Recent vulnerabilities
Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-6362 |
6.3 (3.1)
|
Use after free in Codecs in Google Chrome prior t… |
Google |
Chrome |
2026-04-15T19:04:57.143Z | 2026-04-16T13:23:13.559Z |
| CVE-2026-6361 |
7.2 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome o… |
Google |
Chrome |
2026-04-15T19:04:56.740Z | 2026-04-16T10:00:46.711Z |
| CVE-2026-6316 |
8.8 (3.1)
|
Use after free in Forms in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:56.345Z | 2026-04-16T03:55:49.002Z |
| CVE-2026-6315 |
8.8 (3.1)
|
Use after free in Permissions in Google Chrome on… |
Google |
Chrome |
2026-04-15T19:04:55.935Z | 2026-04-16T03:55:50.553Z |
| CVE-2026-6314 |
8.3 (3.1)
|
Out of bounds write in GPU in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:55.460Z | 2026-04-16T03:56:07.922Z |
| CVE-2026-6313 |
3.1 (3.1)
|
Insufficient policy enforcement in CORS in Google… |
Google |
Chrome |
2026-04-15T19:04:54.889Z | 2026-04-15T20:00:40.125Z |
| CVE-2026-6312 |
3.1 (3.1)
|
Insufficient policy enforcement in Passwords in G… |
Google |
Chrome |
2026-04-15T19:04:54.385Z | 2026-04-15T19:59:44.768Z |
| CVE-2026-6311 |
8.3 (3.1)
|
Uninitialized Use in Accessibility in Google Chro… |
Google |
Chrome |
2026-04-15T19:04:53.973Z | 2026-04-16T03:56:12.695Z |
| CVE-2026-6310 |
8.3 (3.1)
|
Use after free in Dawn in Google Chrome prior to … |
Google |
Chrome |
2026-04-15T19:04:53.589Z | 2026-04-16T03:56:06.808Z |
| CVE-2026-6360 |
8.8 (3.1)
|
Use after free in FileSystem in Google Chrome pri… |
Google |
Chrome |
2026-04-15T19:04:53.135Z | 2026-04-16T03:56:09.052Z |
| CVE-2026-6309 |
8.3 (3.1)
|
Use after free in Viz in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-15T19:04:52.730Z | 2026-04-16T03:56:05.365Z |
| CVE-2026-6308 |
7.5 (3.1)
|
Out of bounds read in Media in Google Chrome prio… |
Google |
Chrome |
2026-04-15T19:04:52.265Z | 2026-04-16T09:57:13.931Z |
| CVE-2026-6307 |
8.8 (3.1)
|
Type Confusion in Turbofan in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:51.835Z | 2026-04-16T03:55:59.049Z |
| CVE-2026-6306 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-04-15T19:04:51.372Z | 2026-04-16T09:56:40.048Z |
| CVE-2026-6305 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-04-15T19:04:50.926Z | 2026-04-16T03:56:17.490Z |
| CVE-2026-6304 |
8.3 (3.1)
|
Use after free in Graphite in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:50.503Z | 2026-04-16T03:56:03.915Z |
| CVE-2026-6303 |
8.8 (3.1)
|
Use after free in Codecs in Google Chrome prior t… |
Google |
Chrome |
2026-04-15T19:04:50.052Z | 2026-04-16T09:57:48.474Z |
| CVE-2026-6302 |
8.8 (3.1)
|
Use after free in Video in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:49.608Z | 2026-04-16T03:56:00.581Z |
| CVE-2026-6301 |
8.8 (3.1)
|
Type Confusion in Turbofan in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:49.077Z | 2026-04-16T03:55:57.939Z |
| CVE-2026-6300 |
8.8 (3.1)
|
Use after free in CSS in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-15T19:04:48.606Z | 2026-04-16T03:55:56.815Z |
| CVE-2026-6359 |
8.8 (3.1)
|
Use after free in Video in Google Chrome on Windo… |
Google |
Chrome |
2026-04-15T19:04:48.203Z | 2026-04-16T03:55:55.574Z |
| CVE-2026-6358 |
8.8 (3.1)
|
Use after free in XR in Google Chrome on Android … |
Google |
Chrome |
2026-04-15T19:04:47.677Z | 2026-04-16T03:55:54.349Z |
| CVE-2026-6299 |
8.8 (3.1)
|
Use after free in Prerender in Google Chrome prio… |
Google |
Chrome |
2026-04-15T19:04:47.116Z | 2026-04-16T03:55:53.177Z |
| CVE-2026-6298 |
4.3 (3.1)
|
Heap buffer overflow in Skia in Google Chrome pri… |
Google |
Chrome |
2026-04-15T19:04:46.537Z | 2026-04-15T20:25:53.459Z |
| CVE-2026-6297 |
8.3 (3.1)
|
Use after free in Proxy in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:46.102Z | 2026-04-16T03:55:52.024Z |
| CVE-2026-6296 |
9.6 (3.1)
|
Heap buffer overflow in ANGLE in Google Chrome pr… |
Google |
Chrome |
2026-04-15T19:04:45.229Z | 2026-04-16T03:56:14.151Z |
| CVE-2026-40919 |
6.1 (3.1)
|
Gimp: gimp: denial of service via specially crafted se… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:16.272Z | 2026-04-15T20:01:40.521Z |
| CVE-2026-40918 |
5.5 (3.1)
|
Gimp: gimp: denial of service via crafted pvr image file |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:14.823Z | 2026-04-16T14:13:39.099Z |
| CVE-2026-40917 |
5 (3.1)
|
Gimp: gimp: application crashes or information disclos… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:09.003Z | 2026-04-15T19:27:21.721Z |
| CVE-2026-40916 |
5 (3.1)
|
Gimp: gimp: denial of service due to stack buffer over… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:58:57.615Z | 2026-04-15T19:59:03.461Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-6310 |
8.3 (3.1)
|
Use after free in Dawn in Google Chrome prior to … |
Google |
Chrome |
2026-04-15T19:04:53.589Z | 2026-04-16T03:56:06.808Z |
| CVE-2026-6309 |
8.3 (3.1)
|
Use after free in Viz in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-15T19:04:52.730Z | 2026-04-16T03:56:05.365Z |
| CVE-2026-6308 |
7.5 (3.1)
|
Out of bounds read in Media in Google Chrome prio… |
Google |
Chrome |
2026-04-15T19:04:52.265Z | 2026-04-16T09:57:13.931Z |
| CVE-2026-6307 |
8.8 (3.1)
|
Type Confusion in Turbofan in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:51.835Z | 2026-04-16T03:55:59.049Z |
| CVE-2026-6306 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-04-15T19:04:51.372Z | 2026-04-16T09:56:40.048Z |
| CVE-2026-6305 |
8.8 (3.1)
|
Heap buffer overflow in PDFium in Google Chrome p… |
Google |
Chrome |
2026-04-15T19:04:50.926Z | 2026-04-16T03:56:17.490Z |
| CVE-2026-6304 |
8.3 (3.1)
|
Use after free in Graphite in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:50.503Z | 2026-04-16T03:56:03.915Z |
| CVE-2026-6303 |
8.8 (3.1)
|
Use after free in Codecs in Google Chrome prior t… |
Google |
Chrome |
2026-04-15T19:04:50.052Z | 2026-04-16T09:57:48.474Z |
| CVE-2026-6302 |
8.8 (3.1)
|
Use after free in Video in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:49.608Z | 2026-04-16T03:56:00.581Z |
| CVE-2026-6301 |
8.8 (3.1)
|
Type Confusion in Turbofan in Google Chrome prior… |
Google |
Chrome |
2026-04-15T19:04:49.077Z | 2026-04-16T03:55:57.939Z |
| CVE-2026-6300 |
8.8 (3.1)
|
Use after free in CSS in Google Chrome prior to 1… |
Google |
Chrome |
2026-04-15T19:04:48.606Z | 2026-04-16T03:55:56.815Z |
| CVE-2026-6299 |
8.8 (3.1)
|
Use after free in Prerender in Google Chrome prio… |
Google |
Chrome |
2026-04-15T19:04:47.116Z | 2026-04-16T03:55:53.177Z |
| CVE-2026-6298 |
4.3 (3.1)
|
Heap buffer overflow in Skia in Google Chrome pri… |
Google |
Chrome |
2026-04-15T19:04:46.537Z | 2026-04-15T20:25:53.459Z |
| CVE-2026-6297 |
8.3 (3.1)
|
Use after free in Proxy in Google Chrome prior to… |
Google |
Chrome |
2026-04-15T19:04:46.102Z | 2026-04-16T03:55:52.024Z |
| CVE-2026-6296 |
9.6 (3.1)
|
Heap buffer overflow in ANGLE in Google Chrome pr… |
Google |
Chrome |
2026-04-15T19:04:45.229Z | 2026-04-16T03:56:14.151Z |
| CVE-2026-40919 |
6.1 (3.1)
|
Gimp: gimp: denial of service via specially crafted se… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:16.272Z | 2026-04-15T20:01:40.521Z |
| CVE-2026-40918 |
5.5 (3.1)
|
Gimp: gimp: denial of service via crafted pvr image file |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:14.823Z | 2026-04-16T14:13:39.099Z |
| CVE-2026-40917 |
5 (3.1)
|
Gimp: gimp: application crashes or information disclos… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:59:09.003Z | 2026-04-15T19:27:21.721Z |
| CVE-2026-40916 |
5 (3.1)
|
Gimp: gimp: denial of service due to stack buffer over… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:58:57.615Z | 2026-04-15T19:59:03.461Z |
| CVE-2026-40915 |
5.5 (3.1)
|
Gimp: gimp: heap buffer overflow due to integer overfl… |
Red Hat |
Red Hat Enterprise Linux 6 |
2026-04-15T18:58:52.059Z | 2026-04-15T19:32:55.287Z |
| CVE-2026-39857 |
5.3 (3.1)
|
Information Disclosure via `choices`/`counts` Query Pa… |
apostrophecms |
apostrophe |
2026-04-15T19:38:57.564Z | 2026-04-16T13:40:17.710Z |
| CVE-2026-35569 |
8.7 (3.1)
|
ApostropheCMS: Stored XSS in SEO Fields Leads to Authe… |
apostrophecms |
apostrophe |
2026-04-15T19:34:23.648Z | 2026-04-16T14:14:58.325Z |
| CVE-2026-33889 |
5.4 (3.1)
|
ApostropheCMS: Stored XSS via CSS Custom Property Inje… |
apostrophecms |
apostrophe |
2026-04-15T19:29:50.899Z | 2026-04-16T12:05:17.734Z |
| CVE-2026-33888 |
5.3 (3.1)
|
ApostropheCMS: publicApiProjection Bypass via `project… |
apostrophecms |
apostrophe |
2026-04-15T19:25:46.262Z | 2026-04-15T20:03:30.594Z |
| CVE-2026-33877 |
3.7 (3.1)
|
ApostropheCMS: User Enumeration via Timing Side Channe… |
apostrophecms |
apostrophe |
2026-04-15T19:11:06.796Z | 2026-04-15T19:30:53.040Z |
| CVE-2026-21727 |
3.3 (3.1)
|
Grafana Correlations: Cross-Tenant Data Disclosure and… |
Grafana |
Grafana Correlations |
2026-04-15T18:57:25.185Z | 2026-04-15T19:57:25.515Z |
| CVE-2026-21726 |
5.3 (3.1)
|
Loki Path Traversal - CVE-2021-36156 Bypass |
Grafana |
Loki |
2026-04-15T19:24:31.268Z | 2026-04-15T20:01:33.375Z |
| CVE-2025-41118 |
9.1 (3.1)
|
Sensitive COS `SecretKey` exposed in plaintext via con… |
Grafana |
Pyroscope |
2026-04-15T19:15:17.689Z | 2026-04-15T19:33:10.329Z |
| CVE-2026-6383 |
5.4 (3.1)
|
Kubevirt: kubevirt: unauthorized subresource access du… |
Red Hat |
Red Hat OpenShift Virtualization 4 |
2026-04-15T18:22:30.589Z | 2026-04-15T18:40:31.052Z |
| CVE-2026-6245 |
5.5 (3.1)
|
Sssd: out-of-bounds read in the sssd |
Red Hat |
Red Hat Enterprise Linux 10 |
2026-04-15T18:35:19.401Z | 2026-04-15T20:01:50.488Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-4xx2-h7jh-g7ph |
4.4 (3.1)
|
The Custom New User Notification plugin for WordPress is vulnerable to Stored Cross-Site Scripting … | 2026-04-16T06:31:23Z | 2026-04-16T06:31:23Z |
| ghsa-4g9p-x8vm-f7qg |
5.3 (3.1)
|
The Riaxe Product Customizer plugin for WordPress is vulnerable to authorization bypass in all vers… | 2026-04-16T06:31:23Z | 2026-04-16T06:31:23Z |
| ghsa-45x5-433g-pc2h |
5.3 (3.1)
|
The Basic Google Maps Placemarks plugin for WordPress is vulnerable to authorization bypass in vers… | 2026-04-16T06:31:23Z | 2026-04-16T06:31:23Z |
| ghsa-3phr-p473-vc8q |
8.8 (3.1)
|
The AcyMailing plugin for WordPress is vulnerable to privilege escalation in all versions From 9.11… | 2026-04-16T06:31:23Z | 2026-04-16T06:31:23Z |
| ghsa-wxm2-x9x9-x5mj |
9.3 (3.1)
|
Luanti 5 before 5.15.2, when LuaJIT is used, allows a Lua sandbox escape via a crafted mod. | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-wc72-m63f-4pcv |
6.4 (3.1)
|
The WP YouTube Lyte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugi… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-vmw6-xgxq-pw9v |
5.4 (4.0)
|
An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-v352-gq4q-9qjf |
7.4 (3.1)
|
radare2 before 9236f44, when configured on UNIX without SSL, allows command injection via a PDB nam… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-ppm7-9255-8gmf |
8.8 (3.1)
9.3 (4.0)
|
WinMatrix agent developed by Simopro Technology has a Missing Authentication vulnerability, allowin… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-mgwx-w2xc-pjq7 |
7.5 (3.1)
8.7 (4.0)
|
MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthentica… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-hx2j-xhcm-gv72 |
10.0 (4.0)
|
The iSherlock developed by HGiga has an OS Command Injection vulnerability, allowing unauthentica… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-hj44-m5xv-x75q |
3.3 (3.1)
4.8 (4.0)
|
MuPDF mutool does not sanitize PDF metadata fields before writing them to terminal output, allowing… | 2026-04-16T03:31:06Z | 2026-04-17T18:31:50Z |
| ghsa-fwhx-4vqr-m9gj |
6.5 (3.1)
7.1 (4.0)
|
OpenHarness prior to commit dd1d235 contains a path traversal vulnerability that allows remote gate… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-99qg-46r6-v9px |
6.4 (3.1)
|
The WP Shortcodes Plugin — Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-S… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-6v5j-prr3-phf9 |
9.8 (3.1)
9.3 (4.0)
|
MailGates/MailAudit developed by Openfind has a Stack-based Buffer Overflow vulnerability, allowing… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-6v58-5584-rv99 |
8.1 (3.1)
|
Luanti 5 before 5.15.2 sometimes allows unintended access to an insecure environment. If at least o… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-49h6-4qj3-4f42 |
5.4 (4.0)
|
A Download of Code Without Integrity Check vulnerability in the update modules in ASUS Member Cente… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-48wr-p98v-9w5h |
4.9 (3.1)
|
FFmpeg before 8.1 has an integer overflow and resultant out-of-bounds write via CENC (Common Encryp… | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-3r49-76f3-pf2m |
9.8 (3.1)
9.3 (4.0)
|
Creolabs Gravity before 0.9.6 contains a heap buffer overflow vulnerability in the gravity_vm_exec … | 2026-04-16T03:31:06Z | 2026-04-16T03:31:06Z |
| ghsa-9w66-jgph-vx6j |
8.8 (3.1)
8.7 (4.0)
|
OpenHarness prior to commit dd1d235 contains a command injection vulnerability that allows remote g… | 2026-04-16T03:31:05Z | 2026-04-16T03:31:05Z |
| ghsa-7rhq-9q45-5gm4 |
8.4 (4.0)
|
radare2 prior to version 6.1.4 contains a command injection vulnerability in the PDB parser's print… | 2026-04-16T03:31:05Z | 2026-04-16T03:31:05Z |
| ghsa-6f54-qjvm-wwq3 |
5.1 (4.0)
|
wger has Stored XSS via Unescaped License Attribution Fields | 2026-04-16T01:37:21Z | 2026-04-16T01:37:21Z |
| ghsa-xppv-4jrx-qf8m |
7.6 (3.1)
|
wger has Broken Access Control in Global Gym Configuration Update Endpoint | 2026-04-16T01:35:16Z | 2026-04-16T01:35:16Z |
| ghsa-5vjq-5jmg-39xq |
6.3 (3.1)
|
Renovate affected by remote code execution was possible using the bazel-module or bazelisk managers… | 2026-04-16T01:34:39Z | 2026-04-16T01:34:40Z |
| ghsa-hm2w-vr2p-hq7w |
9.8 (3.1)
|
UEFI Firmware Parser has a heap out-of-bounds write in tiano decompressor ReadCLen | 2026-04-16T01:31:09Z | 2026-04-16T01:31:09Z |
| ghsa-2689-5p89-6j3j |
9.8 (3.1)
|
UEFI Firmware Parser has a stack out-of-bounds write in tiano decompressor MakeTable | 2026-04-16T01:30:48Z | 2026-04-16T01:30:48Z |
| ghsa-mp82-fmj6-f22v |
4.8 (3.1)
|
pyLoad has a Session Cookie Security Downgrade via Untrusted X-Forwarded-Proto Header Spoofing (Glo… | 2026-04-16T01:20:49Z | 2026-04-16T01:21:32Z |
| ghsa-rr7j-v2q5-chgv |
5.3 (3.1)
|
LangSmith SDK: Streaming token events bypass output redaction | 2026-04-16T01:20:37Z | 2026-04-16T01:20:37Z |
| ghsa-vp22-38m5-r39r |
6.9 (4.0)
|
PySpector has a Plugin Code Execution Bypass via Incomplete Static Analysis in PluginSecurity.valid… | 2026-04-16T01:09:17Z | 2026-04-16T01:09:17Z |
| ghsa-gvvw-8j96-8g5r |
9.8 (3.1)
|
MsQuic has a Remote Elevation of Privilege Vulnerability | 2026-04-16T01:04:03Z | 2026-04-16T01:04:03Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2023-150 |
7.8 (3.1)
|
Buffer Overflow vulnerability in tEXtToDataBuf function in pngimage.cpp in Exiv2 0.27.1 a… | exiv2 | 2023-08-22T19:15:00+00:00 | 2023-08-25T18:28:13.546911+00:00 |
| pysec-2023-148 |
9.8 (3.1)
|
An issue in llama_index v.0.7.13 and before allows a remote attacker to execute arbitrary… | llama-index | 2023-08-15T17:15:00+00:00 | 2023-08-22T18:27:29.213194+00:00 |
| pysec-2023-147 |
9.8 (3.1)
|
An issue in langchain langchain-ai v.0.0.232 and before allows a remote attacker to execu… | langchain | 2023-08-15T17:15:00+00:00 | 2023-08-22T18:27:28.580705+00:00 |
| pysec-2023-146 |
9.8 (3.1)
|
An issue in Harrison Chase langchain v.0.0.194 and before allows a remote attacker to exe… | langchain | 2023-08-15T17:15:00+00:00 | 2023-08-22T14:25:42.963301+00:00 |
| pysec-2023-145 |
9.8 (3.1)
|
An issue in LangChain v.0.0.231 allows a remote attacker to execute arbitrary code via th… | langchain | 2023-08-15T17:15:00Z | 2023-08-29T18:47:00.000000Z |
| pysec-2023-136 |
|
Improper Input Validation vulnerability in Apache Software Foundation Apache Airflow Dril… | apache-airflow | 2023-08-11T08:15:00+00:00 | 2023-08-17T03:22:30.530556+00:00 |
| pysec-2023-137 |
|
GitPython before 3.1.32 does not block insecure non-multi options in clone and clone_from… | gitpython | 2023-08-11T07:15:00+00:00 | 2023-08-17T03:22:31.332731+00:00 |
| pysec-2023-141 |
5.4 (3.1)
|
A stored cross-site scripting (XSS) vulnerability in Netbox v3.4.7 allows attackers to ex… | pynetbox | 2023-08-10T20:15:00Z | 2023-09-07T15:50:00.665697Z |
| pysec-2023-144 |
8.8 (3.1)
|
Cross Site Request Forgery (CSRF) vulnerability in wger Project wger Workout Manager 2.2.… | wger | 2023-08-08T16:15:00+00:00 | 2023-08-17T03:22:34.520767+00:00 |
| pysec-2023-143 |
5.4 (3.1)
|
Cross Site Scripting vulnerability in wger Project wger Workout Manager v.2.2.0a3 allows … | wger | 2023-08-08T16:15:00+00:00 | 2023-08-17T03:22:34.437974+00:00 |
| pysec-2023-142 |
5.9 (3.1)
|
Vyer is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). In ver… | vyper | 2023-08-07T19:15:00+00:00 | 2023-08-17T03:22:33.953997+00:00 |
| pysec-2023-134 |
|
Execution with Unnecessary Privileges, : Exposure of Sensitive Information to an Unauthor… | apache-airflow | 2023-08-05T07:15:00+00:00 | 2023-08-05T10:26:00.927631+00:00 |
| pysec-2023-138 |
9.8 (3.1)
|
An issue in Harrison Chase langchain v.0.0.194 allows an attacker to execute arbitrary co… | langchain | 2023-08-05T03:15:00Z | 2023-08-22T15:51:39.650271Z |
| pysec-2023-140 |
6.5 (3.1)
|
MindsDB's AI Virtual Database allows developers to connect any AI/ML model to any datasou… | mindsdb | 2023-08-04T18:15:00+00:00 | 2023-08-17T03:22:32.744229+00:00 |
| pysec-2023-139 |
5.3 (3.1)
|
Sydent is an identity server for the Matrix communications protocol. Prior to version 2.5… | matrix-sydent | 2023-08-04T16:15:00+00:00 | 2023-08-17T03:22:32.583512+00:00 |
| pysec-2023-135 |
|
Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These ar… | certifi | 2023-08-03T19:36:12+00:00 | 2023-08-07T05:41:30.977938+00:00 |
| pysec-2023-280 |
7.8 (3.1)
|
OS Command Injection in GitHub repository mlflow/mlflow prior to 2.6.0. | mlflow | 2023-08-01T01:15:00+00:00 | 2024-11-21T14:22:54.880705+00:00 |
| pysec-2023-126 |
|
PaddlePaddle before 2.5.0 has a command injection in fs.py. This resulted in the ability … | paddlepaddle | 2023-07-26T12:15:00+00:00 | 2023-07-26T14:25:58.775032+00:00 |
| pysec-2023-125 |
|
FPE in paddle.trace in PaddlePaddle before 2.5.0. This flaw can cause a runtime crash and… | paddlepaddle | 2023-07-26T12:15:00+00:00 | 2023-07-26T14:25:58.693754+00:00 |
| pysec-2023-124 |
|
Heap buffer overflow in paddle.trace in PaddlePaddle before 2.5.0. This flaw can lead to … | paddlepaddle | 2023-07-26T11:15:00+00:00 | 2023-07-26T12:51:10.139446+00:00 |
| pysec-2023-123 |
|
Null pointer dereference in paddle.flip in PaddlePaddle before 2.5.0. This resulted in a … | paddlepaddle | 2023-07-26T11:15:00+00:00 | 2023-07-26T12:51:10.092120+00:00 |
| pysec-2023-122 |
|
Use after free in paddle.diagonal in PaddlePaddle before 2.5.0. This resulted in a potent… | paddlepaddle | 2023-07-26T10:15:00+00:00 | 2023-07-26T12:51:10.047714+00:00 |
| pysec-2023-132 |
6.1 (3.1)
|
copyparty is file server software. Prior to version 1.8.7, the application contains a ref… | copyparty | 2023-07-25T22:15:00+00:00 | 2023-08-02T20:24:02.446410+00:00 |
| pysec-2023-133 |
5.3 (3.1)
|
Vyper is a Pythonic programming language that targets the Ethereum Virtual Machine (EVM).… | vyper | 2023-07-25T21:15:00+00:00 | 2023-08-03T18:27:50.332832+00:00 |
| pysec-2023-130 |
6.5 (3.1)
|
Sentry is an error tracking and performance monitoring platform. Starting in version 8.21… | sentry | 2023-07-25T19:15:00+00:00 | 2023-08-02T16:31:39.850029+00:00 |
| pysec-2023-129 |
5.4 (3.1)
|
Indico is an open source a general-purpose, web based event management tool. There is a C… | indico | 2023-07-21T19:15:00+00:00 | 2023-07-31T20:36:08.003610+00:00 |
| pysec-2023-120 |
|
### Impact aiohttp v3.8.4 and earlier are [bundled with llhttp v6.0.6](https://github.co… | aiohttp | 2023-07-20T14:52:00+00:00 | 2023-07-24T14:58:05.562874+00:00 |
| pysec-2023-128 |
2.8 (3.1)
|
A flaw was found in the keylime attestation verifier, which fails to flag a device's subm… | keylime | 2023-07-19T19:15:00+00:00 | 2023-07-28T16:31:09.279625+00:00 |
| pysec-2023-117 |
|
A ReDoS issue was discovered in pygments/lexers/smithy.py in pygments through 2.15.0 via … | pygments | 2023-07-19T15:15:00+00:00 | 2023-07-19T17:26:16.938508+00:00 |
| pysec-2023-308 |
10.0 (3.1)
|
Absolute Path Traversal in GitHub repository mlflow/mlflow prior to 2.5.0. | mlflow | 2023-07-19T01:15:10+00:00 | 2025-04-09T17:27:26.223213+00:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-2472 | Malicious code in strapi-plugin-nordica-api (npm) | 2026-04-03T19:05:08Z | 2026-04-07T16:38:18Z |
| mal-2026-2473 | Malicious code in strapi-plugin-nordica-cms (npm) | 2026-04-03T19:04:49Z | 2026-04-07T16:38:18Z |
| mal-2026-2478 | Malicious code in strapi-plugin-nordica-sync (npm) | 2026-04-03T19:04:46Z | 2026-04-07T16:38:18Z |
| mal-2026-2475 | Malicious code in strapi-plugin-nordica-lite (npm) | 2026-04-03T19:04:32Z | 2026-04-07T16:38:18Z |
| mal-2026-2479 | Malicious code in strapi-plugin-nordica-tools (npm) | 2026-04-03T19:04:28Z | 2026-04-07T16:38:18Z |
| mal-2026-2484 | Malicious code in strapi-plugin-sitemap-gen (npm) | 2026-04-03T19:04:21Z | 2026-04-07T16:38:18Z |
| mal-2026-2468 | Malicious code in strapi-plugin-locale (npm) | 2026-04-03T17:28:57Z | 2026-04-07T16:38:18Z |
| mal-2026-2451 | Malicious code in strapi-plugin-api (npm) | 2026-04-03T17:27:21Z | 2026-04-07T16:38:18Z |
| mal-2026-2481 | Malicious code in strapi-plugin-notify (npm) | 2026-04-03T17:27:10Z | 2026-04-07T16:38:18Z |
| mal-2026-2462 | Malicious code in strapi-plugin-form (npm) | 2026-04-03T17:26:57Z | 2026-04-07T16:38:18Z |
| mal-2026-2482 | Malicious code in strapi-plugin-seed (npm) | 2026-04-03T17:24:36Z | 2026-04-07T16:38:18Z |
| mal-2026-2485 | Malicious code in strapi-plugin-sync (npm) | 2026-04-03T17:24:04Z | 2026-04-07T15:47:31Z |
| mal-2026-2464 | Malicious code in strapi-plugin-health (npm) | 2026-04-03T17:23:49Z | 2026-04-07T15:47:31Z |
| mal-2026-2469 | Malicious code in strapi-plugin-logger (npm) | 2026-04-03T16:13:59Z | 2026-04-07T15:47:31Z |
| mal-2026-2470 | Malicious code in strapi-plugin-monitor (npm) | 2026-04-03T16:13:14Z | 2026-04-07T16:38:18Z |
| mal-2026-2467 | Malicious code in strapi-plugin-hooks (npm) | 2026-04-03T16:11:54Z | 2026-04-07T15:47:31Z |
| mal-2026-2456 | Malicious code in strapi-plugin-core (npm) | 2026-04-03T16:11:29Z | 2026-04-07T15:47:31Z |
| mal-2026-2458 | Malicious code in strapi-plugin-database (npm) | 2026-04-03T16:11:12Z | 2026-04-07T15:47:31Z |
| mal-2026-2483 | Malicious code in strapi-plugin-server (npm) | 2026-04-03T16:10:54Z | 2026-04-07T14:41:25Z |
| mal-2026-2454 | Malicious code in strapi-plugin-config (npm) | 2026-04-03T16:10:23Z | 2026-04-07T15:47:31Z |
| mal-2026-2457 | Malicious code in strapi-plugin-cron (npm) | 2026-04-03T16:09:41Z | 2026-04-07T15:47:31Z |
| mal-2026-2448 | Malicious code in supervisors (PyPI) | 2026-04-03T11:40:59Z | 2026-04-03T11:40:59Z |
| mal-2026-2460 | Malicious code in strapi-plugin-events (npm) | 2026-04-03T11:03:27Z | 2026-04-07T15:47:31Z |
| mal-2026-2449 | Malicious code in mgc (npm) | 2026-04-03T11:03:27Z | 2026-04-07T14:41:23Z |
| mal-2026-2446 | Malicious code in @corpweb-ui/wmkt-library (npm) | 2026-04-03T08:18:07Z | 2026-04-07T14:41:19Z |
| mal-2026-2447 | Malicious code in @toprank/partner (npm) | 2026-04-03T07:43:43Z | 2026-04-07T14:41:20Z |
| mal-2026-2433 | Malicious code in pycolorlib3 (PyPI) | 2026-04-02T20:38:16Z | 2026-04-16T07:40:04Z |
| mal-2026-2432 | Malicious code in nwin64tls (PyPI) | 2026-04-02T20:28:37Z | 2026-04-02T20:28:37Z |
| mal-2026-2431 | Malicious code in nwin32tls (PyPI) | 2026-04-02T20:26:19Z | 2026-04-02T20:26:19Z |
| mal-2026-2443 | Malicious code in exprrrress (npm) | 2026-04-02T18:21:44Z | 2026-04-07T14:41:21Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2880 | Mattermost Server und Desktop: Mehrere Schwachstellen | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2879 | DriveLock: Mehrere Schwachstellen | 2025-12-17T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2878 | M-Files Server: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2877 | FreeRDP: Schwachstelle ermöglicht Denial of Service | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2876 | HCL BigFix Remote Control: Mehrere Schwachstellen | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2875 | KeePassXC-Browser: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2874 | FreeBSD Project FreeBSD OS: Mehrere Schwachstellen | 2025-12-17T23:00:00.000+00:00 | 2026-03-09T23:00:00.000+00:00 |
| wid-sec-w-2025-2873 | SonicWall SMA1000 (AMC): Schwachstelle ermöglicht Privilegieneskalation | 2025-12-17T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2872 | Drupal HTTP Client Manager: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2871 | GIMP: Mehrere Schwachstellen ermöglichen Codeausführung | 2025-12-17T23:00:00.000+00:00 | 2026-03-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2870 | Cisco AsyncOS für Secure Email Gateway: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2025-12-17T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2869 | Mozilla Firefox für iOS: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-12-16T23:00:00.000+00:00 | 2025-12-18T23:00:00.000+00:00 |
| wid-sec-w-2025-2868 | Linux Kernel: Mehrere Schwachstellen | 2025-12-16T23:00:00.000+00:00 | 2026-03-30T22:00:00.000+00:00 |
| wid-sec-w-2025-2867 | HPE OneView: Schwachstelle ermöglicht Codeausführung | 2025-12-16T23:00:00.000+00:00 | 2026-01-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2866 | Dropbear SSH: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2025-12-16T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2865 | TYPO3 Extension (Single Sign-on SAML): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2864 | Sonatype Nexus Repository Manager: Mehrere Schwachstellen | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2863 | Arista EOS: Schwachstelle ermöglicht Denial of Service | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2862 | Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2861 | Red Hat OpenShift GitOps: Schwachstelle ermöglicht Erlangen von Administratorrechten | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2860 | JetBrains TeamCity: Mehrere Schwachstellen | 2025-12-16T23:00:00.000+00:00 | 2025-12-17T23:00:00.000+00:00 |
| wid-sec-w-2025-2859 | JetBrains IntelliJ IDEA: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2858 | Google Chrome/Microsoft Edge: Mehrere Schwachstellen | 2025-12-16T23:00:00.000+00:00 | 2025-12-21T23:00:00.000+00:00 |
| wid-sec-w-2025-2857 | Claris FileMaker Server: Schwachstelle ermöglicht Codeausführung | 2025-12-16T23:00:00.000+00:00 | 2025-12-16T23:00:00.000+00:00 |
| wid-sec-w-2025-2856 | Dell SupportAssist für Home und Business PCs: Schwachstelle ermöglicht Privilegieneskalation | 2025-12-15T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2855 | IBM DataPower Gateway: Mehrere Schwachstellen | 2025-12-15T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2854 | Roundcube: Mehrere Schwachstellen | 2025-12-15T23:00:00.000+00:00 | 2026-03-08T23:00:00.000+00:00 |
| wid-sec-w-2025-2853 | HCL Commerce: Mehrere Schwachstellen | 2025-12-15T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2852 | Red Hat Enterprise Linux (Lightspeed): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-12-15T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2851 | Moodle: Mehrere Schwachstellen | 2025-12-15T23:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-128-01 | Horner Automation Cscape | 2025-05-08T06:00:00.000000Z | 2025-05-08T06:00:00.000000Z |
| icsa-25-126-03 | BrightSign Players (Update A) | 2025-05-06T06:00:00.000000Z | 2026-01-29T07:00:00.000000Z |
| icsa-25-126-02 | Milesight UG65-868M-EA | 2025-05-06T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-126-01 | Optigo Networks ONS NC600 | 2025-05-06T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsma-25-121-01 | MicroDicom DICOM Viewer | 2025-05-01T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-121-01 | KUNBUS GmbH Revolution Pi (Update A) | 2025-05-01T06:00:00.000000Z | 2025-07-10T06:00:00.000000Z |
| va-25-120-01 | Commvault Web Server unspecified vulnerability | 2025-04-30T00:00:00Z | 2025-04-30T00:00:00Z |
| va-25-119-01 | MSP360 Backup insecure filesystem permissions | 2025-04-29T15:59:52Z | 2025-05-19T00:00:00Z |
| icsa-25-196-01 | Hitachi Energy Asset Suite | 2025-04-29T12:30:00.000000Z | 2025-04-29T12:30:00.000000Z |
| icsa-25-119-02 | Delta Electronics ISPSoft | 2025-04-29T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-119-01 | Rockwell Automation ThinManager | 2025-04-29T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-114-06 | Planet Technology Network Products | 2025-04-24T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-114-05 | Johnson Controls Software House iSTAR Configuration Utility (ICU) Tool | 2025-04-24T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-114-04 | Nice Linear eMerge E3 | 2025-04-24T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-114-03 | Vestel AC Charger | 2025-04-24T06:00:00.000000Z | 2025-04-24T06:00:00.000000Z |
| icsa-25-114-02 | ALBEDO Telecom Net.Time - PTP/NTP clock | 2025-04-24T06:00:00.000000Z | 2025-04-24T06:00:00.000000Z |
| icsa-25-107-04 | Yokogawa Recorder Products | 2025-04-17T06:00:00.000000Z | 2025-04-17T06:00:00.000000Z |
| icsa-25-112-02 | Siemens TeleControl Server Basic | 2025-04-16T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-112-01 | Siemens TeleControl Server Basic SQL | 2025-04-16T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| va-25-104-01 | SicommNet multiple vulnerabilities | 2025-04-15T13:49:55Z | 2025-04-23T00:00:00Z |
| icsa-25-105-09 | Mitsubishi Electric Europe B.V. smartRTU | 2025-04-15T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-105-07 | Delta Electronics COMMGR (Update A) | 2025-04-15T06:00:00.000000Z | 2025-09-04T06:00:00.000000Z |
| icsa-25-105-06 | National Instruments LabVIEW | 2025-04-15T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-105-05 | Lantronix XPort (Update A) | 2025-04-15T06:00:00.000000Z | 2025-04-29T06:00:00.000000Z |
| icsa-25-105-04 | Growatt Cloud Applications | 2025-04-15T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-112-04 | ABB MV Drives | 2025-04-10T08:30:00.000000Z | 2025-04-10T08:30:00.000000Z |
| icsma-25-100-01 | INFINITT Healthcare INFINITT PACS | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-08 | Subnet Solutions PowerSYSTEM Center | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-100-07 | Rockwell Automation Arena | 2025-04-10T06:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-25-107-03 | Schneider Electric ConneXium Network Manager Software | 2025-04-08T04:00:00.000000Z | 2025-04-08T04:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-ftd-snort3-uanuntcv | Cisco Firepower Threat Defense Software Snort 3 Detection Engine Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-snort3-8u4hhxh8 | Cisco Firepower Threat Defense Software SSL and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-smbsnort3-dos-pfojoyuv | Cisco Firepower Threat Defense Software SMB Protocol Snort 3 Detection Engine Bypass and Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-intrusion-dos-dft7wygc | Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series Firewalls Inspection Rules Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-ftd-icmpv6-dos-4emklun | Cisco Firepower Threat Defense Software and Cisco FirePOWER Services ICMPv6 with Snort 2 Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-16T21:10:27+00:00 |
| cisco-sa-ftd-fmc-code-inj-wshrgz8l | Cisco Firepower Threat Defense Software and Firepower Management Center Software Code Injection Vulnerability | 2023-11-01T16:00:00+00:00 | 2024-10-23T15:57:47+00:00 |
| cisco-sa-fmc-xss-sk2gkfvj | Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-fmc-logview-dos-ayjdex55 | Cisco Firepower Management Center Software Log API Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-fmc-file-download-7js4ug2j | Cisco Firepower Management Center Software Arbitrary File Download Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-fmc-cmdinj-btegufox | Cisco Firepower Management Center Software Command Injection Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-fmc-cmd-inj-29mp49hn | Cisco Firepower Management Center Software Command Injection Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-cms-segfault-g6es4ve8 | Cisco Meeting Server Web Bridge Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asaftd-ssl-dos-kxg8mpua | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect SSL/TLS VPN Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asaftd-saml-hijack-ttuqfyz | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software SAML Assertion Hijack Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asaftd-multi-cert-dza3h5pt | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access SSL VPN Multiple Certificate Authentication Bypass Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asaftd-ac-acl-bypass-bwd7q6gb | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software AnyConnect Access Control List Bypass Vulnerabilities | 2023-11-01T16:00:00+00:00 | 2023-11-01T16:00:00+00:00 |
| cisco-sa-asa-webvpn-dos-3ghzqbas | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-02T13:47:35+00:00 |
| cisco-sa-asa-icmpv6-t5tzqwnd | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability | 2023-11-01T16:00:00+00:00 | 2023-11-02T13:50:35+00:00 |
| cisco-sa-sdwan-lfi-owlbkuge | Cisco Catalyst SD-WAN Manager Local File Inclusion Vulnerability | 2023-10-18T16:00:00+00:00 | 2023-10-18T16:00:00+00:00 |
| cisco-sa-http2-reset-d8kf32vz | HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023 | 2023-10-16T16:00:00+00:00 | 2023-12-21T17:09:38+00:00 |
| cisco-sa-iosxe-webui-privesc-j22saa4z | Multiple Vulnerabilities in Cisco IOS XE Software Web UI Feature | 2023-10-16T15:00:00+00:00 | 2023-11-01T15:44:28+00:00 |
| cisco-sa-curl-libcurl-d9ds39cv | cURL and libcurl Vulnerability Affecting Cisco Products: October 2023 | 2023-10-12T16:00:00+00:00 | 2024-08-27T18:06:16+00:00 |
| cisco-sa-rdocker-uatbukkn | Cisco IOx Application Hosting Environment Privilege Escalation Vulnerability | 2023-10-04T16:00:00+00:00 | 2023-10-04T16:00:00+00:00 |
| cisco-sa-cucm-apidos-pgsdcdnf | Multiple Cisco Unified Communications Products Unauthenticated API High CPU Utilization Denial of Service Vulnerability | 2023-10-04T16:00:00+00:00 | 2024-05-17T15:07:50+00:00 |
| cisco-sa-cer-priv-esc-b9t3hqk9 | Cisco Emergency Responder Static Credentials Vulnerability | 2023-10-04T16:00:00+00:00 | 2023-10-04T16:00:00+00:00 |
| cisco-sa-wlc-wncd-hfgmsfsd | Cisco IOS XE Software for Wireless LAN Controllers Wireless Network Control Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-webui-cmdij-fzzaexay | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-vmanage-html-3zkh8d6x | Cisco Catalyst SD-WAN Manager Web UI HTML Injection Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| cisco-sa-sdwan-vman-sc-lrlfu2z | Cisco Catalyst SD-WAN Manager Vulnerabilities | 2023-09-27T16:00:00+00:00 | 2023-10-25T16:37:56+00:00 |
| cisco-sa-mlre-h93fswrz | Cisco IOS XE Software for ASR 1000 Series Aggregation Services Routers IPv6 Multicast Denial of Service Vulnerability | 2023-09-27T16:00:00+00:00 | 2023-09-27T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2026-33216 | NATS has MQTT plaintext password disclosure | 2026-03-02T00:00:00.000Z | 2026-04-08T01:38:51.000Z |
| msrc_cve-2026-33186 | gRPC-Go has an authorization bypass via missing leading slash in :path | 2026-03-02T00:00:00.000Z | 2026-03-26T01:01:16.000Z |
| msrc_cve-2026-33056 | tar-rs: unpack_in can chmod arbitrary directories by following symlinks | 2026-03-02T00:00:00.000Z | 2026-04-19T01:01:24.000Z |
| msrc_cve-2026-33055 | tar-rs incorrectly ignores PAX size headers if header size is nonzero | 2026-03-02T00:00:00.000Z | 2026-04-19T01:01:18.000Z |
| msrc_cve-2026-32778 | CVE-2026-32778 | 2026-03-02T00:00:00.000Z | 2026-04-15T01:41:36.000Z |
| msrc_cve-2026-32777 | CVE-2026-32777 | 2026-03-02T00:00:00.000Z | 2026-04-15T01:41:54.000Z |
| msrc_cve-2026-32776 | CVE-2026-32776 | 2026-03-02T00:00:00.000Z | 2026-04-15T01:41:18.000Z |
| msrc_cve-2026-32775 | CVE-2026-32775 | 2026-03-02T00:00:00.000Z | 2026-03-31T14:56:17.000Z |
| msrc_cve-2026-32766 | astral-tokio-tar insufficiently validates PAX extensions during extraction | 2026-03-02T00:00:00.000Z | 2026-03-31T15:06:29.000Z |
| msrc_cve-2026-32748 | Squid has Denial of Service in ICP Response handling | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:14.000Z |
| msrc_cve-2026-32647 | NGINX ngx_http_mp4_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:48.000Z |
| msrc_cve-2026-3230 | Improper key_share validation in TLS 1.3 HelloRetryRequest | 2026-03-02T00:00:00.000Z | 2026-03-31T15:15:35.000Z |
| msrc_cve-2026-3229 | Integer Overflow in Certificate Chain Allocation | 2026-03-02T00:00:00.000Z | 2026-03-31T15:15:17.000Z |
| msrc_cve-2026-32287 | Infinite loop in github.com/antchfx/xpath | 2026-03-02T00:00:00.000Z | 2026-04-15T01:41:59.000Z |
| msrc_cve-2026-32249 | NFA regex engine NULL pointer dereference affects Vim < 9.2.0137 | 2026-03-02T00:00:00.000Z | 2026-03-31T14:45:55.000Z |
| msrc_cve-2026-32241 | Flannel vulnerable to cross-node remote code execution via extension backend BackendData injection | 2026-03-02T00:00:00.000Z | 2026-04-10T01:01:36.000Z |
| msrc_cve-2026-32141 | flatted: Unbounded recursion DoS in parse() revive phase | 2026-03-02T00:00:00.000Z | 2026-03-27T01:42:47.000Z |
| msrc_cve-2026-31802 | node-tar Symlink Path Traversal via Drive-Relative Linkpath | 2026-03-02T00:00:00.000Z | 2026-03-14T01:01:17.000Z |
| msrc_cve-2026-3119 | Authenticated query containing a TKEY record may cause named to terminate unexpectedly | 2026-03-02T00:00:00.000Z | 2026-03-31T14:59:03.000Z |
| msrc_cve-2026-3104 | Memory leak in code preparing DNSSEC proofs of non-existence | 2026-03-02T00:00:00.000Z | 2026-03-31T14:58:37.000Z |
| msrc_cve-2026-3099 | Libsoup: libsoup: authentication bypass via digest authentication replay attack | 2026-03-02T00:00:00.000Z | 2026-04-14T14:41:57.000Z |
| msrc_cve-2026-30922 | pyasn1 Vulnerable to Denial of Service via Unbounded Recursion | 2026-03-02T00:00:00.000Z | 2026-03-31T15:08:36.000Z |
| msrc_cve-2026-29786 | node-tar: Hardlink Path Traversal via Drive-Relative Linkpath | 2026-03-02T00:00:00.000Z | 2026-03-11T01:02:00.000Z |
| msrc_cve-2026-29785 | NATS Server panic via malicious compression on leafnode port | 2026-03-02T00:00:00.000Z | 2026-04-08T01:38:58.000Z |
| msrc_cve-2026-29111 | systemd: Local unprivileged user can trigger an assert | 2026-03-02T00:00:00.000Z | 2026-04-02T01:38:20.000Z |
| msrc_cve-2026-28755 | NGINX ngx_stream_ssl_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:55.000Z |
| msrc_cve-2026-28753 | NGINX ngx_mail_proxy_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:41.000Z |
| msrc_cve-2026-27784 | NGINX ngx_http_mp4_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:34.000Z |
| msrc_cve-2026-27654 | NGINX ngx_http_dav_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:27.000Z |
| msrc_cve-2026-27651 | NGINX ngx_mail_auth_http_module vulnerability | 2026-03-02T00:00:00.000Z | 2026-03-28T14:38:21.000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2025-0047 | Kwetsbaarheden verholpen in Microsoft Windows | 2025-02-11T19:16:04.610648Z | 2025-02-11T19:16:04.610648Z |
| ncsc-2025-0046 | Kwetsbaarheid verholpen in Apple iOS en iPadOS | 2025-02-11T09:54:03.266145Z | 2025-02-11T09:54:03.266145Z |
| ncsc-2025-0045 | Kwetsbaarheden verholpen in SAP producten | 2025-02-11T09:08:48.427126Z | 2025-02-11T09:08:48.427126Z |
| ncsc-2025-0044 | Kwetsbaarheden verholpen in Cisco Identity Services Engine | 2025-02-07T07:50:13.796001Z | 2025-02-07T07:50:13.796001Z |
| ncsc-2025-0043 | Kwetsbaarheden verholpen in Cisco IOS, IOS XE en IOS XR Software | 2025-02-07T07:44:34.306225Z | 2025-02-11T06:53:00.177478Z |
| ncsc-2025-0042 | Kwetsbaarheden verholpen in Cisco AsyncOS Software | 2025-02-07T07:41:10.612134Z | 2025-02-07T07:41:10.612134Z |
| ncsc-2025-0041 | Kwetsbaarheden verholpen in F5 BIG-IP | 2025-02-07T07:38:11.981975Z | 2025-02-11T06:51:17.629249Z |
| ncsc-2025-0040 | Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird | 2025-02-07T07:33:40.643635Z | 2025-02-07T07:33:40.643635Z |
| ncsc-2025-0039 | Kwetsbaarheden verholpen in Google Android en Samsung Mobile | 2025-02-04T09:13:08.342699Z | 2025-02-04T09:13:08.342699Z |
| ncsc-2025-0038 | Kwetsbaarheden verholpen in Zimbra Collaboration | 2025-02-04T09:10:55.525420Z | 2025-02-04T09:10:55.525420Z |
| ncsc-2025-0037 | Kwetsbaarheden verholpen in VMware Aria Operations | 2025-01-31T12:25:21.454904Z | 2025-01-31T12:25:21.454904Z |
| ncsc-2025-0036 | Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk | 2025-01-29T10:35:51.164484Z | 2025-01-29T10:35:51.164484Z |
| ncsc-2025-0035 | Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk | 2025-01-29T10:32:40.594073Z | 2025-01-29T10:32:40.594073Z |
| ncsc-2025-0034 | Kwetsbaarheden verholpen in Apple iPadOS en iOS | 2025-01-28T11:31:14.861619Z | 2025-01-28T11:31:14.861619Z |
| ncsc-2025-0033 | Kwetsbaarheden verholpen in Oracle E-Business Suite | 2025-01-28T10:43:20.128933Z | 2025-01-28T10:43:20.128933Z |
| ncsc-2025-0032 | Kwetsbaarheden verholpen in Apple macOS | 2025-01-28T10:37:38.942515Z | 2025-01-28T10:37:38.942515Z |
| ncsc-2025-0031 | Kwetsbaarheid verholpen in Cisco Meeting Management | 2025-01-23T13:56:01.391387Z | 2025-01-23T13:56:01.391387Z |
| ncsc-2025-0030 | Kwetsbaarheid verholpen in Cisco BroadWorks | 2025-01-23T13:53:16.250734Z | 2025-01-23T13:53:16.250734Z |
| ncsc-2025-0029 | Kwetsbaarheid verholpen in SonicWall SMA1000 Appliance | 2025-01-23T13:50:32.719670Z | 2025-01-23T13:50:32.719670Z |
| ncsc-2025-0028 | Kwetsbaarheden verholpen in Oracle Analytics | 2025-01-22T13:36:58.196605Z | 2025-01-22T13:36:58.196605Z |
| ncsc-2025-0027 | Kwetsbaarheden verholpen in Oracle Fusion Middleware | 2025-01-22T13:36:27.908718Z | 2025-01-22T13:36:27.908718Z |
| ncsc-2025-0026 | Kwetsbaarheden verholpen in Oracle JD Edwards | 2025-01-22T13:34:42.937250Z | 2025-01-22T13:34:42.937250Z |
| ncsc-2025-0025 | Kwetsbaarheden verholpen in Oracle Financial Services | 2025-01-22T13:33:00.723963Z | 2025-01-22T13:33:00.723963Z |
| ncsc-2025-0024 | Kwetsbaarheden verholpen in Oracle MySQL | 2025-01-22T13:32:27.142159Z | 2025-01-22T13:32:27.142159Z |
| ncsc-2025-0023 | Kwetsbaarheden verholpen in Oracle PeopleSoft | 2025-01-22T13:31:17.380797Z | 2025-01-22T13:31:17.380797Z |
| ncsc-2025-0022 | Kwetsbaarheden verholpen in Oracle Enterprise Manager | 2025-01-22T13:31:16.019294Z | 2025-01-22T13:31:16.019294Z |
| ncsc-2025-0021 | Kwetsbaarheden verholpen in Oracle Communications | 2025-01-22T13:30:50.189632Z | 2025-01-22T13:30:50.189632Z |
| ncsc-2025-0020 | Kwetsbaarheden verholpen in Oracle Database producten | 2025-01-22T13:30:16.354373Z | 2025-01-22T13:30:16.354373Z |
| ncsc-2025-0019 | Kwetsbaarheden verholpen in Schneider Electric Modicon | 2025-01-16T11:46:16.661689Z | 2025-01-16T11:46:16.661689Z |
| ncsc-2025-0018 | Kwetsbaarheden verholpen in Fortinet FortiSwitch, FortiManager, FortiAnalyzer, FortiOS en FortiProxy | 2025-01-15T13:25:32.904961Z | 2025-01-15T13:25:32.904961Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2026:10122-1 | fontforge-20251009-4.1 on GA media | 2026-01-30T00:00:00Z | 2026-01-30T00:00:00Z |
| opensuse-su-2026:10121-1 | chromedriver-144.0.7559.109-1.1 on GA media | 2026-01-30T00:00:00Z | 2026-01-30T00:00:00Z |
| opensuse-su-2026:10120-1 | MozillaFirefox-147.0.2-1.1 on GA media | 2026-01-30T00:00:00Z | 2026-01-30T00:00:00Z |
| opensuse-su-2026:10119-1 | ImageMagick-7.1.2.13-2.1 on GA media | 2026-01-30T00:00:00Z | 2026-01-30T00:00:00Z |
| opensuse-su-2026:20134-1 | Security update for java-17-openjdk | 2026-01-29T17:44:57Z | 2026-01-29T17:44:57Z |
| opensuse-su-2026:20133-1 | Security update for glibc | 2026-01-29T17:44:57Z | 2026-01-29T17:44:57Z |
| opensuse-su-2026:20137-1 | Security update for openvpn | 2026-01-29T16:14:38Z | 2026-01-29T16:14:38Z |
| opensuse-su-2026:20136-1 | Security update for gpg2 | 2026-01-29T16:14:38Z | 2026-01-29T16:14:38Z |
| opensuse-su-2026:20132-1 | Security update for elemental-register, elemental-toolkit | 2026-01-29T15:32:26Z | 2026-01-29T15:32:26Z |
| opensuse-su-2026:20127-1 | Security update for python-urllib3 | 2026-01-29T14:48:50Z | 2026-01-29T14:48:50Z |
| opensuse-su-2026:20131-1 | Security update for postgresql17 and postgresql18 | 2026-01-29T13:21:20Z | 2026-01-29T13:21:20Z |
| opensuse-su-2026:20130-1 | Security update for postgresql16 | 2026-01-29T10:55:17Z | 2026-01-29T10:55:17Z |
| opensuse-ru-2026:20129-1 | Recommended update for cloud-init | 2026-01-29T10:30:03Z | 2026-01-29T10:30:03Z |
| opensuse-su-2026:10118-1 | xen-4.21.0_04-1.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10117-1 | python314-3.14.2-2.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10116-1 | python311-pypdf-6.6.2-1.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10115-1 | python311-djangorestframework-3.16.1-2.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10114-1 | logback-1.2.13-2.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10113-1 | icinga2-2.15.2-1.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10112-1 | dirmngr-2.5.17-1.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:10111-1 | gio-branding-upstream-2.86.3-3.1 on GA media | 2026-01-29T00:00:00Z | 2026-01-29T00:00:00Z |
| opensuse-su-2026:20126-1 | Security update for java-21-openjdk | 2026-01-28T16:43:12Z | 2026-01-28T16:43:12Z |
| opensuse-su-2026:20125-1 | Security update for python-python-multipart | 2026-01-28T16:07:51Z | 2026-01-28T16:07:51Z |
| opensuse-su-2026:20124-1 | Security update for ucode-amd | 2026-01-28T16:01:59Z | 2026-01-28T16:01:59Z |
| opensuse-su-2026:20122-1 | Security update for python-h2 | 2026-01-28T15:52:29Z | 2026-01-28T15:52:29Z |
| opensuse-su-2026:20123-1 | Security update for xkbcomp | 2026-01-28T15:47:30Z | 2026-01-28T15:47:30Z |
| opensuse-su-2026:20120-1 | Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 16) | 2026-01-28T10:27:58Z | 2026-01-28T10:27:58Z |
| opensuse-su-2026:20119-1 | Security update for python-FontTools | 2026-01-28T09:58:53Z | 2026-01-28T09:58:53Z |
| opensuse-su-2026:20118-1 | Security update for ImageMagick | 2026-01-28T08:27:48Z | 2026-01-28T08:27:48Z |
| opensuse-su-2026:10110-1 | python311-salt-3006.0-55.1 on GA media | 2026-01-28T00:00:00Z | 2026-01-28T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2026:4531 | Red Hat Security Advisory: runc security update | 2026-03-12T20:57:13+00:00 | 2026-04-14T02:04:10+00:00 |
| rhsa-2026:4543 | Red Hat Security Advisory: vsftpd security update | 2026-03-12T20:45:47+00:00 | 2026-03-18T03:19:33+00:00 |
| rhsa-2026:4528 | Red Hat Security Advisory: postgresql security update | 2026-03-12T19:02:17+00:00 | 2026-04-10T21:16:40+00:00 |
| rhsa-2026:4525 | Red Hat Security Advisory: vsftpd security update | 2026-03-12T18:17:47+00:00 | 2026-03-18T03:19:32+00:00 |
| rhsa-2026:4524 | Red Hat Security Advisory: postgresql security update | 2026-03-12T18:08:13+00:00 | 2026-04-10T21:16:40+00:00 |
| rhsa-2026:4522 | Red Hat Security Advisory: vsftpd security update | 2026-03-12T17:56:43+00:00 | 2026-03-18T03:19:32+00:00 |
| rhsa-2026:4517 | Red Hat Security Advisory: php:7.4 security update | 2026-03-12T16:34:02+00:00 | 2026-04-08T16:38:05+00:00 |
| rhsa-2026:4515 | Red Hat Security Advisory: postgresql:15 security update | 2026-03-12T16:33:02+00:00 | 2026-04-10T21:16:38+00:00 |
| rhsa-2026:4513 | Red Hat Security Advisory: vsftpd security update | 2026-03-12T16:28:37+00:00 | 2026-03-18T03:19:23+00:00 |
| rhsa-2026:4516 | Red Hat Security Advisory: postgresql:13 security update | 2026-03-12T16:20:17+00:00 | 2026-04-10T21:16:38+00:00 |
| rhsa-2026:4514 | Red Hat Security Advisory: php:7.4 security update | 2026-03-12T16:17:44+00:00 | 2026-04-08T16:38:04+00:00 |
| rhsa-2026:4518 | Red Hat Security Advisory: postgresql security update | 2026-03-12T16:17:32+00:00 | 2026-04-10T21:16:40+00:00 |
| rhsa-2026:4456 | Red Hat Security Advisory: .NET 9.0 security update | 2026-03-12T15:37:08+00:00 | 2026-03-18T03:19:36+00:00 |
| rhsa-2026:4472 | Red Hat Security Advisory: compat-openssl11 security update | 2026-03-12T15:34:47+00:00 | 2026-04-09T23:05:57+00:00 |
| rhsa-2026:4445 | Red Hat Security Advisory: .NET 10.0 security update | 2026-03-12T15:34:02+00:00 | 2026-03-18T03:19:35+00:00 |
| rhsa-2026:4507 | Red Hat Security Advisory: php:7.4 security update | 2026-03-12T15:31:38+00:00 | 2026-04-08T16:38:04+00:00 |
| rhsa-2026:4505 | Red Hat Security Advisory: postgresql:12 security update | 2026-03-12T15:30:06+00:00 | 2026-04-10T21:16:37+00:00 |
| rhsa-2026:4509 | Red Hat Security Advisory: postgresql:12 security update | 2026-03-12T15:29:42+00:00 | 2026-04-10T21:16:38+00:00 |
| rhsa-2026:4454 | Red Hat Security Advisory: .NET 8.0 security update | 2026-03-12T15:27:16+00:00 | 2026-03-18T03:19:34+00:00 |
| rhsa-2026:4447 | Red Hat Security Advisory: libvpx security update | 2026-03-12T15:24:51+00:00 | 2026-03-23T13:12:22+00:00 |
| rhsa-2026:4504 | Red Hat Security Advisory: postgresql:13 security update | 2026-03-12T15:18:47+00:00 | 2026-04-10T21:16:37+00:00 |
| rhsa-2026:4506 | Red Hat Security Advisory: postgresql:12 security update | 2026-03-12T15:13:25+00:00 | 2026-04-10T21:16:38+00:00 |
| rhsa-2026:4501 | Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage | 2026-03-12T14:50:34+00:00 | 2026-04-09T23:05:59+00:00 |
| rhsa-2026:4500 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.9 | 2026-03-12T14:45:08+00:00 | 2026-04-14T09:46:43+00:00 |
| rhsa-2026:4498 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.4.3 | 2026-03-12T14:43:54+00:00 | 2026-04-14T09:46:46+00:00 |
| rhsa-2026:4489 | Red Hat Security Advisory: freerdp security update | 2026-03-12T14:31:57+00:00 | 2026-03-18T03:19:49+00:00 |
| rhsa-2026:4473 | Red Hat Security Advisory: python3.11 security update | 2026-03-12T13:40:42+00:00 | 2026-04-09T15:17:00+00:00 |
| rhsa-2026:4471 | Red Hat Security Advisory: freerdp security update | 2026-03-12T13:35:09+00:00 | 2026-03-18T03:19:49+00:00 |
| rhsa-2026:4475 | Red Hat Security Advisory: postgresql security update | 2026-03-12T13:32:12+00:00 | 2026-04-10T21:16:41+00:00 |
| rhsa-2026:4477 | Red Hat Security Advisory: vsftpd security update | 2026-03-12T13:23:57+00:00 | 2026-03-18T03:19:45+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ssa-523250 | SSA-523250: Improper Certificate Validation Vulnerability in SINUMERIK Edge | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-496292 | SSA-496292: Remote Code Execution Vulnerability in POWER METER SICAM Q100 | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-463116 | SSA-463116: Multiple Access Control Vulnerabilities in Siveillance Identity before V1.6.284.0 | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-400332 | SSA-400332: Insufficient Design IP Protection in IEEE 1735 Recommended Practice - Impact to Questa and ModelSim | 2021-12-14T00:00:00Z | 2022-11-08T00:00:00Z |
| ssa-396621 | SSA-396621: Multiple File Parsing Vulnerabilities in JTTK before V10.8.1.1 and JT Utilities before V12.8.1.1 | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-390195 | SSA-390195: LibVNC Vulnerabilities in SIMATIC ITC Products | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-352143 | SSA-352143: Multiple File Parsing Vulnerabilities in JTTK before V11.0.3.0 and JT Utilities before V13.0.3.0 | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-199605 | SSA-199605: Arbitrary File Download Vulnerability in SIMATIC eaSie PCS 7 Skill Package | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-161331 | SSA-161331: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer before V2021.3.1 | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-160202 | SSA-160202: Multiple Access Control Vulnerabilities in SiPass Integrated | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-133772 | SSA-133772: Zip Path Traversal Vulnerability in Teamcenter Active Workspace | 2021-12-14T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-917476 | SSA-917476: Multiple Vulnerabilities in SCALANCE W1750D | 2021-11-09T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-840188 | SSA-840188: Multiple Vulnerabilities in SIMATIC WinCC Affecting Other SIMATIC Software Products | 2021-11-09T00:00:00Z | 2023-04-11T00:00:00Z |
| ssa-779699 | SSA-779699: Two Incorrect Authorization Vulnerabilities in Mendix | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-755517 | SSA-755517: Path Traversal Vulnerability in Siveillance Video DLNA Server | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-740908 | SSA-740908: File Parsing Vulnerabilities in JT Translator in NX | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-703715 | SSA-703715: Information Disclosure Vulnerability in Climatix POL909 (AWM and AWB) | 2021-11-09T00:00:00Z | 2022-03-08T00:00:00Z |
| ssa-537983 | SSA-537983: Local Code Execution Vulnerability in SENTRON powermanager V3 | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-338732 | SSA-338732: Information Disclosure Vulnerability in Mendix | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-328042 | SSA-328042: File Parsing Vulnerabilities in OBJ Translator in NX | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-145157 | SSA-145157: Multiple Vulnerabilities in SIMATIC RTLS Locating Manager before V2.12 | 2021-11-09T00:00:00Z | 2021-11-09T00:00:00Z |
| ssa-044112 | SSA-044112: Multiple Vulnerabilities (NUCLEUS:13) in the TCP/IP Stack of Nucleus RTOS | 2021-11-09T00:00:00Z | 2021-12-14T00:00:00Z |
| ssa-766247 | SSA-766247: Authentication Vulnerability in SIMATIC Process Historian | 2021-10-12T00:00:00Z | 2022-01-11T00:00:00Z |
| ssa-280624 | SSA-280624: Multiple Vulnerabilities in SCALANCE W1750D | 2021-10-12T00:00:00Z | 2022-10-11T00:00:00Z |
| ssa-178380 | SSA-178380: Denial-of-Service Vulnerability in SINUMERIK Controllers | 2021-10-12T00:00:00Z | 2021-10-12T00:00:00Z |
| ssa-173565 | SSA-173565: Denial-of-Service Vulnerability in RUGGEDCOM ROX Devices | 2021-10-12T00:00:00Z | 2021-10-12T00:00:00Z |
| ssa-163251 | SSA-163251: Multiple Vulnerabilities in SINEC NMS | 2021-10-12T00:00:00Z | 2021-10-12T00:00:00Z |
| ssa-728618 | SSA-728618: Multiple Vulnerabilities in Solid Edge before SE2021MP8 | 2021-09-28T00:00:00Z | 2021-09-28T00:00:00Z |
| ssa-997732 | SSA-997732: Modfem File Parsing Vulnerability in Simcenter Femap before V2021.2 | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ssa-987403 | SSA-987403: Multiple Vulnerabilities in Teamcenter | 2021-09-14T00:00:00Z | 2021-09-14T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2026:20895-1 | Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:35Z | 2026-03-24T16:48:35Z |
| suse-su-2026:20852-1 | Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:35Z | 2026-03-24T16:48:35Z |
| suse-su-2026:20851-1 | Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:35Z | 2026-03-24T16:48:35Z |
| suse-su-2026:20876-1 | Security update for the Linux Kernel | 2026-03-24T16:48:29Z | 2026-03-24T16:48:29Z |
| suse-su-2026:20894-1 | Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20893-1 | Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20892-1 | Security update for the Linux Kernel RT (Live Patch 6 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20891-1 | Security update for the Linux Kernel RT (Live Patch 5 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20850-1 | Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20849-1 | Security update for the Linux Kernel RT (Live Patch 7 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20848-1 | Security update for the Linux Kernel RT (Live Patch 6 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20847-1 | Security update for the Linux Kernel RT (Live Patch 5 for SUSE Linux Enterprise Micro 6.0) | 2026-03-24T16:48:26Z | 2026-03-24T16:48:26Z |
| suse-su-2026:20926-1 | Security update for tomcat11 | 2026-03-24T16:09:46Z | 2026-03-24T16:09:46Z |
| suse-su-2026:0998-1 | Security update for gstreamer-plugins-ugly | 2026-03-24T14:56:39Z | 2026-03-24T14:56:39Z |
| suse-su-2026:0997-1 | Security update for the Linux Kernel (Live Patch 45 for SUSE Linux Enterprise 15 SP4) | 2026-03-24T14:34:37Z | 2026-03-24T14:34:37Z |
| suse-su-2026:20925-1 | Security update for nghttp2 | 2026-03-24T12:31:51Z | 2026-03-24T12:31:51Z |
| suse-su-2026:20833-1 | Security update for nghttp2 | 2026-03-24T12:31:51Z | 2026-03-24T12:31:51Z |
| suse-su-2026:20832-1 | Security update for the Linux Kernel RT (Live Patch 1 for SUSE Linux Enterprise 16) | 2026-03-24T11:33:36Z | 2026-03-24T11:33:36Z |
| suse-su-2026:20826-1 | Security update for systemd | 2026-03-24T09:34:46Z | 2026-03-24T09:34:46Z |
| suse-su-2026:20822-1 | Security update for systemd | 2026-03-24T09:27:18Z | 2026-03-24T09:27:18Z |
| suse-su-2026:0992-1 | Security update for the Linux Kernel (Live Patch 44 for SUSE Linux Enterprise 15 SP4) | 2026-03-24T09:11:21Z | 2026-03-24T09:11:21Z |
| suse-su-2026:20821-1 | Security update for python-pyasn1 | 2026-03-24T09:09:54Z | 2026-03-24T09:09:54Z |
| suse-su-2026:0993-1 | Security update for go1.26-openssl | 2026-03-24T08:54:50Z | 2026-03-24T08:54:50Z |
| suse-su-2026:0991-1 | Security update for systemd | 2026-03-24T07:23:00Z | 2026-03-24T07:23:00Z |
| suse-su-2026:0990-1 | Security update for systemd | 2026-03-24T07:22:51Z | 2026-03-24T07:22:51Z |
| suse-su-2026:20825-1 | Security update for salt | 2026-03-24T06:19:37Z | 2026-03-24T06:19:37Z |
| suse-su-2026:20820-1 | Security update for salt | 2026-03-24T05:49:23Z | 2026-03-24T05:49:23Z |
| suse-su-2026:20831-1 | Security update for the Linux Kernel RT (Live Patch 0 for SUSE Linux Enterprise 16) | 2026-03-24T05:44:24Z | 2026-03-24T05:44:24Z |
| suse-su-2026:20830-1 | Security update for the Linux Kernel RT (Live Patch 4 for SUSE Linux Enterprise 16) | 2026-03-24T05:43:06Z | 2026-03-24T05:43:06Z |
| suse-su-2026:20829-1 | Security update for the Linux Kernel RT (Live Patch 2 for SUSE Linux Enterprise 16) | 2026-03-24T04:10:29Z | 2026-03-24T04:10:29Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| alsa-2025:23049 | Important: tomcat security update | 2025-12-10T00:00:00Z | 2025-12-17T11:42:14Z |
| alsa-2025:23048 | Important: tomcat security update | 2025-12-10T00:00:00Z | 2025-12-11T14:01:21Z |
| alsa-2025:23035 | Important: firefox security update | 2025-12-10T00:00:00Z | 2025-12-12T10:16:15Z |
| alsa-2025:23034 | Important: firefox security update | 2025-12-10T00:00:00Z | 2025-12-12T10:14:54Z |
| alsa-2025:23008 | Moderate: mysql8.4 security update | 2025-12-10T00:00:00Z | 2025-12-12T10:13:50Z |
| alsa-2025:22865 | Moderate: kernel security update | 2025-12-08T00:00:00Z | 2025-12-17T11:46:25Z |
| alsa-2025:22854 | Moderate: kernel security update | 2025-12-08T00:00:00Z | 2025-12-10T08:12:35Z |
| alsa-2025:22801 | Moderate: kernel security update | 2025-12-08T00:00:00Z | 2025-12-08T13:53:19Z |
| alsa-2025:22800 | Moderate: kernel-rt security update | 2025-12-08T00:00:00Z | 2025-12-08T13:58:04Z |
| alsa-2025:22790 | Important: webkit2gtk3 security update | 2025-12-08T00:00:00Z | 2025-12-08T14:01:28Z |
| alsa-2025:22789 | Important: webkit2gtk3 security update | 2025-12-08T00:00:00Z | 2025-12-08T13:59:43Z |
| alsa-2025:22760 | Important: abrt security update | 2025-12-04T00:00:00Z | 2025-12-10T10:40:28Z |
| alsa-2025:22668 | Moderate: go-toolset:rhel8 security update | 2025-12-03T00:00:00Z | 2025-12-05T08:01:54Z |
| alsa-2025:22660 | Moderate: systemd security update | 2025-12-03T00:00:00Z | 2025-12-04T13:25:23Z |
| alsa-2025:22417 | Important: gimp:2.8 security update | 2025-12-01T00:00:00Z | 2025-12-04T13:28:20Z |
| alsa-2025:22405 | Moderate: kernel security update | 2025-12-01T00:00:00Z | 2025-12-08T12:22:10Z |
| alsa-2025:22395 | Moderate: kernel security update | 2025-12-01T00:00:00Z | 2025-12-15T12:44:56Z |
| alsa-2025:22394 | Moderate: qt6-qtsvg security update | 2025-12-01T00:00:00Z | 2025-12-05T07:42:49Z |
| alsa-2025:22388 | Moderate: kernel security update | 2025-12-01T00:00:00Z | 2025-12-03T11:59:02Z |
| alsa-2025:22387 | Moderate: kernel-rt security update | 2025-12-01T00:00:00Z | 2025-12-03T12:01:56Z |
| alsa-2025:22376 | Moderate: libxml2 security update | 2025-12-01T00:00:00Z | 2025-12-03T12:03:31Z |
| alsa-2025:22363 | Important: firefox security update | 2025-12-01T00:00:00Z | 2025-12-03T12:05:25Z |
| alsa-2025:22361 | Moderate: qt6-qtquick3d security update | 2025-12-01T00:00:00Z | 2025-12-05T07:43:58Z |
| alsa-2025:22175 | Important: expat security update | 2025-11-26T00:00:00Z | 2025-12-03T12:07:34Z |
| alsa-2025:22063 | Moderate: cups security update | 2025-11-25T00:00:00Z | 2025-11-28T13:48:35Z |
| alsa-2025:22012 | Important: buildah security update | 2025-11-25T00:00:00Z | 2025-12-05T07:44:58Z |
| alsa-2025:22011 | Important: buildah security update | 2025-11-25T00:00:00Z | 2025-11-25T12:06:57Z |
| alsa-2025:22005 | Moderate: go-rpm-macros security update | 2025-11-25T00:00:00Z | 2025-11-25T10:51:18Z |
| alsa-2025:21977 | Moderate: libssh security update | 2025-11-24T00:00:00Z | 2025-11-25T12:04:18Z |
| alsa-2025:21974 | Important: mingw-expat security update | 2025-11-24T00:00:00Z | 2025-12-01T07:55:50Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| osv-2024-567 | Security exception in jflex.core.NFA.insertNFA | 2024-06-16T00:06:55.824759Z | 2024-06-16T00:06:55.825276Z |
| osv-2024-555 | Heap-buffer-overflow in ArduinoJson::V704HB22::detail::MsgPackDeserializer<ArduinoJson::V704HB22::detail | 2024-06-13T00:06:28.782972Z | 2024-06-28T14:18:08.360826Z |
| osv-2024-552 | UNKNOWN READ in ndpi_search_zoom | 2024-06-12T00:12:06.312903Z | 2024-06-12T00:12:06.313282Z |
| osv-2024-551 | Heap-buffer-overflow in mz_zip_mem_read_func | 2024-06-12T00:06:30.075962Z | 2024-06-12T00:06:30.076324Z |
| osv-2024-550 | Heap-buffer-overflow in mz_zip_mem_read_func | 2024-06-12T00:06:02.418206Z | 2024-06-12T00:06:02.418563Z |
| osv-2024-548 | Use-of-uninitialized-value in icalmemory_strdup | 2024-06-12T00:00:26.364017Z | 2024-06-12T00:00:26.364669Z |
| osv-2024-539 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-06-07T00:08:30.308579Z | 2024-07-16T14:19:14.406686Z |
| osv-2024-538 | Use-of-uninitialized-value in QUICVariableInt::size | 2024-06-06T00:12:59.950768Z | 2024-07-16T14:22:07.747083Z |
| osv-2024-535 | Use-of-uninitialized-value in spvTextEncodeOperand | 2024-06-06T00:00:55.007699Z | 2024-06-25T14:21:53.898093Z |
| osv-2024-521 | Heap-buffer-overflow in ubidi_writeReordered_76 | 2024-05-31T00:06:51.180600Z | 2024-05-31T00:06:51.181049Z |
| osv-2024-518 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-05-30T00:16:42.628026Z | 2024-06-24T14:17:55.597576Z |
| osv-2024-517 | Segv on unknown address in od_ec_dec_init | 2024-05-30T00:05:57.060200Z | 2024-07-16T14:24:59.011170Z |
| osv-2024-504 | Heap-buffer-overflow in ultrahdr::getYuv420Pixel | 2024-05-25T00:01:08.542552Z | 2024-05-25T00:01:08.543179Z |
| osv-2024-503 | Heap-buffer-overflow in pdf_save_viewer_state | 2024-05-24T00:02:37.047119Z | 2024-05-24T00:02:37.047771Z |
| osv-2024-496 | UNKNOWN READ in chunk_free_object | 2024-05-22T00:06:41.510071Z | 2024-05-22T00:06:41.510555Z |
| osv-2024-495 | UNKNOWN READ in chunk_free_object | 2024-05-22T00:04:27.058012Z | 2024-05-22T00:04:27.058432Z |
| osv-2024-493 | UNKNOWN READ in chunk_free_object | 2024-05-22T00:00:49.459478Z | 2024-05-22T00:00:49.459808Z |
| osv-2024-490 | Security exception in com.github.javaparser.CommentsInserter.insertComments | 2024-05-20T00:07:13.417197Z | 2024-05-20T00:07:13.417898Z |
| osv-2024-477 | Heap-buffer-overflow in ultrahdr::gain_map_metadata::decodeGainmapMetadata | 2024-05-16T00:07:25.350135Z | 2024-05-16T00:07:25.350518Z |
| osv-2024-476 | Heap-buffer-overflow in ultrahdr::getYuv420Pixel | 2024-05-16T00:01:52.617825Z | 2024-05-16T00:01:52.618175Z |
| osv-2024-473 | Security exception in com.puppycrawl.tools.checkstyle.grammar.java.JavaLanguageParser.expr | 2024-05-15T00:13:12.880068Z | 2024-07-16T14:20:15.561933Z |
| osv-2024-471 | Use-of-uninitialized-value in vpx_codec_peek_stream_info | 2024-05-15T00:02:46.464995Z | 2024-05-15T00:02:46.465573Z |
| osv-2024-469 | Heap-buffer-overflow in check_content_type_and_change_protocol | 2024-05-13T00:06:08.552810Z | 2024-05-13T00:06:08.553286Z |
| osv-2024-460 | UNKNOWN READ in glslang::TInfoSinkBase::location | 2024-05-11T00:04:46.149516Z | 2025-01-10T05:21:00.966877Z |
| osv-2024-456 | Heap-buffer-overflow in ih264d_read_coeff4x4_cabac | 2024-05-09T00:08:35.451422Z | 2024-05-27T14:02:56.983104Z |
| osv-2024-453 | Use-of-uninitialized-value in encode_base64_differential | 2024-05-08T00:15:55.868630Z | 2024-05-08T00:15:55.868890Z |
| osv-2024-451 | Use-of-uninitialized-value in XpackDynamicTable::_make_space | 2024-05-08T00:14:48.544622Z | 2026-04-03T14:17:40.819969Z |
| osv-2024-450 | Use-of-uninitialized-value in ink_filepath_merge | 2024-05-08T00:13:15.436703Z | 2024-05-08T00:13:15.437003Z |
| osv-2024-449 | Use-of-uninitialized-value in YAML::Stream::Stream | 2024-05-08T00:10:19.320498Z | 2024-05-08T00:10:19.320806Z |
| osv-2024-440 | UNKNOWN READ | 2024-05-07T00:06:11.033336Z | 2025-07-01T14:30:06.613574Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rustsec-2023-0040 | `users` crate is unmaintained | 2023-06-01T12:00:00Z | 2023-08-21T10:35:45Z |
| rustsec-2023-0039 | Out-of-bounds array access leads to panic | 2023-05-16T12:00:00Z | 2025-10-28T06:02:18Z |
| rustsec-2023-0038 | Out-of-bounds array access leads to panic | 2023-05-16T12:00:00Z | 2025-10-28T06:02:18Z |
| rustsec-2023-0037 | crate has been renamed to `crypto_secretbox` | 2023-05-16T12:00:00Z | 2023-05-17T03:02:51Z |
| rustsec-2023-0066 | Vulnerable to privilege escalation using ioctls TIOCSTI and TIOCLINUX | 2023-04-29T12:00:00Z | 2024-02-10T15:57:43Z |
| rustsec-2023-0092 | Undefined Behavior in Rust runtime functions | 2023-04-21T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2023-0125 | Logs AWS credentials when TRACE-level logging is enabled | 2023-04-19T12:00:00Z | 2026-04-02T14:44:59Z |
| rustsec-2023-0035 | Adverserial use of `make_bitflags!` macro can cause undefined behavior | 2023-04-17T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0034 | Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS) | 2023-04-14T12:00:00Z | 2023-04-20T19:17:55Z |
| rustsec-2023-0033 | Parsing borsh messages with ZST which are not-copy/clone is unsound | 2023-04-12T12:00:00Z | 2024-09-23T15:02:17Z |
| rustsec-2023-0050 | multipart is Unmaintained | 2023-04-11T12:00:00Z | 2023-08-18T20:38:40Z |
| rustsec-2023-0036 | tree_magic is Unmaintained | 2023-04-11T12:00:00Z | 2023-04-25T03:08:42Z |
| rustsec-2023-0031 | Initialisation failure in `Once::try_call_once` can lead to undefined behaviour for other initialisers | 2023-03-31T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0030 | `Versionize::deserialize` implementation for `FamStructWrapper<T>` is lacking bound checks, potentially leading to out of bounds memory accesses | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0029 | TLS certificate common name validation bypass | 2023-03-24T12:00:00Z | 2023-11-08T09:57:41Z |
| rustsec-2023-0027 | TLS certificate common name validation bypass | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0024 | `openssl` `X509Extension::new` and `X509Extension::new_nid` null pointer dereference | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0023 | `openssl` `SubjectAlternativeName` and `ExtendedKeyUsage::other` allow arbitrary file read | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0022 | `openssl` `X509NameBuilder::build` returned object is not thread safe | 2023-03-24T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0032 | Unsound FFI: Wrong API usage causes write past allocated area | 2023-03-22T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0021 | NULL pointer dereference in `stb_image` | 2023-03-19T12:00:00Z | 2023-07-15T15:07:13Z |
| rustsec-2023-0026 | Gitoxide has renamed its crates. | 2023-03-14T12:00:00Z | 2023-03-24T15:33:49Z |
| rustsec-2023-0025 | Gitoxide has renamed its crates. | 2023-03-14T12:00:00Z | 2023-03-24T15:33:49Z |
| rustsec-2023-0020 | const-cstr is Unmaintained | 2023-03-12T12:00:00Z | 2023-03-12T18:38:56Z |
| rustsec-2023-0017 | `maligned::align_first` causes incorrect deallocation | 2023-03-04T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0093 | Miscompilation of `i8x16.select` with the same inputs on x86\_64 | 2023-03-03T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2023-0090 | Guest-controlled out-of-bounds read/write on x86\_64 | 2023-03-02T12:00:00Z | 2025-05-02T08:23:27Z |
| rustsec-2023-0015 | Ascii allows out-of-bounds array indexing in safe code | 2023-02-25T12:00:00Z | 2023-06-13T13:10:24Z |
| rustsec-2023-0018 | Race Condition Enabling Link Following and Time-of-check Time-of-use (TOCTOU) | 2023-02-24T12:00:00Z | 2023-03-04T21:50:30Z |
| rustsec-2023-0043 | ftp is unmaintained, use suppaftp instead | 2023-02-20T12:00:00Z | 2023-06-14T13:23:36Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-pip-2026-1703 | Limited path traversal when installing wheel archives | 2026-02-16T15:59:06.080Z | 2026-02-16T16:32:40.318Z |
| bit-dotnet-2026-21218 | .NET Spoofing Vulnerability | 2026-02-16T15:58:16.593Z | 2026-02-16T16:32:40.318Z |
| bit-moodle-2025-67857 | Moodle: moodle: data exposure of user identifiers in urls | 2026-02-12T08:51:13.591Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67856 | Moodle: moodle: privilege escalation via incomplete role checks in badge awarding | 2026-02-12T08:51:12.105Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67855 | Mooodle: mooodle: information disclosure and script execution via reflected cross-site scripting | 2026-02-12T08:51:10.563Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67853 | Moodle: moodle: brute-force facilitation due to missing rate limiting in confirmation email service | 2026-02-12T08:51:08.996Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67852 | Moodle: moodle: open redirect vulnerability in oauth login flow allows redirection to malicious sites. | 2026-02-12T08:51:07.525Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67851 | Moodle: moodle: formula injection allows arbitrary formula execution via unescaped data export | 2026-02-12T08:51:05.950Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67850 | Moodle: moodle: cross-site scripting vulnerability via inadequate input filtering in formula editor | 2026-02-12T08:51:04.289Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67849 | Moodle: moodle: cross-site scripting (xss) via improper sanitization of ai prompt responses | 2026-02-12T08:51:02.532Z | 2026-02-12T09:10:24.600Z |
| bit-moodle-2025-67848 | Moodle: moodle: authentication bypass via lti provider allows suspended users to gain unauthorized access. | 2026-02-12T08:51:00.880Z | 2026-02-12T09:10:24.600Z |
| bit-airflow-2026-24098 | Apache Airflow: Assigning single DAG permission leaked all DAGs Import Errors | 2026-02-12T08:39:03.920Z | 2026-03-11T09:11:40.352Z |
| bit-airflow-2026-22922 | Apache Airflow: Airflow externalLogUrl Permission Bypass | 2026-02-12T08:39:02.281Z | 2026-02-12T09:10:24.600Z |
| bit-nginx-2026-1642 | 2026-02-10T18:00:00.000Z | 2026-02-10T18:00:00.000Z | |
| bit-golang-2025-68121 | Unexpected session resumption in crypto/tls | 2026-02-10T10:05:16.474Z | 2026-02-11T09:09:18.507Z |
| bit-prestashop-2026-25597 | PrestaShop has a time based enumeration in FO login form | 2026-02-10T10:02:58.336Z | 2026-02-10T10:34:11.934Z |
| bit-golang-2025-61732 | Potential code smuggling via doc comments in cmd/cgo | 2026-02-10T08:48:31.170Z | 2026-02-10T09:16:50.296Z |
| bit-checkov-2021-3040 | Bridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution | 2026-02-09T11:36:28.864Z | 2026-02-09T12:10:11.303Z |
| bit-checkov-2021-3035 | Bridgecrew Checkov: Unsafe deserialization of Terraform files allows code execution | 2026-02-09T11:36:27.254Z | 2026-02-09T12:10:11.303Z |
| bit-mastodon-2026-25540 | Mastodon's signature-dependent ActivityPub collection responses cached under signature-independent keys (Web Cache Poisoning via `Rails.cache`) | 2026-02-06T08:46:33.665Z | 2026-02-06T09:20:48.186Z |
| bit-golang-2025-22873 | Improper access to parent directory of root in os | 2026-02-06T08:45:38.334Z | 2026-02-06T09:20:48.186Z |
| bit-gitlab-2026-1751 | Missing Authorization in GitLab | 2026-02-05T09:09:05.467Z | 2026-02-05T09:10:30.960Z |
| bit-django-2026-1312 | Potential SQL injection via QuerySet.order_by and FilteredRelation | 2026-02-05T08:38:43.002Z | 2026-02-05T09:10:30.960Z |
| bit-django-2026-1287 | Potential SQL injection in column aliases via control characters | 2026-02-05T08:38:41.246Z | 2026-02-05T09:10:30.960Z |
| bit-django-2026-1285 | Potential denial-of-service vulnerability in django.utils.text.Truncator HTML methods | 2026-02-05T08:38:39.228Z | 2026-02-05T09:10:30.960Z |
| bit-django-2026-1207 | Potential SQL injection via raster lookups on PostGIS | 2026-02-05T08:38:37.158Z | 2026-02-05T09:10:30.960Z |
| bit-django-2025-14550 | Potential denial-of-service vulnerability via repeated headers when using ASGI | 2026-02-05T08:38:18.195Z | 2026-02-05T09:10:30.960Z |
| bit-django-2025-13473 | Username enumeration through timing difference in mod_wsgi authentication handler | 2026-02-05T08:38:16.508Z | 2026-02-05T09:10:30.960Z |
| bit-python-2007-4559 | 2026-02-03T16:04:06.884Z | 2026-02-03T16:04:06.884Z | |
| bit-python-2026-1299 | email BytesGenerator header injection due to unquoted newlines | 2026-02-03T08:53:00.053Z | 2026-04-10T09:26:18.172Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cleanstart-2026-xb16901 | When multiple server blocks are configured to share the same IP address and port, an attacker can use session resumption to bypass client certificate authentication requirements on these servers | 2026-01-30T17:13:56.781902Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-zc18474 | PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access | 2026-01-30T17:04:56.559720Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-yb44027 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T17:04:26.396860Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ka40024 | PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access | 2026-01-30T17:03:56.468881Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-sb85645 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T17:00:56.485426Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-os18490 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T16:58:26.304466Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-xl45869 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T16:57:56.432971Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-dn29911 | attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing | 2026-01-30T16:57:26.436107Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-zr62045 | attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing | 2026-01-30T16:56:56.696859Z | 2026-01-29T18:58:54Z |
| cleanstart-2025-zr62045 | attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing | 2026-01-30T16:56:56.696859Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-jm16286 | attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing | 2026-01-30T16:56:26.537390Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-bn11148 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T16:54:56.412220Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-jd48541 | Moby is an open-source project created by Docker for software containerization | 2026-01-30T16:52:56.596548Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-hl71566 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T16:50:56.129322Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-tk38210 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-01-30T16:46:25.995358Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-sb25660 | net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines | 2026-01-30T16:44:27.197226Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-pz62650 | Cancelling a query (e | 2026-01-30T16:41:55.453512Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-lz10721 | Within HostnameError | 2026-01-30T16:40:55.517816Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-hj34439 | Go before 1 | 2026-01-30T16:39:55.415446Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-kz30232 | Go before 1 | 2026-01-30T16:39:25.872575Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-iy17697 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T16:37:55.497960Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-oj15484 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T16:37:55.388839Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-on38469 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-01-30T16:37:25.667594Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-fp29743 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T16:37:25.443687Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-gl18398 | excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate | 2026-01-30T16:36:55.508939Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-qd78411 | SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process | 2026-01-30T16:36:25.408698Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-vv68546 | Due to the design of the name constraint checking algorithm, the processing time of some inputs scale non-linearly with respect to the size of the certificate | 2026-01-30T16:35:55.883570Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ax77726 | vulnerability was found in PAM | 2026-01-30T16:35:55.808062Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-na36743 | Within HostnameError | 2026-01-30T16:35:55.379246Z | 2026-01-29T18:58:54Z |
| cleanstart-2026-ty78539 | ParseAddress function constructs domain-literal address components through repeated string concatenation | 2026-01-30T16:35:55.295657Z | 2026-01-29T18:58:54Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-1125 | Vulnérabilité dans les produits NetApp | 2025-12-19T00:00:00.000000 | 2025-12-19T00:00:00.000000 |
| certfr-2025-avi-1124 | Multiples vulnérabilités dans Microsoft Edge | 2025-12-19T00:00:00.000000 | 2025-12-19T00:00:00.000000 |
| certfr-2025-avi-1123 | Multiples vulnérabilités dans les produits Elastic | 2025-12-19T00:00:00.000000 | 2025-12-19T00:00:00.000000 |
| certfr-2025-avi-1122 | Multiples vulnérabilités dans Mattermost Server | 2025-12-18T00:00:00.000000 | 2026-01-16T00:00:00.000000 |
| certfr-2025-avi-1121 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-12-18T00:00:00.000000 | 2025-12-18T00:00:00.000000 |
| certfr-2025-avi-1120 | Vulnérabilité dans les produits Cisco | 2025-12-18T00:00:00.000000 | 2025-12-18T00:00:00.000000 |
| certfr-2025-avi-1119 | Multiples vulnérabilités dans les produits Synology | 2025-12-17T00:00:00.000000 | 2025-12-17T00:00:00.000000 |
| certfr-2025-avi-1118 | Vulnérabilité dans Mozilla Firefox | 2025-12-17T00:00:00.000000 | 2025-12-17T00:00:00.000000 |
| certfr-2025-avi-1117 | Multiples vulnérabilités dans GLPI | 2025-12-17T00:00:00.000000 | 2025-12-17T00:00:00.000000 |
| certfr-2025-avi-1116 | Multiples vulnérabilités dans Google Chrome | 2025-12-17T00:00:00.000000 | 2025-12-17T00:00:00.000000 |
| certfr-2025-avi-1115 | Vulnérabilité dans Trend Micro Apex One | 2025-12-16T00:00:00.000000 | 2025-12-16T00:00:00.000000 |
| certfr-2025-avi-1114 | Multiples vulnérabilités dans Tenable Nessus | 2025-12-16T00:00:00.000000 | 2025-12-16T00:00:00.000000 |
| certfr-2025-avi-1113 | Multiples vulnérabilités dans Moodle | 2025-12-16T00:00:00.000000 | 2025-12-16T00:00:00.000000 |
| certfr-2025-avi-1112 | Multiples vulnérabilités dans les produits Elastic | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1111 | Multiples vulnérabilités dans Roundcube | 2025-12-15T00:00:00.000000 | 2026-01-05T00:00:00.000000 |
| certfr-2025-avi-1110 | Multiples vulnérabilités dans les produits Apple | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1109 | Vulnérabilité dans strongSwan | 2025-12-15T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1108 | Multiples vulnérabilités dans les produits IBM | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1107 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1106 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1105 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1104 | Vulnérabilité dans Microsoft Windows Admin Center | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1103 | Multiples vulnérabilités dans Microsoft Edge | 2025-12-12T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| certfr-2025-avi-1102 | Multiples vulnérabilités dans les produits NetApp | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1101 | Multiples vulnérabilités dans les produits Netgate | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1100 | Multiples vulnérabilités dans les produits Atlassian | 2025-12-12T00:00:00.000000 | 2025-12-12T00:00:00.000000 |
| certfr-2025-avi-1099 | Multiples vulnérabilités dans les produits Mozilla | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1098 | Vulnérabilité dans Broadcom Carbon Black Cloud | 2025-12-11T00:00:00.000000 | 2025-12-11T00:00:00.000000 |
| certfr-2025-avi-1097 | Vulnérabilité dans les produits Mitel | 2025-12-11T00:00:00.000000 | 2026-01-06T00:00:00.000000 |
| certfr-2025-avi-1096 | Multiples vulnérabilités dans Google Chrome | 2025-12-11T00:00:00.000000 | 2025-12-15T00:00:00.000000 |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2024-000008 | Improper restriction of XML external entity references (XXE) in MLIT "Electronic Delivery Check System" and "Electronic delivery item Inspection Support System" | 2024-01-23T16:57+09:00 | 2024-03-13T17:40+09:00 |
| jvndb-2024-000013 | Android App "Spoon" uses a hard-coded API key for an external service | 2024-01-23T16:53+09:00 | 2024-03-14T17:44+09:00 |
| jvndb-2024-000010 | Improper restriction of XML external entity references (XXE) in "Electronic Delivery Check System (Ministry of Agriculture, Forestry and Fisheries The Agriculture and Rural Development Project Version)" | 2024-01-23T15:25+09:00 | 2024-03-14T17:33+09:00 |
| jvndb-2024-000009 | Improper restriction of XML external entity references (XXE) in Electronic Deliverables Creation Support Tool provided by Ministry of Defense | 2024-01-23T15:13+09:00 | 2024-03-13T17:46+09:00 |
| jvndb-2024-000012 | Access analysis CGI An-Analyzer vulnerable to open redirect | 2024-01-22T15:57+09:00 | 2024-03-13T17:34+09:00 |
| jvndb-2024-000011 | Multiple vulnerabilities in a-blog cms | 2024-01-22T15:08+09:00 | 2024-03-13T17:50+09:00 |
| jvndb-2024-000006 | FusionPBX vulnerable to cross-site scripting | 2024-01-19T12:30+09:00 | 2024-03-12T17:31+09:00 |
| jvndb-2024-000007 | Multiple Dahua Technology products vulnerable to authentication bypass | 2024-01-18T13:43+09:00 | 2024-07-11T16:10+09:00 |
| jvndb-2024-000004 | Drupal vulnerable to improper handling of structural elements | 2024-01-16T13:41+09:00 | 2024-03-12T17:33+09:00 |
| jvndb-2024-000003 | Pleasanter vulnerable to cross-site scripting | 2024-01-15T15:59+09:00 | 2024-01-15T15:59+09:00 |
| jvndb-2024-000002 | Thermal camera TMC series vulnerable to insufficient technical documentation | 2024-01-15T15:19+09:00 | 2024-03-11T18:17+09:00 |
| jvndb-2024-000001 | Improper input validation vulnerability in WordPress Plugin "WordPress Quiz Maker Plugin" | 2024-01-12T13:51+09:00 | 2024-03-14T12:28+09:00 |
| jvndb-2024-001002 | Multiple TP-Link products vulnerable to OS command injection | 2024-01-10T13:57+09:00 | 2024-03-14T13:52+09:00 |
| jvndb-2024-001001 | Multiple vulnerabilities in Panasonic Control FPWIN Pro7 | 2024-01-10T13:46+09:00 | 2024-01-10T13:46+09:00 |
| jvndb-2023-000126 | Multiple vulnerabilities in PowerCMS | 2023-12-26T16:46+09:00 | 2024-03-18T17:58+09:00 |
| jvndb-2023-000125 | Multiple vulnerabilities in BUFFALO VR-S1000 | 2023-12-26T15:51+09:00 | 2024-03-19T17:56+09:00 |
| jvndb-2023-014781 | Brother iPrint&Scan Desktop for Windows vulnerable to improper link resolution before file access | 2023-12-26T09:27+09:00 | 2024-03-18T18:05+09:00 |
| jvndb-2023-012042 | WordPress plugin "MW WP Form" vulnerable to arbitrary file upload | 2023-12-15T15:17+09:00 | 2024-03-26T17:39+09:00 |
| jvndb-2023-000123 | Multiple vulnerabilities in GROWI | 2023-12-13T15:30+09:00 | 2024-03-19T17:46+09:00 |
| jvndb-2023-011403 | ELECOM wireless LAN routers vulnerable to OS command injection | 2023-12-13T15:06+09:00 | 2024-04-18T17:22+09:00 |
| jvndb-2023-000122 | Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series | 2023-12-11T14:12+09:00 | 2024-04-22T16:55+09:00 |
| jvndb-2023-009966 | FXC wireless LAN routers "AE1021PE" and "AE1021" vulnerable to OS command injection Critical | 2023-12-07T15:09+09:00 | 2023-12-25T16:54+09:00 |
| jvndb-2023-009619 | OS command injection vulnerability in DT900 | 2023-12-06T14:43+09:00 | 2023-12-06T14:43+09:00 |
| jvndb-2023-000121 | RakRak Document Plus vulnerable to path traversal | 2023-12-04T13:45+09:00 | 2024-01-24T12:06+09:00 |
| jvndb-2023-000119 | Ruckus Access Point contains a cross-site scripting vulnerability. | 2023-12-01T14:58+09:00 | 2024-04-23T17:51+09:00 |
| jvndb-2023-000117 | Multiple vulnerabilities in LuxCal Web Calendar | 2023-11-20T17:15+09:00 | 2023-11-20T17:15+09:00 |
| jvndb-2023-007152 | Multiple vulnerabilities in EXPRESSCLUSTER X | 2023-11-20T14:09+09:00 | 2024-05-01T18:10+09:00 |
| jvndb-2023-007150 | Multiple vulnerabilities in First Corporation's DVRs | 2023-11-17T17:31+09:00 | 2024-07-11T17:05+09:00 |
| jvndb-2023-000116 | Redmine vulnerable to cross-site scripting | 2023-11-17T14:32+09:00 | 2024-05-09T17:55+09:00 |
| jvndb-2023-000118 | Multiple vulnerabilities in CubeCart | 2023-11-17T14:22+09:00 | 2024-04-30T18:15+09:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-12776 | Textream资源管理错误漏洞 | 2026-03-06 | 2026-03-06 |
| cnvd-2026-16589 | NVIDIA Delegated Licensing Service授权问题漏洞 | 2026-03-04 | 2026-04-09 |
| cnvd-2026-13371 | OpenClaw存在未明漏洞(CNVD-2026-13371) | 2026-03-04 | 2026-03-12 |
| cnvd-2026-12911 | Microsoft Windows Admin Center授权问题漏洞 | 2026-03-04 | 2026-03-09 |
| cnvd-2026-12910 | Microsoft Teams访问控制错误漏洞 | 2026-03-04 | 2026-03-09 |
| cnvd-2026-12778 | Fiber安全特征问题漏洞 | 2026-03-04 | 2026-03-06 |
| cnvd-2026-16658 | GFI MailEssentials AI IP Blocklist管理页面跨站脚本漏洞 | 2026-03-02 | 2026-04-10 |
| cnvd-2026-16657 | GFI MailEssentials AI Anti-Spoofing配置页面跨站脚本漏洞 | 2026-03-02 | 2026-04-10 |
| cnvd-2026-16158 | Microsoft Excel权限提升漏洞(CNVD-2026-16158) | 2026-03-02 | 2026-04-07 |
| cnvd-2026-14995 | Apple macOS Tahoe信息泄露漏洞(CNVD-2026-14995) | 2026-03-02 | 2026-03-26 |
| cnvd-2026-14994 | Apple macOS Tahoe信息泄露漏洞(CNVD-2026-14994) | 2026-03-02 | 2026-03-26 |
| cnvd-2026-14975 | Apple macOS越界读取漏洞(CNVD-2026-14975) | 2026-03-02 | 2026-03-26 |
| cnvd-2026-14974 | Apple macOS信息泄露漏洞(CNVD-2026-14974) | 2026-03-02 | 2026-03-26 |
| cnvd-2026-14973 | Apple macOS Tahoe权限提升漏洞 | 2026-03-02 | 2026-03-26 |
| cnvd-2026-14498 | 多款Apple产品路径遍历漏洞 | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14497 | 多款Apple产品代码执行漏洞(CNVD-2026-14497) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14496 | 多款Apple产品信息泄露漏洞(CNVD-2026-14496) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14495 | 多款Apple产品信息泄露漏洞(CNVD-2026-14495) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14494 | 多款Apple产品存在未明漏洞(CNVD-2026-14494) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14493 | 多款Apple产品安全绕过漏洞(CNVD-2026-14493) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14492 | 多款Apple产品安全绕过漏洞(CNVD-2026-14492) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14491 | 多款Apple产品安全绕过漏洞(CNVD-2026-14491) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14490 | 多款Apple产品信息泄露漏洞(CNVD-2026-14490) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14489 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14489) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14488 | 多款Apple产品信息泄露漏洞(CNVD-2026-14488) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14487 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14487) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14486 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14486) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14485 | 多款Apple产品信息泄露漏洞(CNVD-2026-14485) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14484 | 多款Apple产品拒绝服务漏洞(CNVD-2026-14484) | 2026-03-02 | 2026-03-23 |
| cnvd-2026-14483 | 多款Apple产品存在未明漏洞(CNVD-2026-14483) | 2026-03-02 | 2026-03-23 |
| ID | Description | Published | Updated |
|---|---|---|---|
| bdu:2026-01213 | Уязвимость функции dbUnmount() модуля fs/jfs/jfs_dmap.c файловой системы JFS ядра операци… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01212 | Уязвимость параметра max_cert_list сжатия сертификатов в TLS 1.3 библиотеки OpenSSL, позв… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01211 | Уязвимость функции do_mount_setattr() модуля fs/namespace.c файловой системы ядра операци… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01210 | Уязвимость функции autofs_catatonic_mode() модуля fs/autofs/waitq.c файловой системы ядра… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01209 | Уязвимость функции vfio_iommu_iova_build_caps() модуля drivers/vfio/vfio_iommu_type1.c др… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01208 | Уязвимость функции kfd_build_sysfs_node_entry() модуля drivers/gpu/drm/amd/amdkfd/kfd_top… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01207 | Уязвимость функции crash_load_segments() модуля arch/x86/kernel/crash.c поддержки платфор… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01206 | Уязвимость функции tcf_block_bind() модуля net/sched/cls_api.c подсистемы управления траф… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01205 | Уязвимость функции get_gpio_i2c_info() модуля drivers/gpu/drm/amd/display/dc/bios/bios_pa… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01204 | Уязвимость функции __ext4_fill_super() модуля fs/ext4/super.c файловой системы Ext4 ядра … | 04.02.2026 | 04.02.2026 |
| bdu:2026-01203 | Уязвимость функции target_free_cmd_counter() модуля drivers/target/target_core_transport.… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01202 | Уязвимость функции mt7996_mcu_exit() модуля drivers/net/wireless/mediatek/mt76/mt7996/mcu… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01201 | Уязвимость функции spmmc_drv_probe() модуля drivers/mmc/host/sunplus-mmc.c драйвера карт … | 04.02.2026 | 04.02.2026 |
| bdu:2026-01200 | Уязвимость функции __ip6_make_skb() модуля net/ipv6/ip6_output.c реализации протокола IPv… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01199 | Уязвимость функции smsusb_stop_streaming() модуля drivers/media/usb/siano/smsusb.c драйве… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01198 | Уязвимость функции blkcg_activate_policy() модуля block/blk-cgroup.c поддержки блочного у… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01197 | Уязвимость функции xfrm_dev_policy_add() модуля net/xfrm/xfrm_device.c реализации сетевых… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01196 | Уязвимость функции btrfs_search_path_in_tree_user() модуля fs/btrfs/ioctl.c файловой сист… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01195 | Уязвимость функции qt1010_init() модуля drivers/media/tuners/qt1010.c драйвера мультимеди… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01194 | Уязвимость функции iomap_write_delalloc_scan() модуля fs/iomap/buffered-io.c файловой сис… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01193 | Уязвимость функции __write_overflow_field() модуля include/linux/fortify-string.h ядра оп… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01192 | Уязвимость функции imx_uart_probe() модуля drivers/tty/serial/imx.c драйвера консоли TTY … | 04.02.2026 | 04.02.2026 |
| bdu:2026-01191 | Уязвимость функции ieee80211_tx_dequeue() модуля net/mac80211/tx.c реализации стека mac80… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01190 | Уязвимость функции qedf_alloc_global_queues() модуля drivers/scsi/qedf/qedf_main.c драйве… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01189 | Уязвимость компонента Session Handler платформы для создания и развертывания рабочих проц… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01188 | Уязвимость функции vduse_vdpa_set_vq_affinity() модуля drivers/vdpa/vdpa_user/vduse_dev.c… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01187 | Уязвимость функции raid10_run() модуля drivers/md/raid10.c драйвера нескольких устройств … | 04.02.2026 | 04.02.2026 |
| bdu:2026-01186 | Уязвимость функции rdma_restrack_del() модуля drivers/infiniband/core/restrack.c драйвера… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01185 | Уязвимость функции sev_migrate_from() модуля arch/x86/kvm/svm/sev.c подсистемы виртуализа… | 04.02.2026 | 04.02.2026 |
| bdu:2026-01184 | Уязвимость функции intel_quark_thermal_init() модуля drivers/thermal/intel/intel_quark_dt… | 04.02.2026 | 04.02.2026 |
| ID | Description | Updated |
|---|---|---|
| var-201008-0306 | Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in th… | 2026-04-10T22:16:44.809000Z |
| var-201501-0435 | OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attack… | 2026-04-10T22:16:42.088000Z |
| var-200609-0665 | The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple … | 2026-04-10T22:16:42.018000Z |
| var-202110-1706 | The Bzip2 decompression decoder function doesn't allow setting size restrictions on the d… | 2026-04-10T22:16:41.258000Z |
| var-202207-1358 | When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out o… | 2026-04-10T22:16:32.373000Z |
| var-202103-1243 | In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.1… | 2026-04-10T22:16:32.259000Z |
| var-201109-0201 | Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 … | 2026-04-10T22:16:31.471000Z |
| var-201512-0482 | The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 … | 2026-04-10T22:16:28.476000Z |
| var-202202-0050 | xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, … | 2026-04-10T22:16:27.762000Z |
| var-201711-0450 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… | 2026-04-10T22:16:23.983000Z |
| var-201404-0374 | Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 an… | 2026-04-10T22:16:23.273000Z |
| var-201208-0344 | libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not pro… | 2026-04-10T22:16:21.543000Z |
| var-201804-1188 | An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… | 2026-04-10T22:16:21.075000Z |
| var-200510-0403 | Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute … | 2026-04-10T22:16:12.939000Z |
| var-202203-0664 | BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions… | 2026-04-10T22:16:12.611000Z |
| var-200811-0015 | Apple Safari before 3.2 does not properly prevent caching of form data for form fields th… | 2026-04-10T22:16:11.917000Z |
| var-201203-0181 | Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows … | 2026-04-10T22:16:11.216000Z |
| var-201907-1547 | undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps… | 2026-04-10T22:16:11.136000Z |
| var-202003-1778 | FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… | 2026-04-10T22:15:20.092000Z |
| var-202108-2123 | A memory corruption vulnerability was addressed with improved locking. This issue is fixe… | 2026-04-10T22:15:13.657000Z |
| var-202210-0997 | An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML docum… | 2026-04-10T22:15:13.442000Z |
| var-201912-0544 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2026-04-10T22:15:13.019000Z |
| var-201403-0514 | The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certa… | 2026-04-10T22:14:41.096000Z |
| var-201912-0608 | A memory corruption issue was addressed with improved input validation. This issue is fix… | 2026-04-10T22:14:39.868000Z |
| var-200102-0029 | Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial… | 2026-04-10T22:14:00.798000Z |
| var-201204-0092 | Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Poli… | 2026-04-10T22:14:00.698000Z |
| var-202308-2021 | .NET and Visual Studio Denial of Service Vulnerability. 9) - aarch64, ppc64le, s390x, x86… | 2026-04-10T22:14:00.124000Z |
| var-201906-1175 | Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an… | 2026-04-10T22:14:00.052000Z |
| var-201605-0079 | The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation … | 2026-04-10T22:13:55.824000Z |
| var-201012-0287 | Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome b… | 2026-04-10T22:12:53.076000Z |