Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-2026-27386
7.5 (3.1)
WordPress DesignThemes Directory Addon plugin <= 1.8 -… designthemes
 DesignThemes Directory Addon
 2026-03-05T05:53:58.932Z 2026-04-23T14:14:10.870Z
CVE-2026-27358
7.1 (3.1)
WordPress Architecturer theme < 3.9.5 - Cross Site Scr… ThemeGoods
 Architecturer
 2026-03-05T05:53:54.072Z 2026-04-23T14:14:10.820Z
CVE-2026-27084
9.8 (3.1)
WordPress Buisson theme <= 1.1.11 - PHP Object Injecti… ThemeREX
 Buisson
 2026-03-25T16:14:55.996Z 2026-04-23T14:14:10.819Z
CVE-2026-27081
8.1 (3.1)
WordPress Rosebud theme <= 1.4 - Local File Inclusion … Mikado-Themes
 Rosebud
 2026-03-25T16:14:55.507Z 2026-04-23T14:14:10.818Z
CVE-2026-27095
9.8 (3.1)
WordPress Bus Ticket Booking with Seat Reservation plu… magepeopleteam
 Bus Ticket Booking with Seat Reservation
 2026-03-25T16:14:56.549Z 2026-04-23T14:14:10.814Z
CVE-2026-27348
7.1 (3.1)
WordPress Photography theme < 7.7.6 - Cross Site Scrip… ThemeGoods
 Photography
 2026-03-05T05:53:53.365Z 2026-04-23T14:14:10.812Z
CVE-2026-27352
7.1 (3.1)
WordPress Starto theme < 2.2.5 - Cross Site Scripting … ThemeGoods
 Starto
 2026-03-05T05:53:53.546Z 2026-04-23T14:14:10.805Z
CVE-2026-27367
7.1 (3.1)
WordPress Musico theme < 3.4.5 - Cross Site Scripting … ThemeGoods
 Musico
 2026-03-05T05:53:55.265Z 2026-04-23T14:14:10.801Z
CVE-2026-27087
7.1 (3.1)
WordPress Wolverine Framework plugin <= 1.9 - Reflecte… G5Theme
 Wolverine Framework
 2026-03-25T16:14:56.146Z 2026-04-23T14:14:10.801Z
CVE-2026-27344
5.9 (3.1)
WordPress inseri core plugin <= 1.0.5 - Broken Access … inseriswiss
 inseri core
 2026-03-05T05:53:53.188Z 2026-04-23T14:14:10.800Z
CVE-2026-27362
6.5 (3.1)
WordPress WP Bakery Autoresponder Addon plugin <= 1.0.… kamleshyadav
 WP Bakery Autoresponder Addon
 2026-03-05T05:53:54.793Z 2026-04-23T14:14:10.799Z
CVE-2026-27096
8.1 (3.1)
WordPress ColorFolio - Freelance Designer WordPress Th… BuddhaThemes
 ColorFolio - Freelance Designer WordPress Theme
 2026-03-19T05:31:42.330Z 2026-04-23T14:14:10.788Z
CVE-2026-27088
7.1 (3.1)
WordPress Darna Framework plugin <= 2.9 - Reflected Cr… G5Theme
 Darna Framework
 2026-03-25T16:14:56.364Z 2026-04-23T14:14:10.769Z
CVE-2026-27093
8.1 (3.1)
WordPress Tripgo theme < 1.5.6 - Local File Inclusion … ovatheme
 Tripgo
 2026-03-19T06:41:10.108Z 2026-04-23T14:14:10.768Z
CVE-2026-27091
6.3 (3.1)
WordPress UiPress lite plugin <= 3.5.09 - Broken Acces… UiPress
 UiPress lite
 2026-03-19T06:48:21.913Z 2026-04-23T14:14:10.767Z
CVE-2026-27082
9.8 (3.1)
WordPress Love Story theme <= 1.3.12 - PHP Object Inje… ThemeREX
 Love Story
 2026-03-25T16:14:55.661Z 2026-04-23T14:14:10.754Z
CVE-2026-27083
9.8 (3.1)
WordPress Work & Travel Company theme <= 1.2 - PHP Obj… ThemeREX
 Work & Travel Company
 2026-03-25T16:14:55.830Z 2026-04-23T14:14:10.745Z
CVE-2026-27079
8.1 (3.1)
WordPress Amfissa theme <= 1.1 - Local File Inclusion … Mikado-Themes
 Amfissa
 2026-03-25T16:14:55.169Z 2026-04-23T14:14:10.686Z
CVE-2026-27080
8.1 (3.1)
WordPress Deston theme <= 1.0 - Local File Inclusion v… Mikado-Themes
 Deston
 2026-03-25T16:14:55.336Z 2026-04-23T14:14:10.672Z
CVE-2026-27078
8.1 (3.1)
WordPress Emaurri theme <= 1.0.1 - Local File Inclusio… Mikado-Themes
 Emaurri
 2026-03-25T16:14:55.015Z 2026-04-23T14:14:10.652Z
CVE-2026-27073
7.5 (3.1)
WordPress Addi – Cuotas que se adaptan a ti plugin <= … Addi
 Addi &#8211; Cuotas que se adaptan a ti
 2026-03-25T16:14:54.270Z 2026-04-23T14:14:10.550Z
CVE-2026-27075
8.1 (3.1)
WordPress Belfort theme <= 1.0 - Local File Inclusion … Mikado-Themes
 Belfort
 2026-03-25T16:14:54.455Z 2026-04-23T14:14:10.484Z
CVE-2026-27066
5.3 (3.1)
WordPress Live sales notification for WooCommerce plug… PI Web Solution
 Live sales notification for WooCommerce
 2026-02-19T08:27:11.001Z 2026-04-23T14:14:10.463Z
CVE-2026-27054
7.1 (3.1)
WordPress Penci Soledad Data Migrator plugin <= 1.3.1 … PenciDesign
 Penci Soledad Data Migrator
 2026-03-25T16:14:53.945Z 2026-04-23T14:14:10.430Z
CVE-2026-27071
9.1 (3.1)
WordPress WPCafe plugin <= 3.0.7 - Broken Access Contr… Arraytics
 WPCafe
 2026-03-25T16:14:54.113Z 2026-04-23T14:14:10.385Z
CVE-2026-27047
8.1 (3.1)
WordPress Curly Core plugin <= 2.1.6 - Local File Incl… Mikado-Themes
 Curly Core
 2026-03-25T16:14:53.295Z 2026-04-23T14:14:10.352Z
CVE-2026-27076
8.1 (3.1)
WordPress LuxeDrive theme <= 1.0 - Local File Inclusio… Mikado-Themes
 LuxeDrive
 2026-03-25T16:14:54.687Z 2026-04-23T14:14:10.351Z
CVE-2026-27046
6.5 (3.1)
WordPress StoreCustomizer plugin <= 2.6.3 - Broken Acc… Kaira
 StoreCustomizer
 2026-03-25T16:14:53.119Z 2026-04-23T14:14:10.348Z
CVE-2026-27044
9.9 (3.1)
WordPress Total Poll Lite plugin <= 4.12.0 - Remote Co… TotalSuite
 Total Poll Lite
 2026-03-25T16:14:52.650Z 2026-04-23T14:14:10.345Z
CVE-2026-27067
9.1 (3.1)
WordPress Mobile App Editor plugin <= 1.3.1 - Arbitrar… Syarif
 Mobile App Editor
 2026-03-19T08:41:18.492Z 2026-04-23T14:14:10.343Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-41055
8.6 (3.1)
AVideo has an incomplete fix for CVE-2026-33039 (SSRF) WWBN
 AVideo
 2026-04-21T22:25:45.488Z 2026-04-22T14:00:50.623Z
CVE-2026-40895
6.9 (4.0)
follow-redirects: Custom Authentication Headers Leaked… follow-redirects
 follow-redirects
 2026-04-21T19:59:59.759Z 2026-04-22T13:31:34.652Z
CVE-2026-40927
5.4 (3.1)
Docmost: XSS in Comments with JavaScript URI docmost
 docmost
 2026-04-21T20:52:29.313Z 2026-04-22T17:42:15.540Z
CVE-2026-40935
5.3 (3.1)
WWBN/AVideo has CAPTCHA Bypass via Attacker-Controlled… WWBN
 AVideo
 2026-04-21T22:21:17.009Z 2026-04-22T18:36:10.405Z
CVE-2026-40931
8.4 (3.1)
Complete Bypass of CVE-2026-24884 Patch via Git-Delive… node-modules
 compressing
 2026-04-21T20:57:09.840Z 2026-04-22T13:52:42.877Z
CVE-2026-40928
5.4 (3.1)
AVideo: Missing CSRF Protection on State-Changing JSON… WWBN
 AVideo
 2026-04-21T22:14:15.472Z 2026-04-22T13:15:43.678Z
CVE-2026-40929
5.4 (3.1)
WWBN AVideo's missing CSRF protection in objects/comme… WWBN
 AVideo
 2026-04-21T22:16:54.781Z 2026-04-22T17:58:51.253Z
CVE-2026-40926
7.1 (3.1)
WWBN AVideo Vulnerable to CSRF in Admin JSON Endpoints… WWBN
 AVideo
 2026-04-21T22:12:28.883Z 2026-04-22T13:58:06.149Z
CVE-2026-28386
N/A
Out-of-bounds Read in AES-CFB-128 on X86-64 with AVX-5… OpenSSL
 OpenSSL
 2026-04-07T22:00:50.164Z 2026-04-10T20:16:08.389Z
CVE-2026-40933
10 (3.1)
Flowise: Authenticated RCE Via MCP Adapters FlowiseAI
 Flowise
 2026-04-21T21:00:35.747Z 2026-04-22T13:20:11.714Z
CVE-2026-28388
N/A
NULL Pointer Dereference When Processing a Delta CRL OpenSSL
 OpenSSL
 2026-04-07T22:00:52.382Z 2026-04-10T20:18:43.095Z
CVE-2026-28389
N/A
Possible NULL Dereference When Processing CMS KeyAgree… OpenSSL
 OpenSSL
 2026-04-07T22:00:53.364Z 2026-04-15T07:28:13.700Z
CVE-2026-28390
N/A
Possible NULL Dereference When Processing CMS KeyTrans… OpenSSL
 OpenSSL
 2026-04-07T22:00:54.172Z 2026-04-15T07:28:22.729Z
CVE-2026-31790
N/A
Incorrect Failure Handling in RSA KEM RSASVE Encapsulation OpenSSL
 OpenSSL
 2026-04-07T22:00:56.698Z 2026-04-08T14:32:37.439Z
CVE-2026-31789
N/A
Heap Buffer Overflow in Hexadecimal Conversion OpenSSL
 OpenSSL
 2026-04-07T22:00:54.983Z 2026-04-13T13:04:17.163Z
CVE-2026-39973
7.1 (3.1)
Apktool: Path Traversal to Arbitrary File Write iBotPeaches
 Apktool
 2026-04-21T01:35:22.396Z 2026-04-23T03:56:04.482Z
CVE-2026-28387
N/A
Potential Use-after-free in DANE Client Code OpenSSL
 OpenSSL
 2026-04-07T22:00:51.496Z 2026-04-13T13:04:17.027Z
CVE-2026-41243
6.9 (4.0)
OpenLearn's pending forum posts remain publicly readab… siemvk
 OpenLearn
 2026-04-23T00:09:03.863Z 2026-04-23T13:55:12.541Z
CVE-2026-41230
8.5 (3.1)
Froxlor has a BIND Zone File Injection via Unsanitized… froxlor
 froxlor
 2026-04-23T03:47:11.258Z 2026-04-23T13:58:27.592Z
CVE-2026-41180
7.5 (3.1)
PsiTransfer: Upload PATCH path traversal can create `c… psi-4ward
 psitransfer
 2026-04-23T00:10:58.230Z 2026-04-23T13:59:14.836Z
CVE-2026-41167
9.1 (3.1)
Jellystat has SQL Injection that leads to to Remote Co… CyferShepard
 Jellystat
 2026-04-22T20:39:31.044Z 2026-04-23T13:46:23.680Z
CVE-2026-40882
7.6 (3.1)
OpenRemote has XXE in Velbus Asset Import openremote
 openremote
 2026-04-22T20:33:23.304Z 2026-04-23T13:47:07.964Z
CVE-2026-35225
8.7 (4.0)
Improper timeout handling in CODESYS EtherNetIP CODESYS
 CODESYS EtherNetIP
 2026-04-23T13:54:51.863Z 2026-04-23T15:35:43.352Z
CVE-2026-33656
9.1 (3.1)
EspoCRM vulnerable to authenticated RCE via Formula wi… espocrm
 espocrm
 2026-04-22T20:01:24.195Z 2026-04-23T13:47:56.303Z
CVE-2026-28083
6.5 (3.1)
WordPress Flatsome theme <= 3.20.5 - Cross Site Script… UX-themes
 Flatsome
 2026-02-26T08:33:36.172Z 2026-04-23T14:14:11.238Z
CVE-2026-28080
4.3 (3.1)
WordPress Rank Math SEO PRO plugin <= 3.0.96 - Broken … Rank Math
 Rank Math SEO PRO
 2026-03-06T12:04:08.429Z 2026-04-23T14:14:11.238Z
CVE-2026-28073
7.1 (3.1)
WordPress WP eMember theme <= v10.2.2 - Reflected Cros… Tips and Tricks HQ
 WP eMember
 2026-03-19T05:18:56.777Z 2026-04-23T14:14:11.238Z
CVE-2026-28070
5.3 (3.1)
WordPress WP eMember plugin <= v10.2.2 - Broken Access… Tips and Tricks HQ
 WP eMember
 2026-03-19T05:20:03.784Z 2026-04-23T14:14:11.237Z
CVE-2026-28044
5.9 (3.1)
WordPress WP Rocket plugin <= 3.19.4 - Cross Site Scri… WP Media
 WP Rocket
 2026-03-19T05:21:26.027Z 2026-04-23T14:14:11.217Z
CVE-2026-28039
7.5 (3.1)
WordPress wpDataTables plugin <= 6.5.0.1 - Local File … wpDataTables
 wpDataTables
 2026-03-05T05:54:14.794Z 2026-04-23T14:14:11.213Z
ID Description Published Updated
fkie_cve-2026-41055 WWBN AVideo is an open source video platform. In versions 29.0 and below, an incomplete SSRF fix in… 2026-04-21T23:16:20.707 2026-04-23T15:59:00.800
fkie_cve-2026-40895 follow-redirects is an open source, drop-in replacement for Node's `http` and `https` modules that … 2026-04-21T21:16:44.337 2026-04-23T15:54:31.857
fkie_cve-2026-40927 Docmost is open-source collaborative wiki and documentation software. Prior to 0.80.0, when leaving… 2026-04-21T21:16:46.110 2026-04-23T15:50:16.280
fkie_cve-2026-40935 WWBN AVideo is an open source video platform. In versions 29.0 and prior, `objects/getCaptcha.php` … 2026-04-21T23:16:20.577 2026-04-23T15:50:14.787
fkie_cve-2026-40931 Compressing is a compressing and uncompressing lib for node. Prior to 2.1.1 and 1.10.5, the patch f… 2026-04-21T22:16:19.247 2026-04-23T15:49:20.480
fkie_cve-2026-40928 WWBN AVideo is an open source video platform. In versions 29.0 and prior, multiple AVideo JSON endp… 2026-04-21T23:16:20.300 2026-04-23T15:49:02.443
fkie_cve-2026-40929 WWBN AVideo is an open source video platform. In versions 29.0 and prior, `objects/commentDelete.js… 2026-04-21T23:16:20.433 2026-04-23T15:48:27.070
fkie_cve-2026-40926 WWBN AVideo is an open source video platform. In versions 29.0 and prior, three admin-only JSON end… 2026-04-21T23:16:20.163 2026-04-23T15:48:02.850
fkie_cve-2026-28386 Issue summary: Applications using AES-CFB128 encryption or decryption on systems with AVX-512 and V… 2026-04-07T22:16:20.513 2026-04-23T15:40:23.007
fkie_cve-2026-40933 Flowise is a drag & drop user interface to build a customized large language model flow. Prior to 3… 2026-04-21T22:16:19.383 2026-04-23T15:40:22.850
fkie_cve-2026-28388 Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL p… 2026-04-07T22:16:20.863 2026-04-23T15:40:08.410
fkie_cve-2026-28389 Issue summary: During processing of a crafted CMS EnvelopedData message with KeyAgreeRecipientInfo … 2026-04-07T22:16:21.030 2026-04-23T15:40:00.107
fkie_cve-2026-28390 Issue summary: During processing of a crafted CMS EnvelopedData message with KeyTransportRecipientI… 2026-04-07T22:16:21.190 2026-04-23T15:39:52.520
fkie_cve-2026-31790 Issue summary: Applications using RSASVE key encapsulation to establish a secret encryption key can… 2026-04-07T22:16:21.770 2026-04-23T15:39:44.033
fkie_cve-2026-31789 Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to … 2026-04-07T22:16:21.617 2026-04-23T15:39:34.377
fkie_cve-2026-39973 Apktool is a tool for reverse engineering Android APK files. In versions 3.0.0 and 3.0.1, a path tr… 2026-04-21T02:16:07.903 2026-04-23T15:39:26.490
fkie_cve-2026-28387 Issue summary: An uncommon configuration of clients performing DANE TLSA-based server authenticatio… 2026-04-07T22:16:20.700 2026-04-23T15:39:25.323
fkie_cve-2026-41243 OpenLearn is open-source educational forum software. Prior to commit 844b2a40a69d0c4911580fe501923f… 2026-04-23T02:16:19.040 2026-04-23T15:37:24.200
fkie_cve-2026-41230 Froxlor is open source server administration software. Prior to version 2.3.6, `DomainZones::add()`… 2026-04-23T04:16:19.783 2026-04-23T15:37:24.090
fkie_cve-2026-41180 PsiTransfer is an open source, self-hosted file sharing solution. Prior to version 2.4.3, the uploa… 2026-04-23T02:16:15.977 2026-04-23T15:37:23.917
fkie_cve-2026-41167 Jellystat is a free and open source Statistics App for Jellyfin. Prior to version 1.1.10, multiple … 2026-04-22T21:17:09.303 2026-04-23T15:37:23.773
fkie_cve-2026-40882 OpenRemote is an open-source internet-of-things platform. Prior to version 1.22.0, the Velbus asset… 2026-04-22T21:17:08.733 2026-04-23T15:37:23.580
fkie_cve-2026-35225 An unauthenticated remote attacker is able to exhaust all available TCP connections in the CODESYS … 2026-04-23T15:37:23.377 2026-04-23T15:37:23.377
fkie_cve-2026-33656 EspoCRM is an open source customer relationship management application. Prior to version 9.3.4, Esp… 2026-04-22T21:17:05.330 2026-04-23T15:37:23.117
fkie_cve-2026-28083 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-02-26T09:16:14.857 2026-04-23T15:37:22.883
fkie_cve-2026-28080 Missing Authorization vulnerability in Rank Math Rank Math SEO PRO seo-by-rank-math-pro allows Expl… 2026-03-06T12:15:54.890 2026-04-23T15:37:22.787
fkie_cve-2026-28073 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-19T06:16:26.550 2026-04-23T15:37:22.690
fkie_cve-2026-28070 Missing Authorization vulnerability in Tips and Tricks HQ WP eMember wp-eMember allows Exploiting I… 2026-03-19T06:16:26.360 2026-04-23T15:37:22.590
fkie_cve-2026-28044 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2026-03-19T06:16:26.173 2026-04-23T15:37:22.487
fkie_cve-2026-28039 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… 2026-03-05T06:16:36.897 2026-04-23T15:37:22.327
ID Severity Description Published Updated
ghsa-32r9-qhg6-prph
7.6 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2025-05-07T15:31:47Z 2026-04-23T15:37:41Z
ghsa-222r-jmhg-vqvf
7.1 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in bundgaard Martins Free Monetized Ad Exchange Net… 2025-05-07T15:31:47Z 2026-04-23T15:37:41Z
ghsa-wgr5-655j-9682
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in DAEXT Soccer Live Scores allows Cross Site Reque… 2025-05-07T15:31:46Z 2026-04-23T15:37:39Z
ghsa-2vhv-mf9g-gm93
5.4 (3.1)
Missing Authorization vulnerability in AlphaEfficiencyTeam Custom Login and Registration allows Exp… 2025-04-25T09:31:49Z 2026-04-23T15:37:35Z
ghsa-pj5f-6j55-4xcf
7.1 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Olav Kolbu Google News allows Stored XSS. This i… 2025-04-24T18:31:06Z 2026-04-23T15:37:30Z
ghsa-m5jp-j4jf-fwmp
7.1 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Kiotviet KiotViet Sync allows Stored XSS. This i… 2025-04-24T18:31:05Z 2026-04-23T15:37:28Z
ghsa-crfx-pgcg-vwwv
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-22T12:31:22Z 2026-04-23T15:37:28Z
ghsa-rgfv-cmfv-jcmm
8.5 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2025-04-17T18:31:17Z 2026-04-23T15:37:21Z
ghsa-9gjv-779r-fr7m
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-17T18:31:17Z 2026-04-23T15:37:20Z
ghsa-43mw-w97r-j4p7
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-17T18:31:17Z 2026-04-23T15:37:20Z
ghsa-5r5c-h6fq-hpjr
7.5 (3.1)
Missing Authorization vulnerability in webbernaut Cloak Front End Email allows Exploiting Incorrect… 2025-04-17T18:31:14Z 2026-04-23T15:37:17Z
ghsa-23w8-x79h-65g9
6.5 (3.1)
Missing Authorization vulnerability in wpseek WordPress Dashboard Tweeter allows Exploiting Incorre… 2025-04-17T18:31:13Z 2026-04-23T15:37:16Z
ghsa-v2g6-2gw9-gx3g
5.4 (3.1)
Path Traversal vulnerability in NotFound WPJobBoard allows Path Traversal. This issue affects WPJob… 2025-04-16T00:31:38Z 2026-04-23T15:37:11Z
ghsa-pqqp-3627-c6r6
7.5 (3.1)
Missing Authorization vulnerability in NotFound Unlimited Timeline allows Accessing Functionality N… 2025-04-16T00:31:37Z 2026-04-23T15:37:11Z
ghsa-gvjv-gp9v-cgcq
9.6 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in NotFound WPJobBoard allows Upload a Web Shell to… 2025-04-16T00:31:38Z 2026-04-23T15:37:11Z
ghsa-mgcw-m7m8-h679
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in NotFound WPJobBoard allows Cross Site Request Fo… 2025-04-15T12:30:25Z 2026-04-23T15:37:10Z
ghsa-jw7f-23qw-5686
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-16T00:31:34Z 2026-04-23T15:37:10Z
ghsa-8266-2wq4-3fxv
7.5 (3.1)
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in NotFoun… 2025-04-16T00:31:35Z 2026-04-23T15:37:10Z
ghsa-c684-8m6g-v5gc
7.1 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-11T09:30:26Z 2026-04-23T15:37:08Z
ghsa-4mf7-rwpr-69qr
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Brizy Brizy Pro allows Cross Site Request Forger… 2025-04-09T21:31:43Z 2026-04-23T15:37:04Z
ghsa-vcvx-q83r-m632
4.3 (3.1)
Missing Authorization vulnerability in Brizy Brizy Pro allows Exploiting Incorrectly Configured Acc… 2025-04-09T21:31:43Z 2026-04-23T15:37:03Z
ghsa-pmfj-rg5g-cfpx
7.1 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in nimbata Nimbata Call Tracking allows Stored XSS.… 2025-04-09T18:30:54Z 2026-04-23T15:37:02Z
ghsa-px4w-362r-5vgp
7.2 (3.1)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … 2025-04-09T18:30:54Z 2026-04-23T15:37:01Z
ghsa-pc87-gr23-fphr
4.3 (3.1)
Cross-Site Request Forgery (CSRF) vulnerability in Quý Lê 91 Administrator Z allows Cross Site Requ… 2025-04-04T18:31:07Z 2026-04-23T15:36:59Z
ghsa-297g-cjpm-qw2x
5.3 (3.1)
Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability in 1click… 2025-04-04T18:31:05Z 2026-04-23T15:36:57Z
ghsa-c2r4-2v2x-5wfj
5.4 (3.1)
Missing Authorization vulnerability in Dimitri Grassi Salon booking system allows Exploiting Incorr… 2025-04-04T18:31:02Z 2026-04-23T15:36:54Z
ghsa-pqc3-pghf-52f2
5.4 (3.1)
Missing Authorization vulnerability in 6Storage 6Storage Rentals allows Exploiting Incorrectly Conf… 2025-04-04T18:31:00Z 2026-04-23T15:36:53Z
ghsa-6vm4-3fqc-4q75
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-04T18:31:00Z 2026-04-23T15:36:53Z
ghsa-53fr-m6m9-h6fv
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-04T18:31:00Z 2026-04-23T15:36:53Z
ghsa-xp3c-c34p-32qp
6.5 (3.1)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … 2025-04-04T18:30:59Z 2026-04-23T15:36:52Z
ID Severity Description Package Published Updated
pysec-2022-43132
9.8 (3.1)
The DR-Web-Engine package in PyPI v0.2.0b0 was discovered to contain a code execution bac… dr-web-engine 2022-06-24T21:15:00Z 2024-11-21T14:22:45.610409Z
pysec-2024-125
7.5 (3.1)
DIRAC is a distributed resource framework. In affected versions any user could get a toke… dirac 2024-02-09T00:15:00+00:00 2024-11-21T14:22:45.495938+00:00
pysec-2022-43130
9.8 (3.1)
The d8s-timer for python, as distributed on PyPI, included a potential code-execution bac… democritus-uuids 2022-11-07T15:15:00Z 2024-11-21T14:22:45.198186Z
pysec-2022-43129
9.8 (3.1)
The d8s-strings for python, as distributed on PyPI, included a potential code-execution b… democritus-uuids 2022-11-07T15:15:00Z 2024-11-21T14:22:45.148199Z
pysec-2022-43128
9.8 (3.1)
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd… democritus-utility 2022-11-07T15:15:00Z 2024-11-21T14:22:45.091449Z
pysec-2022-43127
9.8 (3.1)
The d8s-networking for python, as distributed on PyPI, included a potential code-executio… democritus-user-agents 2022-11-07T15:15:00Z 2024-11-21T14:22:45.041198Z
pysec-2022-43126
9.8 (3.1)
The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac… democritus-timezones 2022-11-07T15:15:00Z 2024-11-21T14:22:44.991216Z
pysec-2022-43125
9.8 (3.1)
The d8s-python for python, as distributed on PyPI, included a potential code-execution ba… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.941258Z
pysec-2022-43124
9.8 (3.1)
The d8s-xml for python, as distributed on PyPI, included a potential code-execution backd… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.889277Z
pysec-2022-43123
9.8 (3.1)
The d8s-netstrings for python, as distributed on PyPI, included a potential code-executio… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.834592Z
pysec-2022-43122
9.8 (3.1)
The d8s-grammars for python, as distributed on PyPI, included a potential code-execution … democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.785522Z
pysec-2022-43121
9.8 (3.1)
The d8s-math for python, as distributed on PyPI, included a potential code-execution back… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.735083Z
pysec-2022-43120
9.8 (3.1)
The d8s-json for python, as distributed on PyPI, included a potential code-execution back… democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.684065Z
pysec-2022-43119
9.8 (3.1)
The d8s-archives for python, as distributed on PyPI, included a potential code-execution … democritus-strings 2022-09-19T16:15:00Z 2024-11-21T14:22:44.633699Z
pysec-2022-43118
9.8 (3.1)
The d8s-urls for python, as distributed on PyPI, included a potential code-execution back… democritus-strings 2022-09-19T14:15:00Z 2024-11-21T14:22:44.584448Z
pysec-2022-43117
9.8 (3.1)
The d8s-pdfs for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.53409Z
pysec-2022-43116
9.8 (3.1)
The d8s-utility for python, as distributed on PyPI, included a potential code-execution b… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.483759Z
pysec-2022-43115
9.8 (3.1)
The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.428296Z
pysec-2022-43114
9.8 (3.1)
The d8s-mpeg for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.376649Z
pysec-2022-43113
9.8 (3.1)
The d8s-domains for python, as distributed on PyPI, included a potential code-execution b… democritus-networking 2022-09-19T15:15:00Z 2024-11-21T14:22:44.327837Z
pysec-2022-43112
9.8 (3.1)
The d8s-asns for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.27716Z
pysec-2022-43111
9.8 (3.1)
The d8s-html for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T16:15:00Z 2024-11-21T14:22:44.226888Z
pysec-2022-43110
9.8 (3.1)
The d8s-urls for python, as distributed on PyPI, included a potential code-execution back… democritus-networking 2022-09-19T15:15:00Z 2024-11-21T14:22:44.173987Z
pysec-2022-43109
9.8 (3.1)
The d8s-stats for python, as distributed on PyPI, included a potential code-execution bac… democritus-math 2022-11-07T15:15:00Z 2024-11-21T14:22:44.122837Z
pysec-2022-43108
9.8 (3.1)
The d8s-networking for python, as distributed on PyPI, included a potential code-executio… democritus-json 2022-11-07T15:15:00Z 2024-11-21T14:22:44.072231Z
pysec-2022-43107
9.8 (3.1)
The d8s-ip-addresses for python, as distributed on PyPI, included a potential code-execut… democritus-hypothesis 2022-09-19T16:15:00Z 2024-11-21T14:22:44.021497Z
pysec-2022-43106
9.8 (3.1)
The d8s-dicts for python, as distributed on PyPI, included a potential code-execution bac… democritus-hypothesis 2022-09-19T16:15:00Z 2024-11-21T14:22:43.965654Z
pysec-2022-43105
9.8 (3.1)
The d8s-dates for python, as distributed on PyPI, included a potential code-execution bac… democritus-hypothesis 2022-09-19T15:15:00Z 2024-11-21T14:22:43.915613Z
pysec-2022-43104
9.8 (3.1)
The d8s-domains for python, as distributed on PyPI, included a potential code-execution b… democritus-hypothesis 2022-09-19T15:15:00Z 2024-11-21T14:22:43.865878Z
pysec-2022-43103
9.8 (3.1)
The d8s-uuids for python, as distributed on PyPI, included a potential code-execution bac… democritus-hypothesis 2022-09-19T15:15:00Z 2024-11-21T14:22:43.817031Z
ID Description Updated
gsd-2024-33535 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.600803Z
gsd-2024-33566 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.597677Z
gsd-2024-33601 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.596048Z
gsd-2024-33596 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.590091Z
gsd-2024-33595 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.589303Z
gsd-2024-33538 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.588107Z
gsd-2024-33533 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.580672Z
gsd-2024-33591 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.580436Z
gsd-2024-33537 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.572272Z
gsd-2024-33557 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.567408Z
gsd-2024-33548 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.564663Z
gsd-2024-33540 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.562741Z
gsd-2024-33546 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.560266Z
gsd-2024-33555 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.556591Z
gsd-2024-33577 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.555849Z
gsd-2024-33541 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.555650Z
gsd-2024-33559 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.554162Z
gsd-2024-33529 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.547084Z
gsd-2024-33553 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.544840Z
gsd-2024-33574 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.543325Z
gsd-2024-33551 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.543061Z
gsd-2024-33560 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.535115Z
gsd-2024-33550 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.534917Z
gsd-2024-33602 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.534164Z
gsd-2024-33581 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.528711Z
gsd-2024-33583 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.523973Z
gsd-2024-33570 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.523531Z
gsd-2024-33594 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.522993Z
gsd-2024-33534 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.522494Z
gsd-2024-33575 The format of the source doesn't require a description, click on the link for more details. 2024-04-25T05:02:10.519910Z
ID Description Published Updated
mal-2025-2967 Malicious code in heroku-tl (PyPI) 2025-03-08T07:34:12Z 2026-04-16T15:42:11Z
mal-2025-2949 Malicious code in colorizetext (PyPI) 2025-03-05T16:15:15Z 2026-04-16T15:42:11Z
mal-2025-1994 Malicious code in requesttss (PyPI) 2025-01-25T16:53:01Z 2026-04-16T15:42:11Z
mal-2025-1984 Malicious code in nflx-metaflow (PyPI) 2025-02-05T22:04:22Z 2026-04-16T15:42:11Z
mal-2025-1980 Malicious code in mlc-ai-nightly (PyPI) 2025-01-21T18:27:56Z 2026-04-16T15:42:11Z
mal-2025-192914 Malicious code in queenbee-plugin (RubyGems) 2025-12-23T08:41:05Z 2026-04-16T15:42:11Z
mal-2025-191631 Malicious code in hexdecpy (PyPI) 2025-10-24T21:59:02Z 2026-04-16T15:42:11Z
mal-2025-191630 Malicious code in hexdecli (PyPI) 2025-10-25T16:03:26Z 2026-04-16T15:42:11Z
mal-2026-2251 Malicious code in testtestsharp (npm) 2026-03-27T03:07:31Z 2026-04-16T15:42:10Z
mal-2026-2250 Malicious code in test1sharp (npm) 2026-03-27T03:07:31Z 2026-04-16T15:42:10Z
mal-2026-2196 Malicious code in tailwind-compile (npm) 2026-03-25T14:20:59Z 2026-04-16T15:42:10Z
mal-2026-1973 Malicious code in woltpickerapp (npm) 2026-03-20T04:48:44Z 2026-04-16T15:42:10Z
mal-2026-1968 Malicious code in safe-json-parsex (npm) 2026-03-20T04:41:13Z 2026-04-16T15:42:10Z
mal-2026-1926 Malicious code in tokenshower (npm) 2026-03-19T15:16:36Z 2026-04-16T15:42:10Z
mal-2026-1839 Malicious code in react-state-optimizer-core (npm) 2026-03-18T13:07:12Z 2026-04-16T15:42:10Z
mal-2026-1836 Malicious code in react-performance-suite (npm) 2026-03-18T13:07:05Z 2026-04-16T15:42:10Z
mal-2026-1835 Malicious code in react-fast-utilsa (npm) 2026-03-18T13:06:09Z 2026-04-16T15:42:10Z
mal-2026-1405 Malicious code in whatsapp-fastdesk-utils-drzak (npm) 2026-03-13T06:47:06Z 2026-04-16T15:42:10Z
mal-2026-1404 Malicious code in whatsapp-core-auth-drzak (npm) 2026-03-13T06:47:07Z 2026-04-16T15:42:10Z
mal-2026-1403 Malicious code in tradepmr-fusion-core-drzak (npm) 2026-03-13T06:47:06Z 2026-04-16T15:42:10Z
mal-2026-1402 Malicious code in tradepmr-api-utils-drzak (npm) 2026-03-13T06:47:06Z 2026-04-16T15:42:10Z
mal-2026-1374 Malicious code in spectral-corsair-my-backdoor (npm) 2026-03-12T18:09:11Z 2026-04-16T15:42:10Z
mal-2025-5063 Malicious code in universal-media-player (npm) 2025-06-13T01:40:04Z 2026-04-16T15:42:10Z
mal-2025-5060 Malicious code in sitewidesearch-client (npm) 2025-06-13T00:55:54Z 2026-04-16T15:42:10Z
mal-2025-5058 Malicious code in secure-lib (npm) 2025-06-13T02:06:14Z 2026-04-16T15:42:10Z
mal-2025-5051 Malicious code in react-expiry-date (npm) 2025-06-13T01:31:54Z 2026-04-16T15:42:10Z
mal-2025-34723 Malicious code in terminalcolor256 (npm) 2025-08-14T18:52:04Z 2026-04-16T15:42:10Z
mal-2025-2895 Malicious code in shopmacher-mollie-application (npm) 2025-03-28T12:58:40Z 2026-04-16T15:42:10Z
mal-2024-9888 Malicious code in typescript-operations (npm) 2024-10-16T13:26:54Z 2026-04-16T15:42:10Z
mal-2026-2237 Malicious code in jsonify-builder (npm) 2026-03-26T14:45:36Z 2026-04-16T15:42:09Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2026-0603 Cisco ASA (Adaptive Security Appliance) und Secure Firewall Threat Defense: Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0602 OpenBSD: Mehrere Schwachstellen ermöglichen nicht spezifizierten Angriff 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0601 Cisco ASA (Adaptive Security Appliance): Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0600 xwiki Blog Application: Schwachstelle ermöglicht Cross-Site Scripting 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0598 Cisco WebEx: Schwachstelle ermöglicht Cross-Site Scripting 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0597 NetApp Data ONTAP: Schwachstelle ermöglicht Offenlegung von Informationen 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0596 Checkmk: Schwachstelle ermöglicht Denial of Service 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0594 Vaultwarden: Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0593 ClamAV: Schwachstelle ermöglicht Denial of Service 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0592 Red Hat Developer Hub: Mehrere Schwachstellen 2026-03-04T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0583 Aruba ArubaOS: Mehrere Schwachstellen 2026-03-03T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0568 Dell PowerScale OneFS: Schwachstelle ermöglicht Denial of Service 2026-03-02T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0536 Wireshark: Mehrere Schwachstellen ermöglichen Denial of Service 2026-02-25T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0520 Dell PowerScale OneFS: Mehrere Schwachstellen 2026-02-25T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0495 SonicWall SonicOS: Mehrere Schwachstellen ermöglichen Denial of Service 2026-02-23T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0435 zlib: Schwachstelle ermöglicht Denial of Service 2026-02-17T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0408 Red Hat OpenStack Services auf OpenShift (python-eventlet, keystone): Mehrere Schwachstellen 2026-02-12T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0287 vllm: Schwachstelle ermöglicht Codeausführung 2026-02-02T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0276 Rancher Manager und Backup Operator: Mehrere Schwachstellen 2026-02-01T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0233 vllm: Schwachstelle ermöglicht Offenlegung von Informationen und DoS 2026-01-27T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0229 Citrix Systems XenServer und Xen: Schwachstelle ermöglicht Offenlegung von Informationen 2026-01-27T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0190 vllm: Mehrere Schwachstellen 2026-01-21T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0187 Red Hat Enterprise Linux (glib): Schwachstelle ermöglicht Denial of Service 2026-01-21T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0105 Red Hat Developer Hub: Mehrere Schwachstellen 2026-01-13T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2026-0068 libpng (API-Funktionen): Mehrere Schwachstellen ermöglichen DoS und Offenlegung von Informationen 2026-01-12T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2871 GIMP: Mehrere Schwachstellen ermöglichen Codeausführung 2025-12-17T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2693 CUPS: Mehrere Schwachstellen ermöglichen Denial of Service 2025-11-27T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2651 GnuTLS: Schwachstelle ermöglicht nicht spezifizierten Angriff 2025-11-19T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2608 Golang Go: Schwachstelle ermöglicht Denial of Service 2025-11-16T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
wid-sec-w-2025-2466 QEMU e1000 Network Devices: Schwachstelle ermöglicht Denial of Service 2025-11-02T23:00:00.000+00:00 2026-03-04T23:00:00.000+00:00
ID Description Published Updated
icsa-25-226-01 Siemens SIMATIC RTLS Locating Manager 2025-08-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-191-05 Siemens TIA Project-Server and TIA Portal 2025-07-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-135-07 Siemens SIMATIC IPC RS-828A 2025-05-13T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-044-05 Siemens SIPROTEC 5 Devices 2025-02-11T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-347-05 Siemens Siemens Engineering Platforms 2024-12-10T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-319-12 Siemens Mendix Runtime 2024-11-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-256-05 Siemens Mendix Runtime 2024-09-10T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-193-06 Siemens RUGGEDCOM 2024-07-09T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-24-074-08 Siemens SCALANCE XB-200 / XC-200 / XP-200 / XF-200BA / XR-300WG Family 2024-03-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-348-10 Siemens SIMATIC S7-1500 2023-12-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-222-12 Siemens RUGGEDCOM ROS 2023-08-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-23-222-08 Siemens RUGGEDCOM ROS Devices 2023-08-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-314-05 Siemens RUGGEDCOM ROS 2022-11-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-195-18 Siemens RUGGEDCOM ROS Code Injection 2022-07-12T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-069-12 Siemens RUGGEDCOM ROS 2022-03-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-22-069-01 Siemens RUGGEDCOM Devices 2022-03-08T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-17-271-01b Siemens Ruggedcom ROS, SCALANCE 2017-09-28T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-25-219-08 Yealink IP Phones and RPS (Redirect and Provisioning Service) 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-05 Packet Power EMX and EG 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-04 Rockwell Automation Arena 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-03 Burk Technology ARC Solo 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-01 Delta Electronics DIAView 2025-08-07T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-148-04 Instantel Micromate (Update A) 2025-05-29T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-24-123-01 CyberPower PowerPanel Business 2024-05-02T06:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-24-032-01 Gessler GmbH WEB-MASTER 2024-02-01T07:00:00.000000Z 2025-08-07T06:00:00.000000Z
icsa-25-219-06 Dreame Technology iOS and Android Mobile Applications 2025-08-07T04:00:00.000000Z 2025-08-07T04:00:00.000000Z
va-25-219-01 Tyler Technologies ERP Pro 9 2025-08-07T00:00:00Z 2025-08-07T00:00:00Z
icsa-25-247-01 Honeywell OneWireless Wireless Device Manager (WDM) 2025-08-04T06:00:00.000000Z 2025-08-04T06:00:00.000000Z
icsa-25-205-03 Honeywell Experion PKS (Update A) 2025-07-24T06:00:00.000000Z 2025-08-04T06:00:00.000000Z
icsa-25-212-02 Rockwell Automation Lifecycle Services with VMware 2025-07-31T06:00:00.000000Z 2025-07-31T06:00:00.000000Z
ID Description Published Updated
cisco-sa-sb-bus-acl-bypass-5zn9hnjk Cisco Small Business Series Switches Stacked Reload ACL Bypass Vulnerability 2024-01-24T16:00:00+00:00 2024-01-24T16:00:00+00:00
cisco-sa-cuc-xss-9tfuu5ms Cisco Unity Connection Cross-Site Scripting Vulnerability 2024-01-24T16:00:00+00:00 2024-01-24T16:00:00+00:00
cisco-sa-sdwan-privesc-cli-xkgwmqku Cisco SD-WAN Software Arbitrary File Corruption Vulnerability 2022-09-28T16:00:00+00:00 2024-01-23T23:05:35+00:00
cisco-sa-sd-wan-file-access-vw36d28p Cisco SD-WAN Solution Improper Access Control Vulnerability 2022-04-13T16:00:00+00:00 2024-01-23T21:31:33+00:00
cisco-sa-broadworks-xss-6syj82ju Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Stored Cross-Site Scripting Vulnerability 2024-01-10T16:00:00+00:00 2024-01-23T17:43:55+00:00
cisco-sa-tms-portal-xss-axnevg3s Cisco TelePresence Management Suite Cross-Site Scripting Vulnerabilities 2024-01-10T16:00:00+00:00 2024-01-12T15:18:40+00:00
cisco-sa-thouseyes-privesc-dmzhg3qv Cisco ThousandEyes Enterprise Agent Virtual Appliance Privilege Escalation Vulnerability 2024-01-10T16:00:00+00:00 2024-01-10T16:00:00+00:00
cisco-sa-sb-wap-inject-bhstwgxo Cisco WAP371 Wireless Access Point Command Injection Vulnerability 2024-01-10T16:00:00+00:00 2024-01-10T16:00:00+00:00
cisco-sa-pi-epnm-wkzjeyeq Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Vulnerabilities 2024-01-10T16:00:00+00:00 2024-01-10T16:00:00+00:00
cisco-sa-ise-xss-bl4vtml Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability 2024-01-10T16:00:00+00:00 2024-01-10T16:00:00+00:00
cisco-sa-ise-priv-esc-kjlp2aw Cisco Identity Services Engine Privilege Escalation Vulnerabilities 2023-09-06T16:00:00+00:00 2024-01-08T19:01:50+00:00
cisco-sa-struts-c2kcmkmt Apache Struts Vulnerability Affecting Cisco Products: December 2023 2023-12-12T16:00:00+00:00 2023-12-21T22:23:04+00:00
cisco-sa-http2-reset-d8kf32vz HTTP/2 Rapid Reset Attack Affecting Cisco Products: October 2023 2023-10-16T16:00:00+00:00 2023-12-21T17:09:38+00:00
cisco-sa-asa-ssl-vpn-y88qom77 Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Packet Validation Vulnerability 2023-12-05T16:00:00+00:00 2023-12-05T16:00:00+00:00
cisco-sa-ftd-icmpv6-dos-4emklun Cisco Firepower Threat Defense Software and Cisco FirePOWER Services ICMPv6 with Snort 2 Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-16T21:10:27+00:00
cisco-sa-uipphone-xss-ncmuykqa Cisco IP Phone Stored Cross-Site Scripting Vulnerability 2023-11-15T16:00:00+00:00 2023-11-15T16:00:00+00:00
cisco-sa-secure-endpoint-dos-rzogfknd Cisco Secure Endpoint for Windows Scanning Evasion Vulnerability 2023-11-15T16:00:00+00:00 2023-11-15T16:00:00+00:00
cisco-sa-ise-mult-j-kxpnynr Cisco Identity Services Engine Vulnerabilities 2023-11-15T16:00:00+00:00 2023-11-15T16:00:00+00:00
cisco-sa-appd-php-authpriv-gebwtvu5 Cisco AppDynamics PHP Agent Privilege Escalation Vulnerability 2023-11-15T16:00:00+00:00 2023-11-15T16:00:00+00:00
cisco-sa-accsc-dos-9slzkz8 Cisco Secure Client Software Denial of Service Vulnerabilities 2023-11-15T16:00:00+00:00 2023-11-15T16:00:00+00:00
cisco-sa-asa-icmpv6-t5tzqwnd Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software ICMPv6 Message Processing Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-02T13:50:35+00:00
cisco-sa-asa-webvpn-dos-3ghzqbas Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Remote Access VPN Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-02T13:47:35+00:00
cisco-sa-asa-webvpn-loeksnmo Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability 2022-08-10T16:00:00+00:00 2023-11-01T16:00:01+00:00
cisco-sa-snort-ftd-zxytnjom Multiple Cisco Products Snort FTP Inspection Bypass Vulnerability 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-sa-ftd-snort3-urldos-occfqtex Cisco Firepower Threat Defense Software SSL/TLS URL Category and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-ise-injection-qexegrcw Cisco Identity Services Engine Command Injection Vulnerabilities 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-ise-file-upload-fcelp4xs Cisco Identity Services Engine Vulnerabilities 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-ftdsnort3sip-bypass-lmz2thkn Cisco Firepower Threat Defense Software Snort 3 Geolocation IP Filter Bypass Vulnerability 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-ftd-snort3-uanuntcv Cisco Firepower Threat Defense Software Snort 3 Detection Engine Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
cisco-sa-ftd-snort3-8u4hhxh8 Cisco Firepower Threat Defense Software SSL and Snort 3 Detection Engine Bypass and Denial of Service Vulnerability 2023-11-01T16:00:00+00:00 2023-11-01T16:00:00+00:00
ID Description Published Updated
msrc_cve-2026-0390 UEFI Secure Boot Security Feature Bypass Vulnerability 2026-04-14T07:00:00.000Z 2026-04-14T07:00:00.000Z
msrc_cve-2026-31420 bridge: mrp: reject zero test interval to avoid OOM panic 2026-04-02T00:00:00.000Z 2026-04-14T01:02:27.000Z
msrc_cve-2026-31419 net: bonding: fix use-after-free in bond_xmit_broadcast() 2026-04-02T00:00:00.000Z 2026-04-14T01:02:22.000Z
msrc_cve-2026-34477 Apache Log4j Core: verifyHostName attribute silently ignored in TLS configuration, allowing hostname verification bypass 2026-04-02T00:00:00.000Z 2026-04-13T14:41:08.000Z
msrc_cve-2026-39856 osslsigncode has an Out-of-Bounds Read via Unvalidated Section Bounds in PE Page Hash Calculation 2026-04-02T00:00:00.000Z 2026-04-13T14:41:03.000Z
msrc_cve-2026-39855 osslsigncode has an Integer Underflow in PE Page Hash Calculation Can Cause Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-13T14:40:58.000Z
msrc_cve-2026-39853 osslsigncode has a Stack Buffer Overflow via Unbounded Digest Copy During Signature Verification 2026-04-02T00:00:00.000Z 2026-04-13T14:40:53.000Z
msrc_cve-2026-40226 CVE-2026-40226 2026-04-02T00:00:00.000Z 2026-04-13T14:40:48.000Z
msrc_cve-2026-35206 Helm Chart extraction output directory collapse via `Chart.yaml` name dot-segment 2026-04-02T00:00:00.000Z 2026-04-13T14:40:33.000Z
msrc_cve-2026-4224 Stack overflow parsing XML with deeply nested DTD content models 2026-03-02T00:00:00.000Z 2026-04-13T14:37:54.000Z
msrc_cve-2026-39881 Vim Ex command injection in Vims NetBeans integration 2026-04-02T00:00:00.000Z 2026-04-11T01:40:57.000Z
msrc_cve-2026-40024 Sleuth Kit tsk_recover Path Traversal 2026-04-02T00:00:00.000Z 2026-04-11T01:40:50.000Z
msrc_cve-2026-40025 Sleuth Kit APFS Keybag Parser Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-11T01:40:44.000Z
msrc_cve-2026-40026 Sleuth Kit ISO9660 SUSP Extension Reference Out-of-Bounds Read 2026-04-02T00:00:00.000Z 2026-04-11T01:40:37.000Z
msrc_cve-2026-35535 CVE-2026-35535 2026-04-02T00:00:00.000Z 2026-04-11T01:40:10.000Z
msrc_cve-2026-35385 CVE-2026-35385 2026-04-02T00:00:00.000Z 2026-04-11T01:40:03.000Z
msrc_cve-2026-35386 CVE-2026-35386 2026-04-02T00:00:00.000Z 2026-04-11T01:39:56.000Z
msrc_cve-2026-35388 CVE-2026-35388 2026-04-02T00:00:00.000Z 2026-04-11T01:39:45.000Z
msrc_cve-2026-29181 OpenTelemetry-Go multi-value `baggage` header extraction causes excessive allocations (remote dos amplification) 2026-04-02T00:00:00.000Z 2026-04-11T01:03:43.000Z
msrc_cve-2026-28810 Predictable DNS Transaction IDs Enable Cache Poisoning in Built-in Resolver 2026-04-02T00:00:00.000Z 2026-04-11T01:01:30.000Z
msrc_cve-2026-31790 Incorrect Failure Handling in RSA KEM RSASVE Encapsulation 2026-04-02T00:00:00.000Z 2026-04-10T14:39:43.000Z
msrc_cve-2026-33119 Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability 2026-04-02T07:00:00.000Z 2026-04-10T07:00:00.000Z
msrc_cve-2026-33118 Microsoft Edge (Chromium-based) Spoofing Vulnerability 2026-04-02T07:00:00.000Z 2026-04-10T07:00:00.000Z
msrc_cve-2026-24302 Azure Arc Elevation of Privilege Vulnerability 2026-02-10T08:00:00.000Z 2026-04-10T07:00:00.000Z
msrc_cve-2026-23411 apparmor: fix race between freeing data and fs accessing it 2026-04-02T00:00:00.000Z 2026-04-10T01:02:58.000Z
msrc_cve-2026-23410 apparmor: fix race on rawdata dereference 2026-04-02T00:00:00.000Z 2026-04-10T01:02:51.000Z
msrc_cve-2026-23409 apparmor: fix differential encoding verification 2026-04-02T00:00:00.000Z 2026-04-10T01:02:45.000Z
msrc_cve-2026-23408 apparmor: Fix double free of ns_name in aa_replace_profiles() 2026-04-02T00:00:00.000Z 2026-04-10T01:02:39.000Z
msrc_cve-2026-23407 apparmor: fix missing bounds check on DEFAULT table in verify_dfa() 2026-04-02T00:00:00.000Z 2026-04-10T01:02:33.000Z
msrc_cve-2026-23406 apparmor: fix side-effect bug in match_char() macro usage 2026-04-02T00:00:00.000Z 2026-04-10T01:02:27.000Z
ID Description Published Updated
ncsc-2025-0055 Kwetsbaarheid verholpen in CrowdStrike Falcon sensor 2025-02-13T08:22:07.880125Z 2025-02-13T08:22:07.880125Z
ncsc-2025-0054 Kwetsbaarheden verholpen in Adobe Commerce en Magento 2025-02-13T06:46:08.560650Z 2025-02-13T06:46:08.560650Z
ncsc-2025-0052 Kwetsbaarheden verholpen in Ivanti Connect Secure en Ivanti Policy Secure 2025-02-12T09:35:30.260596Z 2025-02-12T09:35:30.260596Z
ncsc-2025-0051 Kwetsbaarheden verholpen in Siemens producten 2025-02-11T19:40:34.993264Z 2025-02-11T19:40:34.993264Z
ncsc-2025-0050 Kwetsbaarheden verholpen in Microsoft Office 2025-02-11T19:19:24.863294Z 2025-02-11T19:19:24.863294Z
ncsc-2025-0049 Kwetsbaarheden verholpen in Microsoft Visual Studio 2025-02-11T19:17:58.768578Z 2025-02-11T19:17:58.768578Z
ncsc-2025-0048 Kwetsbaarheden verholpen in Microsoft Azure 2025-02-11T19:17:03.555400Z 2025-02-11T19:17:03.555400Z
ncsc-2025-0047 Kwetsbaarheden verholpen in Microsoft Windows 2025-02-11T19:16:04.610648Z 2025-02-11T19:16:04.610648Z
ncsc-2025-0046 Kwetsbaarheid verholpen in Apple iOS en iPadOS 2025-02-11T09:54:03.266145Z 2025-02-11T09:54:03.266145Z
ncsc-2025-0045 Kwetsbaarheden verholpen in SAP producten 2025-02-11T09:08:48.427126Z 2025-02-11T09:08:48.427126Z
ncsc-2025-0043 Kwetsbaarheden verholpen in Cisco IOS, IOS XE en IOS XR Software 2025-02-07T07:44:34.306225Z 2025-02-11T06:53:00.177478Z
ncsc-2025-0041 Kwetsbaarheden verholpen in F5 BIG-IP 2025-02-07T07:38:11.981975Z 2025-02-11T06:51:17.629249Z
ncsc-2025-0044 Kwetsbaarheden verholpen in Cisco Identity Services Engine 2025-02-07T07:50:13.796001Z 2025-02-07T07:50:13.796001Z
ncsc-2025-0042 Kwetsbaarheden verholpen in Cisco AsyncOS Software 2025-02-07T07:41:10.612134Z 2025-02-07T07:41:10.612134Z
ncsc-2025-0040 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2025-02-07T07:33:40.643635Z 2025-02-07T07:33:40.643635Z
ncsc-2025-0039 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2025-02-04T09:13:08.342699Z 2025-02-04T09:13:08.342699Z
ncsc-2025-0038 Kwetsbaarheden verholpen in Zimbra Collaboration 2025-02-04T09:10:55.525420Z 2025-02-04T09:10:55.525420Z
ncsc-2025-0037 Kwetsbaarheden verholpen in VMware Aria Operations 2025-01-31T12:25:21.454904Z 2025-01-31T12:25:21.454904Z
ncsc-2025-0036 Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk 2025-01-29T10:35:51.164484Z 2025-01-29T10:35:51.164484Z
ncsc-2025-0035 Kwetsbaarheden verholpen in Rockwell Automation FactoryTalk 2025-01-29T10:32:40.594073Z 2025-01-29T10:32:40.594073Z
ncsc-2025-0034 Kwetsbaarheden verholpen in Apple iPadOS en iOS 2025-01-28T11:31:14.861619Z 2025-01-28T11:31:14.861619Z
ncsc-2025-0033 Kwetsbaarheden verholpen in Oracle E-Business Suite 2025-01-28T10:43:20.128933Z 2025-01-28T10:43:20.128933Z
ncsc-2025-0009 Kwetsbaarheid verholpen in FortiNet FortiOS en FortiProxy 2025-01-14T14:58:02.272504Z 2025-01-28T10:42:03.747650Z
ncsc-2025-0032 Kwetsbaarheden verholpen in Apple macOS 2025-01-28T10:37:38.942515Z 2025-01-28T10:37:38.942515Z
ncsc-2025-0031 Kwetsbaarheid verholpen in Cisco Meeting Management 2025-01-23T13:56:01.391387Z 2025-01-23T13:56:01.391387Z
ncsc-2025-0030 Kwetsbaarheid verholpen in Cisco BroadWorks 2025-01-23T13:53:16.250734Z 2025-01-23T13:53:16.250734Z
ncsc-2025-0029 Kwetsbaarheid verholpen in SonicWall SMA1000 Appliance 2025-01-23T13:50:32.719670Z 2025-01-23T13:50:32.719670Z
ncsc-2025-0028 Kwetsbaarheden verholpen in Oracle Analytics 2025-01-22T13:36:58.196605Z 2025-01-22T13:36:58.196605Z
ncsc-2025-0027 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2025-01-22T13:36:27.908718Z 2025-01-22T13:36:27.908718Z
ncsc-2025-0026 Kwetsbaarheden verholpen in Oracle JD Edwards 2025-01-22T13:34:42.937250Z 2025-01-22T13:34:42.937250Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2026:10145-1 python312-Django6-6.0.2-1.1 on GA media 2026-02-04T00:00:00Z 2026-02-04T00:00:00Z
opensuse-su-2026:10144-1 expat-2.7.4-1.1 on GA media 2026-02-04T00:00:00Z 2026-02-04T00:00:00Z
opensuse-ru-2026:20168-1 Recommended update for gimp 2026-02-03T18:05:40Z 2026-02-03T18:05:40Z
opensuse-su-2026:20167-1 Security update for xrdp 2026-02-03T15:00:07Z 2026-02-03T15:00:07Z
opensuse-su-2026:10143-1 traefik2-2.11.35-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10142-1 traefik-3.6.7-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10141-1 rizin-0.8.2-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10140-1 patch-2.8-2.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10139-1 libsoup-3_0-0-3.6.5-12.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10138-1 java-25-openj9-25.0.2.0-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10137-1 java-21-openj9-21.0.10.0-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10136-1 java-1_8_0-openjdk-1.8.0.482-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10135-1 java-1_8_0-openj9-1.8.0.482-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10134-1 java-17-openj9-17.0.18.0-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10133-1 java-11-openj9-11.0.30.0-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:10132-1 freerdp-3.22.0-1.1 on GA media 2026-02-03T00:00:00Z 2026-02-03T00:00:00Z
opensuse-su-2026:20156-1 Security update for chromium 2026-02-02T17:20:43Z 2026-02-02T17:20:43Z
opensuse-su-2026:20152-1 Security update for openssl-3 2026-02-02T13:00:02Z 2026-02-02T13:00:02Z
opensuse-su-2026:20151-1 Security update for wireshark 2026-02-02T12:56:02Z 2026-02-02T12:56:02Z
opensuse-su-2026:20150-1 Security update for glib2 2026-02-02T12:41:24Z 2026-02-02T12:41:24Z
opensuse-su-2026:20145-1 Security update for the Linux Kernel 2026-02-02T11:54:26Z 2026-02-02T11:54:26Z
opensuse-su-2026:20148-1 Security update for dpdk 2026-02-02T11:12:33Z 2026-02-02T11:12:33Z
opensuse-su-2026:20147-1 Security update for python-wheel 2026-02-02T09:49:12Z 2026-02-02T09:49:12Z
opensuse-su-2026:10131-1 trivy-0.69.0-1.1 on GA media 2026-02-02T00:00:00Z 2026-02-02T00:00:00Z
opensuse-su-2026:10130-1 python311-PyNaCl-1.6.2-1.1 on GA media 2026-02-02T00:00:00Z 2026-02-02T00:00:00Z
opensuse-su-2026:10129-1 libmlt++-7-7-7.36.1-1.1 on GA media 2026-02-02T00:00:00Z 2026-02-02T00:00:00Z
opensuse-su-2026:10128-1 MozillaThunderbird-140.7.1-1.1 on GA media 2026-01-31T00:00:00Z 2026-01-31T00:00:00Z
opensuse-su-2026:20144-1 Security update for python-filelock 2026-01-30T21:24:37Z 2026-01-30T21:24:37Z
opensuse-su-2026:20143-1 Security update for java-25-openjdk 2026-01-30T15:55:47Z 2026-01-30T15:55:47Z
opensuse-su-2026:20140-1 Security update for alloy 2026-01-30T14:38:31Z 2026-01-30T14:38:31Z
ID Description Published Updated
ID Description Published Updated
rhsa-2026:1072 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.15.1 security update 2026-01-25T22:43:46+00:00 2026-04-14T07:57:54+00:00
rhsa-2026:1067 Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.10.1 2026-01-23T16:45:25+00:00 2026-04-14T07:57:53+00:00
rhsa-2026:1049 Red Hat Security Advisory: Red Hat OpenShift Pipelines Release 1.21.0 2026-01-22T21:04:37+00:00 2026-04-14T07:57:53+00:00
rhsa-2026:1025 Red Hat Security Advisory: osbuild-composer security update 2026-01-22T16:47:34+00:00 2026-04-14T07:57:52+00:00
rhsa-2026:0671 Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.8.4 2026-01-15T08:34:14+00:00 2026-04-14T07:57:52+00:00
rhsa-2026:0973 Red Hat Security Advisory: osbuild-composer security update 2026-01-22T05:34:26+00:00 2026-04-14T07:57:49+00:00
rhsa-2026:0722 Red Hat Security Advisory: multicluster engine for Kubernetes v2.8.4 security update 2026-01-15T17:23:06+00:00 2026-04-14T07:57:49+00:00
rhsa-2026:0718 Red Hat Security Advisory: Moderate: Red Hat Advanced Cluster Management for Kubernetes v2.13.5 security update 2026-01-15T15:59:28+00:00 2026-04-14T07:57:49+00:00
rhsa-2026:0663 Red Hat Security Advisory: OpenShift Container Platform 4.20.11 bug fix and security update 2026-01-22T03:28:29+00:00 2026-04-14T07:57:48+00:00
rhsa-2026:0627 Red Hat Security Advisory: Red Hat Advanced Cluster Management for Kubernetes v2.13.5 security update 2026-01-14T18:37:52+00:00 2026-04-14T07:57:47+00:00
rhsa-2026:0530 Red Hat Security Advisory: Red Hat OpenShift Service Mesh 2.6.12 2026-01-13T20:48:49+00:00 2026-04-14T07:57:47+00:00
rhsa-2026:0527 Red Hat Security Advisory: VolSync v0.14 security fixes and container updates 2026-01-13T16:52:50+00:00 2026-04-14T07:57:47+00:00
rhsa-2026:0477 Red Hat Security Advisory: skopeo security update 2026-01-12T20:03:23+00:00 2026-04-14T07:57:47+00:00
rhsa-2026:0426 Red Hat Security Advisory: buildah security update 2026-01-12T03:32:03+00:00 2026-04-14T07:57:47+00:00
rhsa-2026:0424 Red Hat Security Advisory: podman security update 2026-01-12T02:26:08+00:00 2026-04-14T07:57:46+00:00
rhsa-2026:0314 Red Hat Security Advisory: osbuild-composer security update 2026-01-08T11:35:59+00:00 2026-04-14T07:57:46+00:00
rhsa-2026:0246 Red Hat Security Advisory: grafana security update 2026-01-07T14:46:41+00:00 2026-04-14T07:57:45+00:00
rhsa-2026:0245 Red Hat Security Advisory: grafana security update 2026-01-07T14:45:51+00:00 2026-04-14T07:57:45+00:00
rhsa-2026:0244 Red Hat Security Advisory: grafana security update 2026-01-07T14:38:56+00:00 2026-04-14T07:57:45+00:00
rhsa-2026:0243 Red Hat Security Advisory: grafana security update 2026-01-07T14:43:26+00:00 2026-04-14T07:57:45+00:00
rhsa-2026:0227 Red Hat Security Advisory: osbuild-composer security update 2026-01-07T11:32:40+00:00 2026-04-14T07:57:44+00:00
rhsa-2026:0226 Red Hat Security Advisory: osbuild-composer security update 2026-01-07T12:46:50+00:00 2026-04-14T07:57:43+00:00
rhsa-2025:9759 Red Hat Security Advisory: OpenShift Container Platform 4.14.53 bug fix and security update 2025-07-02T17:25:30+00:00 2026-04-14T07:57:43+00:00
rhsa-2025:9646 Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.7 security and bug fix update 2025-06-25T14:06:29+00:00 2026-04-14T07:57:43+00:00
rhsa-2025:9541 Red Hat Security Advisory: Submariner 0.17.6 bug fixes and container updates 2025-06-24T14:31:21+00:00 2026-04-14T07:57:43+00:00
rhsa-2025:9388 Red Hat Security Advisory: Red Hat Multicluster GlobalHub 1.2.3 bug fixes and container updates 2025-06-23T15:10:48+00:00 2026-04-14T07:57:42+00:00
rhsa-2025:9259 Red Hat Security Advisory: OpenShift Container Platform 4.15.53 bug fix and security update 2025-06-26T01:50:03+00:00 2026-04-14T07:57:42+00:00
rhsa-2025:9167 Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.6.0 release 2025-06-17T09:27:34+00:00 2026-04-14T07:57:41+00:00
rhsa-2025:8691 Red Hat Security Advisory: RHSA: Submariner 0.20.1 - bug fix and enhancement update 2025-06-09T14:26:17+00:00 2026-04-14T07:57:40+00:00
rhsa-2025:8560 Red Hat Security Advisory: OpenShift Container Platform 4.18.17 bug fix and security update 2025-06-10T06:26:36+00:00 2026-04-14T07:57:39+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ssa-865333 SSA-865333: Memory Corruption Vulnerability in EN100 Ethernet Module 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-711829 SSA-711829: Denial of Service Vulnerability in TIA Administrator 2022-04-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-610768 SSA-610768: XML Entity Expansion Injection Vulnerability in Mendix Excel Importer Module 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-599506 SSA-599506: Command Injection Vulnerability in RUGGEDCOM ROX 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-557804 SSA-557804: Mirror Port Isolation Vulnerability in SCALANCE X Switches 2019-03-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-492173 SSA-492173: Expression Injection Vulnerability in Mendix Applications 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-491621 SSA-491621: Denial of Service Vulnerability in CPC80 Firmware of SICAM A8000 Devices 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-474231 SSA-474231: File Parsing Vulnerability in Simcenter Femap before V2022.2 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-439148 SSA-439148: File Parsing Vulnerabilities in PADS Standard/Plus Viewer 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-433782 SSA-433782: Improper Access Control Vulnerability in Mendix 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-414513 SSA-414513: Information Disclosure Vulnerability in Mendix 2022-04-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-348662 SSA-348662: Multiple Vulnerabilities in SIMATIC MV500 Devices before V3.3 2022-07-12T00:00:00Z 2022-07-12T00:00:00Z
ssa-111512 SSA-111512: Client-side Authentication in SIMATIC WinCC OA 2022-06-21T00:00:00Z 2022-06-21T00:00:00Z
ssa-911567 SSA-911567: Missing HTTP headers in SINEMA Remote Connect Server before V3.0 SP2 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-740594 SSA-740594: Privilege Escalation Vulnerability in Mendix SAML Module 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-693555 SSA-693555: Memory Corruption Vulnerability in EN100 Ethernet Module 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-679335 SSA-679335: Multiple Vulnerabilities in Embedded FTP Server of SIMATIC CP Modules 2021-08-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-662649 SSA-662649: Denial of Service Vulnerability in Desigo DXR and PXC Controllers 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-626968 SSA-626968: Multiple Webserver Vulnerabilities in Desigo PXC and DXR Devices 2022-05-10T00:00:00Z 2022-06-14T00:00:00Z
ssa-535997 SSA-535997: Cleartext Storage of Sensitive Information in Multiple SIMATIC Products 2021-09-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-401167 SSA-401167: Cross-site scripting Vulnerability in Teamcenter Active Workspace 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-388239 SSA-388239: Default Password Leakage affecting the Component Shared HIS used in Spectrum Power Systems 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-330556 SSA-330556: PwnKit Vulnerability in SCALANCE LPE9403 and SINUMERIK Edge Products (CVE-2021-4034) 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-301589 SSA-301589: Multiple File Parsing Vulnerabilities in Solid Edge, JT2Go and Teamcenter Visualization 2022-02-08T00:00:00Z 2022-06-14T00:00:00Z
ssa-222547 SSA-222547: Third-Party Component Vulnerabilities in SCALANCE LPE9403 before V2.0 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-148078 SSA-148078: Multiple Vulnerabilities in APOGEE/TALON Field Panels 2017-10-12T00:00:00Z 2022-06-14T00:00:00Z
ssa-145224 SSA-145224: Vulnerability in OSPF Packet Handling of SCALANCE XM-400 and XR-500 Devices 2022-06-14T00:00:00Z 2022-06-14T00:00:00Z
ssa-787292 SSA-787292: Denial of Service Vulnerability in SIMATIC RFID Readers 2021-06-08T00:00:00Z 2022-05-10T00:00:00Z
ssa-756638 SSA-756638: Vulnerabilities in Third-Party Component Mbed TLS of LOGO! CMR Family and SIMATIC RTU 3000 Family 2021-09-14T00:00:00Z 2022-05-10T00:00:00Z
ssa-736385 SSA-736385: Memory Corruption Vulnerability in OpenV2G 2022-05-10T00:00:00Z 2022-05-10T00:00:00Z
ID Description Published Updated
suse-su-2026:20983-1 Security update for postgresql16 2026-03-30T14:26:12Z 2026-03-30T14:26:12Z
suse-su-2026:1149-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T13:44:05Z 2026-03-30T13:44:05Z
suse-su-2026:1148-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T11:21:20Z 2026-03-30T11:21:20Z
suse-su-2026:1146-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T09:17:48Z 2026-03-30T09:17:48Z
suse-su-2026:1142-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T09:16:26Z 2026-03-30T09:16:26Z
suse-su-2026:1141-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T09:16:08Z 2026-03-30T09:16:08Z
suse-su-2026:1140-1 Security Beta update 5.2.0 Beta1 for Multi-Linux Manager Client Tools 2026-03-30T09:15:49Z 2026-03-30T09:15:49Z
suse-su-2026:1139-1 Security update for webkit2gtk3 2026-03-30T09:13:58Z 2026-03-30T09:13:58Z
suse-su-2026:20982-1 Security update for tomcat10 2026-03-30T08:17:19Z 2026-03-30T08:17:19Z
suse-su-2026:1137-1 Security update for expat 2026-03-28T02:34:02Z 2026-03-28T02:34:02Z
suse-su-2026:1136-1 Security update for the Linux Kernel (Live Patch 7 for SUSE Linux Enterprise 15 SP7) 2026-03-27T18:04:04Z 2026-03-27T18:04:04Z
suse-su-2026:20978-1 Security update for MozillaFirefox 2026-03-27T17:19:44Z 2026-03-27T17:19:44Z
suse-su-2026:1132-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7) 2026-03-27T16:04:11Z 2026-03-27T16:04:11Z
suse-su-2026:1131-1 Security update for the Linux Kernel 2026-03-27T16:02:21Z 2026-03-27T16:02:21Z
suse-su-2026:1130-1 Security update for the Linux Kernel 2026-03-27T15:47:44Z 2026-03-27T15:47:44Z
suse-su-2026:1129-1 Security update for freerdp 2026-03-27T15:05:09Z 2026-03-27T15:05:09Z
suse-su-2026:1127-1 Security update for MozillaFirefox 2026-03-27T14:43:04Z 2026-03-27T14:43:04Z
suse-su-2026:1126-1 Security update for MozillaFirefox 2026-03-27T14:42:09Z 2026-03-27T14:42:09Z
suse-su-2026:1124-1 Security update for LibVNCServer 2026-03-27T14:22:08Z 2026-03-27T14:22:08Z
suse-su-2026:1125-1 Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) 2026-03-27T14:04:13Z 2026-03-27T14:04:13Z
suse-su-2026:1118-1 Security update for docker-stable 2026-03-27T12:26:18Z 2026-03-27T12:26:18Z
suse-su-2026:1117-1 Security update for python311 2026-03-27T11:34:35Z 2026-03-27T11:34:35Z
suse-su-2026:20976-1 Security update for docker-compose 2026-03-27T10:09:30Z 2026-03-27T10:09:30Z
suse-su-2026:20949-1 Security update for docker-compose 2026-03-27T10:09:30Z 2026-03-27T10:09:30Z
suse-su-2026:20950-1 Security update for nghttp2 2026-03-27T09:43:31Z 2026-03-27T09:43:31Z
suse-su-2026:1107-1 Security update for python312 2026-03-27T09:04:01Z 2026-03-27T09:04:01Z
suse-su-2026:1102-1 Security update for the Linux Kernel (Live Patch 8 for SUSE Linux Enterprise 15 SP7) 2026-03-27T08:05:21Z 2026-03-27T08:05:21Z
suse-su-2026:1105-1 Security update for containerd 2026-03-27T07:03:20Z 2026-03-27T07:03:20Z
suse-su-2026:1099-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7) 2026-03-27T04:33:50Z 2026-03-27T04:33:50Z
suse-su-2026:1096-1 Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2026-03-27T04:04:40Z 2026-03-27T04:04:40Z
ID Description Published Updated
alsa-2025:23326 Moderate: skopeo security update 2025-12-16T00:00:00Z 2025-12-22T13:49:03Z
alsa-2025:23343 Moderate: binutils security update 2025-12-16T00:00:00Z 2025-12-22T13:47:22Z
alsa-2025:23342 Moderate: python3.9 security update 2025-12-16T00:00:00Z 2025-12-22T13:45:25Z
alsa-2025:23336 Moderate: gcc-toolset-13-binutils security update 2025-12-16T00:00:00Z 2025-12-22T13:43:11Z
alsa-2025:23667 Important: git-lfs security update 2025-12-18T00:00:00Z 2025-12-22T13:42:09Z
alsa-2025:23700 Important: webkit2gtk3 security update 2025-12-18T00:00:00Z 2025-12-22T13:39:46Z
alsa-2025:23738 Important: mod_md security update 2025-12-22T00:00:00Z 2025-12-22T13:38:35Z
alsa-2025:23739 Important: mod_md security update 2025-12-22T00:00:00Z 2025-12-22T13:37:02Z
alsa-2025:23744 Important: git-lfs security update 2025-12-22T00:00:00Z 2025-12-22T12:38:08Z
alsa-2025:23745 Important: git-lfs security update 2025-12-22T00:00:00Z 2025-12-22T12:34:52Z
alsa-2025:23479 Moderate: openssh security update 2025-12-17T00:00:00Z 2025-12-21T20:05:20Z
alsa-2025:23480 Moderate: openssh security update 2025-12-17T00:00:00Z 2025-12-21T20:03:34Z
alsa-2025:23481 Moderate: openssh security update 2025-12-17T00:00:00Z 2025-12-21T20:00:09Z
alsa-2025:23483 Moderate: libssh security update 2025-12-17T00:00:00Z 2025-12-21T19:54:52Z
alsa-2025:23484 Moderate: libssh security update 2025-12-17T00:00:00Z 2025-12-21T19:50:15Z
alsa-2025:23210 Important: keylime security update 2025-12-15T00:00:00Z 2025-12-17T13:58:57Z
alsa-2025:22865 Moderate: kernel security update 2025-12-08T00:00:00Z 2025-12-17T11:46:25Z
alsa-2025:23049 Important: tomcat security update 2025-12-10T00:00:00Z 2025-12-17T11:42:14Z
alsa-2025:23050 Important: tomcat security update 2025-12-10T00:00:00Z 2025-12-17T11:40:04Z
alsa-2025:23052 Important: tomcat9 security update 2025-12-10T00:00:00Z 2025-12-17T11:36:41Z
alsa-2025:23111 Moderate: mysql:8.4 security update 2025-12-11T00:00:00Z 2025-12-17T11:32:52Z
alsa-2025:22395 Moderate: kernel security update 2025-12-01T00:00:00Z 2025-12-15T12:44:56Z
alsa-2025:23087 Moderate: grafana security update 2025-12-11T00:00:00Z 2025-12-15T12:37:43Z
alsa-2025:23134 Moderate: mysql:8.0 security update 2025-12-11T00:00:00Z 2025-12-12T10:33:42Z
alsa-2025:23142 Important: wireshark security update 2025-12-11T00:00:00Z 2025-12-12T10:27:48Z
alsa-2025:23139 Moderate: libsoup3 security update 2025-12-11T00:00:00Z 2025-12-12T10:26:40Z
alsa-2025:23137 Moderate: mysql:8.4 security update 2025-12-11T00:00:00Z 2025-12-12T10:24:42Z
alsa-2025:23109 Moderate: mysql security update 2025-12-11T00:00:00Z 2025-12-12T10:21:57Z
alsa-2025:23128 Important: firefox security update 2025-12-11T00:00:00Z 2025-12-12T10:19:27Z
alsa-2025:23088 Moderate: grafana security update 2025-12-11T00:00:00Z 2025-12-12T10:18:20Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2023-1223 Heap-buffer-overflow in H5O__shared_decode 2023-11-27T13:01:18.977198Z 2025-03-18T00:47:06.884278Z
osv-2023-1091 Heap-buffer-overflow in H5F_addr_decode 2023-10-31T13:01:22.289748Z 2025-03-18T00:45:36.194874Z
osv-2024-390 Heap-buffer-overflow in H5O__cache_chk_serialize 2024-04-30T00:14:19.116132Z 2025-03-18T00:44:44.672358Z
osv-2023-754 Heap-buffer-overflow in H5O__chunk_protect 2023-08-28T14:00:10.026707Z 2025-03-18T00:43:25.726885Z
osv-2023-471 Heap-buffer-overflow in H5FS__sinfo_serialize_node_cb 2023-06-09T14:00:54.620201Z 2025-03-18T00:43:10.716259Z
osv-2023-722 Heap-buffer-overflow in H5MM_memcpy 2023-08-22T14:03:04.118428Z 2025-03-18T00:42:21.984142Z
osv-2024-1427 Heap-buffer-overflow in extract_mediaip 2025-01-28T00:14:30.487391Z 2025-03-18T00:41:33.426387Z
osv-2024-1249 Heap-buffer-overflow in extract_ice_option 2024-10-30T00:15:55.709182Z 2025-03-18T00:40:00.171776Z
osv-2025-119 Heap-buffer-overflow in snmp_config_when 2025-02-14T00:15:08.375253Z 2025-03-18T00:37:43.437021Z
osv-2025-161 Heap-buffer-overflow in se_add_pair 2025-02-24T00:15:33.662895Z 2025-03-18T00:37:12.676515Z
osv-2025-113 Heap-buffer-overflow in snmp_log_options 2025-02-14T00:01:45.812592Z 2025-03-18T00:35:43.690001Z
osv-2023-1161 Heap-buffer-overflow in std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<ch 2023-11-14T13:03:13.962614Z 2025-03-18T00:34:06.623648Z
osv-2025-132 Heap-use-after-free in netsnmp_hex_to_binary 2025-02-17T00:01:01.920904Z 2025-03-18T00:33:26.648884Z
osv-2024-1216 Use-of-uninitialized-value in Poco::Net::NTLMCredentials::parseChallengeMessage 2024-10-13T00:11:43.323181Z 2025-03-18T00:32:42.736858Z
osv-2025-131 Heap-buffer-overflow in vips_foreign_save_heif_write_block 2025-02-16T00:13:44.282887Z 2025-03-18T00:32:21.245932Z
osv-2025-162 Heap-buffer-overflow in snmp_in_options 2025-02-24T00:15:40.967551Z 2025-03-18T00:30:24.116747Z
osv-2024-1209 Heap-use-after-free in xmlValidateOneElement 2024-10-11T00:15:43.610812Z 2025-03-18T00:30:11.577855Z
osv-2025-54 UNKNOWN READ in Assimp::SceneCombiner::CopyScene 2025-01-22T00:15:23.827419Z 2025-03-18T00:29:47.108675Z
osv-2025-133 Stack-buffer-overflow in se_read_conf 2025-02-17T00:02:18.986364Z 2025-03-18T00:27:33.917908Z
osv-2024-1071 Use-of-uninitialized-value in Poco::Dynamic::Var::~Var 2024-09-15T00:06:58.342742Z 2025-03-18T00:25:32.915201Z
osv-2024-1322 Security exception in com.alibaba.fastjson2.JSONReader.readObject 2024-11-18T00:00:16.618504Z 2025-03-18T00:24:17.881614Z
osv-2025-148 Heap-buffer-overflow in setup_engineID 2025-02-23T00:00:36.951152Z 2025-03-18T00:22:22.817245Z
osv-2025-215 Security exception in graphql.parser.GraphqlAntlrToLanguage.createType 2025-03-18T00:09:36.655072Z 2025-03-18T00:09:36.655425Z
osv-2022-573 Heap-buffer-overflow in zim_ReflectionEnumBackedCase_getBackingValue 2022-07-13T00:00:07.763765Z 2025-03-12T17:15:50.141849Z
osv-2025-190 Heap-buffer-overflow in std::__1::__function::__func<cv::PngDecoder::compose_frame 2025-03-11T00:04:32.361664Z 2025-03-11T00:04:32.362119Z
osv-2024-831 Heap-buffer-overflow in jv_parse 2024-08-16T00:03:12.871175Z 2025-03-07T14:24:40.166702Z
osv-2024-919 Heap-buffer-overflow in validate_relpath 2024-08-16T00:09:34.461792Z 2025-03-06T14:20:56.754046Z
osv-2024-1312 Heap-buffer-overflow in jv_string_vfmt 2024-11-15T00:16:08.928897Z 2025-03-05T14:20:12.622041Z
osv-2023-1344 Heap-buffer-overflow in jv_string_vfmt 2023-12-22T00:11:40.065456Z 2025-03-05T14:16:07.938645Z
osv-2025-178 Heap-buffer-overflow in usm_set_user_password 2025-02-28T00:16:54.655227Z 2025-02-28T00:16:54.655745Z
ID Description Published Updated
rustsec-2024-0010 Improper comparison of different-length signatures 2024-02-06T12:00:00Z 2024-02-15T01:22:49Z
rustsec-2024-0007 Use-after-free when setting the locale 2024-01-19T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0005 Unsound sending of non-Send types across threads 2024-01-07T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0003 Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS) 2024-01-17T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0001 Unsound use of str::from_utf8_unchecked on bytes which are not UTF-8 2024-01-13T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0078 Potential stack use-after-free in `Instrumented::into_inner` 2023-10-19T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0075 Unaligned write of u64 on 32-bit and 16-bit platforms 2023-12-20T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0074 Some Ref methods are unsound with some type parameters 2023-12-14T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0072 `openssl` `X509StoreRef::objects` is unsound 2023-11-23T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0070 Insufficient covariance check makes self_cell unsound 2023-11-10T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0066 Vulnerable to privilege escalation using ioctls TIOCSTI and TIOCLINUX 2023-04-29T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0063 Denial of service in Quinn servers 2023-09-21T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0062 BER/CER/DER decoder panics on invalid input 2023-09-13T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0061 libwebp: OOB write in BuildHuffmanTable 2023-09-12T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0060 libwebp: OOB write in BuildHuffmanTable 2023-09-12T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0059 Unaligned read of `*const *const c_char` pointer 2023-09-10T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0058 Exposes reference to non-Sync data to an arbitrary thread 2023-09-10T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2023-0057 Fails to prohibit standard library access prior to initialization of Rust standard library runtime 2023-09-10T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2020-0079 `socket2` invalidly assumes the memory layout of std::net::SocketAddr 2020-11-06T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2020-0036 failure is officially deprecated/unmaintained 2020-05-02T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2018-0020 Possible use-after-free with `proplist::Iterator` 2018-12-22T12:00:00Z 2024-02-10T15:57:43Z
rustsec-2024-0009 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') 2024-01-23T12:00:00Z 2024-01-24T17:00:49Z
rustsec-2024-0008 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting') 2024-01-23T12:00:00Z 2024-01-24T17:00:49Z
rustsec-2024-0004 `cosmwasm` is unmaintained 2024-01-20T12:00:00Z 2024-01-21T14:51:38Z
rustsec-2024-0002 `serde` deserialization for `FamStructWrapper` lacks bound checks that could potentially lead to out-of-bounds memory access 2024-01-02T12:00:00Z 2024-01-14T03:39:46Z
rustsec-2023-0076 `cpython` is unmaintained 2023-11-14T12:00:00Z 2023-12-20T22:34:55Z
rustsec-2023-0071 Marvin Attack: potential key recovery through timing sidechannels 2023-11-22T12:00:00Z 2023-12-15T14:57:06Z
rustsec-2023-0073 Infinite decoding loop through specially crafted payload 2023-12-08T12:00:00Z 2023-12-09T10:05:32Z
rustsec-2023-0029 TLS certificate common name validation bypass 2023-03-24T12:00:00Z 2023-11-08T09:57:41Z
rustsec-2023-0069 sudo-rs: Path Traversal vulnerability 2023-11-01T12:00:00Z 2023-11-06T12:48:19Z
ID Description Published Updated
bit-python-2026-3644 Incomplete control character validation in http.cookies 2026-03-18T08:54:55.802Z 2026-03-18T09:23:06.258Z
bit-libpython-2026-4224 Stack overflow parsing XML with deeply nested DTD content models 2026-03-18T08:45:42.290Z 2026-03-18T09:23:06.258Z
bit-libpython-2026-3644 Incomplete control character validation in http.cookies 2026-03-18T08:45:39.878Z 2026-03-18T09:23:06.258Z
bit-gitlab-2026-1230 Use of Incorrectly-Resolved Name or Reference in GitLab 2026-03-13T09:35:23.537Z 2026-03-18T09:23:06.258Z
bit-gitlab-2025-12704 Missing Authorization in GitLab 2026-03-13T09:30:55.187Z 2026-03-18T09:23:06.258Z
bit-gitlab-2025-12697 Improper Encoding or Escaping of Output in GitLab 2026-03-13T09:30:53.383Z 2026-03-18T09:23:06.258Z
bit-airflow-2026-30911 Apache Airflow: Execution API HITL Endpoints Missing Per-Task Authorization 2026-03-18T08:39:32.817Z 2026-03-18T09:23:06.258Z
bit-airflow-2026-28779 Apache Airflow: Path of session token in cookie does not consider base_url - session hijacking via co-hosted applications 2026-03-18T08:39:31.052Z 2026-03-18T09:23:06.258Z
bit-airflow-2026-28563 Apache Airflow: DAG authorization bypass 2026-03-18T08:39:29.066Z 2026-03-18T09:23:06.258Z
bit-airflow-2026-26929 Apache Airflow: Wildcard DagVersion Listing Bypasses Per‑DAG RBAC and Leaks Metadata 2026-03-18T08:39:27.056Z 2026-03-18T09:23:06.258Z
bit-mariadb-2026-3494 MariaDB Server Audit Plugin Comment Handling Bypass 2026-03-10T08:46:18.025Z 2026-03-17T09:18:01.284Z
bit-golang-2026-27142 URLs in meta content attribute actions are not escaped in html/template 2026-03-10T08:44:16.859Z 2026-03-17T09:18:01.284Z
bit-gitlab-2026-1182 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab 2026-03-14T09:09:00.605Z 2026-03-14T09:10:54.038Z
bit-gitlab-2026-1090 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab 2026-03-13T09:35:17.166Z 2026-03-14T09:10:54.038Z
bit-parse-2026-32234 Parse Server has a SQL injection via query field name when using PostgreSQL 2026-03-13T12:28:58.177Z 2026-03-13T12:55:29.610Z
bit-parse-2026-32098 Parse Server has a protected fields bypass via LiveQuery subscription WHERE clause 2026-03-13T12:28:55.457Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31901 Parse Server has user enumeration via email verification endpoint 2026-03-13T12:28:52.748Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31875 Parse Server MFA recovery codes not consumed after use 2026-03-13T12:28:49.853Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31872 Parse Server has a protected fields bypass via dot-notation in query and sort 2026-03-13T12:28:47.303Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31871 Parse Server has a SQL Injection via dot-notation sub-key name in `Increment` operation on PostgreSQL 2026-03-13T12:28:44.452Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31868 Parse Server has Stored XSS via file upload of HTML-renderable file types 2026-03-13T12:28:41.729Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31856 Parse Server has a SQL injection via `Increment` operation on nested object field in PostgreSQL 2026-03-13T12:28:38.912Z 2026-03-13T12:55:29.610Z
bit-parse-2026-31840 Parse Server has a SQL injection via dot-notation field name in PostgreSQL 2026-03-13T12:28:36.029Z 2026-03-13T12:55:29.610Z
bit-parse-2025-64430 Parse Server Vulnerable to Server-Side Request Forgery (SSRF) in File Upload via URI Format 2025-11-12T11:45:02.117Z 2026-03-13T12:55:29.610Z
bit-wordpress-2026-3906 WordPress 6.9 - 6.9.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Note Creation via REST API 2026-03-13T09:17:59.157Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-3848 Improper Neutralization of CRLF Sequences ('CRLF Injection') in GitLab 2026-03-13T09:35:49.642Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1732 Improper Removal of Sensitive Information Before Storage or Transfer in GitLab 2026-03-13T09:35:40.993Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1663 Missing Authorization in GitLab 2026-03-13T09:35:36.922Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-1069 Uncontrolled Recursion in GitLab 2026-03-13T09:35:15.010Z 2026-03-13T09:37:20.375Z
bit-gitlab-2026-0602 Authentication Bypass Using an Alternate Path or Channel in GitLab 2026-03-13T09:35:05.636Z 2026-03-13T09:37:20.375Z
ID Description Published Updated
cleanstart-2026-zm20570 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:54:29.621254Z 2026-02-03T13:35:45Z
cleanstart-2026-xe32069 Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a ... 2026-02-06T01:10:32.733224Z 2026-02-03T13:35:45Z
cleanstart-2026-wx01708 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device 2026-02-06T01:10:02.024980Z 2026-02-03T13:35:45Z
cleanstart-2026-td34476 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:51:29.459800Z 2026-02-03T13:35:45Z
cleanstart-2026-tc95380 vulnerability in the OLE2 file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device 2026-02-06T01:06:01.062694Z 2026-02-03T13:35:45Z
cleanstart-2026-sp51034 Moby is an open-source project created by Docker for software containerization 2026-02-06T00:52:59.619100Z 2026-02-03T13:35:45Z
cleanstart-2026-ps82605 Buffer Overflow vulnerability in Ffmpeg before github commit 4565747056a11356210ed8edcecb920105e40b60 allows a remote attacker to achieve an out-of-array write, execute arbitrary code, and cause a ... 2026-02-06T01:09:01.544353Z 2026-02-03T13:35:45Z
cleanstart-2026-xr99875 Security fixes for GHSA-389x-839f-4rhx, GHSA-3p8m-j85q-pgmj, GHSA-5jpm-x58v-624v, GHSA-84h7-rjj3-6jx4, GHSA-fghv-69vj-qj49, GHSA-jq43-27x9-3v86, GHSA-qqpg-mvqg-649v applied in versions: 0.1.109-r0, 0.1.113-r1 2026-02-03T16:02:30.597873Z 2026-02-03T11:13:56Z
cleanstart-2026-qn16013 Cancelling a query (e 2026-02-03T16:02:29.512503Z 2026-02-03T11:13:56Z
cleanstart-2026-nb26505 Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 4.5.1-r0 2026-02-03T16:02:27.744077Z 2026-02-03T11:13:56Z
cleanstart-2026-my73913 Security fixes for GHSA-R6J8-C6R2-37RR applied in versions: 4.12.1-r0 2026-02-03T16:02:28.659120Z 2026-02-03T11:13:56Z
cleanstart-2026-fc21713 Cancelling a query (e 2026-02-03T16:02:29.570272Z 2026-02-03T11:13:56Z
cleanstart-2026-dg41269 Cancelling a query (e 2026-02-03T16:02:29.326704Z 2026-02-03T11:13:56Z
cleanstart-2026-cc08655 Security fixes for GHSA-F6X5-JH6R-WRFV, GHSA-J5W8-Q4QC-RX2X applied in versions: 0.8.4-r0 2026-02-03T00:36:29.405423Z 2026-02-02T12:32:10Z
cleanstart-2026-am95501 When using the RemoteIpFilter with requests received from a reverse proxy via HTTP that include the X-Forwarded-Proto header set to https, session cookies created by Apache Tomcat 11 2026-02-03T00:37:00.849369Z 2026-02-02T12:32:10Z
cleanstart-2026-zz61324 Hunspell 1 2026-01-30T17:14:26.562334Z 2026-01-29T18:58:54Z
cleanstart-2026-zr62045 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-01-30T16:56:56.696859Z 2026-01-29T18:58:54Z
cleanstart-2026-zp68963 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-01-30T15:47:54.288582Z 2026-01-29T18:58:54Z
cleanstart-2026-zo91195 go-redis is the official Redis client library for the Go programming language 2026-01-30T15:30:24.594235Z 2026-01-29T18:58:54Z
cleanstart-2026-zm84646 Within HostnameError 2026-01-30T16:20:55.488130Z 2026-01-29T18:58:54Z
cleanstart-2026-zm51114 SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption 2026-01-30T16:08:25.157380Z 2026-01-29T18:58:54Z
cleanstart-2026-zl24388 Prometheus Blackbox Exporter through 0 2026-01-30T14:05:50.598465Z 2026-01-29T18:58:54Z
cleanstart-2026-zd89666 Within HostnameError 2026-01-30T17:26:56.612763Z 2026-01-29T18:58:54Z
cleanstart-2026-zc18474 PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access 2026-01-30T17:04:56.559720Z 2026-01-29T18:58:54Z
cleanstart-2026-yu60015 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-01-30T15:08:53.316314Z 2026-01-29T18:58:54Z
cleanstart-2026-yt18139 issue was discovered in libexpat before 2 2026-01-30T17:26:57.202658Z 2026-01-29T18:58:54Z
cleanstart-2026-ys66739 Authorization Bypass Through User-Controlled Key in GitHub repository emicklei/go-restful prior to v3 2026-01-30T15:00:53.250874Z 2026-01-29T18:58:54Z
cleanstart-2026-ym75307 Redis is an open source, in-memory database that persists on disk 2026-01-30T14:34:22.430652Z 2026-01-29T18:58:54Z
cleanstart-2026-ym28538 Prometheus Blackbox Exporter through 0 2026-01-30T14:06:20.601766Z 2026-01-29T18:58:54Z
cleanstart-2026-yl27116 tar 2026-01-30T14:08:51.064236Z 2026-01-29T18:58:54Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certfr-2026-avi-0012 Multiples vulnérabilités dans Trend Micro Apex Central 2026-01-08T00:00:00.000000 2026-01-08T00:00:00.000000
certfr-2026-avi-0011 Vulnérabilité dans Google Android 2026-01-08T00:00:00.000000 2026-01-08T00:00:00.000000
certfr-2026-avi-0010 Multiples vulnérabilités dans Curl 2026-01-07T00:00:00.000000 2026-01-07T00:00:00.000000
certfr-2026-avi-0009 Vulnérabilité dans Google Chrome 2026-01-07T00:00:00.000000 2026-01-07T00:00:00.000000
certfr-2026-avi-0008 Multiples vulnérabilités dans Joomla! 2026-01-07T00:00:00.000000 2026-01-07T00:00:00.000000
certfr-2026-avi-0007 Vulnérabilité dans Stormshield Network Security 2026-01-06T00:00:00.000000 2026-01-06T00:00:00.000000
certfr-2026-avi-0006 Multiples vulnérabilités dans Veeam Backup & Replication 2026-01-06T00:00:00.000000 2026-01-06T00:00:00.000000
certfr-2026-avi-0005 Multiples vulnérabilités dans Centreon Open Tickets 2026-01-06T00:00:00.000000 2026-01-06T00:00:00.000000
certfr-2025-avi-1097 Vulnérabilité dans les produits Mitel 2025-12-11T00:00:00.000000 2026-01-06T00:00:00.000000
certfr-2026-avi-0004 Vulnérabilité dans MariaDB 2026-01-05T00:00:00.000000 2026-01-05T00:00:00.000000
certfr-2026-avi-0003 Multiples vulnérabilités dans les produits Qnap 2026-01-05T00:00:00.000000 2026-01-05T00:00:00.000000
certfr-2025-avi-1111 Multiples vulnérabilités dans Roundcube 2025-12-15T00:00:00.000000 2026-01-05T00:00:00.000000
certfr-2026-avi-0002 Multiples vulnérabilités dans les produits IBM 2026-01-02T00:00:00.000000 2026-01-02T00:00:00.000000
certfr-2026-avi-0001 Multiples vulnérabilités dans le noyau Linux de SUSE 2026-01-02T00:00:00.000000 2026-01-02T00:00:00.000000
certfr-2025-avi-1142 Multiples vulnérabilités dans Moxa NPort 2025-12-31T00:00:00.000000 2025-12-31T00:00:00.000000
certfr-2025-avi-1141 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1140 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1139 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1138 Multiples vulnérabilités dans VMware Tanzu Platform 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1137 Multiples vulnérabilités dans les produits IBM 2025-12-26T00:00:00.000000 2025-12-26T00:00:00.000000
certfr-2025-avi-1076 Multiples vulnérabilités dans MISP 2025-12-08T00:00:00.000000 2025-12-24T00:00:00.000000
certfr-2025-avi-1126 Multiples vulnérabilités dans PHP 2025-12-19T00:00:00.000000 2025-12-22T00:00:00.000000
certfr-2025-avi-1136 Multiples vulnérabilités dans le noyau Linux de Debian LTS 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1135 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1134 Multiples vulnérabilités dans MongoDB Server 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1133 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1132 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1131 Multiples vulnérabilités dans les produits IBM 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1130 Multiples vulnérabilités dans les produits Foxit 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
certfr-2025-avi-1129 Multiples vulnérabilités dans les produits VMware 2025-12-19T00:00:00.000000 2025-12-19T00:00:00.000000
ID Description Published Updated
jvndb-2022-000045 FreeBSD vulnerable to denial-of-service (DoS) 2022-06-15T12:28+09:00 2024-06-13T16:31+09:00
jvndb-2022-000066 Multiple vulnerabilities in CentreCOM AR260S V2 2022-08-29T17:37+09:00 2024-06-13T16:21+09:00
jvndb-2023-000044 JINS MEME CORE uses a hard-coded cryptographic key 2023-05-08T15:13+09:00 2024-06-13T16:19+09:00
jvndb-2023-000042 WordPress Plugin "Newsletter" vulnerable to cross-site scripting 2023-05-09T14:42+09:00 2024-06-13T16:14+09:00
jvndb-2022-000068 SYNCK GRAPHICA Mailform Pro CGI vulnerable to information disclosure 2022-09-05T15:22+09:00 2024-06-13T16:00+09:00
jvndb-2022-002448 Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security agents for Windows 2022-10-11T17:02+09:00 2024-06-13T14:30+09:00
jvndb-2022-002544 Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service 2022-10-20T16:18+09:00 2024-06-13T13:58+09:00
jvndb-2022-000067 Installer of Ricoh Device Software Manager may insecurely load Dynamic Link Libraries 2022-08-29T15:57+09:00 2024-06-13T13:53+09:00
jvndb-2022-000070 Movable Type plugin A-Form vulnerable to cross-site scripting 2022-09-09T15:01+09:00 2024-06-13T13:49+09:00
jvndb-2022-000069 PowerCMS XMLRPC API vulnerable to command injection 2022-09-02T15:49+09:00 2024-06-13T11:44+09:00
jvndb-2022-002367 OpenAM (OpenAM Consortium Edition) vulnerable to open redirect 2022-09-16T15:30+09:00 2024-06-13T11:39+09:00
jvndb-2022-000071 Multiple vulnerabilities in Trend Micro Apex One and Trend Micro Apex One as a Service 2022-09-14T18:15+09:00 2024-06-13T11:34+09:00
jvndb-2022-000073 Multiple vulnerabilities in EC-CUBE 2022-09-15T16:30+09:00 2024-06-13T11:09+09:00
jvndb-2022-000072 EC-CUBE plugin "Product Image Bulk Upload Plugin" vulnerable to insufficient verification in uploading files 2022-09-15T16:13+09:00 2024-06-13T11:03+09:00
jvndb-2023-000015 Multiple vulnerabilities in PLANEX COMMUNICATIONS Network Camera CS-WMV02G 2023-02-13T14:48+09:00 2024-06-12T17:03+09:00
jvndb-2022-002537 Stack-based buffer overflow vulnerability in Yokogawa Test & Measurement WTViewerE 2022-10-19T16:23+09:00 2024-06-12T16:54+09:00
jvndb-2022-000081 Lemon8 App fails to restrict access permissions 2022-10-19T14:08+09:00 2024-06-12T16:39+09:00
jvndb-2024-000062 Denial-of-service (DoS) vulnerability in IPCOM WAF function 2024-06-12T15:03+09:00 2024-06-12T15:03+09:00
jvndb-2022-000075 IPFire WebUI vulnerable to cross-site scripting 2022-10-06T13:05+09:00 2024-06-12T14:28+09:00
jvndb-2023-000013 Ichiran App vulnerable to improper server certificate verification 2023-02-06T14:31+09:00 2024-06-12T14:25+09:00
jvndb-2022-000074 BookStack vulnerable to cross-site scripting 2022-09-30T14:48+09:00 2024-06-12T14:07+09:00
jvndb-2022-000077 The installer of Sony Content Transfer may insecurely load Dynamic Link Libraries 2022-10-11T15:08+09:00 2024-06-12T12:12+09:00
jvndb-2022-000076 Growi vulnerable to improper access control 2022-10-07T14:30+09:00 2024-06-12T12:04+09:00
jvndb-2023-000017 Improper restriction of XML external entity reference (XXE) vulnerability in tsClinical Define.xml Generator and tsClinical Metadata Desktop Tools 2023-02-14T17:00+09:00 2024-06-12T11:15+09:00
jvndb-2023-000012 Vulnerability in Driver Distributor where passwords are stored in a recoverable format 2023-01-31T14:14+09:00 2024-06-12T11:07+09:00
jvndb-2023-000011 SUSHIRO App for Android outputs sensitive information to the log file 2023-01-31T14:10+09:00 2024-06-11T17:35+09:00
jvndb-2023-001269 File and Directory Permissions Vulnerability in Hitachi Automation Director, Hitachi Infrastructure Analytics Advisor, Hitachi Ops Center 2023-03-01T16:59+09:00 2024-06-11T16:42+09:00
jvndb-2023-000014 NEC PC Settings Tool vulnerable to missing authentication for critical function 2023-02-10T14:43+09:00 2024-06-10T18:13+09:00
jvndb-2023-000019 Multiple cross-site scripting vulnerabilities in EC-CUBE 2023-02-28T16:38+09:00 2024-06-10T17:28+09:00
jvndb-2023-001212 Multiple vulnerabilities in JTEKT ELECTRONICS Screen Creator Advance 2 2023-02-08T12:46+09:00 2024-06-10T17:25+09:00
ID Description Published Updated
cnvd-2026-14685 TRENDnet TEW-822DRE权限提升漏洞 2025-08-15 2026-03-24
cnvd-2026-14684 TRENDnet TEW-657BRM命令注入漏洞 2025-11-28 2026-03-24
cnvd-2026-14683 TRENDnet TEW-822DRE命令注入漏洞 2026-01-12 2026-03-24
cnvd-2026-14682 TRENDnet TEW-800MB命令注入漏洞 2026-01-12 2026-03-24
cnvd-2026-14681 TRENDnet TEW-713RE操作系统命令注入漏洞 2026-01-14 2026-03-24
cnvd-2026-14680 TRENDnet TEW-632BRP缓冲区溢出漏洞 2026-03-19 2026-03-24
cnvd-2026-14679 IBM Db2拒绝服务漏洞(CNVD-2026-14679) 2026-02-11 2026-03-24
cnvd-2026-14678 IBM Db2拒绝服务漏洞(CNVD-2026-14678) 2026-02-11 2026-03-24
cnvd-2026-14677 IBM Db2存在未明漏洞(CNVD-2026-14677) 2026-02-11 2026-03-24
cnvd-2026-14676 IBM Db2拒绝服务漏洞(CNVD-2026-14676) 2026-02-11 2026-03-24
cnvd-2026-14675 IBM Db2拒绝服务漏洞(CNVD-2026-14675) 2026-02-11 2026-03-24
cnvd-2026-14674 IBM Db2拒绝服务漏洞(CNVD-2026-14674) 2026-02-11 2026-03-24
cnvd-2026-14673 IBM Db2拒绝服务漏洞(CNVD-2026-14673) 2026-02-11 2026-03-24
cnvd-2026-14672 IBM Db2拒绝服务漏洞(CNVD-2026-14672) 2026-02-11 2026-03-24
cnvd-2026-14671 IBM Db2拒绝服务漏洞(CNVD-2026-14671) 2026-02-11 2026-03-24
cnvd-2026-14670 IBM Db2拒绝服务漏洞(CNVD-2026-14670) 2026-02-11 2026-03-24
cnvd-2026-14669 IBM Db2拒绝服务漏洞(CNVD-2026-14669) 2026-02-11 2026-03-24
cnvd-2026-14668 IBM Db2拒绝服务漏洞(CNVD-2026-14668) 2026-02-11 2026-03-24
cnvd-2026-14667 IBM Db2拒绝服务漏洞(CNVD-2026-14667) 2026-02-11 2026-03-24
cnvd-2026-14666 IBM Db2拒绝服务漏洞(CNVD-2026-14666) 2026-02-11 2026-03-24
cnvd-2026-14665 IBM Db2 Big SQL on Cloud Pak for Data资源管理错误漏洞 2026-02-11 2026-03-24
cnvd-2026-14664 Rockwell Automation PanelView Plus 7 Performance Series B身份验证绕过漏洞 2025-10-17 2026-03-24
cnvd-2026-14663 Rockwell Automation FactoryTalk ViewPoint拒绝服务漏洞 2025-10-17 2026-03-24
cnvd-2026-14662 Rockwell Automation Compact GuardLogix 5370拒绝服务漏洞 2025-10-17 2026-03-24
cnvd-2026-14661 Rockwell Automation Verve Asset Manager存在未明漏洞 2025-11-14 2026-03-24
cnvd-2026-14660 Rockwell Automation Studio 5000 Simulation Interface服务端请求伪造漏洞 2025-11-14 2026-03-24
cnvd-2026-14659 Rockwell Automation Studio 5000 Simulation Interface代码执行漏洞 2025-11-14 2026-03-24
cnvd-2026-14658 Rockwell Automation FactoryTalk DataMosaix Private Cloud跨站脚本漏洞 2025-11-14 2026-03-24
cnvd-2026-14657 Rockwell Automation DataMosaix Private Cloud存在未明漏洞 2025-11-14 2026-03-24
cnvd-2026-14656 Rockwell Automation Arena堆栈缓冲区溢出漏洞 2025-11-18 2026-03-24
ID Description Published Updated
bdu:2025-12050 Уязвимость компонента drivers/media/i2c/et8ek8/et8ek8 ядра операционной системы Linux, по… 28.09.2025 16.02.2026
bdu:2025-12043 Уязвимость компонента hsm ядра операционной системы Linux, позволяющая нарушителю вызвать… 28.09.2025 16.02.2026
bdu:2025-12040 Уязвимость функции spufs_create_context() ядра операционной системы Linux, позволяющая на… 28.09.2025 16.02.2026
bdu:2025-12039 Уязвимость компонента spufs ядра операционной системы Linux, позволяющая нарушителю вызва… 28.09.2025 16.02.2026
bdu:2025-12038 Уязвимость функции spufs_rmdir() ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12036 Уязвимость компонента link.c ядра операционной системы Linux, позволяющая нарушителю вызв… 28.09.2025 16.02.2026
bdu:2025-12034 Уязвимость компонента cxgb4_ethtool.c ядра операционной системы Linux, позволяющая наруши… 28.09.2025 16.02.2026
bdu:2025-12033 Уязвимость компонентов microchip ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12032 Уязвимость компонента v3d_sched.c ядра операционной системы Linux, позволяющая нарушителю… 28.09.2025 16.02.2026
bdu:2025-12030 Уязвимость компонента oplock.c ядра операционной системы Linux, позволяющая нарушителю вы… 28.09.2025 16.02.2026
bdu:2025-12029 Уязвимость функции wl1251_tx_work компонента wl1251/tx.c модуля wifi ядра операционной си… 28.09.2025 16.02.2026
bdu:2025-12028 Уязвимость компонента phy_led_triggers.c ядра операционной системы Linux, позволяющая нар… 28.09.2025 16.02.2026
bdu:2025-12023 Уязвимость компонента hugetlbpage.c ядра операционной системы Linux, позволяющая нарушите… 28.09.2025 16.02.2026
bdu:2025-12020 Уязвимость компонента arch/x86/mm/tlb.c ядра операционной системы Linux, позволяющая нару… 28.09.2025 16.02.2026
bdu:2025-12014 Уязвимость компонента drivers/dma/ti/k3-udma.c ядра операционной системы Linux, позволяющ… 28.09.2025 16.02.2026
bdu:2025-12012 Уязвимость компонента drm/amd/pm ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12011 Уязвимость компонента drm/amd/pm ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12010 Уязвимость компонента drm/amd/pm ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12009 Уязвимость компонента drm/amd/pm ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12008 Уязвимость компонента drm/amd/pm ядра операционной системы Linux, позволяющая нарушителю … 28.09.2025 16.02.2026
bdu:2025-12004 Уязвимость компонента jfs ядра операционной системы Linux, позволяющая нарушителю вызвать… 28.09.2025 16.02.2026
bdu:2025-12003 Уязвимость компонента drm/amd/pm/smu11 ядра операционной системы Linux, позволяющая наруш… 28.09.2025 16.02.2026
bdu:2025-12002 Уязвимость компонента pwm-mediatek.c ядра операционной системы Linux, позволяющая нарушит… 28.09.2025 16.02.2026
bdu:2025-12001 Уязвимость компонента dib8000.c ядра операционной системы Linux, позволяющая нарушителю в… 28.09.2025 16.02.2026
bdu:2025-12000 Уязвимость функции nd_label_data_init() компонента drivers/nvdimm/label.c ядра операционн… 28.09.2025 16.02.2026
bdu:2025-11999 Уязвимость компонента net/sched/sch_qfq.c ядра операционной системы Linux, позволяющая на… 28.09.2025 16.02.2026
bdu:2025-11998 Уязвимость компонента sch_drr.c ядра операционной системы Linux, позволяющая нарушителю о… 28.09.2025 16.02.2026
bdu:2025-11997 Уязвимость ядра операционной системы Linux, связанная с ошибками синхронизации при исполь… 28.09.2025 16.02.2026
bdu:2025-11996 Уязвимость компонентов ipv4 ядра операционной системы Linux, позволяющая нарушителю вызва… 28.09.2025 16.02.2026
bdu:2025-11991 Уязвимость компонента streamzap.c ядра операционной системы Linux, позволяющая нарушителю… 28.09.2025 16.02.2026
ID Description Updated
var-201008-0306 Multiple stack-based buffer overflows in the cff_decoder_parse_charstrings function in th… 2026-04-10T22:16:44.809000Z
var-201501-0435 OpenSSL before 0.9.8zd, 1.0.0 before 1.0.0p, and 1.0.1 before 1.0.1k allows remote attack… 2026-04-10T22:16:42.088000Z
var-200609-0665 The Online Certificate Status Protocol (OCSP) service in the Security Framework in Apple … 2026-04-10T22:16:42.018000Z
var-202110-1706 The Bzip2 decompression decoder function doesn't allow setting size restrictions on the d… 2026-04-10T22:16:41.258000Z
var-202207-1358 When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out o… 2026-04-10T22:16:32.373000Z
var-202103-1243 In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.1… 2026-04-10T22:16:32.259000Z
var-201109-0201 Use-after-free vulnerability in the document loader in Google Chrome before 14.0.835.163 … 2026-04-10T22:16:31.471000Z
var-201512-0482 The Montgomery squaring implementation in crypto/bn/asm/x86_64-mont5.pl in OpenSSL 1.0.2 … 2026-04-10T22:16:28.476000Z
var-202202-0050 xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, … 2026-04-10T22:16:27.762000Z
var-201711-0450 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… 2026-04-10T22:16:23.983000Z
var-201404-0374 Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u51, and 8; JRockit R27.8.1 an… 2026-04-10T22:16:23.273000Z
var-201208-0344 libxml2 2.9.0-rc1 and earlier, as used in Google Chrome before 21.0.1180.89, does not pro… 2026-04-10T22:16:21.543000Z
var-201804-1188 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2026-04-10T22:16:21.075000Z
var-200510-0403 Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute … 2026-04-10T22:16:12.939000Z
var-202203-0664 BIND 9.11.0 -> 9.11.36 9.12.0 -> 9.16.26 9.17.0 -> 9.18.0 BIND Supported Preview Editions… 2026-04-10T22:16:12.611000Z
var-200811-0015 Apple Safari before 3.2 does not properly prevent caching of form data for form fields th… 2026-04-10T22:16:11.917000Z
var-201203-0181 Google Chrome before 18.0.1025.142 does not properly handle text fragments, which allows … 2026-04-10T22:16:11.216000Z
var-201907-1547 undertow before version 2.0.23.Final is vulnerable to an information leak issue. Web apps… 2026-04-10T22:16:11.136000Z
var-202003-1778 FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… 2026-04-10T22:15:20.092000Z
var-202108-2123 A memory corruption vulnerability was addressed with improved locking. This issue is fixe… 2026-04-10T22:15:13.657000Z
var-202210-0997 An issue was discovered in libxml2 before 2.10.3. When parsing a multi-gigabyte XML docum… 2026-04-10T22:15:13.442000Z
var-201912-0544 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2026-04-10T22:15:13.019000Z
var-201403-0514 The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certa… 2026-04-10T22:14:41.096000Z
var-201912-0608 A memory corruption issue was addressed with improved input validation. This issue is fix… 2026-04-10T22:14:39.868000Z
var-200102-0029 Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial… 2026-04-10T22:14:00.798000Z
var-201204-0092 Google Chrome before 18.0.1025.151 allows remote attackers to bypass the Same Origin Poli… 2026-04-10T22:14:00.698000Z
var-202308-2021 .NET and Visual Studio Denial of Service Vulnerability. 9) - aarch64, ppc64le, s390x, x86… 2026-04-10T22:14:00.124000Z
var-201906-1175 Jonathan Looney discovered that the TCP_SKB_CB(skb)->tcp_gso_segs value was subject to an… 2026-04-10T22:14:00.052000Z
var-201605-0079 The asn1_d2i_read_bio function in crypto/asn1/a_d2i_fp.c in the ASN.1 BIO implementation … 2026-04-10T22:13:55.824000Z
var-201012-0287 Double free vulnerability in libxml2 2.7.8 and other versions, as used in Google Chrome b… 2026-04-10T22:12:53.076000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated