Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-27830
8.9 (4.0)
c3p0 vulnerable to Remote Code Execution via unsafe de… swaldman
 c3p0
 2026-02-26T00:45:18.222Z 2026-02-27T16:25:52.917Z
CVE-2026-27888
6.6 (4.0)
pypdf: Manipulated FlateDecode XFA streams can exhaust RAM py-pdf
 pypdf
 2026-02-26T00:42:00.542Z 2026-02-26T16:16:08.680Z
CVE-2026-27884
5.3 (3.1)
NetExec vulnerable to arbitrary file write via path tr… Pennyw0rth
 NetExec
 2026-02-26T00:39:15.832Z 2026-02-26T16:18:09.879Z
CVE-2026-27829
6.5 (3.1)
Astro is vulnerable to SSRF due to missing allowlist e… withastro
 astro
 2026-02-26T00:36:40.497Z 2026-02-26T16:21:44.676Z
CVE-2026-27946
8.2 (4.0)
ZITADEL Users Can Self-Verify Email/Phone via UpdateHu… zitadel
 zitadel
 2026-02-26T00:34:56.913Z 2026-02-26T16:29:22.712Z
CVE-2026-27945
2.1 (4.0)
ZITADEL has potential SSRF via Actions zitadel
 zitadel
 2026-02-26T00:29:58.157Z 2026-02-26T16:51:23.606Z
CVE-2026-27840
4.3 (3.1)
ZITADEL's truncated opaque tokens are still valid zitadel
 zitadel
 2026-02-26T00:27:08.933Z 2026-02-26T17:00:29.815Z
CVE-2026-27837
6.3 (3.1)
Dottie vulnerable to prototype pollution bypass via no… mickhansen
 dottie.js
 2026-02-26T00:19:24.289Z 2026-02-26T14:40:07.451Z
CVE-2026-27831
7.5 (3.1)
rldns Vulnerable to Heap-based Out-of-Bounds Read bluedragonsecurity
 rldns
 2026-02-26T00:11:45.608Z 2026-02-27T15:24:12.727Z
CVE-2026-27821
7.7 (4.0)
GPAC NHML Demuxer (dmx_nhml.c) Vulnerable to Stack Buf… gpac
 gpac
 2026-02-26T00:08:39.924Z 2026-02-26T15:15:39.671Z
CVE-2026-26186
5.1 (4.0)
Fleet has a SQL injection via backtick escape in ORDER… fleetdm
 fleet
 2026-02-26T00:05:02.016Z 2026-02-26T14:52:24.634Z
CVE-2026-27818
8.7 (4.0)
TerriaJS-Server has a domain validation bypass vulnera… TerriaJS
 terriajs-server
 2026-02-26T00:02:45.127Z 2026-02-26T15:16:30.580Z
CVE-2026-27812
8 (4.0)
Sub2API Vulnerable to Password Reset Poisoning via Hos… Wei-Shaw
 sub2api
 2026-02-26T00:00:10.239Z 2026-02-26T14:53:58.840Z
CVE-2026-26682
7.8 (3.1)
An issue in fastCMS before v.0.1.6 allows a local… n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T18:53:00.554Z
CVE-2025-71057
8.2 (3.1)
Improper session management in D-Link Wireless N … n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T19:01:48.362Z
CVE-2025-56605
5.4 (3.1)
A reflected Cross-Site Scripting (XSS) vulnerabil… n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T17:06:15.835Z
CVE-2025-50857
9.8 (3.1)
ZenTaoPMS v18.11 through v21.6.beta is vulnerable… n/a
 n/a
 2026-02-26T00:00:00.000Z 2026-02-26T18:48:30.603Z
CVE-2026-27809
6.8 (4.0)
psd-tools: Compression module has unguarded zlib decom… psd-tools
 psd-tools
 2026-02-25T23:57:00.760Z 2026-02-26T15:17:34.807Z
CVE-2026-27808
5.8 (3.1)
Mailpit is Vulnerable to Server-Side Request Forgery (… axllent
 mailpit
 2026-02-25T23:51:20.365Z 2026-02-26T15:47:56.826Z
CVE-2026-27804
9.3 (4.0)
Parse Server: Account takeover via JWT algorithm confu… parse-community
 parse-server
 2026-02-25T23:48:20.858Z 2026-02-26T17:03:50.903Z
CVE-2026-27735
6.4 (4.0)
mcp-server-git : Path traversal in git_add allows stag… modelcontextprotocol
 servers
 2026-02-25T23:45:52.077Z 2026-02-26T17:04:59.103Z
CVE-2026-27711
5.1 (4.0)
NanaZip UFS Archive Parser Memory Corruption via Unval… M2Team
 NanaZip
 2026-02-25T23:44:26.848Z 2026-02-26T15:07:47.597Z
CVE-2026-27710
5.1 (4.0)
NanaZip .NET Single-File Parser Integer Underflow Lead… M2Team
 NanaZip
 2026-02-25T23:43:28.219Z 2026-02-26T15:48:29.934Z
CVE-2026-27709
5.1 (4.0)
NanaZip .NET Single-File Manifest Parser Vulnerable to… M2Team
 NanaZip
 2026-02-25T23:39:03.772Z 2026-02-26T15:49:04.311Z
CVE-2026-27976
8.8 (3.1)
Zed Extension Sandbox Escape via Tar Symlink Following zed-industries
 zed
 2026-02-25T23:34:40.103Z 2026-02-27T04:55:52.466Z
CVE-2026-27967
7.1 (3.1)
Symlink Escape in Agent File Tools zed-industries
 zed
 2026-02-25T23:33:21.477Z 2026-02-28T04:55:28.156Z
CVE-2026-27800
7.4 (3.1)
Zed has Zip Slip Path Traversal in Extension Archive E… zed-industries
 zed
 2026-02-25T23:25:45.400Z 2026-02-26T17:04:50.704Z
CVE-2026-27799
4 (3.1)
ImageMagick has a heap Buffer Over-read in its DJVU im… ImageMagick
 ImageMagick
 2026-02-25T23:20:25.204Z 2026-02-26T17:04:08.122Z
CVE-2026-27798
4 (3.1)
ImageMagick: Heap Buffer Over-read in WaveletDenoise w… ImageMagick
 ImageMagick
 2026-02-25T23:18:33.174Z 2026-02-26T16:54:57.532Z
CVE-2026-27933
6.8 (3.1)
Manyfold vulnerable to session hijack via cookie leaka… manyfold3d
 manyfold
 2026-02-25T23:16:01.572Z 2026-02-26T16:45:33.523Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-27959
7.5 (3.1)
Koa has Host Header Injection via `ctx.hostname` koajs
 koa
 2026-02-26T01:45:45.668Z 2026-02-26T19:32:00.105Z
CVE-2026-27954
4.9 (4.0)
LiveHelperChat has department-level authorization bypa… LiveHelperChat
 livehelperchat
 2026-02-26T01:42:38.225Z 2026-02-26T19:30:20.351Z
CVE-2026-27952
8.8 (3.1)
Agenta has Python Sandbox Escape, Leading to Remote Co… Agenta-AI
 agenta-api
 2026-02-26T01:38:00.760Z 2026-02-26T19:27:29.328Z
CVE-2026-27948
5.4 (3.1)
Copyparty vulnerable to eflected cross-site scripting … 9001
 copyparty
 2026-02-26T01:32:15.184Z 2026-02-26T15:07:56.702Z
CVE-2026-27943
6.5 (3.1)
OpenEMR's Eye Exam View Trusts form_id Without Verifyi… openemr
 openemr
 2026-02-26T01:30:31.363Z 2026-02-26T15:28:13.472Z
CVE-2026-27942
2.7 (4.0)
fast-xml-parser has stack overflow in XMLBuilder with … NaturalIntelligence
 fast-xml-parser
 2026-02-26T01:22:11.383Z 2026-02-26T15:49:35.449Z
CVE-2026-27941
10 (3.1)
OpenLIT Vulnerable to Remote Code Execution and Secret… openlit
 openlit
 2026-02-26T01:17:22.532Z 2026-02-26T15:54:11.519Z
CVE-2026-27938
7.7 (3.1)
WPGraphQL Repo Vulnerable to Command Injection via Uns… wp-graphql
 wp-graphql
 2026-02-26T01:10:26.985Z 2026-02-26T19:22:46.590Z
CVE-2026-27904
7.5 (3.1)
minimatch ReDoS: nested *() extglobs generate catastro… isaacs
 minimatch
 2026-02-26T01:07:42.693Z 2026-02-26T19:21:39.006Z
CVE-2026-27903
7.5 (3.1)
minimatch has a ReDoS: matchOne() combinatorial backtr… isaacs
 minimatch
 2026-02-26T01:06:32.856Z 2026-02-26T19:20:51.517Z
CVE-2026-27902
5.3 (4.0)
Svelte Vulnerable to XSS via HTML Comment Injection in… sveltejs
 svelte
 2026-02-26T00:58:54.604Z 2026-02-26T18:51:39.142Z
CVE-2026-27901
5.3 (4.0)
Svelte vulnerable to XSS during SSR with contenteditab… sveltejs
 svelte
 2026-02-26T00:57:40.269Z 2026-02-26T14:31:00.714Z
CVE-2026-27900
5 (3.1)
Terraform Provider Debug Logs Vulnerable to Sensitive … linode
 terraform-provider-linode
 2026-02-26T00:53:19.168Z 2026-02-26T14:35:31.565Z
CVE-2026-27899
8.8 (3.1)
WireGuard Portal Vulnerable to Privilege Escalation to… h44z
 wg-portal
 2026-02-26T00:50:00.278Z 2026-02-26T16:02:52.876Z
CVE-2026-27887
6.9 (4.0)
Spin has memory leaks in various WIT interfaces spinframework
 spin
 2026-02-26T00:55:53.360Z 2026-02-26T14:34:29.169Z
CVE-2026-22728
4.9 (3.1)
sealed-secrets /v1/rotate can widen sealing scope to c… Bitnami
 sealed-secrets
 2026-02-26T00:50:00.863Z 2026-02-26T15:58:32.372Z
CVE-2026-1557
7.5 (3.1)
WP Responsive Images <= 1.0 - Unauthenticated Path Tra… stuartbates
 WP Responsive Images
 2026-02-26T01:24:14.199Z 2026-02-26T15:31:50.388Z
CVE-2026-27946
8.2 (4.0)
ZITADEL Users Can Self-Verify Email/Phone via UpdateHu… zitadel
 zitadel
 2026-02-26T00:34:56.913Z 2026-02-26T16:29:22.712Z
CVE-2026-27945
2.1 (4.0)
ZITADEL has potential SSRF via Actions zitadel
 zitadel
 2026-02-26T00:29:58.157Z 2026-02-26T16:51:23.606Z
CVE-2026-27896
7 (4.0)
MCP Go SDK Vulnerable to Improper Handling of Case Sen… modelcontextprotocol
 go-sdk
 2026-02-26T00:47:46.967Z 2026-02-26T17:06:41.150Z
CVE-2026-27888
6.6 (4.0)
pypdf: Manipulated FlateDecode XFA streams can exhaust RAM py-pdf
 pypdf
 2026-02-26T00:42:00.542Z 2026-02-26T16:16:08.680Z
CVE-2026-27884
5.3 (3.1)
NetExec vulnerable to arbitrary file write via path tr… Pennyw0rth
 NetExec
 2026-02-26T00:39:15.832Z 2026-02-26T16:18:09.879Z
CVE-2026-27840
4.3 (3.1)
ZITADEL's truncated opaque tokens are still valid zitadel
 zitadel
 2026-02-26T00:27:08.933Z 2026-02-26T17:00:29.815Z
CVE-2026-27837
6.3 (3.1)
Dottie vulnerable to prototype pollution bypass via no… mickhansen
 dottie.js
 2026-02-26T00:19:24.289Z 2026-02-26T14:40:07.451Z
CVE-2026-27831
7.5 (3.1)
rldns Vulnerable to Heap-based Out-of-Bounds Read bluedragonsecurity
 rldns
 2026-02-26T00:11:45.608Z 2026-02-27T15:24:12.727Z
CVE-2026-27830
8.9 (4.0)
c3p0 vulnerable to Remote Code Execution via unsafe de… swaldman
 c3p0
 2026-02-26T00:45:18.222Z 2026-02-27T16:25:52.917Z
CVE-2026-27829
6.5 (3.1)
Astro is vulnerable to SSRF due to missing allowlist e… withastro
 astro
 2026-02-26T00:36:40.497Z 2026-02-26T16:21:44.676Z
CVE-2026-27976
8.8 (3.1)
Zed Extension Sandbox Escape via Tar Symlink Following zed-industries
 zed
 2026-02-25T23:34:40.103Z 2026-02-27T04:55:52.466Z
CVE-2026-27967
7.1 (3.1)
Symlink Escape in Agent File Tools zed-industries
 zed
 2026-02-25T23:33:21.477Z 2026-02-28T04:55:28.156Z
CVE-2026-27933
6.8 (3.1)
Manyfold vulnerable to session hijack via cookie leaka… manyfold3d
 manyfold
 2026-02-25T23:16:01.572Z 2026-02-26T16:45:33.523Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-6j87-m5qx-9fqp
2.3 (4.0)
Craft CMS has Stored XSS in Table Field in its "Row Heading" Column Type 2026-02-25T19:11:31Z 2026-02-25T19:11:31Z
ghsa-3c45-4pj5-ch7m
8.6 (3.1)
changedetection.io is Vulnerable to SSRF via Watch URLs 2026-02-25T19:08:18Z 2026-02-25T19:08:18Z
ghsa-mw8m-398g-h89w
6.1 (3.1)
changedetection.io Vulnerable to Reflected XSS in RSS Single Watch Error Response 2026-02-25T19:07:44Z 2026-02-25T19:07:44Z
ghsa-65mp-fq8v-56jr
9.8 (3.1)
Flask-Reuploaded vulnerable to Remote Code Execution via Server-Side Template Injection 2026-02-25T19:06:50Z 2026-02-25T19:06:50Z
ghsa-jhp4-jvq3-w5xr
7.0 (4.0)
Parse Dashboard Has a Cache Key Collision that Leaks Master Key to Read-Only Sessions 2026-02-25T19:00:07Z 2026-02-25T19:00:07Z
ghsa-3534-xp88-25rc
8.3 (4.0)
Parse Dashboard is Missing CSRF Protection for its Agent Endpoint 2026-02-25T18:59:58Z 2026-02-25T18:59:58Z
ghsa-cvwj-6c9h-jg6v
9.3 (4.0)
Parse Dashboard is Missing Authorization for its Agent Endpoint 2026-02-25T18:59:44Z 2026-02-25T18:59:44Z
ghsa-rwj9-7j48-9f7q
7.3 (3.1)
Rucio WebUI Vulnerable to Stored Cross-site Scripting (XSS) through Custom Rule Function 2026-02-25T18:58:20Z 2026-02-27T21:50:07Z
ghsa-rvhr-26g4-p2r8
9.9 (3.1)
Budibase: Remote Code Execution via Unsafe eval() in View Filter Map Function (Budibase Cloud) 2026-02-25T18:57:39Z 2026-02-25T18:57:39Z
ghsa-h39h-7cvg-q7j6
8.1 (3.1)
8.6 (4.0)
AVideo has Authenticated Server-Side Request Forgery via downloadURL in aVideoEncoder.json.php 2026-02-25T18:57:05Z 2026-02-25T18:57:05Z
ghsa-38wq-6q2w-hcf9
5.3 (3.1)
Rucio WebUI has Username Enumeration via Login Error Message 2026-02-25T18:53:42Z 2026-02-27T21:49:59Z
ghsa-h79m-5jjm-jm4q
8.1 (3.1)
Rucio WebUI has a Reflected Cross-site Scripting Vulnerability 2026-02-25T18:53:29Z 2026-02-27T21:49:51Z
ghsa-qwc3-h9mg-4582
9.9 (4.0)
Parse Dashboard has incomplete authentication on AI Agent endpoint 2026-02-25T18:37:53Z 2026-02-25T18:37:53Z
ghsa-5476-xc4j-rqcv
8.9 (4.0)
c3p0 vulnerable to Remote Code Execution via unsafe deserialization of userOverridesAsString property 2026-02-25T18:35:23Z 2026-02-27T21:53:39Z
ghsa-xjhr-fm27-4hmx
4.8 (3.1)
OpenFUN Richie Observable Timing Discrepancy in its sync_course_run_from_request function 2026-02-25T18:31:38Z 2026-02-26T22:50:20Z
ghsa-wmg2-7qv4-gfgx
1.3 (4.0)
Improper Resource Shutdown or Release vulnerability in KrakenD, SLU KrakenD-CE (CircuitBreaker modu… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-w865-j4h6-vqm4
7.4 (3.1)
A vulnerability in Cisco Nexus 9000 Series Fabric Switches in ACI mode could allow an unauthenticat… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-rqc2-5fv7-4vrp
4.5 (3.1)
1.1 (4.0)
A flaw has been found in Chia Blockchain 2.1.0. The affected element is the function send_transacti… 2026-02-25T18:31:38Z 2026-02-25T18:31:39Z
ghsa-qwj7-2gpw-fvvg
4.4 (3.1)
A vulnerability in the NX-OS CLI privilege levels of Cisco UCS Manager Software could allow an auth… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-q725-qhcv-vv5j
5.6 (3.1)
2.9 (4.0)
A security vulnerability has been detected in Chia Blockchain 2.1.0. This issue affects the functio… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-p4cq-46q3-jr7w
10.0 (3.1)
A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN … 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-mp6j-7g85-8pg2
7.5 (3.1)
A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could a… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-mjw4-rp5q-2h7w
8.8 (3.1)
A vulnerability in Cisco Catalyst SD-WAN Manager could allow an authenticated, local attacker with … 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-j57x-8g4m-v9v5
7.5 (3.1)
Due to an improperly configured firewall rule, the router will accept any connection on the WAN por… 2026-02-25T18:31:38Z 2026-02-25T21:31:18Z
ghsa-gv9w-2wpq-7538
5.5 (3.1)
A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Contro… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-f66r-8xv9-3p2w
4.3 (3.1)
2.1 (4.0)
A security flaw has been discovered in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This affects a… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-f2jw-4mh9-f63v
9.8 (3.1)
Due to missing neutralization of special elements, OS commands can be injected via the update funct… 2026-02-25T18:31:38Z 2026-02-26T18:31:39Z
ghsa-cf88-f64q-c626
6.5 (3.1)
A vulnerability in Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-c9vx-x9q2-ffx8
7.7 (3.1)
A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco Nexus 9000 Seri… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ghsa-c2mj-6hqf-86q8
6.5 (3.1)
A vulnerability in the CLI and web-based management interface of Cisco UCS Manager Software could a… 2026-02-25T18:31:38Z 2026-02-25T18:31:38Z
ID Severity Description Package Published Updated
pysec-2023-278
5.3 (3.1)
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1… mindsdb 2023-12-11T21:15:00Z 2026-02-25T10:47:20.007476Z
pysec-2023-277
5.3 (3.1)
MindsDB connects artificial intelligence models to real time data. Versions prior to 23.1… mindsdb 2023-12-11T19:15:00+00:00 2024-11-21T14:22:54.391272+00:00
pysec-2023-292
7.8 (3.1)
PyInstaller bundles a Python application and all its dependencies into a single package. … pyinstaller 2023-12-09T01:15:00+00:00 2024-11-21T14:22:59.796437+00:00
pysec-2023-260
6.1 (3.1)
A reflected Cross-Site Scripting (XSS) vulnerability exists in the mlflow/mlflow reposito… mlflow 2023-12-07T05:15:00+00:00 2024-04-16T15:20:55.191003+00:00
pysec-2023-291
7.8 (3.1)
PyDrive2 is a wrapper library of google-api-python-client that simplifies many common Goo… pydrive2 2023-12-05T21:15:00+00:00 2024-11-21T14:22:59.681617+00:00
pysec-2023-272
4.3 (3.1)
The Jupyter Server provides the backend (i.e. the core services, APIs, and REST endpoints… jupyter-server 2023-12-04T21:15:00+00:00 2024-11-21T14:22:52.227754+00:00
pysec-2023-250
5.3 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper … aiohttp 2023-11-30T07:15:00+00:00 2024-01-29T16:22:26.409794+00:00
pysec-2023-251
5.3 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Improper … aiohttp 2023-11-29T20:15:00+00:00 2024-01-29T16:22:26.513672+00:00
pysec-2023-254
7.5 (3.1)
cryptography is a package designed to expose cryptographic primitives and recipes to Pyth… cryptography 2023-11-29T19:15:00+00:00 2024-02-17T07:18:27.688636+00:00
pysec-2023-268
7.5 (3.1)
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Dolphi… apache-dolphinscheduler 2023-11-24T08:15:00+00:00 2024-11-21T14:22:40.797843+00:00
pysec-2023-285
5.4 (3.1)
Nautobot is a Network Source of Truth and Network Automation Platform built as a web appl… nautobot 2023-11-22T16:15:00+00:00 2024-11-21T14:22:55.567982+00:00
pysec-2023-244
Apache Software Foundation Apache Submarine has an SQL injection vulnerability when a use… apache-submarine 2023-11-22T10:15:00+00:00 2023-11-22T11:21:52.095543+00:00
pysec-2023-288
6.5 (3.1)
The Nautobot Device Onboarding plugin uses the netmiko and NAPALM libraries to simplify t… nautobot-device-onboarding 2023-11-21T23:15:00+00:00 2024-11-21T14:22:55.475794+00:00
pysec-2023-302
7.5 (3.1)
An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive info… upydev 2023-11-20T23:15:00Z 2024-11-25T18:35:18.357593Z
pysec-2023-240
Apache Software Foundation Apache Submarine has a bug when serializing against yaml. The … apache-submarine 2023-11-20T09:15:00+00:00 2023-11-20T11:21:41.073991+00:00
pysec-2023-238
Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 t… pyarrow 2023-11-20T08:59:06.851388+00:00
pysec-2023-245
7.5 (3.1)
PyPinkSign v0.5.1 uses a non-random or static IV for Cipher Block Chaining (CBC) mode in … pypinksign 2023-11-16T18:15:00+00:00 2023-11-22T19:19:42.405614+00:00
pysec-2023-243
7.4 (3.1)
Missing SSL certificate validation in localstack v2.3.2 allows attackers to eavesdrop on … localstack 2023-11-16T18:15:00Z 2024-10-09T12:05:48.156835Z
pysec-2023-242
7.4 (3.1)
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on comm… httpie 2023-11-16T18:15:00+00:00 2023-11-22T02:43:48.390438+00:00
pysec-2023-304
8.8 (3.1)
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federate… vantage6-server 2023-11-14T21:15:00+00:00 2024-11-21T14:23:02.641254+00:00
pysec-2023-303
8.8 (3.1)
vantage6 is a framework to manage and deploy privacy enhancing technologies like Federate… vantage6-node 2023-11-14T21:15:00+00:00 2024-11-21T14:23:02.574095+00:00
pysec-2023-247
6.5 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Affected … aiohttp 2023-11-14T21:15:00+00:00 2023-11-22T23:23:57.631856+00:00
pysec-2023-246
7.5 (3.1)
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP … aiohttp 2023-11-14T21:15:00+00:00 2023-11-22T23:23:57.547793+00:00
pysec-2023-239
6.8 (3.1)
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the remote end of an… asyncssh 2023-11-14T03:15:00+00:00 2023-11-20T09:25:38.326328+00:00
pysec-2023-237
5.9 (3.1)
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the extension info m… asyncssh 2023-11-14T03:15:00+00:00 2023-11-17T17:27:01.919743+00:00
pysec-2023-275
7.5 (3.1)
Label Studio is an open source data labeling tool. In all current versions of Label Studi… label-studio 2023-11-13T21:15:00+00:00 2024-11-21T14:22:53.350760+00:00
pysec-2023-236
7.5 (3.1)
Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulne… remarshal 2023-11-13T03:15:00+00:00 2023-11-16T20:25:23.801345+00:00
pysec-2023-232
We failed to apply CVE-2023-40611 in 2.7.1 and this vulnerability was marked as fixed the… apache-airflow 2023-11-12T14:15:00+00:00 2023-11-12T16:29:15.404665+00:00
pysec-2023-231
Apache Airflow, versions before 2.7.3, has a vulnerability that allows an authorized user… apache-airflow 2023-11-12T14:15:00+00:00 2023-11-12T16:29:15.321733+00:00
pysec-2023-241
9.1 (3.1)
Piccolo is an object-relational mapping and query builder which supports asyncio. Prior t… piccolo 2023-11-10T18:15:00Z 2024-01-23T23:21:13.409656Z
ID Description Type
ID Description Updated
ID Description Published Updated
mal-2026-736 Malicious code in ggajsvjsg (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:24Z
mal-2026-735 Malicious code in docusaurus-plugin-launchdarkly (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:23Z
mal-2026-734 Malicious code in xpack-subscription-test (npm) 2026-02-04T09:40:53Z 2026-02-06T03:05:27Z
mal-2026-733 Malicious code in deuro-landing-page (npm) 2026-02-04T09:21:07Z 2026-02-06T03:05:23Z
mal-2026-731 Malicious code in cicd-ppe-test (PyPI) 2026-02-04T07:33:21Z 2026-02-04T07:33:21Z
mal-2026-732 Malicious code in gridifys (PyPI) 2026-02-04T07:29:56Z 2026-02-04T07:29:56Z
mal-2026-717 Malicious code in partnerss (npm) 2026-02-04T05:25:27Z 2026-02-06T03:05:25Z
mal-2026-725 Malicious code in json-mapping-source (npm) 2026-02-04T05:25:15Z 2026-02-06T03:05:24Z
mal-2026-720 Malicious code in chai-grab (npm) 2026-02-04T05:22:34Z 2026-02-06T03:05:23Z
mal-2026-730 Malicious code in zappr (npm) 2026-02-04T05:14:29Z 2026-02-06T03:05:28Z
mal-2026-729 Malicious code in zalando-consent-api (npm) 2026-02-04T05:14:29Z 2026-02-06T03:05:28Z
mal-2026-728 Malicious code in z-shop-ui (npm) 2026-02-04T05:14:29Z 2026-02-06T03:05:27Z
mal-2026-727 Malicious code in z-shop-js-env (npm) 2026-02-04T05:14:29Z 2026-02-06T03:05:27Z
mal-2026-726 Malicious code in z-shop-event-bus (npm) 2026-02-04T05:14:29Z 2026-02-06T03:05:27Z
mal-2026-721 Malicious code in dotenv-embedded (npm) 2026-02-04T05:11:23Z 2026-02-06T03:05:23Z
mal-2026-719 Malicious code in chai-async-promised (npm) 2026-02-04T05:11:23Z 2026-02-06T03:05:23Z
mal-2026-724 Malicious code in https-emailjs (npm) 2026-02-04T05:02:52Z 2026-02-06T03:05:24Z
mal-2026-723 Malicious code in http-emailjs (npm) 2026-02-04T05:02:52Z 2026-02-06T03:05:24Z
mal-2026-718 Malicious code in @fxinternal/netdiagnostics (npm) 2026-02-04T05:00:18Z 2026-02-06T03:05:22Z
mal-2026-722 Malicious code in express-groups-routes (npm) 2026-02-04T04:56:58Z 2026-02-06T03:05:23Z
mal-2026-716 Malicious code in si-wsl (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-715 Malicious code in rreact-sdk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-714 Malicious code in reactt-sdkk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-713 Malicious code in react-sdkk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-712 Malicious code in ongose (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-711 Malicious code in mongoose_update (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-709 Malicious code in mongooose_update (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-710 Malicious code in mongooose_updated (npm) 2026-02-04T04:41:10Z 2026-02-06T03:05:25Z
mal-2026-708 Malicious code in incode-kyc-backend (npm) 2026-02-03T21:30:33Z 2026-02-06T03:05:24Z
mal-2026-707 Malicious code in js-unpack (npm) 2026-02-03T17:41:26Z 2026-02-06T03:05:24Z
ID Description Published Updated
wid-sec-w-2025-2725 Red Hat OpenShift Dev Spaces: Schwachstelle ermöglicht Codeausführung 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2724 Golang Go: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2026-02-23T23:00:00.000+00:00
wid-sec-w-2025-2722 ImageMagick: Schwachstelle ermöglicht Denial of Service 2025-12-02T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2721 Mautic: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2720 Cacti: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2025-12-02T23:00:00.000+00:00 2025-12-02T23:00:00.000+00:00
wid-sec-w-2025-2719 vim: Schwachstelle ermöglicht Codeausführung 2025-12-02T23:00:00.000+00:00 2025-12-09T23:00:00.000+00:00
wid-sec-w-2025-2718 Google Chrome/Microsoft Edge: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2717 Django: Mehrere Schwachstellen 2025-12-02T23:00:00.000+00:00 2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2716 Infoblox NIOS: Mehrere Schwachstellen 2025-12-01T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2715 Mattermost Server: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-01T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2714 Avast Antivirus: Mehrere Schwachstellen 2025-12-01T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2713 OpenVPN: Schwachstelle ermöglicht Denial of Service 2025-12-01T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2712 Mattermost: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-01T23:00:00.000+00:00 2026-02-26T23:00:00.000+00:00
wid-sec-w-2025-2711 Android Patchday Dezember 2025: Mehrere Schwachstellen 2025-12-01T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2710 cPanel cPanel/WHM: Schwachstelle ermöglicht Privilegieneskalation 2025-12-01T23:00:00.000+00:00 2025-12-11T23:00:00.000+00:00
wid-sec-w-2025-2709 Samsung Android: Mehrere Schwachstellen 2025-12-01T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2708 Angular: Schwachstelle ermöglicht Cross-Site Scripting 2025-12-01T23:00:00.000+00:00 2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2707 Red Hat Enterprise Linux (Quarkus): Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-01T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2706 Python: Mehrere Schwachstellen ermöglichen Denial of Service 2025-12-01T23:00:00.000+00:00 2026-02-04T23:00:00.000+00:00
wid-sec-w-2025-2705 Kubernetes: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-01T23:00:00.000+00:00 2025-12-14T23:00:00.000+00:00
wid-sec-w-2025-2704 Apache Struts: Schwachstelle ermöglicht Denial of Service 2025-12-01T23:00:00.000+00:00 2025-12-10T23:00:00.000+00:00
wid-sec-w-2025-2703 Zabbix: Mehrere Schwachstellen 2025-11-30T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2702 Red Hat Enterprise Linux (Developer Hub): Schwachstelle ermöglicht Manipulation von Dateien 2025-11-30T23:00:00.000+00:00 2025-12-08T23:00:00.000+00:00
wid-sec-w-2025-2701 xwiki (XJetty): Schwachstelle ermöglicht Offenlegung von Informationen 2025-11-30T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2700 CODESYS Control und Development System: Mehrere Schwachstellen 2025-11-30T23:00:00.000+00:00 2025-12-01T23:00:00.000+00:00
wid-sec-w-2025-2699 Samsung Exynos: Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-30T23:00:00.000+00:00 2025-12-03T23:00:00.000+00:00
wid-sec-w-2025-2698 MISP: Mehrere Schwachstellen 2025-11-30T23:00:00.000+00:00 2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-2697 Devolutions Remote Desktop Manager und Server: Schwachstelle ermöglicht Offenlegung von Informationen 2025-11-30T23:00:00.000+00:00 2025-11-30T23:00:00.000+00:00
wid-sec-w-2025-2696 expat: Schwachstelle ermöglicht Denial of Service 2025-11-27T23:00:00.000+00:00 2025-11-27T23:00:00.000+00:00
wid-sec-w-2025-2695 Devolutions Server: Mehrere Schwachstellen 2025-11-27T23:00:00.000+00:00 2025-11-27T23:00:00.000+00:00
ID Description Published Updated
ncsc-2025-0118 Kwetsbaarheden verholpen in Adobe Framemaker 2025-04-09T08:14:16.645915Z 2025-04-09T08:14:16.645915Z
ncsc-2025-0117 Kwetsbaarheden verholpen in Adobe Animate 2025-04-09T08:12:45.041685Z 2025-04-09T08:12:45.041685Z
ncsc-2025-0116 Kwetsbaarheid verholpen in Adobe Photoshop 2025-04-09T08:09:40.474635Z 2025-04-09T08:09:40.474635Z
ncsc-2025-0115 Kwetsbaarheden verholpen in Adobe ColdFusion 2025-04-09T08:08:15.866613Z 2025-04-09T08:08:15.866613Z
ncsc-2025-0114 Kwetsbaarheden verholpen in Adobe After Effects 2025-04-09T08:05:51.653949Z 2025-04-09T08:05:51.653949Z
ncsc-2025-0113 Kwetsbaarheid verholpen in FortiSwitch 2025-04-09T06:49:51.895137Z 2025-04-09T06:49:51.895137Z
ncsc-2025-0112 Kwetsbaarheden verholpen in Microsoft Windows 2025-04-08T18:57:53.660384Z 2025-04-08T18:57:53.660384Z
ncsc-2025-0111 Kwetsbaarheid verholpen in Microsoft Dynamics 2025-04-08T18:56:16.386532Z 2025-04-08T18:56:16.386532Z
ncsc-2025-0110 Kwetsbaarheden verholpen in Microsoft Developer Tools 2025-04-08T18:54:30.631706Z 2025-04-08T18:54:30.631706Z
ncsc-2025-0109 Kwetsbaarheden verholpen in Microsoft Azure 2025-04-08T18:53:20.624247Z 2025-04-08T18:53:20.624247Z
ncsc-2025-0108 Kwetsbaarheid verholpen in Microsoft System Center 2025-04-08T18:52:22.999321Z 2025-04-08T18:52:22.999321Z
ncsc-2025-0107 Kwetsbaarheden verholpen in Microsoft Office 2025-04-08T18:50:53.931519Z 2025-04-08T18:50:53.931519Z
ncsc-2025-0106 Kwetsbaarheden verholpen in Siemens producten 2025-04-08T13:57:11.959816Z 2025-04-08T13:57:11.959816Z
ncsc-2025-0105 Kwetsbaarheid verholpen in Ivanti Connect Secure, Policy Secure en ZTA Gateways 2025-04-03T14:19:37.560619Z 2025-04-03T14:19:37.560619Z
ncsc-2025-0104 Kwetsbaarheid verholpen in Cisco Enterprise Chat and Email 2025-04-03T08:04:22.928655Z 2025-04-03T08:04:22.928655Z
ncsc-2025-0103 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2025-04-01T08:42:27.059536Z 2025-04-01T08:42:27.059536Z
ncsc-2025-0102 Kwetsbaarheden verholpen in Apple macOS 2025-04-01T08:41:09.934597Z 2025-04-01T08:41:09.934597Z
ncsc-2025-0101 Kwetsbaarheid verholpen in CrushFTP 2025-04-01T07:47:50.425419Z 2025-04-07T14:03:59.372671Z
ncsc-2025-0100 Kwetsbaarheden verholpen in GitLab EE/CE 2025-03-27T14:49:34.316050Z 2025-03-27T14:49:34.316050Z
ncsc-2025-0099 Kwetsbaarheden verholpen in Splunk Enterprise en Splunk Cloud Platform 2025-03-27T09:18:30.331072Z 2025-03-27T09:18:30.331072Z
ncsc-2025-0098 Kwetsbaarheid verholpen in Google Chrome 2025-03-26T12:45:59.434386Z 2025-03-26T12:45:59.434386Z
ncsc-2025-0097 Kwetsbaarheid verholpen in NetApp SnapCenter 2025-03-25T08:41:39.996819Z 2025-03-25T08:41:39.996819Z
ncsc-2025-0096 Kwetsbaarheid verholpen in Next.js 2025-03-25T08:38:53.524904Z 2025-03-25T08:38:53.524904Z
ncsc-2025-0095 Kwetsbaarheden verholpen in Kubernetes Ingress NGINX Controller 2025-03-25T07:13:08.093318Z 2025-03-27T14:41:30.387171Z
ncsc-2025-0094 Kwetsbaarheid verholpen in Veeam Backup & Replication 2025-03-20T14:10:16.806777Z 2025-03-20T14:10:16.806777Z
ncsc-2025-0093 Kwetsbaarheid verholpen in IBM InfoSphere Information Server 2025-03-20T13:17:45.897480Z 2025-03-20T13:17:45.897480Z
ncsc-2025-0092 Kwetsbaarheden verholpen in IBM AIX 2025-03-20T13:13:43.163579Z 2025-03-20T13:13:43.163579Z
ncsc-2025-0091 Kwetsbaarheid verholpen in Synology DiskStation Manager 2025-03-19T15:03:23.414509Z 2025-03-19T15:03:23.414509Z
ncsc-2025-0090 Kwetsbaarheid verholpen in Synology Replication Service en Synology Unified Controller 2025-03-19T15:02:46.122619Z 2025-03-19T15:02:46.122619Z
ncsc-2025-0089 Kwetsbaarheid verholpen in Apache Tomcat 2025-03-17T18:36:12.978021Z 2025-03-17T18:36:12.978021Z
ID Description Published Updated
ID Description Published Updated
ssa-433782 SSA-433782: Improper Access Control Vulnerability in Mendix 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-348662 SSA-348662: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-310038 SSA-310038: Multiple Vulnerabilities in SCALANCE X Switch Devices 2022-07-12T00:00:00Z 2023-04-11T00:00:00Z
ssa-243317 SSA-243317 File Parsing Vulnerability in Simcenter Femap and Parasolid 2022-07-12T00:00:00Z 2022-09-13T00:00:00Z
ssa-225578 SSA-225578: Improper Access Control Vulnerability in SICAM GridEdge Before V2.7.3 2022-07-12T00:00:00Z 2025-11-11T00:00:00Z
ssa-988345 SSA-988345: Local Privilege Escalation Vulnerability in Xpedition Designer 2022-06-14T00:00:00Z 2023-06-13T00:00:00Z
ssa-693555 SSA-693555: Memory Corruption Vulnerability in EN100 Ethernet Module 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-685781 SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products 2022-06-14T00:00:00Z 2022-10-11T00:00:00Z
ssa-631336 SSA-631336: Multiple Web Server Vulnerabilities in SICAM GridEdge Before V2.6.6 2022-06-14T00:00:00Z 2025-11-11T00:00:00Z
ssa-484086 SSA-484086: Multiple Vulnerabilities in SINEMA Remote Connect Server before V3.1 2022-06-14T00:00:00Z 2024-07-09T00:00:00Z
ssa-789162 SSA-789162: Vulnerabilities in Teamcenter 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-736385 SSA-736385: Memory Corruption Vulnerability in OpenV2G 2022-05-10T00:00:00Z 2022-05-10T00:00:00Z
ssa-732250 SSA-732250: Libcurl Vulnerabilities in Industrial Devices 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-662649 SSA-662649: Denial of Service Vulnerability in Desigo DXR and PXC Controllers 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-626968 SSA-626968: Multiple Webserver Vulnerabilities in Desigo PXC and DXR Devices 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-363107 SSA-363107: An Improper Initialization Vulnerability Affects SIMATIC WinCC Kiosk Mode 2022-05-10T00:00:00Z 2023-11-14T00:00:00Z
ssa-321292 SSA-321292: Denial of Service in the OPC Foundation Local Discovery Server (LDS) in Industrial Products 2022-05-10T00:00:00Z 2024-10-08T00:00:00Z
ssa-285795 SSA-285795: Denial of Service in OPC-UA in Industrial Products 2022-05-10T00:00:00Z 2023-10-10T00:00:00Z
ssa-998762 SSA-998762: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.2 2022-04-12T00:00:00Z 2022-04-12T00:00:00Z
ssa-870917 SSA-870917: Improper Access Control Vulnerability in Mendix 2022-04-12T00:00:00Z 2022-04-12T00:00:00Z
ssa-836527 SSA-836527: Multiple Vulnerabilities in SCALANCE X-300 Switch Family Devices 2022-04-12T00:00:00Z 2022-04-12T00:00:00Z
ssa-711829 SSA-711829: Denial of Service Vulnerability in TIA Administrator 2022-04-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-557541 SSA-557541: Denial-of-Service Vulnerability in SIMATIC S7-400 CPUs 2022-04-12T00:00:00Z 2023-04-11T00:00:00Z
ssa-446448 SSA-446448: Denial of Service Vulnerability in PROFINET Stack Integrated on Interniche Stack 2022-04-12T00:00:00Z 2025-01-14T00:00:00Z
ssa-414513 SSA-414513: Information Disclosure Vulnerability in Mendix 2022-04-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-350757 SSA-350757: Improper Access Control Vulnerability in TIA Portal Affecting S7-1200 and S7-1500 CPUs Web Server (Incl. Related ET200 CPUs and SIPLUS variants) 2022-04-12T00:00:00Z 2022-04-12T00:00:00Z
ssa-316850 SSA-316850: Unauthenticated File Access in SICAM A8000 Devices 2022-04-12T00:00:00Z 2022-04-12T00:00:00Z
ssa-594438 SSA-594438: Remote Code Execution and Denial-of-Service Vulnerability in multiple RUGGEDCOM ROX products 2022-03-08T00:00:00Z 2022-03-08T00:00:00Z
ssa-406691 SSA-406691: Buffer Vulnerabilities in DHCP function of RUGGEDCOM ROX products 2022-03-08T00:00:00Z 2022-03-08T00:00:00Z
ssa-389290 SSA-389290: Third-Party Component Vulnerabilities in SINEC INS 2022-03-08T00:00:00Z 2022-03-08T00:00:00Z
ID Description Published Updated
rhsa-2026:1584 Red Hat Security Advisory: gimp:2.8 security update 2026-01-29T14:14:40+00:00 2026-01-29T21:09:12+00:00
rhsa-2026:1591 Red Hat Security Advisory: gimp:2.8 security update 2026-01-29T14:14:17+00:00 2026-01-29T21:09:20+00:00
rhsa-2026:1587 Red Hat Security Advisory: gimp security update 2026-01-29T14:13:02+00:00 2026-01-29T21:09:34+00:00
rhsa-2026:1585 Red Hat Security Advisory: gimp security update 2026-01-29T13:59:32+00:00 2026-01-29T21:09:32+00:00
rhsa-2026:1581 Red Hat Security Advisory: kernel security update 2026-01-29T13:44:23+00:00 2026-02-05T01:33:56+00:00
rhsa-2026:1574 Red Hat Security Advisory: gimp:2.8 security update 2026-01-29T12:03:06+00:00 2026-01-29T21:09:30+00:00
rhsa-2026:1569 Red Hat Security Advisory: spice-client-win security update 2026-01-29T11:29:52+00:00 2026-01-29T15:24:56+00:00
rhsa-2026:1570 Red Hat Security Advisory: spice-client-win security update 2026-01-29T11:28:02+00:00 2026-01-29T15:24:57+00:00
rhsa-2026:1572 Red Hat Security Advisory: spice-client-win security update 2026-01-29T11:23:57+00:00 2026-01-29T15:24:57+00:00
rhsa-2026:1571 Red Hat Security Advisory: spice-client-win security update 2026-01-29T11:17:55+00:00 2026-01-29T15:24:57+00:00
rhsa-2026:1558 Red Hat Security Advisory: python3 security update 2026-01-29T09:44:52+00:00 2026-02-16T14:22:36+00:00
rhsa-2026:1546 Red Hat Security Advisory: python3.11-urllib3 security update 2026-01-29T09:08:25+00:00 2026-02-17T12:41:22+00:00
rhsa-2026:1537 Red Hat Security Advisory: python security update 2026-01-29T07:12:28+00:00 2026-02-16T14:22:37+00:00
rhsa-2026:1536 Red Hat Security Advisory: Red Hat Ceph Storage 9.0 Security and Enhancement update 2026-01-29T07:02:14+00:00 2026-02-17T09:27:29+00:00
rhsa-2026:1520 Red Hat Security Advisory: Red Hat multicluster global hub 1.6.1 security update 2026-01-29T01:14:38+00:00 2026-02-17T08:01:39+00:00
rhsa-2026:1519 Red Hat Security Advisory: openssl security update 2026-01-29T00:24:19+00:00 2026-02-12T19:28:07+00:00
rhsa-2026:1518 Red Hat Security Advisory: grafana-pcp security update 2026-01-28T23:26:14+00:00 2026-02-17T12:41:21+00:00
rhsa-2026:1517 Red Hat Security Advisory: RHACS 4.8.8 security and bug fix update 2026-01-28T22:40:02+00:00 2026-02-17T11:15:38+00:00
rhsa-2026:1511 Red Hat Security Advisory: gimp security update 2026-01-28T20:23:44+00:00 2026-01-29T21:09:29+00:00
rhsa-2026:1509 Red Hat Security Advisory: spice-client-win security update 2026-01-28T19:28:53+00:00 2026-01-30T08:44:05+00:00
rhsa-2026:1512 Red Hat Security Advisory: kernel security update 2026-01-28T19:17:58+00:00 2026-02-11T18:55:27+00:00
rhsa-2026:1506 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update 2026-01-28T17:34:52+00:00 2026-02-17T12:41:21+00:00
rhsa-2026:1503 Red Hat Security Advisory: openssl security update 2026-01-28T17:17:47+00:00 2026-02-12T19:28:06+00:00
rhsa-2026:1504 Red Hat Security Advisory: satellite/foreman-mcp-server-rhel9 container image available as a Technology Preview 2026-01-28T17:00:30+00:00 2026-02-17T12:41:21+00:00
rhsa-2026:1496 Red Hat Security Advisory: openssl security update 2026-01-28T15:32:54+00:00 2026-02-12T19:28:06+00:00
rhsa-2026:1497 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update 2026-01-28T15:32:13+00:00 2026-02-17T12:41:21+00:00
rhsa-2026:1494 Red Hat Security Advisory: kernel security update 2026-01-28T15:14:07+00:00 2026-02-16T19:39:50+00:00
rhsa-2026:1495 Red Hat Security Advisory: kernel-rt security update 2026-01-28T15:08:02+00:00 2026-02-16T19:39:45+00:00
rhsa-2026:1487 Red Hat Security Advisory: thunderbird security update 2026-01-28T15:04:33+00:00 2026-02-09T13:26:41+00:00
rhsa-2026:1488 Red Hat Security Advisory: Red Hat OpenShift GitOps v1.19.1 security update 2026-01-28T12:24:36+00:00 2026-02-17T08:01:34+00:00
ID Description Published Updated
icsa-25-162-10 PTZOptics and Other Pan-Tilt-Zoom Cameras 2025-06-12T06:00:00.000000Z 2025-06-12T06:00:00.000000Z
icsa-25-162-09 AVEVA PI Connector for CygNet 2025-06-12T06:00:00.000000Z 2025-06-12T06:00:00.000000Z
icsa-25-162-08 AVEVA PI Web API 2025-06-12T06:00:00.000000Z 2025-06-12T06:00:00.000000Z
icsa-25-162-07 AVEVA PI Data Archive 2025-06-12T06:00:00.000000Z 2025-06-12T06:00:00.000000Z
icsa-25-168-01 Siemens Mendix Studio Pro 2025-06-12T00:00:00.000000Z 2025-07-08T00:00:00.000000Z
icsma-25-160-01 MicroDicom DICOM Viewer 2025-06-10T06:00:00.000000Z 2025-06-10T06:00:00.000000Z
icsa-25-160-01 SinoTrack GPS Receiver 2025-06-10T05:00:00.000000Z 2025-06-10T05:00:00.000000Z
icsa-25-175-04 Schneider Electric EVLink WallBox (Update A) 2025-06-10T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-175-03 Schneider Electric Modicon Controllers (Update A) 2025-06-10T04:00:00.000000Z 2025-07-08T04:00:00.000000Z
icsa-25-162-06 Siemens Energy Services 2025-06-10T00:00:00.000000Z 2025-06-10T00:00:00.000000Z
icsa-25-162-05 Siemens SIMATIC S7-1500 CPU Family 2025-06-10T00:00:00.000000Z 2026-02-12T07:00:00.000000Z
icsa-25-162-04 Siemens SCALANCE and RUGGEDCOM 2025-06-10T00:00:00.000000Z 2026-01-14T22:05:41.593078Z
icsa-25-162-03 Siemens SCALANCE and RUGGEDCOM 2025-06-10T00:00:00.000000Z 2025-06-10T00:00:00.000000Z
icsa-25-162-02 Siemens RUGGEDCOM APE1808 2025-06-10T00:00:00.000000Z 2026-02-12T07:00:00.000000Z
icsa-25-162-01 Siemens Tecnomatix Plant Simulation 2025-06-10T00:00:00.000000Z 2025-06-10T00:00:00.000000Z
icsa-25-155-01 CyberData 011209 SIP Emergency Intercom 2025-06-05T06:00:00.000000Z 2025-06-05T06:00:00.000000Z
icsa-25-153-03 Mitsubishi Electric MELSEC iQ-F Series 2025-06-03T06:00:00.000000Z 2025-06-03T06:00:00.000000Z
icsa-25-153-01 Schneider Electric Wiser Home Automation 2025-06-03T06:00:00.000000Z 2025-06-03T06:00:00.000000Z
icsma-25-148-01 Santesoft Sante DICOM Viewer Pro 2025-05-29T06:00:00.000000Z 2025-05-29T06:00:00.000000Z
icsa-25-148-04 Instantel Micromate (Update A) 2025-05-29T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-148-03 Consilium Safety CS5000 Fire Panel (Update A) 2025-05-29T06:00:00.000000Z 2025-12-04T07:00:00.000000Z
va-25-147-01 Craft CMS stores user-provided content session files 2025-05-28T20:57:43Z 2025-05-28T20:57:43Z
va-25-148-01 ZKTeco BioTime multiple vulnerabilities 2025-05-28T15:28:55Z 2025-05-28T15:28:55Z
icsa-25-146-01 Johnson Controls iSTAR Configuration Utility (ICU) tool 2025-05-27T06:00:00.000000Z 2025-05-27T06:00:00.000000Z
icsa-25-148-01 Siemens SiPass 2025-05-23T00:00:00.000000Z 2025-10-14T00:00:00.000000Z
icsa-25-142-02 Rockwell Automation FactoryTalk Historian ThingWorx 2025-05-22T06:00:00.000000Z 2025-05-22T06:00:00.000000Z
icsa-25-142-01 Lantronix Device Installer 2025-05-22T06:00:00.000000Z 2025-05-22T06:00:00.000000Z
icsa-25-140-11 Assured Telematics Inc (ATI) Fleet Management System (Update A) 2025-05-20T06:00:00.000000Z 2025-06-10T06:00:00.000000Z
icsa-25-140-10 Vertiv Liebert RDU101 and UNITY 2025-05-20T06:00:00.000000Z 2025-05-20T06:00:00.000000Z
icsa-25-140-09 AutomationDirect MB-Gateway 2025-05-20T06:00:00.000000Z 2025-05-20T06:00:00.000000Z
ID Description Published Updated
cisco-sa-ndfccsrf-temzefj9 Cisco Nexus Dashboard and Nexus Dashboard Hosted Services Cross-Site Request Forgery Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ndfc-dir-trav-ssn3aydw Cisco Nexus Dashboard Fabric Controller Plug and Play Arbitrary File Read Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ise-ssrf-ftsth5oz Cisco Identity Services Engine Server-Side Request Forgery Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ise-csrf-nfakxrp5 Cisco Identity Services Engine Cross-Site Request Forgery Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-ece-xss-csqxgxfm Cisco Enterprise Chat and Email Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-cucm-imps-xss-quwkd9yf Cisco Unified Communications Manager IM & Presence Service Cross-Site Scripting Vulnerability 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-cem-csrf-sucmnjfr Cisco Emergency Responder Cross-Site Request Forgery and Directory Traversal Vulnerabilities 2024-04-03T16:00:00+00:00 2024-04-03T16:00:00+00:00
cisco-sa-wlc-mdns-dos-4hv6pbgf Cisco IOS XE Software for Wireless LAN Controllers Multicast DNS Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-lisp-3gyxs3qp Cisco IOS and IOS XE Software Locator ID Separation Protocol Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-isis-sgjyouhx Cisco IOS and IOS XE Software Intermediate System-to-Intermediate System Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-iosxe-wlc-privesc-rjsmrmpk Cisco IOS XE Software for Wireless LAN Controllers Privilege Escalation Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-iosxe-utd-cmd-jbl8kvht Cisco IOS XE Software Unified Threat Defense Command Injection Vulnerability 2024-03-27T16:00:00+00:00 2024-04-02T20:11:04+00:00
cisco-sa-iosxe-priv-esc-seax6nlx Cisco IOS XE Software Privilege Escalation Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-iosxe-ospf-dos-dr9sfrxp Cisco IOS XE Software OSPFv2 Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ios-xe-sda-edge-dos-qzwuwxwg Cisco IOS XE Software SD-Access Fabric Edge Node Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ios-dos-hq4d3tzg Cisco IOS Software for Catalyst 6000 Series Switches Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-04-04T15:31:55+00:00
cisco-sa-ikev1-no2ccfwz Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Fragmentation Denial of Service Vulnerabilities 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-dmi-acl-bypass-xv8fo8vz Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-dhcp-dos-t3cxpo9z Cisco IOS XE Software DHCP Snooping with Endpoint Analytics Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ccc-authz-bypass-5ekchjrb Cisco Catalyst Center Authorization Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-aux-333wbz8f Cisco IOS XE Software Auxiliary Asynchronous Port Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ap-secureboot-bypass-zt5vjksd Cisco Access Point Software Secure Boot Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ap-dos-h9tggx6w Cisco Access Point Software Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-airo-ap-dos-ppptcvw Cisco Aironet Access Point Software Resource Exhaustion Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-xrl2vpn-jesru3fc Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-snmp-uhv6zdef Cisco IOS XR Software SNMP Management Plane Protection ACL Bypass Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-ssh-privesc-ewdmkew3 Cisco IOS XR Software SSH Privilege Escalation Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-scp-dos-kb6suuhw Cisco IOS XR Software Authenticated CLI Secure Copy Protocol and SFTP Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-pppma-jkwfgnew Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers PPPoE Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-dhcp-dos-3tgpkrdm Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2025-68794 iomap: adjust read range correctly for non-block-aligned positions 2026-01-02T00:00:00.000Z 2026-02-18T14:36:42.000Z
msrc_cve-2025-68789 hwmon: (ibmpex) fix use-after-free in high/low store 2026-01-02T00:00:00.000Z 2026-02-18T14:16:10.000Z
msrc_cve-2025-68788 fsnotify: do not generate ACCESS/MODIFY events on child for special files 2026-01-02T00:00:00.000Z 2026-02-18T14:32:59.000Z
msrc_cve-2025-68787 netrom: Fix memory leak in nr_sendmsg() 2026-01-02T00:00:00.000Z 2026-02-18T14:26:44.000Z
msrc_cve-2025-68786 ksmbd: skip lock-range check on equal size to avoid size==0 underflow 2026-01-02T00:00:00.000Z 2026-02-21T04:24:47.000Z
msrc_cve-2025-68785 net: openvswitch: fix middle attribute validation in push_nsh() action 2026-01-02T00:00:00.000Z 2026-02-18T14:18:19.000Z
msrc_cve-2025-68783 ALSA: usb-mixer: us16x08: validate meter packet indices 2026-01-02T00:00:00.000Z 2026-02-18T14:23:52.000Z
msrc_cve-2025-68782 scsi: target: Reset t_task_cdb pointer in error case 2026-01-02T00:00:00.000Z 2026-02-18T14:22:19.000Z
msrc_cve-2025-68781 usb: phy: fsl-usb: Fix use-after-free in delayed work during device removal 2026-01-02T00:00:00.000Z 2026-02-21T04:02:38.000Z
msrc_cve-2025-68780 sched/deadline: only set free_cpus for online runqueues 2026-01-02T00:00:00.000Z 2026-02-18T14:37:22.000Z
msrc_cve-2025-68778 btrfs: don't log conflicting inode if it's a dir moved in the current transaction 2026-01-02T00:00:00.000Z 2026-02-18T14:19:51.000Z
msrc_cve-2025-68777 Input: ti_am335x_tsc - fix off-by-one error in wire_order validation 2026-01-02T00:00:00.000Z 2026-02-18T14:33:25.000Z
msrc_cve-2025-68776 net/hsr: fix NULL pointer dereference in prp_get_untagged_frame() 2026-01-02T00:00:00.000Z 2026-02-18T14:35:33.000Z
msrc_cve-2025-68775 net/handshake: duplicate handshake cancellations leak socket 2026-01-02T00:00:00.000Z 2026-02-18T14:34:17.000Z
msrc_cve-2025-68774 hfsplus: fix missing hfs_bnode_get() in __hfs_bnode_create 2026-01-02T00:00:00.000Z 2026-02-18T14:32:35.000Z
msrc_cve-2025-68773 spi: fsl-cpm: Check length parity before switching to 16 bit mode 2026-01-02T00:00:00.000Z 2026-02-18T14:29:37.000Z
msrc_cve-2025-68772 f2fs: fix to avoid updating compression context during writeback 2026-01-02T00:00:00.000Z 2026-02-18T14:26:13.000Z
msrc_cve-2025-68771 ocfs2: fix kernel BUG in ocfs2_find_victim_chain 2026-01-02T00:00:00.000Z 2026-02-21T04:24:13.000Z
msrc_cve-2025-68769 f2fs: fix return value of f2fs_recover_fsync_data() 2026-01-02T00:00:00.000Z 2026-02-18T14:27:17.000Z
msrc_cve-2025-68768 inet: frags: flush pending skbs in fqdir_pre_exit() 2026-01-02T00:00:00.000Z 2026-02-18T14:21:44.000Z
msrc_cve-2025-68767 hfsplus: Verify inode mode when loading from disk 2026-01-02T00:00:00.000Z 2026-02-18T14:15:40.000Z
msrc_cve-2025-68766 irqchip/mchp-eic: Fix error code in mchp_eic_domain_alloc() 2026-01-02T00:00:00.000Z 2026-02-21T04:08:11.000Z
msrc_cve-2025-68765 mt76: mt7615: Fix memory leak in mt7615_mcu_wtbl_sta_add() 2026-01-02T00:00:00.000Z 2026-02-18T02:51:33.000Z
msrc_cve-2025-68764 NFS: Automounted filesystems should inherit ro,noexec,nodev,sync flags 2026-01-02T00:00:00.000Z 2026-02-18T02:50:46.000Z
msrc_cve-2025-68763 crypto: starfive - Correctly handle return of sg_nents_for_len 2026-01-02T00:00:00.000Z 2026-02-21T04:08:57.000Z
msrc_cve-2025-68759 wifi: rtl818x: Fix potential memory leaks in rtl8180_init_rx_ring() 2026-01-02T00:00:00.000Z 2026-02-18T02:52:26.000Z
msrc_cve-2025-68758 backlight: led-bl: Add devlink to supplier LEDs 2026-01-02T00:00:00.000Z 2026-02-21T04:09:56.000Z
msrc_cve-2025-68757 drm/vgem-fence: Fix potential deadlock on release 2026-01-02T00:00:00.000Z 2026-02-18T02:53:29.000Z
msrc_cve-2025-68756 block: Use RCU in blk_mq_[un]quiesce_tagset() instead of set->tag_list_lock 2026-01-02T00:00:00.000Z 2026-02-18T02:54:14.000Z
msrc_cve-2025-68755 staging: most: remove broken i2c driver 2026-01-02T00:00:00.000Z 2026-02-21T04:05:35.000Z
ID Description Published Updated
ID Description Updated
var-201607-0321 The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache To… 2025-12-22T22:39:35.028000Z
var-201106-0034 Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.… 2025-12-22T22:39:28.763000Z
var-201302-0131 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:38:55.492000Z
var-202102-1488 The OpenSSL public API function X509_issuer_and_serial_hash() attempts to create a unique… 2025-12-22T22:38:54.865000Z
var-202207-0107 AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation … 2025-12-22T22:38:21.202000Z
var-200611-0368 The (1) Password Manager in Mozilla Firefox 2.0, and 1.5.0.8 and earlier; and the (2) Pas… 2025-12-22T22:38:15.378000Z
var-202112-0566 Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2… 2025-12-22T22:38:09.163000Z
var-201706-0334 glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to ma… 2025-12-22T22:38:08.762000Z
var-200510-0005 Buffer overflow in Collaboration Data Objects (CDO), as used in Microsoft Windows and Mic… 2025-12-22T22:38:08.358000Z
var-201903-0424 A memory corruption issue was addressed with improved memory handling. This issue is fixe… 2025-12-22T22:38:08.163000Z
var-200609-1397 The Airport driver for certain Orinoco based Airport cards in Darwin kernel 8.8.0 in Appl… 2025-12-22T22:38:07.588000Z
var-202207-1358 When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out o… 2025-12-22T22:38:07.227000Z
var-201302-0309 Use-after-free vulnerability in Adobe Flash Player before 10.3.183.63 and 11.x before 11.… 2025-12-22T22:38:04.399000Z
var-201912-0608 A memory corruption issue was addressed with improved input validation. This issue is fix… 2025-12-22T22:38:04.311000Z
var-202310-0175 The HTTP/2 protocol allows a denial of service (server resource consumption) because requ… 2025-12-22T22:37:57.843000Z
var-201708-0038 The decodenetnum function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 al… 2025-12-22T22:37:55.997000Z
var-202006-1807 Perl before 5.30.3 has an integer overflow related to mishandling of a "PL_regkind[OP(n)]… 2025-12-22T22:37:55.639000Z
var-201109-0190 Double free vulnerability in libxml2, as used in Google Chrome before 14.0.835.163, allow… 2025-12-22T22:37:51.059000Z
var-202110-1622 A memory corruption issue was addressed with improved memory handling. This issue is fixe… 2025-12-22T22:37:19.368000Z
var-201509-0438 Buffer overflow in the gethostbyname_r and other unspecified NSS functions in the GNU C L… 2025-12-22T22:36:48.237000Z
var-200810-0141 Heap-based buffer overflow in the local IPC component in the EAPOLController plugin for c… 2025-12-22T22:36:48.181000Z
var-201008-0241 Untrusted search path vulnerability in the Microsoft Foundation Class (MFC) Library in Mi… 2025-12-22T22:36:48.100000Z
var-202003-1776 FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… 2025-12-22T22:36:47.939000Z
var-201210-0063 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:36:47.615000Z
var-200704-0737 Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont bef… 2025-12-22T22:36:47.121000Z
var-200904-0824 Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, and probably other pr… 2025-12-22T22:36:42.964000Z
var-201912-1864 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:36:34.526000Z
var-201912-1853 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:35:31.618000Z
var-200512-0299 Heap-based buffer overflow in rsync in Mac OS X 10.4 through 10.4.5 allows remote authent… 2025-12-22T22:35:31.464000Z
var-201710-1404 An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo… 2025-12-22T22:34:28.059000Z
ID Description Published Updated
jvndb-2024-002342 Central Dogma vulnerable to cross-site scripting 2024-05-13T17:27+09:00 2024-05-13T17:27+09:00
jvndb-2024-000047 Multiple vulnerabilities in Cybozu Garoon 2024-05-13T15:19+09:00 2024-05-13T15:19+09:00
jvndb-2024-000045 "OfferBox" App uses a hard-coded secret key 2024-05-10T15:11+09:00 2024-05-10T15:11+09:00
jvndb-2024-003181 Hidden Functionality vulnerability in DT900 2024-05-10T13:59+09:00 2024-05-10T13:59+09:00
jvndb-2024-000048 Phormer vulnerable to cross-site scripting 2024-05-10T13:48+09:00 2024-05-10T13:48+09:00
jvndb-2024-000043 Multiple vulnerabilities in MosP kintai kanri 2024-05-09T14:10+09:00 2024-05-09T14:10+09:00
jvndb-2024-000044 WordPress Plugin "Heateor Social Login WordPress" vulnerable to cross-site scripting 2024-05-08T13:43+09:00 2024-05-08T13:43+09:00
jvndb-2024-003178 Trend Micro Maximum Security vulnerable to improper link resolution (CVE-2024-32849) 2024-05-08T10:19+09:00 2024-05-08T10:19+09:00
jvndb-2024-003119 NETGEAR routers vulnerable to buffer overflow 2024-04-25T11:21+09:00 2024-04-25T11:21+09:00
jvndb-2024-000042 Multiple vulnerabilities in RoamWiFi R10 2024-04-24T13:44+09:00 2024-04-24T13:44+09:00
jvndb-2024-003116 Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer 2024-04-24T10:13+09:00 2024-04-24T10:13+09:00
jvndb-2024-000901 TvRock vulnerable to cross-site request forgery 2024-04-23T18:22+09:00 2024-04-23T18:22+09:00
jvndb-2024-000903 TvRock vulnerable to denial-of-service (DoS) 2024-04-23T18:21+09:00 2024-04-23T18:21+09:00
jvndb-2024-003108 Armeria-saml improperly handles SAML messages 2024-04-22T17:28+09:00 2024-04-22T17:28+09:00
jvndb-2023-014491 LINE client for iOS vulnerable to improper server certificate verification 2024-04-22T15:27+09:00 2024-04-22T15:27+09:00
jvndb-2024-000041 Multiple vulnerabilities in WordPress Plugin "Forminator" 2024-04-18T13:53+09:00 2024-04-18T13:53+09:00
jvndb-2022-017175 Proscend Communications M330-W and M330-W5 vulnerable to OS command injection 2024-04-16T14:30+09:00 2024-04-16T14:30+09:00
jvndb-2024-000040 Multiple vulnerabilities in BUFFALO wireless LAN routers 2024-04-15T16:29+09:00 2024-04-15T16:29+09:00
jvndb-2024-000039 Multiple vulnerabilities in a-blog cms 2024-04-10T13:55+09:00 2024-04-10T13:55+09:00
jvndb-2024-000038 Multiple vulnerabilities in WordPress Plugin "Ninja Forms" 2024-04-08T13:44+09:00 2024-04-08T13:44+09:00
jvndb-2024-003068 Multiple vulnerabilities in Cente middleware 2024-04-05T15:36+09:00 2024-09-24T15:00+09:00
jvndb-2024-000037 Multiple vulnerabilities in NEC Aterm series 2024-04-05T14:53+09:00 2024-04-05T14:53+09:00
jvndb-2024-003067 Multiple vulnerabilities in PLANEX COMMUNICATIONS wireless LAN routers 2024-04-05T14:17+09:00 2024-04-05T14:17+09:00
jvndb-2024-003051 FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password 2024-04-02T18:03+09:00 2024-04-02T18:03+09:00
jvndb-2024-003050 KEYENCE VT STUDIO may insecurely load Dynamic Link Libraries 2024-04-01T14:44+09:00 2024-04-01T14:44+09:00
jvndb-2024-003049 Multiple vulnerabilities in KEYENCE KV STUDIO, KV REPLAY VIEWER, and VT5-WX15/WX12 2024-04-01T12:31+09:00 2024-09-25T13:51+09:00
jvndb-2024-000036 "Yahoo! JAPAN" App vulnerable to cross-site scripting 2024-03-29T13:28+09:00 2024-03-29T13:28+09:00
jvndb-2024-003047 SEEnergy SVR-116 vulnerable to OS command injection 2024-03-28T11:38+09:00 2024-03-28T11:38+09:00
jvndb-2024-003026 Security information for Hitachi Disk Array Systems 2024-03-27T15:52+09:00 2024-03-27T15:52+09:00
jvndb-2024-000035 Multiple vulnerabilities in WordPress Plugin "Survey Maker" 2024-03-27T14:48+09:00 2024-03-27T14:48+09:00
ID Description Updated
ID Description Published Updated
suse-su-2026:0125-1 Security update for podman 2026-01-14T16:57:37Z 2026-01-14T16:57:37Z
suse-su-2026:0123-1 Security update for libsoup 2026-01-14T13:47:28Z 2026-01-14T13:47:28Z
suse-su-2026:20084-1 Security update for tomcat 2026-01-14T13:17:56Z 2026-01-14T13:17:56Z
suse-su-2026:20081-1 Security update for apache2 2026-01-14T11:03:13Z 2026-01-14T11:03:13Z
suse-su-2026:20110-1 Security update for curl 2026-01-14T10:58:55Z 2026-01-14T10:58:55Z
suse-su-2026:20082-1 Security update for curl 2026-01-14T10:58:55Z 2026-01-14T10:58:55Z
suse-su-2026:20092-1 Security update for haproxy 2026-01-14T10:57:49Z 2026-01-14T10:57:49Z
suse-su-2026:20109-1 Security update for haproxy 2026-01-14T10:55:40Z 2026-01-14T10:55:40Z
suse-su-2026:20094-1 Security update for haproxy 2026-01-14T10:55:40Z 2026-01-14T10:55:40Z
suse-su-2026:20108-1 Security update for gpg2 2026-01-14T10:23:37Z 2026-01-14T10:23:37Z
suse-su-2026:20080-1 Security update for gpg2 2026-01-14T10:23:37Z 2026-01-14T10:23:37Z
suse-su-2026:0122-1 Security update for MozillaFirefox 2026-01-14T08:49:21Z 2026-01-14T08:49:21Z
suse-su-2026:20078-1 Security update for squid 2026-01-14T08:37:40Z 2026-01-14T08:37:40Z
suse-su-2026:0121-1 Security update for ovmf 2026-01-14T06:47:26Z 2026-01-14T06:47:26Z
suse-su-2026:0120-1 Security update for ovmf 2026-01-14T06:46:44Z 2026-01-14T06:46:44Z
suse-su-2026:20077-1 Security update for python-uv 2026-01-13T12:49:17Z 2026-01-13T12:49:17Z
suse-su-2026:20091-1 Security update for hawk2 2026-01-13T12:46:40Z 2026-01-13T12:46:40Z
suse-su-2026:20093-1 Security update for hawk2 2026-01-13T12:43:07Z 2026-01-13T12:43:07Z
suse-su-2026:0119-1 Security update for curl 2026-01-13T08:10:35Z 2026-01-13T08:10:35Z
suse-su-2026:0118-1 Security update for libtasn1 2026-01-13T06:46:54Z 2026-01-13T06:46:54Z
suse-su-2026:0117-1 Security update for util-linux 2026-01-13T04:33:43Z 2026-01-13T04:33:43Z
suse-su-2026:0116-1 Security update for util-linux 2026-01-13T02:33:45Z 2026-01-13T02:33:45Z
suse-su-2026:0115-1 Security update for util-linux 2026-01-12T15:03:44Z 2026-01-12T15:03:44Z
suse-su-2026:20053-1 Security update for libsoup 2026-01-12T12:03:42Z 2026-01-12T12:03:42Z
suse-su-2026:20051-1 Security update for libtasn1 2026-01-12T12:00:27Z 2026-01-12T12:00:27Z
suse-su-2026:20031-1 Security update for MozillaFirefox 2026-01-12T12:00:16Z 2026-01-12T12:00:16Z
suse-su-2026:20074-1 Security update for glib2 2026-01-12T11:58:25Z 2026-01-12T11:58:25Z
suse-su-2026:20032-1 Security update for glib2 2026-01-12T11:58:25Z 2026-01-12T11:58:25Z
suse-su-2026:20072-1 Security update for libmicrohttpd 2026-01-12T11:15:02Z 2026-01-12T11:15:02Z
suse-su-2026:20029-1 Security update for libmicrohttpd 2026-01-12T11:15:02Z 2026-01-12T11:15:02Z
ID Description Published Updated
opensuse-su-2025:15818-1 pgadmin4-9.11-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15817-1 buildpacks-cli-0.39.1-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15816-1 ImageMagick-7.1.2.10-1.1 on GA media 2025-12-12T00:00:00Z 2025-12-12T00:00:00Z
opensuse-su-2025:15815-1 xkbcomp-1.5.0-1.1 on GA media 2025-12-11T00:00:00Z 2025-12-11T00:00:00Z
opensuse-su-2025:15814-1 MozillaThunderbird-140.6.0-1.1 on GA media 2025-12-11T00:00:00Z 2025-12-11T00:00:00Z
opensuse-su-2025:15813-1 MozillaFirefox-146.0-1.1 on GA media 2025-12-11T00:00:00Z 2025-12-11T00:00:00Z
opensuse-su-2025:15812-1 libpoppler-cpp2-25.09.1-4.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15811-1 keylime-config-7.13.0+40-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15810-1 gio-branding-upstream-2.86.3-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15809-1 firefox-esr-140.6.0-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:15808-1 apache2-2.4.66-1.1 on GA media 2025-12-10T00:00:00Z 2025-12-10T00:00:00Z
opensuse-su-2025:20148-1 Security update for openexr 2025-12-09T16:32:45Z 2025-12-09T16:32:45Z
opensuse-su-2025:20153-1 Security update for python-Django 2025-12-09T13:43:55Z 2025-12-09T13:43:55Z
opensuse-su-2025:15807-1 regclient-0.11.1-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15806-1 python311-Django4-4.2.27-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15805-1 python311-Django-5.2.9-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15804-1 nvidia-open-driver-G07-signed-check-590.44.01-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15803-1 krb5-1.22.1-1.1 on GA media 2025-12-09T00:00:00Z 2025-12-09T00:00:00Z
opensuse-su-2025:15802-1 corepack24-24.11.1-2.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15801-1 libpng16-16-1.6.52-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15800-1 kdeconnect-kde-25.11.90-1.1 on GA media 2025-12-08T00:00:00Z 2025-12-08T00:00:00Z
opensuse-su-2025:15799-1 libwireshark19-4.6.2-1.1 on GA media 2025-12-05T00:00:00Z 2025-12-05T00:00:00Z
opensuse-su-2025:15798-1 rhino-1.7.15.1-1.1 on GA media 2025-12-05T00:00:00Z 2025-12-05T00:00:00Z
opensuse-su-2025:20143-1 Security update for git-bug 2025-12-04T13:08:26Z 2025-12-04T13:08:26Z
opensuse-su-2025:20138-1 Security update for act 2025-12-04T12:02:10Z 2025-12-04T12:02:10Z
opensuse-su-2025:15797-1 libpng12-0-1.2.59-4.1 on GA media 2025-12-04T00:00:00Z 2025-12-04T00:00:00Z
opensuse-su-2025:15796-1 go1.24-1.24.11-1.1 on GA media 2025-12-04T00:00:00Z 2025-12-04T00:00:00Z
opensuse-su-2025:20135-1 Security update for mozjs128 2025-12-03T20:41:04Z 2025-12-03T20:41:04Z
opensuse-su-2025:15795-1 go1.25-1.25.5-1.1 on GA media 2025-12-03T00:00:00Z 2025-12-03T00:00:00Z
opensuse-su-2025:15794-1 chromedriver-143.0.7499.40-2.1 on GA media 2025-12-03T00:00:00Z 2025-12-03T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-discourse-2025-61598 Discourse is missing Cache-Control response header on error responses 2025-11-06T12:59:31.285Z 2025-11-06T13:25:46.476Z
bit-golang-2025-61725 Excessive CPU consumption in ParseAddress in net/mail 2025-11-06T12:58:41.872Z 2025-12-10T12:06:24.101Z
bit-golang-2025-61724 Excessive CPU consumption in Reader.ReadResponse in net/textproto 2025-11-06T12:58:38.217Z 2025-11-06T13:25:46.476Z
bit-golang-2025-61723 Quadratic complexity when parsing some invalid inputs in encoding/pem 2025-11-06T12:58:34.335Z 2025-11-06T13:25:46.476Z
bit-golang-2025-58189 ALPN negotiation error contains attacker controlled information in crypto/tls 2025-11-06T12:58:30.596Z 2025-11-06T13:25:46.476Z
bit-golang-2025-58188 Panic when validating certificates with DSA public keys in crypto/x509 2025-11-06T12:58:26.740Z 2025-11-06T13:25:46.476Z
bit-golang-2025-58187 Quadratic complexity when checking name constraints in crypto/x509 2025-11-06T12:58:22.304Z 2025-11-21T09:06:15.683Z
bit-golang-2025-58186 Lack of limit when parsing cookies can cause memory exhaustion in net/http 2025-11-06T12:58:17.587Z 2025-11-06T13:25:46.476Z
bit-golang-2025-58185 Parsing DER payload can cause memory exhaustion in encoding/asn1 2025-11-06T12:58:12.795Z 2025-11-06T13:25:46.476Z
bit-golang-2025-58183 Unbounded allocation when parsing GNU sparse map in archive/tar 2025-11-06T12:58:07.546Z 2025-11-06T13:25:46.476Z
bit-golang-2025-47912 Insufficient validation of bracketed IPv6 hostnames in net/url 2025-11-06T12:58:02.636Z 2025-11-06T13:25:46.476Z
bit-mlflow-2025-11200 MLflow Weak Password Requirements Authentication Bypass Vulnerability 2025-11-06T12:53:59.130Z 2025-11-06T13:25:46.476Z
bit-airflow-2025-62503 Apache Airflow: Privilege boundary bypass in bulk APIs (create action can upsert existing Pools/Connections/Variables) 2025-11-06T12:53:02.259Z 2025-11-06T13:25:46.476Z
bit-airflow-2025-62402 Apache Airflow: Airflow 3 API: /api/v2/dagReports executes DAG Python in API 2025-11-06T12:52:57.926Z 2025-11-06T13:25:46.476Z
bit-airflow-2025-54941 Apache Airflow: Command injection in "example_dag_decorator" 2025-11-06T12:52:52.554Z 2025-11-06T13:25:46.476Z
bit-consul-2025-11375 Consul's event endpoint is vulnerable to denial of service 2025-11-06T12:49:11.554Z 2025-11-06T13:25:46.476Z
bit-consul-2025-11374 Consul's KV endpoint is vulnerable to denial of service 2025-11-06T12:49:05.940Z 2025-11-06T13:25:46.476Z
bit-apisix-2025-62232 Apache APISIX: basic-auth logs plaintext credentials at info level 2025-11-06T12:47:05.456Z 2025-11-06T13:25:46.476Z
bit-gitlab-2025-6601 Business Logic Errors in GitLab 2025-10-28T12:05:34.442Z 2025-11-06T13:25:46.476Z
bit-gitlab-2025-11989 Missing Authorization in GitLab 2025-10-28T12:03:56.032Z 2025-11-06T13:25:46.476Z
bit-gitlab-2025-11974 Allocation of Resources Without Limits or Throttling in GitLab 2025-10-28T12:03:52.509Z 2025-10-28T12:07:16.062Z
bit-gitlab-2025-11971 Incorrect Authorization in GitLab 2025-10-28T12:03:50.762Z 2025-11-06T13:25:46.476Z
bit-gitlab-2025-11447 Allocation of Resources Without Limits or Throttling in GitLab 2025-10-28T12:03:49.010Z 2025-10-28T12:07:16.062Z
bit-gitlab-2025-10497 Allocation of Resources Without Limits or Throttling in GitLab 2025-10-28T12:03:32.925Z 2025-10-28T12:07:16.062Z
bit-vault-2025-12044 Vault Vulnerable to Denial of Service Due to Rate Limit Regression 2025-10-28T11:51:06.109Z 2025-10-28T12:07:16.062Z
bit-vault-2025-11621 Vault AWS auth method bypass due to AWS client cache 2025-10-28T11:51:04.350Z 2025-10-28T12:07:16.062Z
bit-dotnet-2025-55248 .NET, .NET Framework, and Visual Studio Information Disclosure Vulnerability 2025-10-24T14:39:43.546Z 2025-10-24T15:07:36.996Z
bit-dotnet-2025-55247 .NET Elevation of Privilege Vulnerability 2025-10-24T14:39:42.027Z 2025-10-24T15:07:36.996Z
bit-mastodon-2025-62605 Mastodon quotes control can be bypassed 2025-10-23T08:44:09.997Z 2026-01-08T18:07:34.629Z
bit-django-2025-59682 2025-10-23T08:40:14.229Z 2025-11-06T13:25:46.476Z
ID Description Published Updated
ID Description Published Updated
drupal-contrib-2020-019 2020-05-13T16:44:40.000Z 2023-08-11T17:51:24.000Z
drupal-contrib-2020-018 2020-05-13T16:22:47.000Z 2023-08-11T17:53:41.000Z
drupal-contrib-2020-017 2020-05-06T17:02:39.000Z 2023-08-11T17:54:03.000Z
drupal-contrib-2020-016 2020-05-06T16:59:39.000Z 2023-08-11T17:54:28.000Z
drupal-contrib-2020-015 2020-05-06T16:55:06.000Z 2023-08-11T17:54:54.000Z
drupal-contrib-2020-014 2020-05-06T16:52:16.000Z 2023-08-11T17:55:18.000Z
drupal-contrib-2020-013 2020-05-06T16:50:39.000Z 2023-08-11T17:55:41.000Z
drupal-contrib-2020-012 2020-05-06T16:47:19.000Z 2023-08-11T17:56:01.000Z
drupal-contrib-2020-011 2020-05-06T16:43:59.000Z 2023-08-11T17:56:25.000Z
drupal-contrib-2020-010 2020-04-15T15:45:46.000Z 2023-08-11T18:01:50.000Z
drupal-contrib-2020-008 2020-03-25T18:05:38.000Z 2023-08-11T18:00:53.000Z
drupal-contrib-2020-006 2020-03-11T15:53:32.000Z 2023-08-11T18:00:08.000Z
drupal-contrib-2020-005 2020-03-04T17:06:57.000Z 2023-08-11T17:59:40.000Z
drupal-contrib-2020-004 2020-02-19T17:22:22.000Z 2023-08-11T17:59:12.000Z
drupal-contrib-2020-003 2020-02-05T16:59:21.000Z 2023-08-11T17:58:52.000Z
drupal-contrib-2020-002 2020-01-22T17:36:50.000Z 2023-08-11T17:58:05.000Z
drupal-contrib-2019-095 2019-12-11T18:59:46.000Z 2023-08-11T18:15:27.000Z
drupal-contrib-2019-094 2019-12-11T18:38:32.000Z 2023-08-11T18:15:45.000Z
drupal-contrib-2019-093 2019-12-11T18:32:17.000Z 2023-08-11T18:16:07.000Z
drupal-contrib-2019-092 2019-12-11T18:20:59.000Z 2023-08-11T18:16:26.000Z
drupal-contrib-2019-089 2019-11-13T18:10:23.000Z 2023-08-11T18:14:07.000Z
drupal-contrib-2019-088 2019-11-13T18:09:57.000Z 2023-10-02T19:48:10.000Z
drupal-contrib-2019-081 2019-11-13T18:04:58.000Z 2023-08-11T18:22:08.000Z
drupal-contrib-2019-078 2019-11-13T18:02:43.000Z 2023-08-11T18:22:43.000Z
drupal-contrib-2019-075 2019-11-06T16:10:25.000Z 2023-08-11T18:30:06.000Z
drupal-contrib-2019-074 2019-10-16T16:09:20.000Z 2023-08-11T18:28:44.000Z
drupal-contrib-2019-071 2019-10-02T16:29:46.000Z 2023-08-11T18:27:09.000Z
drupal-contrib-2019-069 2019-09-25T14:55:33.000Z 2023-08-11T18:26:25.000Z
drupal-contrib-2019-068 2019-09-25T14:43:49.000Z 2023-08-11T18:25:53.000Z
drupal-contrib-2019-067 2019-09-18T15:17:32.000Z 2023-08-11T18:24:28.000Z
ID Description Published Updated
cnvd-2026-05127 Kentico Xperience跨站脚本漏洞(CNVD-2026-05127) 2025-12-25 2026-01-20
cnvd-2026-05126 Kentico Xperience富文本编辑器组件跨站脚本漏洞 2025-12-25 2026-01-20
cnvd-2026-05125 Kentico Xperience电子邮件营销模板跨站脚本漏洞 2025-12-25 2026-01-20
cnvd-2026-05124 Kentico Xperience跨站脚本漏洞(CNVD-2026-05124) 2025-12-25 2026-01-20
cnvd-2026-05123 Kentico Xperience跨站脚本漏洞(CNVD-2026-05123) 2025-12-25 2026-01-20
cnvd-2026-05122 Kentico Xperience跨站脚本漏洞(CNVD-2026-05122) 2025-12-25 2026-01-20
cnvd-2026-05121 Kentico Xperience跨站脚本漏洞(CNVD-2026-05121) 2025-12-25 2026-01-20
cnvd-2026-05120 Kentico Xperience跨站脚本漏洞(CNVD-2026-05120) 2025-12-25 2026-01-20
cnvd-2026-05119 Kentico Xperience跨站脚本漏洞(CNVD-2026-05119) 2025-12-25 2026-01-20
cnvd-2026-05019 TOTOLINK T10缓冲区溢出漏洞 2025-12-25 2026-01-14
cnvd-2026-04266 Kentico Xperience跨站脚本漏洞(CNVD-2026-04266) 2025-12-25 2026-01-19
cnvd-2026-04265 Kentico Xperience跨站脚本漏洞(CNVD-2026-04265) 2025-12-25 2026-01-19
cnvd-2026-04264 Kentico Xperience存在未明漏洞(CNVD-2026-04264) 2025-12-25 2026-01-19
cnvd-2026-04263 Kentico Xperience存在未明漏洞(CNVD-2026-04263) 2025-12-25 2026-01-19
cnvd-2026-04262 Kentico Xperience安全绕过漏洞 2025-12-25 2026-01-19
cnvd-2026-04261 Kentico Xperience跨站脚本漏洞(CNVD-2026-04261) 2025-12-25 2026-01-19
cnvd-2026-04247 Kentico Xperience信息泄露漏洞(CNVD-2026-04247) 2025-12-25 2026-01-19
cnvd-2026-04246 Kentico Xperience访问控制绕过漏洞 2025-12-25 2026-01-19
cnvd-2026-04245 Kentico Xperience信息泄露漏洞 2025-12-25 2026-01-19
cnvd-2026-04244 Kentico Xperience拒绝服务漏洞 2025-12-25 2026-01-19
cnvd-2026-04243 Kentico Xperience跨站脚本漏洞 2025-12-25 2026-01-19
cnvd-2026-04242 Kentico Xperience SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-04241 Kentico Xperience CRLF注入漏洞 2025-12-25 2026-01-16
cnvd-2026-04240 Kentico Xperience Content-Type跨站脚本漏洞 2025-12-25 2026-01-16
cnvd-2026-04238 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04238) 2025-12-25 2026-01-16
cnvd-2026-04237 Apple macOS Tahoe存在未明漏洞(CNVD-2026-04237) 2025-12-25 2026-01-16
cnvd-2026-04236 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04236) 2025-12-25 2026-01-16
cnvd-2026-04235 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04235) 2025-12-25 2026-01-16
cnvd-2026-04234 Apple macOS Tahoe存在未明漏洞(CNVD-2026-04234) 2025-12-25 2026-01-16
cnvd-2026-04233 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04233) 2025-12-25 2026-01-16
ID Description Published Updated
certfr-2025-avi-1009 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1008 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1007 Multiples vulnérabilités dans PostgreSQL 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1006 Vulnérabilité dans Cisco Catalyst Center 2025-11-14T00:00:00.000000 2025-11-14T00:00:00.000000
certfr-2025-avi-1005 Multiples vulnérabilités dans les produits Siemens 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-1004 Multiples vulnérabilités dans les produits Palo Alto Networks 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-1003 Multiples vulnérabilités dans Drupal 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-1002 Multiples vulnérabilités dans GitLab 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-1001 Multiples vulnérabilités dans Elastic Kibana 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-1000 Multiples vulnérabilités dans les produits Splunk 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-0999 Vulnérabilité dans les produits Symfony 2025-11-13T00:00:00.000000 2025-11-13T00:00:00.000000
certfr-2025-avi-0998 Multiples vulnérabilités dans les produits Microsoft 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0997 Multiples vulnérabilités dans Microsoft Azure 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0996 Multiples vulnérabilités dans Microsoft Windows 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0995 Multiples vulnérabilités dans Microsoft Office 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0994 Multiples vulnérabilités dans Microsoft Edge 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0993 Multiples vulnérabilités dans les produits Intel 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0992 Multiples vulnérabilités dans Apache OpenOffice 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0991 Multiples vulnérabilités dans les produits Mozilla 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0990 Vulnérabilité dans Google Chrome 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0989 Vulnérabilité dans Nagios XI 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0988 Vulnérabilité dans Ivanti Endpoint Manager (EPM) 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0987 Vulnérabilité dans les produits Citrix 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0986 Vulnérabilité dans Schneider Electric EcoStruxure 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0985 Multiples vulnérabilités dans les produits Axis 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0984 Vulnérabilité dans Bitdefender Endpoint Security Tools pour Mac 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0983 Vulnérabilité dans Synology BeeStation 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0982 Multiples vulnérabilités dans les produits SAP 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0981 Multiples vulnérabilités dans les produits Qnap 2025-11-10T00:00:00.000000 2025-11-10T00:00:00.000000
certfr-2025-avi-0980 Multiples vulnérabilités dans les produits IBM 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
ID Description Published Updated
certa-2001-ale-010 Propagation du ver "Code Blue" 2001-09-07T00:00:00.000000 2001-09-07T00:00:00.000000
certa-2001-ale-009 Propagation importante du virus SirCam 2001-07-24T00:00:00.000000 2001-07-26T00:00:00.000000
certa-2001-ale-008 Propagation du ver « Code Red » 2001-07-18T00:00:00.000000 2001-08-13T00:00:00.000000
certa-2001-ale-007 Propagation d'un ver affectant sadmind et IIS 2001-05-09T00:00:00.000000 2001-05-09T00:00:00.000000
certa-2001-ale-006 Prolifération en Europe du virus HOMEPAGE 2001-05-09T00:00:00.000000 2001-05-09T00:00:00.000000
certa-2001-ale-005 Vulnérabilités dans les modems ADSL d'Alcatel 2001-04-11T00:00:00.000000 2001-04-11T00:00:00.000000
certa-2001-ale-004 Vulnérabilité dans le démon snmpXdmid sous Sun Solaris 2001-03-30T00:00:00.000000 2001-03-30T00:00:00.000000
certa-2001-ale-003 Prolifération du ver Li0n 2001-03-26T00:00:00.000000 2001-03-26T00:00:00.000000
certa-2001-ale-002 Risque d'exploitation des ressources partagées sous Windows 2001-03-26T00:00:00.000000 2001-03-26T00:00:00.000000
certa-2001-ale-001 Propagation du ver Ramen sous Linux. 2001-01-19T00:00:00.000000 2001-01-19T00:00:00.000000
certa-2000-ale-016 Connexion à Wanadoo 2000-11-30T00:00:00.000000 2000-11-30T00:00:00.000000
certa-2000-ale-015 Risque d'usurpation de l'identité de Sun Microsystems 2000-10-25T00:00:00.000000 2000-10-25T00:00:00.000000
certa-2000-ale-013 Virus VBS Quatro-A 2000-09-18T00:00:00.000000 2000-09-18T00:00:00.000000
certa-2000-ale-014 Vulnérabilité dans la bibliothèque glibc sous Unix 2000-09-14T00:00:00.000000 2000-09-14T00:00:00.000000
certa-2000-ale-012 Mauvaise compatibilité des scanners de virus avec NTFS 2000-09-08T00:00:00.000000 2000-09-08T00:00:00.000000
certa-2000-ale-011 Trojan Simpsons 2000-06-29T00:00:00.000000 2000-06-29T00:00:00.000000
certa-2000-ale-010 Vulnérabilités dans le serveur de fichier wu-ftpd 2000-06-26T00:00:00.000000 2000-06-26T00:00:00.000000
certa-2000-ale-009 Ver VBS/Stages-A, Mirc/stages-a, pIRC/Stages-A 2000-06-20T00:00:00.000000 2000-06-20T00:00:00.000000
certa-2000-ale-008 The Serbian Badman Trojan (TSB) 2000-06-13T00:00:00.000000 2000-06-13T00:00:00.000000
certa-2000-ale-007 Virus VBS/LoveLet-AS 2000-06-09T00:00:00.000000 2000-06-09T00:00:00.000000
certa-2000-ale-006 Deni de service sous Firewall-1 2000-06-08T00:00:00.000000 2000-06-08T00:00:00.000000
certa-2000-ale-005 Virus macro V97M/Resume.A 2000-05-29T00:00:00.000000 2000-05-29T00:00:00.000000
certa-2000-ale-004 Virus Macro OF97/Cybernet-A 2000-05-26T00:00:00.000000 2000-05-26T00:00:00.000000
certa-2000-ale-003 « Mesures de performances » de l'Internet 2000-05-26T00:00:00.000000 2000-05-26T00:00:00.000000
certa-2000-ale-002 Alerte de virus NEWLOVE 2000-05-19T00:00:00.000000 2000-05-19T00:00:00.000000
certa-2000-ale-001 Alerte de virus LOVE-LETTER-FOR-YOU 2000-05-05T00:00:00.000000 2000-07-05T00:00:00.000000
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated