Vulnerability-Lookup

Recent vulnerabilities from

Select from 69 available sources using the dropdown above.

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-6319	7.5 (3.1)	Use after free in Payments in Google Chrome on An…	Google	Chrome	2026-04-15T19:04:58.945Z	2026-04-16T09:58:55.486Z
CVE-2026-6318	8.8 (3.1)	Use after free in Codecs in Google Chrome prior t…	Google	Chrome	2026-04-15T19:04:58.495Z	2026-04-16T09:58:26.278Z
CVE-2026-6363	8.8 (3.1)	Type Confusion in V8 in Google Chrome prior to 14…	Google	Chrome	2026-04-15T19:04:57.982Z	2026-04-16T03:55:45.999Z
CVE-2026-6317	8.8 (3.1)	Use after free in Cast in Google Chrome prior to …	Google	Chrome	2026-04-15T19:04:57.557Z	2026-04-16T03:55:47.518Z
CVE-2026-6362	6.3 (3.1)	Use after free in Codecs in Google Chrome prior t…	Google	Chrome	2026-04-15T19:04:57.143Z	2026-04-16T13:23:13.559Z
CVE-2026-6361	7.2 (3.1)	Heap buffer overflow in PDFium in Google Chrome o…	Google	Chrome	2026-04-15T19:04:56.740Z	2026-04-16T10:00:46.711Z
CVE-2026-6316	8.8 (3.1)	Use after free in Forms in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:56.345Z	2026-04-16T03:55:49.002Z
CVE-2026-6315	8.8 (3.1)	Use after free in Permissions in Google Chrome on…	Google	Chrome	2026-04-15T19:04:55.935Z	2026-04-16T03:55:50.553Z
CVE-2026-6314	8.3 (3.1)	Out of bounds write in GPU in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:55.460Z	2026-04-16T03:56:07.922Z
CVE-2026-6313	3.1 (3.1)	Insufficient policy enforcement in CORS in Google…	Google	Chrome	2026-04-15T19:04:54.889Z	2026-04-15T20:00:40.125Z
CVE-2026-6312	3.1 (3.1)	Insufficient policy enforcement in Passwords in G…	Google	Chrome	2026-04-15T19:04:54.385Z	2026-04-15T19:59:44.768Z
CVE-2026-6311	8.3 (3.1)	Uninitialized Use in Accessibility in Google Chro…	Google	Chrome	2026-04-15T19:04:53.973Z	2026-04-16T03:56:12.695Z
CVE-2026-6310	8.3 (3.1)	Use after free in Dawn in Google Chrome prior to …	Google	Chrome	2026-04-15T19:04:53.589Z	2026-04-16T03:56:06.808Z
CVE-2026-6360	8.8 (3.1)	Use after free in FileSystem in Google Chrome pri…	Google	Chrome	2026-04-15T19:04:53.135Z	2026-04-16T03:56:09.052Z
CVE-2026-6309	8.3 (3.1)	Use after free in Viz in Google Chrome prior to 1…	Google	Chrome	2026-04-15T19:04:52.730Z	2026-04-16T03:56:05.365Z
CVE-2026-6308	7.5 (3.1)	Out of bounds read in Media in Google Chrome prio…	Google	Chrome	2026-04-15T19:04:52.265Z	2026-04-16T09:57:13.931Z
CVE-2026-6307	8.8 (3.1)	Type Confusion in Turbofan in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:51.835Z	2026-04-16T03:55:59.049Z
CVE-2026-6306	8.8 (3.1)	Heap buffer overflow in PDFium in Google Chrome p…	Google	Chrome	2026-04-15T19:04:51.372Z	2026-04-16T09:56:40.048Z
CVE-2026-6305	8.8 (3.1)	Heap buffer overflow in PDFium in Google Chrome p…	Google	Chrome	2026-04-15T19:04:50.926Z	2026-04-16T03:56:17.490Z
CVE-2026-6304	8.3 (3.1)	Use after free in Graphite in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:50.503Z	2026-04-16T03:56:03.915Z
CVE-2026-6303	8.8 (3.1)	Use after free in Codecs in Google Chrome prior t…	Google	Chrome	2026-04-15T19:04:50.052Z	2026-04-16T09:57:48.474Z
CVE-2026-6302	8.8 (3.1)	Use after free in Video in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:49.608Z	2026-04-16T03:56:00.581Z
CVE-2026-6301	8.8 (3.1)	Type Confusion in Turbofan in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:49.077Z	2026-04-16T03:55:57.939Z
CVE-2026-6300	8.8 (3.1)	Use after free in CSS in Google Chrome prior to 1…	Google	Chrome	2026-04-15T19:04:48.606Z	2026-04-16T03:55:56.815Z
CVE-2026-6359	8.8 (3.1)	Use after free in Video in Google Chrome on Windo…	Google	Chrome	2026-04-15T19:04:48.203Z	2026-04-16T03:55:55.574Z
CVE-2026-6358	8.8 (3.1)	Use after free in XR in Google Chrome on Android …	Google	Chrome	2026-04-15T19:04:47.677Z	2026-04-16T03:55:54.349Z
CVE-2026-6299	8.8 (3.1)	Use after free in Prerender in Google Chrome prio…	Google	Chrome	2026-04-15T19:04:47.116Z	2026-04-16T03:55:53.177Z
CVE-2026-6298	4.3 (3.1)	Heap buffer overflow in Skia in Google Chrome pri…	Google	Chrome	2026-04-15T19:04:46.537Z	2026-04-15T20:25:53.459Z
CVE-2026-6297	8.3 (3.1)	Use after free in Proxy in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:46.102Z	2026-04-16T03:55:52.024Z
CVE-2026-6296	9.6 (3.1)	Heap buffer overflow in ANGLE in Google Chrome pr…	Google	Chrome	2026-04-15T19:04:45.229Z	2026-04-16T03:56:14.151Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-6319	7.5 (3.1)	Use after free in Payments in Google Chrome on An…	Google	Chrome	2026-04-15T19:04:58.945Z	2026-04-16T09:58:55.486Z
CVE-2026-6318	8.8 (3.1)	Use after free in Codecs in Google Chrome prior t…	Google	Chrome	2026-04-15T19:04:58.495Z	2026-04-16T09:58:26.278Z
CVE-2026-6317	8.8 (3.1)	Use after free in Cast in Google Chrome prior to …	Google	Chrome	2026-04-15T19:04:57.557Z	2026-04-16T03:55:47.518Z
CVE-2026-6316	8.8 (3.1)	Use after free in Forms in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:56.345Z	2026-04-16T03:55:49.002Z
CVE-2026-6315	8.8 (3.1)	Use after free in Permissions in Google Chrome on…	Google	Chrome	2026-04-15T19:04:55.935Z	2026-04-16T03:55:50.553Z
CVE-2026-6314	8.3 (3.1)	Out of bounds write in GPU in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:55.460Z	2026-04-16T03:56:07.922Z
CVE-2026-6313	3.1 (3.1)	Insufficient policy enforcement in CORS in Google…	Google	Chrome	2026-04-15T19:04:54.889Z	2026-04-15T20:00:40.125Z
CVE-2026-6312	3.1 (3.1)	Insufficient policy enforcement in Passwords in G…	Google	Chrome	2026-04-15T19:04:54.385Z	2026-04-15T19:59:44.768Z
CVE-2026-6311	8.3 (3.1)	Uninitialized Use in Accessibility in Google Chro…	Google	Chrome	2026-04-15T19:04:53.973Z	2026-04-16T03:56:12.695Z
CVE-2026-6310	8.3 (3.1)	Use after free in Dawn in Google Chrome prior to …	Google	Chrome	2026-04-15T19:04:53.589Z	2026-04-16T03:56:06.808Z
CVE-2026-6309	8.3 (3.1)	Use after free in Viz in Google Chrome prior to 1…	Google	Chrome	2026-04-15T19:04:52.730Z	2026-04-16T03:56:05.365Z
CVE-2026-6308	7.5 (3.1)	Out of bounds read in Media in Google Chrome prio…	Google	Chrome	2026-04-15T19:04:52.265Z	2026-04-16T09:57:13.931Z
CVE-2026-6307	8.8 (3.1)	Type Confusion in Turbofan in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:51.835Z	2026-04-16T03:55:59.049Z
CVE-2026-6306	8.8 (3.1)	Heap buffer overflow in PDFium in Google Chrome p…	Google	Chrome	2026-04-15T19:04:51.372Z	2026-04-16T09:56:40.048Z
CVE-2026-6305	8.8 (3.1)	Heap buffer overflow in PDFium in Google Chrome p…	Google	Chrome	2026-04-15T19:04:50.926Z	2026-04-16T03:56:17.490Z
CVE-2026-6304	8.3 (3.1)	Use after free in Graphite in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:50.503Z	2026-04-16T03:56:03.915Z
CVE-2026-6303	8.8 (3.1)	Use after free in Codecs in Google Chrome prior t…	Google	Chrome	2026-04-15T19:04:50.052Z	2026-04-16T09:57:48.474Z
CVE-2026-6302	8.8 (3.1)	Use after free in Video in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:49.608Z	2026-04-16T03:56:00.581Z
CVE-2026-6301	8.8 (3.1)	Type Confusion in Turbofan in Google Chrome prior…	Google	Chrome	2026-04-15T19:04:49.077Z	2026-04-16T03:55:57.939Z
CVE-2026-6300	8.8 (3.1)	Use after free in CSS in Google Chrome prior to 1…	Google	Chrome	2026-04-15T19:04:48.606Z	2026-04-16T03:55:56.815Z
CVE-2026-6299	8.8 (3.1)	Use after free in Prerender in Google Chrome prio…	Google	Chrome	2026-04-15T19:04:47.116Z	2026-04-16T03:55:53.177Z
CVE-2026-6298	4.3 (3.1)	Heap buffer overflow in Skia in Google Chrome pri…	Google	Chrome	2026-04-15T19:04:46.537Z	2026-04-15T20:25:53.459Z
CVE-2026-6297	8.3 (3.1)	Use after free in Proxy in Google Chrome prior to…	Google	Chrome	2026-04-15T19:04:46.102Z	2026-04-16T03:55:52.024Z
CVE-2026-6296	9.6 (3.1)	Heap buffer overflow in ANGLE in Google Chrome pr…	Google	Chrome	2026-04-15T19:04:45.229Z	2026-04-16T03:56:14.151Z
CVE-2026-40919	6.1 (3.1)	Gimp: gimp: denial of service via specially crafted se…	Red Hat	Red Hat Enterprise Linux 6	2026-04-15T18:59:16.272Z	2026-04-15T20:01:40.521Z
CVE-2026-40918	5.5 (3.1)	Gimp: gimp: denial of service via crafted pvr image file	Red Hat	Red Hat Enterprise Linux 6	2026-04-15T18:59:14.823Z	2026-04-16T14:13:39.099Z
CVE-2026-40917	5 (3.1)	Gimp: gimp: application crashes or information disclos…	Red Hat	Red Hat Enterprise Linux 6	2026-04-15T18:59:09.003Z	2026-04-15T19:27:21.721Z
CVE-2026-40916	5 (3.1)	Gimp: gimp: denial of service due to stack buffer over…	Red Hat	Red Hat Enterprise Linux 6	2026-04-15T18:58:57.615Z	2026-04-15T19:59:03.461Z
CVE-2026-40915	5.5 (3.1)	Gimp: gimp: heap buffer overflow due to integer overfl…	Red Hat	Red Hat Enterprise Linux 6	2026-04-15T18:58:52.059Z	2026-04-15T19:32:55.287Z
CVE-2026-39857	5.3 (3.1)	Information Disclosure via `choices`/`counts` Query Pa…	apostrophecms	apostrophe	2026-04-15T19:38:57.564Z	2026-04-16T13:40:17.710Z

ID	Description	Published	Updated

ID	Severity	Description	Published	Updated
ghsa-rhf4-34xg-3v3j	6.3 (3.1) 5.1 (4.0)	UDP Console provided by Arcserve contains an incorrectly specified destination in a communication c…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-rg9x-pgh3-3gwf	6.5 (3.1)	The Accessibility Suite by Ability, Inc plugin for WordPress is vulnerable to SQL Injection via the…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-m6jh-hgc7-xggx	5.7 (3.1)	Eaton Intelligent Power Protector (IPP) uses an insecure cookie configuration, which could allow a …	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-jp62-r24w-285j	6.4 (3.1)	The WP Docs plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'wpdocs_optio…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-hjc2-4gp6-gj54	4.3 (3.1)	In Wago Smart Designer in versions up to 2.33.1 a low privileged remote attacker may enumerate proj…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-gp63-xp8x-53g4	8.8 (3.1)	In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker cou…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-9ghh-rh79-4vmr	5.9 (3.1)	A security misconfiguration was identified in Eaton Intelligent Power Protector (IPP), where an HTT…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-8m7q-ggj7-m3wx	7.5 (3.1)	The Riaxe Product Customizer plugin for WordPress is vulnerable to SQL Injection via the 'options' …	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-83mq-cmhp-6pvq	6.1 (3.1)	The CodeColorer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'class' p…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-742g-5jmq-x7cr	6.4 (3.1)	The Vantage theme for WordPress is vulnerable to Stored Cross-Site Scripting via Gallery block text…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-6pcx-jf98-3w2h	7.5 (3.1)	The Payment Gateway for Redsys & WooCommerce Lite plugin for WordPress is vulnerable to Improper Ve…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-6cjg-w4wg-37mh	9.8 (3.1)	The Riaxe Product Customizer plugin for WordPress is vulnerable to Privilege Escalation in all vers…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-4xx2-h7jh-g7ph	4.4 (3.1)	The Custom New User Notification plugin for WordPress is vulnerable to Stored Cross-Site Scripting …	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-4g9p-x8vm-f7qg	5.3 (3.1)	The Riaxe Product Customizer plugin for WordPress is vulnerable to authorization bypass in all vers…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-45x5-433g-pc2h	5.3 (3.1)	The Basic Google Maps Placemarks plugin for WordPress is vulnerable to authorization bypass in vers…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-3phr-p473-vc8q	8.8 (3.1)	The AcyMailing plugin for WordPress is vulnerable to privilege escalation in all versions From 9.11…	2026-04-16T06:31:23Z	2026-04-16T06:31:23Z
ghsa-wxm2-x9x9-x5mj	9.3 (3.1)	Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod.	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-wc72-m63f-4pcv	6.4 (3.1)	The WP YouTube Lyte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugi…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-vmw6-xgxq-pw9v	5.4 (4.0)	An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-v352-gq4q-9qjf	7.4 (3.1)	radare2 before 9236f44, when configured on UNIX without SSL, allows command injection via a PDB nam…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-ppm7-9255-8gmf	8.8 (3.1) 9.3 (4.0)	WinMatrix agent developed by Simopro Technology has a Missing Authentication vulnerability, allowin…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-mgwx-w2xc-pjq7	7.5 (3.1) 8.7 (4.0)	MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthentica…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-hx2j-xhcm-gv72	10.0 (4.0)	The iSherlock developed by HGiga has an OS Command Injection vulnerability, allowing unauthentica…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-hj44-m5xv-x75q	3.3 (3.1) 4.8 (4.0)	MuPDF mutool does not sanitize PDF metadata fields before writing them to terminal output, allowing…	2026-04-16T03:31:06Z	2026-04-17T18:31:50Z
ghsa-fwhx-4vqr-m9gj	6.5 (3.1) 7.1 (4.0)	OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gate…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-99qg-46r6-v9px	6.4 (3.1)	The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-S…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-6v5j-prr3-phf9	9.8 (3.1) 9.3 (4.0)	MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-6v58-5584-rv99	8.1 (3.1)	Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least o…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-49h6-4qj3-4f42	5.4 (4.0)	A Download of Code Without Integrity Check vulnerability in the update modules in ASUS Member Cente…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z
ghsa-48wr-p98v-9w5h	4.9 (3.1)	FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common Encryp…	2026-04-16T03:31:06Z	2026-04-16T03:31:06Z

ID	Severity	Description	Package	Published	Updated
pysec-2023-178	7.5 (3.1)	plone.rest allows users to use HTTP verbs such as GET, POST, PUT, DELETE, etc. in Plone. …	plone-rest	2023-09-21T15:15:00Z	2023-10-28T20:22:08.431825Z
pysec-2023-174		imagecodecs versions before v2023.9.18 bundled libwebp binaries in wheels that are vulner…	imagecodecs		2023-09-20T05:12:42.403706+00:00
pysec-2023-306	8.1 (3.1)	Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). In ve…	vyper	2023-09-18T21:16:00+00:00	2024-11-21T14:23:02.752932+00:00
pysec-2023-305	5.3 (3.1)	Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Start…	vyper	2023-09-18T21:16:00+00:00	2024-11-21T14:23:02.698147+00:00
pysec-2023-176	6.5 (3.1)	GeoNode is an open source platform that facilitates the creation, sharing, and collaborat…	geonode	2023-09-15T21:15:00+00:00	2023-09-20T17:25:44.504117+00:00
pysec-2023-173	5.3 (3.1)	Piccolo is an ORM and query builder which supports asyncio. In versions 0.120.0 and prior…	piccolo	2023-09-12T21:15:00+00:00	2023-09-19T05:26:00.954782+00:00
pysec-2023-171		Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authent…	apache-airflow	2023-09-12T12:15:00+00:00	2023-09-12T14:27:23.735580+00:00
pysec-2023-170		Apache Airflow, versions before 2.7.1, is affected by a vulnerability that allows authent…	apache-airflow	2023-09-12T12:15:00+00:00	2023-09-12T14:27:23.660908+00:00
pysec-2023-172	4.3 (3.1)	The Create Single Payment application of SAP S/4HANA - versions 100, 101, 102, 103, 104, …	hana-ml	2023-09-12T02:15:00Z	2023-09-29T22:26:12.812435Z
pysec-2023-169	7.8 (3.1)	Git Providers can read from the wrong environment because they get the same cache directo…	salt	2023-09-05T11:15:00+00:00	2023-09-08T20:23:17.288300+00:00
pysec-2023-166	5.3 (3.1)	Salt masters prior to 3005.2 or 3006.2 contain a DOS in minion return. After receiving se…	salt	2023-09-05T11:15:00+00:00	2023-09-07T20:23:20.197102+00:00
pysec-2023-168	5.3 (3.1)	Vyper is a Pythonic Smart Contract Language. In affected versions the order of evaluation…	vyper	2023-09-04T18:15:00+00:00	2023-09-08T16:30:59.497777+00:00
pysec-2023-167	5.3 (3.1)	Vyper is a Pythonic Smart Contract Language. For the following (probably non-exhaustive) …	vyper	2023-09-04T18:15:00+00:00	2023-09-08T15:22:00.929480+00:00
pysec-2023-163	9.8 (3.1)	An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary…	numexpr	2023-09-01T16:15:00Z	2025-02-20T09:11:38.521949Z
pysec-2023-162	9.8 (3.1)	An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary…	langchain	2023-09-01T16:15:00Z	2023-10-04T16:56:57.465474Z
pysec-2023-165	6.5 (3.1)	GitPython is a python library used to interact with Git repositories. In order to resolv…	gitpython	2023-08-30T22:15:00+00:00	2023-09-07T14:33:25.683922+00:00
pysec-2023-164	4.7 (3.1)	borgbackup is an opensource, deduplicating archiver with compression and authenticated en…	borgbackup	2023-08-30T18:15:00+00:00	2023-09-06T16:31:20.448538+00:00
pysec-2023-159	7.7 (3.1)	RestrictedPython is a restricted execution environment for Python to run untrusted code. …	restrictedpython	2023-08-30T18:15:00+00:00	2023-09-05T16:32:17.658660+00:00
pysec-2023-157	6.1 (3.1)	jupyter-server is the backend for Jupyter web applications. Improper cross-site credentia…	jupyter-server	2023-08-28T21:15:00+00:00	2023-09-01T20:23:47.344401+00:00
pysec-2023-155	6.1 (3.1)	jupyter-server is the backend for Jupyter web applications. Open Redirect Vulnerability. …	jupyter-server	2023-08-28T21:15:00+00:00	2023-09-01T16:31:48.441782+00:00
pysec-2023-161	7.8 (3.1)	GitPython is a python library used to interact with Git repositories. When resolving a p…	gitpython	2023-08-28T18:15:00+00:00	2023-09-05T22:26:14.587281+00:00
pysec-2023-156	8.8 (3.1)	Deserialization of Untrusted Data, Inclusion of Functionality from Untrusted Control Sphe…	apache-airflow-providers-apache-spark	2023-08-28T08:15:00+00:00	2023-09-01T18:27:11.679668+00:00
pysec-2023-160	6.5 (3.1)	A flaw was found in the Keylime registrar that could allow a bypass of the challenge-resp…	keylime	2023-08-25T17:15:00+00:00	2023-09-05T20:22:36.414406+00:00
pysec-2023-154	5.3 (3.1)	Datasette is an open source multi-tool for exploring and publishing data. This bug affect…	datasette	2023-08-25T01:15:00Z	2023-10-08T16:12:24.555320Z
pysec-2023-269	7.5 (3.1)	GeoNode is an open source platform that facilitates the creation, sharing, and collaborat…	geonode	2023-08-24T23:15:00+00:00	2024-11-21T14:22:50.995218+00:00
pysec-2023-158	8.0 (3.1)	The session fixation vulnerability allowed the authenticated user to continue accessing A…	apache-airflow	2023-08-23T16:15:00+00:00	2023-09-04T08:29:37.781470+00:00
pysec-2023-152	8.1 (3.1)	Apache Airflow, in versions prior to 2.7.0, contains a security vulnerability that can be…	apache-airflow	2023-08-23T16:15:00+00:00	2023-08-29T18:28:28.180958+00:00
pysec-2023-153	6.1 (3.1)	Open Redirect vulnerability in Horizon Web Dashboard 19.4.0 thru 20.1.4 via the success_u…	horizon	2023-08-22T19:16:00+00:00	2023-08-30T18:28:45.068261+00:00
pysec-2023-151	9.8 (3.1)	An issue in langchain v.0.0.171 allows a remote attacker to execute arbitrary code via th…	langchain	2023-08-22T19:16:00Z	2023-08-29T15:11:37.047967Z
pysec-2023-149		The json2xml package through 3.12.0 for Python allows an error in typecode decoding enabl…	json2xml	2023-08-22T19:16:00+00:00	2023-08-22T20:23:14.541580+00:00

ID	Description	Updated

ID	Description	Published	Updated
mal-2026-2497	Malicious code in commerce-utils (npm)	2026-04-06T09:11:24Z	2026-04-07T14:41:21Z
mal-2026-2496	Malicious code in chess-sec-ssrf1 (npm)	2026-04-06T06:10:44Z	2026-04-07T14:41:21Z
mal-2026-2495	Malicious code in cloudera (npm)	2026-04-05T20:05:37Z	2026-04-07T14:41:21Z
mal-2026-2493	Malicious code in cloudera-poc (npm)	2026-04-05T19:40:31Z	2026-04-07T14:41:21Z
mal-2026-2494	Malicious code in databasetapes (PyPI)	2026-04-05T19:35:23Z	2026-04-16T07:40:04Z
mal-2026-2492	Malicious code in admin0911 (npm)	2026-04-05T15:30:57Z	2026-04-14T01:05:14Z
mal-2026-2491	Malicious code in @not-nemo/crypto-tracker (npm)	2026-04-05T13:50:03Z	2026-04-20T00:45:38Z
mal-2026-2716	Malicious code in @needl-ai/common (npm)	2026-04-05T09:03:43Z	2026-04-20T00:45:38Z
mal-2026-2489	Malicious code in databaserobooms (PyPI)	2026-04-04T22:24:16Z	2026-04-16T07:40:04Z
mal-2026-2490	Malicious code in databaserotacos (PyPI)	2026-04-04T22:03:00Z	2026-04-16T07:40:04Z
mal-2026-2488	Malicious code in photo-extractor (PyPI)	2026-04-04T16:41:48Z	2026-04-04T16:41:48Z
mal-2026-2487	Malicious code in discord-request (PyPI)	2026-04-04T12:56:18Z	2026-04-04T12:56:18Z
mal-2026-2486	Malicious code in gangomodule (PyPI)	2026-04-04T12:01:55Z	2026-04-04T12:01:55Z
mal-2026-2452	Malicious code in strapi-plugin-blurhash (npm)	2026-04-03T19:10:29Z	2026-04-07T16:38:18Z
mal-2026-2450	Malicious code in strapi-plugin-advanced-uuid (npm)	2026-04-03T19:10:26Z	2026-04-07T16:38:18Z
mal-2026-2463	Malicious code in strapi-plugin-guardarian-ext (npm)	2026-04-03T19:10:23Z	2026-04-07T16:38:18Z
mal-2026-2465	Malicious code in strapi-plugin-health-check (npm)	2026-04-03T19:10:19Z	2026-04-07T16:38:18Z
mal-2026-2459	Malicious code in strapi-plugin-debug-tools (npm)	2026-04-03T19:10:16Z	2026-04-07T16:38:18Z
mal-2026-2455	Malicious code in strapi-plugin-content-sync (npm)	2026-04-03T19:09:53Z	2026-04-07T16:38:18Z
mal-2026-2453	Malicious code in strapi-plugin-cms-tools (npm)	2026-04-03T19:09:34Z	2026-04-07T16:38:18Z
mal-2026-2466	Malicious code in strapi-plugin-hextest (npm)	2026-04-03T19:09:14Z	2026-04-07T16:38:18Z
mal-2026-2461	Malicious code in strapi-plugin-finseven (npm)	2026-04-03T19:08:49Z	2026-04-07T16:38:18Z
mal-2026-2471	Malicious code in strapi-plugin-nordica (npm)	2026-04-03T19:08:46Z	2026-04-07T16:38:18Z
mal-2026-2474	Malicious code in strapi-plugin-nordica-deep (npm)	2026-04-03T19:06:00Z	2026-04-07T16:38:18Z
mal-2026-2480	Malicious code in strapi-plugin-nordica-vhost (npm)	2026-04-03T19:05:57Z	2026-04-07T16:38:18Z
mal-2026-2477	Malicious code in strapi-plugin-nordica-stage (npm)	2026-04-03T19:05:39Z	2026-04-07T16:38:18Z
mal-2026-2476	Malicious code in strapi-plugin-nordica-recon (npm)	2026-04-03T19:05:26Z	2026-04-07T16:38:18Z
mal-2026-2472	Malicious code in strapi-plugin-nordica-api (npm)	2026-04-03T19:05:08Z	2026-04-07T16:38:18Z
mal-2026-2473	Malicious code in strapi-plugin-nordica-cms (npm)	2026-04-03T19:04:49Z	2026-04-07T16:38:18Z
mal-2026-2478	Malicious code in strapi-plugin-nordica-sync (npm)	2026-04-03T19:04:46Z	2026-04-07T16:38:18Z

ID	Description	Published	Updated

ID	Description	Published	Updated
wid-sec-w-2025-2910	Hitachi Ops Center: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-23T23:00:00.000+00:00
wid-sec-w-2025-2909	IBM App Connect Enterprise: Mehrere Schwachstellen	2025-12-22T23:00:00.000+00:00	2025-12-22T23:00:00.000+00:00
wid-sec-w-2025-2908	FileZilla: Schwachstelle ermöglicht Codeausführung	2025-12-21T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2907	Red Hat Enterprise Linux AI (HDF5 ): Mehrere Schwachstellen ermöglichen Manipulation von Dateien	2025-12-21T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2906	ESRI ArcGIS Web AppBuilder: Schwachstelle ermöglicht Manipulation von Dateien	2025-12-21T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2905	MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2904	Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-18T23:00:00.000+00:00	2026-03-30T22:00:00.000+00:00
wid-sec-w-2025-2903	IBM App Connect Enterprise: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2902	WatchGuard Firebox OS (iked process): Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2901	ConnectWise ScreenConnect: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2900	Dell PowerEdge: Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2899	Kibana: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2898	avahi: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2897	Apache log4j: Schwachstelle ermöglicht Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2026-02-15T23:00:00.000+00:00
wid-sec-w-2025-2896	Elasticsearch: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2895	M-Files Server: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2894	Foxit PDF Reader und Editor: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2893	Checkmk: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2892	Apache Nifi: Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2891	WebKitGTK: Mehrere Schwachstellen ermöglichen Codeausführung und DoS	2025-12-18T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2890	Microsoft Azure Komponenten: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2889	Microsoft Edge für Android: Schwachstelle ermöglicht Darstellen falscher Informationen	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2888	ImageMagick: Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2887	PHP: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2026-03-09T23:00:00.000+00:00
wid-sec-w-2025-2886	Red Hat Enterprise Linux (git-lfs, opentelemetry-collector): Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2026-03-25T23:00:00.000+00:00
wid-sec-w-2025-2885	Mozilla Firefox: Mehrere Schwachstellen	2025-12-18T23:00:00.000+00:00	2025-12-21T23:00:00.000+00:00
wid-sec-w-2025-2884	QEMU (virtio-crypto): Schwachstelle ermöglicht Denial of Service	2025-12-18T23:00:00.000+00:00	2026-03-05T23:00:00.000+00:00
wid-sec-w-2025-2883	Red Hat Enterprise AI Inference Server (vLLM): Schwachstelle ermöglicht Codeausführung	2025-12-18T23:00:00.000+00:00	2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2882	Red Hat Enterprise Linux (audiofile): Schwachstelle ermöglicht Denial of Service	2025-12-17T23:00:00.000+00:00	2026-01-05T23:00:00.000+00:00
wid-sec-w-2025-2881	Red Hat Enterprise Linux (multicluster global hub): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-17T23:00:00.000+00:00	2026-03-25T23:00:00.000+00:00

ID	Description	Published	Updated
va-25-136-01	IBM Security Guardium stored cross-site scripting	2025-05-16T20:14:51Z	2025-06-16T00:00:00Z
icsa-25-135-20	Schneider Electric EcoStruxure Power Build Rapsody	2025-05-15T06:00:00.000000Z	2025-05-15T06:00:00.000000Z
icsa-25-135-19	ECOVACS DEEBOT Vacuum and Base Station (Update A)	2025-05-15T06:00:00.000000Z	2025-07-10T06:00:00.000000Z
icsa-25-140-05	Siemens Siveillance Video	2025-05-14T00:00:00.000000Z	2025-05-14T00:00:00.000000Z
icsa-25-133-04	ABB Automation Builder	2025-05-13T06:00:00.000000Z	2025-05-13T06:00:00.000000Z
icsa-25-153-02	Schneider Electric EcoStruxure Power Build Rapsody	2025-05-13T04:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-140-08	Schneider Electric Modicon Controllers (Update B)	2025-05-13T04:00:00.000000Z	2025-10-14T07:00:00.000000Z
icsa-25-140-07	Schneider Electric Galaxy VS, Galaxy VL, Galaxy VXL (Update A)	2025-05-13T04:00:00.000000Z	2025-09-24T04:00:00.000000Z
icsa-25-140-06	Schneider Electric PrismaSeT Active - Wireless Panel Server	2025-05-13T04:00:00.000000Z	2025-05-13T04:00:00.000000Z
icsa-25-148-02	Siemens SiPass Integrated	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-18	Siemens SCALANCE LPE9403	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-17	Siemens RUGGEDCOM ROX II	2025-05-13T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-135-16	Siemens MS/TP Point Pickup Module	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-15	Siemens Mendix OIDC SSO	2025-05-13T00:00:00.000000Z	2026-04-16T06:00:00.000000Z
icsa-25-135-14	Siemens APOGEE PXC and TALON TC Series	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-13	Siemens SIRIUS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-12	Siemens SIMATIC PCS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-11	Siemens Polarion	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-10	Siemens OZW Web Servers	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-09	Siemens User Management Component (UMC)	2025-05-13T00:00:00.000000Z	2025-10-14T00:00:00.000000Z
icsa-25-135-08	Siemens VersiCharge AC Series EV Chargers	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-07	Siemens SIMATIC IPC RS-828A	2025-05-13T00:00:00.000000Z	2025-08-12T00:00:00.000000Z
icsa-25-135-06	Siemens Teamcenter Visualization	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-05	Siemens SIPROTEC and SICAM	2025-05-13T00:00:00.000000Z	2025-11-11T00:00:00.000000Z
icsa-25-135-04	Siemens Desigo	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-03	Siemens BACnet ATEC Devices	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-02	Siemens INTRALOG WMS	2025-05-13T00:00:00.000000Z	2025-05-13T00:00:00.000000Z
icsa-25-135-01	Siemens RUGGEDCOM APE1808 Devices	2025-05-13T00:00:00.000000Z	2026-02-12T07:00:00.000000Z
icsma-25-128-01	Pixmeo OsiriX MD	2025-05-08T06:00:00.000000Z	2025-05-08T06:00:00.000000Z
icsa-25-128-03	Mitsubishi Electric Multiple FA Products (Update B)	2025-05-08T06:00:00.000000Z	2026-02-03T07:00:00.000000Z

ID	Description	Published	Updated
cisco-sa-nxos-po-acl-tkyepgvl	Cisco Nexus 3000 and 9000 Series Switches Port Channel ACL Programming Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-nxos-lldp-dos-z7pnctgt	Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-nxos-ebgp-dos-l3qcwvj	Cisco NX-OS Software External Border Gateway Protocol Denial of Service Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-ipv6-mpls-dos-r9ycxkwm	Cisco NX-OS Software MPLS Encapsulated IPv6 Denial of Service Vulnerability	2024-02-28T16:00:00+00:00	2024-02-28T16:00:00+00:00
cisco-sa-cuic-access-control-jjszqmjj	Cisco Unified Intelligence Center Insufficient Access Control Vulnerability	2024-02-21T16:00:00+00:00	2024-02-21T16:00:00+00:00
cisco-sa-expressway-csrf-knnzdmj3	Cisco Expressway Series Cross-Site Request Forgery Vulnerabilities	2024-02-07T16:00:00+00:00	2024-02-12T17:55:43+00:00
cisco-sa-clamav-hdffu6t	ClamAV OLE2 File Format Parsing Denial of Service Vulnerability	2024-02-07T16:00:00+00:00	2024-02-13T17:57:43+00:00
cisco-sa-sb-bus-acl-bypass-5zn9hnjk	Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-cucm-rce-bwnzqcum	Cisco Unified Communications Products Remote Code Execution Vulnerability	2024-01-24T16:00:00+00:00	2024-01-30T19:16:46+00:00
cisco-sa-cuc-xss-9tfuu5ms	Cisco Unity Connection Cross-Site Scripting Vulnerability	2024-01-24T16:00:00+00:00	2024-01-24T16:00:00+00:00
cisco-sa-tms-portal-xss-axnevg3s	Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-12T15:18:40+00:00
cisco-sa-thouseyes-privesc-dmzhg3qv	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-sb-wap-inject-bhstwgxo	Cisco WAP371 Wireless Access Point Command Injection Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-pi-epnm-wkzjeyeq	Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-ise-xss-bl4vtml	Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-10T16:00:00+00:00
cisco-sa-cuc-unauth-afu-froyscsd	Cisco Unity Connection Unauthenticated Arbitrary File Upload Vulnerability	2024-01-10T16:00:00+00:00	2024-02-05T17:23:14+00:00
cisco-sa-broadworks-xss-6syj82ju	Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability	2024-01-10T16:00:00+00:00	2024-01-23T17:43:55+00:00
cisco-sa-struts-c2kcmkmt	Apache Struts Vulnerability Affecting Cisco Products: December 2023	2023-12-12T16:00:00+00:00	2023-12-21T22:23:04+00:00
cisco-sa-asa-ssl-vpn-y88qom77	Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability	2023-12-05T16:00:00+00:00	2023-12-05T16:00:00+00:00
cisco-sa-uipphone-xss-ncmuykqa	Cisco IP Phone Stored Cross-Site Scripting Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-secure-endpoint-dos-rzogfknd	Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-ise-mult-j-kxpnynr	Cisco Identity Services Engine Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-appd-php-authpriv-gebwtvu5	Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-accsc-dos-9slzkz8	Cisco Secure Client Software Denial of Service Vulnerabilities	2023-11-15T16:00:00+00:00	2023-11-15T16:00:00+00:00
cisco-sa-snort-ftd-zxytnjom	Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00
cisco-sa-sa-ftd-snort3-urldos-occfqtex	Cisco Firepower Threat Defense Software SSL/TLS URL Category and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00
cisco-sa-ise-injection-qexegrcw	Cisco Identity Services Engine Command Injection Vulnerabilities	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00
cisco-sa-ise-file-upload-fcelp4xs	Cisco Identity Services Engine Vulnerabilities	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00
cisco-sa-ftdsnort3sip-bypass-lmz2thkn	Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability	2023-11-01T16:00:00+00:00	2023-11-01T16:00:00+00:00
cisco-sa-ftd-snort3acp-bypass-3bdr2beh	Multiple Cisco Products Snort 3 Access Control Policy Bypass Vulnerability	2023-11-01T16:00:00+00:00	2024-02-06T18:30:17+00:00

ID	Description	Published	Updated
msrc_cve-2026-34353	CVE-2026-34353	2026-03-02T00:00:00.000Z	2026-04-01T01:57:48.000Z
msrc_cve-2026-34085	CVE-2026-34085	2026-03-02T00:00:00.000Z	2026-03-31T14:51:54.000Z
msrc_cve-2026-34073	cryptography has incomplete DNS name constraint enforcement on peer names	2026-03-02T00:00:00.000Z	2026-04-03T01:01:25.000Z
msrc_cve-2026-34043	Serialize JavaScript has CPU Exhaustion Denial of Service via crafted array-like objects	2026-03-02T00:00:00.000Z	2026-04-02T01:40:32.000Z
msrc_cve-2026-33941	Handlebars.js has JavaScript Injection in CLI Precompiler via Unescaped Names and Options	2026-03-02T00:00:00.000Z	2026-04-15T01:39:24.000Z
msrc_cve-2026-33940	Handlebars.js has JavaScript Injection via AST Type Confusion when passing an object as dynamic partial	2026-03-02T00:00:00.000Z	2026-04-15T01:39:35.000Z
msrc_cve-2026-33939	Handlebars.js has Denial of Service via Malformed Decorator Syntax in Template Compilation	2026-03-02T00:00:00.000Z	2026-04-15T01:39:30.000Z
msrc_cve-2026-33938	Handlebars.js has JavaScript Injection via AST Type Confusion by tampering @partial-block	2026-03-02T00:00:00.000Z	2026-04-15T01:39:18.000Z
msrc_cve-2026-33937	Handlebars.js has JavaScript Injection via AST Type Confusion	2026-03-02T00:00:00.000Z	2026-04-01T01:58:16.000Z
msrc_cve-2026-33936	python-ecdsa: Denial of Service via improper DER length validation in crafted private keys	2026-03-02T00:00:00.000Z	2026-04-08T01:36:46.000Z
msrc_cve-2026-33916	Handlebars.js has Prototype Pollution Leading to XSS through Partial Template Injection	2026-03-02T00:00:00.000Z	2026-03-31T01:03:13.000Z
msrc_cve-2026-33896	Forge has a basicConstraints bypass in its certificate chain verification (RFC 5280 violation)	2026-03-02T00:00:00.000Z	2026-04-15T01:39:04.000Z
msrc_cve-2026-33895	Forge has signature forgery in Ed25519 due to missing S > L check	2026-03-02T00:00:00.000Z	2026-04-15T01:38:56.000Z
msrc_cve-2026-33891	Forge has Denial of Service via Infinite Loop in BigInteger.modInverse() with Zero Input	2026-03-02T00:00:00.000Z	2026-04-15T01:39:13.000Z
msrc_cve-2026-3381	Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib	2026-03-02T00:00:00.000Z	2026-03-26T01:39:38.000Z
msrc_cve-2026-33750	brace-expansion: Zero-step sequence causes process hang and memory exhaustion	2026-03-02T00:00:00.000Z	2026-04-02T01:39:52.000Z
msrc_cve-2026-33672	Picomatch: Method Injection in POSIX Character Classes causes incorrect Glob Matching	2026-03-02T00:00:00.000Z	2026-04-16T14:37:51.000Z
msrc_cve-2026-33671	Picomatch has a ReDoS vulnerability via extglob quantifiers	2026-03-02T00:00:00.000Z	2026-04-16T14:37:41.000Z
msrc_cve-2026-33636	LIBPNG has ARM NEON Palette Expansion Out-of-Bounds Read on AArch64	2026-03-02T00:00:00.000Z	2026-04-15T01:38:17.000Z
msrc_cve-2026-33554	CVE-2026-33554	2026-03-02T00:00:00.000Z	2026-04-08T01:38:36.000Z
msrc_cve-2026-33542	Incus does not verify combined fingerprint when downloading images from simplestreams servers	2026-03-02T00:00:00.000Z	2026-04-02T01:40:07.000Z
msrc_cve-2026-33526	Squid vulnerable to Denial of Service in ICP Request handling	2026-03-02T00:00:00.000Z	2026-03-28T14:38:00.000Z
msrc_cve-2026-33515	Squid has issues in ICP message handling	2026-03-02T00:00:00.000Z	2026-03-28T14:38:07.000Z
msrc_cve-2026-33416	LIBPNG has use-after-free via pointer aliasing in `png_set_tRNS` and `png_set_PLTE`	2026-03-02T00:00:00.000Z	2026-04-15T01:38:06.000Z
msrc_cve-2026-33413	etcd: Authorization bypasses in multiple APIs	2026-03-02T00:00:00.000Z	2026-03-31T14:57:04.000Z
msrc_cve-2026-33412	Vim affected by Command injection via newline in glob()	2026-03-02T00:00:00.000Z	2026-03-31T14:54:51.000Z
msrc_cve-2026-3338	PKCS7_verify Signature Validation Bypass in AWS-LC	2026-03-02T00:00:00.000Z	2026-03-06T01:38:11.000Z
msrc_cve-2026-3336	PKCS7_verify Certificate Chain Validation Bypass in AWS-LC	2026-03-02T00:00:00.000Z	2026-03-06T01:38:19.000Z
msrc_cve-2026-33343	etcd: Nested etcd transactions bypass RBAC authorization checks	2026-03-02T00:00:00.000Z	2026-03-31T14:56:33.000Z
msrc_cve-2026-33228	flatted: Prototype Pollution via parse()	2026-03-02T00:00:00.000Z	2026-03-27T01:42:55.000Z

ID	Description	Published	Updated
ncsc-2025-0077	Kwetsbaarheden verholpen in Siemens producten	2025-03-11T12:30:29.277759Z	2025-03-11T12:30:29.277759Z
ncsc-2025-0076	Kwetsbaarheden verholpen in SAP software	2025-03-11T12:20:06.258896Z	2025-03-11T12:20:06.258896Z
ncsc-2025-0075	Kwetsbaarheid verholpen in Elastic Kibana	2025-03-07T13:51:51.509917Z	2025-03-07T13:51:51.509917Z
ncsc-2025-0074	Kwetsbaarheden verholpen in IBM Storage producten	2025-03-04T14:14:48.398751Z	2025-03-04T14:14:48.398751Z
ncsc-2025-0073	Kwetsbaarheden verholpen in VMware producten	2025-03-04T14:11:56.959153Z	2025-03-04T14:11:56.959153Z
ncsc-2025-0072	Kwetsbaarheden verholpen in Google Android en Samsung Mobile	2025-03-04T10:15:32.203439Z	2025-03-04T10:15:32.203439Z
ncsc-2025-0071	Kwetsbaarheid verholpen in Zohocorp ManageEngine ADSelfService Plus	2025-03-03T14:11:46.709999Z	2025-03-03T14:11:46.709999Z
ncsc-2025-0070	Kwetsbaarheden verholpen in GitLab	2025-03-03T14:10:30.120360Z	2025-03-03T14:10:30.120360Z
ncsc-2025-0069	Kwetsbaarheid verholpen in MITRE Caldera	2025-02-25T07:42:48.535179Z	2025-02-25T07:42:48.535179Z
ncsc-2025-0068	Kwetsbaarheden verholpen in Mattermost	2025-02-24T12:04:19.392654Z	2025-02-24T12:04:19.392654Z
ncsc-2025-0067	Kwetsbaarheid verholpen in Exim	2025-02-21T12:54:32.376733Z	2025-02-21T12:54:32.376733Z
ncsc-2025-0066	Kwetsbaarheid verholpen in XWiki	2025-02-21T12:33:24.503983Z	2025-02-21T12:33:24.503983Z
ncsc-2025-0065	Kwetsbaarheden verholpen in Nagios XI	2025-02-21T12:32:41.120020Z	2025-02-21T12:32:41.120020Z
ncsc-2025-0064	Kwetsbaarheden verholpen in IBM Cognos Controller	2025-02-21T08:40:26.849797Z	2025-02-21T08:40:26.849797Z
ncsc-2025-0063	Kwetsbaarheid verholpen in PostgreSQL	2025-02-19T09:11:55.511966Z	2025-02-19T09:11:55.511966Z
ncsc-2025-0062	Kwetsbaarheid verholpen in Juniper Session Smart Router	2025-02-18T14:25:56.916762Z	2025-02-18T14:25:56.916762Z
ncsc-2025-0061	Kwetsbaarheden verholpen in Siemens producten	2025-02-14T08:46:28.240775Z	2025-02-14T08:46:28.240775Z
ncsc-2025-0060	Kwetsbaarheid verholpen in Veeam	2025-02-13T09:48:03.729080Z	2025-02-13T09:48:03.729080Z
ncsc-2025-0059	Kwetsbaarheid verholpen in Fortinet FortiOS	2025-02-13T09:29:35.625977Z	2025-02-13T09:29:35.625977Z
ncsc-2025-0058	Kwetsbaarheden verholpen in Palo Alto Networks PAN-OS	2025-02-13T09:28:54.459828Z	2025-02-21T08:08:58.513404Z
ncsc-2025-0057	Kwetsbaarheden verholpen in GitLab CE/EE	2025-02-13T09:09:26.087113Z	2025-02-13T09:09:26.087113Z
ncsc-2025-0056	Kwetsbaarheden verholpen in Schneider Electric ASCO	2025-02-13T09:07:55.191514Z	2025-02-13T09:07:55.191514Z
ncsc-2025-0055	Kwetsbaarheid verholpen in CrowdStrike Falcon sensor	2025-02-13T08:22:07.880125Z	2025-02-13T08:22:07.880125Z
ncsc-2025-0054	Kwetsbaarheden verholpen in Adobe Commerce en Magento	2025-02-13T06:46:08.560650Z	2025-02-13T06:46:08.560650Z
ncsc-2025-0053	Kwetsbaarheden verholpen in Fortinet FortiSwitch, FortiManager, FortiAnalyzer, FortiOS en FortiProxy	2025-02-12T12:39:02.366846Z	2025-02-18T08:09:48.619964Z
ncsc-2025-0052	Kwetsbaarheden verholpen in Ivanti Connect Secure en Ivanti Policy Secure	2025-02-12T09:35:30.260596Z	2025-02-12T09:35:30.260596Z
ncsc-2025-0051	Kwetsbaarheden verholpen in Siemens producten	2025-02-11T19:40:34.993264Z	2025-02-11T19:40:34.993264Z
ncsc-2025-0050	Kwetsbaarheden verholpen in Microsoft Office	2025-02-11T19:19:24.863294Z	2025-02-11T19:19:24.863294Z
ncsc-2025-0049	Kwetsbaarheden verholpen in Microsoft Visual Studio	2025-02-11T19:17:58.768578Z	2025-02-11T19:17:58.768578Z
ncsc-2025-0048	Kwetsbaarheden verholpen in Microsoft Azure	2025-02-11T19:17:03.555400Z	2025-02-11T19:17:03.555400Z

ID	Description	Published	Updated

ID	Description	Published	Updated
opensuse-su-2026:10138-1	java-25-openj9-25.0.2.0-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10137-1	java-21-openj9-21.0.10.0-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10136-1	java-1_8_0-openjdk-1.8.0.482-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10135-1	java-1_8_0-openj9-1.8.0.482-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10134-1	java-17-openj9-17.0.18.0-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10133-1	java-11-openj9-11.0.30.0-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:10132-1	freerdp-3.22.0-1.1 on GA media	2026-02-03T00:00:00Z	2026-02-03T00:00:00Z
opensuse-su-2026:20156-1	Security update for chromium	2026-02-02T17:20:43Z	2026-02-02T17:20:43Z
opensuse-su-2026:20152-1	Security update for openssl-3	2026-02-02T13:00:02Z	2026-02-02T13:00:02Z
opensuse-su-2026:20151-1	Security update for wireshark	2026-02-02T12:56:02Z	2026-02-02T12:56:02Z
opensuse-su-2026:20150-1	Security update for glib2	2026-02-02T12:41:24Z	2026-02-02T12:41:24Z
opensuse-su-2026:20145-1	Security update for the Linux Kernel	2026-02-02T11:54:26Z	2026-02-02T11:54:26Z
opensuse-su-2026:20148-1	Security update for dpdk	2026-02-02T11:12:33Z	2026-02-02T11:12:33Z
opensuse-su-2026:20147-1	Security update for python-wheel	2026-02-02T09:49:12Z	2026-02-02T09:49:12Z
opensuse-su-2026:10131-1	trivy-0.69.0-1.1 on GA media	2026-02-02T00:00:00Z	2026-02-02T00:00:00Z
opensuse-su-2026:10130-1	python311-PyNaCl-1.6.2-1.1 on GA media	2026-02-02T00:00:00Z	2026-02-02T00:00:00Z
opensuse-su-2026:10129-1	libmlt++-7-7-7.36.1-1.1 on GA media	2026-02-02T00:00:00Z	2026-02-02T00:00:00Z
opensuse-su-2026:10128-1	MozillaThunderbird-140.7.1-1.1 on GA media	2026-01-31T00:00:00Z	2026-01-31T00:00:00Z
opensuse-su-2026:20144-1	Security update for python-filelock	2026-01-30T21:24:37Z	2026-01-30T21:24:37Z
opensuse-su-2026:20143-1	Security update for java-25-openjdk	2026-01-30T15:55:47Z	2026-01-30T15:55:47Z
opensuse-su-2026:20140-1	Security update for alloy	2026-01-30T14:38:31Z	2026-01-30T14:38:31Z
opensuse-su-2026:20141-1	Security update for udisks2	2026-01-30T14:30:57Z	2026-01-30T14:30:57Z
opensuse-su-2026:20142-1	Security update for libsoup	2026-01-30T14:27:58Z	2026-01-30T14:27:58Z
opensuse-su-2026:20139-1	Security update for unbound	2026-01-30T10:05:07Z	2026-01-30T10:05:07Z
opensuse-su-2026:20138-1	Security update for jasper	2026-01-30T09:59:14Z	2026-01-30T09:59:14Z
opensuse-su-2026:10127-1	rekor-1.5.0-1.1 on GA media	2026-01-30T00:00:00Z	2026-01-30T00:00:00Z
opensuse-su-2026:10126-1	python315-3.15.0~a3-3.1 on GA media	2026-01-30T00:00:00Z	2026-01-30T00:00:00Z
opensuse-su-2026:10125-1	python311-django-storages-1.14.6-1.1 on GA media	2026-01-30T00:00:00Z	2026-01-30T00:00:00Z
opensuse-su-2026:10124-1	golang-github-prometheus-prometheus-3.9.1-2.1 on GA media	2026-01-30T00:00:00Z	2026-01-30T00:00:00Z
opensuse-su-2026:10123-1	freerdp-3.21.0-2.1 on GA media	2026-01-30T00:00:00Z	2026-01-30T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
rhsa-2026:4720	Red Hat Security Advisory: 389-ds-base security update	2026-03-17T10:48:47+00:00	2026-03-31T17:24:17+00:00
rhsa-2026:4713	Red Hat Security Advisory: python3.12 security update	2026-03-17T10:46:47+00:00	2026-04-09T15:17:01+00:00
rhsa-2026:4717	Red Hat Security Advisory: opencryptoki security update	2026-03-17T10:45:18+00:00	2026-03-30T11:10:25+00:00
rhsa-2026:4705	Red Hat Security Advisory: nginx security update	2026-03-17T10:41:57+00:00	2026-04-08T14:06:46+00:00
rhsa-2026:4728	Red Hat Security Advisory: libpng security update	2026-03-17T10:23:47+00:00	2026-04-09T23:06:01+00:00
rhsa-2026:4730	Red Hat Security Advisory: libpng security update	2026-03-17T10:17:07+00:00	2026-04-09T23:06:03+00:00
rhsa-2026:4723	Red Hat Security Advisory: kernel security update	2026-03-17T10:01:07+00:00	2026-03-25T20:10:42+00:00
rhsa-2026:4729	Red Hat Security Advisory: libpng security update	2026-03-17T09:57:48+00:00	2026-04-09T23:06:01+00:00
rhsa-2026:4732	Red Hat Security Advisory: libpng security update	2026-03-17T09:40:46+00:00	2026-04-09T23:06:04+00:00
rhsa-2026:4731	Red Hat Security Advisory: libpng security update	2026-03-17T09:40:22+00:00	2026-04-09T23:06:03+00:00
rhsa-2026:4693	Red Hat Security Advisory: container-tools:rhel8 security update	2026-03-17T06:49:06+00:00	2026-04-14T07:59:12+00:00
rhsa-2026:4672	Red Hat Security Advisory: container-tools:rhel8 security update	2026-03-17T04:01:11+00:00	2026-04-14T07:59:12+00:00
rhsa-2026:4661	Red Hat Security Advisory: redhat-ds:12 security update	2026-03-17T00:17:20+00:00	2026-03-31T17:28:45+00:00
rhsa-2026:4654	Red Hat Security Advisory: grub2 security update	2026-03-16T20:35:30+00:00	2026-04-09T14:36:09+00:00
rhsa-2026:4653	Red Hat Security Advisory: grub2 security update	2026-03-16T20:21:10+00:00	2026-04-09T14:36:10+00:00
rhsa-2026:4652	Red Hat Security Advisory: grub2 security update	2026-03-16T19:51:05+00:00	2026-04-09T14:35:56+00:00
rhsa-2026:4648	Red Hat Security Advisory: grub2 security update	2026-03-16T19:41:45+00:00	2026-04-09T14:35:55+00:00
rhsa-2026:4655	Red Hat Security Advisory: Insights proxy Container Image	2026-03-16T19:32:19+00:00	2026-04-13T18:42:20+00:00
rhsa-2026:4649	Red Hat Security Advisory: grub2 security update	2026-03-16T19:19:55+00:00	2026-04-09T14:35:55+00:00
rhsa-2026:4629	Red Hat Security Advisory: libvpx security update	2026-03-16T17:28:41+00:00	2026-03-23T13:12:22+00:00
rhsa-2026:4630	Red Hat Security Advisory: Red Hat Data Grid 8.6.0 security update	2026-03-16T17:11:00+00:00	2026-04-13T16:00:40+00:00
rhsa-2026:4554	Red Hat Security Advisory: vsftpd security update	2026-03-16T01:24:16+00:00	2026-03-18T03:19:44+00:00
rhsa-2026:4553	Red Hat Security Advisory: vsftpd security update	2026-03-16T01:20:12+00:00	2026-03-18T03:19:44+00:00
rhsa-2026:4548	Red Hat Security Advisory: postgresql:15 security update	2026-03-12T23:07:13+00:00	2026-04-10T21:16:42+00:00
rhsa-2026:4550	Red Hat Security Advisory: vsftpd security update	2026-03-12T22:51:53+00:00	2026-03-18T03:19:12+00:00
rhsa-2026:4547	Red Hat Security Advisory: postgresql:16 security update	2026-03-12T22:47:13+00:00	2026-04-10T21:16:46+00:00
rhsa-2026:4544	Red Hat Security Advisory: postgresql:16 security update	2026-03-12T22:40:08+00:00	2026-04-10T21:16:41+00:00
rhsa-2026:4546	Red Hat Security Advisory: postgresql:15 security update	2026-03-12T22:31:03+00:00	2026-04-10T21:16:42+00:00
rhsa-2026:4533	Red Hat Security Advisory: podman security update	2026-03-12T21:34:53+00:00	2026-04-14T07:59:10+00:00
rhsa-2026:4532	Red Hat Security Advisory: buildah security update	2026-03-12T21:01:29+00:00	2026-04-14T07:59:08+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-389290	SSA-389290: Third-Party Component Vulnerabilities in SINEC INS	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-337210	SSA-337210: Privilege Escalation Vulnerability in SINUMERIK MC	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-252466	SSA-252466: Multiple Vulnerabilities in Climatix POL909 (AWM and AWB)	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-250085	SSA-250085: Multiple Vulnerabilities in SINEC NMS and SINEMA Server	2022-03-08T00:00:00Z	2023-10-10T00:00:00Z
ssa-223353	SSA-223353: Multiple Vulnerabilities in Nucleus RTOS based SIMOTICS CONNECT 400	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-166747	SSA-166747: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer before V2022.1	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-155599	SSA-155599: File Parsing Vulnerabilities in COMOS	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-148641	SSA-148641: XPath Constraint Vulnerability in Mendix Runtime	2022-03-08T00:00:00Z	2024-10-08T00:00:00Z
ssa-134279	SSA-134279: Vulnerability in Mendix Forgot Password Appstore module	2022-03-08T00:00:00Z	2022-03-08T00:00:00Z
ssa-949188	SSA-949188: File Parsing Vulnerabilities in Simcenter Femap before V2022.1.1	2022-02-17T00:00:00Z	2022-02-17T00:00:00Z
ssa-914168	SSA-914168: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products	2022-02-08T00:00:00Z	2022-08-09T00:00:00Z
ssa-838121	SSA-838121: Multiple Denial of Service Vulnerabilities in Industrial Products	2022-02-08T00:00:00Z	2023-04-11T00:00:00Z
ssa-831168	SSA-831168: Cross-Site Scripting Vulnerability in Spectrum Power 4	2022-02-08T00:00:00Z	2022-02-08T00:00:00Z
ssa-669737	SSA-669737: Improper Access Control Vulnerability in SICAM TOOLBOX II	2022-02-08T00:00:00Z	2022-08-09T00:00:00Z
ssa-654775	SSA-654775: Open Redirect Vulnerability in SINEMA Remote Connect Server	2022-02-08T00:00:00Z	2022-02-08T00:00:00Z
ssa-609880	SSA-609880: File Parsing Vulnerabilities in Simcenter Femap before V2022.1	2022-02-08T00:00:00Z	2022-02-08T00:00:00Z
ssa-539476	SSA-539476: Siemens SIMATIC NET CP, SINEMA and SCALANCE Products Affected by Vulnerabilities in Third-Party Component strongSwan	2022-02-08T00:00:00Z	2023-03-14T00:00:00Z
ssa-301589	SSA-301589: Multiple File Parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization	2022-02-08T00:00:00Z	2022-06-14T00:00:00Z
ssa-244969	SSA-244969: OpenSSL Vulnerability in Industrial Products	2022-02-08T00:00:00.000Z	2026-04-14T00:00:00.000Z
ssa-995338	SSA-995338: Multiple Vulnerabilities in COMOS Web	2022-01-11T00:00:00Z	2022-04-12T00:00:00Z
ssa-845392	SSA-845392: Multiple Vulnerabilities in Nucleus RTOS based Siemens Energy PLUSCONTROL 1st Gen Devices	2022-01-11T00:00:00Z	2022-01-11T00:00:00Z
ssa-439673	SSA-439673: Information Disclosure Vulnerability in SIPROTEC 5 Devices	2022-01-11T00:00:00Z	2022-01-11T00:00:00Z
ssa-324998	SSA-324998: Multiple Vulnerabilities in SICAM A8000	2022-01-11T00:00:00Z	2022-01-11T00:00:00Z
ssa-173318	SSA-173318: Unquoted Search Path Vulnerability in SICAM PQ Analyzer	2022-01-11T00:00:00Z	2022-01-11T00:00:00Z
ssa-784507	SSA-784507: Apache Log4j Vulnerability (CVE-2021-44832) via JDBC Appender - Impact to Siemens Products	2021-12-28T00:00:00Z	2021-12-28T00:00:00Z
ssa-479842	SSA-479842: Apache Log4j Vulnerabilities - Impact to Siemens Energy Sensformer / Sensgear (Platform, Basic and Advanced)	2021-12-21T00:00:00Z	2021-12-23T00:00:00Z
ssa-397453	SSA-397453: Apache Log4j Vulnerabilities (Log4Shell, CVE-2021-44228, CVE-2021-45046) - Impact to Siemens Energy TraceAlertServerPLUS	2021-12-20T00:00:00Z	2021-12-20T00:00:00Z
ssa-501673	SSA-501673: Apache Log4j Denial of Service Vulnerability (CVE-2021-45105) - Impact to Siemens Products	2021-12-19T00:00:00Z	2021-12-19T00:00:00Z
ssa-714170	SSA-714170: Apache Log4j Vulnerabilities (Log4Shell, CVE-2021-44228, CVE-2021-45046) - Impact to SPPA-T3000	2021-12-16T00:00:00Z	2022-02-08T00:00:00Z
ssa-595101	SSA-595101: Multiple File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.2.0.5	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z

ID	Description	Published	Updated
suse-su-2026:20889-1	Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:44Z	2026-03-24T16:49:44Z
suse-su-2026:20888-1	Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:44Z	2026-03-24T16:49:44Z
suse-su-2026:20866-1	Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:44Z	2026-03-24T16:49:44Z
suse-su-2026:20865-1	Security update for the Linux Kernel (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:44Z	2026-03-24T16:49:44Z
suse-su-2026:20887-1	Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:34Z	2026-03-24T16:49:34Z
suse-su-2026:20886-1	Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:34Z	2026-03-24T16:49:34Z
suse-su-2026:20864-1	Security update for the Linux Kernel (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:34Z	2026-03-24T16:49:34Z
suse-su-2026:20863-1	Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:34Z	2026-03-24T16:49:34Z
suse-su-2026:20885-1	Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:25Z	2026-03-24T16:49:25Z
suse-su-2026:20884-1	Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:25Z	2026-03-24T16:49:25Z
suse-su-2026:20862-1	Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:25Z	2026-03-24T16:49:25Z
suse-su-2026:20861-1	Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:25Z	2026-03-24T16:49:25Z
suse-su-2026:20883-1	Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:13Z	2026-03-24T16:49:13Z
suse-su-2026:20882-1	Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:13Z	2026-03-24T16:49:13Z
suse-su-2026:20860-1	Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:13Z	2026-03-24T16:49:13Z
suse-su-2026:20859-1	Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:13Z	2026-03-24T16:49:13Z
suse-su-2026:20881-1	Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:03Z	2026-03-24T16:49:03Z
suse-su-2026:20880-1	Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:03Z	2026-03-24T16:49:03Z
suse-su-2026:20858-1	Security update for the Linux Kernel (Live Patch 6 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:03Z	2026-03-24T16:49:03Z
suse-su-2026:20857-1	Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:49:03Z	2026-03-24T16:49:03Z
suse-su-2026:20900-1	Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:56Z	2026-03-24T16:48:56Z
suse-su-2026:20899-1	Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:56Z	2026-03-24T16:48:56Z
suse-su-2026:20856-1	Security update for the Linux Kernel RT (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:56Z	2026-03-24T16:48:56Z
suse-su-2026:20855-1	Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:56Z	2026-03-24T16:48:56Z
suse-su-2026:20898-1	Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:44Z	2026-03-24T16:48:44Z
suse-su-2026:20897-1	Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:44Z	2026-03-24T16:48:44Z
suse-su-2026:20854-1	Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:44Z	2026-03-24T16:48:44Z
suse-su-2026:20853-1	Security update for the Linux Kernel RT (Live Patch 11 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:44Z	2026-03-24T16:48:44Z
suse-su-2026:20845-1	Security update for the Linux Kernel	2026-03-24T16:48:38Z	2026-03-24T16:48:38Z
suse-su-2026:20896-1	Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0)	2026-03-24T16:48:35Z	2026-03-24T16:48:35Z

ID	Description	Published	Updated
alsa-2025:23343	Moderate: binutils security update	2025-12-16T00:00:00Z	2025-12-22T13:47:22Z
alsa-2025:23342	Moderate: python3.9 security update	2025-12-16T00:00:00Z	2025-12-22T13:45:25Z
alsa-2025:23336	Moderate: gcc-toolset-13-binutils security update	2025-12-16T00:00:00Z	2025-12-22T13:43:11Z
alsa-2025:23326	Moderate: skopeo security update	2025-12-16T00:00:00Z	2025-12-22T13:49:03Z
alsa-2025:23325	Moderate: podman security update	2025-12-16T00:00:00Z	2025-12-22T13:50:22Z
alsa-2025:23323	Moderate: python3.12 security update	2025-12-16T00:00:00Z	2025-12-22T13:52:25Z
alsa-2025:23309	Moderate: php:8.3 security update	2025-12-16T00:00:00Z	2025-12-22T13:55:21Z
alsa-2025:23306	Moderate: binutils security update	2025-12-16T00:00:00Z	2025-12-22T13:58:22Z
alsa-2025:23295	Moderate: podman security update	2025-12-16T00:00:00Z	2025-12-22T13:57:14Z
alsa-2025:23294	Moderate: skopeo security update	2025-12-16T00:00:00Z	2025-12-22T13:59:22Z
alsa-2025:23279	Important: kernel security update	2025-12-16T00:00:00Z	2026-01-05T20:25:38Z
alsa-2025:23241	Important: kernel security update	2025-12-16T00:00:00Z	2026-01-05T20:29:24Z
alsa-2025:23210	Important: keylime security update	2025-12-15T00:00:00Z	2025-12-17T13:58:57Z
alsa-2025:23201	Important: keylime security update	2025-12-15T00:00:00Z	2025-12-22T14:00:47Z
alsa-2025:23142	Important: wireshark security update	2025-12-11T00:00:00Z	2025-12-12T10:27:48Z
alsa-2025:23141	Moderate: ruby security update	2025-12-11T00:00:00Z	2026-01-05T20:34:29Z
alsa-2025:23139	Moderate: libsoup3 security update	2025-12-11T00:00:00Z	2025-12-12T10:26:40Z
alsa-2025:23137	Moderate: mysql:8.4 security update	2025-12-11T00:00:00Z	2025-12-12T10:24:42Z
alsa-2025:23134	Moderate: mysql:8.0 security update	2025-12-11T00:00:00Z	2025-12-12T10:33:42Z
alsa-2025:23128	Important: firefox security update	2025-12-11T00:00:00Z	2025-12-12T10:19:27Z
alsa-2025:23111	Moderate: mysql:8.4 security update	2025-12-11T00:00:00Z	2025-12-17T11:32:52Z
alsa-2025:23109	Moderate: mysql security update	2025-12-11T00:00:00Z	2025-12-12T10:21:57Z
alsa-2025:23088	Moderate: grafana security update	2025-12-11T00:00:00Z	2025-12-12T10:18:20Z
alsa-2025:23087	Moderate: grafana security update	2025-12-11T00:00:00Z	2025-12-15T12:37:43Z
alsa-2025:23086	Moderate: luksmeta security update	2025-12-11T00:00:00Z	2025-12-11T13:43:22Z
alsa-2025:23083	Important: wireshark security update	2025-12-10T00:00:00Z	2025-12-12T10:17:19Z
alsa-2025:23063	Moderate: ruby:3.3 security update	2025-12-10T00:00:00Z	2026-01-05T20:38:49Z
alsa-2025:23062	Moderate: ruby:3.3 security update	2025-12-10T00:00:00Z	2026-01-05T20:45:40Z
alsa-2025:23052	Important: tomcat9 security update	2025-12-10T00:00:00Z	2025-12-17T11:36:41Z
alsa-2025:23050	Important: tomcat security update	2025-12-10T00:00:00Z	2025-12-17T11:40:04Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
osv-2024-714	Segv on unknown address in lwan_request_get_cookie	2024-08-04T00:01:49.853424Z	2025-06-17T14:38:11.268036Z
osv-2024-698	Heap-use-after-free in xmlCharEncCloseFunc	2024-07-31T00:12:19.254629Z	2026-04-16T14:30:06.495743Z
osv-2024-696	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2024-07-31T00:03:10.056663Z	2026-03-30T14:18:48.684167Z
osv-2024-695	Stack-buffer-overflow in gf_vvc_parse_nalu_bs	2024-07-31T00:02:35.217594Z	2026-04-17T14:29:22.825834Z
osv-2024-680	Security exception in com.github.javaparser.GeneratedJavaParser.Expression	2024-07-26T00:06:29.761307Z	2026-01-13T04:46:21.094915Z
osv-2024-679	Heap-buffer-overflow in readImage4v2	2024-07-25T00:14:34.485446Z	2026-04-10T14:17:32.974190Z
osv-2024-678	Use-of-uninitialized-value in FLAC__replaygain_synthesis__apply_gain	2024-07-25T00:09:08.389428Z	2025-02-11T14:21:01.793416Z
osv-2024-677	Segv on unknown address in gs_gc_reclaim	2024-07-25T00:06:43.762625Z	2026-03-18T14:32:20.684770Z
osv-2024-675	Security exception in com.github.javaparser.CommentsInserter.insertComments	2024-07-24T00:07:37.523933Z	2026-01-13T04:45:52.716176Z
osv-2024-668	Security exception in jflex.core.NFA.insertNFA	2024-07-20T00:01:48.807354Z	2024-07-20T00:01:48.807879Z
osv-2024-664	Heap-buffer-overflow in gf_dash_group_get_template	2024-07-18T00:13:55.576218Z	2026-04-17T14:28:33.932887Z
osv-2024-662	Security exception in com.github.javaparser.CommentsInserter.insertComments	2024-07-18T00:06:40.832938Z	2026-01-13T04:48:14.077313Z
osv-2024-661	Security exception in java.base/java.util.ArrayList.<init>	2024-07-18T00:05:57.665844Z	2025-12-01T14:21:01.321021Z
osv-2024-659	Index-out-of-bounds in gf_vvc_parse_nalu_bs	2024-07-18T00:01:18.765548Z	2026-04-17T14:28:06.237206Z
osv-2024-655	Stack-buffer-overflow in UnrollChunkyBytes	2024-07-17T00:06:15.877340Z	2025-05-23T07:44:18.608203Z
osv-2024-641	Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr	2024-07-14T00:06:37.034414Z	2026-03-30T14:18:20.625772Z
osv-2024-640	Null-dereference READ	2024-07-13T00:15:12.997693Z	2024-07-13T00:15:12.998025Z
osv-2024-638	Heap-buffer-overflow in ih264d_format_convert	2024-07-13T00:12:13.793261Z	2024-07-16T14:18:45.507955Z
osv-2024-637	Heap-buffer-overflow in ih264d_format_convert	2024-07-13T00:08:20.097992Z	2024-07-16T14:17:43.815608Z
osv-2024-636	Null-dereference READ in evp_mac_final	2024-07-13T00:04:18.446520Z	2024-07-13T00:04:18.446812Z
osv-2024-635	Null-dereference READ in do_evp_kdf	2024-07-13T00:03:44.593921Z	2024-07-13T00:03:44.594307Z
osv-2024-634	Heap-buffer-overflow in htmlCurrentChar	2024-07-13T00:03:44.049545Z	2024-07-13T00:03:44.049863Z
osv-2024-627	Heap-buffer-overflow in gf_hevc_parse_nalu_bs	2024-07-12T00:01:41.960899Z	2024-07-12T00:01:41.961272Z
osv-2024-602	Heap-buffer-overflow in ultrahdr::getYuv420Pixel	2024-06-29T00:09:20.554523Z	2024-06-29T00:09:20.554958Z
osv-2024-592	UNKNOWN READ in spvtools::disassemble::InstructionDisassembler::EmitInstruction	2024-06-27T00:03:46.520119Z	2025-01-10T05:00:09.280885Z
osv-2024-577	Heap-use-after-free in sputs	2024-06-22T00:14:08.186738Z	2024-06-22T00:14:08.187320Z
osv-2024-575	UNKNOWN READ in H5SL_remove	2024-06-20T00:03:37.435999Z	2024-06-20T00:03:37.436551Z
osv-2024-574	Heap-buffer-overflow in spvtools::disassemble::InstructionDisassembler::EmitInstruction	2024-06-19T00:15:01.983925Z	2024-06-25T14:22:08.649397Z
osv-2024-567	Security exception in jflex.core.NFA.insertNFA	2024-06-16T00:06:55.824759Z	2024-06-16T00:06:55.825276Z
osv-2024-555	Heap-buffer-overflow in ArduinoJson::V704HB22::detail::MsgPackDeserializer<ArduinoJson::V704HB22::detail	2024-06-13T00:06:28.782972Z	2024-06-28T14:18:08.360826Z

ID	Description	Published	Updated
rustsec-2023-0060	libwebp: OOB write in BuildHuffmanTable	2023-09-12T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2023-0059	Unaligned read of `const const c_char` pointer	2023-09-10T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2023-0058	Exposes reference to non-Sync data to an arbitrary thread	2023-09-10T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2023-0057	Fails to prohibit standard library access prior to initialization of Rust standard library runtime	2023-09-10T12:00:00Z	2024-02-10T15:57:43Z
rustsec-2023-0091	Miscompilation of wasm `i64x2.shr_s` instruction with constant input on x86\_64	2023-09-05T12:00:00Z	2025-05-02T08:23:27Z
rustsec-2023-0086	Multiple soundness issues	2023-09-03T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2023-0055	Multiple soundness issues	2023-09-03T12:00:00Z	2024-09-16T14:15:37Z
rustsec-2023-0056	Default functions in VolatileMemory trait lack bounds checks, potentially leading to out-of-bounds memory accesses	2023-09-01T12:00:00Z	2023-09-06T17:18:09Z
rustsec-2023-0053	rustls-webpki: CPU denial of service in certificate path building	2023-08-22T12:00:00Z	2023-08-27T15:52:52Z
rustsec-2023-0052	webpki: CPU denial of service in certificate path building	2023-08-22T12:00:00Z	2023-09-30T20:13:23Z
rustsec-2023-0110	`postgresderive` was removed from crates.io for malicious code	2023-08-18T12:00:00Z	2026-03-26T06:26:31Z
rustsec-2023-0103	`postgress` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0102	`serd` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0101	`oncecell` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0100	`xrvrv` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0099	`envlogger` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0098	`if-cfg` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0097	`lazystatic` was removed from crates.io for malicious code	2023-08-16T12:00:00Z	2026-03-19T22:15:12Z
rustsec-2023-0054	Use-after-free in `vec_insert_bytes`	2023-08-07T12:00:00Z	2023-08-27T15:52:52Z
rustsec-2023-0049	`tui` is unmaintained; use `ratatui` instead	2023-08-07T12:00:00Z	2023-08-07T13:27:47Z
rustsec-2023-0095	Invalid Slice Split Results in Server Panic	2023-08-03T12:00:00Z	2025-12-22T18:53:25Z
rustsec-2023-0051	`dlopen_derive` is unmaintained	2023-07-30T12:00:00Z	2023-08-19T10:29:52Z
rustsec-2023-0048	Unsoundness in `intern` methods on `intaglio` symbol interners	2023-07-26T12:00:00Z	2023-07-29T17:20:00Z
rustsec-2023-0089	atomic-polyfill is unmaintained	2023-07-11T12:00:00Z	2025-04-29T08:31:10Z
rustsec-2023-0047	impl `FromMdbValue` for bool is unsound	2023-06-26T12:00:00Z	2023-07-29T17:20:00Z
rustsec-2023-0045	memoffset allows reading uninitialized memory	2023-06-21T12:00:00Z	2023-07-08T12:30:19Z
rustsec-2023-0044	`openssl` `X509VerifyParamRef::set_host` buffer over-read	2023-06-20T12:00:00Z	2025-10-28T06:02:18Z
rustsec-2023-0046	Misaligned pointer dereference in `ChunkId::new`	2023-06-15T12:00:00Z	2023-07-08T12:30:19Z
rustsec-2023-0042	Ouroboros is Unsound	2023-06-11T12:00:00Z	2023-07-08T12:30:19Z
rustsec-2023-0041	Remote Attackers can cause Denial-of-Service (packet loops) with crafted DNS packets	2023-06-01T12:00:00Z	2023-06-13T13:10:24Z

ID	Description	Published	Updated
bit-tomcat-2026-24734	Apache Tomcat Native, Apache Tomcat: OCSP revocation bypass	2026-02-20T09:53:00.269Z	2026-04-13T06:11:47.324Z
bit-tomcat-2026-24733	Apache Tomcat: Security constraint bypass with HTTP/0.9	2026-02-20T09:52:58.708Z	2026-03-20T09:47:33.381Z
bit-tomcat-2025-66614	Apache Tomcat: Client certificate verification bypass due to virtual host mapping	2026-02-20T09:52:57.300Z	2026-03-20T09:47:33.381Z
bit-nifi-2026-25903	Apache NiFi: Missing Authorization of Restricted Permissions for Component Updates	2026-02-20T08:45:57.883Z	2026-02-20T09:09:49.097Z
bit-jenkins-2026-27100		2026-02-20T08:43:34.823Z	2026-02-20T09:09:49.097Z
bit-milvus-2025-64513	Milvus Proxy has Critical Authentication Bypass Vulnerability	2026-02-20T08:43:34.608Z	2026-02-20T09:09:49.097Z
bit-jenkins-2026-27099		2026-02-20T08:43:33.019Z	2026-02-20T09:09:49.097Z
bit-grafana-2026-21722	Public Dashboards time range restriction on annotations can be bypassed	2026-02-20T08:41:29.411Z	2026-03-02T09:10:16.414Z
bit-grafana-2026-21721	Dashboard Permissions Scope Bypass Enables Cross‑Dashboard Privilege Escalation	2026-02-20T08:41:27.652Z	2026-03-02T09:10:16.414Z
bit-grafana-2025-41117	XSS in Grafana Explore stack trace	2026-02-20T08:41:19.089Z	2026-03-02T09:10:16.414Z
bit-milvus-2026-26190	Milvus Allows Unauthenticated Access to Restful API on Metrics Port (9091) Leads to Critical System Compromise	2026-02-19T08:47:10.808Z	2026-02-19T09:13:37.164Z
bit-grafana-2026-21720	Unauthenticated DoS: avatar cache leaks goroutines when /avatar/:hash requests time out	2026-02-18T17:41:21.379Z	2026-02-18T18:09:39.057Z
bit-gitlab-2026-1458	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:31:06.973Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1456	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:31:05.146Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1282	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) in GitLab	2026-02-16T16:31:03.017Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-1094	Improper Validation of Unsafe Equivalence in Input in GitLab	2026-02-16T16:30:59.417Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-0958	Interpretation Conflict in GitLab	2026-02-16T16:30:57.233Z	2026-02-16T16:32:40.318Z
bit-gitlab-2026-0595	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2026-02-16T16:30:53.679Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-8099	Allocation of Resources Without Limits or Throttling in GitLab	2026-02-16T16:30:40.312Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-7659	Origin Validation Error in GitLab	2026-02-16T16:30:29.449Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14594	Authorization Bypass Through User-Controlled Key in GitLab	2026-02-16T16:28:35.547Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14592	Missing Authorization in GitLab	2026-02-16T16:28:33.785Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-14560	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab	2026-02-16T16:28:32.048Z	2026-02-16T16:32:40.318Z
bit-gitlab-2025-12073	Server-Side Request Forgery (SSRF) in GitLab	2026-02-16T16:27:53.661Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2007	PostgreSQL pg_trgm heap buffer overflow writes pattern onto server memory	2026-02-16T16:03:46.313Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2006	PostgreSQL missing validation of multibyte character length executes arbitrary code	2026-02-16T16:03:41.880Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2005	PostgreSQL pgcrypto heap buffer overflow executes arbitrary code	2026-02-16T16:03:36.943Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2004	PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code	2026-02-16T16:03:32.935Z	2026-02-16T16:32:40.318Z
bit-postgresql-2026-2003	PostgreSQL oidvector discloses a few bytes of memory	2026-02-16T16:03:27.354Z	2026-02-16T16:32:40.318Z
bit-pillow-2026-25990	Pillow has an out-of-bounds write when loading PSD images	2026-02-16T16:02:06.871Z	2026-02-16T16:32:40.318Z

ID	Description	Published	Updated
cleanstart-2026-jn44153	Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-GX3X-VQ4P-MHHV, GHSA-J5W8-Q4QC-RX2X applied in versions: 1.18.0-r0, 1.19.0-r1	2026-02-06T00:39:29.662228Z	2026-02-05T12:20:16Z
cleanstart-2026-bz58799	Within HostnameError	2026-02-06T00:39:29.590361Z	2026-02-05T12:20:16Z
cleanstart-2026-rr78450	Within HostnameError	2026-02-06T00:39:29.463576Z	2026-02-05T12:20:16Z
cleanstart-2026-xr99875	Security fixes for GHSA-389x-839f-4rhx, GHSA-3p8m-j85q-pgmj, GHSA-5jpm-x58v-624v, GHSA-84h7-rjj3-6jx4, GHSA-fghv-69vj-qj49, GHSA-jq43-27x9-3v86, GHSA-qqpg-mvqg-649v applied in versions: 0.1.109-r0, 0.1.113-r1	2026-02-03T16:02:30.597873Z	2026-02-03T11:13:56Z
cleanstart-2026-fc21713	Cancelling a query (e	2026-02-03T16:02:29.570272Z	2026-02-03T11:13:56Z
cleanstart-2026-qn16013	Cancelling a query (e	2026-02-03T16:02:29.512503Z	2026-02-03T11:13:56Z
cleanstart-2026-dg41269	Cancelling a query (e	2026-02-03T16:02:29.326704Z	2026-02-03T11:13:56Z
cleanstart-2026-my73913	Security fixes for GHSA-R6J8-C6R2-37RR applied in versions: 4.12.1-r0	2026-02-03T16:02:28.659120Z	2026-02-03T11:13:56Z
cleanstart-2026-nb26505	Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 4.5.1-r0	2026-02-03T16:02:27.744077Z	2026-02-03T11:13:56Z
cleanstart-2026-am95501	When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11	2026-02-03T00:37:00.849369Z	2026-02-02T12:32:10Z
cleanstart-2026-cc08655	Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 0.8.4-r0	2026-02-03T00:36:29.405423Z	2026-02-02T12:32:10Z
cleanstart-2026-el98096	Redis is an open source, in-memory database that persists on disk	2026-01-30T17:35:58.312765Z	2026-01-29T18:58:54Z
cleanstart-2026-wi17406	Redis is an open source, in-memory database that persists on disk	2026-01-30T17:35:28.375848Z	2026-01-29T18:58:54Z
cleanstart-2026-wi75198	vulnerability has been identified in Node	2026-01-30T17:34:27.754206Z	2026-01-29T18:58:54Z
cleanstart-2026-az32516	Within HostnameError	2026-01-30T17:27:26.591189Z	2026-01-29T18:58:54Z
cleanstart-2026-yt18139	issue was discovered in libexpat before 2	2026-01-30T17:26:57.202658Z	2026-01-29T18:58:54Z
cleanstart-2026-zd89666	Within HostnameError	2026-01-30T17:26:56.612763Z	2026-01-29T18:58:54Z
cleanstart-2026-pb78859	ParseAddress function constructs domain-literal address components through repeated string concatenation	2026-01-30T17:25:56.763674Z	2026-01-29T18:58:54Z
cleanstart-2026-jx46109	Within HostnameError	2026-01-30T17:25:26.548568Z	2026-01-29T18:58:54Z
cleanstart-2026-yg94604	Within HostnameError	2026-01-30T17:24:56.864393Z	2026-01-29T18:58:54Z
cleanstart-2026-qz70444	Within HostnameError	2026-01-30T17:24:26.605623Z	2026-01-29T18:58:54Z
cleanstart-2026-az24638	Within HostnameError	2026-01-30T17:22:56.881050Z	2026-01-29T18:58:54Z
cleanstart-2026-hj04971	vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT	2026-01-30T17:21:56.808972Z	2026-01-29T18:58:54Z
cleanstart-2026-ck35256	Within HostnameError	2026-01-30T17:21:56.458213Z	2026-01-29T18:58:54Z
cleanstart-2026-hf39630	potential heap based buffer overflow was found in _bfd_elf_slurp_version_tables() in bfd/elf	2026-01-30T17:20:56.632450Z	2026-01-29T18:58:54Z
cleanstart-2026-nf19624	ParseAddress function constructs domain-literal address components through repeated string concatenation	2026-01-30T17:20:26.466437Z	2026-01-29T18:58:54Z
cleanstart-2026-fw42039	vulnerability was found in PostgreSQL with the use of the MERGE command, which fails to test new rows against row security policies defined for UPDATE and SELECT	2026-01-30T17:19:56.954092Z	2026-01-29T18:58:54Z
cleanstart-2026-ht23337	flaw was found in the way certificate signatures could be forged using collisions found in the SHA-1 algorithm	2026-01-30T17:15:56.746125Z	2026-01-29T18:58:54Z
cleanstart-2026-zz61324	Hunspell 1	2026-01-30T17:14:26.562334Z	2026-01-29T18:58:54Z
cleanstart-2026-ba37192	When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers	2026-01-30T17:14:26.459138Z	2026-01-29T18:58:54Z

ID	Published	Updated
drupal-contrib-2018-002	2018-01-10T18:02:19.000Z	2023-08-11T21:46:04.000Z
drupal-contrib-2018-001	2018-01-10T17:57:53.000Z	2023-08-11T21:45:33.000Z
drupal-contrib-2017-094	2017-12-20T14:12:47.000Z	2023-08-21T13:28:00.000Z
drupal-contrib-2017-091	2017-12-06T18:44:03.000Z	2023-08-21T13:26:56.000Z
drupal-contrib-2017-083	2017-11-08T17:22:08.000Z	2023-08-21T13:31:18.000Z
drupal-contrib-2017-082	2017-11-08T17:16:30.000Z	2023-08-21T13:31:01.000Z

ID	Description	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
certfr-2026-avi-0006	Multiples vulnérabilités dans Veeam Backup & Replication	2026-01-06T00:00:00.000000	2026-01-06T00:00:00.000000
certfr-2026-avi-0005	Multiples vulnérabilités dans Centreon Open Tickets	2026-01-06T00:00:00.000000	2026-01-06T00:00:00.000000
certfr-2026-avi-0004	Vulnérabilité dans MariaDB	2026-01-05T00:00:00.000000	2026-01-05T00:00:00.000000
certfr-2026-avi-0003	Multiples vulnérabilités dans les produits Qnap	2026-01-05T00:00:00.000000	2026-01-05T00:00:00.000000
certfr-2026-avi-0002	Multiples vulnérabilités dans les produits IBM	2026-01-02T00:00:00.000000	2026-01-02T00:00:00.000000
certfr-2026-avi-0001	Multiples vulnérabilités dans le noyau Linux de SUSE	2026-01-02T00:00:00.000000	2026-01-02T00:00:00.000000
certfr-2025-avi-1142	Multiples vulnérabilités dans Moxa NPort	2025-12-31T00:00:00.000000	2025-12-31T00:00:00.000000
certfr-2025-avi-1141	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1140	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1139	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1138	Multiples vulnérabilités dans VMware Tanzu Platform	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1137	Multiples vulnérabilités dans les produits IBM	2025-12-26T00:00:00.000000	2025-12-26T00:00:00.000000
certfr-2025-avi-1136	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1135	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1134	Multiples vulnérabilités dans MongoDB Server	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1133	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1132	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1131	Multiples vulnérabilités dans les produits IBM	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1130	Multiples vulnérabilités dans les produits Foxit	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1129	Multiples vulnérabilités dans les produits VMware	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1128	Multiples vulnérabilités dans Mozilla Firefox	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1127	Multiples vulnérabilités dans Centreon Web	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1126	Multiples vulnérabilités dans PHP	2025-12-19T00:00:00.000000	2025-12-22T00:00:00.000000
certfr-2025-avi-1125	Vulnérabilité dans les produits NetApp	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1124	Multiples vulnérabilités dans Microsoft Edge	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1123	Multiples vulnérabilités dans les produits Elastic	2025-12-19T00:00:00.000000	2025-12-19T00:00:00.000000
certfr-2025-avi-1122	Multiples vulnérabilités dans Mattermost Server	2025-12-18T00:00:00.000000	2026-01-16T00:00:00.000000
certfr-2025-avi-1121	Vulnérabilité dans Sonicwall Secure Mobile Access	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1120	Vulnérabilité dans les produits Cisco	2025-12-18T00:00:00.000000	2025-12-18T00:00:00.000000
certfr-2025-avi-1119	Multiples vulnérabilités dans les produits Synology	2025-12-17T00:00:00.000000	2025-12-17T00:00:00.000000

ID	Description	Published	Updated
jvndb-2024-000030	a-blog cms vulnerable to directory traversal	2024-03-08T15:27+09:00	2024-03-08T15:27+09:00
jvndb-2024-002942	OMRON NJ/NX series vulnerable to path traversal	2024-03-08T14:16+09:00	2024-03-08T14:16+09:00
jvndb-2024-000028	Multiple vulnerabilities in SKYSEA Client View	2024-03-07T16:09+09:00	2024-07-29T18:13+09:00
jvndb-2024-000027	FUJIFILM Business Innovation Corp. printers vulnerable to cross-site request forgery	2024-03-06T18:24+09:00	2024-03-06T18:24+09:00
jvndb-2024-000026	Multiple vulnerabilities in printers and scanners which implement BROTHER Web Based Management	2024-03-06T18:12+09:00	2024-03-06T18:12+09:00
jvndb-2024-000029	Toyoko Inn official App vulnerable to improper server certificate verification	2024-03-06T13:53+09:00	2024-03-06T13:53+09:00
jvndb-2024-000025	Protection mechanism failure in RevoWorks	2024-02-29T15:40+09:00	2024-02-29T15:40+09:00
jvndb-2024-000024	OET-213H-BTS1 missing authorization check in the initial configuration	2024-02-29T14:59+09:00	2024-02-29T14:59+09:00
jvndb-2024-000023	OpenPNE plugin "opTimelinePlugin" vulnerable to cross-site scripting	2024-02-29T13:12+09:00	2024-02-29T13:12+09:00
jvndb-2024-000022	Multiple vulnerabilities in baserCMS	2024-02-27T14:25+09:00	2024-02-27T14:25+09:00
jvndb-2024-002831	ELECOM wireless LAN routers vulnerable to OS command injection	2024-02-22T08:15+09:00	2026-02-04T12:02+09:00
jvndb-2024-002832	EL Injection Vulnerability in Hitachi Global Link Manager	2024-02-21T15:53+09:00	2024-02-21T15:53+09:00
jvndb-2024-000020	Multiple vulnerabilities in ELECOM wireless LAN routers and wireless LAN repeater	2024-02-20T14:14+09:00	2024-11-26T15:26+09:00
jvndb-2024-002560	Android App "Mopria Print Service" vulnerable to improper intent handling	2024-02-15T15:26+09:00	2024-02-15T15:26+09:00
jvndb-2024-000019	a-blog cms vulnerable to URL spoofing	2024-02-15T14:12+09:00	2024-02-15T14:12+09:00
jvndb-2024-002050	Multiple out-of-bounds write vulnerabilities in Canon Office/Small Office Multifunction Printers and Laser Printers	2024-02-07T15:39+09:00	2024-03-08T18:05+09:00
jvndb-2024-001882	Sharp NEC Display Solutions' public displays vulnerable to local file inclusion	2024-02-07T14:25+09:00	2024-07-11T14:27+09:00
jvndb-2020-013805	Zeroshell vulnerable to OS command injection	2024-02-07T13:38+09:00	2024-02-07T13:38+09:00
jvndb-2024-001804	Multiple buffer overflow vulnerabilities in HOME SPOT CUBE2	2024-02-06T15:02+09:00	2024-03-11T17:32+09:00
jvndb-2024-001785	Incorrect permission assignment vulnerability in Trend Micro uiAirSupport	2024-02-06T14:46+09:00	2024-03-11T17:42+09:00
jvndb-2024-000017	Cybozu KUNAI for Android vulnerable to denial-of-service (DoS)	2024-02-06T13:25+09:00	2024-06-27T13:28+09:00
jvndb-2024-001462	File and Directory Permissions Vulnerability in Hitachi Tuning Manager	2024-02-05T14:54+09:00	2024-02-05T14:54+09:00
jvndb-2024-000016	Group Office vulnerable to cross-site scripting	2024-02-01T13:48+09:00	2024-03-11T18:04+09:00
jvndb-2024-000015	Payment EX vulnerable to information disclosure	2024-02-01T13:41+09:00	2024-03-11T17:42+09:00
jvndb-2024-001161	Multiple vulnerabilities in SHARP Energy Management Controller with Cloud Services	2024-01-31T16:01+09:00	2024-01-31T16:01+09:00
jvndb-2024-001160	File and Directory Permissions Vulnerability in Hitachi Storage Plug-in for VMware vCenter	2024-01-31T15:25+09:00	2024-03-11T17:41+09:00
jvndb-2024-001062	Yamaha wireless LAN access point devices vulnerable to active debug code	2024-01-24T17:16+09:00	2024-03-13T17:24+09:00
jvndb-2024-001061	ELECOM wireless LAN routers vulnerable to OS command injection	2024-01-24T17:16+09:00	2025-02-13T14:31+09:00
jvndb-2024-000014	Oracle WebLogic Server vulnerable to HTTP header injection	2024-01-24T13:53+09:00	2024-01-24T13:53+09:00
jvndb-2024-000005	"Mercari" App for Android fails to restrict custom URL schemes properly	2024-01-24T13:46+09:00	2024-03-04T18:01+09:00

ID	Description	Published	Updated
cnvd-2026-13251	Apache Superset信息泄露漏洞	2026-03-09	2026-03-10
cnvd-2026-13250	Apache Superset安全绕过漏洞	2026-03-09	2026-03-10
cnvd-2026-13249	Apache Superset SQL注入漏洞	2026-03-09	2026-03-10
cnvd-2026-13248	Apache Airflow日志信息泄露漏洞	2026-03-09	2026-03-10
cnvd-2026-13153	D-Link DIR-513堆栈缓冲区溢出漏洞	2026-03-09	2026-03-11
cnvd-2026-13152	D-Link DIR-513 goform/formSetDomainFilter文件缓冲区溢出漏洞	2026-03-09	2026-03-11
cnvd-2026-13151	Google Android存在未明漏洞（CNVD-2026-13151）	2026-03-09	2026-03-10
cnvd-2026-13150	Google Android拒绝服务漏洞（CNVD-2026-13150）	2026-03-09	2026-03-10
cnvd-2026-13149	Google Android权限提升漏洞（CNVD-2026-13149）	2026-03-09	2026-03-10
cnvd-2026-13148	Google Android权限提升漏洞（CNVD-2026-13148）	2026-03-09	2026-03-10
cnvd-2026-13147	Google Android拒绝服务漏洞（CNVD-2026-13147）	2026-03-09	2026-03-10
cnvd-2026-13146	Google Android权限提升漏洞（CNVD-2026-13146）	2026-03-09	2026-03-10
cnvd-2026-13145	Google Android权限提升漏洞（CNVD-2026-13145）	2026-03-09	2026-03-10
cnvd-2026-13144	Google Android权限提升漏洞（CNVD-2026-13144）	2026-03-09	2026-03-10
cnvd-2026-13143	Google Android存在未明漏洞（CNVD-2026-13143）	2026-03-09	2026-03-10
cnvd-2026-13142	Google Android信息泄露漏洞（CNVD-2026-13142）	2026-03-09	2026-03-10
cnvd-2026-12905	Microsoft ACI Confidential Containers特权提升漏洞	2026-03-09	2026-03-09
cnvd-2026-12904	Microsoft ACI Confidential Containers信息泄露漏洞	2026-03-09	2026-03-09
cnvd-2026-12903	Microsoft Payment Orchestrator Service访问控制错误漏洞	2026-03-09	2026-03-09
cnvd-2026-12902	Microsoft Devices Pricing Program代码问题漏洞	2026-03-09	2026-03-09
cnvd-2026-16683	ChurchCRM跨站脚本漏洞（CNVD-2026-16683）	2026-03-06	2026-04-10
cnvd-2026-13784	IBM Cloud Pak System信息泄露漏洞（CNVD-2026-13784）	2026-03-06	2026-03-16
cnvd-2026-13783	IBM Cloud Pak System访问控制错误漏洞	2026-03-06	2026-03-16
cnvd-2026-13583	FunAdmin访问控制错误漏洞	2026-03-06	2026-03-12
cnvd-2026-13370	OpenClaw信息泄露漏洞（CNVD-2026-13370）	2026-03-06	2026-03-12
cnvd-2026-12909	Microsoft Semantic Kernel代码注入漏洞	2026-03-06	2026-03-09
cnvd-2026-12908	Microsoft Azure Arc访问控制错误漏洞	2026-03-06	2026-03-09
cnvd-2026-12907	Microsoft Azure Functions信息泄露漏洞	2026-03-06	2026-03-09
cnvd-2026-12906	Microsoft Azure Front Door访问控制错误漏洞	2026-03-06	2026-03-09
cnvd-2026-12777	FreeRDP缓冲区溢出漏洞（CNVD-2026-12777）	2026-03-06	2026-03-06

ID	Description	Published	Updated
bdu:2026-01243	Уязвимость функции btrfs_delete_free_space_tree() модуля fs/btrfs/free-space-tree.c файло…	05.02.2026	05.02.2026
bdu:2026-01242	Уязвимость функции btrfs_finish_ordered_zoned() модуля fs/btrfs/zoned.c файловой системы …	05.02.2026	05.02.2026
bdu:2026-01241	Уязвимость функции __ocfs2_move_extent() модуля fs/ocfs2/move_extents.c файловой системы …	05.02.2026	05.02.2026
bdu:2026-01240	Уязвимость функции ext4_mb_new_inode_pa() модуля fs/ext4/mballoc.c файловой системы Ext4 …	05.02.2026	05.02.2026
bdu:2026-01239	Уязвимость функции tegra_xusb_port_unregister() модуля drivers/phy/tegra/xusb.c драйвера …	05.02.2026	05.02.2026
bdu:2026-01238	Уязвимость функции snd_dg00x_stream_init_duplex() модуля sound/firewire/digi00x/digi00x-s…	05.02.2026	05.02.2026
bdu:2026-01237	Уязвимость функции BTF_ID() модуля kernel/bpf/verifier.c поддержки интерпретатора BPF ядр…	05.02.2026	05.02.2026
bdu:2026-01236	Уязвимость функции drm_client_target_cloned() модуля drivers/gpu/drm/drm_client_modeset.c…	05.02.2026	05.02.2026
bdu:2026-01235	Уязвимость функции anysee_master_xfer() модуля drivers/media/usb/dvb-usb-v2/anysee.c драй…	05.02.2026	05.02.2026
bdu:2026-01234	Уязвимость функции skb_segment_list() модуля net/core/skbuff.c поддержки сетевых функций …	04.02.2026	04.02.2026
bdu:2026-01233	Уязвимость функции fail_iommu_bus_notify() модуля arch/powerpc/kernel/iommu.c поддержки п…	04.02.2026	04.02.2026
bdu:2026-01232	Уязвимость функции intel_gvt_debugfs_init() модуля drivers/gpu/drm/i915/gvt/debugfs.c дра…	04.02.2026	04.02.2026
bdu:2026-01231	Уязвимость функции ntfs_link_inode() модуля fs/ntfs3/inode.c файловой системы NTFS 3 ядра…	04.02.2026	04.02.2026
bdu:2026-01230	Уязвимость функции isAccessAllowed() программного средства управления и запуска OCI-конте…	04.02.2026	04.02.2026
bdu:2026-01229	Уязвимость функции __qedi_remove() модуля drivers/scsi/qedi/qedi_main.c драйвера устройст…	04.02.2026	04.02.2026
bdu:2026-01228	Уязвимость функции drm_fb_helper_damage() модуля drivers/gpu/drm/drm_fb_helper.c драйвера…	04.02.2026	04.02.2026
bdu:2026-01227	Уязвимость почтового сервера SmarterTools SmarterMail, связанная с использованием имени с…	04.02.2026	04.02.2026
bdu:2026-01226	Уязвимость метода API ConnectToHub почтового сервера SmarterTools SmarterMail, позволяюща…	04.02.2026	06.02.2026
bdu:2026-01225	Уязвимость функции sc16is7xx_probe() модуля drivers/tty/serial/sc16is7xx.c драйвера консо…	04.02.2026	04.02.2026
bdu:2026-01224	Уязвимость параметра weights_only функции torch.load() фреймворка машинного обучения PyTo…	04.02.2026	04.02.2026
bdu:2026-01223	Уязвимость файлов формата PKCS#12 библиотеки OpenSSL, позволяющая нарушителю вызвать отка…	04.02.2026	10.02.2026
bdu:2026-01222	Уязвимость инструмента командной строки openssl dgst библиотеки OpenSSL, позволяющая нару…	04.02.2026	04.02.2026
bdu:2026-01221	Уязвимость функции btrfs_drop_extent_map_range() модуля fs/btrfs/extent_map.c файловой си…	04.02.2026	04.02.2026
bdu:2026-01220	Уязвимость функции PKCS7_digest_from_attributes() библиотеки OpenSSL, позволяющая нарушит…	04.02.2026	04.02.2026
bdu:2026-01219	Уязвимость функции TS_RESP_verify_response() библиотеки OpenSSL, позволяющая нарушителю в…	04.02.2026	04.02.2026
bdu:2026-01218	Уязвимость функции PKCS12_item_decrypt_d2i_ex() библиотеки OpenSSL, позволяющая нарушител…	04.02.2026	10.02.2026
bdu:2026-01217	Уязвимость функции PKCS12_get_friendlyname() библиотеки OpenSSL, позволяющая нарушителю в…	04.02.2026	04.02.2026
bdu:2026-01216	Уязвимость функции BIO_f_linebuffer() библиотеки OpenSSL, позволяющая нарушителю вызвать …	04.02.2026	04.02.2026
bdu:2026-01215	Уязвимость функции SSL_CIPHER_find() библиотеки OpenSSL, позволяющая нарушителю вызвать о…	04.02.2026	04.02.2026
bdu:2026-01214	Уязвимость кода парсинга файлов формата PKCS#12 библиотеки OpenSSL, позволяющая нарушител…	04.02.2026	10.02.2026

ID	Description	Updated
var-201304-0303	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2026-04-10T22:21:22.153000Z
var-201110-0383	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK…	2026-04-10T22:21:21.722000Z
var-201711-0454	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2026-04-10T22:21:20.803000Z
var-202203-1400	jackson-databind before 2.13.0 allows a Java StackOverflow exception and denial of servic…	2026-04-10T22:21:20.734000Z
var-201302-0307	Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on …	2026-04-10T22:21:20.539000Z
var-202012-1546	A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. d…	2026-04-10T22:21:13.381000Z
var-200904-0794	Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows rem…	2026-04-10T22:20:41.716000Z
var-201007-0329	Multiple use-after-free vulnerabilities in WebKit in Apple Safari before 5.0.1 on Mac OS …	2026-04-10T22:20:27.031000Z
var-201405-0541	Integer overflow in java/org/apache/tomcat/util/buf/Ascii.java in Apache Tomcat before 6.…	2026-04-10T22:20:25.364000Z
var-200611-0472	Apple Mac OS X AppleTalk allows local users to cause a denial of service (kernel panic) b…	2026-04-10T22:20:21.559000Z
var-201011-0174	ipp.c in cupsd in CUPS 1.4.4 and earlier does not properly allocate memory for attribute …	2026-04-10T22:20:21.050000Z
var-201302-0149	Use-after-free vulnerability in Adobe Flash Player before 10.3.183.63 and 11.x before 11.…	2026-04-10T22:20:20.987000Z
var-202205-1990	Buffer Over-read in GitHub repository vim/vim prior to 8.2. vim/vim Exists in an out-of-b…	2026-04-10T22:20:20.812000Z
var-200902-0880	International Components for Unicode (ICU) 4.0, 3.6, and other 3.x versions, as used in A…	2026-04-10T22:20:20.642000Z
var-201912-0609	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-04-10T22:20:19.768000Z
var-201912-0618	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-04-10T22:20:18.142000Z
var-201812-0271	Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular e…	2026-04-10T22:19:04.439000Z
var-201804-1181	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2026-04-10T22:19:04.130000Z
var-202109-1802	A crafted request uri-path can cause mod_proxy to forward the request to an origin server…	2026-04-10T22:19:03.696000Z
var-201512-0007	Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 al…	2026-04-10T22:19:01.900000Z
var-201102-0097	Google Chrome before 9.0.597.94 does not properly handle anonymous blocks, which allows r…	2026-04-10T22:19:00.731000Z
var-201912-0641	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-04-10T22:19:00.244000Z
var-201506-0265	Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x…	2026-04-10T22:18:12.718000Z
var-200512-0634	passwd in Directory Services in Mac OS X 10.3.x before 10.3.9 and 10.4.x before 10.4.5 al…	2026-04-10T22:17:39.698000Z
var-200703-0029	Stack-based buffer overflow in the Apple-specific Samba module (SMB File Server) in Apple…	2026-04-10T22:17:37.437000Z
var-200908-0708	Multiple integer overflows in the Apache Portable Runtime (APR) library and the Apache Po…	2026-04-10T22:17:36.369000Z
var-202103-1554	Netty is an open-source, asynchronous event-driven network application framework for rapi…	2026-04-10T22:17:28.785000Z
var-201904-1394	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2026-04-10T22:17:20.519000Z
var-200701-0510	The Adobe PDF specification 1.3, as implemented by Apple Mac OS X Preview, allows remote …	2026-04-10T22:17:19.785000Z
var-201109-0130	The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft In…	2026-04-10T22:16:45.123000Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated