Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-26078
7.5 (3.1)
Discourse has authentication bypass vulnerability in t… discourse
 discourse
 2026-02-26T15:00:47.130Z 2026-02-27T16:17:41.410Z
CVE-2026-26265
7.5 (3.1)
Discourse has IDOR vulnerability in the directory item… discourse
 discourse
 2026-02-26T15:10:25.929Z 2026-02-27T16:17:05.469Z
CVE-2024-10938
6.5 (3.1)
OVRI Payment 1.7.0 - Malicious .htaccess directive moneytigo
 OVRI Payment
 2026-02-27T09:23:42.427Z 2026-02-27T16:15:28.956Z
CVE-2025-9900
8.8 (3.1)
Libtiff: libtiff write-what-where

2025-09-23T16:26:22.846Z 2026-02-27T16:09:30.073Z
CVE-2026-24497
8.4 (4.0)
Stack-based Buffer Overflow vulnerability in SimT… SimTech Systems, Inc.
 ThinkWise
 2026-02-27T01:52:58.847Z 2026-02-27T16:07:55.454Z
CVE-2026-23747
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 Payload Utils Stack-base… Golioth
 Firmware SDK
 2026-02-26T17:30:13.495Z 2026-02-27T16:07:30.232Z
CVE-2026-23748
6.3 (4.0)
3.7 (3.1)
Golioth Firmware SDK < 0.22.0 LightDB State Out-of-Bou… Golioth
 Firmware SDK
 2026-02-26T17:31:32.584Z 2026-02-27T16:06:24.182Z
CVE-2026-23750
7.2 (4.0)
8.1 (3.1)
Golioth Pouch < [INSERT FIXED VERSION] BLE GATT Heap-b… Golioth
 Pouch
 2026-02-26T17:33:13.261Z 2026-02-27T16:05:34.974Z
CVE-2026-26937
6.5 (3.1)
Uncontrolled Resource Consumption in Kibana Leading to… Elastic
 Kibana
 2026-02-26T17:51:35.421Z 2026-02-27T16:04:41.385Z
CVE-2026-26938
8.6 (3.1)
Improper Neutralization of Special Elements Used in a … Elastic
 Kibana
 2026-02-26T17:56:48.611Z 2026-02-27T16:03:59.847Z
CVE-2026-24498
6 (4.0)
Exposure of Sensitive Information to an Unauthori… EFM-Networks, Inc.
 ipTIME T5008
 2026-02-27T02:01:12.377Z 2026-02-27T16:03:35.360Z
CVE-2026-1442
7.8 (3.1)
Unitree UPK files Hard-Coded Key Unitree
 UPK
 2026-02-27T04:28:46.955Z 2026-02-27T15:58:20.444Z
CVE-2025-14142
6.4 (3.1)
Electric Enquiries <= 1.1 - Authenticated (Contributor… electriccode
 Electric Enquiries
 2026-02-27T09:23:42.947Z 2026-02-27T15:56:02.212Z
CVE-2026-2428
7.5 (3.1)
Fluent Forms Pro Add On Pack <= 6.1.17 - Missing Autho… techjewel
 Fluent Forms Pro Add On Pack
 2026-02-27T03:23:19.329Z 2026-02-27T15:49:59.392Z
CVE-2026-28364
7.9 (3.1)
In OCaml before 4.14.3 and 5.x before 5.4.1, a bu… OCaml
 OCaml
 2026-02-27T03:54:53.458Z 2026-02-27T15:49:06.382Z
CVE-2026-28370
9.1 (3.1)
In the query parser in OpenStack Vitrage before 1… OpenStack
 Vitrage
 2026-02-27T04:56:25.453Z 2026-02-27T15:47:53.604Z
CVE-2026-28363
9.9 (3.1)
In OpenClaw before 2026.2.23, tools.exec.safeBins… OpenClaw
 OpenClaw
 2026-02-27T03:17:37.343Z 2026-02-27T15:47:06.970Z
CVE-2026-1558
5.3 (3.1)
WP Recipe Maker <= 10.3.2 - Insecure Direct Object Ref… brechtvds
 WP Recipe Maker
 2026-02-27T04:33:03.419Z 2026-02-27T15:44:54.096Z
CVE-2026-3261
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode School Management System Setting index.ph… itsourcecode
 School Management System
 2026-02-26T21:02:08.434Z 2026-02-27T15:44:41.552Z
CVE-2026-1305
5.3 (3.1)
Japanized for WooCommerce <= 2.8.4 - Missing Authoriza… shoheitanaka
 Japanized for WooCommerce
 2026-02-27T09:23:43.326Z 2026-02-27T15:39:31.362Z
CVE-2026-1434
5.1 (4.0)
Reflected XSS in Omega-PSIR Politechnika Warszawska
 Omega-PSIR
 2026-02-27T10:32:53.339Z 2026-02-27T15:38:38.137Z
CVE-2026-2831
4.9 (3.1)
MailArchiver <= 4.5.0 - Authenticated (Admininistrator… pierrelannoy
 MailArchiver
 2026-02-27T11:22:49.958Z 2026-02-27T15:37:32.548Z
CVE-2025-71056
8.1 (3.1)
Improper session management in GCOM EPON 1GE ONU … n/a
 n/a
 2026-02-23T00:00:00.000Z 2026-02-27T15:32:04.101Z
CVE-2026-27831
7.5 (3.1)
rldns Vulnerable to Heap-based Out-of-Bounds Read bluedragonsecurity
 rldns
 2026-02-26T00:11:45.608Z 2026-02-27T15:24:12.727Z
CVE-2024-3652
6.5 (3.1)
IKEv1 default AH/ESP responder can cause libreswan to … The Libreswan Project (www.libreswan.org)
 libreswan
 2024-04-11T01:32:13.433Z 2026-02-27T15:19:48.988Z
CVE-2026-24350
5.1 (4.0)
Stored XSS in PluXml CMS PluXml
 PluXml CMS
 2026-02-27T11:35:08.802Z 2026-02-27T15:16:22.413Z
CVE-2026-3262
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Asp.Net-Core-Inventory-Order-Management-Syst… go2ismail
 Asp.Net-Core-Inventory-Order-Management-System
 2026-02-26T21:02:10.682Z 2026-02-27T15:15:41.931Z
CVE-2026-24351
5.1 (4.0)
Stored XSS in PluXml CMS PluXml
 PluXml CMS
 2026-02-27T11:35:23.141Z 2026-02-27T15:14:57.021Z
CVE-2024-37227
4.3 (3.1)
WordPress Newsletters plugin <= 4.9.7 - Cross Site Req… Tribulant
 Newsletters
 2024-06-21T13:40:52.608Z 2026-02-27T15:13:06.498Z
CVE-2025-55131
7.1 (3.0)
A flaw in Node.js's buffer allocation logic can e… nodejs
 node
 2026-01-20T20:41:55.591Z 2026-02-27T15:11:22.041Z
ID CVSS Description Vendor Product Published Updated
CVE-2025-3525
6.5 (3.1)
Allocation of Resources Without Limits or Throttling i… GitLab
 GitLab
 2026-02-25T19:33:56.609Z 2026-02-25T20:51:14.590Z
CVE-2026-3304
8.7 (4.0)
Multer vulnerable to Denial of Service via incomplete … expressjs
 multer
 2026-02-27T15:44:37.187Z 2026-02-27T17:12:45.375Z
CVE-2026-3277
N/A
The OpenID Connect (OIDC) authentication configur… Devolutions
 PowerShell Universal
 2026-02-27T15:11:18.252Z 2026-02-27T15:11:18.252Z
CVE-2026-2750
9.1 (3.1)
Command Injection via CLAPI generatetraps Centreon
 Centreon Open Tickets on Central Server
 2026-02-27T14:58:29.021Z 2026-02-27T14:58:29.021Z
CVE-2026-2749
9.9 (3.1)
Path traversal in Centreon Open Tickets Centreon
2026-02-27T15:05:17.203Z 2026-02-27T15:05:17.203Z
CVE-2026-2359
8.7 (4.0)
Multer vulnerable to Denial of Service via resource ex… expressjs
 multer
 2026-02-27T15:42:08.088Z 2026-02-27T17:13:17.930Z
CVE-2026-27831
7.5 (3.1)
rldns Vulnerable to Heap-based Out-of-Bounds Read bluedragonsecurity
 rldns
 2026-02-26T00:11:45.608Z 2026-02-27T15:24:12.727Z
CVE-2025-9900
8.8 (3.1)
Libtiff: libtiff write-what-where

2025-09-23T16:26:22.846Z 2026-02-27T16:09:30.073Z
CVE-2025-71056
8.1 (3.1)
Improper session management in GCOM EPON 1GE ONU … n/a
 n/a
 2026-02-23T00:00:00.000Z 2026-02-27T15:32:04.101Z
CVE-2026-23517
6.3 (4.0)
Fleet has an Access Control vulnerability in debug/ppr… fleetdm
 fleet
 2026-01-21T21:45:34.561Z 2026-01-22T16:49:56.246Z
CVE-2019-25312
5.1 (4.0)
6.4 (3.1)
InoERP 0.7.2 - Persistent Cross-Site Scripting InoIdeas
 InoERP
 2026-02-11T14:56:52.944Z 2026-02-11T16:01:14.035Z
CVE-2026-23518
9.3 (4.0)
Fleet has a JWT signature bypass vulnerability in Azur… fleetdm
 fleet
 2026-01-21T21:50:47.998Z 2026-01-22T16:49:50.477Z
CVE-2020-37196
4.6 (4.0)
7.5 (3.1)
Dnss Domain Name Search Software - 'Key' Denial of Service Nsasoft
 Nsauditor Dnss Domain Name Search Software
 2026-02-11T20:37:17.353Z 2026-02-12T14:58:08.015Z
CVE-2019-25346
7.1 (4.0)
7.1 (3.1)
thesystem 1.0 - 'server_name' SQL Injection kostasmitroglou
 thesystem
 2026-02-12T19:02:35.562Z 2026-02-12T19:48:17.962Z
CVE-2026-25963
1.2 (4.0)
Fleet: Authorization Bypass in certificate template ba… fleetdm
 fleet
 2026-02-26T02:49:21.223Z 2026-02-26T14:27:10.738Z
CVE-2026-27798
4 (3.1)
ImageMagick: Heap Buffer Over-read in WaveletDenoise w… ImageMagick
 ImageMagick
 2026-02-25T23:18:33.174Z 2026-02-26T16:54:57.532Z
CVE-2026-27799
4 (3.1)
ImageMagick has a heap Buffer Over-read in its DJVU im… ImageMagick
 ImageMagick
 2026-02-25T23:20:25.204Z 2026-02-26T17:04:08.122Z
CVE-2019-25347
7.1 (4.0)
7.1 (3.1)
thesystem App 1.0 - 'username' SQL Injection kostasmitroglou
 thesystem
 2026-02-12T19:02:36.324Z 2026-02-12T19:44:50.089Z
CVE-2026-28215
9.1 (3.1)
hoppscotch Vulnerable to Unauthenticated Onboarding Co… hoppscotch
 hoppscotch
 2026-02-26T22:34:46.524Z 2026-02-26T22:34:46.524Z
CVE-2026-28216
8.3 (3.1)
hoppscotch has IDOR in updateUserEnvironment / deleteU… hoppscotch
 hoppscotch
 2026-02-26T22:36:50.539Z 2026-02-27T18:43:16.218Z
CVE-2026-28217
6.5 (3.1)
IDOR in GraphQL userCollection Query Exposes Other Use… hoppscotch
 hoppscotch
 2026-02-26T22:38:33.854Z 2026-02-27T18:42:07.857Z
CVE-2026-3272
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda F453 httpd DhcpListClient fromDhcpListClient buf… Tenda
 F453
 2026-02-27T00:02:12.958Z 2026-02-27T17:19:02.067Z
CVE-2026-3273
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda F453 httpd AdvSetWrlsafeset formWrlsafeset buffe… Tenda
 F453
 2026-02-27T00:32:09.615Z 2026-02-27T00:32:09.615Z
CVE-2026-3274
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda F453 httpd L7Prot frmL7ProtForm buffer overflow Tenda
 F453
 2026-02-27T01:02:09.187Z 2026-02-27T01:02:09.187Z
CVE-2026-3275
8.7 (4.0)
8.8 (3.1)
8.8 (3.0)
Tenda F453 httpd addressNat fromAddressNat buffer overflow Tenda
 F453
 2026-02-27T01:32:10.129Z 2026-02-27T18:55:21.322Z
CVE-2026-25136
8.1 (3.1)
Rucio WebUI has a Reflected Cross-site Scripting Vulne… rucio
 rucio
 2026-02-25T18:57:28.589Z 2026-02-26T20:44:57.174Z
CVE-2026-3301
9.3 (4.0)
9.8 (3.1)
9.8 (3.0)
Totolink N300RH Web Management cstecgi.cgi setWebWlanI… Totolink
 N300RH
 2026-02-27T05:32:15.135Z 2026-02-27T18:53:12.387Z
CVE-2026-3302
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
SourceCodester Doctor Appointment System Sign Up regis… SourceCodester
 Doctor Appointment System
 2026-02-27T06:02:09.605Z 2026-02-27T18:45:13.668Z
CVE-2026-23952
6.5 (3.1)
ImageMagick has a NULL pointer dereference in MSL pars… ImageMagick
 ImageMagick
 2026-01-22T00:32:52.908Z 2026-01-22T21:43:42.939Z
CVE-2025-69414
8.5 (3.1)
Plex Media Server (PMS) through 1.42.2.10156 allo… Plex
 Media Server
 2026-01-02T16:43:09.568Z 2026-01-02T21:01:44.527Z
ID Description Published Updated
fkie_cve-2025-3525 GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.7.5, 18.8 … 2026-02-25T20:21:29.250 2026-02-27T16:17:46.153
fkie_cve-2026-3304 Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior … 2026-02-27T16:16:26.380 2026-02-27T16:16:26.380
fkie_cve-2026-3277 The OpenID Connect (OIDC) authentication configuration in PowerShell Universal before 2026.1.3 sto… 2026-02-27T16:16:26.260 2026-02-27T16:16:26.260
fkie_cve-2026-2750 Improper Input Validation vulnerability in Centreon Centreon Open Tickets on Central Server on Linu… 2026-02-27T16:16:25.827 2026-02-27T16:16:25.827
fkie_cve-2026-2749 Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket mo… 2026-02-27T16:16:25.700 2026-02-27T16:16:25.700
fkie_cve-2026-2359 Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior … 2026-02-27T16:16:25.467 2026-02-27T16:16:25.467
fkie_cve-2026-27831 rldns is an open source DNS server. Version 1.3 has a heap-based out-of-bounds read that leads to d… 2026-02-26T01:16:24.770 2026-02-27T16:16:24.617
fkie_cve-2025-9900 A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when t… 2025-09-23T17:15:38.357 2026-02-27T16:16:22.893
fkie_cve-2025-71056 Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute … 2026-02-23T21:19:09.680 2026-02-27T16:16:22.730
fkie_cve-2026-23517 Fleet is open source device management software. A broken access control issue in versions prior to… 2026-01-21T22:15:49.997 2026-02-27T16:16:14.830
fkie_cve-2019-25312 InoERP 0.7.2 contains a persistent cross-site scripting vulnerability in the comment section that a… 2026-02-11T15:16:10.087 2026-02-27T16:15:18.170
fkie_cve-2026-23518 Fleet is open source device management software. In versions prior to 4.78.3, 4.77.1, 4.76.2, 4.75.… 2026-01-21T22:15:50.140 2026-02-27T16:14:59.390
fkie_cve-2020-37196 Dnss Domain Name Search Software contains a denial of service vulnerability that allows attackers t… 2026-02-11T21:16:14.127 2026-02-27T16:13:28.690
fkie_cve-2019-25346 TheSystem 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentication… 2026-02-12T20:16:01.593 2026-02-27T16:08:17.450
fkie_cve-2026-25963 Fleet is open source device management software. In versions prior to 4.80.1, a broken authorizatio… 2026-02-26T03:16:04.350 2026-02-27T16:05:58.370
fkie_cve-2026-27798 ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… 2026-02-26T00:16:25.193 2026-02-27T16:03:31.390
fkie_cve-2026-27799 ImageMagick is free and open-source software used for editing and manipulating digital images. Prio… 2026-02-26T00:16:25.393 2026-02-27T16:01:02.333
fkie_cve-2019-25347 thesystem App 1.0 contains a SQL injection vulnerability that allows attackers to bypass authentica… 2026-02-12T20:16:01.773 2026-02-27T15:53:14.817
fkie_cve-2026-28215 hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, an unauthenticat… 2026-02-26T23:16:35.940 2026-02-27T15:53:07.053
fkie_cve-2026-28216 hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, any logged-in us… 2026-02-26T23:16:36.100 2026-02-27T15:51:42.330
fkie_cve-2026-28217 hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the `userCollect… 2026-02-26T23:16:36.263 2026-02-27T15:50:55.187
fkie_cve-2026-3272 A vulnerability was determined in Tenda F453 1.0.0.3. Affected is the function fromDhcpListClient o… 2026-02-27T00:16:59.360 2026-02-27T15:48:08.343
fkie_cve-2026-3273 A vulnerability was identified in Tenda F453 1.0.0.3. Affected by this vulnerability is the functio… 2026-02-27T01:16:21.143 2026-02-27T15:47:32.120
fkie_cve-2026-3274 A security flaw has been discovered in Tenda F453 1.0.0.3. Affected by this issue is the function f… 2026-02-27T02:16:20.533 2026-02-27T15:46:57.927
fkie_cve-2026-3275 A weakness has been identified in Tenda F453 1.0.0.3. This affects the function fromAddressNat of t… 2026-02-27T02:16:20.747 2026-02-27T15:46:20.130
fkie_cve-2026-25136 Rucio is a software framework that provides functionality to organize, manage, and access large vol… 2026-02-25T20:23:47.273 2026-02-27T15:43:26.510
fkie_cve-2026-3301 A security flaw has been discovered in Totolink N300RH 6.1c.1353_B20190305. Affected by this vulner… 2026-02-27T06:18:00.480 2026-02-27T15:36:49.730
fkie_cve-2026-3302 A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this is… 2026-02-27T07:17:12.300 2026-02-27T15:36:18.690
fkie_cve-2026-23952 ImageMagick is free and open-source software used for editing and manipulating digital images. Vers… 2026-01-22T01:15:52.790 2026-02-27T15:35:07.890
fkie_cve-2025-69414 Plex Media Server (PMS) through 1.42.2.10156 allows retrieval of a permanent access token via a /my… 2026-01-02T17:16:23.710 2026-02-27T15:27:26.393
ID Severity Description Published Updated
ghsa-vjf3-2gpj-233v
6.3 (3.1)
6.0 (4.0)
n8n has an SSO Enforcement Bypass in its Self-Service Settings API 2026-02-26T22:45:13Z 2026-02-26T22:45:14Z
ghsa-7gcc-r8m5-44qm
7.5 (3.1)
Koa has Host Header Injection via ctx.hostname 2026-02-26T22:42:57Z 2026-02-26T22:42:57Z
ghsa-62cr-6wp5-q43h
5.4 (3.1)
Copyparty vulnerable to reflected XSS via setck parameter 2026-02-26T22:33:46Z 2026-02-26T22:33:46Z
ghsa-fj3w-jwp8-x2g3
2.7 (4.0)
fast-xml-parser has stack overflow in XMLBuilder with preserveOrder 2026-02-26T22:33:10Z 2026-02-26T22:33:10Z
ghsa-qgvg-pr8v-6rr3
5.3 (4.0)
Svelte: XSS via HTML Comment Injection in SSR Error Boundary Hydration Markers 2026-02-26T22:25:45Z 2026-02-26T22:25:45Z
ghsa-phwv-c562-gvmh
5.3 (4.0)
Svelte vulnerable to XSS during SSR with contenteditable `bind:innerText` and `bind:textContent` 2026-02-26T22:24:54Z 2026-02-26T22:24:54Z
ghsa-5rmx-256w-8mj9
8.8 (3.1)
WireGuard Portal is Vulnerable to Privilege Escalation via User Self-Update to Admin Level 2026-02-26T22:22:23Z 2026-02-26T22:22:23Z
ghsa-wvj2-96wp-fq3f
7.0 (4.0)
MCP Go SDK Vulnerable to Improper Handling of Case Sensitivity 2026-02-26T22:20:08Z 2026-02-26T22:20:08Z
ghsa-7r86-cg39-jmmj
7.5 (3.1)
minimatch has ReDoS: matchOne() combinatorial backtracking via multiple non-adjacent GLOBSTAR segments 2026-02-26T22:10:18Z 2026-02-26T22:10:18Z
ghsa-23c5-xmqv-rm74
7.5 (3.1)
minimatch ReDoS: nested *() extglobs generate catastrophically backtracking regular expressions 2026-02-26T22:07:15Z 2026-02-26T22:07:15Z
ghsa-gv5r-9gxr-v74w
6.1 (3.1)
Bootstrap Multiselect Vulnerable to CSRF and Reflective XSS via Arbitrary POST Data 2025-05-13T18:30:53Z 2026-02-26T21:59:01Z
ghsa-xxv2-rmf4-wfx2
8.3 (4.0)
Improper handling of direct memory writes in the input-output memory management unit could allow a … 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-x79r-7fxv-8xh2
8.7 (4.0)
The Pelco, Inc. Sarix Professional 3 Series Cameras are vulnerable to an authentication bypass issu… 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-vx6h-g6hq-6fxf
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-q2v6-vpwh-m5q9
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-fpp3-pj38-w59c
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-9mgh-ggpg-9hq5
8.8 (3.1)
The User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registra… 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-9cqh-whf3-4326
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-9674-77c9-4xpr
8.6 (3.1)
Improper Neutralization of Special Elements Used in a Template Engine (CWE-1336) exists in Workflow… 2026-02-26T21:31:31Z 2026-02-26T21:31:31Z
ghsa-4m27-pqhx-2rfv
6.5 (3.1)
Uncontrolled Resource Consumption (CWE-400) in the Timelion component in Kibana can lead Denial of … 2026-02-26T21:31:30Z 2026-02-26T21:31:31Z
ghsa-wv77-3ff9-m96q
8.2 (3.1)
Improper session management in D-Link Wireless N 300 ADSL2+ Modem Router DSL-124 ME_1.00 allows att… 2026-02-26T18:31:41Z 2026-02-26T21:31:30Z
ghsa-wgqq-4524-pjw8
6.1 (3.1)
A malicious actor with authenticated user privileges on a Windows based Workstation host may be abl… 2026-02-26T21:31:30Z 2026-02-26T21:31:30Z
ghsa-pg8p-25c5-3f44
9.8 (3.1)
9.3 (4.0)
The SPIP referer_spam plugin versions prior to 1.3.0 contain an unauthenticated SQL injection vulne… 2026-02-25T06:31:14Z 2026-02-26T21:31:30Z
ghsa-jxpv-ww5c-x2c3
7.6 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2026-02-26T09:30:27Z 2026-02-26T21:31:30Z
ghsa-8vx8-439w-j8j5
6.1 (3.1)
5.1 (4.0)
The SPIP jeux plugin versions prior to 4.1.1 contain a reflected cross-site scripting (XSS) vulnera… 2026-02-25T06:31:15Z 2026-02-26T21:31:30Z
ghsa-8fr6-83vj-w7xh
7.8 (3.1)
6.2 (4.0)
A vulnerability identified in the Trellix HX Agent driver file fekern.sys allowed a threat actor w… 2026-02-24T18:31:03Z 2026-02-26T21:31:30Z
ghsa-6rvw-w3xj-gg67
8.8 (3.1)
8.7 (4.0)
The SPIP interface_traduction_objets plugin versions prior to 4.3.3 contain an authenticated remote… 2026-02-25T06:31:15Z 2026-02-26T21:31:30Z
ghsa-68cf-j259-wgr8
9.8 (3.1)
9.3 (4.0)
The SPIP tickets plugin versions prior to 4.3.3 contain an unauthenticated remote code execution vu… 2026-02-25T06:31:14Z 2026-02-26T21:31:30Z
ghsa-5859-4v8q-r354
7.8 (3.1)
An issue in fastCMS before v.0.1.6 allows a local attacker to execute arbitrary code via the Plugin… 2026-02-26T18:31:41Z 2026-02-26T21:31:30Z
ghsa-47p7-hmcr-q3rr
9.6 (3.1)
An arbitrary file upload vulnerability in the subtitle loading function of asbplayer v1.13.0 allows… 2026-02-25T18:31:37Z 2026-02-26T21:31:30Z
ID Severity Description Package Published Updated
pysec-2014-103
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… ipa 2014-05-29T14:19:00Z 2024-11-21T14:22:51.957056Z
pysec-2013-38
The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification… ipa 2013-01-27T18:55:00Z 2024-11-21T14:22:51.898526Z
pysec-2012-33
Session fixation vulnerability in OpenStack Dashboard (Horizon) folsom-1 and 2012.1 allow… horizon 2012-06-05T22:55:00Z 2024-11-21T14:22:51.786908Z
pysec-2012-32
Cross-site scripting (XSS) vulnerability in the refresh mechanism in the log viewer in ho… horizon 2012-06-05T22:55:00Z 2024-11-21T14:22:51.729618Z
pysec-2023-271
5.3 (3.1)
Hail is an open-source, general-purpose, Python-based data analysis tool with additional … hail 2023-12-29T17:16:00+00:00 2024-11-21T14:22:51.672042+00:00
pysec-2012-31
libs/updater.py in GoLismero 0.6.3, and other versions before Git revision 2b3bb43d6867, … golismero 2012-03-19T19:55:00Z 2024-11-21T14:22:51.617446Z
pysec-2013-37
store/swift.py in OpenStack Glance Essex (2012.1), Folsom (2012.2) before 2012.2.3, and G… glance 2013-02-24T21:55:00Z 2024-11-21T14:22:51.177765Z
pysec-2012-30
The v2 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote… glance 2012-11-11T13:00:00Z 2024-11-21T14:22:51.113933Z
pysec-2012-29
The v1 API in OpenStack Glance Grizzly, Folsom (2012.2), and Essex (2012.1) allows remote… glance 2012-11-11T13:00:00Z 2024-11-21T14:22:51.054769Z
pysec-2023-269
7.5 (3.1)
GeoNode is an open source platform that facilitates the creation, sharing, and collaborat… geonode 2023-08-24T23:15:00+00:00 2024-11-21T14:22:50.995218+00:00
pysec-2021-888
7.8 (3.1)
netCDF in GDAL 2.4.2 through 3.0.4 has a stack-based buffer overflow in nc4_get_att (call… gdal 2021-07-20T07:15:00+00:00 2024-11-21T14:22:50.934313+00:00
pysec-2021-887
9.8 (3.1)
GattLib 0.3-rc1 has a stack-based buffer over-read in get_device_path_from_mac in dbus/ga… gattlib-py 2021-05-27T11:15:00Z 2024-11-21T14:22:50.881327Z
pysec-2019-250
8.8 (3.1)
GattLib 0.2 has a stack-based buffer over-read in gattlib_connect in dbus/gattlib.c becau… gattlib-py 2019-01-21T06:29:00Z 2024-11-21T14:22:50.820785Z
pysec-2014-101
FreeIPA 4.0.x before 4.0.5 and 4.1.x before 4.1.1, when 2FA is enabled, allows remote att… freeipa 2014-11-19T18:59:00Z 2024-11-21T14:22:50.589801Z
pysec-2014-100
The default LDAP ACIs in FreeIPA 3.0 before 3.1.2 do not restrict access to the (1) ipaNT… freeipa 2014-05-29T14:19:00Z 2024-11-21T14:22:50.537629Z
pysec-2013-36
The client in FreeIPA 2.x and 3.x before 3.1.2 does not properly obtain the Certification… freeipa 2013-01-27T18:55:00Z 2024-11-21T14:22:50.474073Z
pysec-2021-886
6.5 (3.1)
A buffer overflow vulnerability in the Databuf function in types.cpp of Exiv2 v0.27.1 lea… exiv2 2021-07-13T22:15:00Z 2024-11-21T14:22:50.153222Z
pysec-2021-885
6.5 (3.1)
A stack exhaustion issue in the printIFDStructure function of Exiv2 0.27 allows remote at… exiv2 2021-08-19T22:15:00Z 2024-11-21T14:22:50.094265Z
pysec-2021-884
6.5 (3.1)
A float point exception in the printLong function in tags_int.cpp of Exiv2 0.27.99.0 allo… exiv2 2021-08-23T22:15:00Z 2024-11-21T14:22:50.034285Z
pysec-2021-883
6.5 (3.1)
An invalid memory access in the decode function in iptc.cpp of Exiv2 0.27.99.0 allows att… exiv2 2021-08-23T22:15:00Z 2024-11-21T14:22:49.973408Z
pysec-2021-882
8.1 (3.1)
Exiv2 0.27.99.0 has a global buffer over-read in Exiv2::Internal::Nikon1MakerNote::print0… exiv2 2021-08-23T22:15:00Z 2024-11-21T14:22:49.911764Z
pysec-2019-249
8.8 (3.1)
An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::print… exiv2 2019-02-25T15:29:00Z 2024-11-21T14:22:49.85073Z
pysec-2019-248
8.8 (3.1)
An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::print… exiv2 2019-02-25T15:29:00Z 2024-11-21T14:22:49.79084Z
pysec-2020-344
7.5 (3.1)
In Jp2Image::readMetadata() in jp2image.cpp in Exiv2 0.27.2, an input file can result in … exiv2 2020-01-27T05:15:00Z 2024-11-21T14:22:49.729892Z
pysec-2019-247
6.5 (3.1)
Exiv2 0.27.2 allows attackers to trigger a crash in Exiv2::getULong in types.cpp when cal… exiv2 2019-10-09T19:15:00Z 2024-11-21T14:22:49.656989Z
pysec-2019-246
6.5 (3.1)
In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in … exiv2 2019-07-28T19:15:00Z 2024-11-21T14:22:49.597801Z
pysec-2019-245
6.5 (3.1)
Exiv2::PngImage::readMetadata() in pngimage.cpp in Exiv2 0.27.99.0 allows attackers to ca… exiv2 2019-07-28T19:15:00Z 2024-11-21T14:22:49.538663Z
pysec-2019-244
7.8 (3.1)
Exiv2 0.27.99.0 has a heap-based buffer over-read in Exiv2::RafImage::readMetadata() in r… exiv2 2019-07-28T19:15:00Z 2024-11-21T14:22:49.479201Z
pysec-2018-148
6.5 (3.1)
In the DataBuf class in include/exiv2/types.hpp in Exiv2 0.26, an issue exists in the con… exiv2 2018-03-30T08:29:00Z 2024-11-21T14:22:49.400819Z
pysec-2018-147
6.5 (3.1)
In Exiv2 0.26, the Exiv2::Internal::printCsLensFFFF function in canonmn_int.cpp allows re… exiv2 2018-03-25T03:29:00Z 2024-11-21T14:22:49.341312Z
ID Description Type
ID Description Updated
gsd-2024-4217 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.397245Z
gsd-2024-4173 A vulnerability in Brocade SANnav exposes Kafka in the wan interface. The vulnerability… 2024-04-26T05:02:17.396711Z
gsd-2024-4193 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.395860Z
gsd-2024-4182 Mattermost versions 9.6.0, 9.5.x before 9.5.3, 9.4.x before 9.4.5, and 8.1.x before 8.1.1… 2024-04-26T05:02:17.395657Z
gsd-2024-4203 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.393641Z
gsd-2024-4195 Mattermost versions 9.6.0, 9.5.x before 9.5.3, and 8.1.x before 8.1.12 fail to fully vali… 2024-04-26T05:02:17.392645Z
gsd-2024-4176 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.392184Z
gsd-2024-4214 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.390841Z
gsd-2024-4174 Cross-Site Scripting (XSS) vulnerability in Hyperion Web Server affecting version 2.0.15.… 2024-04-26T05:02:17.389353Z
gsd-2024-4185 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.387322Z
gsd-2024-4208 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.386660Z
gsd-2024-4196 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.385450Z
gsd-2024-4220 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.384898Z
gsd-2024-4213 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.379947Z
gsd-2024-4215 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.378015Z
gsd-2024-4189 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.377780Z
gsd-2024-4178 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.377539Z
gsd-2024-4207 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.376954Z
gsd-2024-4187 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.376404Z
gsd-2024-4172 A vulnerability classified as problematic was found in idcCMS 1.35. Affected by this vuln… 2024-04-26T05:02:17.373866Z
gsd-2024-4166 A vulnerability has been found in Tenda 4G300 1.01.42 and classified as critical. Affecte… 2024-04-26T05:02:17.372976Z
gsd-2024-4183 Mattermost versions 8.1.x before 8.1.12, 9.6.x before 9.6.1, 9.5.x before 9.5.3, 9.4.x be… 2024-04-26T05:02:17.372323Z
gsd-2024-4184 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.371241Z
gsd-2024-4218 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.369587Z
gsd-2024-4222 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.363699Z
gsd-2024-4170 A vulnerability was found in Tenda 4G300 1.01.42. It has been rated as critical. This iss… 2024-04-26T05:02:17.362844Z
gsd-2024-4205 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.362130Z
gsd-2024-4219 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.359066Z
gsd-2024-4226 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.358460Z
gsd-2024-4186 The format of the source doesn't require a description, click on the link for more details. 2024-04-26T05:02:17.352617Z
ID Description Published Updated
mal-2026-747 Malicious code in react-vite-sync (npm) 2026-02-04T23:44:25Z 2026-02-06T03:05:26Z
mal-2026-746 Malicious code in react-count-sync (npm) 2026-02-04T23:44:24Z 2026-02-06T03:05:26Z
mal-2026-737 Malicious code in remark-gfm-v4 (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:26Z
mal-2026-716 Malicious code in si-wsl (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-715 Malicious code in rreact-sdk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-714 Malicious code in reactt-sdkk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-713 Malicious code in react-sdkk (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:26Z
mal-2026-693 Malicious code in tailwindcss-forms-kit (npm) 2026-02-03T07:51:18Z 2026-02-06T03:05:26Z
mal-2026-685 Malicious code in strengthifys (npm) 2026-02-03T07:27:10Z 2026-02-06T03:05:26Z
mal-2026-684 Malicious code in react-responsive-carousel-v4 (npm) 2026-02-03T07:27:10Z 2026-02-06T03:05:26Z
mal-2026-675 Malicious code in supun-baileys (npm) 2026-02-03T05:01:33Z 2026-02-06T03:05:26Z
mal-2026-662 Malicious code in researchpoc (npm) 2026-02-03T03:25:19Z 2026-02-06T03:05:26Z
mal-2026-657 Malicious code in react-dnd-legacy-html5-backend (npm) 2026-02-03T02:23:48Z 2026-02-06T03:05:26Z
mal-2026-765 Malicious code in optimizer-cpu (npm) 2026-02-05T16:05:05Z 2026-02-06T03:05:25Z
mal-2026-753 Malicious code in log-symbols_updated (npm) 2026-02-05T01:50:11Z 2026-02-06T03:05:25Z
mal-2026-752 Malicious code in locate-path_updated (npm) 2026-02-05T01:50:11Z 2026-02-06T03:05:25Z
mal-2026-744 Malicious code in mdp-client-web (npm) 2026-02-04T17:08:45Z 2026-02-06T03:05:25Z
mal-2026-717 Malicious code in partnerss (npm) 2026-02-04T05:25:27Z 2026-02-06T03:05:25Z
mal-2026-712 Malicious code in ongose (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-711 Malicious code in mongoose_update (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-710 Malicious code in mongooose_updated (npm) 2026-02-04T04:41:10Z 2026-02-06T03:05:25Z
mal-2026-709 Malicious code in mongooose_update (npm) 2026-02-04T04:41:11Z 2026-02-06T03:05:25Z
mal-2026-661 Malicious code in netlify-project-helper (npm) 2026-02-03T03:54:05Z 2026-02-06T03:05:25Z
mal-2026-769 Malicious code in https-servers (npm) 2026-02-05T17:28:15Z 2026-02-06T03:05:24Z
mal-2026-757 Malicious code in internallib_v157 (npm) 2026-02-05T02:24:51Z 2026-02-06T03:05:24Z
mal-2026-743 Malicious code in internationalized (npm) 2026-02-04T17:13:32Z 2026-02-06T03:05:24Z
mal-2026-736 Malicious code in ggajsvjsg (npm) 2026-02-04T09:46:59Z 2026-02-06T03:05:24Z
mal-2026-725 Malicious code in json-mapping-source (npm) 2026-02-04T05:25:15Z 2026-02-06T03:05:24Z
mal-2026-724 Malicious code in https-emailjs (npm) 2026-02-04T05:02:52Z 2026-02-06T03:05:24Z
mal-2026-723 Malicious code in http-emailjs (npm) 2026-02-04T05:02:52Z 2026-02-06T03:05:24Z
ID Description Published Updated
wid-sec-w-2025-1870 Keycloak: Schwachstelle ermöglicht Versand beliebiger E-Mails 2025-08-19T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-1269 Apache Kafka: Mehrere Schwachstellen 2025-06-09T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-0713 poppler: Mehrere Schwachstellen ermöglichen Denial of Service 2025-04-06T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-0712 GNU libc: Schwachstelle ermöglicht Denial of Service 2025-04-06T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-0545 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-03-11T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2025-0217 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2025-01-29T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-3528 Linux Kernel: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2024-11-21T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-3339 Linux Kernel: Mehrere Schwachstellen 2024-11-05T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-3283 Linux-Kernel: Schwachstelle ermöglicht Codeausführung 2024-10-27T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-3281 expat: Schwachstelle ermöglicht Denial of Service 2024-10-27T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-1951 expat: Mehrere Schwachstellen ermöglichen Denial of Service 2024-08-29T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-1700 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2024-07-23T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2024-0386 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2024-02-13T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2023-2412 Internet Systems Consortium BIND: Mehrere Schwachstellen 2023-09-20T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2023-1533 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2023-06-21T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2023-0300 Apache Kafka: Schwachstelle ermöglicht Codeausführung 2023-02-07T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2022-1492 Internet Systems Consortium BIND: Mehrere Schwachstellen ermöglichen Denial of Service 2022-09-20T22:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2022-0969 Internet Systems Consortium BIND: Mehrere Schwachstellen 2022-03-16T23:00:00.000+00:00 2026-01-06T23:00:00.000+00:00
wid-sec-w-2026-0016 n8n: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2026-01-05T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0015 Samsung Android: Mehrere Schwachstellen 2026-01-05T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0014 Ubiquiti UniFi Protect: Mehrere Schwachstellen 2026-01-05T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0013 Google Android: Schwachstelle ermöglicht Codeausführung 2026-01-05T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0012 Red Hat Enterprise Linux: Mehrere Schwachstellen 2020-09-29T22:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0006 OpenCTI: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen, Manipulation von Daten, Denial of Service 2026-01-04T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0003 Vaadin: Schwachstelle ermöglicht Cross-Site Scripting 2026-01-04T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2911 Synacor Zimbra: Mehrere Schwachstellen 2025-12-22T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2891 WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS 2025-12-18T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2888 ImageMagick: Schwachstelle ermöglicht Denial of Service 2025-12-18T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2882 Red Hat Enterprise Linux (audiofile): Schwachstelle ermöglicht Denial of Service 2025-12-17T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2830 Red Hat Enterprise Linux (libsoup): Schwachstelle ermöglicht Denial of Service 2025-12-11T23:00:00.000+00:00 2026-01-05T23:00:00.000+00:00
ID Description Published Updated
ncsc-2025-0088 Kwetsbaarheden verholpen in Autodesk AutoCAD 2025-03-14T10:10:13.263645Z 2025-03-14T10:10:13.263645Z
ncsc-2025-0087 Kwetsbaarheden verholpen in GitLab 2025-03-14T09:14:59.775984Z 2025-03-14T09:14:59.775984Z
ncsc-2025-0086 Kwetsbaarheid verholpen in Apple iOS, iPadOS, macOS Sequoia, visionOS en Safari 2025-03-12T13:48:59.223945Z 2025-03-12T13:48:59.223945Z
ncsc-2025-0085 Kwetsbaarheid verholpen in Ivanti Secure Access Client 2025-03-12T11:00:45.614633Z 2025-03-12T11:00:45.614633Z
ncsc-2025-0084 Kwetsbaarheden verholpen in Adobe Acrobat Reader 2025-03-12T10:56:00.883114Z 2025-03-12T10:56:00.883114Z
ncsc-2025-0083 Kwetsbaarheden verholpen in Fortinet FortiSandbox 2025-03-12T10:51:18.487649Z 2025-03-12T10:51:18.487649Z
ncsc-2025-0082 Kwetsbaarheden verholpen in FortiOS, FortiProxy, FortiPAM, FortiSRA en FortiWeb. 2025-03-12T10:46:38.451715Z 2025-03-12T10:46:38.451715Z
ncsc-2025-0081 Kwetsbaarheden verholpen in Microsoft Azure 2025-03-11T18:45:19.628300Z 2025-03-11T18:45:19.628300Z
ncsc-2025-0080 Kwetsbaarheden verholpen in Microsoft Office 2025-03-11T18:44:43.336447Z 2025-03-11T18:44:43.336447Z
ncsc-2025-0079 Kwetsbaarheden verholpen in Microsoft Developer Tools 2025-03-11T18:44:07.766518Z 2025-03-11T18:44:07.766518Z
ncsc-2025-0078 Kwetsbaarheden verholpen in Microsoft Windows 2025-03-11T18:43:14.505624Z 2025-03-11T18:43:14.505624Z
ncsc-2025-0077 Kwetsbaarheden verholpen in Siemens producten 2025-03-11T12:30:29.277759Z 2025-03-11T12:30:29.277759Z
ncsc-2025-0076 Kwetsbaarheden verholpen in SAP software 2025-03-11T12:20:06.258896Z 2025-03-11T12:20:06.258896Z
ncsc-2025-0075 Kwetsbaarheid verholpen in Elastic Kibana 2025-03-07T13:51:51.509917Z 2025-03-07T13:51:51.509917Z
ncsc-2025-0074 Kwetsbaarheden verholpen in IBM Storage producten 2025-03-04T14:14:48.398751Z 2025-03-04T14:14:48.398751Z
ncsc-2025-0073 Kwetsbaarheden verholpen in VMware producten 2025-03-04T14:11:56.959153Z 2025-03-04T14:11:56.959153Z
ncsc-2025-0072 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-03-04T10:15:32.203439Z 2025-03-04T10:15:32.203439Z
ncsc-2025-0071 Kwetsbaarheid verholpen in Zohocorp ManageEngine ADSelfService Plus 2025-03-03T14:11:46.709999Z 2025-03-03T14:11:46.709999Z
ncsc-2025-0070 Kwetsbaarheden verholpen in GitLab 2025-03-03T14:10:30.120360Z 2025-03-03T14:10:30.120360Z
ncsc-2025-0069 Kwetsbaarheid verholpen in MITRE Caldera 2025-02-25T07:42:48.535179Z 2025-02-25T07:42:48.535179Z
ncsc-2025-0068 Kwetsbaarheden verholpen in Mattermost 2025-02-24T12:04:19.392654Z 2025-02-24T12:04:19.392654Z
ncsc-2025-0067 Kwetsbaarheid verholpen in Exim 2025-02-21T12:54:32.376733Z 2025-02-21T12:54:32.376733Z
ncsc-2025-0066 Kwetsbaarheid verholpen in XWiki 2025-02-21T12:33:24.503983Z 2025-02-21T12:33:24.503983Z
ncsc-2025-0065 Kwetsbaarheden verholpen in Nagios XI 2025-02-21T12:32:41.120020Z 2025-02-21T12:32:41.120020Z
ncsc-2025-0064 Kwetsbaarheden verholpen in IBM Cognos Controller 2025-02-21T08:40:26.849797Z 2025-02-21T08:40:26.849797Z
ncsc-2025-0058 Kwetsbaarheden verholpen in Palo Alto Networks PAN-OS 2025-02-13T09:28:54.459828Z 2025-02-21T08:08:58.513404Z
ncsc-2025-0063 Kwetsbaarheid verholpen in PostgreSQL 2025-02-19T09:11:55.511966Z 2025-02-19T09:11:55.511966Z
ncsc-2025-0062 Kwetsbaarheid verholpen in Juniper Session Smart Router 2025-02-18T14:25:56.916762Z 2025-02-18T14:25:56.916762Z
ncsc-2025-0053 Kwetsbaarheden verholpen in Fortinet FortiSwitch, FortiManager, FortiAnalyzer, FortiOS en FortiProxy 2025-02-12T12:39:02.366846Z 2025-02-18T08:09:48.619964Z
ncsc-2025-0004 Kwetsbaarheden verholpen in SonicWall SonicOS 2025-01-08T09:57:24.409437Z 2025-02-18T08:09:28.652034Z
ID Description Published Updated
ID Description Published Updated
ssa-333517 SSA-333517: Multiple Vulnerabilities in SCALANCE SC-600 Family before V3.0 2022-12-13T00:00:00Z 2022-12-13T00:00:00Z
ssa-312271 SSA-312271: Unquoted Search Path Vulnerability in Windows-based Industrial Software Applications 2020-06-09T00:00:00Z 2022-12-13T00:00:00Z
ssa-274282 SSA-274282: Cross Site Scripting Vulnerability in PLM Help Server V4.2 2022-12-13T00:00:00Z 2022-12-13T00:00:00Z
ssa-224632 SSA-224632: Improper Access Control Vulnerability in Mendix Email Connector Module 2022-12-13T00:00:00Z 2022-12-13T00:00:00Z
ssa-501891 SSA-501891: Cross-Site Scripting Vulnerability in SCALANCE X-200 and X-200IRT Families 2022-10-11T00:00:00Z 2022-11-08T00:00:00Z
ssa-400332 SSA-400332: Insufficient Design IP Protection in IEEE 1735 Recommended Practice - Impact to Questa and ModelSim 2021-12-14T00:00:00Z 2022-11-08T00:00:00Z
ssa-371761 SSA-371761: Arbitrary Code Execution Vulnerability in the Logback Component of SINEC NMS before V1.0.3 2022-11-08T00:00:00Z 2022-11-08T00:00:00Z
ssa-362164 SSA-362164: Predictable Initial Sequence Numbers in the TCP/IP Stack of Nucleus RTOS 2021-02-09T00:00:00Z 2022-11-08T00:00:00Z
ssa-928782 SSA-928782: Firmware Authenticity Vulnerability in LOGO! 8 BM Devices 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-917476 SSA-917476: Multiple Vulnerabilities in SCALANCE W1750D 2021-11-09T00:00:00Z 2022-10-11T00:00:00Z
ssa-836027 SSA-836027: Client-side Authentication in Desigo CC and Cerberus DMS 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-685781 SSA-685781: Multiple Vulnerabilities in Apache HTTP Server Affecting Siemens Products 2022-06-14T00:00:00Z 2022-10-11T00:00:00Z
ssa-649853 SSA-649853: Improper Certificate Validation Vulnerability in Industrial Edge Management 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-611756 SSA-611756: JT File Parsing Vulnerability in JTTK and Simcenter Femap 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-384224 SSA-384224: Denial of Service Vulnerability in SIMATIC HMI Panels 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-360783 SSA-360783: Multiple Webserver Vulnerabilities in Desigo PXM Devices 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-280624 SSA-280624: Multiple Vulnerabilities in SCALANCE W1750D 2021-10-12T00:00:00Z 2022-10-11T00:00:00Z
ssa-258115 SSA-258115: DWG File Parsing Vulnerability in Solid Edge before SE2022MP9 2022-10-11T00:00:00Z 2022-10-11T00:00:00Z
ssa-518824 SSA-518824 Multiple File Parsing Vulnerabilities in Simcenter Femap and Parasolid 2022-09-13T00:00:00Z 2022-09-13T00:00:00Z
ssa-243317 SSA-243317 File Parsing Vulnerability in Simcenter Femap and Parasolid 2022-07-12T00:00:00Z 2022-09-13T00:00:00Z
ssa-914168 SSA-914168: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products 2022-02-08T00:00:00Z 2022-08-09T00:00:00Z
ssa-789162 SSA-789162: Vulnerabilities in Teamcenter 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-759952 SSA-759952: Command Injection and Denial of Service Vulnerability in Teamcenter 2022-08-09T00:00:00Z 2022-08-09T00:00:00Z
ssa-732250 SSA-732250: Libcurl Vulnerabilities in Industrial Devices 2022-05-10T00:00:00Z 2022-08-09T00:00:00Z
ssa-669737 SSA-669737: Improper Access Control Vulnerability in SICAM TOOLBOX II 2022-02-08T00:00:00Z 2022-08-09T00:00:00Z
ssa-661034 SSA-661034: Incorrect Permission Assignment in Multiple SIMATIC Software Products 2021-07-13T00:00:00Z 2022-08-09T00:00:00Z
ssa-629512 SSA-629512: Local Privilege Escalation Vulnerability in TIA Portal 2020-01-14T00:00:00Z 2022-08-09T00:00:00Z
ssa-580125 SSA-580125: Multiple Vulnerabilities in SIMATIC eaSie 2022-07-12T00:00:00Z 2022-08-09T00:00:00Z
ssa-555707 SSA-555707: Information Disclosure Vulnerability in Simcenter STAR-CCM+ 2022-08-09T00:00:00Z 2022-08-09T00:00:00Z
ssa-492828 SSA-492828: Denial-of-Service Vulnerability in SIMATIC S7-300 CPUs and SINUMERIK Controller 2020-11-10T00:00:00Z 2022-08-09T00:00:00Z
ID Description Published Updated
rhsa-2025:0445 Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.2 2025-01-20T21:49:53+00:00 2026-02-17T09:18:02+00:00
rhsa-2025:0444 Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.2 2025-01-20T21:35:36+00:00 2026-02-17T09:18:02+00:00
rhsa-2025:0390 Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.4 release 2025-01-16T17:44:29+00:00 2026-02-17T09:18:01+00:00
rhsa-2025:0386 Red Hat Security Advisory: VolSync 0.10.2 for RHEL 9 2025-01-16T18:36:58+00:00 2026-02-17T09:18:00+00:00
rhsa-2025:0224 Red Hat Security Advisory: Red Hat build of Cryostat security update 2025-01-09T17:48:40+00:00 2026-02-17T09:18:00+00:00
rhsa-2025:0385 Red Hat Security Advisory: VolSync 0.11.1 for RHEL 9 2025-01-16T18:08:53+00:00 2026-02-17T09:17:59+00:00
rhsa-2025:0384 Red Hat Security Advisory: RHSA: Submariner 0.18.4 - bug and security fixes 2025-01-16T18:46:52+00:00 2026-02-17T09:17:57+00:00
rhsa-2025:0370 Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.4 release 2025-01-16T11:44:17+00:00 2026-02-17T09:17:57+00:00
rhsa-2025:0364 Red Hat Security Advisory: OpenShift Container Platform 4.14.45 bug fix and security update 2025-01-22T03:22:29+00:00 2026-02-17T09:17:57+00:00
rhsa-2025:0140 Red Hat Security Advisory: OpenShift Container Platform 4.16.30 bug fix and security update 2025-01-15T00:51:07+00:00 2026-02-17T09:17:55+00:00
rhsa-2025:0121 Red Hat Security Advisory: OpenShift Container Platform 4.15.43 bug fix and security update 2025-01-15T02:21:47+00:00 2026-02-17T09:17:54+00:00
rhsa-2025:0115 Red Hat Security Advisory: OpenShift Container Platform 4.17.12 bug fix and security update 2025-01-14T09:52:44+00:00 2026-02-17T09:17:53+00:00
rhsa-2024:11037 Red Hat Security Advisory: OpenShift Container Platform 4.19.0 security and extras update 2025-06-17T16:07:37+00:00 2026-02-17T09:17:52+00:00
rhsa-2025:0048 Red Hat Security Advisory: OpenShift Virtualization 4.17.3 Images 2025-01-07T21:44:39+00:00 2026-02-17T09:17:51+00:00
rhsa-2024:6122 Red Hat Security Advisory: OpenShift Container Platform 4.18.1 bug fix and security update 2025-02-25T04:38:13+00:00 2026-02-17T09:17:49+00:00
rhsa-2024:6121 Red Hat Security Advisory: OpenShift Container Platform 4.18.1 security and extras update 2025-02-25T02:32:04+00:00 2026-02-17T09:17:48+00:00
rhsa-2024:11038 Red Hat Security Advisory: OpenShift Container Platform 4.19.0 bug fix and security update 2025-06-17T16:44:54+00:00 2026-02-17T09:17:48+00:00
rhba-2025:0409 Red Hat Bug Fix Advisory: Red Hat Developer Hub 1.4.1 release. 2025-01-20T12:54:15+00:00 2026-02-17T09:17:46+00:00
rhsa-2025:3492 Red Hat Security Advisory: Satellite 6.14.4.5 Async Update 2025-04-01T15:15:26+00:00 2026-02-17T08:03:12+00:00
rhsa-2025:3490 Red Hat Security Advisory: Satellite 6.16.4 Async Update 2025-04-01T15:20:14+00:00 2026-02-17T08:03:11+00:00
rhsa-2025:3448 Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.8.19 2025-04-02T20:05:39+00:00 2026-02-17T08:03:10+00:00
rhsa-2026:2709 Red Hat Security Advisory: golang security update 2026-02-16T10:32:31+00:00 2026-02-17T08:02:39+00:00
rhsa-2026:2708 Red Hat Security Advisory: go-toolset:rhel8 security update 2026-02-16T10:08:41+00:00 2026-02-17T08:02:34+00:00
rhsa-2026:2706 Red Hat Security Advisory: golang security update 2026-02-16T09:40:31+00:00 2026-02-17T08:02:33+00:00
rhsa-2026:2688 Red Hat Security Advisory: osbuild-composer security update 2026-02-16T10:30:06+00:00 2026-02-17T08:02:32+00:00
rhsa-2026:2687 Red Hat Security Advisory: osbuild-composer security update 2026-02-16T10:31:46+00:00 2026-02-17T08:02:32+00:00
rhsa-2026:2686 Red Hat Security Advisory: osbuild-composer security update 2026-02-12T19:52:02+00:00 2026-02-17T08:02:31+00:00
rhsa-2026:2685 Red Hat Security Advisory: osbuild-composer security update 2026-02-12T20:07:52+00:00 2026-02-17T08:02:31+00:00
rhsa-2026:2520 Red Hat Security Advisory: toolbox security update 2026-02-11T09:49:41+00:00 2026-02-17T08:02:28+00:00
rhsa-2026:2519 Red Hat Security Advisory: toolbox security update 2026-02-11T09:37:40+00:00 2026-02-17T08:02:27+00:00
ID Description Published Updated
icsa-25-226-04 Siemens Simcenter Femap 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-02 Siemens COMOS 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-226-01 Siemens SIMATIC RTLS Locating Manager 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-191-05 Siemens TIA Project-Server and TIA Portal 2025-07-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-135-07 Siemens SIMATIC IPC RS-828A 2025-05-13T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-044-05 Siemens SIPROTEC 5 Devices 2025-02-11T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-347-05 Siemens Siemens Engineering Platforms 2024-12-10T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-319-12 Siemens Mendix Runtime 2024-11-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-256-05 Siemens Mendix Runtime 2024-09-10T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-193-06 Siemens RUGGEDCOM 2024-07-09T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-074-08 Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family 2024-03-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-348-10 Siemens SIMATIC S7-1500 2023-12-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-222-12 Siemens RUGGEDCOM ROS 2023-08-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-222-08 Siemens RUGGEDCOM ROS Devices 2023-08-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-314-05 Siemens RUGGEDCOM ROS 2022-11-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-195-18 Siemens RUGGEDCOM ROS Code Injection 2022-07-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-069-12 Siemens RUGGEDCOM ROS 2022-03-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-069-01 Siemens RUGGEDCOM Devices 2022-03-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-17-271-01b Siemens Ruggedcom ROS, SCALANCE 2017-09-28T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-219-08 Yealink IP Phones and RPS (Redirect and Provisioning Service) 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-05 Packet Power EMX and EG 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-04 Rockwell Automation Arena 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-03 Burk Technology ARC Solo 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-01 Delta Electronics DIAView 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-148-04 Instantel Micromate (Update A) 2025-05-29T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-24-123-01 CyberPower PowerPanel Business 2024-05-02T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-24-032-01 Gessler GmbH WEB-MASTER 2024-02-01T07:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-06 Dreame Technology iOS and Android Mobile Applications 2025-08-07T04:00:00.000000Z 2025-08-07T04:00:00.000000Z
va-25-219-01 Tyler Technologies ERP Pro 9 2025-08-07T00:00:00Z 2025-08-07T00:00:00Z
icsa-25-247-01 Honeywell OneWireless Wireless Device Manager (WDM) 2025-08-04T06:00:00.000000Z 2025-08-04T06:00:00.000000Z
ID Description Published Updated
cisco-sa-dmi-acl-bypass-xv8fo8vz Cisco IOS XE Software NETCONF/RESTCONF IPv4 Access Control List Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-dhcp-dos-t3cxpo9z Cisco IOS XE Software DHCP Snooping with Endpoint Analytics Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ccc-authz-bypass-5ekchjrb Cisco Catalyst Center Authorization Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-aux-333wbz8f Cisco IOS XE Software Auxiliary Asynchronous Port Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ap-secureboot-bypass-zt5vjksd Cisco Access Point Software Secure Boot Bypass Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-ap-dos-h9tggx6w Cisco Access Point Software Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-airo-ap-dos-ppptcvw Cisco Aironet Access Point Software Resource Exhaustion Denial of Service Vulnerability 2024-03-27T16:00:00+00:00 2024-03-27T16:00:00+00:00
cisco-sa-iosxr-redis-abjye5xk Cisco IOS XR Software Health Check Open Port Vulnerability 2022-05-20T16:00:00+00:00 2024-03-15T16:55:47+00:00
cisco-sa-xrl2vpn-jesru3fc Cisco IOS XR Software Layer 2 Services Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-snmp-uhv6zdef Cisco IOS XR Software SNMP Management Plane Protection ACL Bypass Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-ssh-privesc-ewdmkew3 Cisco IOS XR Software SSH Privilege Escalation Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-scp-dos-kb6suuhw Cisco IOS XR Software Authenticated CLI Secure Copy Protocol and SFTP Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-pppma-jkwfgnew Cisco IOS XR Software for ASR 9000 Series Aggregation Services Routers PPPoE Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-dhcp-dos-3tgpkrdm Cisco IOS XR Software DHCP Version 4 Server Denial of Service Vulnerability 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-iosxr-acl-bypass-rzu5nl3e Cisco IOS XR Software MPLS and Pseudowire Interfaces Access Control List Bypass Vulnerabilities 2024-03-13T16:00:00+00:00 2024-03-13T16:00:00+00:00
cisco-sa-vmanage-unauthapi-sphclypa Cisco SD-WAN vManage Unauthenticated REST API Access Vulnerability 2023-07-12T16:00:00+00:00 2024-03-12T18:21:23+00:00
cisco-sa-secure-client-crlf-w43v4g7 Cisco Secure Client Carriage Return Line Feed Injection Vulnerability 2024-03-06T16:00:00+00:00 2024-03-12T14:17:07+00:00
cisco-sa-duo-infodisc-rlceqm6t Cisco Duo Authentication for Windows Logon and RDP Information Disclosure Vulnerability 2024-03-06T16:00:00+00:00 2024-03-08T18:23:38+00:00
cisco-sa-secure-privesc-syxqo6ds Cisco Secure Client for Linux with ISE Posture Module Privilege Escalation Vulnerability 2024-03-06T16:00:00+00:00 2024-03-06T16:00:00+00:00
cisco-sa-sb-wap-multi-85g83crb Cisco Small Business 100, 300, and 500 Series Wireless Access Points Command Injection and Buffer Overflow Vulnerabilities 2024-03-06T16:00:00+00:00 2024-03-06T16:00:00+00:00
cisco-sa-duo-win-bypass-pn42kkbm Cisco Duo Authentication for Windows Logon and RDP Authentication Bypass Vulnerability 2024-03-06T16:00:00+00:00 2024-03-06T16:00:00+00:00
cisco-sa-appd-xss-3jwqsmnt Cisco AppDynamics Controller Cross-Site Scripting Vulnerability 2024-03-06T16:00:00+00:00 2024-03-06T16:00:00+00:00
cisco-sa-appd-traversal-m7n8mzpf Cisco AppDynamics Controller Path Traversal Vulnerability 2024-03-06T16:00:00+00:00 2024-03-06T16:00:00+00:00
cisco-sa-ucsfi-imm-syn-p6kztdqc Cisco UCS 6400 and 6500 Series Fabric Interconnects Intersight Managed Mode Denial of Service Vulnerability 2024-02-28T16:00:00+00:00 2024-02-28T16:00:00+00:00
cisco-sa-nxos-po-acl-tkyepgvl Cisco Nexus 3000 and 9000 Series Switches Port Channel ACL Programming Vulnerability 2024-02-28T16:00:00+00:00 2024-02-28T16:00:00+00:00
cisco-sa-nxos-lldp-dos-z7pnctgt Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability 2024-02-28T16:00:00+00:00 2024-02-28T16:00:00+00:00
cisco-sa-nxos-ebgp-dos-l3qcwvj Cisco NX-OS Software External Border Gateway Protocol Denial of Service Vulnerability 2024-02-28T16:00:00+00:00 2024-02-28T16:00:00+00:00
cisco-sa-ipv6-mpls-dos-r9ycxkwm Cisco NX-OS Software MPLS Encapsulated IPv6 Denial of Service Vulnerability 2024-02-28T16:00:00+00:00 2024-02-28T16:00:00+00:00
cisco-sa-cimc-xss-umytyetr Cisco Integrated Management Controller Cross-Site Scripting Vulnerability 2023-08-16T16:00:00+00:00 2024-02-22T20:57:19+00:00
cisco-sa-cuic-access-control-jjszqmjj Cisco Unified Intelligence Center Insufficient Access Control Vulnerability 2024-02-21T16:00:00+00:00 2024-02-21T16:00:00+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2026-22702 virtualenv Has TOCTOU Vulnerabilities in Directory Creation 2026-01-02T00:00:00.000Z 2026-02-21T03:51:39.000Z
msrc_cve-2025-22083 vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint 2025-04-02T00:00:00.000Z 2026-02-21T03:51:33.000Z
msrc_cve-2025-22097 drm/vkms: Fix use after free and double free on init error 2025-04-02T00:00:00.000Z 2026-02-21T03:50:46.000Z
msrc_cve-2025-23146 mfd: ene-kb3930: Fix a potential NULL pointer dereference 2025-05-02T00:00:00.000Z 2026-02-21T03:50:21.000Z
msrc_cve-2025-38538 dmaengine: nbpfaxi: Fix memory corruption in probe() 2025-08-02T00:00:00.000Z 2026-02-21T03:49:39.000Z
msrc_cve-2025-38420 wifi: carl9170: do not ping device which has failed to load firmware 2025-07-02T00:00:00.000Z 2026-02-21T03:49:34.000Z
msrc_cve-2026-21860 Werkzeug safe_join() allows Windows special device names with compound extensions 2026-01-02T00:00:00.000Z 2026-02-21T03:49:22.000Z
msrc_cve-2025-22071 spufs: fix a leak in spufs_create_context() 2025-04-02T00:00:00.000Z 2026-02-21T03:49:22.000Z
msrc_cve-2025-38368 misc: tps6594-pfsm: Add NULL pointer check in tps6594_pfsm_probe() 2025-07-02T00:00:00.000Z 2026-02-21T03:48:38.000Z
msrc_cve-2025-37862 HID: pidff: Fix null pointer dereference in pidff_find_fields 2025-05-02T00:00:00.000Z 2026-02-21T03:48:29.000Z
msrc_cve-2025-40289 drm/amdgpu: hide VRAM sysfs attributes on GPUs without VRAM 2025-12-02T00:00:00.000Z 2026-02-21T03:48:27.000Z
msrc_cve-2025-38531 iio: common: st_sensors: Fix use of uninitialize device structs 2025-08-02T00:00:00.000Z 2026-02-21T03:48:12.000Z
msrc_cve-2025-38424 perf: Fix sample vs do_exit() 2025-07-02T00:00:00.000Z 2026-02-21T03:47:42.000Z
msrc_cve-2025-37960 memblock: Accept allocated memory before use in memblock_double_array() 2025-05-02T00:00:00.000Z 2026-02-21T03:47:33.000Z
msrc_cve-2025-38415 Squashfs: check return result of sb_min_blocksize 2025-07-02T00:00:00.000Z 2026-02-21T03:46:43.000Z
msrc_cve-2025-22088 RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() 2025-04-02T00:00:00.000Z 2026-02-21T03:46:36.000Z
msrc_cve-2025-37849 KVM: arm64: Tear down vGIC on failed vCPU creation 2025-05-02T00:00:00.000Z 2026-02-21T03:46:34.000Z
msrc_cve-2025-38428 Input: ims-pcu - check record size in ims_pcu_flash_firmware() 2025-07-02T00:00:00.000Z 2026-02-21T03:45:55.000Z
msrc_cve-2025-22035 tracing: Fix use-after-free in print_graph_function_flags during tracer switching 2025-04-02T00:00:00.000Z 2026-02-21T03:45:45.000Z
msrc_cve-2025-21839 KVM: x86: Load DR6 with guest value only before entering .vcpu_run() loop 2025-03-02T00:00:00.000Z 2026-02-21T03:45:17.000Z
msrc_cve-2025-38429 bus: mhi: ep: Update read pointer only after buffer is written 2025-07-02T00:00:00.000Z 2026-02-21T03:45:07.000Z
msrc_cve-2025-37913 net_sched: qfq: Fix double list add in class with netem as child qdisc 2025-05-02T00:00:00.000Z 2026-02-21T03:44:19.000Z
msrc_cve-2025-22040 ksmbd: fix session use-after-free in multichannel connection 2025-04-02T00:00:00.000Z 2026-02-21T03:44:19.000Z
msrc_cve-2025-38425 i2c: tegra: check msg length in SMBUS block read 2025-07-02T00:00:00.000Z 2026-02-21T03:44:11.000Z
msrc_cve-2025-38637 net_sched: skbprio: Remove overly strict queue assertions 2025-04-02T00:00:00.000Z 2026-02-21T03:43:22.000Z
msrc_cve-2025-22869 Potential denial of service in golang.org/x/crypto 2025-02-02T00:00:00.000Z 2026-02-21T03:43:06.000Z
msrc_cve-2025-38430 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request 2025-07-02T00:00:00.000Z 2026-02-21T03:42:48.000Z
msrc_cve-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client 2025-04-02T00:00:00.000Z 2026-02-21T03:42:46.000Z
msrc_cve-2025-39902 mm/slub: avoid accessing metadata when pointer is invalid in object_err() 2025-10-02T00:00:00.000Z 2026-02-21T03:42:40.000Z
msrc_cve-2025-37961 ipvs: fix uninit-value for saddr in do_output_route4 2025-05-02T00:00:00.000Z 2026-02-21T03:42:19.000Z
ID Description Published Updated
ID Description Updated
var-201710-1408 An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo… 2025-12-22T22:34:27.661000Z
var-201311-0106 Heap-based buffer overflow in Ruby 1.8, 1.9 before 1.9.3-p484, 2.0 before 2.0.0-p353, 2.1… 2025-12-22T22:34:27.141000Z
var-201606-0395 The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-depen… 2025-12-22T22:34:26.489000Z
var-201210-0145 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:34:25.356000Z
var-202102-1093 An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The functio… 2025-12-22T22:34:25.203000Z
var-201109-0214 Use-after-free vulnerability in Google Chrome before 14.0.835.163 allows remote attackers… 2025-12-22T22:34:24.370000Z
var-202108-2087 A logic issue was addressed with improved restrictions. This issue is fixed in macOS Mont… 2025-12-22T22:34:08.609000Z
var-201504-0064 The (1) mod_dav_svn and (2) svnserve servers in Subversion 1.6.0 through 1.7.19 and 1.8.0… 2025-12-22T22:34:08.047000Z
var-201006-1234 Cross-site scripting (XSS) vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X… 2025-12-22T22:33:44.614000Z
var-200502-0025 The der_chop script in the openssl package in Trustix Secure Linux 1.5 through 2.1 and ot… 2025-12-22T22:33:43.233000Z
var-201910-1509 The BGP parser in tcpdump before 4.9.3 has a buffer over-read in print-bgp.c:bgp_attr_pri… 2025-12-22T22:32:14.530000Z
var-200904-0809 The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.1… 2025-12-22T22:32:13.599000Z
var-202210-1202 Git is an open source, scalable, distributed revision control system. Versions prior to 2… 2025-12-22T22:32:13.147000Z
var-201904-0745 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T22:31:39.715000Z
var-200703-0011 Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at… 2025-12-22T22:31:01.718000Z
var-200711-0560 Perl-Compatible Regular Expression (PCRE) library before 7.3 backtracks too far when matc… 2025-12-22T22:31:01.195000Z
var-201912-0606 An input validation issue was addressed with improved input validation. This issue is fix… 2025-12-22T22:31:00.948000Z
var-201006-0052 Cross-site scripting (XSS) vulnerability in the WEBrick HTTP server in Ruby in Apple Mac … 2025-12-22T22:30:54.449000Z
var-201912-0457 A validation issue was addressed with improved logic. This issue is fixed in iOS 12.2, tv… 2025-12-22T22:30:20.247000Z
var-201904-1433 A memory corruption issue was addressed with improved validation. This issue affected ver… 2025-12-22T22:30:19.718000Z
var-201210-0343 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:30:19.463000Z
var-201006-1169 Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 throug… 2025-12-22T22:30:19.406000Z
var-201304-0303 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T22:30:15.112000Z
var-201503-0052 Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in O… 2025-12-22T22:30:14.968000Z
var-201904-1411 A cross-origin issue existed with "iframe" elements. This was addressed with improved tra… 2025-12-22T22:30:04.531000Z
var-201506-0498 The X509_cmp_time function in crypto/x509/x509_vfy.c in OpenSSL before 0.9.8zg, 1.0.0 bef… 2025-12-22T22:30:04.156000Z
var-202002-1243 There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_re… 2025-12-22T22:30:03.034000Z
var-202205-0855 Heap buffer overflow in vim_strncpy find_word in GitHub repository vim/vim prior to 8.2.4… 2025-12-22T22:29:43.644000Z
var-201605-0075 Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL befor… 2025-12-22T22:29:09.895000Z
var-200512-0293 Heap-based buffer overflow in LibSystem in Mac OS X 10.4 through 10.4.5 allows context-de… 2025-12-22T22:29:09.833000Z
ID Description Published Updated
jvndb-2022-001929 Multiple vulnerabilities in Fuji Electric V-SFT 2022-05-27T15:39+09:00 2024-06-18T13:44+09:00
jvndb-2024-000063 Multiple vulnerabilities in ID Link Manager and FUJITSU Software TIME CREATOR 2024-06-18T13:43+09:00 2024-06-18T13:43+09:00
jvndb-2022-000034 EC-CUBE plugin "Easy Blog for EC-CUBE4" vulnerable to cross-site request forgery 2022-05-13T16:31+09:00 2024-06-18T12:13+09:00
jvndb-2022-000036 Multiple vulnerabilities in Rakuten Casa 2022-05-19T15:13+09:00 2024-06-18T12:09+09:00
jvndb-2022-000053 Django Extract and Trunc functions vulnerable to SQL injection 2022-07-12T13:47+09:00 2024-06-18T11:57+09:00
jvndb-2022-000057 WordPress Plugin "Newsletter" vulnerable to cross-site scripting 2022-07-25T14:30+09:00 2024-06-18T11:21+09:00
jvndb-2022-000033 Strapi vulnerable to cross-site scripting 2022-05-13T16:45+09:00 2024-06-18T11:17+09:00
jvndb-2022-000043 SHIRASAGI vulnerable to cross-site scripting 2022-06-09T13:31+09:00 2024-06-18T11:13+09:00
jvndb-2022-000040 Mobaoku-Auction & Flea Market App for iOS vulnerable to improper server certificate verification 2022-05-27T15:48+09:00 2024-06-18T11:06+09:00
jvndb-2022-000044 Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting 2022-06-14T13:46+09:00 2024-06-18T10:51+09:00
jvndb-2022-000047 web2py vulnerable to open redirect 2022-06-23T14:21+09:00 2024-06-18T10:48+09:00
jvndb-2022-000048 L2Blocker Sensor setup screen vulnerable to authentication bypass 2022-06-24T14:21+09:00 2024-06-18T10:45+09:00
jvndb-2022-000041 WordPress Plugin "Modern Events Calendar Lite" vulnerable to cross-site scripting 2022-06-01T13:39+09:00 2024-06-18T10:42+09:00
jvndb-2022-000042 T&D Data Server and THERMO RECORDER DATA SERVER contain a directory traversal vulnerability. 2022-06-01T16:12+09:00 2024-06-18T10:34+09:00
jvndb-2022-000051 Multiple vulnerabilities in Cybozu Garoon 2022-07-04T14:17+09:00 2024-06-17T16:49+09:00
jvndb-2022-000035 Multiple vulnerabilities in Cybozu Garoon 2022-05-16T14:25+09:00 2024-06-17T16:34+09:00
jvndb-2024-003539 Multiple vulnerabilities in Toshiba Tec and Oki Electric Industry MFPs 2024-06-17T15:21+09:00 2024-06-17T15:21+09:00
jvndb-2022-000058 Multiple vulnerabilities in untangle 2022-07-25T14:18+09:00 2024-06-17T11:03+09:00
jvndb-2022-000049 HOME SPOT CUBE2 vulnerable to OS command injection 2022-06-29T13:42+09:00 2024-06-17T10:45+09:00
jvndb-2022-000050 LiteCart vulnerable to cross-site scripting 2022-07-04T14:12+09:00 2024-06-17T10:39+09:00
jvndb-2022-002017 U-Boot squashfs filesystem implementation vulnerable to heap-based buffer overflow 2022-07-14T15:59+09:00 2024-06-14T17:53+09:00
jvndb-2022-000052 Passage Drive vulnerable to insufficient data verification 2022-07-08T13:42+09:00 2024-06-14T17:48+09:00
jvndb-2022-000055 Booked vulnerable to open redirect 2022-07-22T13:40+09:00 2024-06-14T17:43+09:00
jvndb-2022-002265 Trend Micro Endpoint security products for enterprises vulnerable to Link Following Local Privilege Escalation 2022-08-18T15:45+09:00 2024-06-14T17:11+09:00
jvndb-2022-000056 Multiple vulnerabilities in Nintendo Wi-Fi Network Adaptor WAP-001 2022-07-29T13:43+09:00 2024-06-14T16:27+09:00
jvndb-2023-001215 Zuken Elmic KASAGO uses insufficient random values for TCP Initial Sequence Numbers 2023-02-13T14:18+09:00 2024-06-14T15:45+09:00
jvndb-2022-002112 CONTEC SolarView Compact vulnerable to insufficient verification in uploading files 2022-08-03T17:40+09:00 2024-06-14T15:21+09:00
jvndb-2022-000059 "Hulu" App for Android uses a hard-coded API key for an external service 2022-07-28T09:14+09:00 2024-06-14T14:42+09:00
jvndb-2022-002338 PLANEX MZK-DP150N contains hidden administrative functionality 2022-08-23T15:02+09:00 2024-06-14T14:06+09:00
jvndb-2022-000054 Multiple vulnerabilities in Cybozu Office 2022-07-20T17:28+09:00 2024-06-14T14:02+09:00
ID Description Updated
ID Description Published Updated
suse-su-2026:20053-1 Security update for libsoup 2026-01-12T12:03:42Z 2026-01-12T12:03:42Z
suse-su-2026:20051-1 Security update for libtasn1 2026-01-12T12:00:27Z 2026-01-12T12:00:27Z
suse-su-2026:20031-1 Security update for MozillaFirefox 2026-01-12T12:00:16Z 2026-01-12T12:00:16Z
suse-su-2026:20074-1 Security update for glib2 2026-01-12T11:58:25Z 2026-01-12T11:58:25Z
suse-su-2026:20032-1 Security update for glib2 2026-01-12T11:58:25Z 2026-01-12T11:58:25Z
suse-su-2026:20072-1 Security update for libmicrohttpd 2026-01-12T11:15:02Z 2026-01-12T11:15:02Z
suse-su-2026:20029-1 Security update for libmicrohttpd 2026-01-12T11:15:02Z 2026-01-12T11:15:02Z
suse-su-2026:20073-1 Security update for libpng16 2026-01-12T11:15:01Z 2026-01-12T11:15:01Z
suse-su-2026:20030-1 Security update for libpng16 2026-01-12T11:15:01Z 2026-01-12T11:15:01Z
suse-su-2026:0099-1 Security update for ImageMagick 2026-01-12T10:37:47Z 2026-01-12T10:37:47Z
suse-su-2026:0107-1 Security update for the Linux Kernel (Live Patch 31 for SUSE Linux Enterprise 15 SP5) 2026-01-12T10:34:47Z 2026-01-12T10:34:47Z
suse-su-2026:0090-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5) 2026-01-12T10:34:10Z 2026-01-12T10:34:10Z
suse-su-2026:20071-1 Security update for python-tornado6 2026-01-12T10:30:08Z 2026-01-12T10:30:08Z
suse-su-2026:20028-1 Security update for python-tornado6 2026-01-12T10:30:08Z 2026-01-12T10:30:08Z
suse-su-2026:20070-1 Security update for avahi 2026-01-11T16:54:30Z 2026-01-11T16:54:30Z
suse-su-2026:20027-1 Security update for avahi 2026-01-11T16:54:30Z 2026-01-11T16:54:30Z
suse-su-2026:0087-1 Security update for libheif 2026-01-09T15:19:44Z 2026-01-09T15:19:44Z
suse-su-2026:0086-1 Security update for php8 2026-01-09T15:01:56Z 2026-01-09T15:01:56Z
suse-su-2026:0085-1 Security update for libpng16 2026-01-09T15:01:38Z 2026-01-09T15:01:38Z
suse-su-2026:20050-1 Security update for libvirt 2026-01-09T11:04:23Z 2026-01-09T11:04:23Z
suse-su-2026:20049-1 Security update for openvswitch 2026-01-09T10:54:58Z 2026-01-09T10:54:58Z
suse-su-2026:0083-1 Security update for gimp 2026-01-09T09:12:59Z 2026-01-09T09:12:59Z
suse-su-2026:0082-1 Security update for python-filelock 2026-01-09T09:12:48Z 2026-01-09T09:12:48Z
suse-su-2026:0081-1 Security update for poppler 2026-01-09T08:02:02Z 2026-01-09T08:02:02Z
suse-su-2026:0080-1 Security update for libvirt 2026-01-09T08:01:44Z 2026-01-09T08:01:44Z
suse-su-2026:0079-1 Security update for libvirt 2026-01-09T08:01:29Z 2026-01-09T08:01:29Z
suse-su-2026:0078-1 Security update for curl 2026-01-09T07:07:10Z 2026-01-09T07:07:10Z
suse-su-2026:0077-1 Security update for curl 2026-01-08T19:04:00Z 2026-01-08T19:04:00Z
suse-su-2026:20048-1 Security update for libpcap 2026-01-08T16:29:06Z 2026-01-08T16:29:06Z
suse-su-2026:20047-1 Security update for python311 2026-01-08T16:27:35Z 2026-01-08T16:27:35Z
ID Description Published Updated
opensuse-su-2025:20133-1 Security update for python-cbor2 2025-12-02T13:51:41Z 2025-12-02T13:51:41Z
opensuse-su-2025:20132-1 Security update for strongswan 2025-12-02T13:11:59Z 2025-12-02T13:11:59Z
opensuse-su-2025:15793-1 gegl-0.4.64-3.1 on GA media 2025-12-02T00:00:00Z 2025-12-02T00:00:00Z
opensuse-su-2025:15792-1 python39-3.9.24-2.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15791-1 python315-3.15.0~a1-2.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15790-1 python-mistralclient-doc-6.1.0-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15789-1 libecpg6-18.1-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:15788-1 lightdm-kde-greeter-6.0.5-1.1 on GA media 2025-12-01T00:00:00Z 2025-12-01T00:00:00Z
opensuse-su-2025:20125-1 Security update for java-17-openjdk 2025-11-28T10:27:02Z 2025-11-28T10:27:02Z
opensuse-su-2025:20123-1 Security update for java-21-openjdk 2025-11-28T09:35:08Z 2025-11-28T09:35:08Z
opensuse-su-2025:20122-1 Security update for openssh 2025-11-28T07:46:24Z 2025-11-28T07:46:24Z
opensuse-su-2025:15787-1 python311-salt-3006.0-52.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15786-1 postgresql17-17.7-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15785-1 postgresql16-16.11-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15784-1 postgresql15-15.15-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15783-1 postgresql14-14.20-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15782-1 postgresql13-13.23-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15781-1 libpng16-16-1.6.51-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15780-1 libcoap-devel-4.3.5a-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:15779-1 helm3-3.19.2-1.1 on GA media 2025-11-28T00:00:00Z 2025-11-28T00:00:00Z
opensuse-su-2025:20113-1 Security update for dovecot24 2025-11-27T20:17:17Z 2025-11-27T20:17:17Z
opensuse-su-2025:20114-1 Security update for himmelblau 2025-11-27T20:16:29Z 2025-11-27T20:16:29Z
opensuse-su-2025:20106-1 Security update for tomcat11 2025-11-27T15:43:26Z 2025-11-27T15:43:26Z
opensuse-su-2025:20116-1 Security update for rnp 2025-11-27T12:39:03Z 2025-11-27T12:39:03Z
opensuse-su-2025:20118-1 Security update for gitea-tea 2025-11-27T12:30:27Z 2025-11-27T12:30:27Z
opensuse-su-2025:20119-1 Security update for tcpreplay 2025-11-27T12:29:40Z 2025-11-27T12:29:40Z
opensuse-su-2025:20115-1 Security update for pnpm 2025-11-27T12:28:46Z 2025-11-27T12:28:46Z
opensuse-su-2025:20117-1 Security update for trivy 2025-11-27T12:27:44Z 2025-11-27T12:27:44Z
opensuse-su-2025:20100-1 Security update for libvirt 2025-11-27T10:23:20Z 2025-11-27T10:23:20Z
opensuse-su-2025:20099-1 Security update for xwayland 2025-11-27T10:11:16Z 2025-11-27T10:11:16Z
ID Description Published Updated
ID Description Published Updated
bit-activemq-2025-27533 Apache ActiveMQ: Unchecked buffer length can cause excessive memory allocation 2025-12-03T14:35:40.173Z 2025-12-03T15:08:24.036Z
bit-activemq-2023-46604 Apache ActiveMQ, Apache ActiveMQ Legacy OpenWire Module: Unbounded deserialization causes ActiveMQ to be vulnerable to a remote code execution (RCE) attack 2025-12-03T14:35:38.733Z 2025-12-03T15:08:24.036Z
bit-activemq-2022-41678 Apache ActiveMQ: Insufficient API restrictions on Jolokia allow authenticated users to perform RCE 2025-12-03T14:35:37.010Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-26117 ActiveMQ: LDAP-Authentication does not verify passwords on servers with anonymous bind 2025-12-03T14:35:35.296Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21351 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:33.786Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21350 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:32.295Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21349 A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host 2025-12-03T14:35:30.789Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21348 XStream is vulnerable to an attack using Regular Expression for a Denial of Service (ReDos) 2025-12-03T14:35:29.299Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21347 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:27.664Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21346 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:26.027Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21345 XStream is vulnerable to a Remote Command Execution attack 2025-12-03T14:35:24.382Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21344 XStream is vulnerable to an Arbitrary Code Execution attack 2025-12-03T14:35:22.678Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21343 XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process has sufficient rights 2025-12-03T14:35:21.073Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21342 A Server-Side Forgery Request can be activated unmarshalling with XStream to access data streams from an arbitrary URL referencing a resource in an intranet or the local host 2025-12-03T14:35:19.481Z 2025-12-03T15:08:24.036Z
bit-activemq-2021-21341 XStream can cause a Denial of Service 2025-12-03T14:35:17.881Z 2025-12-03T15:08:24.036Z
bit-activemq-2020-26217 Remote Code Execution in XStream 2025-12-03T14:35:16.352Z 2025-12-03T15:08:24.036Z
bit-activemq-2020-1941 2025-12-03T14:35:14.779Z 2025-12-03T15:08:24.036Z
bit-activemq-2020-13947 2025-12-03T14:35:13.393Z 2025-12-03T15:08:24.036Z
bit-activemq-2020-13920 2025-12-03T14:35:12.171Z 2025-12-03T15:08:24.036Z
bit-activemq-2020-11998 2025-12-03T14:35:10.504Z 2025-12-03T15:08:24.036Z
bit-gitlab-2025-9825 Missing Authorization in GitLab 2025-11-25T18:25:02.547Z 2025-12-03T12:08:06.927Z
bit-flux-2022-39272 Flux2 vulnerable to Denial of Service due to Improper use of metav1.Duration 2025-12-02T17:37:01.043Z 2025-12-02T18:06:28.296Z
bit-flux-2022-36049 Flux2 Helm Controller denial of service 2025-12-02T17:36:59.799Z 2025-12-02T18:06:28.296Z
bit-flux-2022-36035 Flux CLI Workload Injection 2025-12-02T17:36:58.339Z 2025-12-02T18:06:28.296Z
bit-flux-2022-24878 Improper path handling in Kustomization files allows for denial of service 2025-12-02T17:36:56.954Z 2025-12-02T18:06:28.296Z
bit-flux-2022-24877 Improper path handling in kustomization files allows path traversal 2025-12-02T17:36:55.459Z 2025-12-02T18:06:28.296Z
bit-flux-2022-24817 Improper kubeconfig validation allows arbitrary code execution 2025-12-02T17:36:53.808Z 2025-12-02T18:06:28.296Z
bit-pytorch-2025-32434 PyTorch: `torch.load` with `weights_only=True` leads to remote code execution 2025-04-22T07:19:45.992Z 2025-12-01T21:08:19.180Z
bit-gitlab-2024-10925 Authorization Bypass Through User-Controlled Key in GitLab 2025-03-05T07:30:40.739Z 2025-11-25T18:26:29.568Z
bit-drupal-2025-13082 Drupal core - Moderately critical - Defacement - SA-CORE-2025-007 2025-11-25T17:56:45.040Z 2025-11-25T18:26:29.568Z
ID Description Published Updated
ID Description Published Updated
drupal-contrib-2022-028 2022-03-09T18:28:39.000Z 2023-08-10T21:39:01.000Z
drupal-contrib-2022-027 2022-02-23T17:18:07.000Z 2023-08-10T21:37:54.000Z
drupal-contrib-2022-048 2022-07-13T15:44:42.000Z 2023-08-10T21:36:29.000Z
drupal-contrib-2022-047 2022-06-29T17:25:39.000Z 2023-08-10T21:35:49.000Z
drupal-contrib-2022-046 2022-06-29T16:51:17.000Z 2023-08-10T21:35:30.000Z
drupal-contrib-2022-045 2022-05-25T17:03:55.000Z 2023-08-10T21:35:00.000Z
drupal-contrib-2022-044 2022-05-25T16:53:45.000Z 2023-08-10T21:33:53.000Z
drupal-contrib-2022-043 2022-05-25T16:49:46.000Z 2023-08-10T21:32:49.000Z
drupal-contrib-2022-040 2022-05-18T17:13:43.000Z 2023-08-10T21:05:48.000Z
drupal-contrib-2022-042 2022-05-25T16:45:17.000Z 2023-08-10T21:02:21.000Z
drupal-contrib-2022-038 2022-05-04T16:26:47.000Z 2023-08-10T21:00:44.000Z
drupal-contrib-2022-058 2022-10-12T19:41:07.000Z 2023-08-10T19:30:04.000Z
drupal-contrib-2022-056 2022-09-07T17:06:06.000Z 2023-08-10T19:28:12.000Z
drupal-contrib-2022-055 2022-09-07T17:04:31.000Z 2023-08-10T19:27:28.000Z
drupal-contrib-2022-054 2022-09-07T16:57:28.000Z 2023-08-10T19:26:43.000Z
drupal-contrib-2022-053 2022-08-24T18:21:02.000Z 2023-08-10T19:26:24.000Z
drupal-contrib-2022-052 2022-08-10T15:09:36.000Z 2023-08-10T19:25:47.000Z
drupal-contrib-2022-051 2022-07-27T17:07:39.000Z 2023-08-10T19:25:28.000Z
drupal-contrib-2022-050 2022-07-27T17:03:38.000Z 2023-08-10T19:24:22.000Z
drupal-contrib-2022-061 2022-11-30T15:28:44.000Z 2023-08-10T18:25:19.000Z
drupal-contrib-2022-062 2022-11-30T15:34:03.000Z 2023-08-10T18:25:13.000Z
drupal-contrib-2022-060 2022-11-30T15:20:10.000Z 2023-08-10T18:23:08.000Z
drupal-contrib-2022-059 2022-10-19T20:28:24.000Z 2023-08-10T18:22:23.000Z
drupal-contrib-2023-011 2023-03-15T17:40:02.000Z 2023-08-10T15:37:51.000Z
drupal-contrib-2023-003 2023-01-18T17:36:56.000Z 2023-08-10T14:25:39.000Z
drupal-contrib-2023-002 2023-01-18T17:28:05.000Z 2023-08-10T14:25:24.000Z
drupal-contrib-2023-001 2023-01-11T17:15:37.000Z 2023-08-10T14:25:04.000Z
drupal-contrib-2023-004 2023-01-18T17:49:04.000Z 2023-08-10T14:23:53.000Z
drupal-contrib-2023-005 2023-02-01T16:13:42.000Z 2023-08-10T14:23:38.000Z
drupal-contrib-2023-006 2023-03-01T15:15:08.000Z 2023-08-10T14:22:32.000Z
ID Description Published Updated
cnvd-2026-06362 瑞斯康达科技发展股份有限公司RAISECOM DR5374存在命令注入漏洞 2025-09-10 2026-01-23
cnvd-2026-06289 用友网络科技股份有限公司用友U9多组织企业互联网应用平台存在任意文件下载漏洞 2025-11-24 2026-01-23
cnvd-2026-06274 用友网络科技股份有限公司用友BIP数据应用服务存在SQL注入漏洞(CNVD-C-2025-879635) 2025-11-18 2026-01-23
cnvd-2026-06271 用友网络科技股份有限公司用友BIP数据应用服务存在目录遍历漏洞 2025-11-18 2026-01-23
cnvd-2026-05793 深圳市绿联科技股份有限公司DH2100+ NAS存在命令执行漏洞 2025-11-21 2026-01-23
cnvd-2026-05792 深圳市绿联科技股份有限公司DH2100+存在二进制漏洞 2025-11-20 2026-01-23
cnvd-2026-08750 Microsoft Graphics Kernel竞争条件问题漏洞 2026-01-19 2026-01-22
cnvd-2026-08749 Microsoft Graphics Component资源管理错误漏洞 2026-01-19 2026-01-22
cnvd-2026-08748 Microsoft Excel访问控制错误漏洞 2026-01-19 2026-01-22
cnvd-2026-08747 Microsoft Excel代码执行漏洞(CNVD-2026-08747) 2026-01-19 2026-01-22
cnvd-2026-08746 Microsoft Excel代码执行漏洞(CNVD-2026-08746) 2026-01-19 2026-01-22
cnvd-2026-07247 Google Chrome堆缓冲区溢出漏洞 2025-10-30 2026-01-22
cnvd-2026-07246 Google Chrome实现不当漏洞(CNVD-2026-07246) 2025-11-11 2026-01-22
cnvd-2026-07245 Google Chrome释放后使用漏洞(CNVD-2026-07245) 2025-12-05 2026-01-22
cnvd-2026-07244 Google Chrome实现不当漏洞 2025-12-08 2026-01-22
cnvd-2026-07243 Google Chrome类型混淆漏洞 2025-12-08 2026-01-22
cnvd-2026-07242 Google Chrome释放后重用漏洞 2025-12-15 2026-01-22
cnvd-2026-07241 Google Chrome策略执行不足漏洞 2026-01-09 2026-01-22
cnvd-2026-07159 Intern Membership Management System /add_admin.php文件SQL注入漏洞 2026-01-19 2026-01-22
cnvd-2026-07158 Intern Membership Management System /add_activity.php文件SQL注入漏洞 2026-01-19 2026-01-22
cnvd-2026-07151 Tenda M3 R7WebsSecurityHandler方法栈缓冲区溢出漏洞 2023-12-28 2026-01-22
cnvd-2026-07150 Tenda M3 fromSetLocalVlanInfo函数栈缓冲区溢出漏洞 2023-12-28 2026-01-22
cnvd-2026-07149 Tenda M3 formGetWeiXinConfig函数堆栈缓冲区溢出漏洞 2023-12-28 2026-01-22
cnvd-2026-06808 Cyber Cafe Management System add-users.php端点跨站脚本漏洞 2026-01-19 2026-01-22
cnvd-2026-06807 Cyber Cafe Management System add-users.php端点跨站脚本漏洞 2026-01-19 2026-01-22
cnvd-2026-06806 Cyber Cafe Management System add-users.php端点SQL注入漏洞 2026-01-19 2026-01-22
cnvd-2026-06805 Cyber Cafe Management System adminprofile.php端点SQL注入漏洞 2026-01-19 2026-01-22
cnvd-2026-06140 JeecgBoot路径遍历漏洞 2025-10-30 2026-01-22
cnvd-2026-06139 JeecgBoot getDeptRoleByUserId函数信息泄露漏洞 2026-01-09 2026-01-22
cnvd-2026-06138 JeecgBoot loadDatarule函数授权问题漏洞 2026-01-09 2026-01-22
ID Description Published Updated
certfr-2025-avi-0988 Vulnérabilité dans Ivanti Endpoint Manager (EPM) 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0987 Vulnérabilité dans les produits Citrix 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0986 Vulnérabilité dans Schneider Electric EcoStruxure 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0985 Multiples vulnérabilités dans les produits Axis 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0984 Vulnérabilité dans Bitdefender Endpoint Security Tools pour Mac 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0983 Vulnérabilité dans Synology BeeStation 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0982 Multiples vulnérabilités dans les produits SAP 2025-11-12T00:00:00.000000 2025-11-12T00:00:00.000000
certfr-2025-avi-0981 Multiples vulnérabilités dans les produits Qnap 2025-11-10T00:00:00.000000 2025-11-10T00:00:00.000000
certfr-2025-avi-0980 Multiples vulnérabilités dans les produits IBM 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0979 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0978 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0977 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0976 Multiples vulnérabilités dans Microsoft Edge 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0975 Vulnérabilité dans Elastic Defend 2025-11-07T00:00:00.000000 2025-11-07T00:00:00.000000
certfr-2025-avi-0974 Multiples vulnérabilités dans Apple iOS et iPadOS 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0973 Multiples vulnérabilités dans Google Chrome 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0972 Multiples vulnérabilités dans Suricata 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0971 Vulnérabilité dans Mattermost Server 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0969 Multiples vulnérabilités dans les produits VMware 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0968 Multiples vulnérabilités dans les produits Cisco 2025-11-06T00:00:00.000000 2025-11-06T00:00:00.000000
certfr-2025-avi-0967 Multiples vulnérabilités dans les produits VMware 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0966 Multiples vulnérabilités dans les produits Microsoft 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0965 Multiples vulnérabilités dans MISP 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0964 Vulnérabilité dans Curl 2025-11-05T00:00:00.000000 2025-11-05T00:00:00.000000
certfr-2025-avi-0963 Multiples vulnérabilités dans Google Android 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0962 Vulnérabilité dans Dovecot 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0961 Multiples vulnérabilités dans les produits Apple 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0960 Multiples vulnérabilités dans VMware Tanzu 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0959 Vulnérabilité dans Python 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
certfr-2025-avi-0958 Multiples vulnérabilités dans Tenable Identity Exposure 2025-11-04T00:00:00.000000 2025-11-04T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated