Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-3277	N/A	The OpenID Connect (OIDC) authentication configur…	Devolutions	PowerShell Universal	2026-02-27T15:11:18.252Z	2026-02-27T15:11:18.252Z
CVE-2026-2749	9.9 (3.1)	Path traversal in Centreon Open Tickets	Centreon		2026-02-27T15:05:17.203Z	2026-02-27T15:05:17.203Z
CVE-2026-24352	4.8 (4.0)	Session Fixation in PluXml CMS	PluXml	PluXml CMS	2026-02-27T11:35:27.107Z	2026-02-27T15:05:15.633Z
CVE-2026-2750	9.1 (3.1)	Command Injection via CLAPI generatetraps	Centreon	Centreon Open Tickets on Central Server	2026-02-27T14:58:29.021Z	2026-02-27T14:58:29.021Z
CVE-2026-1763	4.6 (3.1)	Enervista UR Setup DLL Hijacking	GE Vernova	Enervista	2026-02-10T20:06:12.992Z	2026-02-27T14:54:23.671Z
CVE-2026-1721	6.2 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …			2026-02-13T01:46:48.674Z	2026-02-27T14:51:31.817Z
CVE-2026-0709	7.2 (3.1)	Some Hikvision Wireless Access Points are vulnera…	Hikvision	DS-3WAP521-SI	2026-01-30T11:01:55.633Z	2026-02-27T14:49:22.572Z
CVE-2026-0704	5.9 (4.0)	In affected version of Octopus Deploy it was poss…	Octopus Deploy	Octopus Server	2026-02-25T12:22:18.328Z	2026-02-27T14:48:18.334Z
CVE-2026-22623	7.2 (3.1)	Due to insufficient input parameter validation on…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:02:26.539Z	2026-02-27T14:45:19.674Z
CVE-2026-22624	4.3 (3.1)	Due to inadequate access control, authenticated u…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:02.811Z	2026-02-27T14:44:15.585Z
CVE-2026-22625	4.6 (3.1)	Improper handling of filenames in certain HIKSEMI…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:14.801Z	2026-02-27T14:42:08.422Z
CVE-2026-22626	4.9 (3.1)	Due to insufficient input parameter validation on…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:29.709Z	2026-02-27T14:37:37.094Z
CVE-2026-23592	7.2 (3.1)	Insecure File Handling allows Remote Code Execution in…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:57:57.364Z	2026-02-27T14:33:27.535Z
CVE-2026-23593	7.5 (3.1)	Unauthenticated Limited File Read allows Data Exposure…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:58:35.889Z	2026-02-27T14:32:15.830Z
CVE-2026-0678	4.9 (3.1)	Shipping Rates by City for WooCommerce <= 1.0.3 - Auth…	logiceverest	Shipping Rates by City for WooCommerce	2026-01-14T05:28:08.115Z	2026-02-27T14:28:15.251Z
CVE-2026-23689	7.7 (3.1)	Denial of service (DOS) in SAP Supply Chain Management	SAP_SE	SAP Supply Chain Management	2026-02-10T03:03:09.536Z	2026-02-27T14:27:50.545Z
CVE-2025-59386	1.2 (4.0)	QuTS hero	QNAP Systems Inc.	QuTS hero	2026-02-11T12:16:19.698Z	2026-02-27T14:27:34.202Z
CVE-2020-37156	6.9 (4.0) 6.5 (3.1)	BloodX 1.0 - Authentication Bypass	diveshlunker	BloodX	2026-02-11T20:49:48.699Z	2026-02-27T14:27:24.205Z
CVE-2026-25323	4.3 (3.1)	WordPress OSM plugin <= 6.1.12 - Broken Access Control…	MiKa	OSM	2026-02-19T08:26:55.891Z	2026-02-27T14:27:12.988Z
CVE-2026-25422	5.4 (3.1)	WordPress Popularis Extra plugin <= 1.2.10 - Cross Sit…	Themes4WP	Popularis Extra	2026-02-19T08:27:07.187Z	2026-02-27T14:27:02.052Z
CVE-2026-27327	4.3 (3.1)	WordPress YayMail – WooCommerce Email Customizer plugi…	YayCommerce	YayMail – WooCommerce Email Customizer	2026-02-19T20:35:41.377Z	2026-02-27T14:26:51.970Z
CVE-2026-3100	8.3 (4.0)	An improper certificate validation vulnerability was f…	ASUSTOR	ADM	2026-02-25T05:52:20.196Z	2026-02-27T14:26:39.407Z
CVE-2026-2751	8.3 (3.1)	Blind SQL Injection	Centreon	Centreon Web on Central Server	2026-02-27T13:33:44.787Z	2026-02-27T14:26:21.910Z
CVE-2025-15498	9.3 (4.0)	SQL Injection in Pro3W CMS	Pro3W	Pro3W CMS	2026-02-27T13:51:53.006Z	2026-02-27T14:19:48.682Z
CVE-2026-23598	6.5 (3.1)	Unauthenticated Information Disclosure in application …	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Private 5G Core	2026-02-17T20:47:21.374Z	2026-02-27T14:19:25.480Z
CVE-2026-24984	6.5 (3.1)	WordPress Visual Link Preview plugin <= 2.2.9 - Broken…	Brecht	Visual Link Preview	2026-02-03T14:08:35.984Z	2026-02-27T14:14:27.105Z
CVE-2026-27975	8.1 (4.0)	Ajenti has a potential Remote Code Execution	ajenti	ajenti	2026-02-26T02:39:28.283Z	2026-02-27T14:13:28.184Z
CVE-2026-21722	5.3 (3.1)	Public Dashboards time range restriction on annotation…	Grafana	grafana/grafana	2026-02-12T08:49:05.678Z	2026-02-27T14:01:13.177Z
CVE-2026-2302	6.9 (4.0) 6.5 (3.1)	Unsafe Reflection in Mongoid::Criteria.from_hash	MongoDB Inc	MongoDB Ruby Driver	2026-02-10T18:59:23.760Z	2026-02-27T13:29:42.348Z
CVE-2026-21658	8.8 (4.0)	Johnson Controls -Frick Quantum HD- Unauthenticated Re…	Johnson Controls	Frick Controls Quantum HD	2026-02-27T08:59:13.878Z	2026-02-27T13:07:55.620Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-69415	7.1 (3.1)	In Plex Media Server (PMS) through 1.42.2.10156, …	Plex	Media Server	2026-01-02T16:49:36.787Z	2026-01-02T21:02:49.785Z
CVE-2019-25460	8.8 (4.0) 8.2 (3.1)	Web Ofisi Platinum E-Ticaret v5 SQL Injection via q Pa…	Web-ofisi	Ticaret	2026-02-22T14:12:14.220Z	2026-02-23T21:40:41.608Z
CVE-2019-25362	9.3 (4.0) 9.8 (3.1)	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 - Buffer OverFlow	Alloksoft	WMV to AVI MPEG DVD WMV Convertor	2026-02-18T21:55:08.448Z	2026-02-19T20:09:18.092Z
CVE-2026-3327	4.8 (4.0)	Authenticated DatoCMS Web Previews Plugin Iframe Injection	DatoCMS	Web Previews	2026-02-27T14:09:38.150Z	2026-02-27T18:44:26.847Z
CVE-2026-2751	8.3 (3.1)	Blind SQL Injection	Centreon	Centreon Web on Central Server	2026-02-27T13:33:44.787Z	2026-02-27T14:26:21.910Z
CVE-2026-27327	4.3 (3.1)	WordPress YayMail – WooCommerce Email Customizer plugi…	YayCommerce	YayMail – WooCommerce Email Customizer	2026-02-19T20:35:41.377Z	2026-02-27T14:26:51.970Z
CVE-2026-25422	5.4 (3.1)	WordPress Popularis Extra plugin <= 1.2.10 - Cross Sit…	Themes4WP	Popularis Extra	2026-02-19T08:27:07.187Z	2026-02-27T14:27:02.052Z
CVE-2026-25323	4.3 (3.1)	WordPress OSM plugin <= 6.1.12 - Broken Access Control…	MiKa	OSM	2026-02-19T08:26:55.891Z	2026-02-27T14:27:12.988Z
CVE-2026-24984	6.5 (3.1)	WordPress Visual Link Preview plugin <= 2.2.9 - Broken…	Brecht	Visual Link Preview	2026-02-03T14:08:35.984Z	2026-02-27T14:14:27.105Z
CVE-2026-23750	7.2 (4.0) 8.1 (3.1)	Golioth Pouch < [INSERT FIXED VERSION] BLE GATT Heap-b…	Golioth	Pouch	2026-02-26T17:33:13.261Z	2026-02-27T16:05:34.974Z
CVE-2026-23749	2.1 (4.0) 2.9 (3.1)	Golioth Firmware SDK < 0.22.0 Blockwise Transfer Path …	Golioth	Firmware SDK	2026-02-26T17:32:30.795Z	2026-02-27T17:56:08.833Z
CVE-2026-23748	6.3 (4.0) 3.7 (3.1)	Golioth Firmware SDK < 0.22.0 LightDB State Out-of-Bou…	Golioth	Firmware SDK	2026-02-26T17:31:32.584Z	2026-02-27T16:06:24.182Z
CVE-2026-23747	6.3 (4.0) 3.7 (3.1)	Golioth Firmware SDK < 0.22.0 Payload Utils Stack-base…	Golioth	Firmware SDK	2026-02-26T17:30:13.495Z	2026-02-27T16:07:30.232Z
CVE-2026-23593	7.5 (3.1)	Unauthenticated Limited File Read allows Data Exposure…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:58:35.889Z	2026-02-27T14:32:15.830Z
CVE-2026-23592	7.2 (3.1)	Insecure File Handling allows Remote Code Execution in…	Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Fabric Composer	2026-01-27T17:57:57.364Z	2026-02-27T14:33:27.535Z
CVE-2026-22626	4.9 (3.1)	Due to insufficient input parameter validation on…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:29.709Z	2026-02-27T14:37:37.094Z
CVE-2026-22625	4.6 (3.1)	Improper handling of filenames in certain HIKSEMI…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:14.801Z	2026-02-27T14:42:08.422Z
CVE-2026-22624	4.3 (3.1)	Due to inadequate access control, authenticated u…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:03:02.811Z	2026-02-27T14:44:15.585Z
CVE-2026-22623	7.2 (3.1)	Due to insufficient input parameter validation on…	HIKSEMI	HS-AFS-S1H1	2026-01-30T11:02:26.539Z	2026-02-27T14:45:19.674Z
CVE-2026-21722	5.3 (3.1)	Public Dashboards time range restriction on annotation…	Grafana	grafana/grafana	2026-02-12T08:49:05.678Z	2026-02-27T14:01:13.177Z
CVE-2026-1763	4.6 (3.1)	Enervista UR Setup DLL Hijacking	GE Vernova	Enervista	2026-02-10T20:06:12.992Z	2026-02-27T14:54:23.671Z
CVE-2026-1721	6.2 (4.0)	Reflected Cross-Site Scripting (XSS) vulnerability in …			2026-02-13T01:46:48.674Z	2026-02-27T14:51:31.817Z
CVE-2026-0709	7.2 (3.1)	Some Hikvision Wireless Access Points are vulnera…	Hikvision	DS-3WAP521-SI	2026-01-30T11:01:55.633Z	2026-02-27T14:49:22.572Z
CVE-2026-0704	5.9 (4.0)	In affected version of Octopus Deploy it was poss…	Octopus Deploy	Octopus Server	2026-02-25T12:22:18.328Z	2026-02-27T14:48:18.334Z
CVE-2025-69416	5 (3.1)	In the plex.tv backend for Plex Media Server (PMS…	Plex	plex.tv backend	2026-01-02T16:52:56.991Z	2026-01-02T21:03:41.577Z
CVE-2025-69417	5 (3.1)	In the plex.tv backend for Plex Media Server (PMS…	Plex	plex.tv backend	2026-01-02T16:55:18.307Z	2026-01-02T21:04:29.655Z
CVE-2026-23873	5.2 (4.0)	HUSTOJ is Vulnerable to Stored CSV Injection (Formula …	zhblue	hustoj	2026-01-21T23:26:21.924Z	2026-01-22T21:54:23.320Z
CVE-2026-25997	5.5 (4.0)	FreeRDP has heap-use-after-free in xf_clipboard_format_equal	FreeRDP	FreeRDP	2026-02-25T20:38:40.483Z	2026-02-25T21:39:08.071Z
CVE-2026-25955	5.5 (4.0)	FreeRDP has heap-use-after-free in xf_AppUpdateWindowF…	FreeRDP	FreeRDP	2026-02-25T20:32:42.458Z	2026-02-26T15:54:09.229Z
CVE-2026-25954	5.5 (4.0)	FreeRDP has heap-use-after-free in xf_rail_server_loca…	FreeRDP	FreeRDP	2026-02-25T20:30:32.755Z	2026-02-26T15:54:47.557Z

ID	Description	Published	Updated
fkie_cve-2025-69415	In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device to…	2026-01-02T17:16:23.887	2026-02-27T15:27:18.270
fkie_cve-2019-25460	Web Ofisi Platinum E-Ticaret v5 contains an SQL injection vulnerability that allows unauthenticated…	2026-02-22T15:16:15.947	2026-02-27T15:18:04.217
fkie_cve-2019-25362	WMV to AVI MPEG DVD WMV Convertor 4.6.1217 contains a buffer overflow vulnerability that allows att…	2026-02-18T22:16:21.903	2026-02-27T15:17:47.687
fkie_cve-2026-3327	Authenticated Iframe Injection in Dato CMS Web Previews plugin. This vulnerability permits a malici…	2026-02-27T15:16:30.950	2026-02-27T15:16:30.950
fkie_cve-2026-2751	Blind SQL Injection via unsanitized array keys in Service Dependencies deletion. Vulnerability in C…	2026-02-27T14:16:30.780	2026-02-27T15:16:30.613
fkie_cve-2026-27327	Missing Authorization vulnerability in YayCommerce YayMail – WooCommerce Email Customizer yaymail a…	2026-02-19T21:18:32.537	2026-02-27T15:16:30.180
fkie_cve-2026-25422	Cross-Site Request Forgery (CSRF) vulnerability in Themes4WP Popularis Extra popularis-extra allows…	2026-02-19T09:16:23.883	2026-02-27T15:16:29.977
fkie_cve-2026-25323	Missing Authorization vulnerability in MiKa OSM osm allows Exploiting Incorrectly Configured Access…	2026-02-19T09:16:16.770	2026-02-27T15:16:29.780
fkie_cve-2026-24984	Missing Authorization vulnerability in Brecht Visual Link Preview visual-link-preview allows Exploi…	2026-02-03T15:16:17.517	2026-02-27T15:16:29.580
fkie_cve-2026-23750	Golioth Pouch version 0.1.0, prior to commit 1b2219a1, contains a heap-based buffer overflow in BLE…	2026-02-26T18:23:06.980	2026-02-27T15:16:29.433
fkie_cve-2026-23749	Golioth Firmware SDK version 0.19.1 prior to 0.22.0, fixed in commit 0e788217, contain an out-of-bo…	2026-02-26T18:23:06.763	2026-02-27T15:16:29.273
fkie_cve-2026-23748	Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, contain an out-of-bo…	2026-02-26T18:23:06.550	2026-02-27T15:16:29.030
fkie_cve-2026-23747	Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, contain a stack-based…	2026-02-26T18:23:06.317	2026-02-27T15:16:28.847
fkie_cve-2026-23593	A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could…	2026-01-27T18:15:56.517	2026-02-27T15:16:28.420
fkie_cve-2026-23592	Insecure file operations in HPE Aruba Networking Fabric Composerâ€™s backup functionality could all…	2026-01-27T18:15:56.383	2026-02-27T15:16:28.270
fkie_cve-2026-22626	Due to insufficient input parameter validation on the interface, authenticated users of certain HIK…	2026-01-30T11:15:56.010	2026-02-27T15:16:28.140
fkie_cve-2026-22625	Improper handling of filenames in certain HIKSEMI NAS products may lead to the exposure of sensitiv…	2026-01-30T11:15:55.893	2026-02-27T15:16:28.020
fkie_cve-2026-22624	Due to inadequate access control, authenticated users of certain HIKSEMI NAS products can manipulat…	2026-01-30T11:15:55.780	2026-02-27T15:16:27.890
fkie_cve-2026-22623	Due to insufficient input parameter validation on the interface, authenticated users of certain HIK…	2026-01-30T11:15:55.663	2026-02-27T15:16:27.767
fkie_cve-2026-21722	Public dashboards with annotations enabled did not limit their annotation timerange to the locked t…	2026-02-12T09:16:08.763	2026-02-27T15:16:27.600
fkie_cve-2026-1763	Vulnerability in GE Vernova Enervista UR Setup on Windows.This issue affects Enervista: 8.6 and pre…	2026-02-10T20:16:53.073	2026-02-27T15:16:27.427
fkie_cve-2026-1721	Summary A Reflected Cross-Site Scripting (XSS) vulnerability was discovered in the AI Playground's…	2026-02-13T03:15:52.467	2026-02-27T15:16:27.243
fkie_cve-2026-0709	Some Hikvision Wireless Access Points are vulnerable to authenticated command execution due to insu…	2026-01-30T11:15:55.530	2026-02-27T15:16:27.080
fkie_cve-2026-0704	In affected version of Octopus Deploy it was possible to remove files and/or contents of files on t…	2026-02-25T13:16:04.337	2026-02-27T15:16:26.893
fkie_cve-2025-69416	In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token ca…	2026-01-02T17:16:24.083	2026-02-27T15:08:18.377
fkie_cve-2025-69417	In the plex.tv backend for Plex Media Server (PMS) through 2025-12-31, a non-server device token ca…	2026-01-02T17:16:24.613	2026-02-27T15:08:04.963
fkie_cve-2026-23873	hustoj is an open source online judge based on PHP/C++/MySQL/Linux for ACM/ICPC and NOIP training. …	2026-01-22T00:15:51.770	2026-02-27T15:02:33.920
fkie_cve-2026-25997	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_clipb…	2026-02-25T21:16:42.210	2026-02-27T14:57:09.820
fkie_cve-2026-25955	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_AppUp…	2026-02-25T21:16:41.857	2026-02-27T14:56:40.630
fkie_cve-2026-25954	FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, `xf_rail_…	2026-02-25T21:16:41.680	2026-02-27T14:56:16.663

ID	Severity	Description	Published	Updated
ghsa-253p-9p9w-rg6r	9.8 (3.1)	ZenTaoPMS v18.11 through v21.6.beta is vulnerable to Directory Traversal in /module/ai/control.php.…	2026-02-26T18:31:41Z	2026-02-26T21:31:30Z
ghsa-hjg3-g5mq-q5qp	7.1 (3.1) 8.6 (4.0)	Multiple Finka programs use hard-coded Firebird database credentials (shared across all instances o…	2026-02-24T18:31:02Z	2026-02-26T21:31:29Z
ghsa-wh45-rv58-w5rc	7.3 (3.1) 5.5 (4.0)	A security flaw has been discovered in Tosei Online Store Management System ネット店舗管理システム 1.01. Affec…	2026-02-22T12:30:26Z	2026-02-26T21:31:28Z
ghsa-vf3m-rggr-vh64	5.3 (3.1)	Missing Authorization vulnerability in SecuPress SecuPress Free secupress.This issue affects SecuPr…	2026-02-20T18:31:33Z	2026-02-26T21:31:28Z
ghsa-qvpj-hxx2-jj7g	7.6 (3.1)	Missing Authorization vulnerability in staviravn AIO WP Builder all-in-one-wp-builder allows Exploi…	2026-02-20T18:31:33Z	2026-02-26T21:31:28Z
ghsa-fqgg-crp3-j3c7	4.3 (3.1)	Missing Authorization vulnerability in ExpressTech Systems Quiz And Survey Master quiz-master-next …	2026-02-19T18:31:52Z	2026-02-26T21:31:28Z
ghsa-fggr-p59v-2mcv	5.3 (3.1)	Missing Authorization vulnerability in AresIT WP Compress wp-compress-image-optimizer allows Exploi…	2026-02-19T18:31:52Z	2026-02-26T21:31:28Z
ghsa-8vc4-7wqx-f4mg	4.3 (3.1)	Missing Authorization vulnerability in FooPlugins FooGallery foogallery allows Exploiting Incorrect…	2026-02-19T18:31:52Z	2026-02-26T21:31:28Z
ghsa-8f2p-qrq8-3vpg	8.6 (3.1)	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in van…	2026-02-20T18:31:36Z	2026-02-26T21:31:28Z
ghsa-3w2w-p865-v7xr	4.3 (3.1)	Missing Authorization vulnerability in Elementor Image Optimizer by Elementor image-optimization al…	2026-02-19T18:31:52Z	2026-02-26T21:31:28Z
ghsa-xx2g-p975-mwgc	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: ensure worker is …	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-xfmh-3cc9-8vq3	7.8 (3.1)	In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling …	2026-01-23T15:31:35Z	2026-02-26T21:31:27Z
ghsa-x8q5-wjrh-hhx7	7.8 (3.1)	In the Linux kernel, the following vulnerability has been resolved: RDMA/core: always drop device …	2026-01-23T15:31:35Z	2026-02-26T21:31:27Z
ghsa-rph5-qwhf-vw4p	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: nfsd: check that server is run…	2026-01-23T18:31:29Z	2026-02-26T21:31:27Z
ghsa-p49x-q2cv-fcx5	5.3 (3.1)	Missing Authorization vulnerability in WPDeveloper Essential Addons for Elementor essential-addons-…	2026-02-19T18:31:51Z	2026-02-26T21:31:27Z
ghsa-mvpq-f8gc-p5w2	6.5 (3.1)	Missing Authorization vulnerability in Aruba.it Dev Aruba HiSpeed Cache aruba-hispeed-cache allows …	2026-02-19T18:31:51Z	2026-02-26T21:31:27Z
ghsa-m4w2-2j95-qx2q	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: net: mscc: ocelot: Fix crash w…	2026-01-23T18:31:29Z	2026-02-26T21:31:27Z
ghsa-m3cp-9jq6-3gg3	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: dm-verity: disable recursive f…	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-jpf4-6gr7-rh8q	9.8 (3.1)	SolarWinds Web Help Desk was found to be susceptible to an authentication bypass vulnerability that…	2026-01-28T09:30:31Z	2026-02-26T21:31:27Z
ghsa-h6p2-5h78-3xmh	7.8 (3.1)	In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warn…	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-gj4p-f535-7c3j	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: idpf: Fix RSS LUT NULL pointer…	2026-01-23T18:31:29Z	2026-02-26T21:31:27Z
ghsa-gj23-c8mg-cv5r	3.3 (3.1)	In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak fr…	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-fmpr-3jc4-w7xx	5.3 (3.1)	Missing Authorization vulnerability in designinvento DirectoryPress directorypress allows Exploitin…	2026-02-19T18:31:51Z	2026-02-26T21:31:27Z
ghsa-c2vw-8m72-w2vh	4.7 (3.1)	In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix race condition fo…	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-953j-p37p-r755	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: libceph: make free_choose_arg_…	2026-01-23T18:31:29Z	2026-02-26T21:31:27Z
ghsa-8p5m-xghc-7954	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: idpf: detach and close netdevs…	2026-01-23T18:31:28Z	2026-02-26T21:31:27Z
ghsa-73rm-3q3v-37g4	7.8 (3.1)	In the Linux kernel, the following vulnerability has been resolved: KVM: s390: Fix gmap_helper_zap…	2026-01-23T15:31:35Z	2026-02-26T21:31:27Z
ghsa-6wm3-23gq-r92x	6.1 (3.1) 5.1 (4.0)	MiniGal Nano version 0.3.5 and prior contain a reflected cross-site scripting (XSS) vulnerability i…	2026-02-11T18:31:28Z	2026-02-26T21:31:27Z
ghsa-5rpf-hqpr-28r8	7.1 (3.1)	In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out…	2026-01-23T18:31:29Z	2026-02-26T21:31:27Z
ghsa-5gq3-mh83-6m28	9.8 (3.1)	SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerabi…	2026-01-28T09:30:31Z	2026-02-26T21:31:27Z

ID	Severity	Description	Package	Published	Updated
pysec-2018-146	6.5 (3.1)	In Exiv2 0.26, jpgimage.cpp allows remote attackers to cause a denial of service (image.c…	exiv2	2018-03-25T03:29:00Z	2024-11-21T14:22:49.282911Z
pysec-2018-145	5.5 (3.1)	In Exiv2 0.26, there is a segmentation fault caused by uncontrolled recursion in the Exiv…	exiv2	2018-01-18T07:29:00Z	2024-11-21T14:22:49.222538Z
pysec-2018-144	5.5 (3.1)	The Exiv2::Jp2Image::readMetadata function in jp2image.cpp in Exiv2 0.26 allows remote at…	exiv2	2018-01-03T09:29:00Z	2024-11-21T14:22:49.165596Z
pysec-2018-143	6.5 (3.1)	Exiv2::isoSpeed in easyaccess.cpp in Exiv2 v0.27-RC2 allows remote attackers to cause a d…	exiv2	2018-11-27T07:29:00Z	2024-11-21T14:22:49.094932Z
pysec-2018-142	6.5 (3.1)	In Exiv2 0.26, Exiv2::PsdImage::readMetadata in psdimage.cpp in the PSD image reader may …	exiv2	2018-11-08T08:29:00Z	2024-11-21T14:22:49.03444Z
pysec-2018-141	6.5 (3.1)	In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp (called from psdimage.cpp in the PSD…	exiv2	2018-11-08T08:29:00Z	2024-11-21T14:22:48.973676Z
pysec-2018-140	6.5 (3.1)	There is an infinite loop in the Exiv2::Image::printIFDStructure function of image.cpp in…	exiv2	2018-11-03T04:29:00Z	2024-11-21T14:22:48.914006Z
pysec-2018-139	6.5 (3.1)	CiffDirectory::readDirectory() at crwimage_int.cpp in Exiv2 0.26 has excessive stack cons…	exiv2	2018-09-28T09:29:00Z	2024-11-21T14:22:48.850406Z
pysec-2018-138	6.5 (3.1)	An issue was discovered in Exiv2 v0.26. The function Exiv2::DataValue::copy in value.cpp …	exiv2	2018-09-20T20:29:00Z	2024-11-21T14:22:48.791028Z
pysec-2018-137	6.5 (3.1)	Exiv2::ul2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of s…	exiv2	2018-09-19T22:29:00Z	2024-11-21T14:22:48.732242Z
pysec-2018-136	6.5 (3.1)	Exiv2::d2Data in types.cpp in Exiv2 v0.26 allows remote attackers to cause a denial of se…	exiv2	2018-09-19T22:29:00Z	2024-11-21T14:22:48.67141Z
pysec-2018-135	6.5 (3.1)	Exiv2::Internal::PngChunk::parseTXTChunk in Exiv2 v0.26 allows remote attackers to cause …	exiv2	2018-09-02T03:29:00Z	2024-11-21T14:22:48.611777Z
pysec-2018-134	8.1 (3.1)	samples/geotag.cpp in the example code of Exiv2 0.26 misuses the realpath function on POS…	exiv2	2018-07-17T12:29:00Z	2024-11-21T14:22:48.55081Z
pysec-2018-133	8.8 (3.1)	Exiv2 0.26 has a heap-based buffer over-read in WebPImage::decodeChunks in webpimage.cpp.	exiv2	2018-07-13T15:29:00Z	2024-11-21T14:22:48.493339Z
pysec-2018-132	8.8 (3.1)	Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to…	exiv2	2018-06-13T11:29:00Z	2024-11-21T14:22:48.43262Z
pysec-2018-131	8.8 (3.1)	Exiv2 0.26 has integer overflows in LoaderTiff::getData() in preview.cpp, leading to an o…	exiv2	2018-06-13T11:29:00Z	2024-11-21T14:22:48.369854Z
pysec-2018-130	9.8 (3.1)	Exiv2 0.26 has a heap-based buffer overflow in getData in preview.cpp.	exiv2	2018-05-29T07:29:00Z	2024-11-21T14:22:48.306556Z
pysec-2018-129	6.5 (3.1)	In Exiv2 0.26, the Exiv2::PngImage::printStructure function in pngimage.cpp allows remote…	exiv2	2018-05-14T03:29:00Z	2024-11-21T14:22:48.247062Z
pysec-2018-128	6.5 (3.1)	An issue was discovered in Exiv2 0.26. The Exiv2::Internal::PngChunk::parseTXTChunk funct…	exiv2	2018-05-12T04:29:00Z	2024-11-21T14:22:48.18647Z
pysec-2018-127	6.5 (3.1)	An issue was discovered in Exiv2 0.26. readMetadata in jp2image.cpp allows remote attacke…	exiv2	2018-05-12T04:29:00Z	2024-11-21T14:22:48.062891Z
pysec-2018-126	6.5 (3.1)	In types.cpp in Exiv2 0.26, a large size value may lead to a SIGABRT during an attempt at…	exiv2	2018-05-10T02:29:00Z	2024-11-21T14:22:47.998655Z
pysec-2018-125	6.5 (3.1)	Exiv2::Image::byteSwap2 in image.cpp in Exiv2 0.26 has a heap-based buffer over-read.	exiv2	2018-05-07T07:29:00Z	2024-11-21T14:22:47.938221Z
pysec-2017-142	7.5 (3.1)	There is an invalid free in Image::printIFDStructure that leads to a Segmentation fault i…	exiv2	2017-06-26T23:29:00Z	2024-11-21T14:22:47.877232Z
pysec-2017-141	5.5 (3.1)	Exiv2 0.26 has a Null Pointer Dereference in the Exiv2::DataValue::toLong function in val…	exiv2	2017-12-31T19:29:00Z	2024-11-21T14:22:47.817537Z
pysec-2018-124	6.5 (3.1)	In Exiv2 0.26, there is an integer overflow leading to a heap-based buffer over-read in t…	exiv2	2018-02-12T22:29:00Z	2024-11-21T14:22:47.758262Z
pysec-2018-123	6.5 (3.1)	In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::IptcData::printStruct…	exiv2	2018-02-12T22:29:00Z	2024-11-21T14:22:47.697229Z
pysec-2018-122	8.1 (3.1)	In Exiv2 0.26, there is a heap-based buffer over-read in the Exiv2::Image::byteSwap4 func…	exiv2	2018-02-12T22:29:00Z	2024-11-21T14:22:47.638668Z
pysec-2018-121	6.5 (3.1)	In Exiv2 0.26, there is a reachable assertion in the readHeader function in bigtiffimage.…	exiv2	2018-02-12T22:29:00Z	2024-11-21T14:22:47.579327Z
pysec-2017-140	5.5 (3.1)	There is a heap-based buffer over-read in the Exiv2::Internal::PngChunk::keyTXTChunk func…	exiv2	2017-12-13T22:29:00Z	2024-11-21T14:22:47.521911Z
pysec-2017-139	5.5 (3.1)	There is a heap-based buffer overflow in the Exiv2::s2Data function of types.cpp in Exiv2…	exiv2	2017-09-29T01:34:00Z	2024-11-21T14:22:47.458235Z

ID	Description	Type

ID	Description	Updated
gsd-2024-4191	The format of the source doesn't require a description, click on the link for more details.	2024-04-26T05:02:17.350081Z
gsd-2022-48683	The format of the source doesn't require a description, click on the link for more details.	2024-04-26T05:00:39.331180Z
gsd-2022-48682	In deletefiles in FDUPES before 2.2.0, a TOCTOU race condition allows arbitrary file dele…	2024-04-26T05:00:39.114509Z
gsd-2024-29078	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:15.597934Z
gsd-2024-27202	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:15.043072Z
gsd-2024-26026	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:14.001780Z
gsd-2024-28889	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:12.636165Z
gsd-2024-28880	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:12.392410Z
gsd-2024-28883	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:12.389367Z
gsd-2024-28132	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:12.156611Z
gsd-2024-25560	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.926102Z
gsd-2024-33564	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.690855Z
gsd-2024-33599	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.689695Z
gsd-2024-33569	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.689024Z
gsd-2024-33542	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.688591Z
gsd-2024-33592	Server-Side Request Forgery (SSRF) vulnerability in SoftLab Radio Player.This issue affec…	2024-04-25T05:02:10.687617Z
gsd-2024-33608	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.687145Z
gsd-2024-33580	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.684958Z
gsd-2024-33527	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.684742Z
gsd-2024-33532	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.683477Z
gsd-2024-33531	cdbattags lua-resty-jwt 0.2.3 allows attackers to bypass all JWT-parsing signature checks…	2024-04-25T05:02:10.682199Z
gsd-2024-33582	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.681866Z
gsd-2024-33578	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.679697Z
gsd-2024-33588	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.676199Z
gsd-2024-33585	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.675953Z
gsd-2024-33597	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.675513Z
gsd-2024-33593	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.673021Z
gsd-2024-33539	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.670372Z
gsd-2024-33579	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.669859Z
gsd-2024-33584	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.668914Z

ID	Description	Published	Updated
mal-2026-708	Malicious code in incode-kyc-backend (npm)	2026-02-03T21:30:33Z	2026-02-06T03:05:24Z
mal-2026-707	Malicious code in js-unpack (npm)	2026-02-03T17:41:26Z	2026-02-06T03:05:24Z
mal-2026-692	Malicious code in graphrix (npm)	2026-02-03T07:44:00Z	2026-02-06T03:05:24Z
mal-2026-683	Malicious code in l2-contracts (npm)	2026-02-03T07:24:02Z	2026-02-06T03:05:24Z
mal-2026-682	Malicious code in kwp-analytics (npm)	2026-02-03T07:22:08Z	2026-02-06T03:05:24Z
mal-2026-681	Malicious code in internallib_v782 (npm)	2026-02-03T07:27:28Z	2026-02-06T03:05:24Z
mal-2026-680	Malicious code in frontend-js-state-web (npm)	2026-02-03T07:27:10Z	2026-02-06T03:05:24Z
mal-2026-674	Malicious code in freedom-baileys (npm)	2026-02-03T05:01:34Z	2026-02-06T03:05:24Z
mal-2026-656	Malicious code in jshint-groups (npm)	2026-02-03T01:59:02Z	2026-02-06T03:05:24Z
mal-2026-773	Malicious code in ethers-lint (npm)	2026-02-05T21:21:25Z	2026-02-06T03:05:23Z
mal-2026-772	Malicious code in conp-dats-editor (npm)	2026-02-05T08:16:03Z	2026-02-06T03:05:23Z
mal-2026-768	Malicious code in debug-logger-utils (npm)	2026-02-05T17:31:41Z	2026-02-06T03:05:23Z
mal-2026-764	Malicious code in chai-as-advanced (npm)	2026-02-05T14:54:55Z	2026-02-06T03:05:23Z
mal-2026-761	Malicious code in digital-checkout (npm)	2026-02-05T14:22:06Z	2026-02-06T03:05:23Z
mal-2026-756	Malicious code in cat-retail-app (npm)	2026-02-05T01:58:59Z	2026-02-06T03:05:23Z
mal-2026-751	Malicious code in express_update (npm)	2026-02-05T01:50:12Z	2026-02-06T03:05:23Z
mal-2026-750	Malicious code in dspmobile (npm)	2026-02-05T01:07:59Z	2026-02-06T03:05:23Z
mal-2026-742	Malicious code in dcf-commons (npm)	2026-02-04T17:26:21Z	2026-02-06T03:05:23Z
mal-2026-741	Malicious code in confluence-analytics-support (npm)	2026-02-04T17:08:45Z	2026-02-06T03:05:23Z
mal-2026-735	Malicious code in docusaurus-plugin-launchdarkly (npm)	2026-02-04T09:46:59Z	2026-02-06T03:05:23Z
mal-2026-733	Malicious code in deuro-landing-page (npm)	2026-02-04T09:21:07Z	2026-02-06T03:05:23Z
mal-2026-722	Malicious code in express-groups-routes (npm)	2026-02-04T04:56:58Z	2026-02-06T03:05:23Z
mal-2026-721	Malicious code in dotenv-embedded (npm)	2026-02-04T05:11:23Z	2026-02-06T03:05:23Z
mal-2026-720	Malicious code in chai-grab (npm)	2026-02-04T05:22:34Z	2026-02-06T03:05:23Z
mal-2026-719	Malicious code in chai-async-promised (npm)	2026-02-04T05:11:23Z	2026-02-06T03:05:23Z
mal-2026-691	Malicious code in fingerprint-stitch (npm)	2026-02-03T07:48:27Z	2026-02-06T03:05:23Z
mal-2026-690	Malicious code in fileupload-util (npm)	2026-02-03T07:56:03Z	2026-02-06T03:05:23Z
mal-2026-689	Malicious code in eslint-config-stitch (npm)	2026-02-03T07:48:27Z	2026-02-06T03:05:23Z
mal-2026-688	Malicious code in eslint-config-nlx (npm)	2026-02-03T07:48:27Z	2026-02-06T03:05:23Z
mal-2026-679	Malicious code in epic-admin-ui (npm)	2026-02-03T07:27:10Z	2026-02-06T03:05:23Z

ID	Description	Published	Updated
wid-sec-w-2025-2816	ImageMagick: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-10T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2805	TianoCore EDK2: Schwachstelle ermöglicht Codeausführung	2025-12-09T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2751	WebKitGTK: Mehrere Schwachstellen	2025-12-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2736	QT (Declarative module): Schwachstelle ermöglicht Denial of Service	2025-12-03T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2729	WebKitGTK: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-02T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2722	ImageMagick: Schwachstelle ermöglicht Denial of Service	2025-12-02T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2657	WebKitGTK: Mehrere Schwachstellen	2025-11-20T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2638	Grub: Mehrere Schwachstellen	2025-11-18T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2593	pgAdmin: Mehrere Schwachstellen	2025-11-12T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2566	Mozilla Firefox und Firefox ESR: Mehrere Schwachstellen	2025-11-11T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2433	Google Cloud Platform (Envoy Proxy):: Mehrere Schwachstellen ermöglichen Denial of Service	2025-10-28T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2409	Xen: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-10-26T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2380	Xen: Mehrere Schwachstellen	2025-10-21T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2110	LibTiff: Schwachstelle ermöglicht Codeausführung	2025-09-22T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2085	Red Hat OpenShift Service Mesh: Mehrere Schwachstellen	2025-09-17T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2034	Erlang/OTP: Mehrere Schwachstellen	2025-09-10T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2007	Xen: Mehrere Schwachstellen	2025-09-09T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-1654	libTIFF (Tiffmedian, Thumbnail): Mehrere Schwachstellen	2025-07-27T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-1646	Red Hat Enterprise Linux (nodejs, perl): Mehrere Schwachstellen	2025-07-27T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-1205	Golang Go: Mehrere Schwachstellen	2025-06-01T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-0270	cURL: Mehrere Schwachstellen	2025-02-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-0259	Red Hat Satellite: Schwachstelle ermöglicht Denial of Service	2025-02-04T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-0131	OpenSSL: Schwachstelle ermöglicht Offenlegung von Informationen	2025-01-20T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-0084	Rsync: Mehrere Schwachstellen	2025-01-14T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2023-2001	AMD Prozessoren: Mehrere Schwachstellen	2023-08-08T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2023-1608	Perl: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-06-29T22:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2026-0011	QNAP NAS: Mehrere Schwachstellen	2026-01-04T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2026-0007	SmarterTools SmarterMail: Schwachstelle ermöglicht Codeausführung	2026-01-04T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2026-0005	NetApp Data ONTAP: Schwachstelle ermöglicht Manipulation von Daten und Denial of Service	2026-01-04T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2026-0004	JFrog Artifactory: Schwachstelle ermöglicht Cross-Site Scripting	2026-01-04T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2025-0061	Kwetsbaarheden verholpen in Siemens producten	2025-02-14T08:46:28.240775Z	2025-02-14T08:46:28.240775Z
ncsc-2025-0060	Kwetsbaarheid verholpen in Veeam	2025-02-13T09:48:03.729080Z	2025-02-13T09:48:03.729080Z
ncsc-2025-0059	Kwetsbaarheid verholpen in Fortinet FortiOS	2025-02-13T09:29:35.625977Z	2025-02-13T09:29:35.625977Z
ncsc-2025-0057	Kwetsbaarheden verholpen in GitLab CE/EE	2025-02-13T09:09:26.087113Z	2025-02-13T09:09:26.087113Z
ncsc-2025-0056	Kwetsbaarheden verholpen in Schneider Electric ASCO	2025-02-13T09:07:55.191514Z	2025-02-13T09:07:55.191514Z
ncsc-2025-0055	Kwetsbaarheid verholpen in CrowdStrike Falcon sensor	2025-02-13T08:22:07.880125Z	2025-02-13T08:22:07.880125Z
ncsc-2025-0054	Kwetsbaarheden verholpen in Adobe Commerce en Magento	2025-02-13T06:46:08.560650Z	2025-02-13T06:46:08.560650Z
ncsc-2025-0052	Kwetsbaarheden verholpen in Ivanti Connect Secure en Ivanti Policy Secure	2025-02-12T09:35:30.260596Z	2025-02-12T09:35:30.260596Z
ncsc-2025-0051	Kwetsbaarheden verholpen in Siemens producten	2025-02-11T19:40:34.993264Z	2025-02-11T19:40:34.993264Z
ncsc-2025-0050	Kwetsbaarheden verholpen in Microsoft Office	2025-02-11T19:19:24.863294Z	2025-02-11T19:19:24.863294Z
ncsc-2025-0049	Kwetsbaarheden verholpen in Microsoft Visual Studio	2025-02-11T19:17:58.768578Z	2025-02-11T19:17:58.768578Z
ncsc-2025-0048	Kwetsbaarheden verholpen in Microsoft Azure	2025-02-11T19:17:03.555400Z	2025-02-11T19:17:03.555400Z
ncsc-2025-0047	Kwetsbaarheden verholpen in Microsoft Windows	2025-02-11T19:16:04.610648Z	2025-02-11T19:16:04.610648Z
ncsc-2025-0046	Kwetsbaarheid verholpen in Apple iOS en iPadOS	2025-02-11T09:54:03.266145Z	2025-02-11T09:54:03.266145Z
ncsc-2025-0045	Kwetsbaarheden verholpen in SAP producten	2025-02-11T09:08:48.427126Z	2025-02-11T09:08:48.427126Z
ncsc-2025-0043	Kwetsbaarheden verholpen in Cisco IOS, IOS XE en IOS XR Software	2025-02-07T07:44:34.306225Z	2025-02-11T06:53:00.177478Z
ncsc-2025-0041	Kwetsbaarheden verholpen in F5 BIG-IP	2025-02-07T07:38:11.981975Z	2025-02-11T06:51:17.629249Z
ncsc-2025-0044	Kwetsbaarheden verholpen in Cisco Identity Services Engine	2025-02-07T07:50:13.796001Z	2025-02-07T07:50:13.796001Z
ncsc-2025-0042	Kwetsbaarheden verholpen in Cisco AsyncOS Software	2025-02-07T07:41:10.612134Z	2025-02-07T07:41:10.612134Z
ncsc-2025-0040	Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird	2025-02-07T07:33:40.643635Z	2025-02-07T07:33:40.643635Z
ncsc-2025-0039	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-02-04T09:13:08.342699Z	2025-02-04T09:13:08.342699Z
ncsc-2025-0038	Kwetsbaarheden verholpen in Zimbra Collaboration	2025-02-04T09:10:55.525420Z	2025-02-04T09:10:55.525420Z
ncsc-2025-0037	Kwetsbaarheden verholpen in VMware Aria Operations	2025-01-31T12:25:21.454904Z	2025-01-31T12:25:21.454904Z
ncsc-2025-0036	Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk	2025-01-29T10:35:51.164484Z	2025-01-29T10:35:51.164484Z
ncsc-2025-0035	Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk	2025-01-29T10:32:40.594073Z	2025-01-29T10:32:40.594073Z
ncsc-2025-0034	Kwetsbaarheden verholpen in Apple iPadOS en iOS	2025-01-28T11:31:14.861619Z	2025-01-28T11:31:14.861619Z
ncsc-2025-0033	Kwetsbaarheden verholpen in Oracle E-Business Suite	2025-01-28T10:43:20.128933Z	2025-01-28T10:43:20.128933Z
ncsc-2025-0009	Kwetsbaarheid verholpen in FortiNet FortiOS en FortiProxy	2025-01-14T14:58:02.272504Z	2025-01-28T10:42:03.747650Z
ncsc-2025-0032	Kwetsbaarheden verholpen in Apple macOS	2025-01-28T10:37:38.942515Z	2025-01-28T10:37:38.942515Z
ncsc-2025-0031	Kwetsbaarheid verholpen in Cisco Meeting Management	2025-01-23T13:56:01.391387Z	2025-01-23T13:56:01.391387Z

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-232418	SSA-232418: Vulnerabilities in SIMATIC S7-1200 and SIMATIC S7-1500 CPU Families	2019-08-13T00:00:00Z	2022-08-09T00:00:00Z
ssa-185638	SSA-185638: Authentication Bypass Vulnerability in SICAM A8000 Web Server Module	2022-08-09T00:00:00Z	2022-08-09T00:00:00Z
ssa-944952	SSA-944952: Authentication Bypass Vulnerability in Opcenter Quality	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-910883	SSA-910883: DHCP Client Vulnerability in SINAMICS PERFECT HARMONY GH180 Drives	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-711829	SSA-711829: Denial of Service Vulnerability in TIA Administrator	2022-04-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-610768	SSA-610768: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-439148	SSA-439148: File Parsing Vulnerabilities in PADS Standard/Plus Viewer	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-433782	SSA-433782: Improper Access Control Vulnerability in Mendix	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-414513	SSA-414513: Information Disclosure Vulnerability in Mendix	2022-04-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-348662	SSA-348662: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3	2022-07-12T00:00:00Z	2022-07-12T00:00:00Z
ssa-693555	SSA-693555: Memory Corruption Vulnerability in EN100 Ethernet Module	2022-06-14T00:00:00Z	2022-06-14T00:00:00Z
ssa-679335	SSA-679335: Multiple Vulnerabilities in Embedded FTP Server of SIMATIC CP Modules	2021-08-10T00:00:00Z	2022-06-14T00:00:00Z
ssa-662649	SSA-662649: Denial of Service Vulnerability in Desigo DXR and PXC Controllers	2022-05-10T00:00:00Z	2022-06-14T00:00:00Z
ssa-626968	SSA-626968: Multiple Webserver Vulnerabilities in Desigo PXC and DXR Devices	2022-05-10T00:00:00Z	2022-06-14T00:00:00Z
ssa-787292	SSA-787292: Denial of Service Vulnerability in SIMATIC RFID Readers	2021-06-08T00:00:00Z	2022-05-10T00:00:00Z
ssa-756638	SSA-756638: Vulnerabilities in Third-Party Component Mbed TLS of LOGO! CMR Family and SIMATIC RTU 3000 Family	2021-09-14T00:00:00Z	2022-05-10T00:00:00Z
ssa-736385	SSA-736385: Memory Corruption Vulnerability in OpenV2G	2022-05-10T00:00:00Z	2022-05-10T00:00:00Z
ssa-998762	SSA-998762: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.2	2022-04-12T00:00:00Z	2022-04-12T00:00:00Z
ssa-995338	SSA-995338: Multiple Vulnerabilities in COMOS Web	2022-01-11T00:00:00Z	2022-04-12T00:00:00Z
ssa-870917	SSA-870917: Improper Access Control Vulnerability in Mendix	2022-04-12T00:00:00Z	2022-04-12T00:00:00Z
ssa-836527	SSA-836527: Multiple Vulnerabilities in SCALANCE X-300 Switch Family Devices	2022-04-12T00:00:00Z	2022-04-12T00:00:00Z
ssa-350757	SSA-350757: Improper Access Control Vulnerability in TIA Portal Affecting S7-1200 and S7-1500 CPUs Web Server (Incl. Related ET200 CPUs and SIPLUS variants)	2022-04-12T00:00:00Z	2022-04-12T00:00:00Z
ssa-348629	SSA-348629: Denial-of-Service Vulnerability in SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional and SIMATIC NET PC Software	2018-03-27T00:00:00Z	2022-04-12T00:00:00Z
ssa-316850	SSA-316850: Unauthenticated File Access in SICAM A8000 Devices	2022-04-12T00:00:00Z	2022-04-12T00:00:00Z
ssa-273799	SSA-273799: Message Integrity Protection Bypass Vulnerability in SIMATIC Products	2019-12-10T00:00:00Z	2022-04-12T00:00:00Z
ssa-703715	SSA-703715: Information Disclosure Vulnerability in Climatix POL909 (AWM and AWB)	2021-11-09T00:00:00Z	2022-03-08T00:00:00Z
ssa-669158	SSA-669158: DNS Client Vulnerabilities in SIMOTICS CONNECT 400	2021-04-13T00:00:00Z	2022-03-08T00:00:00Z
ssa-594438	SSA-594438: Remote Code Execution and Denial-of-Service Vulnerability in multiple RUGGEDCOM ROX products	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-406691	SSA-406691: Buffer Vulnerabilities in DHCP function of RUGGEDCOM ROX products	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-389290	SSA-389290: Third-Party Component Vulnerabilities in SINEC INS	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z

ID	Description	Published	Updated
rhsa-2026:2351	Red Hat Security Advisory: VolSync v0.13 security fixes and container updates	2026-02-09T15:55:39+00:00	2026-02-17T08:02:25+00:00
rhsa-2026:2172	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.15 security, enhancement & bug fix update	2026-02-05T18:06:29+00:00	2026-02-17T08:02:22+00:00
rhsa-2026:2164	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16 security, enhancement & bug fix update	2026-02-05T17:49:21+00:00	2026-02-17T08:02:22+00:00
rhsa-2026:2155	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update	2026-02-05T17:17:50+00:00	2026-02-17T08:02:22+00:00
rhsa-2026:2130	Red Hat Security Advisory: OpenShift Container Platform 4.21.1 security and extras update	2026-02-10T08:58:36+00:00	2026-02-17T08:02:18+00:00
rhsa-2026:2129	Red Hat Security Advisory: OpenShift Container Platform 4.21.1 bug fix and security update	2026-02-10T09:39:14+00:00	2026-02-17T08:02:17+00:00
rhsa-2026:2120	Red Hat Security Advisory: OpenShift Container Platform 4.20.14 security and extras update	2026-02-11T02:51:09+00:00	2026-02-17T08:02:14+00:00
rhsa-2026:2082	Red Hat Security Advisory: OpenShift Container Platform 4.21.1 packages and security update	2026-02-10T11:30:56+00:00	2026-02-17T08:02:11+00:00
rhsa-2026:2079	Red Hat Security Advisory: OpenShift Container Platform 4.18.33 security and extras update	2026-02-11T04:27:43+00:00	2026-02-17T08:02:11+00:00
rhsa-2026:2071	Red Hat Security Advisory: OpenShift Container Platform 4.18.33 packages and security update	2026-02-11T04:55:25+00:00	2026-02-17T08:02:10+00:00
rhsa-2026:2066	Red Hat Security Advisory: OpenShift Container Platform 4.12.85 security and extras update	2026-02-12T10:52:37+00:00	2026-02-17T08:02:09+00:00
rhsa-2026:2065	Red Hat Security Advisory: OpenShift Container Platform 4.12.85 bug fix and security update	2026-02-12T12:19:52+00:00	2026-02-17T08:02:08+00:00
rhsa-2026:1838	Red Hat Security Advisory: image-builder security update	2026-02-05T16:02:26+00:00	2026-02-17T08:02:06+00:00
rhsa-2026:1837	Red Hat Security Advisory: osbuild-composer security update	2026-02-05T16:03:01+00:00	2026-02-17T08:02:06+00:00
rhsa-2026:1577	Red Hat Security Advisory: OpenShift Container Platform 4.17.48 bug fix and security update	2026-02-04T08:15:24+00:00	2026-02-17T08:01:43+00:00
rhsa-2026:1556	Red Hat Security Advisory: OpenShift Container Platform 4.20.13 security and extras update	2026-02-04T04:16:28+00:00	2026-02-17T08:01:41+00:00
rhsa-2026:1555	Red Hat Security Advisory: OpenShift Container Platform 4.20.13 bug fix and security update	2026-02-04T04:50:43+00:00	2026-02-17T08:01:40+00:00
rhsa-2026:1520	Red Hat Security Advisory: Red Hat multicluster global hub 1.6.1 security update	2026-01-29T01:14:38+00:00	2026-02-17T08:01:39+00:00
rhsa-2026:1552	Red Hat Security Advisory: OpenShift Container Platform 4.19.23 bug fix and security update	2026-02-04T10:50:17+00:00	2026-02-17T08:01:38+00:00
rhsa-2026:1549	Red Hat Security Advisory: OpenShift Container Platform 4.15.61 bug fix and security update	2026-02-05T15:48:33+00:00	2026-02-17T08:01:36+00:00
rhsa-2026:1488	Red Hat Security Advisory: Red Hat OpenShift GitOps v1.19.1 security update	2026-01-28T12:24:36+00:00	2026-02-17T08:01:34+00:00
rhsa-2026:1381	Red Hat Security Advisory: osbuild-composer security update	2026-01-27T16:31:53+00:00	2026-02-17T08:01:32+00:00
rhsa-2026:1380	Red Hat Security Advisory: osbuild-composer security update	2026-01-27T16:02:11+00:00	2026-02-17T08:01:31+00:00
rhsa-2026:1379	Red Hat Security Advisory: osbuild-composer security update	2026-01-27T16:11:53+00:00	2026-02-17T08:01:31+00:00
rhsa-2026:1378	Red Hat Security Advisory: osbuild-composer security update	2026-01-27T15:37:28+00:00	2026-02-17T08:01:31+00:00
rhsa-2026:1377	Red Hat Security Advisory: image-builder security update	2026-01-27T16:34:13+00:00	2026-02-17T08:01:29+00:00
rhsa-2026:1072	Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.15.1 security update	2026-01-25T22:43:46+00:00	2026-02-17T08:01:16+00:00
rhsa-2026:1071	Red Hat Security Advisory: multicluster engine for Kubernetes v2.10.1 security update	2026-01-25T22:31:05+00:00	2026-02-17T08:01:16+00:00
rhsa-2026:1067	Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.10.1	2026-01-23T16:45:25+00:00	2026-02-17T08:01:15+00:00
rhsa-2026:1062	Red Hat Security Advisory: OpenShift Container Platform 4.18.32 bug fix and security update	2026-02-03T17:11:40+00:00	2026-02-17T08:01:14+00:00

ID	Description	Published	Updated
icsa-25-205-03	Honeywell Experion PKS (Update A)	2025-07-24T06:00:00.000000Z	2025-08-04T06:00:00.000000Z
icsa-25-212-02	Rockwell Automation Lifecycle Services with VMware	2025-07-31T06:00:00.000000Z	2025-07-31T06:00:00.000000Z
icsa-25-210-03	Delta Electronics DTN Soft	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-25-210-02	Samsung HVAC DMS	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-25-210-01	National Instruments LabVIEW	2025-07-29T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-24-338-06	Fuji Electric Tellus Lite V-Simulator (Update A)	2024-12-03T07:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-24-158-04	Johnson Controls Software House iStar Door Controller (Update A)	2024-06-06T06:00:00.000000Z	2025-07-29T06:00:00.000000Z
icsa-25-273-03	Festo CPX-CEC-C1 and CPX-CMXX	2022-09-20T10:00:00.000000Z	2025-07-28T10:00:00.000000Z
icsa-25-205-04	LG Innotek Camera Model LNV5110R	2025-07-25T05:00:00.000000Z	2025-07-25T05:00:00.000000Z
icsma-25-205-01	Medtronic MyCareLink Patient Monitor	2025-07-24T06:00:00.000000Z	2025-07-24T06:00:00.000000Z
icsa-25-205-02	Network Thermostat X-Series WiFi Thermostats	2025-07-24T06:00:00.000000Z	2025-07-24T06:00:00.000000Z
icsa-25-203-04	Schneider Electric EcoStruxure Power Operation	2025-07-22T06:00:00.000000Z	2025-07-22T06:00:00.000000Z
icsa-25-203-02	Lantronix Provisioning Manager	2025-07-22T06:00:00.000000Z	2025-07-22T06:00:00.000000Z
icsa-25-203-01	DuraComm DP-10iN-100-MU	2025-07-22T06:00:00.000000Z	2025-07-22T06:00:00.000000Z
icsa-24-151-02	Fuji Electric Monitouch V-SFT (Update A)	2024-05-30T06:00:00.000000Z	2025-07-18T06:00:00.000000Z
icsma-25-198-01	Panoramic Corporation Digital Imaging Software	2025-07-17T06:00:00.000000Z	2025-07-17T06:00:00.000000Z
icsa-25-198-01	Leviton AcquiSuite and Energy Monitoring Hub	2025-07-17T06:00:00.000000Z	2025-07-17T06:00:00.000000Z
icsa-24-191-05	Johnson Controls Inc. Software House C●CURE 9000 (Update B)	2024-07-09T06:00:00.000000Z	2025-07-17T06:00:00.000000Z
icsa-25-196-03	LITEON IC48A and IC80A EV Chargers	2025-07-15T06:00:00.000000Z	2025-07-15T06:00:00.000000Z
icsa-25-196-02	ABB RMC-100	2025-07-15T06:00:00.000000Z	2025-07-15T06:00:00.000000Z
icsa-25-191-09	KUNBUS RevPi Webstatus	2025-07-10T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-191-08	Advantech iView	2025-07-10T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-191-07	Delta Electronics DTM Soft	2025-07-10T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-135-19	ECOVACS DEEBOT Vacuum and Base Station (Update A)	2025-05-15T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-121-01	KUNBUS GmbH Revolution Pi (Update A)	2025-05-01T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-24-263-02	IDEC Products (Update A)	2024-09-19T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-105-03	Siemens SIMOCODE, SIMATIC, SIPLUS, SIDOOR, SIWAREX	2025-04-08T00:00:00.000000Z	2025-07-10T00:00:00.000000Z
icsa-25-189-01	Emerson ValveLink Products	2025-07-08T06:00:00.000000Z	2025-07-08T06:00:00.000000Z
icsa-25-203-06	Schneider Electric EcoStruxture IT Data Center Expert	2025-07-08T04:00:00.000000Z	2025-07-08T04:00:00.000000Z
icsa-25-203-05	Schneider Electric System Monitor Application	2025-07-08T04:00:00.000000Z	2025-07-08T04:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-asaftd-info-disclose-9ejtycmb	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Information Disclosure Vulnerability	2020-05-06T16:00:00+00:00	2024-02-21T15:57:20+00:00
cisco-sa-clamav-hdffu6t	ClamAV OLE2 File Format Parsing Denial of Service Vulnerability	2024-02-07T16:00:00+00:00	2024-02-13T17:57:43+00:00
cisco-sa-expressway-csrf-knnzdmj3	Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities	2024-02-07T16:00:00+00:00	2024-02-12T17:55:43+00:00
cisco-sa-ftd-snort3acp-bypass-3bdr2beh	Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability	2023-11-01T16:00:00+00:00	2024-02-06T18:30:17+00:00
cisco-sa-cuc-unauth-afu-froyscsd	Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability	2024-01-10T16:00:00+00:00	2024-02-05T17:23:14+00:00
cisco-sa-cucm-rce-bwnzqcum	Cisco Unified Communications Products Remote Code Execution Vulnerability	2024-01-24T16:00:00+00:00	2024-01-30T19:16:46+00:00
cisco-sa-sb-bus-acl-bypass-5zn9hnjk	Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-cuc-xss-9tfuu5ms	Cisco Unity Connection Cross-Site Scripting Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-sdwan-privesc-cli-xkgwmqku	Cisco SD-WAN Software Arbitrary File Corruption Vulnerability	2022-09-28T16:00:00+00:00	2024-01-23T23:05:35+00:00
cisco-sa-sd-wan-file-access-vw36d28p	Cisco SD-WAN Solution Improper Access Control Vulnerability	2022-04-13T16:00:00+00:00	2024-01-23T21:31:33+00:00
cisco-sa-broadworks-xss-6syj82ju	Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-23T17:43:55+00:00
cisco-sa-tms-portal-xss-axnevg3s	Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-12T15:18:40+00:00
cisco-sa-thouseyes-privesc-dmzhg3qv	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-sb-wap-inject-bhstwgxo	Cisco WAP371 Wireless Access Point Command Injection Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-pi-epnm-wkzjeyeq	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ise-xss-bl4vtml	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ise-priv-esc-kjlp2aw	Cisco Identity Services Engine Privilege Escalation Vulnerabilities	2023-09-06T16:00:00+00:00	2024-01-08T19:01:50+00:00
cisco-sa-struts-c2kcmkmt	Apache Struts Vulnerability Affecting Cisco Products: December 2023	2023-12-12T16:00:00+00:00	2023-12-21T22:23:04+00:00
cisco-sa-http2-reset-d8kf32vz	HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023	2023-10-16T16:00:00+00:00	2023-12-21T17:09:38+00:00
cisco-sa-asa-ssl-vpn-y88qom77	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability	2023-12-05T16:00:00+00:00	2023-12-05T16:00:00+00:00
cisco-sa-ftd-icmpv6-dos-4emklun	Cisco Firepower Threat Defense Software and Cisco FirePOWER Services ICMPv6 with Snort 2 Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-16T21:10:27+00:00
cisco-sa-uipphone-xss-ncmuykqa	Cisco IP Phone Stored Cross-Site Scripting Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-secure-endpoint-dos-rzogfknd	Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-ise-mult-j-kxpnynr	Cisco Identity Services Engine Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-appd-php-authpriv-gebwtvu5	Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-accsc-dos-9slzkz8	Cisco Secure Client Software Denial of Service Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-asa-icmpv6-t5tzqwnd	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:50:35+00:00
cisco-sa-asa-webvpn-dos-3ghzqbas	Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-02T13:47:35+00:00
cisco-sa-asa-webvpn-loeksnmo	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability	2022-08-10T16:00:00+00:00	2023-11-01T16:00:01+00:00
cisco-sa-snort-ftd-zxytnjom	Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-38532	net: libwx: properly reset Rx ring descriptor	2025-08-02T00:00:00.000Z	2026-02-21T03:41:54.000Z
msrc_cve-2025-38419	remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach()	2025-07-02T00:00:00.000Z	2026-02-21T03:41:48.000Z
msrc_cve-2025-15444	Crypt::Sodium::XS module versions prior to 0.000042, for Perl, include a vulnerable version of libsodium	2026-01-02T00:00:00.000Z	2026-02-21T03:41:16.000Z
msrc_cve-2025-46394	In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences.	2025-04-02T00:00:00.000Z	2026-02-21T03:41:15.000Z
msrc_cve-2025-37858	fs/jfs: Prevent integer overflow in AG size calculation	2025-05-02T00:00:00.000Z	2026-02-21T03:41:03.000Z
msrc_cve-2025-38406	wifi: ath6kl: remove WARN on bad firmware input	2025-07-02T00:00:00.000Z	2026-02-21T03:40:51.000Z
msrc_cve-2025-30682	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	2025-04-02T00:00:00.000Z	2026-02-21T03:40:51.000Z
msrc_cve-2025-38535	phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode	2025-08-02T00:00:00.000Z	2026-02-21T03:40:17.000Z
msrc_cve-2025-39901	i40e: remove read access to debugfs files	2025-10-02T00:00:00.000Z	2026-02-21T03:40:03.000Z
msrc_cve-2024-58251	In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv[0] containing an ANSI terminal escape sequence, leading to a denial of service (terminal locked up) when netstat is used by a victim.	2025-04-02T00:00:00.000Z	2026-02-21T03:39:55.000Z
msrc_cve-2025-48637	In multiple functions of mem_protect.c, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.	2025-12-02T00:00:00.000Z	2026-02-21T03:39:48.000Z
msrc_cve-2025-21574	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Parser). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).	2025-04-02T00:00:00.000Z	2026-02-21T03:39:17.000Z
msrc_cve-2023-46847	Squid: denial of service in http digest authentication	2023-11-01T07:00:00.000Z	2026-02-21T03:39:10.000Z
msrc_cve-2025-39927	ceph: fix race condition validating r_parent before applying state	2025-10-02T00:00:00.000Z	2026-02-21T03:37:46.000Z
msrc_cve-2025-38353	drm/xe: Fix taking invalid lock on wedge	2025-07-02T00:00:00.000Z	2026-02-21T03:37:46.000Z
msrc_cve-2025-30715	Vulnerability in the MySQL Client product of Oracle MySQL (component: C API). Supported versions that are affected are 5.7.32 and prior and 8.0.22 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Client. CVSS 3.1 Base Score 5.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H).	2025-04-02T00:00:00.000Z	2026-02-21T03:37:45.000Z
msrc_cve-2025-2953	PyTorch torch.mkldnn_max_pool2d denial of service	2025-03-02T00:00:00.000Z	2026-02-21T03:37:40.000Z
msrc_cve-2023-5824	Squid: dos against http and https	2023-11-01T07:00:00.000Z	2026-02-21T03:37:13.000Z
msrc_cve-2025-14819	OpenSSL partial chain store policy bypass	2026-01-02T00:00:00.000Z	2026-02-21T03:37:04.000Z
msrc_cve-2025-8715	PostgreSQL pg_dump newline in object name executes arbitrary code in psql client and in restore target server	2025-08-02T00:00:00.000Z	2026-02-21T03:36:12.000Z
msrc_cve-2025-21585	Vulnerability in the MySQL Server product of Oracle MySQL	2025-04-02T00:00:00.000Z	2026-02-21T03:36:11.000Z
msrc_cve-2025-38411	netfs: Fix double put of request	2025-07-02T00:00:00.000Z	2026-02-21T03:35:12.000Z
msrc_cve-2025-3576	Krb5: kerberos rc4-hmac-md5 checksum vulnerability enabling message spoofing via md5 collisions	2025-04-02T00:00:00.000Z	2026-02-21T03:35:11.000Z
msrc_cve-2025-9230	Out-of-bounds read & write in RFC 3211 KEK Unwrap	2025-09-02T00:00:00.000Z	2026-02-21T03:34:48.000Z
msrc_cve-2025-8714	PostgreSQL pg_dump lets superuser of origin server execute arbitrary code in psql client	2025-08-02T00:00:00.000Z	2026-02-21T03:34:40.000Z
msrc_cve-2025-30695	Vulnerability in the MySQL Server product of Oracle MySQL (component: InnoDB). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server as well as unauthorized update, insert or delete access to some of MySQL Server accessible data. CVSS 3.1 Base Score 5.5 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H).	2025-04-02T00:00:00.000Z	2026-02-21T03:34:39.000Z
msrc_cve-2025-32434	PyTorch: `torch.load` with `weights_only=True` leads to remote code execution	2025-04-02T00:00:00.000Z	2026-02-21T03:33:35.000Z
msrc_cve-2025-12084	Quadratic complexity in node ID cache clearing	2025-12-02T00:00:00.000Z	2026-02-21T03:33:23.000Z
msrc_cve-2025-15079	libssh global known_hosts override	2026-01-02T00:00:00.000Z	2026-02-21T03:33:13.000Z
msrc_cve-2025-8713	PostgreSQL optimizer statistics can expose sampled data within a view, partition, or child table	2025-08-02T00:00:00.000Z	2026-02-21T03:33:05.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201108-0285	Double free vulnerability in libxml2, as used in Google Chrome before 13.0.782.215, allow…	2025-12-22T22:28:37.620000Z
var-201302-0132	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:28:05.896000Z
var-202004-2201	A memory consumption issue was addressed with improved memory handling. This issue is fix…	2025-12-22T22:28:05.590000Z
var-202212-2075	An out-of-bounds read in Organization Specific TLV was found in various versions of Openv…	2025-12-22T22:28:05.282000Z
var-202206-1157	Incomplete cleanup in specific special register write operations for some Intel(R) Proces…	2025-12-22T22:28:05.116000Z
var-201306-0247	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:28:04.566000Z
var-201405-0244	The do_ssl3_write function in s3_pkt.c in OpenSSL 1.x through 1.0.1g, when SSL_MODE_RELEA…	2025-12-22T22:28:01.243000Z
var-202201-0437	Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2. Summary: The Migra…	2025-12-22T22:26:21.708000Z
var-201705-3873	In Open vSwitch (OvS) 2.7.0, while parsing an OFPT_QUEUE_GET_CONFIG_REPLY type OFP 1.0 me…	2025-12-22T22:26:20.552000Z
var-200705-0670	The png_handle_tRNS function in pngrutil.c in libpng before 1.0.25 and 1.2.x before 1.2.1…	2025-12-22T22:26:17.477000Z
var-201404-0592	The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly h…	2025-12-22T22:25:45.985000Z
var-202002-1458	eap.c in pppd in ppp 2.4.2 through 2.4.8 has an rhostname buffer overflow in the eap_requ…	2025-12-22T22:25:40.910000Z
var-202103-0920	An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be …	2025-12-22T22:25:38.767000Z
var-200110-0176	Mozilla Network Security Service (NSS) library before 3.11.3, as used in Mozilla Firefox …	2025-12-22T22:25:38.536000Z
var-200609-1400	The Security Framework in Apple Mac OS X 10.4 through 10.4.8 allows remote attackers to c…	2025-12-22T22:25:37.911000Z
var-200110-0214	The Apple Type Services (ATS) server in Mac OS X 10.4.8 and earlier does not securely cre…	2025-12-22T22:25:36.634000Z
var-202103-1554	Netty is an open-source, asynchronous event-driven network application framework for rapi…	2025-12-22T22:25:35.567000Z
var-201804-1163	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2025-12-22T22:25:34.525000Z
var-201603-0244	Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and…	2025-12-22T22:25:33.303000Z
var-201205-0305	sapi/cgi/cgi_main.c in PHP before 5.3.12 and 5.4.x before 5.4.2, when configured as a CGI…	2025-12-22T22:25:33.148000Z
var-202006-1838	Perl before 5.30.3 on 32-bit platforms allows a heap-based buffer overflow because nested…	2025-12-22T22:24:22.909000Z
var-200703-0019	Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at…	2025-12-22T22:24:21.795000Z
var-201103-0287	The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and ea…	2025-12-22T22:24:09.603000Z
var-200703-0016	Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted at…	2025-12-22T22:24:09.518000Z
var-202109-1803	ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No in…	2025-12-22T22:24:04.207000Z
var-201302-0150	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2025-12-22T22:23:39.487000Z
var-201110-0394	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2025-12-22T22:23:38.465000Z
var-202004-1972	A race condition was addressed with additional validation. This issue is fixed in iOS 13.…	2025-12-22T22:23:38.165000Z
var-201605-0467	Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4…	2025-12-22T22:23:36.468000Z
var-201710-1400	An issue was discovered in certain Apple products. iOS before 11 is affected. Safari befo…	2025-12-22T22:23:35.804000Z

ID	Description	Published	Updated
jvndb-2022-000060	"Hulu" App for iOS vulnerable to improper server certificate verification	2022-07-28T09:51+09:00	2024-06-14T12:25+09:00
jvndb-2022-000063	PukiWiki vulnerable to cross-site scripting	2022-08-23T14:40+09:00	2024-06-14T12:00+09:00
jvndb-2022-002339	Multiple vulnerabilities in PukiWiki	2022-08-24T14:17+09:00	2024-06-14T11:55+09:00
jvndb-2022-000065	Multiple vulnerabilities in Exment	2022-08-24T14:23+09:00	2024-06-14T11:09+09:00
jvndb-2022-002337	UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions	2022-08-23T14:31+09:00	2024-06-14T10:24+09:00
jvndb-2022-000064	Movable Type XMLRPC API vulnerable to command injection	2022-08-24T15:58+09:00	2024-06-13T18:11+09:00
jvndb-2023-001291	Multiple vulnerabilities in Trend Micro Maximum Security	2023-03-03T11:10+09:00	2024-06-13T17:06+09:00
jvndb-2022-000045	FreeBSD vulnerable to denial-of-service (DoS)	2022-06-15T12:28+09:00	2024-06-13T16:31+09:00
jvndb-2022-000066	Multiple vulnerabilities in CentreCOM AR260S V2	2022-08-29T17:37+09:00	2024-06-13T16:21+09:00
jvndb-2023-000044	JINS MEME CORE uses a hard-coded cryptographic key	2023-05-08T15:13+09:00	2024-06-13T16:19+09:00
jvndb-2023-000042	WordPress Plugin "Newsletter" vulnerable to cross-site scripting	2023-05-09T14:42+09:00	2024-06-13T16:14+09:00
jvndb-2022-000068	SYNCK GRAPHICA Mailform Pro CGI vulnerable to information disclosure	2022-09-05T15:22+09:00	2024-06-13T16:00+09:00
jvndb-2022-002448	Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security agents for Windows	2022-10-11T17:02+09:00	2024-06-13T14:30+09:00
jvndb-2022-002544	Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service	2022-10-20T16:18+09:00	2024-06-13T13:58+09:00
jvndb-2022-000067	Installer of Ricoh Device Software Manager may insecurely load Dynamic Link Libraries	2022-08-29T15:57+09:00	2024-06-13T13:53+09:00
jvndb-2022-000070	Movable Type plugin A-Form vulnerable to cross-site scripting	2022-09-09T15:01+09:00	2024-06-13T13:49+09:00
jvndb-2022-000069	PowerCMS XMLRPC API vulnerable to command injection	2022-09-02T15:49+09:00	2024-06-13T11:44+09:00
jvndb-2022-002367	OpenAM (OpenAM Consortium Edition) vulnerable to open redirect	2022-09-16T15:30+09:00	2024-06-13T11:39+09:00
jvndb-2022-000071	Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service	2022-09-14T18:15+09:00	2024-06-13T11:34+09:00
jvndb-2022-000073	Multiple vulnerabilities in EC-CUBE	2022-09-15T16:30+09:00	2024-06-13T11:09+09:00
jvndb-2022-000072	EC-CUBE plugin "Product Image Bulk Upload Plugin" vulnerable to insufficient verification in uploading files	2022-09-15T16:13+09:00	2024-06-13T11:03+09:00
jvndb-2023-000015	Multiple vulnerabilities in PLANEX COMMUNICATIONS Network Camera CS-WMV02G	2023-02-13T14:48+09:00	2024-06-12T17:03+09:00
jvndb-2022-002537	Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE	2022-10-19T16:23+09:00	2024-06-12T16:54+09:00
jvndb-2022-000081	Lemon8 App fails to restrict access permissions	2022-10-19T14:08+09:00	2024-06-12T16:39+09:00
jvndb-2024-000062	Denial-of-service (DoS) vulnerability in IPCOM WAF function	2024-06-12T15:03+09:00	2024-06-12T15:03+09:00
jvndb-2022-000075	IPFire WebUI vulnerable to cross-site scripting	2022-10-06T13:05+09:00	2024-06-12T14:28+09:00
jvndb-2023-000013	Ichiran App vulnerable to improper server certificate verification	2023-02-06T14:31+09:00	2024-06-12T14:25+09:00
jvndb-2022-000074	BookStack vulnerable to cross-site scripting	2022-09-30T14:48+09:00	2024-06-12T14:07+09:00
jvndb-2022-000077	The installer of Sony Content Transfer may insecurely load Dynamic Link Libraries	2022-10-11T15:08+09:00	2024-06-12T12:12+09:00
jvndb-2022-000076	Growi vulnerable to improper access control	2022-10-07T14:30+09:00	2024-06-12T12:04+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2026:20064-1	Security update for libpcap	2026-01-08T16:16:36Z	2026-01-08T16:16:36Z
suse-su-2026:20045-1	Security update for glib2	2026-01-08T16:00:18Z	2026-01-08T16:00:18Z
suse-su-2026:20044-1	Security update for rsync	2026-01-08T15:49:46Z	2026-01-08T15:49:46Z
suse-su-2026:20043-1	Security update for python-tornado6	2026-01-08T15:48:09Z	2026-01-08T15:48:09Z
suse-su-2026:20042-1	Security update for curl	2026-01-08T15:18:54Z	2026-01-08T15:18:54Z
suse-su-2026:20041-1	Security update for bluez	2026-01-08T15:07:04Z	2026-01-08T15:07:04Z
suse-su-2026:20062-1	Security update for curl	2026-01-08T14:51:21Z	2026-01-08T14:51:21Z
suse-su-2026:20061-1	Security update for openvswitch	2026-01-08T14:43:50Z	2026-01-08T14:43:50Z
suse-su-2026:0073-1	Security update for ImageMagick	2026-01-08T13:22:41Z	2026-01-08T13:22:41Z
suse-su-2026:0072-1	Security update for ImageMagick	2026-01-08T13:22:28Z	2026-01-08T13:22:28Z
suse-su-2026:0071-1	Security update for php8	2026-01-08T13:22:08Z	2026-01-08T13:22:08Z
suse-su-2026:0070-1	Security update for qemu	2026-01-08T13:21:59Z	2026-01-08T13:21:59Z
suse-su-2026:0069-1	Security update for rsync	2026-01-08T13:21:48Z	2026-01-08T13:21:48Z
suse-su-2026:0068-1	Security update for libvirt	2026-01-08T12:22:40Z	2026-01-08T12:22:40Z
suse-su-2026:0067-1	Security update for podman	2026-01-08T12:22:16Z	2026-01-08T12:22:16Z
suse-su-2026:0066-1	Security update for curl	2026-01-08T12:21:35Z	2026-01-08T12:21:35Z
suse-su-2026:0063-1	Security update for libpcap	2026-01-08T09:36:26Z	2026-01-08T09:36:26Z
suse-su-2026:0062-1	Security update for libpcap	2026-01-08T09:36:12Z	2026-01-08T09:36:12Z
suse-su-2026:0061-1	Security update for ImageMagick	2026-01-07T18:33:22Z	2026-01-07T18:33:22Z
suse-su-2026:0060-1	Security update for capstone	2026-01-07T16:02:47Z	2026-01-07T16:02:47Z
suse-su-2026:0059-1	Security update for ImageMagick	2026-01-07T16:01:56Z	2026-01-07T16:01:56Z
suse-su-2026:20039-1	Security update for the Linux Kernel	2026-01-07T12:33:45Z	2026-01-07T12:33:45Z
suse-su-2026:0053-1	Security update for libpcap	2026-01-07T11:03:52Z	2026-01-07T11:03:52Z
suse-su-2026:20059-1	Security update for the Linux Kernel	2026-01-07T10:55:44Z	2026-01-07T10:55:44Z
suse-su-2026:20022-1	Security update of valkey	2026-01-07T09:35:57Z	2026-01-07T09:35:57Z
suse-su-2026:0052-1	Security update for curl	2026-01-07T09:28:37Z	2026-01-07T09:28:37Z
suse-su-2026:0051-1	Security update for curl	2026-01-07T09:28:27Z	2026-01-07T09:28:27Z
suse-su-2026:0050-1	Security update for curl	2026-01-07T09:28:15Z	2026-01-07T09:28:15Z
suse-su-2026:0044-1	Security update for mozjs60	2026-01-06T16:10:16Z	2026-01-06T16:10:16Z
suse-su-2026:0043-1	Security update for qemu	2026-01-06T16:03:07Z	2026-01-06T16:03:07Z

ID	Description	Published	Updated
opensuse-su-2025:15778-1	libwireshark19-4.6.1-2.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15777-1	python311-spotipy-2.25.2-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15776-1	python311-pypdf-6.4.0-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15775-1	opa-1.11.0-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15774-1	netbird-0.60.3-1.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:15773-1	cheat-4.4.2-3.1 on GA media	2025-11-27T00:00:00Z	2025-11-27T00:00:00Z
opensuse-su-2025:20091-1	Security update for the Linux Kernel	2025-11-26T17:04:24Z	2025-11-26T17:04:24Z
opensuse-su-2025:20090-1	Security update for curl	2025-11-26T14:30:14Z	2025-11-26T14:30:14Z
opensuse-su-2025:20089-1	Security update for mysql-connector-java	2025-11-26T08:12:25Z	2025-11-26T08:12:25Z
opensuse-su-2025:15772-1	kubevirt-container-disk-1.6.3-1.1 on GA media	2025-11-26T00:00:00Z	2025-11-26T00:00:00Z
opensuse-su-2025:15771-1	git-bug-0.10.1-3.1 on GA media	2025-11-26T00:00:00Z	2025-11-26T00:00:00Z
opensuse-su-2025:15770-1	bash-git-prompt-2.7.1-4.1 on GA media	2025-11-26T00:00:00Z	2025-11-26T00:00:00Z
opensuse-su-2025:20083-1	Security update for lasso	2025-11-25T13:27:21Z	2025-11-25T13:27:21Z
opensuse-su-2025:20081-1	Security update for the Linux Kernel	2025-11-25T07:35:00Z	2025-11-25T07:35:00Z
opensuse-su-2025:15769-1	libwireshark19-4.6.1-1.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15768-1	python310-3.10.19-2.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15767-1	openbao-2.4.4-1.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15766-1	libsoup-3_0-0-3.6.5-9.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15765-1	gnutls-3.8.11-1.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15764-1	etcd-for-k8s1.32-3.5.24-1.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15763-1	cloudflared-2025.11.1-1.1 on GA media	2025-11-25T00:00:00Z	2025-11-25T00:00:00Z
opensuse-su-2025:15762-1	librnp0-0.18.1-1.1 on GA media	2025-11-24T00:00:00Z	2025-11-24T00:00:00Z
opensuse-su-2025:15761-1	rclone-1.72.0-1.1 on GA media	2025-11-24T00:00:00Z	2025-11-24T00:00:00Z
opensuse-su-2025:15760-1	python311-3.11.14-2.1 on GA media	2025-11-24T00:00:00Z	2025-11-24T00:00:00Z
opensuse-su-2025:15759-1	libIex-3_4-33-3.4.3-2.1 on GA media	2025-11-24T00:00:00Z	2025-11-24T00:00:00Z
opensuse-su-2025:15758-1	fontforge-20251009-2.1 on GA media	2025-11-24T00:00:00Z	2025-11-24T00:00:00Z
opensuse-su-2025:15757-1	curl-8.17.0-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15756-1	blender-5.0-5.0.0-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15755-1	blender-4.5-4.5.4-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z
opensuse-su-2025:15754-1	ansible-core-2.19-2.19.4-1.1 on GA media	2025-11-21T00:00:00Z	2025-11-21T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
bit-drupal-2025-13081	Drupal core - Moderately critical - Gadget chain - SA-CORE-2025-006	2025-11-25T17:56:43.353Z	2025-11-25T18:26:29.568Z
bit-drupal-2025-13080	Drupal core - Moderately critical - Denial of Service - SA-CORE-2025-005	2025-11-25T17:56:41.671Z	2025-11-25T18:26:29.568Z
bit-postgresql-2025-12818	PostgreSQL libpq undersizes allocations, via integer wraparound	2025-11-21T08:47:38.070Z	2025-11-21T09:06:15.683Z
bit-postgresql-2025-12817	PostgreSQL CREATE STATISTICS does not check for schema CREATE privilege	2025-11-21T08:47:36.690Z	2025-11-21T09:06:15.683Z
bit-golang-2025-58187	Quadratic complexity when checking name constraints in crypto/x509	2025-11-06T12:58:22.304Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-7736	Incorrect Authorization in GitLab	2025-11-20T09:05:14.844Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-7000	Insertion of Sensitive Information Into Sent Data in GitLab	2025-11-21T09:04:35.128Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-6945	Improper Neutralization of Special Elements used in a Command ('Command Injection') in GitLab	2025-11-21T09:04:31.573Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-6171	Missing Authorization in GitLab	2025-11-21T09:04:22.209Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-2615	Insertion of Sensitive Information Into Sent Data in GitLab	2025-11-20T09:04:09.576Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-12983	Memory Allocation with Excessive Size Value in GitLab	2025-11-20T09:03:27.972Z	2025-11-21T09:06:15.683Z
bit-gitlab-2025-11990	Improper Handling of URL Encoding (Hex Encoding) in GitLab	2025-11-20T09:03:19.328Z	2025-11-20T09:06:46.640Z
bit-gitlab-2025-11865	Incorrect Authorization in GitLab	2025-11-20T09:03:10.744Z	2025-11-20T09:06:46.640Z
bit-moodle-2025-62401	Moodle: possible to bypass timer in timed assignments	2025-11-17T23:47:50.898Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62400	Moodle: hidden group names visible to event creators	2025-11-17T23:47:49.403Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62399	Moodle: password brute force risk when mobile/web services enabled	2025-11-17T23:47:47.926Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62398	Moodle: possible to bypass mfa	2025-11-17T23:47:46.528Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62397	Moodle: router produces json instead of 404 error for invalid course id	2025-11-17T23:47:45.012Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62396	Moodle: router (r.php) could expose application directories	2025-11-17T23:47:43.645Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62395	Moodle: external cohort search service leaks system cohort data	2025-11-17T23:47:42.131Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62394	Moodle: quiz notifications sent to suspended participants	2025-11-17T23:47:40.687Z	2025-11-18T00:06:24.423Z
bit-moodle-2025-62393	Moodle: course access permissions not properly checked in course_output_fragment_course_overview	2025-11-17T23:47:39.287Z	2025-11-18T00:06:24.423Z
bit-mongodb-2025-10061	Malformed $group Query May Cause MongoDB Server to Crash	2025-09-19T09:58:18.588Z	2025-11-14T15:09:14.122Z
bit-kibana-2025-37734	Kibana Origin Validation Error	2025-11-14T14:40:47.948Z	2025-11-14T15:09:14.122Z
bit-elk-2025-37734	Kibana Origin Validation Error	2025-11-14T14:38:05.480Z	2025-11-14T15:09:14.122Z
bit-valkey-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:52:36.400Z	2025-11-13T11:23:28.166Z
bit-redis-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:51:25.578Z	2025-11-13T11:23:28.166Z
bit-keydb-2025-46817	Lua library commands may lead to integer overflow and potential RCE	2025-10-08T08:43:20.393Z	2025-11-13T11:23:28.166Z
bit-discourse-2025-48954	Discourse vulnerable to XSS via user-provided query parameter in oauth failure flow	2025-07-01T17:44:46.702Z	2025-11-13T11:23:28.166Z
bit-parse-2025-64430	Parse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI Format	2025-11-12T11:45:02.117Z	2025-11-12T12:05:53.614Z

ID	Description	Published	Updated

ID	Published	Updated
drupal-contrib-2023-007	2023-03-01T17:11:03.000Z	2023-08-10T14:22:08.000Z
drupal-contrib-2023-008	2023-03-01T17:38:09.000Z	2023-08-10T14:21:21.000Z
drupal-contrib-2023-009	2023-03-08T17:46:44.000Z	2023-08-10T14:20:59.000Z
drupal-contrib-2023-010	2023-03-15T17:22:57.000Z	2023-08-10T14:20:35.000Z
drupal-contrib-2023-012	2023-03-29T17:44:58.000Z	2023-08-10T14:19:50.000Z
drupal-contrib-2023-013	2023-04-12T16:09:25.000Z	2023-08-10T14:19:21.000Z
drupal-contrib-2023-014	2023-05-03T15:44:12.000Z	2023-08-10T13:58:54.000Z
drupal-contrib-2023-016	2023-05-31T13:14:25.000Z	2023-08-10T13:58:03.000Z
drupal-contrib-2023-017	2023-05-31T13:18:52.000Z	2023-08-10T13:57:22.000Z
drupal-contrib-2023-019	2023-05-31T13:22:44.000Z	2023-08-10T13:56:55.000Z
drupal-contrib-2023-018	2023-05-31T13:20:43.000Z	2023-08-10T13:56:48.000Z
drupal-contrib-2023-020	2023-06-14T14:52:36.000Z	2023-08-10T13:54:32.000Z
drupal-contrib-2023-021	2023-06-21T17:03:14.000Z	2023-08-10T13:53:57.000Z
drupal-contrib-2023-023	2023-06-28T17:02:13.000Z	2023-08-10T13:53:00.000Z
drupal-contrib-2023-026	2023-06-28T17:11:07.000Z	2023-08-10T13:49:56.000Z
drupal-contrib-2023-024	2023-06-28T17:03:36.000Z	2023-08-10T13:40:55.000Z
drupal-contrib-2023-033	2023-08-02T18:59:27.000Z	2023-08-02T19:52:35.000Z
drupal-contrib-2023-029	2023-06-28T17:34:47.000Z	2023-07-31T21:18:37.000Z
drupal-contrib-2023-027	2023-06-28T17:15:03.000Z	2023-07-31T21:17:46.000Z
drupal-contrib-2023-028	2023-06-28T17:21:37.000Z	2023-07-31T21:17:11.000Z
drupal-contrib-2023-031	2023-07-26T19:15:46.000Z	2023-07-27T16:05:03.000Z
drupal-contrib-2023-032	2023-07-26T19:19:38.000Z	2023-07-26T20:00:09.000Z
drupal-contrib-2023-030	2023-07-12T18:19:42.000Z	2023-07-12T18:39:39.000Z

ID	Description	Published	Updated
cnvd-2026-06137	JeecgBoot queryPageList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06136	JeecgBoot getDeptRoleList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06135	JeecgBoot getParameterMap函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06134	JeecgBoot /datarule文件授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06133	JeecgBoot getPositionUserList函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-06132	JeecgBoot queryDepartPermission函数授权问题漏洞	2026-01-09	2026-01-22
cnvd-2026-05940	GNU InetUtils Telnetd远程认证绕过漏洞	2026-01-22	2026-01-22
cnvd-2026-05176	Huawei HarmonyOS和EMUI存在未明漏洞（CNVD-2026-05176）	2023-12-07	2026-01-22
cnvd-2026-05175	Huawei HarmonyOS和EMUI PMS模块权限管理漏洞	2023-12-07	2026-01-22
cnvd-2026-04837	北京神州视翰科技有限公司多媒体综合业务显示系统存在文件上传漏洞（CNVD-C-2025-823176）	2025-11-07	2026-01-22
cnvd-2026-04834	西安瑞友信息技术资讯有限公司瑞友天翼应用虚拟化系统存在未授权访问漏洞	2025-11-14	2026-01-22
cnvd-2026-04800	北京神州视翰科技有限公司多媒体综合业务显示系统存在逻辑缺陷漏洞（CNVD-C-2025-852060）	2025-11-14	2026-01-22
cnvd-2026-04746	用友网络科技股份有限公司U8 Cloud存在SQL注入漏洞（CNVD-C-2025-796292）	2025-11-06	2026-01-22
cnvd-2026-04576	畅捷通信息技术股份有限公司畅捷通T+存在SQL注入漏洞（CNVD-C-2025-797319）	2025-11-06	2026-01-22
cnvd-2026-04575	畅捷通信息技术股份有限公司畅捷通T+存在SQL注入漏洞（CNVD-C-2025-778387）	2025-11-03	2026-01-22
cnvd-2026-04574	畅捷通信息技术股份有限公司畅捷通T+存在SQL注入漏洞（CNVD-C-2025-448742）	2025-12-02	2026-01-22
cnvd-2026-04467	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-948730）	2025-12-01	2026-01-22
cnvd-2026-04466	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-928742）	2025-11-26	2026-01-22
cnvd-2026-04465	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-879182）	2025-11-18	2026-01-22
cnvd-2026-04464	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-851224）	2025-11-14	2026-01-22
cnvd-2026-04463	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-848882）	2025-11-13	2026-01-22
cnvd-2026-04462	北京神州视翰科技有限公司远程医疗综合服务平台存在SQL注入漏洞（CNVD-C-2025-822965）	2025-11-07	2026-01-22
cnvd-2026-04441	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-926218）	2025-11-25	2026-01-22
cnvd-2026-04439	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-925400）	2025-11-25	2026-01-22
cnvd-2026-04438	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-925300）	2025-11-25	2026-01-22
cnvd-2026-04437	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-925298）	2025-11-25	2026-01-22
cnvd-2026-04436	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-925280）	2025-11-25	2026-01-22
cnvd-2026-04435	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-925115）	2025-11-25	2026-01-22
cnvd-2026-04434	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-924847）	2025-11-25	2026-01-22
cnvd-2026-04433	北京神州视翰科技有限公司多媒体综合业务显示系统存在SQL注入漏洞（CNVD-C-2025-924158）	2025-11-25	2026-01-22

ID	Description	Published	Updated
certfr-2025-avi-0957	Multiples vulnérabilités dans Moodle	2025-11-03T00:00:00.000000	2025-11-04T00:00:00.000000
certfr-2025-avi-0956	Multiples vulnérabilités dans MariaDB	2025-11-03T00:00:00.000000	2025-11-03T00:00:00.000000
certfr-2025-avi-0955	Multiples vulnérabilités dans Microsoft Edge	2025-11-03T00:00:00.000000	2025-11-03T00:00:00.000000
certfr-2025-avi-0953	Vulnérabilité dans Elastic Cloud Enterprise	2025-11-03T00:00:00.000000	2025-11-03T00:00:00.000000
certfr-2025-avi-0952	Vulnérabilité dans Mattermost Server	2025-11-03T00:00:00.000000	2025-11-03T00:00:00.000000
certfr-2025-avi-0951	Multiples vulnérabilités dans Axis OS	2025-11-03T00:00:00.000000	2025-11-03T00:00:00.000000
certfr-2025-avi-0950	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0949	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0948	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0947	Multiples vulnérabilités dans les produits IBM	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0946	Vulnérabilité dans Sonicwall Secure Mobile Access	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0945	Vulnérabilité dans Qnap NetBak PC Agent	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0944	Vulnérabilité dans Liferay	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0943	Multiples vulnérabilités dans les produits Centreon	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0942	Vulnérabilité dans Dovecot	2025-10-31T00:00:00.000000	2025-10-31T00:00:00.000000
certfr-2025-avi-0941	Multiples vulnérabilités dans les produits Microsoft	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0940	Vulnérabilité dans Liferay	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0939	Multiples vulnérabilités dans les produits Splunk	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0938	Multiples vulnérabilités dans les produits VMware	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0937	Multiples vulnérabilités dans Google Chrome	2025-10-30T00:00:00.000000	2025-10-30T00:00:00.000000
certfr-2025-avi-0935	Multiples vulnérabilités dans les produits VMware	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
certfr-2025-avi-0934	Vulnérabilité dans les produits Mozilla	2025-10-29T00:00:00.000000	2025-10-29T00:00:00.000000
certfr-2025-avi-0933	Multiples vulnérabilités dans Apache Tomcat	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0932	Multiples vulnérabilités dans Liferay	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0931	Vulnérabilité dans StrongSwan	2025-10-28T00:00:00.000000	2025-10-28T00:00:00.000000
certfr-2025-avi-0930	Vulnérabilité dans Microsoft Windows Server Update Service	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0929	Vulnérabilité dans le client VPN de TheGreenBow	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0928	Vulnérabilité dans Microsoft Configuration Manager	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0927	Vulnérabilité dans Xen	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000
certfr-2025-avi-0926	Vulnérabilité dans le pilote ODBC de MongoDB	2025-10-27T00:00:00.000000	2025-10-27T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated