45:02.095Z | 2026-02-18T19:28:38.445Z |
| CVE-2026-25500 |
5.4 (3.1)
|
Rack's Stored XSS in Rack::Directory via javascript: f… |
rack |
rack |
2026-02-18T18:59:31.964Z | 2026-02-18T19:42:35.101Z |
| CVE-2026-25473 |
5.4 (3.1)
|
WordPress WZone plugin <= 14.0.31 - Broken Access Cont… |
AA-Team |
WZone |
2026-02-19T08:27:09.151Z | 2026-02-19T16:56:05.907Z |
| CVE-2026-25441 |
5.3 (3.1)
|
WordPress LeadConnector plugin <= 3.0.21 - Broken Acce… |
LeadConnector |
LeadConnector |
2026-02-19T08:27:08.043Z | 2026-02-19T17:00:22.990Z |
| CVE-2026-25428 |
4.4 (3.1)
|
WordPress TS Poll plugin <= 2.5.5 - Server Side Reques… |
totalsoft |
TS Poll |
2026-02-19T08:27:07.662Z | 2026-02-19T17:04:22.215Z |
| CVE-2026-0106 |
9.3 (3.1)
|
In vpu_mmap of vpu_ioctl, there is a possible arb… |
Google |
Android |
2026-02-05T20:19:20.588Z | 2026-02-26T15:04:17.593Z |
| CVE-2025-70828 |
8.8 (3.1)
|
An issue in Datart v1.0.0-rc.3 allows attackers t… |
n/a |
n/a |
2026-02-17T00:00:00.000Z | 2026-02-19T17:47:20.507Z |
| CVE-2025-70397 |
7.2 (3.1)
|
jizhicms 2.5.6 is vulnerable to SQL Injection in … |
n/a |
n/a |
2026-02-17T00:00:00.000Z | 2026-02-19T17:24:23.597Z |
| CVE-2026-24935 |
6.3 (4.0)
|
An improper certificate validation vulnerability was f… |
ASUSTOR |
ADM |
2026-02-03T02:28:56.413Z | 2026-02-03T15:30:54.564Z |
| CVE-2026-24934 |
6.3 (4.0)
|
An improper certificate validation vulnerability was f… |
ASUSTOR |
ADM |
2026-02-03T02:26:55.995Z | 2026-02-03T15:31:00.835Z |
| CVE-2026-24933 |
8.9 (4.0)
|
An improper certificate validation vulnerability was f… |
ASUSTOR |
ADM |
2026-02-03T02:22:01.943Z | 2026-02-03T15:31:09.436Z |
| CVE-2026-24932 |
8.9 (4.0)
|
An improper certificate validation vulnerability was f… |
ASUSTOR |
ADM |
2026-02-03T02:19:41.915Z | 2026-02-03T15:31:15.303Z |
| CVE-2020-37165 |
6.7 (4.0)
6.2 (3.1)
|
AbsoluteTelnet 11.12 - "license name" Denial of Service |
Celestial Software |
AbsoluteTelnet |
2026-02-06T23:14:12.517Z | 2026-02-17T16:55:13.150Z |
| CVE-2026-25760 |
6.5 (3.1)
|
Website Path Traversal / Arbitrary File Read (Authenti… |
BishopFox |
sliver |
2026-02-06T21:32:27.276Z | 2026-02-09T15:26:46.263Z |
| CVE-2026-25758 |
7.7 (4.0)
|
Spree allows unauthenticated users can access all gues… |
spree |
spree |
2026-02-06T21:29:20.846Z | 2026-02-09T15:26:51.129Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-70828 | An issue in Datart v1.0.0-rc.3 allows attackers to execute arbitrary code via the url parameter in … | 2026-02-17T16:20:25.577 | 2026-02-19T18:24:53.683 |
| fkie_cve-2025-70397 | jizhicms 2.5.6 is vulnerable to SQL Injection in Article/deleteAll and Extmolds/deleteAll via the d… | 2026-02-17T16:20:25.467 | 2026-02-19T18:24:53.093 |
| fkie_cve-2026-24935 | A third-party NAT traversal module fails to validate SSL/TLS certificates when connecting to the si… | 2026-02-03T03:15:53.507 | 2026-02-19T18:19:51.097 |
| fkie_cve-2026-24934 | The DDNS function uses an insecure HTTP connection or fails to validate the SSL/TLS certificate whe… | 2026-02-03T03:15:53.383 | 2026-02-19T18:18:18.590 |
| fkie_cve-2026-24933 | The API communication component fails to validate the SSL/TLS certificate when sending HTTPS reques… | 2026-02-03T03:15:53.240 | 2026-02-19T18:17:38.983 |
| fkie_cve-2026-24932 | The DDNS update function in ADM fails to properly validate the hostname of the DDNS server's TLS/SS… | 2026-02-03T03:15:53.080 | 2026-02-19T18:16:57.583 |
| fkie_cve-2020-37165 | AbsoluteTelnet 11.12 contains a denial of service vulnerability that allows local attackers to cras… | 2026-02-07T00:15:56.953 | 2026-02-19T18:11:38.037 |
| fkie_cve-2026-25760 | Sliver is a command and control framework that uses a custom Wireguard netstack. Prior to 1.6.11, a… | 2026-02-06T22:16:12.277 | 2026-02-19T18:02:59.793 |
| fkie_cve-2026-25758 | Spree is an open source e-commerce solution built with Ruby on Rails. A critical IDOR vulnerability… | 2026-02-06T22:16:12.133 | 2026-02-19T18:01:26.760 |
| fkie_cve-2026-25634 | iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and appl… | 2026-02-06T21:16:18.530 | 2026-02-19T17:55:29.617 |
| fkie_cve-2026-25631 | n8n is an open source workflow automation platform. Prior to 1.121.0, there is a vulnerability in t… | 2026-02-06T21:16:18.230 | 2026-02-19T17:51:02.697 |
| fkie_cve-2026-21349 | Lightroom Desktop versions 15.1 and earlier are affected by an out-of-bounds write vulnerability th… | 2026-02-10T20:16:55.590 | 2026-02-19T17:50:30.293 |
| fkie_cve-2026-25628 | Qdrant is a vector similarity search engine and vector database. From 1.9.3 to before 1.16.0, it is… | 2026-02-06T21:16:18.083 | 2026-02-19T17:45:58.093 |
| fkie_cve-2024-23329 | changedetection.io is an open source tool designed to monitor websites for content changes. In aff… | 2024-01-19T20:15:13.827 | 2026-02-19T17:44:46.277 |
| fkie_cve-2023-24769 | Changedetection.io before v0.40.1.1 was discovered to contain a stored cross-site scripting (XSS) v… | 2023-02-17T22:15:14.407 | 2026-02-19T17:44:46.277 |
| fkie_cve-2026-24936 | When a specific function is enabled while joining a AD Domain from ADM, an improper input parameter… | 2026-02-03T04:15:56.357 | 2026-02-19T17:39:07.473 |
| fkie_cve-2026-2618 | A vulnerability was determined in Beetel 777VR1 up to 01.00.09. This impacts an unknown function of… | 2026-02-17T17:21:06.490 | 2026-02-19T17:32:56.850 |
| fkie_cve-2026-25597 | PrestaShop is an open source e-commerce web application. Prior to 8.2.4 and 9.0.3, there is a time-… | 2026-02-06T21:16:17.933 | 2026-02-19T17:27:30.690 |
| fkie_cve-2026-27092 | Missing Authorization vulnerability in Greg Winiarski WPAdverts wpadverts allows Exploiting Incorre… | 2026-02-19T09:16:28.063 | 2026-02-19T17:24:51.583 |
| fkie_cve-2026-27090 | Cross-Site Request Forgery (CSRF) vulnerability in WP Moose Kenta Companion kenta-companion allows … | 2026-02-19T09:16:27.910 | 2026-02-19T17:24:51.410 |
| fkie_cve-2026-27066 | Missing Authorization vulnerability in PI Web Solution Live sales notification for WooCommerce live… | 2026-02-19T09:16:27.360 | 2026-02-19T17:24:51.210 |
| fkie_cve-2026-24812 | Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with p… | 2026-01-27T09:15:51.567 | 2026-02-19T17:24:49.683 |
| fkie_cve-2026-24811 | Vulnerability in root-project root (builtins/zlib modules). This vulnerability is associated with p… | 2026-01-27T09:15:51.440 | 2026-02-19T17:24:49.470 |
| fkie_cve-2026-21528 | Binding to an unrestricted ip address in Azure IoT Explorer allows an unauthorized attacker to disc… | 2026-02-10T18:16:35.273 | 2026-02-19T17:24:48.437 |
| fkie_cve-2026-25581 | SCEditor is a lightweight WYSIWYG BBCode and XHTML editor. Prior to 3.2.1, if an attacker has the a… | 2026-02-06T21:16:17.307 | 2026-02-19T17:23:19.897 |
| fkie_cve-2026-2655 | A vulnerability was detected in ChaiScript up to 6.1.0. The impacted element is the function chaisc… | 2026-02-18T14:16:07.490 | 2026-02-19T17:22:36.310 |
| fkie_cve-2026-2656 | A flaw has been found in ChaiScript up to 6.1.0. This affects the function chaiscript::Type_Info::b… | 2026-02-18T15:18:44.743 | 2026-02-19T17:22:19.880 |
| fkie_cve-2025-59029 | An attacker can trigger an assertion failure by requesting crafted DNS records, waiting for them to… | 2025-12-09T16:17:58.990 | 2026-02-19T17:13:48.907 |
| fkie_cve-2025-59030 | An attacker can trigger the removal of cached records by sending a NOTIFY query over TCP. | 2025-12-09T16:17:59.170 | 2026-02-19T17:04:30.823 |
| fkie_cve-2025-5471 | Uncontrolled Search Path Element vulnerability in Yandex Telemost on MacOS allows Search Order Hija… | 2025-12-09T16:17:59.817 | 2026-02-19T17:03:17.330 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-x3gr-66gq-6hqr |
7.8 (3.1)
|
Audition versions 25.3 and earlier are affected by an out-of-bounds write vulnerability that could … | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-wr95-24gv-jx75 |
8.8 (3.1)
|
Improper neutralization of special elements used in a command ('command injection') in GitHub Copil… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-wr84-r79v-4cv9 |
5.5 (3.1)
|
Audition versions 25.3 and earlier are affected by an out-of-bounds read vulnerability that could l… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-w8gr-fpp3-xwvp |
7.8 (3.1)
|
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-w882-rf7q-923g |
3.3 (3.1)
|
External control of file name or path in Windows NTLM allows an unauthorized attacker to perform sp… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-w78c-hxwv-h3vv |
5.5 (3.1)
|
After Effects versions 25.6 and earlier are affected by an Out-of-bounds Read vulnerability that co… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-v8pc-rxff-x74j |
5.5 (3.1)
|
Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose inf… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-r2rm-869g-w2g5 |
8.8 (3.1)
|
Improper access control in Windows Hyper-V allows an authorized attacker to bypass a security featu… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-qr2v-788m-xvqc |
5.5 (3.1)
|
Insertion of sensitive information into log file in Windows Kernel allows an authorized attacker to… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-qmj4-pv85-gqgj |
7.3 (3.1)
|
Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-pw6x-8hxj-hv8c |
7.8 (3.1)
|
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate pri… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-pf58-6rw7-w4p4 |
7.8 (3.1)
|
Improper access control in Windows Ancillary Function Driver for WinSock allows an authorized attac… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-mfrw-44hc-j24j |
7.8 (3.1)
|
After Effects versions 25.6 and earlier are affected by an out-of-bounds write vulnerability that c… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-g435-352v-fpxp |
8.0 (3.1)
|
Improper neutralization of special elements used in a command ('command injection') in GitHub Copil… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-fjmw-6c58-v967 |
5.5 (3.1)
|
Audition versions 25.3 and earlier are affected by an out-of-bounds read vulnerability that could l… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-f2pc-4jpr-7fm6 |
7.8 (3.1)
|
After Effects versions 25.6 and earlier are affected by a Use After Free vulnerability that could r… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-c5fm-j5cv-9qpv |
7.3 (3.1)
|
Use after free in Microsoft Graphics Component allows an authorized attacker to elevate privileges … | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-9h9g-xpmp-46vg |
7.3 (3.1)
|
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-9h3x-5px3-gfh7 |
8.0 (3.1)
|
Improper input validation in Power BI allows an authorized attacker to execute code over a network. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-8v6m-6gjc-gh89 |
5.5 (3.1)
|
Audition versions 25.3 and earlier are affected by an Access of Memory Location After End of Buffer… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-843x-gmwc-22g8 |
7.5 (3.1)
|
Null pointer dereference in Windows LDAP - Lightweight Directory Access Protocol allows an unauthor… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-7j3c-f9r5-fc2v |
7.3 (3.1)
|
Heap-based buffer overflow in Windows Hyper-V allows an authorized attacker to execute code locally. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-6q2h-rrfg-fm75 |
7.8 (3.1)
|
Use after free in Windows Cluster Client Failover allows an authorized attacker to elevate privileg… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-63j5-2r24-8m8c |
5.5 (3.1)
|
Audition versions 25.3 and earlier are affected by an out-of-bounds read vulnerability that could l… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-5w7w-579h-f343 |
5.5 (3.1)
|
Audition versions 25.3 and earlier are affected by an Out-of-bounds Read vulnerability that could l… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-5w28-wvm6-xf4j |
7.0 (3.1)
|
Use after free in Windows Subsystem for Linux allows an authorized attacker to elevate privileges l… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-5rxv-pj8f-g3gq |
7.0 (3.1)
|
Concurrent execution using shared resource with improper synchronization ('race condition') in Wind… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-5gf4-2f6r-6gcj |
7.8 (3.1)
|
Untrusted pointer dereference in Windows HTTP.sys allows an authorized attacker to elevate privileg… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-5cch-r4ff-mh3m |
7.8 (3.1)
|
Heap-based buffer overflow in Windows Kernel allows an authorized attacker to elevate privileges locally. | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ghsa-56fh-gxc8-3p64 |
7.8 (3.1)
|
Time-of-check time-of-use (toctou) race condition in Windows HTTP.sys allows an authorized attacker… | 2026-02-10T18:30:41Z | 2026-02-10T18:30:41Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-31399 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.614071Z |
| gsd-2024-31440 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.610777Z |
| gsd-2024-31426 | Cross-Site Request Forgery (CSRF) vulnerability in Data443 Inline Related Posts.This issu… | 2024-04-04T05:02:26.610568Z |
| gsd-2024-31416 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.609643Z |
| gsd-2024-31411 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.606551Z |
| gsd-2024-31400 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.606338Z |
| gsd-2024-31438 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.604583Z |
| gsd-2024-31430 | Cross-Site Request Forgery (CSRF) vulnerability in realmag777 WOLF – WordPress Posts Bulk… | 2024-04-04T05:02:26.597123Z |
| gsd-2024-31420 | A NULL pointer dereference flaw was found in KubeVirt. This flaw allows an attacker who h… | 2024-04-04T05:02:26.594689Z |
| gsd-2024-31402 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.589433Z |
| gsd-2024-31439 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.589220Z |
| gsd-2024-31404 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.581869Z |
| gsd-2024-31437 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.580343Z |
| gsd-2024-31417 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.580120Z |
| gsd-2024-31397 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.563932Z |
| gsd-2024-31396 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.557699Z |
| gsd-2024-31431 | Cross-Site Request Forgery (CSRF) vulnerability in Tyche Softwares Product Input Fields f… | 2024-04-04T05:02:26.557237Z |
| gsd-2024-31433 | Cross-Site Request Forgery (CSRF) vulnerability in The Events Calendar.This issue affects… | 2024-04-04T05:02:26.555244Z |
| gsd-2024-31436 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.553257Z |
| gsd-2024-31398 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.549320Z |
| gsd-2024-31419 | An information disclosure flaw was found in OpenShift Virtualization. The DownwardMetrics… | 2024-04-04T05:02:26.547822Z |
| gsd-2024-31421 | Missing Authorization vulnerability in Supsystic Popup by Supsystic.This issue affects Po… | 2024-04-04T05:02:26.543848Z |
| gsd-2024-31413 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.541228Z |
| gsd-2024-31415 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.537963Z |
| gsd-2024-31434 | Cross-Site Request Forgery (CSRF) vulnerability in Stefano Lissa & The Newsletter Team Ne… | 2024-04-04T05:02:26.530116Z |
| gsd-2024-31432 | Missing Authorization vulnerability in StellarWP Restrict Content.This issue affects Rest… | 2024-04-04T05:02:26.527107Z |
| gsd-2024-31428 | Cross-Site Request Forgery (CSRF) vulnerability in Rara Theme The Conference.This issue a… | 2024-04-04T05:02:26.517671Z |
| gsd-2024-31418 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-04T05:02:26.517226Z |
| gsd-2024-31427 | Cross-Site Request Forgery (CSRF) vulnerability in Marker.Io Marker.Io.This issue affects… | 2024-04-04T05:02:26.515967Z |
| gsd-2024-31422 | Cross-Site Request Forgery (CSRF) vulnerability in Philippe Bernard Favicon.This issue af… | 2024-04-04T05:02:26.511641Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2024-9939 | Malicious code in anaconda-anon-usage (PyPI) | 2024-08-23T21:20:09Z | 2025-12-10T21:09:41Z |
| mal-2025-192421 | Malicious code in vue2-amis-custom-widget123 (npm) | 2025-12-10T02:40:38Z | 2025-12-10T21:09:40Z |
| mal-2025-192418 | Malicious code in sfdc-abstract-legend (npm) | 2025-12-10T01:57:45Z | 2025-12-10T21:09:40Z |
| mal-2025-192374 | Malicious code in solana-dexco-basic (npm) | 2025-12-08T03:36:17Z | 2025-12-10T21:09:40Z |
| mal-2025-192372 | Malicious code in volume-viz (npm) | 2025-12-04T03:08:55Z | 2025-12-10T21:09:40Z |
| mal-2025-192371 | Malicious code in tna_xmlparser (npm) | 2025-12-07T21:23:57Z | 2025-12-10T21:09:40Z |
| mal-2025-192360 | Malicious code in ssf-desktop-api-openfin (npm) | 2025-12-06T16:23:18Z | 2025-12-10T21:09:40Z |
| mal-2025-192359 | Malicious code in ssf-desktop-api-browser (npm) | 2025-12-06T16:23:25Z | 2025-12-10T21:09:40Z |
| mal-2025-192358 | Malicious code in sharp32 (npm) | 2025-12-06T16:23:20Z | 2025-12-10T21:09:40Z |
| mal-2025-192422 | Malicious code in real-time-tweet-streamer (npm) | 2025-12-10T03:13:39Z | 2025-12-10T21:09:39Z |
| mal-2025-192416 | Malicious code in pymongo (npm) | 2025-12-10T01:57:45Z | 2025-12-10T21:09:39Z |
| mal-2025-192415 | Malicious code in portal-lim (npm) | 2025-12-10T01:57:26Z | 2025-12-10T21:09:39Z |
| mal-2025-192368 | Malicious code in paysera-checkout-modal (npm) | 2025-12-07T22:30:57Z | 2025-12-10T21:09:39Z |
| mal-2025-192366 | Malicious code in react-hook-form-5 (npm) | 2025-12-07T09:31:09Z | 2025-12-10T21:09:39Z |
| mal-2025-192427 | Malicious code in libxmlussr1 (npm) | 2025-12-09T19:27:53Z | 2025-12-10T21:09:38Z |
| mal-2025-192426 | Malicious code in libxmljsololo2 (npm) | 2025-12-09T18:10:28Z | 2025-12-10T21:09:38Z |
| mal-2025-192425 | Malicious code in libxmlfinal2 (npm) | 2025-12-09T13:50:46Z | 2025-12-10T21:09:38Z |
| mal-2025-192420 | Malicious code in near-fast-auth-signer (npm) | 2025-12-10T03:05:03Z | 2025-12-10T21:09:38Z |
| mal-2025-192414 | Malicious code in mongo-decimal (npm) | 2025-12-10T01:58:41Z | 2025-12-10T21:09:38Z |
| mal-2025-192413 | Malicious code in modules-runtime (npm) | 2025-12-10T01:58:41Z | 2025-12-10T21:09:38Z |
| mal-2025-192412 | Malicious code in meteor-developer-oauth (npm) | 2025-12-10T01:58:41Z | 2025-12-10T21:09:38Z |
| mal-2025-192399 | Malicious code in malicius-pdf (npm) | 2025-12-10T01:32:47Z | 2025-12-10T21:09:38Z |
| mal-2025-192395 | Malicious code in libxmlrussia (npm) | 2025-12-09T20:38:15Z | 2025-12-10T21:09:38Z |
| mal-2025-192394 | Malicious code in libxmlussr2 (npm) | 2025-12-09T20:25:55Z | 2025-12-10T21:09:38Z |
| mal-2025-192389 | Malicious code in libxmljs2qwerty (npm) | 2025-12-09T13:57:36Z | 2025-12-10T21:09:38Z |
| mal-2025-192388 | Malicious code in libxmljs2varaboba (npm) | 2025-12-09T12:17:55Z | 2025-12-10T21:09:38Z |
| mal-2025-192384 | Malicious code in jsonify-errors (npm) | 2025-12-09T07:55:28Z | 2025-12-10T21:09:38Z |
| mal-2025-192411 | Malicious code in fastavro (npm) | 2025-12-10T01:57:45Z | 2025-12-10T21:09:37Z |
| mal-2025-192410 | Malicious code in facts-base (npm) | 2025-12-10T01:58:41Z | 2025-12-10T21:09:37Z |
| mal-2025-192409 | Malicious code in ecmascript-runtime-client (npm) | 2025-12-10T01:58:41Z | 2025-12-10T21:09:37Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0402 | xpdf: Mehrere Schwachstellen ermöglichen Denial of Service | 2023-02-15T23:00:00.000+00:00 | 2025-05-07T22:00:00.000+00:00 |
| wid-sec-w-2025-0960 | Samsung Android: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0957 | Dell PowerScale: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0955 | OpenCTI: Schwachstelle ermöglicht Codeausführung | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0952 | LogStash: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0951 | Red Hat Enterprise Linux AI (HDF5): Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0950 | Liferay Liferay DXP: Schwachstelle ermöglicht Cross-Site Scripting | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0949 | Pixel Patchday Mai 2025: Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0948 | Kibana: Schwachstelle ermöglicht Codeausführung | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0947 | Ubiquiti UniFi (Protect Cameras und Application): Mehrere Schwachstellen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0946 | Arista EOS: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-06T22:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0406 | Ubiquiti UniFi (Protect Camera und Application): Mehrere Schwachstellen | 2025-02-18T23:00:00.000+00:00 | 2025-05-06T22:00:00.000+00:00 |
| wid-sec-w-2025-0942 | OpenBSD: Schwachstelle ermöglicht Denial of Service | 2025-05-05T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0941 | PyTorch: Schwachstelle ermöglicht Denial of Service | 2025-05-05T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0940 | BeyondTrust Privileged Remote Access: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-05T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0939 | IGEL OS: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-05T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0936 | HCL BigFix Compliance: Mehrere Schwachstellen | 2025-05-05T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0906 | Google Chrome und Microsoft Edge: Mehrere Schwachstellen | 2025-04-29T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0849 | Red Hat Enterprise Linux (virtuoso-opensource): Schwachstelle ermöglicht Denial of Service | 2025-04-21T22:00:00.000+00:00 | 2025-05-05T22:00:00.000+00:00 |
| wid-sec-w-2025-0934 | poppler: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0933 | Hashicorp Vault: Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0930 | IBM Business Automation Workflow: Mehrere Schwachstellen | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0929 | Webmin: Schwachstelle ermöglicht Privilegieneskalation | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0928 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0927 | NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0926 | IBM MQ: Schwachstelle ermöglicht Denial of Service | 2025-05-04T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2024-3639 | ffmpeg: Schwachstelle ermöglicht Denial of Service | 2024-12-09T23:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2023-3034 | Eclipse IDE: Schwachstelle ermöglicht Offenlegung von Informationen | 2023-11-30T23:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2022-0901 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2022-08-03T22:00:00.000+00:00 | 2025-05-04T22:00:00.000+00:00 |
| wid-sec-w-2025-0925 | Microsoft Edge: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-05-01T22:00:00.000+00:00 | 2025-05-01T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhea-2024:6787 | Red Hat Enhancement Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.0 | 2024-09-18T18:30:16+00:00 | 2026-02-03T21:12:07+00:00 |
| rhea-2024:11005 | Red Hat Enhancement Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.0 | 2024-12-12T14:32:14+00:00 | 2026-02-03T21:12:04+00:00 |
| rhba-2023:4315 | Red Hat Bug Fix Advisory: Red Hat OpenShift Pipelines 1.10.5 release | 2023-07-27T18:51:06+00:00 | 2026-02-03T21:11:51+00:00 |
| rhba-2023:0568 | Red Hat Bug Fix Advisory: OpenShift Container Platform 4.12.2 packages update | 2023-02-08T04:26:39+00:00 | 2026-02-03T21:11:48+00:00 |
| rhsa-2026:1815 | Red Hat Security Advisory: openssh security update | 2026-02-03T13:31:42+00:00 | 2026-02-03T20:56:58+00:00 |
| rhsa-2026:1790 | Red Hat Security Advisory: openssh security update | 2026-02-03T07:04:31+00:00 | 2026-02-03T20:56:58+00:00 |
| rhsa-2026:1678 | Red Hat Security Advisory: openssh security update | 2026-02-02T08:15:22+00:00 | 2026-02-03T20:56:57+00:00 |
| rhsa-2026:0976 | Red Hat Security Advisory: openssh security update | 2026-01-22T09:20:02+00:00 | 2026-02-03T20:56:55+00:00 |
| rhsa-2026:0693 | Red Hat Security Advisory: openssh security update | 2026-01-15T11:56:04+00:00 | 2026-02-03T20:56:55+00:00 |
| rhsa-2026:0355 | Red Hat Security Advisory: python3.12 security update | 2026-01-08T14:45:29+00:00 | 2026-02-03T20:56:53+00:00 |
| rhsa-2026:0354 | Red Hat Security Advisory: python3.12 security update | 2026-01-08T14:33:54+00:00 | 2026-02-03T20:56:53+00:00 |
| rhsa-2026:0353 | Red Hat Security Advisory: python3.12 security update | 2026-01-08T13:54:19+00:00 | 2026-02-03T20:56:53+00:00 |
| rhsa-2026:0135 | Red Hat Security Advisory: tar security update | 2026-01-06T13:36:23+00:00 | 2026-02-03T20:56:53+00:00 |
| rhsa-2026:0067 | Red Hat Security Advisory: tar security update | 2026-01-05T19:01:10+00:00 | 2026-02-03T20:56:52+00:00 |
| rhsa-2026:0002 | Red Hat Security Advisory: tar security update | 2026-01-05T00:51:42+00:00 | 2026-02-03T20:56:50+00:00 |
| rhsa-2025:23940 | Red Hat Security Advisory: python3.12 security update | 2025-12-22T16:40:10+00:00 | 2026-02-03T20:56:50+00:00 |
| rhsa-2025:23481 | Red Hat Security Advisory: openssh security update | 2025-12-17T17:42:18+00:00 | 2026-02-03T20:56:49+00:00 |
| rhsa-2025:23480 | Red Hat Security Advisory: openssh security update | 2025-12-17T16:48:13+00:00 | 2026-02-03T20:56:48+00:00 |
| rhsa-2025:23479 | Red Hat Security Advisory: openssh security update | 2025-12-17T14:16:13+00:00 | 2026-02-03T20:56:48+00:00 |
| rhsa-2025:23323 | Red Hat Security Advisory: python3.12 security update | 2025-12-18T13:19:52+00:00 | 2026-02-03T20:56:45+00:00 |
| rhsa-2022:1660 | Red Hat Security Advisory: Red Hat OpenShift support for Windows Containers 2.0.5 [security update] | 2022-05-02T05:51:54+00:00 | 2026-02-03T20:55:11+00:00 |
| rhsa-2022:0492 | Red Hat Security Advisory: OpenShift Container Platform 4.7.43 security update | 2022-02-16T11:18:29+00:00 | 2026-02-03T20:55:09+00:00 |
| rhsa-2021:3001 | Red Hat Security Advisory: Red Hat OpenShift Container Platform for Windows Containers 3.0.0 security and bug fix update | 2021-08-03T20:28:58+00:00 | 2026-02-03T20:55:09+00:00 |
| rhsa-2021:1552 | Red Hat Security Advisory: OpenShift Container Platform 4.7.11 security and bug fix update | 2021-05-19T15:12:09+00:00 | 2026-02-03T20:55:07+00:00 |
| rhsa-2021:1007 | Red Hat Security Advisory: OpenShift Container Platform 4.7.5 security and bug fix update | 2021-04-05T13:39:35+00:00 | 2026-02-03T20:55:05+00:00 |
| rhsa-2021:1005 | Red Hat Security Advisory: OpenShift Container Platform 4.7.5 security and bug fix update | 2021-04-05T13:54:17+00:00 | 2026-02-03T20:55:04+00:00 |
| rhsa-2023:0951 | Red Hat Security Advisory: kernel security and bug fix update | 2023-02-28T08:24:27+00:00 | 2026-02-03T20:53:12+00:00 |
| rhsa-2025:23250 | Red Hat Security Advisory: kernel security update | 2025-12-17T05:39:46+00:00 | 2026-02-03T20:36:29+00:00 |
| rhsa-2025:23241 | Red Hat Security Advisory: kernel security update | 2025-12-17T11:51:32+00:00 | 2026-02-03T20:36:29+00:00 |
| rhsa-2025:22802 | Red Hat Security Advisory: kernel security update | 2025-12-09T07:41:49+00:00 | 2026-02-03T20:36:28+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-17-136-02 | Schneider Electric SoMachine HVAC | 2017-05-16T00:00:00.000000Z | 2017-05-16T00:00:00.000000Z |
| icsa-17-136-01 | Detcon SiteWatch Gateway | 2017-05-16T00:00:00.000000Z | 2017-05-16T00:00:00.000000Z |
| icsa-17-131-02 | Satel Iberia SenNet Data Logger and Electricity Meters | 2017-05-11T00:00:00.000000Z | 2017-05-11T00:00:00.000000Z |
| icsa-17-131-01 | PHOENIX CONTACT mGuard | 2017-05-11T00:00:00.000000Z | 2017-05-11T00:00:00.000000Z |
| icsa-17-129-03 | Siemens SIMATIC WinCC and SIMATIC WinCC Runtime Professional | 2017-05-09T00:00:00.000000Z | 2017-05-09T00:00:00.000000Z |
| icsa-17-124-03 | Advantech WebAccess | 2017-05-04T00:00:00.000000Z | 2017-05-04T00:00:00.000000Z |
| icsa-17-124-02 | Dahua Technology Co., Ltd Digital Video Recorders and IP Cameras | 2017-05-04T00:00:00.000000Z | 2017-05-04T00:00:00.000000Z |
| icsa-17-124-01 | Hikvision Cameras | 2017-05-04T00:00:00.000000Z | 2017-05-04T00:00:00.000000Z |
| icsa-17-094-05 | Rockwell Automation ControlLogix 5580 and CompactLogix 5380 | 2017-04-04T00:00:00.000000Z | 2017-05-04T00:00:00.000000Z |
| icsa-17-122-03 | Advantech B+B SmartWorx MESR901 | 2017-05-02T00:00:00.000000Z | 2017-05-02T00:00:00.000000Z |
| icsa-17-122-02 | CyberVision Kaa IoT Platform | 2017-05-02T00:00:00.000000Z | 2017-05-02T00:00:00.000000Z |
| icsa-17-122-01 | Schneider Electric Wonderware Historian Client | 2017-05-02T00:00:00.000000Z | 2017-05-02T00:00:00.000000Z |
| icsa-17-096-01a | Certec EDV GmbH atvise scada (Update A) | 2017-04-06T00:00:00.000000Z | 2017-04-27T00:00:00.000000Z |
| icsa-17-115-03 | Hyundai Motor America Blue Link | 2017-04-25T00:00:00.000000Z | 2017-04-25T00:00:00.000000Z |
| icsa-17-115-02 | Sierra Wireless AirLink Raven XE and XT | 2017-04-25T00:00:00.000000Z | 2017-04-25T00:00:00.000000Z |
| icsa-17-115-01 | BLF-Tech LLC VisualView HMI | 2017-04-25T00:00:00.000000Z | 2017-04-25T00:00:00.000000Z |
| icsa-17-026-02a | Belden Hirschmann GECKO (Update A) | 2017-01-26T00:00:00.000000Z | 2017-04-18T00:00:00.000000Z |
| icsa-17-103-01 | Wecon Technologies LEVI Studio HMI Editor | 2017-04-13T00:00:00.000000Z | 2017-04-13T00:00:00.000000Z |
| icsa-17-019-01a | Schneider Electric homeLYnk Controller (Update A) | 2017-01-19T00:00:00.000000Z | 2017-04-13T00:00:00.000000Z |
| icsa-17-101-01 | Schneider Electric Modicon Modbus Protocol | 2017-04-11T00:00:00.000000Z | 2017-04-11T00:00:00.000000Z |
| icsa-17-094-03 | Rockwell Automation Allen-Bradley Stratix and Allen-Bradley ArmorStratix | 2017-04-04T00:00:00.000000Z | 2017-04-04T00:00:00.000000Z |
| icsa-17-094-01 | Schneider Electric Interactive Graphical SCADA System Software | 2017-04-04T00:00:00.000000Z | 2017-04-04T00:00:00.000000Z |
| icsa-17-089-02 | Schneider Electric Modicon PLCs | 2017-03-30T00:00:00.000000Z | 2017-03-30T00:00:00.000000Z |
| icsa-17-089-01 | Schneider Electric Wonderware InTouch Access Anywhere | 2017-03-30T00:00:00.000000Z | 2017-03-30T00:00:00.000000Z |
| icsa-17-087-02 | 3S-Smart Software Solutions GmbH CODESYS Web Server | 2017-03-28T00:00:00.000000Z | 2017-03-28T00:00:00.000000Z |
| icsa-17-087-01 | Siemens RUGGEDCOM ROX I | 2017-03-28T00:00:00.000000Z | 2017-03-28T00:00:00.000000Z |
| icsma-17-082-01 | ICSMA-17-082-01_BD Kiestra PerformA and KLA Journal Service Applications Hard-Coded Passwords Vulnerability | 2017-03-23T00:00:00.000000Z | 2017-03-23T00:00:00.000000Z |
| icsa-17-082-01 | LCDS - Leão Consultoria e Desenvolvimento de Sistemas Ltda ME LAquis SCADA | 2017-03-23T00:00:00.000000Z | 2017-03-23T00:00:00.000000Z |
| icsa-17-047-02 | Rockwell Automation FactoryTalk Activation | 2017-02-16T00:00:00.000000Z | 2017-03-21T00:00:00.000000Z |
| icsa-17-047-01 | Rockwell Automation Connected Components Workbench | 2017-02-16T00:00:00.000000Z | 2017-03-21T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-24347 | njs through 0.4.3, used in NGINX, has an out-of-bounds read in njs_lvlhsh_level_find in njs_lvlhsh.c. | 2020-08-02T00:00:00.000Z | 2026-02-18T01:14:41.000Z |
| msrc_cve-2022-30631 | Stack exhaustion when reading certain archives in compress/gzip | 2022-08-02T00:00:00.000Z | 2026-02-18T01:14:40.000Z |
| msrc_cve-2024-42289 | scsi: qla2xxx: During vport delete send async logout explicitly | 2024-08-02T00:00:00.000Z | 2026-02-18T01:14:36.000Z |
| msrc_cve-2023-38546 | This flaw allows an attacker to insert cookies at will into a running program using libcurl if the specific series of conditions are met. libcurl performs transfers. In its API an application creates "easy handles" that are the individual handles for single transfers. libcurl provides a function call that duplicates en easy handle called [curl_easy_duphandle](https://curl.se/libcurl/c/curl_easy_duphandle.html). If a transfer has cookies enabled when the handle is duplicated the cookie-enable state is also cloned - but without cloning the actual cookies. If the source handle did not read any cookies from a specific file on disk the cloned version of the handle would instead store the file name as `none` (using the four ASCII letters no quotes). Subsequent use of the cloned handle that does not explicitly set a source to load cookies from would then inadvertently load cookies from a file named `none` - if such a file exists and is readable in the current directory of the program usin | 2023-10-01T00:00:00.000Z | 2026-02-18T01:14:25.000Z |
| msrc_cve-2024-58010 | binfmt_flat: Fix integer overflow bug on 32 bit systems | 2025-02-02T00:00:00.000Z | 2026-02-18T01:14:20.000Z |
| msrc_cve-2025-38086 | net: ch9200: fix uninitialised access during mii_nway_restart | 2025-06-02T00:00:00.000Z | 2026-02-18T01:14:16.000Z |
| msrc_cve-2024-36387 | Apache HTTP Server: DoS by Null pointer in websocket over HTTP/2 | 2024-07-01T07:00:00.000Z | 2026-02-18T01:14:09.000Z |
| msrc_cve-2024-56765 | powerpc/pseries/vas: Add close() callback in vas_vm_ops struct | 2025-01-02T00:00:00.000Z | 2026-02-18T01:14:00.000Z |
| msrc_cve-2025-6395 | Gnutls: null pointer dereference in _gnutls_figure_common_ciphersuite() | 2025-07-02T00:00:00.000Z | 2026-02-18T01:13:57.000Z |
| msrc_cve-2024-44986 | ipv6: fix possible UAF in ip6_finish_output2() | 2024-09-01T07:00:00.000Z | 2026-02-18T01:13:57.000Z |
| msrc_cve-2023-50495 | NCurse v6.4-20230418 was discovered to contain a segmentation fault via the component _nc_wrap_entry(). | 2023-12-01T08:00:00.000Z | 2026-02-18T01:13:56.000Z |
| msrc_cve-2025-39732 | wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask() | 2025-09-02T00:00:00.000Z | 2026-02-18T01:13:54.000Z |
| msrc_cve-2025-21700 | net: sched: Disallow replacing of child qdisc from one parent to another | 2025-02-02T00:00:00.000Z | 2026-02-18T01:13:50.000Z |
| msrc_cve-2024-49896 | drm/amd/display: Check stream before comparing them | 2024-10-01T07:00:00.000Z | 2026-02-18T01:13:42.000Z |
| msrc_cve-2025-38085 | mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race | 2025-06-02T00:00:00.000Z | 2026-02-18T01:13:38.000Z |
| msrc_cve-2024-26948 | drm/amd/display: Add a dc_state NULL check in dc_state_release | 2024-05-02T07:00:00.000Z | 2026-02-18T01:13:14.000Z |
| msrc_cve-2022-46456 | NASM v2.16 was discovered to contain a global buffer overflow in the component dbgdbg_typevalue at /output/outdbg.c. | 2023-01-04T00:00:00.000Z | 2026-02-18T01:13:13.000Z |
| msrc_cve-2024-37298 | Potential memory exhaustion attack due to sparse slice deserialization | 2024-07-01T07:00:00.000Z | 2026-02-18T01:13:12.000Z |
| msrc_cve-2025-27221 | In the URI gem before 1.0.3 for Ruby, the URI handling methods (URI.join, URI#merge, URI#+) have an inadvertent leakage of authentication credentials because userinfo is retained even after changing the host. | 2025-03-02T00:00:00.000Z | 2026-02-18T01:13:11.000Z |
| msrc_cve-2022-24921 | regexp.Compile in Go before 1.16.15 and 1.17.x before 1.17.8 allows stack exhaustion via a deeply nested expression. | 2022-03-02T00:00:00.000Z | 2026-02-18T01:13:05.000Z |
| msrc_cve-2025-39731 | f2fs: vm_unmap_ram() may be called from an invalid context | 2025-09-02T00:00:00.000Z | 2026-02-18T01:13:03.000Z |
| msrc_cve-2025-38084 | mm/hugetlb: unshare page tables during VMA split, not before | 2025-06-02T00:00:00.000Z | 2026-02-18T01:12:59.000Z |
| msrc_cve-2025-48924 | Apache Commons Lang, Apache Commons Lang: ClassUtils.getClass(...) can throw a StackOverflowError on very long inputs | 2025-07-02T00:00:00.000Z | 2026-02-18T01:12:57.000Z |
| msrc_cve-2024-6232 | Regular-expression DoS when parsing TarFile headers | 2024-09-01T07:00:00.000Z | 2026-02-18T01:12:56.000Z |
| msrc_cve-2024-2410 | Use after free in C++ protobuf | 2024-05-02T07:00:00.000Z | 2026-02-18T01:12:42.000Z |
| msrc_cve-2023-27533 | A vulnerability in input validation exists in curl <8.0 during communication using the TELNET protocol may allow an attacker to pass on maliciously crafted user name and "telnet options" during server negotiation. The lack of proper input scrubbing allows an attacker to send content or perform option negotiation without the application's intent. This vulnerability could be exploited if an application allows user input thereby enabling attackers to execute arbitrary code on the system. | 2023-03-10T00:00:00.000Z | 2026-02-18T01:12:31.000Z |
| msrc_cve-2025-21780 | drm/amdgpu: avoid buffer overflow attach in smu_sys_set_pp_table() | 2025-02-02T00:00:00.000Z | 2026-02-18T01:12:14.000Z |
| msrc_cve-2016-9841 | inffast.c in zlib 1.2.8 might allow context-dependent attackers to have unspecified impact by leveraging improper pointer arithmetic | 2017-05-02T00:00:00.000Z | 2026-02-18T01:12:06.000Z |
| msrc_cve-2025-21751 | net/mlx5: HWS, change error flow on matcher disconnect | 2025-02-02T00:00:00.000Z | 2026-02-18T01:12:04.000Z |
| msrc_cve-2025-9566 | Podman: podman kube play command may overwrite host files | 2025-09-02T00:00:00.000Z | 2026-02-18T01:11:52.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202501-1421 | A command execution vulnerability exists in the qos.cgi qos_sta() functionality of Wavlin… | 2025-08-23T23:26:05.875000Z |
| var-202501-1320 | A stack-based buffer overflow vulnerability exists in the wireless.cgi AddMac() functiona… | 2025-08-23T23:25:08.150000Z |
| var-202501-1404 | A stack-based buffer overflow vulnerability exists in the wireless.cgi set_wifi_basic() f… | 2025-08-23T23:25:08.107000Z |
| var-202506-0091 | Memory corruption may occur while processing voice call registration with user. c-v2x 915… | 2025-08-23T23:25:07.334000Z |
| var-202501-1420 | A firmware update vulnerability exists in the login.cgi functionality of Wavlink AC3000 M… | 2025-08-23T23:24:16.298000Z |
| var-202508-0761 | A vulnerability has been found in Tenda G1 16.01.7.8(3660). Affected by this issue is the… | 2025-08-23T23:24:15.082000Z |
| var-202508-0992 | Improper input validation in the Linux kernel-mode driver for some Intel(R) 700 Series Et… | 2025-08-23T23:24:15.060000Z |
| var-202501-1325 | A command injection vulnerability exists in the wireless.cgi AddMac() functionality of Wa… | 2025-08-23T23:23:41.198000Z |
| var-201401-0364 | Directory traversal vulnerability in gefebt.exe in the WebView CimWeb components in GE In… | 2025-08-23T23:23:32.051000Z |
| var-202508-1707 | Uncontrolled resource consumption in the Linux kernel-mode driver for some Intel(R) 700 S… | 2025-08-23T23:23:20.878000Z |
| var-202501-1323 | An external config control vulnerability exists in the nas.cgi set_smb_cfg() functionalit… | 2025-08-23T23:22:02.849000Z |
| var-202501-1360 | A buffer overflow vulnerability exists in the qos.cgi qos_sta_settings() functionality of… | 2025-08-23T23:21:21.546000Z |
| var-202501-1381 | A stack-based buffer overflow vulnerability exists in the wireless.cgi set_wifi_basic_mes… | 2025-08-23T23:21:21.524000Z |
| var-202508-0879 | Uncontrolled resource consumption in the Linux kernel-mode driver for some Intel(R) 700 S… | 2025-08-23T23:21:20.262000Z |
| var-201401-0539 | Smart Software Solutions (3S) CoDeSys Runtime Toolkit before 2.4.7.44 allows remote attac… | 2025-08-23T23:20:23.516000Z |
| var-202501-1300 | An os command injection vulnerability exists in the firewall.cgi iptablesWebsFilterRun() … | 2025-08-23T23:18:42.537000Z |
| var-202501-1324 | A buffer overflow vulnerability exists in the login.cgi Goto_chidx() functionality of Wav… | 2025-08-23T23:16:50.320000Z |
| var-202501-1350 | A stack-based buffer overflow vulnerability exists in the touchlist_sync.cgi touchlistsyn… | 2025-08-23T23:14:29.404000Z |
| var-202501-1413 | An arbitrary code execution vulnerability exists in the adm.cgi set_MeshAp() functionalit… | 2025-08-23T23:14:29.380000Z |
| var-202501-1434 | A stack-based buffer overflow vulnerability exists in the wireless.cgi SetName() function… | 2025-08-23T23:14:29.359000Z |
| var-202508-0539 | A vulnerability was found in D-Link DIR‑818L up to 1.05B01. This issue affects the functi… | 2025-08-23T23:14:28.142000Z |
| var-202508-2009 | A vulnerability was identified in Tenda AC20 16.03.08.12. Affected is the function websFo… | 2025-08-23T23:14:27.981000Z |
| var-201402-0348 | An ActiveX control in GenLaunch.htm in ICONICS GENESIS32 8.0, 8.02, 8.04, and 8.05 allows… | 2025-08-23T23:13:31.136000Z |
| var-202501-1382 | An os command injection vulnerability exists in the nas.cgi remove_dir() functionality of… | 2025-08-23T23:13:18.998000Z |
| var-202501-1380 | A static login vulnerability exists in the wctrls functionality of Wavlink AC3000 M33A8.V… | 2025-08-23T23:11:36.499000Z |
| var-202508-1590 | Insufficient control flow management in the Linux kernel-mode driver for some Intel(R) 70… | 2025-08-23T23:11:35.069000Z |
| var-202501-1369 | A buffer overflow vulnerability exists in the internet.cgi set_add_routing() functionalit… | 2025-08-23T23:10:03.372000Z |
| var-202501-1415 | A buffer overflow vulnerability exists in the adm.cgi set_wzdgw4G() functionality of Wavl… | 2025-08-23T23:08:55.156000Z |
| var-202507-0069 | A vulnerability has been identified in SINEC NMS (All versions < V4.0). The affected appl… | 2025-08-23T23:07:00.329000Z |
| var-202507-0094 | A vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5)… | 2025-08-23T23:07:00.223000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20049-1 | Security update for git | 2025-02-03T08:55:36Z | 2025-02-03T08:55:36Z |
| suse-su-2025:20047-1 | Security update for the Linux Kernel | 2025-02-03T08:55:15Z | 2025-02-03T08:55:15Z |
| suse-su-2025:20046-1 | Security update for runc | 2025-02-03T08:55:05Z | 2025-02-03T08:55:05Z |
| suse-su-2025:20045-1 | Security update for expat | 2025-02-03T08:54:55Z | 2025-02-03T08:54:55Z |
| suse-su-2025:20044-1 | Security update for the Linux Kernel | 2025-02-03T08:54:39Z | 2025-02-03T08:54:39Z |
| suse-su-2025:20043-1 | Security update for libxml2 | 2025-02-03T08:54:28Z | 2025-02-03T08:54:28Z |
| suse-su-2025:20042-1 | Security update for selinux-policy | 2025-02-03T08:54:14Z | 2025-02-03T08:54:14Z |
| suse-su-2025:20041-1 | Security update for systemd | 2025-02-03T08:54:00Z | 2025-02-03T08:54:00Z |
| suse-su-2025:20039-1 | Security update for keepalived | 2025-02-03T08:53:35Z | 2025-02-03T08:53:35Z |
| suse-su-2025:20038-1 | Security update for glibc | 2025-02-03T08:53:19Z | 2025-02-03T08:53:19Z |
| suse-su-2025:20037-1 | Security update for python-urllib3 | 2025-02-03T08:53:11Z | 2025-02-03T08:53:11Z |
| suse-su-2025:20036-1 | Security update for qemu | 2025-02-03T08:53:00Z | 2025-02-03T08:53:00Z |
| suse-su-2025:20035-1 | Security update for python-Jinja2 | 2025-02-03T08:53:00Z | 2025-02-03T08:53:00Z |
| suse-su-2025:20034-1 | Security update for python-requests | 2025-02-03T08:52:32Z | 2025-02-03T08:52:32Z |
| suse-su-2025:20032-1 | Security update for avahi | 2025-02-03T08:52:02Z | 2025-02-03T08:52:02Z |
| suse-su-2025:20031-1 | Security update for glib2 | 2025-02-03T08:51:51Z | 2025-02-03T08:51:51Z |
| suse-su-2025:20030-1 | Security update for mozilla-nss | 2025-02-03T08:51:41Z | 2025-02-03T08:51:41Z |
| suse-su-2025:20029-1 | Security update for curl | 2025-02-03T08:51:25Z | 2025-02-03T08:51:25Z |
| suse-su-2025:20028-1 | Security update for the Linux Kernel | 2025-02-03T08:51:14Z | 2025-02-03T08:51:14Z |
| suse-su-2025:20025-1 | Security update for python311, python-rpm-macros | 2025-02-03T08:50:40Z | 2025-02-03T08:50:40Z |
| suse-su-2025:20024-1 | Security update for unbound | 2025-02-03T08:50:28Z | 2025-02-03T08:50:28Z |
| suse-su-2025:20022-1 | Security update for ca-certificates-mozilla | 2025-02-03T08:49:32Z | 2025-02-03T08:49:32Z |
| suse-su-2025:20020-1 | Security update for ucode-intel | 2025-02-03T08:49:06Z | 2025-02-03T08:49:06Z |
| suse-su-2025:20019-1 | Security update for skopeo | 2025-02-03T08:48:38Z | 2025-02-03T08:48:38Z |
| suse-su-2025:20018-1 | Security update for kernel-firmware | 2025-02-03T08:48:38Z | 2025-02-03T08:48:38Z |
| suse-su-2025:20017-1 | Security update for gnutls | 2025-02-03T08:48:38Z | 2025-02-03T08:48:38Z |
| suse-su-2025:20014-1 | Security update for openssl-3, libpulp, ulp-macros | 2025-02-03T08:48:16Z | 2025-02-03T08:48:16Z |
| suse-su-2025:20013-1 | Security update for podman | 2025-02-03T08:47:47Z | 2025-02-03T08:47:47Z |
| suse-su-2025:20012-1 | Security update for libvirt | 2025-02-03T08:47:37Z | 2025-02-03T08:47:37Z |
| suse-su-2025:20011-1 | Security update for qemu | 2025-02-03T08:47:27Z | 2025-02-03T08:47:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:12758-1 | google-guest-agent-20230221.00-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12757-1 | aws-nitro-enclaves-binaryblobs-upstream-1.2.2~git0.4ccc639-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12756-1 | java-1_8_0-openj9-1.8.0.362-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12755-1 | java-17-openj9-17.0.6.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12754-1 | java-11-openj9-11.0.18.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12753-1 | MozillaFirefox-110.0.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12752-1 | python310-3.10.10-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12751-1 | gvim-9.0.1367-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12750-1 | tomcat-9.0.43-14.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12749-1 | strongswan-5.9.10-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12748-1 | python39-3.9.16-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12747-1 | python38-3.8.16-5.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12746-1 | newsboat-2.30.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12745-1 | gdb-12.1-6.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12744-1 | tar-1.34-10.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12743-1 | redis-7.0.8-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12742-1 | python310-yarl-1.8.2-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12741-1 | python-2.7.18-29.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12740-1 | obs-service-go_modules-0.6.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12739-1 | libmicrohttpd-devel-0.9.76-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12738-1 | cloud-init-23.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12737-1 | kubernetes1.22-apiserver-1.22.17-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12736-1 | qemu-7.1.0-12.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12735-1 | curl-7.88.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12734-1 | peazip-9.1.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12733-1 | mlterm-3.9.2-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12732-1 | grafana-9.3.6-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12731-1 | dnsdist-1.8.0~rc1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12730-1 | libtiff-devel-32bit-4.5.0-3.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:12729-1 | terraform-provider-helm-2.9.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-moodle-2020-25627 | 2024-03-06T11:12:01.867Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-1756 | 2024-03-06T11:12:04.986Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-1755 | 2024-03-06T11:12:08.478Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-1754 | 2024-03-06T11:12:11.809Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-1692 | 2024-03-06T11:12:14.814Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-1691 | 2024-03-06T11:12:17.968Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-14322 | 2024-03-06T11:12:21.260Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-14321 | 2024-03-06T11:12:24.622Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-14320 | 2024-03-06T11:12:28.003Z | 2025-04-03T14:40:37.652Z | |
| bit-moodle-2020-10738 | 2024-03-06T11:12:31.298Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity2-2023-38285 | 2024-03-06T10:56:30.263Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity2-2023-28882 | 2024-03-06T10:56:39.666Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity2-2023-24021 | 2024-03-06T10:56:51.795Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity2-2020-15598 | 2024-03-06T10:57:22.693Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity-2023-38285 | 2024-03-06T10:56:23.264Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity-2023-28882 | 2024-03-06T10:56:32.385Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity-2023-24021 | 2024-03-06T10:56:44.073Z | 2025-04-03T14:40:37.652Z | |
| bit-modsecurity-2020-15598 | 2024-03-06T10:57:17.562Z | 2025-04-03T14:40:37.652Z | |
| bit-mod_wsgi-2022-2255 | 2024-03-06T10:56:14.075Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37061 | 2024-06-08T07:24:39.817Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37060 | 2024-06-08T07:24:57.709Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37059 | 2024-06-08T07:25:14.011Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37058 | 2024-06-08T07:25:30.807Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37056 | 2024-06-08T07:26:02.015Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37055 | 2024-06-08T07:26:21.309Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37054 | 2024-06-08T07:26:40.212Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37053 | 2024-06-08T07:26:56.518Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2024-37052 | 2024-06-08T07:27:12.212Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2023-43472 | 2024-03-06T10:58:17.282Z | 2025-04-03T14:40:37.652Z | |
| bit-mlflow-2023-30172 | 2024-03-06T10:58:44.563Z | 2025-04-03T14:40:37.652Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-23981 | Simple Food Ordering System editcategory.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23980 | Simple Food Ordering System /addproduct.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23979 | Simple Food Ordering System /addcategory.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23978 | Online Job Search Engine searchjob.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23977 | Online Job Search Engine registration.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23976 | Online Job Search Engine postjob.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23975 | E-Commerce Website user_index_search.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23974 | E-Commerce Website product_add_qty.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-23973 | E-Commerce Website delete_order_details.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-16 |
| cnvd-2025-24069 | Huawei HarmonyOS和EMUI HVB模块存在未明漏洞 | 2025-08-18 | 2025-10-15 |
| cnvd-2025-23971 | Online Course Registration /admin/manage-students.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23970 | Online Course Registration /admin/edit-course.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23969 | E-Commerce Website /pages/admin_account_delete.php文件SQL注入漏洞 | 2025-09-25 | 2025-10-15 |
| cnvd-2025-23968 | E-Commerce Website pages/admin_product_details.php文件SQL注入漏洞 | 2025-09-29 | 2025-10-15 |
| cnvd-2025-23967 | E-Commerce Website admin_index_search.php文件SQL注入漏洞 | 2025-09-29 | 2025-10-15 |
| cnvd-2025-23966 | E-Commerce Website admin_account_update.php文件SQL注入漏洞 | 2025-09-29 | 2025-10-15 |
| cnvd-2025-23965 | E-Commerce Website supplier_add.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23964 | E-Commerce Website product_add.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23963 | E-Commerce Website edit_order_details.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23962 | E-Commerce Website /pages/supplier_update.php SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23961 | Online Complaint Site /cms/users/complaint-details.php文件SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23960 | Online Complaint Site index.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-15 |
| cnvd-2025-23959 | Online Complaint Site category.php文件SQL注入漏洞 | 2025-10-15 | 2025-10-15 |
| cnvd-2025-23769 | WordPress Fintelligence Calculator plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23768 | WordPress Find Me On plugin SQL注入漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23767 | WordPress Featured Image from URL plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23766 | WordPress FancyTabs plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23765 | WordPress Eulerpool Research Systems plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23764 | WordPress Epic Bootstrap Buttons plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| cnvd-2025-23763 | WordPress Easy Elementor Addons plugin跨站脚本漏洞 | 2025-10-13 | 2025-10-15 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2022-avi-1073 | Multiples vulnérabilités dans les produits NextCloud | 2022-12-02T00:00:00.000000 | 2022-12-02T00:00:00.000000 |
| certfr-2022-avi-1072 | Multiples vulnérabilités dans TrendMicro Apex One | 2022-12-02T00:00:00.000000 | 2022-12-02T00:00:00.000000 |
| certfr-2022-avi-1071 | Multiples vulnérabilités dans les produits Asterisk | 2022-12-02T00:00:00.000000 | 2022-12-02T00:00:00.000000 |
| certfr-2022-avi-1070 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-12-02T00:00:00.000000 | 2022-12-02T00:00:00.000000 |
| certfr-2022-avi-1069 | Multiples vulnérabilités dans les produits IBM | 2022-12-01T00:00:00.000000 | 2022-12-01T00:00:00.000000 |
| certfr-2022-avi-1068 | Vulnérabilité dans Mozilla Thunderbird | 2022-12-01T00:00:00.000000 | 2022-12-01T00:00:00.000000 |
| certfr-2022-avi-1067 | Multiples vulnérabilités dans GitLab | 2022-12-01T00:00:00.000000 | 2022-12-01T00:00:00.000000 |
| certfr-2022-avi-1066 | Multiples vulnérabilités dans Aruba AirWave | 2022-11-30T00:00:00.000000 | 2022-11-30T00:00:00.000000 |
| certfr-2022-avi-1065 | Multiples vulnérabilités dans Google Chrome | 2022-11-30T00:00:00.000000 | 2022-11-30T00:00:00.000000 |
| certfr-2022-avi-1064 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2022-11-30T00:00:00.000000 | 2022-11-30T00:00:00.000000 |
| certfr-2022-avi-1063 | Vulnérabilité dans le noyau Linux de Red Hat | 2022-11-30T00:00:00.000000 | 2022-11-30T00:00:00.000000 |
| certfr-2022-avi-1062 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2022-11-30T00:00:00.000000 | 2022-11-30T00:00:00.000000 |
| certfr-2022-avi-1061 | Multiples vulnérabilités dans Moxa Gamme UC | 2022-11-29T00:00:00.000000 | 2022-11-29T00:00:00.000000 |
| certfr-2022-avi-1060 | Vulnérabilité dans Microsoft Edge | 2022-11-29T00:00:00.000000 | 2022-11-29T00:00:00.000000 |
| certfr-2022-avi-1059 | Multiples vulnérabilités dans les produits IBM | 2022-11-29T00:00:00.000000 | 2022-11-29T00:00:00.000000 |
| certfr-2022-avi-677 | Vulnérabilité dans Trend Micro Apex One et Worry-Free Business Security | 2022-07-26T00:00:00.000000 | 2022-11-28T00:00:00.000000 |
| certfr-2022-avi-1058 | Vulnérabilité dans les produits Moxa | 2022-11-28T00:00:00.000000 | 2022-11-28T00:00:00.000000 |
| certfr-2022-avi-1055 | Vulnérabilité dans Moxa TN-5916 | 2022-11-25T00:00:00.000000 | 2022-11-28T00:00:00.000000 |
| certfr-2022-avi-1057 | Multiples vulnérabilités dans les produits Nextcloud | 2022-11-25T00:00:00.000000 | 2022-11-25T00:00:00.000000 |
| certfr-2022-avi-1056 | Vulnérabilité dans Google Chrome | 2022-11-25T00:00:00.000000 | 2022-11-25T00:00:00.000000 |
| certfr-2022-avi-1054 | Vulnérabilité dans PostgreSQL JDBC | 2022-11-24T00:00:00.000000 | 2022-11-24T00:00:00.000000 |
| certfr-2022-avi-1053 | Multiples vulnérabilités dans les produits Belden | 2022-11-24T00:00:00.000000 | 2022-11-24T00:00:00.000000 |
| certfr-2022-avi-1052 | Multiples vulnérabilités dans les routeurs Moxa | 2022-11-24T00:00:00.000000 | 2022-11-24T00:00:00.000000 |
| certfr-2022-avi-1051 | Multiples vulnérabilités dans les produits SolarWinds | 2022-11-23T00:00:00.000000 | 2022-11-23T00:00:00.000000 |
| certfr-2022-avi-1050 | Vulnérabilité dans IBM QRadar | 2022-11-23T00:00:00.000000 | 2022-11-23T00:00:00.000000 |
| certfr-2022-avi-1049 | Multiples vulnérabilités dans Aruba EdgeConnect Enterprise | 2022-11-23T00:00:00.000000 | 2022-11-23T00:00:00.000000 |
| certfr-2022-avi-1048 | Multiples vulnérabilités dans F5 BIG-IP | 2022-11-23T00:00:00.000000 | 2022-11-23T00:00:00.000000 |
| certfr-2022-avi-1047 | Vulnérabilité dans Sophos Mobile | 2022-11-22T00:00:00.000000 | 2022-11-22T00:00:00.000000 |
| certfr-2022-avi-1046 | Multiples vulnérabilités dans Moodle | 2022-11-22T00:00:00.000000 | 2022-11-22T00:00:00.000000 |
| certfr-2022-avi-1045 | Vulnérabilité dans les produits Moxa | 2022-11-22T00:00:00.000000 | 2022-11-22T00:00:00.000000 |