Recent vulnerabilities

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2026-25037	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:59:14.738Z	2026-02-27T00:59:14.738Z
CVE-2026-25196	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:58:08.674Z	2026-02-27T00:58:08.674Z
CVE-2026-20764	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:56:47.460Z	2026-02-27T00:56:47.460Z
CVE-2026-25721	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:55:28.813Z	2026-02-27T00:55:28.813Z
CVE-2026-23702	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:54:21.133Z	2026-02-27T00:54:21.133Z
CVE-2026-24452	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:53:22.352Z	2026-02-27T00:53:22.352Z
CVE-2026-25105	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:52:21.154Z	2026-02-27T00:52:21.154Z
CVE-2025-29867	8.5 (4.0)	Access of Resource Using Incompatible Type ('Type…	Hancom Inc.	Hancom Office 2018	2026-02-04T04:46:55.545Z	2026-02-27T00:51:03.111Z
CVE-2026-24695	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:51:01.649Z	2026-02-27T00:51:01.649Z
CVE-2026-20902	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:49:44.858Z	2026-02-27T00:49:44.858Z
CVE-2026-25109	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:48:41.531Z	2026-02-27T00:48:41.531Z
CVE-2026-24689	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:47:26.332Z	2026-02-27T00:47:26.332Z
CVE-2026-20910	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:46:14.644Z	2026-02-27T00:46:14.644Z
CVE-2026-25195	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:45:04.949Z	2026-02-27T00:45:04.949Z
CVE-2026-24517	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:43:35.813Z	2026-02-27T00:43:35.813Z
CVE-2026-20742	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:42:12.910Z	2026-02-27T00:42:12.910Z
CVE-2026-25111	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:40:37.734Z	2026-02-27T00:40:37.734Z
CVE-2026-21389	8 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:38:51.109Z	2026-02-27T00:38:51.109Z
CVE-2026-24663	9 (3.1)	Copeland XWEB and XWEB Pro OS Command Injection	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:36:49.215Z	2026-02-27T00:36:49.215Z
CVE-2026-21718	10 (3.1)	Copeland XWEB and XWEB Pro Use of a Broken or Risky Cr…	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:34:55.895Z	2026-02-27T00:34:55.895Z
CVE-2026-25085	8.6 (3.1)	Copeland XWEB and XWEB Pro Unexpected Status Code or R…	Copeland	Copeland XWEB 300D PRO	2026-02-27T00:33:06.657Z	2026-02-27T00:33:06.657Z
CVE-2026-3273	8.7 (4.0) 8.8 (3.1) 8.8 (3.0)	Tenda F453 httpd AdvSetWrlsafeset formWrlsafeset buffe…	Tenda	F453	2026-02-27T00:32:09.615Z	2026-02-27T00:32:09.615Z
CVE-2026-22878	6.5 (3.1)	Mobility46 mobility46.se Insufficiently Protected Cred…	Mobility46	mobility46.se	2026-02-27T00:25:23.952Z	2026-02-27T00:25:23.952Z
CVE-2026-27647	7.3 (3.1)	Mobility46 mobility46.se Insufficient Session Expiration	Mobility46	mobility46.se	2026-02-27T00:23:50.315Z	2026-02-27T00:23:50.315Z
CVE-2026-26305	7.5 (3.1)	Mobility46 mobility46.se Improper Restriction of Exces…	Mobility46	mobility46.se	2026-02-27T00:22:24.167Z	2026-02-27T00:22:24.167Z
CVE-2026-27028	9.4 (3.1)	Mobility46 mobility46.se Missing Authentication for Cr…	Mobility46	mobility46.se	2026-02-27T00:20:52.288Z	2026-02-27T00:20:52.288Z
CVE-2026-25774	6.5 (3.1)	EV Energy ev.energy Insufficiently Protected Credentials	EV Energy	ev.energy	2026-02-27T00:15:14.924Z	2026-02-27T00:15:14.924Z
CVE-2026-26290	7.3 (3.1)	EV Energy ev.energy Insufficient Session Expiration	EV Energy	ev.energy	2026-02-27T00:13:16.357Z	2026-02-27T00:13:16.357Z
CVE-2026-24445	7.5 (3.1)	EV Energy ev.energy Improper Restriction of Excessive …	EV Energy	ev.energy	2026-02-27T00:11:15.055Z	2026-02-27T00:11:15.055Z
CVE-2026-27772	9.4 (3.1)	EV Energy ev.energy Missing Authentication for Critica…	EV Energy	ev.energy	2026-02-27T00:09:12.986Z	2026-02-27T00:09:12.986Z

ID	CVSS	Description	Vendor	Product	Published	Updated
CVE-2025-15498	9.3 (4.0)	SQL Injection in Pro3W CMS	Pro3W	Pro3W CMS	2026-02-27T13:51:53.006Z	2026-02-27T14:19:48.682Z
CVE-2025-10990	7.5 (3.1)	Rexml: rexml: denial of service via inefficient regex …			2026-02-27T13:32:02.309Z	2026-02-27T18:43:57.501Z
CVE-2026-3209	5.3 (4.0) 6.3 (3.1) 6.3 (3.0)	fosrl Pangolin Role verifyApiKeyRoleAccess access control	fosrl	Pangolin	2026-02-25T23:02:10.115Z	2026-02-26T16:44:27.165Z
CVE-2026-3206	1.3 (4.0)	Improper management of context cancelations	KrakenD	KrakenD-CE	2026-02-25T15:12:23.336Z	2026-02-25T20:21:08.239Z
CVE-2026-3200	6.9 (4.0) 7.3 (3.1) 7.3 (3.0)	z-9527 admin user.js getUsers sql injection	z-9527	admin	2026-02-25T20:02:08.548Z	2026-02-27T17:57:56.330Z
CVE-2026-3194	2 (4.0) 4.5 (3.1) 4.5 (3.0)	Chia Blockchain RPC Server Master Passphrase get_priva…	Chia	Blockchain	2026-02-25T17:02:17.420Z	2026-02-25T18:43:40.383Z
CVE-2026-3193	2.3 (4.0) 3.1 (3.1) 3.1 (3.0)	Chia Blockchain send_transaction cross-site request forgery	Chia	Blockchain	2026-02-25T16:32:08.589Z	2026-02-27T18:20:18.500Z
CVE-2026-3192	6.3 (4.0) 5.6 (3.1) 5.6 (3.0)	Chia Blockchain RPC Credential rpc_server_base.py _aut…	Chia	Blockchain	2026-02-25T16:02:12.515Z	2026-02-25T20:19:14.151Z
CVE-2026-3189	2.3 (4.0) 3.1 (3.1) 3.1 (3.0)	feiyuchuixue sz-boot-parent download server-side reque…	feiyuchuixue	sz-boot-parent	2026-02-25T16:02:09.732Z	2026-02-25T20:18:20.086Z
CVE-2026-3188	5.3 (4.0) 4.3 (3.1) 4.3 (3.0)	feiyuchuixue sz-boot-parent API templates path traversal	feiyuchuixue	sz-boot-parent	2026-02-25T15:32:09.025Z	2026-02-27T16:52:23.121Z
CVE-2026-3172	8.1 (3.1)	pgvector buffer overflow in parallel HNSW index build	n/a	pgvector	2026-02-25T20:59:10.051Z	2026-02-26T15:04:08.481Z
CVE-2026-28138	7.2 (3.1)	WordPress uListing plugin <= 2.2.0 - PHP Object Inject…	Stylemix	uListing	2026-02-26T08:33:37.089Z	2026-02-26T14:37:03.740Z
CVE-2026-28136	7.6 (3.1)	WordPress WP SMS plugin <= 6.9.12 - SQL Injection vuln…	VeronaLabs	WP SMS	2026-02-26T08:33:36.839Z	2026-02-26T18:54:32.557Z
CVE-2026-28132	5.3 (3.1)	WordPress WooCommerce Photo Reviews plugin <= 1.4.4 - …	villatheme	WooCommerce Photo Reviews	2026-02-26T08:33:36.653Z	2026-02-26T14:40:50.570Z
CVE-2026-28083	6.5 (3.1)	WordPress Flatsome theme <= 3.20.1 - Cross Site Script…	UX-themes	Flatsome	2026-02-26T08:33:36.172Z	2026-02-26T14:46:54.331Z
CVE-2026-27976	8.8 (3.1)	Zed Extension Sandbox Escape via Tar Symlink Following	zed-industries	zed	2026-02-25T23:34:40.103Z	2026-02-27T04:55:52.466Z
CVE-2026-27975	8.1 (4.0)	Ajenti has a potential Remote Code Execution	ajenti	ajenti	2026-02-26T02:39:28.283Z	2026-02-27T14:13:28.184Z
CVE-2026-27974	4.8 (3.1)	Audiobooksheld VUlnerable to Stored XSS in WrappingMar…	advplyr	audiobookshelf-app	2026-02-26T02:10:30.504Z	2026-02-26T14:42:43.253Z
CVE-2026-27973	4 (3.1)	Audiobookshelf has Stored XSS in ItemSearchCard.vue vi…	advplyr	audiobookshelf	2026-02-26T02:06:49.271Z	2026-02-26T14:45:25.252Z
CVE-2026-27968	4.3 (3.1)	Packistry accepts expired access tokens	packistry	packistry	2026-02-26T01:57:12.752Z	2026-02-26T14:53:10.334Z
CVE-2026-27967	7.1 (3.1)	Symlink Escape in Agent File Tools	zed-industries	zed	2026-02-25T23:33:21.477Z	2026-02-28T04:55:28.156Z
CVE-2026-27965	8.4 (4.0)	Vitess users with backup storage access can gain unaut…	vitessio	vitess	2026-02-26T01:49:10.071Z	2026-02-26T19:32:59.874Z
CVE-2026-27961	8.8 (3.1)	Agenta's Server-Side Template Injection (SSTI) via cus…	Agenta-AI	agenta	2026-02-26T01:39:09.997Z	2026-02-26T19:29:04.883Z
CVE-2026-27952	8.8 (3.1)	Agenta has Python Sandbox Escape, Leading to Remote Co…	Agenta-AI	agenta-api	2026-02-26T01:38:00.760Z	2026-02-26T19:27:29.328Z
CVE-2026-27946	8.2 (4.0)	ZITADEL Users Can Self-Verify Email/Phone via UpdateHu…	zitadel	zitadel	2026-02-26T00:34:56.913Z	2026-02-26T16:29:22.712Z
CVE-2026-27945	2.1 (4.0)	ZITADEL has potential SSRF via Actions	zitadel	zitadel	2026-02-26T00:29:58.157Z	2026-02-26T16:51:23.606Z
CVE-2026-27941	10 (3.1)	OpenLIT Vulnerable to Remote Code Execution and Secret…	openlit	openlit	2026-02-26T01:17:22.532Z	2026-02-26T15:54:11.519Z
CVE-2026-27938	7.7 (3.1)	WPGraphQL Repo Vulnerable to Command Injection via Uns…	wp-graphql	wp-graphql	2026-02-26T01:10:26.985Z	2026-02-26T19:22:46.590Z
CVE-2026-27902	5.3 (4.0)	Svelte Vulnerable to XSS via HTML Comment Injection in…	sveltejs	svelte	2026-02-26T00:58:54.604Z	2026-02-26T18:51:39.142Z
CVE-2026-27901	5.3 (4.0)	Svelte vulnerable to XSS during SSR with contenteditab…	sveltejs	svelte	2026-02-26T00:57:40.269Z	2026-02-26T14:31:00.714Z

ID	Description	Published	Updated
fkie_cve-2025-15498	Pro3W CMS if vulnerable to SQL injection attacks. Improper neutralization of input provided into a …	2026-02-27T14:16:27.860	2026-02-27T14:16:27.860
fkie_cve-2025-10990	A flaw was found in REXML. A remote attacker could exploit inefficient regular expression (regex) p…	2026-02-27T14:16:27.567	2026-02-27T14:16:27.567
fkie_cve-2026-3209	A vulnerability has been found in fosrl Pangolin up to 1.15.4-s.3. This affects the function verify…	2026-02-25T23:16:21.920	2026-02-27T14:06:59.787
fkie_cve-2026-3206	Improper Resource Shutdown or Release vulnerability in KrakenD, SLU KrakenD-CE (CircuitBreaker modu…	2026-02-25T16:23:30.423	2026-02-27T14:06:59.787
fkie_cve-2026-3200	A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkN…	2026-02-25T21:16:45.337	2026-02-27T14:06:59.787
fkie_cve-2026-3194	A flaw has been found in Chia Blockchain 2.1.0. The affected element is the function send_transacti…	2026-02-25T18:23:42.810	2026-02-27T14:06:59.787
fkie_cve-2026-3193	A vulnerability was detected in Chia Blockchain 2.1.0. Impacted is an unknown function of the file …	2026-02-25T17:25:42.937	2026-02-27T14:06:59.787
fkie_cve-2026-3192	A security vulnerability has been detected in Chia Blockchain 2.1.0. This issue affects the functio…	2026-02-25T17:25:42.713	2026-02-27T14:06:59.787
fkie_cve-2026-3189	A weakness has been identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This vulnerability …	2026-02-25T17:25:42.470	2026-02-27T14:06:59.787
fkie_cve-2026-3188	A security flaw has been discovered in feiyuchuixue sz-boot-parent up to 1.3.2-beta. This affects a…	2026-02-25T16:23:30.203	2026-02-27T14:06:59.787
fkie_cve-2026-3172	Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user…	2026-02-25T21:16:44.857	2026-02-27T14:06:59.787
fkie_cve-2026-28138	Deserialization of Untrusted Data vulnerability in Stylemix uListing ulisting allows Object Injecti…	2026-02-26T09:16:15.510	2026-02-27T14:06:59.787
fkie_cve-2026-28136	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability …	2026-02-26T09:16:15.363	2026-02-27T14:06:59.787
fkie_cve-2026-28132	Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in vill…	2026-02-26T09:16:15.217	2026-02-27T14:06:59.787
fkie_cve-2026-28083	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability …	2026-02-26T09:16:14.857	2026-02-27T14:06:59.787
fkie_cve-2026-27976	Zed, a code editor, has an extension installer allows tar/gzip downloads. Prior to version 0.224.4,…	2026-02-26T00:16:27.293	2026-02-27T14:06:59.787
fkie_cve-2026-27975	Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, an unauthenticated u…	2026-02-26T03:16:05.130	2026-02-27T14:06:59.787
fkie_cve-2026-27974	Audiobookshelf is a self-hosted audiobook and podcast server. A cross-site scripting (XSS) vulnerab…	2026-02-26T03:16:04.970	2026-02-27T14:06:59.787
fkie_cve-2026-27973	Audiobookshelf is a self-hosted audiobook and podcast server. A stored cross-site scripting (XSS) v…	2026-02-26T02:16:24.553	2026-02-27T14:06:59.787
fkie_cve-2026-27968	Packistry is a self-hosted Composer repository designed to handle PHP package distribution. Prior t…	2026-02-26T02:16:23.990	2026-02-27T14:06:59.787
fkie_cve-2026-27967	Zed, a code editor, has a symlink escape vulnerability in versions prior to 0.225.9 in Agent file t…	2026-02-26T00:16:27.137	2026-02-27T14:06:59.787
fkie_cve-2026-27965	Vitess is a database clustering system for horizontal scaling of MySQL. Prior to versions 23.0.3 an…	2026-02-26T02:16:23.647	2026-02-27T14:06:59.787
fkie_cve-2026-27961	Agenta is an open-source LLMOps platform. A Server-Side Template Injection (SSTI) vulnerability exi…	2026-02-26T02:16:23.483	2026-02-27T14:06:59.787
fkie_cve-2026-27952	Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox e…	2026-02-26T02:16:22.940	2026-02-27T14:06:59.787
fkie_cve-2026-27946	ZITADEL is an open source identity management platform. Prior to versions 4.11.1 and 3.4.7, a vulne…	2026-02-26T01:16:25.973	2026-02-27T14:06:59.787
fkie_cve-2026-27945	ZITADEL is an open source identity management platform. Zitadel Action V2 (introduced as early prev…	2026-02-26T01:16:25.800	2026-02-27T14:06:59.787
fkie_cve-2026-27941	OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Acti…	2026-02-26T02:16:22.160	2026-02-27T14:06:59.787
fkie_cve-2026-27938	WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.9.1, the `wp-graphql/wp-gr…	2026-02-26T02:16:21.960	2026-02-27T14:06:59.787
fkie_cve-2026-27902	Svelte performance oriented web framework. Prior to version 5.53.5, errors from `transformError` we…	2026-02-26T02:16:21.170	2026-02-27T14:06:59.787
fkie_cve-2026-27901	Svelte performance oriented web framework. Prior to version 5.53.5, the contents of `bind:innerText…	2026-02-26T02:16:20.967	2026-02-27T14:06:59.787

ID	Severity	Description	Published	Updated
ghsa-9fpm-5f3v-gxp2	8.8 (3.1) 8.7 (4.0)	Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerab…	2026-01-03T03:30:24Z	2026-02-26T21:31:25Z
ghsa-8phj-p75x-7gv8	4.7 (3.1)	In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Fix race condition…	2025-12-24T15:30:44Z	2026-02-26T21:31:25Z
ghsa-696c-x544-xmc9	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: bpf: Do not let BPF test infra…	2025-12-24T12:30:30Z	2026-02-26T21:31:25Z
ghsa-2m44-r2x5-4q79	5.5 (3.1)	In the Linux kernel, the following vulnerability has been resolved: btrfs: fix racy bitfield write…	2025-12-24T12:30:29Z	2026-02-26T21:31:25Z
ghsa-2hrm-3727-3mc5	5.5 (3.1) 7.2 (4.0)	Insufficiently Protected Credentials vulnerability in Nuvation Energy Multi-Stack Controller (MSC) …	2026-01-03T00:31:26Z	2026-02-26T21:31:25Z
ghsa-5rc7-2jj6-mp64	5.0 (3.1)	Terraform Provider for Linode Debug Logs Vulnerable to Sensitive Information Exposure	2026-02-26T20:00:12Z	2026-02-26T20:00:12Z
ghsa-x7hp-r3qg-r3cj	6.6 (4.0)	pypdf: Manipulated FlateDecode XFA streams can exhaust RAM	2026-02-26T19:55:33Z	2026-02-26T19:55:33Z
ghsa-r5mx-6wc6-7h9w	6.3 (3.1)	dottie is vulnerable to Prototype Pollution bypass via non-first path segments in set() and transform()	2026-02-26T19:54:34Z	2026-02-26T19:54:34Z
ghsa-2v6m-6xw3-6467	7.1 (4.0)	Fleet: Sensitive Google Calendar credentials disclosed to low-privileged users	2026-02-26T19:53:30Z	2026-02-26T19:53:30Z
ghsa-5jvp-m9h4-253h	5.0 (4.0)	Fleet: Authorization Bypass in certificate template batch deletion for team administrators	2026-02-26T19:40:10Z	2026-02-26T19:40:10Z
ghsa-9pm7-6g36-6j78	6.3 (4.0)	Fleet: Unauthenticated Android device disenrollment vulnerability via Pub/Sub endpoint	2026-02-26T19:38:56Z	2026-02-26T19:38:56Z
ghsa-ppwx-5jq7-px2w	4.1 (4.0)	Fleet: Device lock PIN can be predicted if lock time is known	2026-02-26T19:35:29Z	2026-02-26T19:35:29Z
ghsa-rr4q-h87q-gm3v	4.9 (3.1)	Inefficient Regular Expression Complexity (CWE-1333) in the AI Inference Anonymization Engine in Ki…	2026-02-26T18:31:42Z	2026-02-26T18:31:42Z
ghsa-5rmp-wvrc-g6g5	6.5 (3.1)	Improper Input Validation (CWE-20) in the internal Content Connectors search endpoint in Kibana can…	2026-02-26T18:31:42Z	2026-02-26T18:31:42Z
ghsa-vvxg-3v44-fpqx	6.5 (3.1)	Improper Validation of Specified Quantity in Input (CWE-1284) in Kibana can allow an authenticated …	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-r8j5-pj3m-qhpv	4.3 (3.1)	A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vul…	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-pp79-4qx3-mf4h	4.3 (3.1)	A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by …	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-fg9r-q7mv-mcrw	5.7 (3.1)	Improper Validation of Array Index (CWE-129) in the PostgreSQL protocol parser in Packetbeat can le…	2026-02-26T18:31:41Z	2026-02-26T18:31:41Z
ghsa-ccw4-mq8x-wr3j	5.4 (3.1)	A reflected Cross-Site Scripting (XSS) vulnerability exists in the register.php backend script of P…	2026-02-26T18:31:40Z	2026-02-26T18:31:40Z
ghsa-w654-6gvp-6w5j	9.8 (3.1)	Due to improper neutralization of special elements, SQL statements can be injected via the handshak…	2026-02-25T18:31:37Z	2026-02-26T18:31:39Z
ghsa-qc7c-4556-qm66	9.8 (3.1)	Due to missing neutralization of special elements, OS commands can be injected via the handshake of…	2026-02-25T18:31:37Z	2026-02-26T18:31:39Z
ghsa-p2jg-7vxg-x4vp	4.9 (3.1)	Sensitive user account information is not encrypted in the database in Devolutions Server 2025.3.1…	2026-02-25T21:31:18Z	2026-02-26T18:31:39Z
ghsa-f2jw-4mh9-f63v	9.8 (3.1)	Due to missing neutralization of special elements, OS commands can be injected via the update funct…	2026-02-25T18:31:38Z	2026-02-26T18:31:39Z
ghsa-2hp7-6cr6-jvxh	8.1 (3.1)	VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated acto…	2026-02-25T21:31:19Z	2026-02-26T18:31:39Z
ghsa-xph9-72vf-6x2f	7.8 (3.1) 5.8 (4.0)	Local privilege escalation in Genetec Update Service. An authenticated, low-privileged, Windows use…	2026-02-24T21:31:46Z	2026-02-26T18:31:38Z
ghsa-wmc4-44hv-rxcc	8.1 (3.1) 9.2 (4.0)	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ASU…	2026-02-25T06:31:15Z	2026-02-26T18:31:38Z
ghsa-mg9m-c3pr-5p64	8.1 (3.1) 7.6 (4.0)	A vulnerability exists in REB500 for an authenticated user with low-level privileges to access and …	2026-02-24T15:30:31Z	2026-02-26T18:31:38Z
ghsa-fpg9-3qpq-vpm5	4.2 (3.1) 5.8 (4.0)	Local admin could to leak information from the Genetec Update Service configuration web page. An au…	2026-02-24T21:31:45Z	2026-02-26T18:31:38Z
ghsa-c8xr-66ch-xcpx	7.5 (3.1) 8.7 (4.0)	Tattile Smart+, Vega, and Basic device families firmware versions 1.181.5 and prior expose RTSP str…	2026-02-24T21:31:47Z	2026-02-26T18:31:38Z
ghsa-8hm4-jmvc-cfg9	8.1 (3.1) 7.4 (4.0)	A vulnerability exists in REB500 for an authenticated user with Installer role to access and alter …	2026-02-24T15:30:31Z	2026-02-26T18:31:38Z

ID	Severity	Description	Package	Published	Updated
pysec-2022-43130	9.8 (3.1)	The d8s-timer for python, as distributed on PyPI, included a potential code-execution bac…	democritus-uuids	2022-11-07T15:15:00Z	2024-11-21T14:22:45.198186Z
pysec-2022-43129	9.8 (3.1)	The d8s-strings for python, as distributed on PyPI, included a potential code-execution b…	democritus-uuids	2022-11-07T15:15:00Z	2024-11-21T14:22:45.148199Z
pysec-2022-43128	9.8 (3.1)	The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd…	democritus-utility	2022-11-07T15:15:00Z	2024-11-21T14:22:45.091449Z
pysec-2022-43127	9.8 (3.1)	The d8s-networking for python, as distributed on PyPI, included a potential code-executio…	democritus-user-agents	2022-11-07T15:15:00Z	2024-11-21T14:22:45.041198Z
pysec-2022-43126	9.8 (3.1)	The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac…	democritus-timezones	2022-11-07T15:15:00Z	2024-11-21T14:22:44.991216Z
pysec-2022-43125	9.8 (3.1)	The d8s-python for python, as distributed on PyPI, included a potential code-execution ba…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.941258Z
pysec-2022-43124	9.8 (3.1)	The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.889277Z
pysec-2022-43123	9.8 (3.1)	The d8s-netstrings for python, as distributed on PyPI, included a potential code-executio…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.834592Z
pysec-2022-43122	9.8 (3.1)	The d8s-grammars for python, as distributed on PyPI, included a potential code-execution …	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.785522Z
pysec-2022-43121	9.8 (3.1)	The d8s-math for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.735083Z
pysec-2022-43120	9.8 (3.1)	The d8s-json for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.684065Z
pysec-2022-43119	9.8 (3.1)	The d8s-archives for python, as distributed on PyPI, included a potential code-execution …	democritus-strings	2022-09-19T16:15:00Z	2024-11-21T14:22:44.633699Z
pysec-2022-43118	9.8 (3.1)	The d8s-urls for python, as distributed on PyPI, included a potential code-execution back…	democritus-strings	2022-09-19T14:15:00Z	2024-11-21T14:22:44.584448Z
pysec-2022-43117	9.8 (3.1)	The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.53409Z
pysec-2022-43116	9.8 (3.1)	The d8s-utility for python, as distributed on PyPI, included a potential code-execution b…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.483759Z
pysec-2022-43115	9.8 (3.1)	The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.428296Z
pysec-2022-43114	9.8 (3.1)	The d8s-mpeg for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.376649Z
pysec-2022-43113	9.8 (3.1)	The d8s-domains for python, as distributed on PyPI, included a potential code-execution b…	democritus-networking	2022-09-19T15:15:00Z	2024-11-21T14:22:44.327837Z
pysec-2022-43112	9.8 (3.1)	The d8s-asns for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.27716Z
pysec-2022-43111	9.8 (3.1)	The d8s-html for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T16:15:00Z	2024-11-21T14:22:44.226888Z
pysec-2022-43110	9.8 (3.1)	The d8s-urls for python, as distributed on PyPI, included a potential code-execution back…	democritus-networking	2022-09-19T15:15:00Z	2024-11-21T14:22:44.173987Z
pysec-2022-43109	9.8 (3.1)	The d8s-stats for python, as distributed on PyPI, included a potential code-execution bac…	democritus-math	2022-11-07T15:15:00Z	2024-11-21T14:22:44.122837Z
pysec-2022-43108	9.8 (3.1)	The d8s-networking for python, as distributed on PyPI, included a potential code-executio…	democritus-json	2022-11-07T15:15:00Z	2024-11-21T14:22:44.072231Z
pysec-2022-43107	9.8 (3.1)	The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:44.021497Z
pysec-2022-43106	9.8 (3.1)	The d8s-dicts for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:43.965654Z
pysec-2022-43105	9.8 (3.1)	The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.915613Z
pysec-2022-43104	9.8 (3.1)	The d8s-domains for python, as distributed on PyPI, included a potential code-execution b…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.865878Z
pysec-2022-43103	9.8 (3.1)	The d8s-uuids for python, as distributed on PyPI, included a potential code-execution bac…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.817031Z
pysec-2022-43102	9.8 (3.1)	The d8s-urls for python 0.1.0, as distributed on PyPI, included a potential code-executio…	democritus-hypothesis	2022-09-19T15:15:00Z	2024-11-21T14:22:43.766564Z
pysec-2022-43101	9.8 (3.1)	The d8s-strings for python, as distributed on PyPI, included a potential code-execution b…	democritus-hypothesis	2022-09-19T16:15:00Z	2024-11-21T14:22:43.716069Z

ID	Description	Type

ID	Description	Updated
gsd-2024-33535	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.600803Z
gsd-2024-33566	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.597677Z
gsd-2024-33601	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.596048Z
gsd-2024-33596	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.590091Z
gsd-2024-33595	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.589303Z
gsd-2024-33538	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.588107Z
gsd-2024-33533	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.580672Z
gsd-2024-33591	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.580436Z
gsd-2024-33537	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.572272Z
gsd-2024-33557	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.567408Z
gsd-2024-33548	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.564663Z
gsd-2024-33540	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.562741Z
gsd-2024-33546	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.560266Z
gsd-2024-33555	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.556591Z
gsd-2024-33577	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.555849Z
gsd-2024-33541	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.555650Z
gsd-2024-33559	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.554162Z
gsd-2024-33529	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.547084Z
gsd-2024-33553	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.544840Z
gsd-2024-33574	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.543325Z
gsd-2024-33551	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.543061Z
gsd-2024-33560	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.535115Z
gsd-2024-33550	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.534917Z
gsd-2024-33602	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.534164Z
gsd-2024-33581	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.528711Z
gsd-2024-33583	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.523973Z
gsd-2024-33570	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.523531Z
gsd-2024-33594	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.522993Z
gsd-2024-33534	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.522494Z
gsd-2024-33575	The format of the source doesn't require a description, click on the link for more details.	2024-04-25T05:02:10.519910Z

ID	Description	Published	Updated
mal-2026-776	Malicious code in ac-checksum (npm)	2026-02-06T02:07:02Z	2026-02-06T02:07:02Z
mal-2026-775	Malicious code in ac-array (npm)	2026-02-06T02:07:02Z	2026-02-06T02:07:02Z
mal-2026-774	Malicious code in adminbypasser (PyPI)	2026-02-06T01:15:08Z	2026-02-06T01:15:08Z
mal-2026-766	Malicious code in greeter-pro-test (PyPI)	2026-02-05T16:40:51Z	2026-02-05T16:40:56Z
mal-2026-762	Malicious code in metadata-checker (PyPI)	2026-02-05T14:30:34Z	2026-02-05T15:20:28Z
mal-2026-763	Malicious code in web3-meme-tool (PyPI)	2026-02-05T14:33:05Z	2026-02-05T14:33:05Z
mal-2026-759	Malicious code in pipelinepoision-test (PyPI)	2026-02-05T08:43:35Z	2026-02-05T08:43:35Z
mal-2026-745	Malicious code in statssol (PyPI)	2026-02-04T19:47:20Z	2026-02-04T19:47:20Z
mal-2026-738	Malicious code in tablescene (PyPI)	2026-02-04T10:24:43Z	2026-02-04T18:51:22Z
mal-2026-625	Malicious code in hangimani (PyPI)	2026-02-02T00:02:05Z	2026-02-04T17:50:02Z
mal-2026-607	Malicious code in banquet-runtime-modules (npm)	2026-01-30T12:50:57Z	2026-02-04T17:33:26Z
mal-2026-628	Malicious code in @casaverso/frontend-core (npm)	2026-02-02T05:19:43Z	2026-02-04T15:31:04Z
mal-2026-739	Malicious code in test-for-ppe (PyPI)	2026-02-04T14:57:08Z	2026-02-04T14:57:08Z
mal-2026-731	Malicious code in cicd-ppe-test (PyPI)	2026-02-04T07:33:21Z	2026-02-04T07:33:21Z
mal-2026-732	Malicious code in gridifys (PyPI)	2026-02-04T07:29:56Z	2026-02-04T07:29:56Z
mal-2026-626	Malicious code in react-toast-cold (npm)	2026-01-28T08:21:01Z	2026-02-04T05:37:06Z
mal-2026-636	Malicious code in idv-script (npm)	2026-02-02T05:19:43Z	2026-02-04T05:37:04Z
mal-2026-702	Malicious code in serpapi-python (PyPI)	2026-02-03T11:52:58Z	2026-02-03T11:52:58Z
mal-2026-701	Malicious code in filespath (PyPI)	2026-02-03T10:31:19Z	2026-02-03T10:31:19Z
mal-2026-696	Malicious code in pathfiles (PyPI)	2026-02-03T09:15:58Z	2026-02-03T10:19:00Z
mal-2026-700	Malicious code in tabulapys (PyPI)	2026-02-03T10:04:45Z	2026-02-03T10:04:45Z
mal-2026-699	Malicious code in tokyo-ppe-test (PyPI)	2026-02-03T09:32:04Z	2026-02-03T09:32:04Z
mal-2026-698	Malicious code in tableshow (PyPI)	2026-02-03T09:30:09Z	2026-02-03T09:30:09Z
mal-2026-686	Malicious code in tableapys (PyPI)	2026-02-03T07:49:06Z	2026-02-03T09:19:13Z
mal-2026-697	Malicious code in pathlib-v2-utility (PyPI)	2026-02-03T09:17:38Z	2026-02-03T09:17:38Z
mal-2026-638	Malicious code in solhint-plugin-hyperlane (npm)	2026-02-02T05:19:43Z	2026-02-03T08:27:44Z
mal-2026-634	Malicious code in eslint-config-minecraft-scripting (npm)	2026-02-02T05:19:43Z	2026-02-03T08:27:41Z
mal-2026-594	Malicious code in epic-asset-uploader (npm)	2026-01-28T19:45:45Z	2026-02-03T08:27:41Z
mal-2026-554	Malicious code in braintree-web-latest (npm)	2026-01-25T19:34:34Z	2026-02-03T04:54:38Z
mal-2026-496	Malicious code in hemi-btc-staking-actions (npm)	2026-01-23T18:12:42Z	2026-02-03T04:04:59Z

ID	Description	Published	Updated
wid-sec-w-2023-0262	Django: Schwachstelle ermöglicht Denial of Service	2023-02-01T23:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2022-0283	GIMP: Schwachstelle ermöglicht Denial of Service	2022-05-17T22:00:00.000+00:00	2026-01-04T23:00:00.000+00:00
wid-sec-w-2026-0002	Moxa NPort: Mehrere Schwachstellen	2026-01-01T23:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2026-0001	Gitea: Schwachstelle ermöglicht Offenlegung von Informationen	2026-01-01T23:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2025-2833	ESRI ArcGIS Server: Mehrere Schwachstellen	2025-12-11T23:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2025-2499	IBM WebSphere Application Server: Schwachstelle ermöglicht Manipulation von Dateien und potenziell Umgehen von Sicherheitsvorkehrungen	2025-11-05T23:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2024-1578	RADIUS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2024-07-09T22:00:00.000+00:00	2026-01-01T23:00:00.000+00:00
wid-sec-w-2025-2940	Pega Platform: Schwachstelle ermöglicht Codeausführung	2025-12-30T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2939	Dell Computer: Mehrere Schwachstellen	2025-12-30T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2937	Moxa NPort 5000 Series: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-12-30T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2825	MediaWiki: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff	2025-12-10T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2028	Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Codeausführung	2025-09-10T22:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-0754	Red Hat Enterprise Linux (opentelemetry-collector): Schwachstelle ermöglicht Denial of Service	2025-04-08T22:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-0485	Golang Go: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2025-03-04T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-0123	Red Hat Enterprise Linux und and OpenShift (go-git): Mehrere Schwachstellen	2025-01-19T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2024-0789	HTTP/2: Mehrere Schwachstellen ermöglichen Denial of Service	2024-04-03T22:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2023-3174	SSH Protokoll: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2023-12-18T23:00:00.000+00:00	2025-12-30T23:00:00.000+00:00
wid-sec-w-2025-2933	binutils: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-29T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2932	Nagios Enterprises Nagios XI: Mehrere Schwachstellen	2025-12-29T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2930	Red Hat Enterprise Linux: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen	2020-07-21T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-1744	OpenJPEG: Schwachstelle ermöglicht Denial of Service	2025-08-07T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0956	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Denial of Service	2025-05-06T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-0836	Red Hat Enterprise Linux (mod_auth_openidc): Schwachstelle ermöglicht Offenlegung von Informationen	2025-04-15T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2024-1850	Red Hat Enterprise Linux: Mehrere Schwachstellen ermöglichen Denial of Service	2024-08-13T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2023-0580	Red Hat Enterprise Linux (mod_auth_openidc): Mehrere Schwachstellen	2022-05-10T22:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2022-0499	expat: Schwachstelle ermöglicht Codeausführung	2022-01-26T23:00:00.000+00:00	2025-12-29T23:00:00.000+00:00
wid-sec-w-2025-2927	NetApp ActiveIQ Unified Manager: Mehrere Schwachstellen ermöglichen Denial of Service	2025-12-28T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2926	Eaton UPS Companion Software: Mehrere Schwachstellen ermöglichen Codeausführung	2025-12-28T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2925	Gitea: Mehrere Schwachstellen	2025-12-28T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00
wid-sec-w-2025-2924	Sitecore Experience Manager: Schwachstelle ermöglicht Codeausführung	2025-12-28T23:00:00.000+00:00	2025-12-28T23:00:00.000+00:00

ID	Description	Published	Updated
ncsc-2024-0480	Kwetsbaarheid verholpen in Adobe After Effects	2024-12-11T08:34:49.812349Z	2024-12-11T08:34:49.812349Z
ncsc-2024-0477	Kwetsbaarheid verholpen in Adobe Photoshop	2024-12-11T08:17:46.923581Z	2024-12-11T08:17:46.923581Z
ncsc-2024-0475	Kwetsbaarheid verholpen in Adobe Framemaker	2024-12-11T08:06:34.387394Z	2024-12-11T08:06:34.387394Z
ncsc-2024-0474	Kwetsbaarheden verholpen in Drupal Core	2024-12-10T19:35:37.345875Z	2024-12-10T19:35:37.345875Z
ncsc-2024-0473	Kwetsbaarheden verholpen in Siemens producten	2024-12-10T19:34:53.515240Z	2024-12-10T19:34:53.515240Z
ncsc-2024-0472	Kwetsbaarheden verholpen in SAP producten	2024-12-10T19:34:10.105945Z	2024-12-10T19:34:10.105945Z
ncsc-2024-0471	Kwetsbaarheden verholpen in Microsoft Office	2024-12-10T19:33:29.415423Z	2024-12-10T19:33:29.415423Z
ncsc-2024-0469	Kwetsbaarheden verholpen in Qlik Sense Enterprise voor Windows	2024-12-09T13:38:50.887753Z	2024-12-09T13:38:50.887753Z
ncsc-2024-0468	Kwetsbaarheden verholpen in Mitel MiCollab	2024-12-09T13:37:33.039167Z	2024-12-09T13:37:33.039167Z
ncsc-2024-0467	Kwetsbaarheden verholpen in QNAP besturingssystemen	2024-12-09T13:36:33.362104Z	2024-12-09T13:36:33.362104Z
ncsc-2024-0466	Kwetsbaarheden verholpen in Atlassian producten	2024-12-06T13:05:55.904619Z	2024-12-06T13:05:55.904619Z
ncsc-2024-0465	Kwetsbaarheden verholpen in ABB ASPECT, NEXUS Series en MATRIX Series	2024-12-06T11:49:21.695542Z	2024-12-06T11:49:21.695542Z
ncsc-2024-0464	Kwetsbaarheden verholpen in SonicWall SMA100 SSLVPN	2024-12-06T11:48:08.461746Z	2024-12-06T11:48:08.461746Z
ncsc-2024-0463	Kwetsbaarheden verholpen in Veeam Backup & Replication	2024-12-06T11:47:19.699742Z	2024-12-06T11:47:19.699742Z
ncsc-2024-0462	Kwetsbaarheden verholpen in Zabbix	2024-12-02T12:51:47.361749Z	2024-12-02T12:51:47.361749Z
ncsc-2024-0461	Kwetsbaarheden verholpen in IBM Security Verify Access Appliance	2024-12-02T10:55:14.978137Z	2024-12-02T10:55:14.978137Z
ncsc-2024-0460	Kwetsbaarheid verholpen in Zabbix	2024-11-28T14:24:11.654121Z	2024-11-28T14:24:11.654121Z
ncsc-2024-0459	Kwetsbaarheden verholpen in VMware Aria Operations	2024-11-26T13:25:37.944485Z	2024-11-26T13:25:37.944485Z
ncsc-2024-0458	Kwetsbaarheden ontdekt in Veritas Enterprise Vault	2024-11-25T09:04:34.013551Z	2024-11-25T09:04:34.013551Z
ncsc-2024-0457	Kwetsbaarheden verholpen in Apple iOS en iPadOS	2024-11-20T10:01:35.437557Z	2024-11-20T10:01:35.437557Z
ncsc-2024-0456	Kwetsbaarheden verholpen in Apple macOS en Safari	2024-11-20T10:00:42.593160Z	2024-11-20T10:00:42.593160Z
ncsc-2024-0455	Kwetsbaarheid verholpen in Trend Micro Deep Security	2024-11-20T09:04:14.183257Z	2024-11-20T09:04:14.183257Z
ncsc-2024-0451	Kwetsbaarheden verholpen in Palo Alto PAN-OS	2024-11-18T16:00:29.206286Z	2024-11-20T08:41:37.309906Z
ncsc-2024-0454	Kwetsbaarheid verholpen in GitHub CLI	2024-11-19T15:03:48.421618Z	2024-11-19T15:03:48.421618Z
ncsc-2024-0377	Kwetsbaarheden verholpen in VMware vCenter Server	2024-09-18T11:28:43.103000Z	2024-11-19T09:56:16.772512Z
ncsc-2024-0453	Kwetsbaarheid verholpen in Oracle Agile PLM Framework	2024-11-19T09:41:05.945149Z	2024-11-19T09:41:05.945149Z
ncsc-2024-0452	Kwetsbaarheden verholpen in Siemens Tecnomatix Plant Simulation	2024-11-19T08:19:24.590425Z	2024-11-19T08:19:24.590425Z
ncsc-2024-0450	Kwetsbaarheid verholpen in Adobe Photoshop	2024-11-18T11:18:22.537372Z	2024-11-18T11:18:22.537372Z
ncsc-2024-0449	Kwetsbaarheden verholpen in Adobe InDesign	2024-11-18T11:14:49.456205Z	2024-11-18T11:14:49.456205Z
ncsc-2024-0448	Kwetsbaarheden verholpen in Adobe Illustrator	2024-11-18T11:08:38.687476Z	2024-11-18T11:08:38.687476Z

ID	Description	Published	Updated

ID	Description	Published	Updated
ssa-396621	SSA-396621: Multiple File Parsing Vulnerabilities in JTTK before V10.8.1.1 and JT Utilities before V12.8.1.1	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-390195	SSA-390195: LibVNC Vulnerabilities in SIMATIC ITC Products	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-352143	SSA-352143: Multiple File Parsing Vulnerabilities in JTTK before V11.0.3.0 and JT Utilities before V13.0.3.0	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-199605	SSA-199605: Arbitrary File Download Vulnerability in SIMATIC eaSie PCS 7 Skill Package	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-161331	SSA-161331: Scene File Parsing Vulnerability in Simcenter STAR-CCM+ Viewer before V2021.3.1	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-160202	SSA-160202: Multiple Access Control Vulnerabilities in SiPass Integrated	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-133772	SSA-133772: Zip Path Traversal Vulnerability in Teamcenter Active Workspace	2021-12-14T00:00:00Z	2021-12-14T00:00:00Z
ssa-044112	SSA-044112: Multiple Vulnerabilities (NUCLEUS:13) in the TCP/IP Stack of Nucleus RTOS	2021-11-09T00:00:00Z	2021-12-14T00:00:00Z
ssa-779699	SSA-779699: Two Incorrect Authorization Vulnerabilities in Mendix	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-755517	SSA-755517: Path Traversal Vulnerability in Siveillance Video DLNA Server	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-740908	SSA-740908: File Parsing Vulnerabilities in JT Translator in NX	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-537983	SSA-537983: Local Code Execution Vulnerability in SENTRON powermanager V3	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-338732	SSA-338732: Information Disclosure Vulnerability in Mendix	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-328042	SSA-328042: File Parsing Vulnerabilities in OBJ Translator in NX	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-145157	SSA-145157: Multiple Vulnerabilities in SIMATIC RTLS Locating Manager before V2.12	2021-11-09T00:00:00Z	2021-11-09T00:00:00Z
ssa-847986	SSA-847986: Denial-of-Service Vulnerabilities in SIPROTEC 5 relays	2021-09-14T00:00:00Z	2021-10-12T00:00:00Z
ssa-723417	SSA-723417: Multiple Vulnerabilities in SCALANCE W1750D	2021-05-11T00:00:00Z	2021-10-12T00:00:00Z
ssa-538778	SSA-538778: SmartVNC Vulnerabilities in SIMATIC HMI/WinCC Products	2021-05-11T00:00:00Z	2021-10-12T00:00:00Z
ssa-150692	SSA-150692: Multiple Vulnerabilities in RUGGEDCOM ROX	2021-09-14T00:00:00Z	2021-10-12T00:00:00Z
ssa-728618	SSA-728618: Multiple Vulnerabilities in Solid Edge before SE2021MP8	2021-09-28T00:00:00Z	2021-09-28T00:00:00Z
ssa-997732	SSA-997732: Modfem File Parsing Vulnerability in Simcenter Femap before V2021.2	2021-09-14T00:00:00Z	2021-09-14T00:00:00Z
ssa-987403	SSA-987403: Multiple Vulnerabilities in Teamcenter	2021-09-14T00:00:00Z	2021-09-14T00:00:00Z
ssa-944498	SSA-944498: Buffer Overflow Vulnerability in Web Server of APOGEE and TALON Automation Devices	2021-09-14T00:00:00Z	2021-09-14T00:00:00Z
ssa-938030	SSA-938030: DGN and PAR File Parsing Vulnerabilities in JT2Go and Teamcenter Visualization before V13.2.0.2	2021-08-10T00:00:00Z	2021-09-14T00:00:00Z
ssa-936080	SSA-936080: Multiple Vulnerabilities in Third-Party Component libcurl	2021-03-09T00:00:00Z	2021-09-14T00:00:00Z
ssa-865327	SSA-865327: Incorrect Authorization Vulnerability in Industrial Products	2021-08-10T00:00:00Z	2021-09-14T00:00:00Z
ssa-835377	SSA-835377: Missing Authentication Vulnerability in SINEMA Server	2021-09-14T00:00:00Z	2021-09-14T00:00:00Z
ssa-830194	SSA-830194: Missing Authentication Vulnerability in S7-1200 Devices	2021-08-10T00:00:00Z	2021-09-14T00:00:00Z
ssa-756744	SSA-756744: OS Command Injection Vulnerability in SINEC NMS	2021-08-10T00:00:00Z	2021-09-14T00:00:00Z
ssa-692317	SSA-692317: Authorization Bypass Vulnerability in Industrial Edge	2021-09-14T00:00:00Z	2021-09-14T00:00:00Z

ID	Description	Published	Updated
rhsa-2025:8691	Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update	2025-06-09T14:26:17+00:00	2026-02-17T08:00:38+00:00
rhsa-2025:8560	Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update	2025-06-10T06:26:36+00:00	2026-02-17T08:00:37+00:00
rhsa-2025:8552	Red Hat Security Advisory: OpenShift Container Platform 4.17.33 bug fix and security update	2025-06-11T12:02:51+00:00	2026-02-17T08:00:36+00:00
rhsa-2025:8542	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.13.3 fixes and container updates	2025-06-04T21:17:49+00:00	2026-02-17T08:00:32+00:00
rhsa-2025:8392	Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.9 bug fixes and container updates	2025-06-04T00:41:53+00:00	2026-02-17T08:00:29+00:00
rhsa-2025:8390	Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.9 security updates and bug fixes	2025-06-02T17:37:18+00:00	2026-02-17T08:00:28+00:00
rhsa-2025:8384	Red Hat Security Advisory: Red Hat multicluster global hub 1.4.1 bug fixes and container updates	2025-06-02T14:56:45+00:00	2026-02-17T08:00:27+00:00
rhsa-2025:8299	Red Hat Security Advisory: OpenShift Container Platform 4.15.52 bug fix and security update	2025-06-04T12:16:12+00:00	2026-02-17T08:00:23+00:00
rhsa-2025:8284	Red Hat Security Advisory: OpenShift Container Platform 4.18.16 bug fix and security update	2025-06-03T10:16:45+00:00	2026-02-17T08:00:23+00:00
rhsa-2025:8274	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.14.4 security update	2025-05-28T20:39:49+00:00	2026-02-17T08:00:21+00:00
rhsa-2025:8267	Red Hat Security Advisory: osbuild-composer security update	2025-05-28T15:24:18+00:00	2026-02-17T08:00:21+00:00
rhsa-2025:7967	Red Hat Security Advisory: osbuild-composer security update	2025-05-19T09:52:50+00:00	2026-02-17T08:00:19+00:00
rhsa-2025:8224	Red Hat Security Advisory: Red Hat OpenShift for Windows Containers 10.18.1 product release	2025-05-27T17:21:15+00:00	2026-02-17T08:00:17+00:00
rhsa-2025:8075	Red Hat Security Advisory: osbuild-composer security update	2025-05-21T15:37:30+00:00	2026-02-17T08:00:17+00:00
rhsa-2025:7863	Red Hat Security Advisory: OpenShift Container Platform 4.18.14 bug fix and security update	2025-05-20T17:17:48+00:00	2026-02-17T08:00:14+00:00
rhsa-2025:7753	Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift GitOps v1.15.2 security update	2025-05-15T17:09:32+00:00	2026-02-17T08:00:14+00:00
rhsa-2025:7702	Red Hat Security Advisory: OpenShift Container Platform 4.14.52 bug fix and security update	2025-05-21T14:54:27+00:00	2026-02-17T08:00:05+00:00
rhsa-2025:7698	Red Hat Security Advisory: OpenShift Container Platform 4.15.51 bug fix and security update	2025-05-21T14:00:14+00:00	2026-02-17T08:00:05+00:00
rhsa-2025:7616	Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18.3 Bug Fix Update	2025-05-14T14:49:22+00:00	2026-02-17T08:00:05+00:00
rhsa-2025:7669	Red Hat Security Advisory: OpenShift Container Platform 4.17.30 bug fix and security update	2025-05-21T13:50:02+00:00	2026-02-17T08:00:02+00:00
rhsa-2025:7503	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T17:31:03+00:00	2026-02-17T08:00:00+00:00
rhsa-2025:7484	Red Hat Security Advisory: gvisor-tap-vsock security update	2025-05-13T16:00:36+00:00	2026-02-17T07:59:59+00:00
rhsa-2025:7479	Red Hat Security Advisory: opentelemetry-collector security update	2025-05-13T17:18:27+00:00	2026-02-17T07:59:58+00:00
rhsa-2025:7476	Red Hat Security Advisory: python-jinja2 security update	2025-05-13T15:59:43+00:00	2026-02-17T07:59:57+00:00
rhsa-2025:7475	Red Hat Security Advisory: grafana security update	2025-05-13T16:00:56+00:00	2026-02-17T07:59:56+00:00
rhsa-2025:7467	Red Hat Security Advisory: skopeo security update	2025-05-13T17:18:51+00:00	2026-02-17T07:59:54+00:00
rhsa-2025:7466	Red Hat Security Advisory: delve and golang security update	2025-05-13T15:59:41+00:00	2026-02-17T07:59:53+00:00
rhsa-2025:7462	Red Hat Security Advisory: podman security update	2025-05-13T16:04:06+00:00	2026-02-17T07:59:53+00:00
rhsa-2025:7459	Red Hat Security Advisory: buildah security update	2025-05-13T17:19:11+00:00	2026-02-17T07:59:51+00:00
rhsa-2025:7425	Red Hat Security Advisory: osbuild-composer security update	2025-05-13T13:57:39+00:00	2026-02-17T07:59:51+00:00

ID	Description	Published	Updated
icsa-16-231-01	Navis WebAccess SQL Injection Vulnerability	2016-05-22T06:00:00.000000Z	2025-06-25T18:13:39.538321Z
icsa-16-208-01c	Siemens SIMATIC WinCC, PCS 7, and WinCC Runtime Professional Vulnerabilities (Update C)	2016-04-29T06:00:00.000000Z	2025-06-25T18:13:26.602224Z
icsa-16-189-01	WECON LeviStudio Buffer Overflow Vulnerabilities	2016-04-10T06:00:00.000000Z	2025-06-25T15:02:08.772345Z
icsa-15-335-02	Schneider Electric ProClima ActiveX Control Vulnerabilities	2015-09-03T06:00:00.000000Z	2025-06-25T15:02:02.107190Z
icsa-25-182-07	Hitachi Energy MSM	2025-06-24T12:30:00.000000Z	2025-06-24T12:30:00.000000Z
icsa-25-175-07	MICROSENS NMP Web+	2025-06-24T06:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-25-175-06	Parsons AccuWeather widget	2025-06-24T06:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-25-175-05	ControlID iDSecure On-premises	2025-06-24T06:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-25-175-02	Delta Electronics CNCSoft	2025-06-24T06:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-25-175-01	Kaleris Navis N4 Terminal Operating System	2025-06-24T06:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-19-029-02	Mitsubishi Electric MELSEC-Q Series PLCs	2019-01-29T07:00:00.000000Z	2025-06-24T06:00:00.000000Z
icsa-25-182-04	FESTO Hardware Controller, Hardware Servo Press Kit	2022-07-06T07:00:00.000000Z	2025-06-23T08:00:00.000000Z
icsa-16-145-01a	Moxa MiiNePort Vulnerabilities	2016-02-25T07:00:00.000000Z	2025-06-20T18:15:20.614865Z
va-25-171-01	ClamAV	2025-06-20T00:00:00Z	2025-06-20T00:00:00Z
icsa-12-265-01	Emerson DeltaV Buffer Overflow	2012-06-25T06:00:00.000000Z	2025-06-19T22:40:48.319564Z
icsa-12-258-01	IOServer OPC Server Multiple Vulnerabilities	2012-06-18T06:00:00.000000Z	2025-06-19T22:40:41.973320Z
icsa-15-034-01	Siemens SCALANCE X-200IRT Switch Family User Impersonation Vulnerability	2015-11-06T07:00:00.000000Z	2025-06-18T19:25:20.526318Z
icsa-13-022-02	GE Intelligent Platforms Proficy Cimplicity Multiple Vulnerabilities	2013-10-26T06:00:00.000000Z	2025-06-18T19:25:08.106052Z
icsa-12-354-01a	Ruggedcom ROS Hard-Coded RSA SSL Private Key	2012-09-22T06:00:00.000000Z	2025-06-18T19:25:01.798871Z
icsa-12-342-01b	Rockwell Allen-Bradley MicroLogix, SLC 500, and PLC-5 Fault Generation Vulnerability	2012-09-10T06:00:00.000000Z	2025-06-18T19:24:55.231514Z
icsa-12-249-03	InduSoft ISSymbol ActiveX Control Buffer Overflow	2012-06-09T06:00:00.000000Z	2025-06-18T19:04:35.253383Z
icsa-12-228-01a	Tridium Niagara Vulnerabilities	2012-05-19T06:00:00.000000Z	2025-06-18T19:04:29.046428Z
icsa-15-099-01e	Siemens SIMATIC HMI Devices Vulnerabilities (Update E)	2015-01-10T07:00:00.000000Z	2025-06-18T19:04:22.822443Z
icsa-15-146-01	Mitsubishi Electric MELSEC FX-Series Controllers Denial of Service	2015-02-26T07:00:00.000000Z	2025-06-18T19:04:16.618149Z
icsa-15-153-01	Beckwith Electric TCP Initial Sequence Vulnerability	2015-03-05T07:00:00.000000Z	2025-06-18T19:04:10.391763Z
icsa-15-169-02	Schneider Electric Wonderware System Platform Vulnerabilities	2015-03-21T06:00:00.000000Z	2025-06-18T19:04:04.192744Z
icsa-15-169-01b	Wind River VXWorks TCP Predictability Vulnerability in ICS Devices (Update B)	2015-03-21T06:00:00.000000Z	2025-06-18T19:03:57.981923Z
icsa-12-032-03	GE Intelligent Platforms Proficy Real-Time Information Portal Directory Traversal	2012-11-04T06:00:00.000000Z	2025-06-18T19:03:51.787688Z
icsa-12-079-01	Microsoft Remote Desktop Protocol Memory Corruption Vulnerability	2012-12-21T07:00:00.000000Z	2025-06-18T19:03:45.218685Z
icsa-10-348-01a	Wonderware InBatch Vulnerability	2010-09-16T06:00:00.000000Z	2025-06-17T16:50:19.269504Z

ID	Description	Published	Updated
cisco-sa-vmanage-html-3zkh8d6x	Cisco Catalyst SD-WAN Manager Web UI HTML Injection Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-mlre-h93fswrz	Cisco IOS XE Software for ASR 1000 Series Aggregation Services Routers IPv6 Multicast Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-ios-xe-l2tp-dos-eb5tufmv	Cisco IOS XE Software Layer 2 Tunneling Protocol Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-getvpn-rce-g8qr68sx	Cisco IOS and IOS XE Software Cisco Group Encrypted Transport VPN Software Out-of-Bounds Write Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-dnac-ins-acc-con-nhavdrbz	Cisco DNA Center API Insufficient Access Control Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-click-ap-dos-wdcxkvnq	Cisco Catalyst 9100 Access Points Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-cbw-dos-ysmbuqx3	Cisco Wireless LAN Controller AireOS Software Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-cat3k-dos-zza4gb3r	Cisco IOS XE Software for Catalyst 3650 and Catalyst 3850 Series Switches Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-appqoe-utd-dos-p8o57p5y	Cisco IOS XE Software Application Quality of Experience and Unified Threat Defense Denial of Service Vulnerability	2023-09-27T16:00:00+00:00	2023-09-27T16:00:00+00:00
cisco-sa-lnt-l9zokbz5	Cisco IOS XR Software Image Verification Vulnerability	2023-09-13T16:00:00+00:00	2023-09-13T16:00:00+00:00
cisco-sa-iosxr-info-gxp7nvcp	Cisco IOS XR Software Model-Driven Programmability Behavior with AAA Authorization	2023-09-13T16:00:00+00:00	2023-09-13T16:00:00+00:00
cisco-sa-ios-xr-cfm-3pwn8mkt	Cisco IOS XR Software Connectivity Fault Management Denial of Service Vulnerability	2023-09-13T16:00:00+00:00	2023-09-13T16:00:00+00:00
cisco-sa-dnx-acl-pyzdkeyf	Cisco IOS XR Software Access Control List Bypass Vulnerability	2023-09-13T16:00:00+00:00	2023-09-13T16:00:00+00:00
cisco-sa-comp3acl-vgmp6bq3	Cisco IOS XR Software Compression ACL Bypass Vulnerability	2023-09-13T16:00:00+00:00	2023-09-13T16:00:00+00:00
cisco-sa-sb-rv-stack-shyv2f5n	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Stack Overflow Vulnerability	2023-09-06T16:00:00+00:00	2023-09-06T16:00:00+00:00
cisco-sa-ise-radius-dos-w7cnn7gt	Cisco Identity Services Engine RADIUS Denial of Service Vulnerability	2023-09-06T16:00:00+00:00	2023-09-06T16:00:00+00:00
cisco-sa-hyperflex-redirect-uxlgqduf	Cisco HyperFlex HX Data Platform Open Redirect Vulnerability	2023-09-06T16:00:00+00:00	2023-09-06T16:00:00+00:00
cisco-sa-bw-auth-bypass-kcggmwhx	Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Authentication Bypass Vulnerability	2023-09-06T16:00:00+00:00	2023-09-06T16:00:00+00:00
cisco-sa-commpilot-xss-jc46sezf	Cisco BroadWorks CommPilot Application Software Cross-Site Scripting Vulnerability	2023-08-02T16:00:00+00:00	2023-08-30T19:34:29+00:00
cisco-sa-cucm-priv-esc-d8bky5eg	Cisco Unified Communications Products Privilege Escalation Vulnerability	2023-08-30T16:00:00+00:00	2023-08-30T16:00:00+00:00
cisco-sa-clamav-rnwneeee	ClamAV HFS+ File Scanning Infinite Loop Denial of Service Vulnerability	2023-08-16T16:00:00+00:00	2023-08-25T16:08:02+00:00
cisco-sa-nxos-sftp-xvap5hfd	Cisco Nexus 3000 and 9000 Series Switches SFTP Server File Access Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-nxos-remoteauth-dos-xb6pv74m	Cisco NX-OS Software TACACS+ or RADIUS Remote Authentication Directed Request Denial of Service Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-nxos-n3_9k-isis-dos-ftcxb4vb	Cisco Nexus 3000 and 9000 Series Switches IS-IS Protocol Denial of Service Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-fxos-arbitrary-file-blk6yupl	Cisco FXOS Software Arbitrary File Write Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-fp-ucsfi-snmp-dos-qtv69nao	Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS 6300 Series Fabric Interconnects SNMP Denial of Service Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-apic-uapa-f4tashk	Cisco Application Policy Infrastructure Controller Unauthorized Policy Actions Vulnerability	2023-08-23T16:00:00+00:00	2023-08-23T16:00:00+00:00
cisco-sa-te-va-priv-esc-pudgrx8e	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2023-08-16T16:00:00+00:00	2023-08-17T22:00:29+00:00
cisco-sa-thoueye-privesc-nvhhgwb3	Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability	2023-08-16T16:00:00+00:00	2023-08-17T21:54:23+00:00
cisco-sa-umbrella-tunnel-gjw5thge	Cisco Umbrella Virtual Appliance Undocumented Support Tunnel Vulnerability	2023-08-16T16:00:00+00:00	2023-08-16T16:00:00+00:00

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
msrc_cve-2025-8747	Keras safe_mode bypass allows arbitrary code execution when loading a malicious model.	2025-08-02T00:00:00.000Z	2026-02-21T03:12:49.000Z
msrc_cve-2023-53154	parse_string in cJSON before 1.7.18 has a heap-based buffer over-read via {"1":1, with no trailing newline if cJSON_ParseWithLength is called.	2025-05-02T00:00:00.000Z	2026-02-21T03:12:29.000Z
msrc_cve-2025-27144	Go JOSE's Parsing Vulnerable to Denial of Service	2025-02-02T00:00:00.000Z	2026-02-21T03:11:23.000Z
msrc_cve-2025-5245	GNU Binutils objdump debug.c debug_type_samep memory corruption	2025-05-02T00:00:00.000Z	2026-02-21T03:09:10.000Z
msrc_cve-2025-5244	GNU Binutils ld elflink.c elf_gc_sweep memory corruption	2025-05-02T00:00:00.000Z	2026-02-21T03:08:20.000Z
msrc_cve-2025-40775	DNS message with invalid TSIG causes an assertion failure	2025-05-02T00:00:00.000Z	2026-02-21T03:07:06.000Z
msrc_cve-2025-48060	AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)	2025-05-02T00:00:00.000Z	2026-02-21T03:06:29.000Z
msrc_cve-2024-23337	jq has signed integer overflow in jv.c:jvp_array_write	2025-05-02T00:00:00.000Z	2026-02-21T03:05:37.000Z
msrc_cve-2025-4969	Libsoup: off-by-one out-of-bounds read in find_boundary() in soup-multipart.c	2025-05-02T00:00:00.000Z	2026-02-21T03:03:50.000Z
msrc_cve-2025-47273	setuptools has a path traversal vulnerability in PackageIndex.download that leads to Arbitrary File Write	2025-05-02T00:00:00.000Z	2026-02-21T03:02:49.000Z
msrc_cve-2023-52969	MariaDB Server 10.4 through 10.5., 10.6 through 10.6., 10.7 through 10.11., and 11.0 through 11.0. can sometimes crash with an empty backtrace log. This may be related to make_aggr_tables_info and optimize_stage2.	2025-03-02T00:00:00.000Z	2026-02-21T03:02:44.000Z
msrc_cve-2025-4948	Libsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoup	2025-05-02T00:00:00.000Z	2026-02-21T03:00:46.000Z
msrc_cve-2025-32433	Erlang/OTP SSH Vulnerable to Pre-Authentication RCE	2025-04-02T00:00:00.000Z	2026-02-21T03:00:39.000Z
msrc_cve-2025-2291	PgBouncer default auth_query does not take Postgres password expiry into account	2025-04-02T00:00:00.000Z	2026-02-21T02:59:31.000Z
msrc_cve-2025-26618	SSH SFTP packet size not verified properly in Erlang OTP	2025-02-02T00:00:00.000Z	2026-02-21T02:58:56.000Z
msrc_cve-2025-23167	CVE-2025-23167	2025-05-02T00:00:00.000Z	2026-02-21T02:58:36.000Z
msrc_cve-2025-32907	Libsoup: denial of service in server when client requests a large amount of overlapping ranges with range header	2025-04-02T00:00:00.000Z	2026-02-21T02:58:16.000Z
msrc_cve-2024-50609	An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpoint) to perform a remote Denial of service attack. The crash happens because of a NULL pointer dereference when 0 (from the Content-Length) is passed to the function cfl_sds_len, which in turn tries to cast a NULL pointer into struct cfl_sds. This is related to process_payload_traces_proto_ng() at opentelemetry_prot.c.	2025-02-02T00:00:00.000Z	2026-02-21T02:57:48.000Z
msrc_cve-2025-32912	Libsoup: null pointer dereference in client when server omits the "nonce" parameter in an unauthorized response with digest authentication	2025-04-02T00:00:00.000Z	2026-02-21T02:57:17.000Z
msrc_cve-2024-50608	An issue was discovered in Fluent Bit 3.1.9. When the Prometheus Remote Write input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpoint) to perform a remote Denial of service attack. The crash happens because of a NULL pointer dereference when 0 (from the Content-Length) is passed to the function cfl_sds_len, which in turn tries to cast a NULL pointer into struct cfl_sds. This is related to process_payload_metrics_ng() at prom_rw_prot.c.	2025-02-02T00:00:00.000Z	2026-02-21T02:56:37.000Z
msrc_cve-2025-30215	NATS-Server Fails to Authorize Certain Jetstream Admin APIs	2025-04-02T00:00:00.000Z	2026-02-21T02:56:08.000Z
msrc_cve-2025-4476	Libsoup: null pointer dereference in libsoup may lead to denial of service	2025-05-02T00:00:00.000Z	2026-02-21T02:55:48.000Z
msrc_cve-2024-53208	Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync	2024-12-02T00:00:00.000Z	2026-02-21T02:55:42.000Z
msrc_cve-2025-32908	Libsoup: denial of service on libsoup through http/2 server	2025-04-02T00:00:00.000Z	2026-02-21T02:55:03.000Z
msrc_cve-2024-56595	jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree	2024-12-02T00:00:00.000Z	2026-02-21T02:54:58.000Z
msrc_cve-2025-47279	undici Denial of Service attack via bad certificate data	2025-05-02T00:00:00.000Z	2026-02-21T02:54:47.000Z
msrc_cve-2025-1371	GNU elfutils eu-read readelf.c handle_dynamic_symtab null pointer dereference	2025-02-02T00:00:00.000Z	2026-02-21T02:54:27.000Z
msrc_cve-2025-32909	Libsoup: null pointer dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c	2025-04-02T00:00:00.000Z	2026-02-21T02:54:22.000Z
msrc_cve-2024-56598	jfs: array-index-out-of-bounds fix in dtReadFirst	2024-12-02T00:00:00.000Z	2026-02-21T02:53:52.000Z
msrc_cve-2025-46836	net-tools Stack-based Buffer Overflow vulnerability	2025-05-02T00:00:00.000Z	2026-02-21T02:53:42.000Z

ID	Description	Published	Updated

ID	Description	Updated
var-201908-1840	When PHP EXIF extension is parsing EXIF information from an image, e.g. via exif_read_dat…	2025-12-22T22:20:44.833000Z
var-201302-0142	Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.…	2025-12-22T22:20:44.262000Z
var-201804-1225	An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be…	2025-12-22T22:20:44.127000Z
var-202210-0043	The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fie…	2025-12-22T22:20:39.209000Z
var-201708-1547	The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers…	2025-12-22T22:20:07.115000Z
var-201806-1470	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2025-12-22T22:20:06.986000Z
var-202203-0664	BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions…	2025-12-22T22:20:05.920000Z
var-202001-0472	Insufficient control flow in certain data structures for some Intel(R) Processors with In…	2025-12-22T22:20:05.839000Z
var-201711-0476	An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be…	2025-12-22T22:19:35.406000Z
var-202104-0752	A memory corruption issue was addressed with improved validation. This issue is fixed in …	2025-12-22T22:19:02.462000Z
var-201908-0265	Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a …	2025-12-22T22:18:31.894000Z
var-201302-0253	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:18:28.137000Z
var-201912-0642	Multiple memory corruption issues were addressed with improved memory handling. This issu…	2025-12-22T22:18:27.432000Z
var-201306-0257	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:18:26.814000Z
var-201904-1408	A memory corruption issue was addressed with improved state management. This issue affect…	2025-12-22T22:16:54.320000Z
var-201606-0135	The XML parser in Expat does not use sufficient entropy for hash initialization, which al…	2025-12-22T22:16:52.819000Z
var-201406-0137	The dtls1_reassemble_fragment function in d1_both.c in OpenSSL before 0.9.8za, 1.0.0 befo…	2025-12-22T22:16:52.589000Z
var-201110-0444	Heap-based buffer overflow in the ecommunity_ecom2str function in bgp_ecommunity.c in bgp…	2025-12-22T22:16:52.388000Z
var-200702-0471	Integer overflow in the gifGetBandProc function in ImageIO in Apple Mac OS X 10.4.8 allow…	2025-12-22T22:16:12.244000Z
var-201605-0037	The X509_NAME_oneline function in crypto/x509/x509_obj.c in OpenSSL before 1.0.1t and 1.0…	2025-12-22T22:15:33.887000Z
var-201502-0366	named in ISC BIND 9.7.0 through 9.9.6 before 9.9.6-P2 and 9.10.x before 9.10.1-P2, when D…	2025-12-22T22:14:30.049000Z
var-201806-1467	An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef…	2025-12-22T22:14:08.889000Z
var-201302-0404	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 U…	2025-12-22T22:14:08.456000Z
var-201206-0059	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:14:08.226000Z
var-201310-0356	Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J…	2025-12-22T22:14:02.189000Z
var-201506-0464	Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h i…	2025-12-22T22:14:01.479000Z
var-201104-0082	dhclient in ISC DHCP 3.0.x through 4.2.x before 4.2.1-P1, 3.1-ESV before 3.1-ESV-R1, and …	2025-12-22T22:13:59.499000Z
var-201708-0212	The crypto_xmit function in ntpd in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 all…	2025-12-22T22:13:57.918000Z
var-202205-0881	Buffer Over-read in function find_next_quote in GitHub repository vim/vim prior to 8.2.49…	2025-12-22T22:13:57.821000Z
var-201304-0105	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java …	2025-12-22T22:13:26.858000Z

ID	Description	Published	Updated
jvndb-2023-000030	HAProxy vulnerable to HTTP request/response smuggling	2023-03-31T15:54+09:00	2024-06-04T16:17+09:00
jvndb-2023-000032	Improper restriction of XML external entity references (XXE) in National land numerical information data conversion tool	2023-04-04T15:22+09:00	2024-06-04T15:56+09:00
jvndb-2023-000027	ELECOM WAB-MAT registers its windows service executable with an unquoted file path	2023-03-24T14:35+09:00	2024-06-03T17:36+09:00
jvndb-2023-000022	Multiple vulnerabilities in SEIKO EPSON printers/network interface Web Config	2023-03-08T15:09+09:00	2024-06-03T17:36+09:00
jvndb-2023-000024	Android App "Wolt Delivery: Food and more" uses a hard-coded API key for an external service	2023-03-13T12:28+09:00	2024-06-03T17:15+09:00
jvndb-2022-002768	Multiple vulnerabilities in UNIMO Technology digital video recorders	2022-12-02T14:57+09:00	2024-06-03T16:55+09:00
jvndb-2022-000096	Redmine vulnerable to cross-site scripting	2022-12-13T14:05+09:00	2024-06-03T16:47+09:00
jvndb-2022-000093	TP-Link RE300 V1 tdpServer vulnerable to improper processing of its input	2022-11-24T14:46+09:00	2024-06-03T16:41+09:00
jvndb-2022-000095	Cybozu Remote Service vulnerable to Uncontrolled Resource Consumption	2022-11-25T14:15+09:00	2024-06-03T16:08+09:00
jvndb-2024-000057	Multiple vulnerabilities in UNIVERSAL PASSPORT RX	2024-06-03T15:32+09:00	2024-06-03T15:32+09:00
jvndb-2022-000090	Multiple vulnerabilities in Movable Type	2022-11-16T17:07+09:00	2024-06-03T15:31+09:00
jvndb-2022-000092	Typora fails to properly neutralize JavaScript code.	2022-11-21T15:31+09:00	2024-06-03T15:13+09:00
jvndb-2024-003254	Seiko Solutions SkyBridge MB-A100/MB-A110 and SkyBridge BASIC MB-A130 vulnerable to OS command injection	2024-06-03T14:53+09:00	2024-06-03T14:53+09:00
jvndb-2024-003253	Multiple vulnerabilities in Sharp and Toshiba Tec MFPs	2024-06-03T14:36+09:00	2024-06-03T14:36+09:00
jvndb-2022-000094	Multiple cross-site scripting vulnerabilities in baserCMS	2022-11-25T13:42+09:00	2024-05-31T18:17+09:00
jvndb-2022-002761	Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service	2022-11-21T18:25+09:00	2024-05-31T17:43+09:00
jvndb-2022-000078	bingo!CMS vulnerable to authentication bypass	2022-10-11T17:49+09:00	2024-05-30T17:57+09:00
jvndb-2022-002836	Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service	2022-12-26T16:21+09:00	2024-05-30T17:47+09:00
jvndb-2022-002451	Multiple vulnerabilities in SVMPC1 and SVMPC2	2022-10-13T17:27+09:00	2024-05-30T16:38+09:00
jvndb-2023-000037	Joruri Gw vulnerable to cross-site scripting	2023-04-17T14:19+09:00	2024-05-30T16:19+09:00
jvndb-2023-001493	Multiple mobile printing apps for Android vulnerable to improper intent handling	2023-04-13T11:09+09:00	2024-05-30T15:48+09:00
jvndb-2023-000038	EC-CUBE plugin "NEXT ENGINE Integration Plugin (for EC-CUBE 2.0 series)" vulnerable to authentication bypass	2023-04-19T14:06+09:00	2024-05-30T15:11+09:00
jvndb-2024-000056	awkblog vulnerable to OS command injection	2024-05-30T14:39+09:00	2024-05-30T14:39+09:00
jvndb-2023-001411	Yokogawa Electric CENTUM series vulnerable to cleartext storage of sensitive information	2023-04-06T14:59+09:00	2024-05-29T18:23+09:00
jvndb-2022-000097	Multiple vulnerabilities in DENSHI NYUSATSU CORE SYSTEM	2022-12-15T15:18+09:00	2024-05-29T17:40+09:00
jvndb-2023-000031	Multiple vulnerabilities in JustSystems products	2023-04-04T15:22+09:00	2024-05-29T17:32+09:00
jvndb-2023-000035	Improper restriction of XML external entity references (XXE) in Shinseiyo Sogo Soft	2023-04-19T14:49+09:00	2024-05-29T16:58+09:00
jvndb-2023-000034	JB Inquiry form vulnerable to exposure of private personal information to an unauthorized actor	2023-04-14T15:48+09:00	2024-05-29T16:44+09:00
jvndb-2023-000050	Multiple vulnerabilities in WordPress Plugin "MW WP Form" and "Snow Monkey Forms"	2023-05-15T14:29+09:00	2024-05-29T16:27+09:00
jvndb-2024-000055	Redmine DMSF Plugin vulnerable to path traversal	2024-05-29T14:13+09:00	2024-05-29T14:13+09:00

ID	Description	Updated

ID	Description	Published	Updated
suse-su-2026:20058-1	Security update for rsync	2026-01-02T11:13:05Z	2026-01-02T11:13:05Z
suse-su-2026:20057-1	Security update for libmicrohttpd	2026-01-02T11:07:26Z	2026-01-02T11:07:26Z
suse-ru-2026:20056-1	Recommended update for shim	2026-01-01T13:54:36Z	2026-01-01T13:54:36Z
suse-su-2025:4539-1	Security update for python36	2025-12-31T15:05:33Z	2025-12-31T15:05:33Z
suse-su-2025:4538-1	Security update for python3	2025-12-31T15:05:25Z	2025-12-31T15:05:25Z
suse-su-2025:4536-1	Security update for podman	2025-12-31T10:35:17Z	2025-12-31T10:35:17Z
suse-su-2026:20036-1	Security update for dpdk	2025-12-30T20:51:25Z	2025-12-30T20:51:25Z
suse-su-2026:20037-1	Security update for ovmf	2025-12-30T20:33:17Z	2025-12-30T20:33:17Z
suse-su-2026:20035-1	Security update for podman	2025-12-30T20:16:23Z	2025-12-30T20:16:23Z
suse-su-2026:20055-1	Security update for dpdk	2025-12-30T20:05:16Z	2025-12-30T20:05:16Z
suse-su-2026:20054-1	Security update for capstone	2025-12-30T20:03:14Z	2025-12-30T20:03:14Z
suse-ru-2026:20004-1	Recommended update for shim	2025-12-30T16:20:45Z	2025-12-30T16:20:45Z
suse-su-2025:4534-1	Security update for dpdk22	2025-12-29T16:15:13Z	2025-12-29T16:15:13Z
suse-su-2025:4533-1	Security update for libpng16	2025-12-29T16:11:25Z	2025-12-29T16:11:25Z
suse-su-2025:4532-1	Security update for apache2-mod_auth_openidc	2025-12-29T13:53:59Z	2025-12-29T13:53:59Z
suse-su-2025:4530-1	Security update for the Linux Kernel	2025-12-29T10:48:23Z	2025-12-29T10:48:23Z
suse-su-2025:4528-1	Security update for webkit2gtk3	2025-12-26T14:52:35Z	2025-12-26T14:52:35Z
suse-su-2025:4527-1	Security update for webkit2gtk3	2025-12-26T14:49:08Z	2025-12-26T14:49:08Z
suse-su-2025:4526-1	Security update for buildah	2025-12-26T12:24:16Z	2025-12-26T12:24:16Z
suse-su-2025:4525-1	Security update for gnutls	2025-12-26T12:19:11Z	2025-12-26T12:19:11Z
suse-su-2025:4523-1	Security update for qemu	2025-12-26T10:45:48Z	2025-12-26T10:45:48Z
suse-su-2025:4522-1	Security update for python39	2025-12-26T10:35:01Z	2025-12-26T10:35:01Z
suse-su-2025:4521-1	Security update for the Linux Kernel	2025-12-24T12:42:49Z	2025-12-24T12:42:49Z
suse-su-2025:4520-1	Security update for mariadb	2025-12-24T09:19:47Z	2025-12-24T09:19:47Z
suse-su-2025:4518-1	Security update for apache2	2025-12-23T19:07:45Z	2025-12-23T19:07:45Z
suse-su-2025:4517-1	Security update for the Linux Kernel	2025-12-23T16:28:51Z	2025-12-23T16:28:51Z
suse-su-2025:4516-1	Security update for the Linux Kernel	2025-12-23T16:27:39Z	2025-12-23T16:27:39Z
suse-su-2025:4515-1	Security update for the Linux Kernel	2025-12-23T16:19:45Z	2025-12-23T16:19:45Z
suse-su-2025:4514-1	Security update for libsoup	2025-12-23T14:59:59Z	2025-12-23T14:59:59Z
suse-su-2025:4512-1	Security update for mozjs52	2025-12-23T12:23:19Z	2025-12-23T12:23:19Z

ID	Description	Published	Updated
opensuse-su-2025:20158-1	Security update for go1.24	2025-12-12T07:45:01Z	2025-12-12T07:45:01Z
opensuse-su-2025:20157-1	Security update for go1.25	2025-12-12T07:23:58Z	2025-12-12T07:23:58Z
opensuse-su-2025:15819-1	libruby4_0-4_0-4.0.0~preview2-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15818-1	pgadmin4-9.11-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15817-1	buildpacks-cli-0.39.1-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15816-1	ImageMagick-7.1.2.10-1.1 on GA media	2025-12-12T00:00:00Z	2025-12-12T00:00:00Z
opensuse-su-2025:15815-1	xkbcomp-1.5.0-1.1 on GA media	2025-12-11T00:00:00Z	2025-12-11T00:00:00Z
opensuse-su-2025:15814-1	MozillaThunderbird-140.6.0-1.1 on GA media	2025-12-11T00:00:00Z	2025-12-11T00:00:00Z
opensuse-su-2025:15813-1	MozillaFirefox-146.0-1.1 on GA media	2025-12-11T00:00:00Z	2025-12-11T00:00:00Z
opensuse-su-2025:15812-1	libpoppler-cpp2-25.09.1-4.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15811-1	keylime-config-7.13.0+40-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15810-1	gio-branding-upstream-2.86.3-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15809-1	firefox-esr-140.6.0-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:15808-1	apache2-2.4.66-1.1 on GA media	2025-12-10T00:00:00Z	2025-12-10T00:00:00Z
opensuse-su-2025:20148-1	Security update for openexr	2025-12-09T16:32:45Z	2025-12-09T16:32:45Z
opensuse-su-2025:20153-1	Security update for python-Django	2025-12-09T13:43:55Z	2025-12-09T13:43:55Z
opensuse-su-2025:15807-1	regclient-0.11.1-1.1 on GA media	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
opensuse-su-2025:15806-1	python311-Django4-4.2.27-1.1 on GA media	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
opensuse-su-2025:15805-1	python311-Django-5.2.9-1.1 on GA media	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
opensuse-su-2025:15804-1	nvidia-open-driver-G07-signed-check-590.44.01-1.1 on GA media	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
opensuse-su-2025:15803-1	krb5-1.22.1-1.1 on GA media	2025-12-09T00:00:00Z	2025-12-09T00:00:00Z
opensuse-su-2025:15802-1	corepack24-24.11.1-2.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15801-1	libpng16-16-1.6.52-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15800-1	kdeconnect-kde-25.11.90-1.1 on GA media	2025-12-08T00:00:00Z	2025-12-08T00:00:00Z
opensuse-su-2025:15799-1	libwireshark19-4.6.2-1.1 on GA media	2025-12-05T00:00:00Z	2025-12-05T00:00:00Z
opensuse-su-2025:15798-1	rhino-1.7.15.1-1.1 on GA media	2025-12-05T00:00:00Z	2025-12-05T00:00:00Z
opensuse-su-2025:20143-1	Security update for git-bug	2025-12-04T13:08:26Z	2025-12-04T13:08:26Z
opensuse-su-2025:20138-1	Security update for act	2025-12-04T12:02:10Z	2025-12-04T12:02:10Z
opensuse-su-2025:15797-1	libpng12-0-1.2.59-4.1 on GA media	2025-12-04T00:00:00Z	2025-12-04T00:00:00Z
opensuse-su-2025:15796-1	go1.24-1.24.11-1.1 on GA media	2025-12-04T00:00:00Z	2025-12-04T00:00:00Z

ID	Description	Published	Updated

ID	Description	Published	Updated
bit-tomcat-2025-46701	Apache Tomcat: Security constraint bypass for CGI scripts	2025-07-10T10:47:00.568Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-31651	Apache Tomcat: Bypass of rules in Rewrite Valve	2025-07-10T10:46:54.240Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-31650	Apache Tomcat: DoS via malformed HTTP/2 PRIORITY_UPDATE frame	2025-04-30T05:56:04.703Z	2025-11-06T13:25:46.476Z
bit-tomcat-2025-24813	Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT	2025-07-10T10:46:47.051Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-56337	Apache Tomcat: RCE due to TOCTOU issue in JSP compilation - CVE-2024-50379 mitigation was incomplete	2025-07-10T10:46:39.151Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-54677	Apache Tomcat: DoS in examples web application	2025-07-10T10:46:30.955Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-52317	Apache Tomcat: Request/response mix-up with HTTP/2	2024-11-20T07:20:06.896Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-52316	Apache Tomcat: Authentication bypass when using Jakarta Authentication API	2025-07-10T10:46:05.150Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-50379	Apache Tomcat: RCE due to TOCTOU issue in JSP compilation	2025-07-10T10:45:55.643Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-38286	Apache Tomcat: Denial of Service	2024-11-09T07:20:25.873Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-24549	Apache Tomcat: HTTP/2 header handling DoS	2025-07-17T08:09:49.355Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-23672	Apache Tomcat: WebSocket DoS with incomplete closing handshake	2025-07-17T08:09:47.503Z	2025-11-06T13:25:46.476Z
bit-tomcat-2024-21733	Apache Tomcat: Leaking of unrelated request bodies in default error page	2024-03-06T11:07:26.980Z	2025-11-06T13:25:46.476Z
bit-tomcat-2023-42794	Apache Tomcat: FileUpload: DoS due to accumulation of temporary files on Windows	2024-03-06T11:08:11.491Z	2025-11-06T13:25:46.476Z
bit-tomcat-2023-41080	Apache Tomcat: Open redirect with FORM authentication	2024-03-06T11:08:22.964Z	2025-11-06T13:25:46.476Z
bit-tomcat-2023-34981	Apache Tomcat: AJP response header mix-up	2024-03-06T11:08:35.200Z	2025-11-06T13:25:46.476Z
bit-tomcat-2023-28709	Apache Tomcat: Fix for CVE-2023-24998 is incomplete	2024-03-06T11:08:45.769Z	2025-11-06T13:25:46.476Z
bit-tomcat-2023-28708	Apache Tomcat: JSESSIONID Cookie missing secure attribute in some configurations	2024-03-06T11:08:55.308Z	2025-11-06T13:25:46.476Z
bit-tomcat-2022-34305	XSS in examples web application	2024-03-06T11:09:17.789Z	2025-11-06T13:25:46.476Z
bit-tomcat-2022-29885	EncryptInterceptor does not provide complete protection on insecure networks	2024-03-06T11:09:24.492Z	2025-11-06T13:25:46.476Z
bit-tomcat-2022-23181	Local privilege escalation with FileStore	2024-03-06T11:09:36.902Z	2025-11-06T13:25:46.476Z
bit-tomcat-2021-43980	Apache Tomcat: Information disclosure	2024-03-06T11:09:43.693Z	2025-11-06T13:25:46.476Z
bit-tomcat-2021-25329	Incomplete fix for CVE-2020-9484	2024-03-06T11:10:17.511Z	2025-11-06T13:25:46.476Z
bit-tomcat-2021-25122	Apache Tomcat h2c request mix-up	2024-03-06T11:10:22.561Z	2025-11-06T13:25:46.476Z
bit-tomcat-2021-24122	Apache Tomcat information disclosure	2024-03-06T11:10:27.482Z	2025-11-06T13:25:46.476Z
bit-tomcat-2020-1935		2024-03-06T11:11:33.381Z	2025-11-06T13:25:46.476Z
bit-tomcat-2020-17527	Apache Tomcat: Request header mix-up between HTTP/2 streams	2024-03-06T11:11:37.082Z	2025-11-06T13:25:46.476Z
bit-tomcat-2020-13943		2024-03-06T11:11:40.396Z	2025-11-06T13:25:46.476Z
bit-tomcat-2020-13935		2024-03-06T11:11:44.067Z	2025-11-06T13:25:46.476Z
bit-tomcat-2020-13934		2024-03-06T11:11:47.794Z	2025-11-06T13:25:46.476Z

ID	Description	Published	Updated

ID	Description	Published	Updated

ID	Description	Published	Updated
cnvd-2026-06084	Tenda AX1806 sub_65A28函数栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06082	GPAC vobsub_get_subpic_duration函数缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06081	GPAC uncv_parse_config函数堆栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06080	GPAC dump_ttxt_sample函数堆栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06079	GPAC pcmreframe_flush_packet函数堆栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06078	GPAC oggdmx_parse_tags函数越界读取漏洞	2026-01-19	2026-01-21
cnvd-2026-06077	GPAC avi_parse_input_file函数堆缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06076	GPAC ghi_dmx_declare_opid_bin函数堆缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06075	GPAC越界读取漏洞	2026-01-19	2026-01-21
cnvd-2026-06074	GPAC vorbis_to_intern函数堆栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-06073	GPAC堆栈缓冲区溢出漏洞	2026-01-19	2026-01-21
cnvd-2026-05375	School Fees Payment Management System /ajax.php?action=delete_course文件SQL注入漏洞	2025-11-05	2026-01-21
cnvd-2026-05374	School Fees Payment Management System /ajax.php?action=save_student文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05373	School Fees Payment Management System /manage_course.php文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05372	School Fees Payment Management System /ajax.php?action=save_payment文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05371	School Fees Payment Management System /ajax.php?action=save_course文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05370	School Fees Payment Management System /ajax.php?action=login文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05369	School Fees Payment Management System /ajax.php?action=delete_payment文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05368	School Fees Payment Management System /ajax.php文件SQL注入漏洞	2025-11-20	2026-01-21
cnvd-2026-05367	ChurchCRM EditEventAttendees功能盲SQL注入漏洞	2025-02-28	2026-01-21
cnvd-2026-05366	ChurchCRM DonateItemEditor功能盲SQL注入漏洞	2025-02-28	2026-01-21
cnvd-2026-05365	ChurchCRM CurrentFundraiser参数盲SQL注入漏洞	2025-02-28	2026-01-21
cnvd-2026-05364	ChurchCRM FRBidSheets.php页面盲SQL注入漏洞	2025-03-21	2026-01-21
cnvd-2026-05338	Complete Online Beauty Parlor Management System /index.php文件SQL注入漏洞	2024-03-26	2026-01-21
cnvd-2026-05337	Complete Online Beauty Parlor Management System /forgot-password.php文件SQL注入漏洞	2024-03-26	2026-01-21
cnvd-2026-05336	Complete Online Beauty Parlor Management System /edit-services.php文件SQL注入漏洞	2024-03-26	2026-01-21
cnvd-2026-05335	Complete Online Beauty Parlor Management System /contact-us.php文件SQL注入漏洞	2024-03-26	2026-01-21
cnvd-2026-05334	Complete Online Beauty Parlor Management System /admin-profile.php文件SQL注入漏洞	2024-03-26	2026-01-21
cnvd-2026-05333	Complete Online Beauty Parlor Management System /customer-list.php文件跨站脚本漏洞	2025-11-24	2026-01-21
cnvd-2026-05332	Complete Online Beauty Parlor Management System /bwdates-reports-details.php文件跨站脚本漏洞	2025-12-25	2026-01-21

ID	Description	Published	Updated
certfr-2025-avi-0895	Multiples vulnérabilités dans le noyau Linux de SUSE	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0894	Multiples vulnérabilités dans le noyau Linux de Debian LTS	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0893	Multiples vulnérabilités dans le noyau Linux de Red Hat	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0892	Multiples vulnérabilités dans le noyau Linux d'Ubuntu	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0891	Vulnérabilité dans MongoDB Connector for BI pour Windows	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0890	Multiples vulnérabilités dans les produits Moxa	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0889	Vulnérabilité dans Squid	2025-10-17T00:00:00.000000	2025-10-17T00:00:00.000000
certfr-2025-avi-0887	Vulnérabilité dans Synacor Zimbra Collaboration	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0886	Multiples vulnérabilités dans les produits F5	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0885	Multiples vulnérabilités dans Samba	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0884	Multiples vulnérabilités dans les produits Cisco	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0883	Multiples vulnérabilités dans les produits Spring	2025-10-16T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0801	Multiples vulnérabilités dans les produits Mattermost	2025-09-17T00:00:00.000000	2025-10-16T00:00:00.000000
certfr-2025-avi-0882	Multiples vulnérabilités dans les produits Microsoft	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0881	Multiples vulnérabilités dans Microsoft Azure	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0880	Multiples vulnérabilités dans Microsoft .Net	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0879	Multiples vulnérabilités dans Microsoft Windows	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0878	Multiples vulnérabilités dans Microsoft Office	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0877	Multiples vulnérabilités dans les produits Ivanti	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0876	Multiples vulnérabilités dans les produits Adobe	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0875	Vulnérabilité dans Google Chrome	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0874	Vulnérabilité dans Schneider Electric EcoStruxure	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0873	Multiples vulnérabilités dans les produits Mozilla	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0872	Multiples vulnérabilités dans les produits HPE Aruba Networking	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0871	Multiples vulnérabilités dans les produits Fortinet	2025-10-15T00:00:00.000000	2025-10-15T00:00:00.000000
certfr-2025-avi-0870	Vulnérabilité dans Microsoft Azure	2025-10-14T00:00:00.000000	2025-10-14T00:00:00.000000
certfr-2025-avi-0869	Multiples vulnérabilités dans les produits Veeam	2025-10-14T00:00:00.000000	2025-10-14T00:00:00.000000
certfr-2025-avi-0868	Vulnérabilité dans Siemens SIMATIC	2025-10-14T00:00:00.000000	2025-10-14T00:00:00.000000
certfr-2025-avi-0867	Multiples vulnérabilités dans les produits SAP	2025-10-14T00:00:00.000000	2025-10-14T00:00:00.000000
certfr-2025-avi-0866	Vulnérabilité dans Elastic Cloud Enterprise	2025-10-14T00:00:00.000000	2025-10-14T00:00:00.000000

ID	Description	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated

ID	CVSS	Description	Vendor	Product	Published	Updated