Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-62880 |
4.3 (3.1)
|
WordPress Custom 404 Pro plugin <= 3.12.0 - Cross Site… |
Kunal Nagar |
Custom 404 Pro |
2025-12-22T09:31:35.354Z | 2026-01-20T14:28:16.367Z |
| CVE-2025-62887 |
5.4 (3.1)
|
WordPress King Addons for Elementor plugin <= 51.1.37 … |
KingAddons.com |
King Addons for Elementor |
2025-10-27T01:33:45.420Z | 2026-01-20T14:28:16.351Z |
| CVE-2025-62873 |
4.3 (3.1)
|
WordPress WP Flashy Marketing Automation plugin <= 2.0… |
Flashyapp |
WP Flashy Marketing Automation |
2025-12-09T14:52:25.051Z | 2026-01-20T14:28:16.351Z |
| CVE-2025-62885 |
6.5 (3.1)
|
WordPress WP VR plugin <= 8.5.42 - Cross Site Scriptin… |
RexTheme |
WP VR |
2025-10-27T01:33:44.357Z | 2026-01-20T14:28:16.346Z |
| CVE-2025-62871 |
4.3 (3.1)
|
WordPress Just TinyMCE Custom Styles plugin <= 1.2.1 -… |
Alex Prokopenko / JustCoded |
Just TinyMCE Custom Styles |
2025-12-09T14:52:24.656Z | 2026-01-20T14:28:16.345Z |
| CVE-2025-62888 |
5.4 (3.1)
|
WordPress WP Attachments plugin <= 5.2 - Broken Access… |
Marco Milesi |
WP Attachments |
2025-12-31T14:17:55.113Z | 2026-01-20T14:28:16.341Z |
| CVE-2025-62869 |
4.3 (3.1)
|
WordPress Gravitec.net – Web Push Notifications plugin… |
Gravitec.net - Web Push Notifications |
Gravitec.net – Web Push Notifications |
2025-12-09T14:52:24.237Z | 2026-01-20T14:28:16.320Z |
| CVE-2025-62882 |
4.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-10-27T01:33:43.191Z | 2026-01-20T14:28:16.318Z |
| CVE-2025-62884 |
5.3 (3.1)
|
WordPress Coupon Affiliates plugin <= 7.0.3 - Broken A… |
Elliot Sowersby / RelyWP |
Coupon Affiliates |
2025-10-27T01:33:43.969Z | 2026-01-20T14:28:16.310Z |
| CVE-2025-62748 |
6.5 (3.1)
|
WordPress Web and WooCommerce Addons for WPBakery Buil… |
Genetech Products |
Web and WooCommerce Addons for WPBakery Builder |
2025-12-31T12:02:49.488Z | 2026-01-20T14:28:16.305Z |
| CVE-2025-62874 |
4.3 (3.1)
|
WordPress AnyComment plugin <= 0.3.6 - Broken Access C… |
Alexander |
AnyComment |
2025-12-31T16:42:24.180Z | 2026-01-20T14:28:16.295Z |
| CVE-2025-62867 |
4.3 (3.1)
|
WordPress Ergonet Cache plugin <= 1.0.11 - Broken Acce… |
ergonet |
Ergonet Cache |
2025-12-09T14:52:24.049Z | 2026-01-20T14:28:16.163Z |
| CVE-2025-62866 |
4.3 (3.1)
|
WordPress Auto Alt Text plugin <= 2.5.2 - Cross Site R… |
Valerio Monti |
Auto Alt Text |
2025-12-09T14:52:23.816Z | 2026-01-20T14:28:16.114Z |
| CVE-2025-62865 |
5.3 (3.1)
|
WordPress Post Cloner plugin <= 1.0.0 - Broken Access … |
Evan Herman |
Post Cloner |
2025-12-09T14:52:23.580Z | 2026-01-20T14:28:16.107Z |
| CVE-2025-62868 |
8.1 (3.1)
|
WordPress Edge CPT plugin <= 1.4 - Local File Inclusio… |
Edge-Themes |
Edge CPT |
2025-10-24T07:52:58.711Z | 2026-01-20T14:28:16.105Z |
| CVE-2025-62755 |
5.3 (3.1)
|
WordPress GS Portfolio for Envato plugin <= 1.4.2 - Br… |
GS Plugins |
GS Portfolio for Envato |
2025-12-31T15:22:00.836Z | 2026-01-20T14:28:16.089Z |
| CVE-2025-62758 |
6.5 (3.1)
|
WordPress Funnelforms Free plugin <= 3.8 - Cross Site … |
Funnelforms |
Funnelforms Free |
2025-12-31T08:55:12.187Z | 2026-01-20T14:28:16.036Z |
| CVE-2025-62762 |
4.3 (3.1)
|
WordPress SMTP Mail plugin <= 1.3.47 - Cross Site Requ… |
photoboxone |
SMTP Mail |
2025-12-09T14:52:23.375Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62759 |
6.5 (3.1)
|
WordPress Series plugin <= 2.0.1 - Cross Site Scriptin… |
Justin Tadlock |
Series |
2025-12-31T08:53:31.863Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62757 |
6.5 (3.1)
|
WordPress WebMan Amplifier plugin <= 1.5.12 - Cross Si… |
WebMan Design | Oliver Juhas |
WebMan Amplifier |
2025-12-31T11:53:12.910Z | 2026-01-20T14:28:16.035Z |
| CVE-2025-62761 |
6.5 (3.1)
|
WordPress Knowledge Base documentation & wiki plugin –… |
BasePress |
Knowledge Base documentation & wiki plugin – BasePress |
2025-12-31T08:44:22.540Z | 2026-01-20T14:28:16.034Z |
| CVE-2025-62738 |
5.3 (3.1)
|
WordPress Formstack Online Forms plugin <= 2.0.2 - Bro… |
mmattax |
Formstack Online Forms |
2025-12-09T14:52:22.583Z | 2026-01-20T14:28:16.034Z |
| CVE-2025-62760 |
6.5 (3.1)
|
WordPress BuddyPress Activity Shortcode plugin <= 1.1.… |
BuddyDev |
BuddyPress Activity Shortcode |
2025-12-31T08:52:04.460Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62756 |
6.5 (3.1)
|
WordPress The Moneytizer plugin <= 10.0.6 - Cross Site… |
lvaudore |
The Moneytizer |
2025-12-31T11:54:40.487Z | 2026-01-20T14:28:16.033Z |
| CVE-2025-62753 |
7.5 (3.1)
|
WordPress MAS Videos plugin <= 1.3.2 - Local File Incl… |
MadrasThemes |
MAS Videos |
2025-12-30T22:37:03.420Z | 2026-01-20T14:28:15.848Z |
| CVE-2025-62750 |
5.9 (3.1)
|
WordPress WooCommerce Parcelas plugin <= 1.3.5 - Cross… |
Filipe Seabra |
WooCommerce Parcelas |
2025-12-31T13:32:33.519Z | 2026-01-20T14:28:15.793Z |
| CVE-2025-62143 |
4.3 (3.1)
|
WordPress Post Video Players plugin <= 1.163 - Sensiti… |
nicashmu |
Post Video Players |
2025-12-31T15:49:17.340Z | 2026-01-20T14:28:15.769Z |
| CVE-2025-62752 |
6.5 (3.1)
|
WordPress Calendar.online / Kalender.digital plugin <=… |
kalender.digital |
Calendar.online / Kalender.digital |
2025-12-31T11:57:50.214Z | 2026-01-20T14:28:15.737Z |
| CVE-2025-62742 |
6.5 (3.1)
|
WordPress Curator.io plugin <= 1.9.5 - Cross Site Scri… |
Curator.io |
Curator.io |
2025-12-31T13:03:08.340Z | 2026-01-20T14:28:15.700Z |
| CVE-2025-62733 |
4.3 (3.1)
|
WordPress Custom Sidebars by ProteusThemes plugin <= 1… |
ProteusThemes |
Custom Sidebars by ProteusThemes |
2025-12-09T14:52:21.585Z | 2026-01-20T14:28:15.669Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-13772 |
7.1 (3.1)
|
Missing Authorization in GitLab |
GitLab |
GitLab |
2026-01-09T10:04:06.293Z | 2026-01-09T19:13:28.846Z |
| CVE-2026-0597 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
Campcodes Supplier Management System edit_profile.php … |
Campcodes |
Supplier Management System |
2026-01-05T14:32:06.278Z | 2026-01-05T20:05:46.411Z |
| CVE-2026-0582 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
itsourcecode Society Management System edit_activity_q… |
itsourcecode |
Society Management System |
2026-01-05T08:32:06.107Z | 2026-01-05T21:14:21.827Z |
| CVE-2025-9222 |
8.7 (3.1)
|
Improper Neutralization of Input During Web Page Gener… |
GitLab |
GitLab |
2026-01-09T10:04:36.272Z | 2026-01-10T04:55:47.964Z |
| CVE-2026-0580 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
SourceCodester API Key Manager App Import Key cross si… |
SourceCodester |
API Key Manager App |
2026-01-05T07:32:06.021Z | 2026-01-05T21:09:22.283Z |
| CVE-2026-22641 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:13:11.236Z | 2026-01-22T17:05:50.901Z |
| CVE-2026-22640 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:12:49.195Z | 2026-01-22T17:05:31.568Z |
| CVE-2026-22639 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:12:03.300Z | 2026-01-22T17:05:11.775Z |
| CVE-2026-22638 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:11:21.551Z | 2026-01-22T17:04:22.814Z |
| CVE-2026-22637 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:10:58.746Z | 2026-01-22T17:03:46.788Z |
| CVE-2026-0713 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:10:37.421Z | 2026-01-22T17:03:07.512Z |
| CVE-2026-0712 |
N/A
|
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | N/A | N/A | 2026-01-15T13:10:14.250Z | 2026-01-22T17:02:26.020Z |
| CVE-2026-0588 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
Xinhu Rainrock RockOA API rockfun.php cross site scripting |
Xinhu |
Rainrock RockOA |
2026-01-05T11:32:05.393Z | 2026-01-05T21:12:37.586Z |
| CVE-2025-68158 |
5.7 (3.1)
|
Authlib: 1-click Account Takeover |
authlib |
authlib |
2026-01-08T17:58:17.724Z | 2026-01-08T18:20:43.016Z |
| CVE-2026-0587 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
Xinhu Rainrock RockOA Cover Image rock_page_gong.php c… |
Xinhu |
Rainrock RockOA |
2026-01-05T11:02:05.936Z | 2026-01-05T21:30:20.446Z |
| CVE-2024-8160 |
3.8 (3.1)
|
Erik de Jong, member of the AXIS OS Bug Bounty Pr… |
Axis Communications AB |
AXIS OS |
2024-11-26T07:27:32.229Z | 2025-03-28T07:18:14.700Z |
| CVE-2024-47259 |
3.5 (3.1)
|
Girishunawane, member of the AXIS OS Bug Bounty P… |
Axis Communications AB |
AXIS OS |
2025-03-04T05:15:16.499Z | 2025-03-28T07:15:06.622Z |
| CVE-2025-66647 |
1.7 (4.0)
|
RIOT OS has buffer overflow in gnrc_ipv6_ext_frag_reass |
RIOT-OS |
RIOT |
2025-12-17T20:21:13.264Z | 2025-12-17T20:39:34.238Z |
| CVE-2024-37143 |
10 (3.1)
|
Dell PowerFlex appliance versions prior to IC 46.… |
Dell |
Dell PowerFlex appliance |
2024-12-10T02:25:33.225Z | 2024-12-11T17:16:29.723Z |
| CVE-2025-66646 |
1.7 (4.0)
|
RIOT-OS has NULL pointer dereference in gnrc_ipv6_ext_… |
RIOT-OS |
RIOT |
2025-12-17T19:18:08.696Z | 2025-12-17T20:30:49.970Z |
| CVE-2024-37144 |
8.2 (3.1)
|
Dell PowerFlex appliance versions prior to IC 46.… |
Dell |
Dell PowerFlex appliance |
2024-12-10T02:11:13.298Z | 2024-12-10T21:27:23.301Z |
| CVE-2025-13888 |
9.1 (3.1)
|
Openshift-gitops-operator: openshift gitops: namespace… |
redhat-developer |
gitops-operator |
2025-12-15T15:36:49.274Z | 2026-01-22T15:50:50.274Z |
| CVE-2026-0733 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
PHPGurukul Online Course Registration System manage-st… |
PHPGurukul |
Online Course Registration System |
2026-01-08T23:32:13.020Z | 2026-01-09T16:22:02.232Z |
| CVE-2025-52471 |
7.2 (4.0)
|
ESP-NOW Integer Underflow Vulnerability Advisory |
espressif |
esp-idf |
2025-06-24T19:53:06.066Z | 2025-06-24T20:02:18.529Z |
| CVE-2025-67082 |
6.5 (3.1)
|
An SQL injection vulnerability in InvoicePlane th… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T15:52:21.994Z |
| CVE-2025-55297 |
5.2 (4.0)
|
ESF-IDF BluFi Example Memory Overflow Vulnerability |
espressif |
esp-idf |
2025-08-21T15:05:06.805Z | 2025-08-22T11:32:48.470Z |
| CVE-2025-67083 |
5.3 (3.1)
|
Directory traversal vulnerability in InvoicePlane… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-15T16:08:02.045Z |
| CVE-2025-67084 |
9.9 (3.1)
|
File upload vulnerability in InvoicePlane through… |
n/a |
n/a |
2026-01-15T00:00:00.000Z | 2026-01-22T02:57:13.549Z |
| CVE-2026-0730 |
4.8 (4.0)
2.4 (3.1)
2.4 (3.0)
|
PHPGurukul Staff Leave Management System SVG File admi… |
PHPGurukul |
Staff Leave Management System |
2026-01-08T22:02:09.530Z | 2026-01-09T18:14:46.466Z |
| CVE-2025-68473 |
0 (4.0)
|
ESF-IDF Has Out-of-Bounds Read in ESP32 Bluetooth SDP … |
espressif |
esp-idf |
2025-12-26T23:54:47.709Z | 2025-12-29T16:51:42.074Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-66647 | RIOT is an open-source microcontroller operating system, designed to match the requirements of Inte… | 2025-12-17T21:16:15.483 | 2026-01-22T16:30:35.963 |
| fkie_cve-2024-37143 | Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versi… | 2024-12-10T03:15:05.573 | 2026-01-22T16:24:36.057 |
| fkie_cve-2025-66646 | RIOT is an open-source microcontroller operating system, designed to match the requirements of Inte… | 2025-12-17T20:15:56.170 | 2026-01-22T16:22:00.240 |
| fkie_cve-2024-37144 | Dell PowerFlex appliance versions prior to IC 46.381.00 and IC 46.376.00, Dell PowerFlex rack versi… | 2024-12-10T03:15:05.730 | 2026-01-22T16:16:45.403 |
| fkie_cve-2025-13888 | A flaw was found in OpenShift GitOps. Namespace admins can create ArgoCD Custom Resources (CRs) tha… | 2025-12-15T16:15:50.333 | 2026-01-22T16:16:06.350 |
| fkie_cve-2026-0733 | A vulnerability was determined in PHPGurukul Online Course Registration System up to 3.1. This impa… | 2026-01-09T00:15:45.497 | 2026-01-22T16:09:34.590 |
| fkie_cve-2025-52471 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. An integer underflow vulne… | 2025-06-24T20:15:26.033 | 2026-01-22T16:05:44.083 |
| fkie_cve-2025-67082 | An SQL injection vulnerability in InvoicePlane through 1.6.3 has been identified in "maxQuantity" a… | 2026-01-15T15:15:51.213 | 2026-01-22T16:04:15.340 |
| fkie_cve-2025-55297 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. The BluFi example bundled … | 2025-08-21T15:15:33.717 | 2026-01-22T16:04:06.620 |
| fkie_cve-2025-67083 | Directory traversal vulnerability in InvoicePlane through 1.6.3 allows unauthenticated attackers to… | 2026-01-15T15:15:51.313 | 2026-01-22T16:03:54.193 |
| fkie_cve-2025-67084 | File upload vulnerability in InvoicePlane through 1.6.3 allows authenticated attackers to upload ar… | 2026-01-15T15:15:51.427 | 2026-01-22T16:03:34.310 |
| fkie_cve-2026-0730 | A flaw has been found in PHPGurukul Staff Leave Management System 1.0. The affected element is the … | 2026-01-08T22:16:02.753 | 2026-01-22T16:02:20.320 |
| fkie_cve-2025-68473 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.1, 5.4.3, … | 2025-12-27T00:15:42.323 | 2026-01-22T16:01:58.780 |
| fkie_cve-2025-70890 | A stored cross-site scripting (XSS) vulnerability exists in Cyber Cafe Management System v1.0. An a… | 2026-01-15T21:16:04.733 | 2026-01-22T16:01:53.427 |
| fkie_cve-2025-70891 | A stored cross-site scripting (XSS) vulnerability exists in Phpgurukul Cyber Cafe Management System… | 2026-01-15T21:16:04.903 | 2026-01-22T16:01:16.537 |
| fkie_cve-2025-70892 | Phpgurukul Cyber Cafe Management System v1.0 contains a SQL Injection vulnerability in the user man… | 2026-01-15T21:16:05.010 | 2026-01-22T16:00:53.547 |
| fkie_cve-2025-68474 | ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.1, 5.4.3, … | 2025-12-27T00:15:42.490 | 2026-01-22T16:00:51.717 |
| fkie_cve-2025-70893 | A time-based blind SQL Injection vulnerability exists in PHPGurukul Cyber Cafe Management System v1… | 2026-01-15T21:16:05.117 | 2026-01-22T16:00:26.627 |
| fkie_cve-2026-0803 | A vulnerability was found in PHPGurukul Online Course Registration System up to 3.1. This affects a… | 2026-01-09T16:16:07.840 | 2026-01-22T16:00:08.943 |
| fkie_cve-2025-66802 | Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). Th… | 2026-01-12T20:15:53.060 | 2026-01-22T15:56:20.700 |
| fkie_cve-2026-0729 | A vulnerability was detected in code-projects Intern Membership Management System 1.0. Impacted is … | 2026-01-08T22:16:02.560 | 2026-01-22T15:52:37.870 |
| fkie_cve-2025-68622 | Espressif ESP-IDF USB Host UVC Class Driver allows video streaming from USB cameras. Prior to 2.4.0… | 2026-01-12T17:15:53.050 | 2026-01-22T15:50:31.880 |
| fkie_cve-2025-68656 | Espressif ESP-IDF USB Host HID (Human Interface Device) Driver allows access to HID devices. Prior … | 2026-01-12T18:15:48.467 | 2026-01-22T15:47:56.317 |
| fkie_cve-2025-68657 | Espressif ESP-IDF USB Host HID (Human Interface Device) Driver allows access to HID devices. Prior … | 2026-01-12T18:15:48.610 | 2026-01-22T15:47:26.980 |
| fkie_cve-2026-22249 | Docmost is an open-source collaborative wiki and documentation software. From 0.21.0 to before 0.24… | 2026-01-15T19:16:05.527 | 2026-01-22T15:44:51.040 |
| fkie_cve-2026-0728 | A security vulnerability has been detected in code-projects Intern Membership Management System 1.0… | 2026-01-08T21:15:44.053 | 2026-01-22T15:43:11.683 |
| fkie_cve-2025-15493 | A flaw has been found in RainyGao DocSys up to 2.02.36. The impacted element is an unknown function… | 2026-01-09T17:15:51.987 | 2026-01-22T15:42:18.810 |
| fkie_cve-2025-65368 | SparkyFitness v0.15.8.2 is vulnerable to Cross Site Scripting (XSS) via user input and LLM output. | 2026-01-15T21:16:04.290 | 2026-01-22T15:42:00.053 |
| fkie_cve-2025-15492 | A vulnerability was detected in RainyGao DocSys up to 2.02.36. The affected element is an unknown f… | 2026-01-09T16:16:06.213 | 2026-01-22T15:41:28.443 |
| fkie_cve-2026-22779 | BlackSheep is an asynchronous web framework to build event based web applications with Python. Prio… | 2026-01-14T17:16:09.150 | 2026-01-22T15:39:31.557 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-f69r-636x-cgmm |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:26Z |
| ghsa-cff6-gmwc-m8p9 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:26Z |
| ghsa-9r7c-53c4-pxqp |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:26Z |
| ghsa-92vr-85r4-9j46 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-66xg-mp3j-p8c5 |
6.1 (3.1)
|
Missing Authorization vulnerability in FantasticPlugins SUMO Memberships for WooCommerce sumomember… | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-4x6x-62c7-fpjc |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-4jmq-66c3-gmj4 |
7.4 (3.1)
|
Improper Control of Generation of Code ('Code Injection') vulnerability in Sayan Datta WP Last Modi… | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-46r7-wr69-w7rf |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-39cw-g9qr-3jph |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-35mh-hxcm-w9xp |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:16Z | 2026-01-20T15:31:26Z |
| ghsa-26wv-jmh7-mwh7 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:26Z |
| ghsa-w7v3-v5r4-jcc8 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-rgf5-wqhv-47jj |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-qh85-vj5c-98x5 |
9.1 (3.1)
|
Missing Authorization vulnerability in Wikimedia Foundation Wikipedia Preview wikipedia-preview all… | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-prfw-pc69-2jpq |
5.4 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-p7m2-8f2q-g63m |
9.0 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-mwmh-g4px-54p6 |
8.1 (3.1)
|
Missing Authorization vulnerability in Breeze Team Breeze Checkout breeze-checkout allows Exploitin… | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-m64c-45jp-w3wr |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-hf9g-c77j-fmgp |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-h3j6-fj73-whvg |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in Tijmen Smit WP Store Locator wp-store-locator al… | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-g7vf-w6x6-rx35 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-g59v-7qwj-gwx2 |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-99jh-g9x5-48p5 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-98j2-54cf-wrqp |
7.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-7mvx-239j-ppv4 |
9.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-6pv4-2w6v-cvfc |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-4p89-hw8h-5g25 |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-3vp5-f8x5-xvc5 |
8.8 (3.1)
|
Deserialization of Untrusted Data vulnerability in Hernan Villanueva Boldermail boldermail allows O… | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ghsa-3c5v-vg8q-xfjh |
6.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:14Z | 2026-01-20T15:31:25Z |
| ghsa-2m49-jgww-vg42 |
9.1 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-10-22T15:31:15Z | 2026-01-20T15:31:25Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-29686 | ** DISPUTED ** Server-side Template Injection (SSTI) vulnerability in Winter CMS v.1.2.3 … | 2024-04-02T05:02:57.621293Z |
| gsd-2024-29177 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.620932Z |
| gsd-2024-29370 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.620713Z |
| gsd-2024-29742 | In apply_minlock_constraint of dvfs.c, there is a possible out of bounds read due to a mi… | 2024-04-02T05:02:57.620451Z |
| gsd-2024-29455 | An arbitrary file upload vulnerability has been discovered in ROS2 Humble Hawksbill in RO… | 2024-04-02T05:02:57.620245Z |
| gsd-2024-29320 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.620045Z |
| gsd-2024-29619 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.619850Z |
| gsd-2024-29175 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.619648Z |
| gsd-2024-29268 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.619446Z |
| gsd-2024-29290 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.619252Z |
| gsd-2024-29461 | An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a … | 2024-04-02T05:02:57.619053Z |
| gsd-2024-29502 | An issue in Secure Lockdown Multi Application Edition v2.00.219 allows attackers to read … | 2024-04-02T05:02:57.618856Z |
| gsd-2024-29719 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.618574Z |
| gsd-2024-29688 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.618279Z |
| gsd-2024-29154 | danielmiessler fabric through 1.3.0 allows installer/client/gui/static/js/index.js XSS be… | 2024-04-02T05:02:57.617748Z |
| gsd-2024-29769 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.617069Z |
| gsd-2024-29173 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.616712Z |
| gsd-2024-29234 | Improper neutralization of special elements used in an SQL command ('SQL Injection') vuln… | 2024-04-02T05:02:57.616311Z |
| gsd-2024-29296 | A user enumeration vulnerability was found in Portainer CE 2.19.4. This issue occurs duri… | 2024-04-02T05:02:57.615764Z |
| gsd-2024-29217 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.615566Z |
| gsd-2024-29064 | Windows Hyper-V Denial of Service Vulnerability | 2024-04-02T05:02:57.615311Z |
| gsd-2024-29398 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.615115Z |
| gsd-2024-29319 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.614909Z |
| gsd-2024-29740 | In tmu_set_table of tmu.c, there is a possible out of bounds write due to a missing bound… | 2024-04-02T05:02:57.614707Z |
| gsd-2024-29128 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.614291Z |
| gsd-2024-29197 | Pimcore is an Open Source Data & Experience Management Platform. Any call with the query … | 2024-04-02T05:02:57.613741Z |
| gsd-2024-29750 | In km_exp_did_inner of kmv.c, there is a possible out of bounds read due to a missing bou… | 2024-04-02T05:02:57.613248Z |
| gsd-2024-29124 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vuln… | 2024-04-02T05:02:57.612845Z |
| gsd-2024-29543 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.612267Z |
| gsd-2024-29313 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-02T05:02:57.612069Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-189671 | Malicious code in stop-chalk-build-less-loader (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189670 | Malicious code in stop-callback-wezen-quark (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189669 | Malicious code in stop-auth-epigenetics-neutronstar (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189668 | Malicious code in stop-apex-singularity-nightmare (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189667 | Malicious code in steganography-yaml-quark-geochronology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189666 | Malicious code in steganography-hadron-stratosphere-polaris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189665 | Malicious code in steganography-aether-on-envconfig (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189664 | Malicious code in static-view-warn-cluster-catch (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189663 | Malicious code in static-transpile-sanitize-emulate-parse (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189662 | Malicious code in static-stub-dog-epsilon-final (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189661 | Malicious code in static-refactor-grep-yaml-emulate (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189660 | Malicious code in static-public-omega-abstract-upsilon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189659 | Malicious code in start-iota-webpack-cli (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189658 | Malicious code in start-io-nightwatch-install (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189657 | Malicious code in star-secure-alpha-omega-key (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189656 | Malicious code in star-route-query-export-process (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189655 | Malicious code in star-private-minify-bad-compress (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189654 | Malicious code in star-permission-parse-assert-small (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189653 | Malicious code in star-earth-small-execute-decrypt (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189652 | Malicious code in standard-thuban-commitlint-config-angular-got (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189651 | Malicious code in standard-seismology-sync-native (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189650 | Malicious code in standard-saturnology-webpack-pm2 (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189649 | Malicious code in standard-parallax-chalk-hologram (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189648 | Malicious code in standard-kuiperbelt-neuromorphic-sedimentology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189647 | Malicious code in standard-frontend-glaciology-selenology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189646 | Malicious code in standard-cygnus-quasarjet-joviology (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189645 | Malicious code in standard-browserify-petrology-oscillation (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189644 | Malicious code in standard-barnard-quark-yildun (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189643 | Malicious code in standard-apollo-tardigrade-perseus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-189642 | Malicious code in standard-altair-izar-sync (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-1830 | Fortinet FortiOS: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2024-08-13T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2024-1825 | MongoDB: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-08-13T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2024-1824 | Microsoft Dynamics 365: Schwachstelle ermöglicht Cross-Site Scripting | 2024-08-13T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2024-1823 | Microsoft Office: Mehrere Schwachstellen | 2024-08-13T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2024-1822 | Microsoft Azure: Mehrere Schwachstellen | 2024-08-13T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2023-2241 | VMware Tools: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2023-08-30T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2023-1775 | Linux Kernel: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2023-07-17T22:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2022-0228 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2021-11-04T23:00:00.000+00:00 | 2024-08-13T22:00:00.000+00:00 |
| wid-sec-w-2024-1820 | Zoom Video Communications Rooms: Mehrere Schwachstellen | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1819 | Siemens JT2Go: Mehrere Schwachstellen ermöglichen Codeausführung und Denial of Service | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1818 | SAP Security Patch Day – August 2024 | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1815 | IBM VIOS und AIX: Mehrere Schwachstellen | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1814 | IBM App Connect Enterprise: Mehrere Schwachstellen | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1813 | Microsoft Windows: Schwachstelle ermöglicht Denial of Service | 2024-08-12T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-0922 | PyTorch: Mehrere Schwachstellen ermöglichen Denial of Service | 2024-04-17T22:00:00.000+00:00 | 2024-08-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1810 | QNAP NAS: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-08-11T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2024-1809 | GitLab: Mehrere Schwachstellen | 2021-01-07T23:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2024-1808 | Red Hat Enterprise Linux: Schwachstelle ermöglicht Codeausführung | 2022-02-16T23:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2024-1667 | Cisco Smart Software Manager On-Prem: Schwachstelle ermöglicht Privilegieneskalation | 2024-07-17T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2023-1700 | IBM DB2: Schwachstelle ermöglicht Codeausführung | 2023-07-10T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2023-1693 | IBM DB2: Mehrere Schwachstellen | 2023-07-09T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2023-0569 | strongSwan: Schwachstelle ermöglicht Codeausführung und DoS | 2023-03-05T23:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2022-0932 | dpkg: Schwachstelle ermöglicht Manipulation von Dateien | 2022-05-26T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2022-0511 | GnuPGP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-06-29T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2022-0123 | rsyslog: Schwachstelle ermöglicht Codeausführung | 2022-05-05T22:00:00.000+00:00 | 2024-08-11T22:00:00.000+00:00 |
| wid-sec-w-2024-1806 | Avaya Aura System Manager: Mehrere Schwachstellen | 2024-08-08T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2024-1804 | Microsoft Edge: Mehrere Schwachstellen ermöglichen Codeausführung | 2024-08-08T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2024-1802 | IBM Business Automation Workflow: Mehrere Schwachstellen | 2024-08-08T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2024-1787 | GitLab: Mehrere Schwachstellen | 2024-08-07T22:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| wid-sec-w-2023-2845 | SaltStack Salt: Mehrere Schwachstellen | 2021-02-28T23:00:00.000+00:00 | 2024-08-08T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:16116 | Red Hat Security Advisory: gnutls security, bug fix, and enhancement update | 2025-09-17T18:17:11+00:00 | 2026-01-22T00:09:45+00:00 |
| rhsa-2025:16115 | Red Hat Security Advisory: gnutls security, bug fix, and enhancement update | 2025-09-17T17:13:16+00:00 | 2026-01-22T00:09:45+00:00 |
| rhsa-2025:14186 | Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage | 2025-08-20T16:02:39+00:00 | 2026-01-22T00:09:20+00:00 |
| rhsa-2025:13240 | Red Hat Security Advisory: glibc security update | 2025-08-06T13:49:57+00:00 | 2026-01-22T00:09:07+00:00 |
| rhsa-2025:12980 | Red Hat Security Advisory: glibc security update | 2025-08-05T11:30:34+00:00 | 2026-01-22T00:09:05+00:00 |
| rhsa-2025:12748 | Red Hat Security Advisory: glibc security update | 2025-08-04T17:33:16+00:00 | 2026-01-22T00:09:05+00:00 |
| rhsa-2024:2228 | Red Hat Security Advisory: perl security update | 2024-04-30T10:12:36+00:00 | 2026-01-22T00:08:45+00:00 |
| rhsa-2024:3128 | Red Hat Security Advisory: perl:5.32 security update | 2024-05-22T10:04:27+00:00 | 2026-01-22T00:08:42+00:00 |
| rhsa-2021:4326 | Red Hat Security Advisory: libX11 security update | 2021-11-09T18:20:52+00:00 | 2026-01-21T23:52:25+00:00 |
| rhsa-2021:3477 | Red Hat Security Advisory: RHV-H security update (redhat-virtualization-host) 4.3.18 | 2021-09-09T09:25:32+00:00 | 2026-01-21T23:52:23+00:00 |
| rhsa-2021:3296 | Red Hat Security Advisory: libX11 security update | 2021-08-30T08:57:59+00:00 | 2026-01-21T23:52:22+00:00 |
| rhba-2021:3472 | Red Hat Bug Fix Advisory: Red Hat Ansible Tower 3.8.4-1 - Container | 2021-09-08T19:22:08+00:00 | 2026-01-21T23:52:14+00:00 |
| rhsa-2025:7626 | Red Hat Security Advisory: Red Hat Developer Hub 1.6.0 release. | 2025-05-14T17:51:56+00:00 | 2026-01-21T23:30:49+00:00 |
| rhsa-2025:2518 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update | 2025-03-10T14:46:24+00:00 | 2026-01-21T23:29:24+00:00 |
| rhsa-2025:22652 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.23.1 Release. | 2025-12-02T21:45:24+00:00 | 2026-01-21T23:29:04+00:00 |
| rhsa-2025:22623 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.24.1 Release. | 2025-12-02T15:28:44+00:00 | 2026-01-21T23:29:03+00:00 |
| rhsa-2025:22620 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.22.1 Release. | 2025-12-02T15:22:33+00:00 | 2026-01-21T23:29:03+00:00 |
| rhsa-2025:1931 | Red Hat Security Advisory: Red Hat Developer Hub 1.4.2 release. | 2025-02-27T16:14:24+00:00 | 2026-01-21T23:28:51+00:00 |
| rhsa-2025:1875 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.9 | 2025-02-26T14:58:54+00:00 | 2026-01-21T23:28:44+00:00 |
| rhsa-2025:17145 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17 security, enhancement & bug fix update | 2025-10-01T12:01:32+00:00 | 2026-01-21T23:28:30+00:00 |
| rhsa-2025:1611 | Red Hat Security Advisory: nodejs:22 security update | 2025-02-17T18:04:26+00:00 | 2026-01-21T23:28:23+00:00 |
| rhsa-2025:1613 | Red Hat Security Advisory: nodejs:22 security update | 2025-02-17T19:21:42+00:00 | 2026-01-21T23:28:22+00:00 |
| rhsa-2025:1582 | Red Hat Security Advisory: nodejs:18 security update | 2025-02-17T12:52:35+00:00 | 2026-01-21T23:28:19+00:00 |
| rhsa-2025:1446 | Red Hat Security Advisory: nodejs:18 security update | 2025-02-13T16:03:15+00:00 | 2026-01-21T23:28:15+00:00 |
| rhsa-2025:1443 | Red Hat Security Advisory: nodejs:20 security update | 2025-02-13T15:42:45+00:00 | 2026-01-21T23:28:10+00:00 |
| rhsa-2025:1351 | Red Hat Security Advisory: nodejs:20 security update | 2025-02-12T15:32:22+00:00 | 2026-01-21T23:28:05+00:00 |
| rhsa-2025:10020 | Red Hat Security Advisory: Network Observability 1.9.0 for OpenShift | 2025-07-01T07:28:57+00:00 | 2026-01-21T23:27:21+00:00 |
| rhsa-2025:0002 | Red Hat Security Advisory: python36:3.6 security update | 2025-01-01T09:32:24+00:00 | 2026-01-21T23:26:27+00:00 |
| rhsa-2024:8546 | Red Hat Security Advisory: Red Hat Advanced Cluster Management 2.9.5 bug fixes and container updates | 2024-10-28T21:28:29+00:00 | 2026-01-21T23:25:51+00:00 |
| rhsa-2024:8533 | Red Hat Security Advisory: Multicluster Engine for Kubernetes 2.4.6 security updates and bug fixes | 2024-10-28T17:06:38+00:00 | 2026-01-21T23:25:50+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-23775 | Integer Overflow vulnerability in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2 allows attackers to cause a denial of service (DoS) via mbedtls_x509_set_extension(). | 2024-01-01T08:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2024-23744 | An issue was discovered in Mbed TLS 3.5.1. There is persistent handshake denial if a client sends a TLS 1.3 ClientHello without extensions. | 2024-01-01T08:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2024-23170 | An issue was discovered in Mbed TLS 2.x before 2.28.7 and 3.x before 3.5.2. There was a timing side channel in RSA private operations. | 2024-01-01T08:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-6237 | Excessive time spent checking invalid RSA public keys | 2024-04-02T07:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-6129 | POLY1305 MAC implementation corrupts vector registers on PowerPC | 2024-01-01T08:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-5363 | Incorrect cipher key & IV length processing | 2023-10-01T00:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-52353 | An issue was discovered in Mbed TLS through 3.5.1. In mbedtls_ssl_session_reset the maximum negotiable TLS version is mishandled. | 2024-01-01T08:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-43615 | Mbed TLS 2.x before 2.28.5 and 3.x before 3.5.0 has a Buffer Overflow. | 2023-10-01T00:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-3446 | Excessive time spent checking DH keys and parameters | 2023-07-01T07:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-2975 | AES-SIV implementation ignores empty associated data entries | 2023-07-01T07:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2023-0466 | Certificate policy check not enabled | 2023-03-10T00:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2021-36647 | Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information (typically an untrusted operating system attacking a secure enclave such as SGX or the TrustZone secure world) to recover the private keys used in RSA. | 2023-01-04T00:00:00.000Z | 2024-11-28T00:00:00.000Z |
| msrc_cve-2024-49040 | Microsoft Exchange Server Spoofing Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-27T08:00:00.000Z |
| msrc_cve-2024-49035 | Partner.Microsoft.Com Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-27T08:00:00.000Z |
| msrc_cve-2024-5742 | Nano: running `chmod` and `chown` on the filename allows malicious user to replace the emergency file with a malicious symlink to a root-owned file | 2024-06-02T07:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-52532 | GNOME libsoup before 3.6.1 has an infinite loop and memory consumption. during the reading of certain patterns of WebSocket data from clients. | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-52531 | GNOME libsoup before 3.6.1 allows a buffer overflow in applications that perform conversion to UTF-8 in soup_header_parse_param_list_strict. | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-52530 | GNOME libsoup before 3.6.0 allows HTTP request smuggling in some configurations | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-35235 | Cupsd Listen arbitrary chmod 0140777 | 2024-06-02T07:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-21538 | Versions of the package cross-spawn before 7.0.5 are vulnerable to Regular Expression Denial of Service (ReDoS) due to improper input sanitization. | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-10524 | GNU Wget is vulnerable to an SSRF attack when accessing partially-user-controlled shorthand URLs | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-10224 | Qualys discovered that if unsanitized input was used with the library Modules: ScanDeps | 2024-11-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2022-0530 | Conversion of a wide string to a local string that leads to a heap of out-of-bound write | 2022-02-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2022-0529 | Conversion of a wide string to a local string that leads to a heap of out-of-bound write | 2022-02-02T00:00:00.000Z | 2024-11-27T00:00:00.000Z |
| msrc_cve-2024-49053 | Microsoft Dynamics 365 Sales Spoofing Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-26T08:00:00.000Z |
| msrc_cve-2024-49052 | Microsoft Azure PolicyWatch Elevation of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-26T08:00:00.000Z |
| msrc_cve-2024-49038 | Microsoft Copilot Studio Elevation Of Privilege Vulnerability | 2024-11-12T08:00:00.000Z | 2024-11-26T08:00:00.000Z |
| msrc_cve-2024-9632 | Xorg-x11-server: tigervnc: heap-based buffer overflow privilege escalation vulnerability | 2024-10-01T07:00:00.000Z | 2024-11-26T00:00:00.000Z |
| msrc_cve-2024-8006 | NULL pointer dereference in libpcap before 1.10.5 with remote packet capture support | 2024-08-02T00:00:00.000Z | 2024-11-26T00:00:00.000Z |
| msrc_cve-2024-10979 | PostgreSQL PL/Perl environment variable changes execute arbitrary code | 2024-11-02T00:00:00.000Z | 2024-11-26T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202202-0503 | Improper Validation of Consistency within input in firmware for some Intel(R) PROSet/Wire… | 2025-05-07T22:26:11.443000Z |
| var-202210-1470 | An access issue was addressed with improvements to the sandbox. This issue is fixed in Sa… | 2025-05-07T22:24:25.873000Z |
| var-202202-0042 | Unchecked return value in the firmware for some Intel(R) Processors may allow a privilege… | 2025-05-07T22:23:09.635000Z |
| var-202202-0518 | Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple oper… | 2025-05-07T22:17:27.187000Z |
| var-202210-1885 | A memory corruption issue was addressed with improved state management. This issue is fix… | 2025-05-07T22:16:27.121000Z |
| var-202202-0094 | Insufficient control flow management in some Intel(R) Processors may allow an authenticat… | 2025-05-07T22:15:48.650000Z |
| var-202211-0019 | The issue was addressed with improved memory handling. This issue is fixed in iOS 16, wat… | 2025-05-07T22:15:09.270000Z |
| var-202202-1348 | Insufficiently protected credentials in USB provisioning for Intel(R) AMT SDK before vers… | 2025-05-07T22:15:04.220000Z |
| var-202202-0514 | Improper Validation of Consistency within input in software for Intel(R) PROSet/Wireless … | 2025-05-07T22:14:22.303000Z |
| var-202208-1418 | Improper access control in the Intel(R) DSA software for before version 22.2.14 may allow… | 2025-05-07T22:14:15.610000Z |
| var-202208-1450 | Uncontrolled search path in the Intel(R) Distribution for Python before version 2022.0.3 … | 2025-05-07T22:10:19.671000Z |
| var-202210-1467 | A race condition was addressed with improved state handling. This issue is fixed in macOS… | 2025-05-07T22:06:56.185000Z |
| var-202210-1631 | A parsing issue in the handling of directory paths was addressed with improved path valid… | 2025-05-07T22:06:46.630000Z |
| var-202208-1512 | Improper neutralization in the Intel(R) Data Center Manager software before version 4.1 m… | 2025-05-07T22:04:43.528000Z |
| var-202210-1927 | The issue was addressed with improved memory handling. This issue is fixed in iOS 15.7.1 … | 2025-05-07T22:01:41.812000Z |
| var-202202-1332 | Improper access control in the Intel(R) Capital Global Summit Android application may all… | 2025-05-07T22:00:18.153000Z |
| var-202202-0508 | Improper input validation in software for Intel(R) PROSet/Wireless Wi-Fi and Killer(TM) W… | 2025-05-07T21:57:12.901000Z |
| var-202202-0513 | Improper input validation in firmware for Intel(R) PROSet/Wireless Wi-Fi in multiple oper… | 2025-05-07T21:55:26.311000Z |
| var-202210-1488 | A memory corruption issue existed in the processing of ICC profiles. This issue was addre… | 2025-05-07T21:53:16.958000Z |
| var-202202-1331 | Improper access control in the Intel(R) Smart Campus Android application before version 6… | 2025-05-07T21:47:26.971000Z |
| var-202210-1474 | The issue was addressed with additional restrictions on the observability of app states. … | 2025-05-07T21:47:14.014000Z |
| var-202210-1491 | A permissions issue existed. This issue was addressed with improved permission validation… | 2025-05-07T21:47:12.899000Z |
| var-202202-0460 | Uncontrolled search path in the Intel(R) GPA software before version 21.2 may allow an au… | 2025-05-07T21:46:21.427000Z |
| var-202210-1884 | The issue was addressed with improved bounds checks. This issue is fixed in iOS 15.7.1 an… | 2025-05-07T21:46:19.106000Z |
| var-202210-1524 | The issue was addressed with improved bounds checks. This issue is fixed in tvOS 16.1, iO… | 2025-05-07T21:45:33.366000Z |
| var-202210-1462 | A logic issue was addressed with improved state management. This issue is fixed in macOS … | 2025-05-07T21:43:40.876000Z |
| var-202208-0825 | Uncontrolled search path elements in the Intel(R) VTune(TM) Profiler software before vers… | 2025-05-07T21:43:40.311000Z |
| var-202210-1464 | The issue was addressed with improved memory handling. This issue is fixed in iOS 16, mac… | 2025-05-07T21:43:04.220000Z |
| var-202202-1347 | Improper input validation for some Intel(R) Wireless Bluetooth(R) products and Killer(TM)… | 2025-05-07T21:41:01.051000Z |
| var-202210-1484 | This issue was addressed with improved validation of symlinks. This issue is fixed in mac… | 2025-05-07T21:37:08.326000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:4948-1 | Security update for zbar | 2023-12-21T13:12:49Z | 2023-12-21T13:12:49Z |
| suse-su-2023:4947-1 | Security update for gstreamer-plugins-bad | 2023-12-21T12:34:06Z | 2023-12-21T12:34:06Z |
| suse-su-2023:4946-1 | Security update for libssh2_org | 2023-12-21T11:34:48Z | 2023-12-21T11:34:48Z |
| suse-su-2023:4945-1 | Security update for xen | 2023-12-21T11:34:28Z | 2023-12-21T11:34:28Z |
| suse-su-2023:4944-1 | Security update for gstreamer-plugins-bad | 2023-12-21T11:34:17Z | 2023-12-21T11:34:17Z |
| suse-su-2023:4943-1 | Security update for gstreamer-plugins-bad | 2023-12-21T11:33:54Z | 2023-12-21T11:33:54Z |
| suse-su-2023:4942-1 | Security update for poppler | 2023-12-21T10:39:18Z | 2023-12-21T10:39:18Z |
| suse-su-2023:4941-1 | Security update for poppler | 2023-12-21T10:38:57Z | 2023-12-21T10:38:57Z |
| suse-su-2023:4939-1 | Security update for rabbitmq-server | 2023-12-20T17:01:36Z | 2023-12-20T17:01:36Z |
| suse-su-2023:4938-1 | Security update for wireshark | 2023-12-20T17:00:57Z | 2023-12-20T17:00:57Z |
| suse-su-2023:4936-1 | Security update for docker, rootlesskit | 2023-12-20T16:18:41Z | 2023-12-20T16:18:41Z |
| suse-su-2023:4935-1 | Security update for xorg-x11-server | 2023-12-20T16:11:23Z | 2023-12-20T16:11:23Z |
| suse-su-2023:4934-1 | Security update for xorg-x11-server | 2023-12-20T16:10:35Z | 2023-12-20T16:10:35Z |
| suse-su-2023:4933-1 | Security update for xwayland | 2023-12-20T16:09:51Z | 2023-12-20T16:09:51Z |
| suse-su-2023:4932-1 | Security update for libreoffice | 2023-12-20T14:44:59Z | 2023-12-20T14:44:59Z |
| suse-su-2023:4931-1 | Security update for go1.21-openssl | 2023-12-20T14:25:49Z | 2023-12-20T14:25:49Z |
| suse-su-2023:4930-1 | Security update for go1.20-openssl | 2023-12-20T14:25:22Z | 2023-12-20T14:25:22Z |
| suse-su-2023:4929-1 | Security update for MozillaFirefox | 2023-12-20T14:04:01Z | 2023-12-20T14:04:01Z |
| suse-su-2023:4928-1 | Security update for MozillaFirefox | 2023-12-20T14:02:41Z | 2023-12-20T14:02:41Z |
| suse-su-2023:4926-1 | Security update for xwayland | 2023-12-20T10:34:09Z | 2023-12-20T10:34:09Z |
| suse-su-2023:4925-1 | Security update for xorg-x11-server | 2023-12-20T10:33:24Z | 2023-12-20T10:33:24Z |
| suse-su-2023:4921-1 | Security update for python-cryptography | 2023-12-20T08:51:42Z | 2023-12-20T08:51:42Z |
| suse-su-2023:4920-1 | Security update for ghostscript | 2023-12-20T08:50:09Z | 2023-12-20T08:50:09Z |
| suse-su-2023:4919-1 | Security update for openssl-1_1-livepatches | 2023-12-20T08:34:07Z | 2023-12-20T08:34:07Z |
| suse-su-2023:4918-1 | Security update for openssl-1_1-livepatches | 2023-12-20T08:24:08Z | 2023-12-20T08:24:08Z |
| suse-su-2023:4917-1 | Security update for ghostscript | 2023-12-20T08:21:42Z | 2023-12-20T08:21:42Z |
| suse-su-2023:4912-1 | Security update for MozillaFirefox | 2023-12-19T15:48:50Z | 2023-12-19T15:48:50Z |
| suse-su-2023:4910-1 | Security update for avahi | 2023-12-19T15:03:08Z | 2023-12-19T15:03:08Z |
| suse-su-2023:4909-1 | Security update for python-aiohttp | 2023-12-19T15:01:47Z | 2023-12-19T15:01:47Z |
| suse-su-2023:4908-1 | Security update for mariadb | 2023-12-19T14:59:18Z | 2023-12-19T14:59:18Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2024:10339-1 | libhogweed4-3.3-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10338-1 | gnuchess-6.2.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10337-1 | libwmf-0_2-7-0.2.8.4-243.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10336-1 | libcryptopp-devel-5.6.4-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10335-1 | libXxf86dga-devel-1.1.4-5.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10334-1 | cifs-utils-6.5-1.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10333-1 | pwgen-2.07-2.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10332-1 | ruby2.2-rubygem-actionpack-4_2-4.2.7.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10331-1 | libjansson-devel-2.7-1.9 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10330-1 | munin-2.0.25-4.10 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10329-1 | lynx-2.8.8rel.2-4.13 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10328-1 | plasma5-desktop-5.8.4-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10327-1 | libproxy-devel-0.4.13-7.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10326-1 | ansible-2.2.0.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10325-1 | kdenetwork4-filesharing-16.12.0-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10324-1 | android-tools-5.1.1_r8-3.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10323-1 | xinetd-2.3.15-11.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10322-1 | p7zip-16.02-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10321-1 | rhythmbox-3.4.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10320-1 | imlib2-1.4.9-1.4 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10319-1 | autofs-5.1.1-3.5 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10318-1 | pure-ftpd-1.0.43-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10317-1 | python-Beaker-1.8.1-1.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10316-1 | icedtea-web-javadoc-1.6.2-3.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10315-1 | firebird-3.0.1.32609-1.3 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10314-1 | DevIL-devel-1.7.8-5.7 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10313-1 | cups-filters-1.8.2-1.11 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10312-1 | sysvinit-tools-2.88+-103.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10311-1 | apache2-mod_nss-1.0.14-4.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| opensuse-su-2024:10310-1 | sysconfig-0.84.0-2.1 on GA media | 2024-06-15T00:00:00Z | 2024-06-15T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-17057 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17057) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17056 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17056) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17055 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17055) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17054 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17054) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17053 | Tenda FH1203 formSetCfm方法缓冲区溢出漏洞 | 2024-03-29 | 2025-07-29 |
| cnvd-2025-17052 | Tenda FH1203 formQuickIndex方法缓冲区溢出漏洞 | 2024-03-29 | 2025-07-29 |
| cnvd-2025-17051 | Tenda FH1203 formexeCommand方法缓冲区溢出漏洞 | 2024-03-29 | 2025-07-29 |
| cnvd-2025-17050 | Tenda FH1203 setSchedWifi方法schedEndTime参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17049 | Tenda FH1203 setSchedWifi方法schedStartTime参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17048 | Tenda FH1203 saveParentControlInfo方法urls参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17047 | Tenda FH1203 saveParentControlInfo方法time参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17046 | Tenda FH1203 saveParentControlInfo方法deviceId参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17045 | Tenda FH1203 fromDhcpListClient方法page参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17044 | Tenda FH1203 fromDhcpListClient方法list1参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17043 | Tenda FH1203 formWifiBasicSet方法security参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17042 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17042) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17041 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17041) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17040 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17040) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17039 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17039) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17038 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17038) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17037 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17037) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17036 | IrfanView CADImage Plugin缓冲区溢出漏洞(CNVD-2025-17036) | 2025-07-23 | 2025-07-29 |
| cnvd-2025-17022 | Tenda FH1203 formWifiBasicSet方法security_5g参数缓冲区溢出漏洞 | 2024-04-03 | 2025-07-29 |
| cnvd-2025-17021 | Tenda FH1203命令注入漏洞 | 2024-04-22 | 2025-07-29 |
| cnvd-2025-17020 | Tenda FH1203 fromWizardHandle方法缓冲区溢出漏洞 | 2024-04-22 | 2025-07-29 |
| cnvd-2025-17019 | Tenda FH1203 formWanParameterSetting方法缓冲区溢出漏洞 | 2024-04-22 | 2025-07-29 |
| cnvd-2025-17018 | Tenda O3V2 /goform/setWrlFilterList文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17017 | Tenda O3V2 /goform/setWrlBasicInfo文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17016 | Tenda O3V2 /goform/setSysTimeInfo文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| cnvd-2025-17015 | Tenda O3V2 /goform/setRateTest文件缓冲区溢出漏洞 | 2025-07-18 | 2025-07-29 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2020-avi-442 | Multiples vulnérabilités dans IBM Qradar | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-441 | Vulnérabilité dans Fortinet FortiOS | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-440 | Multiples vulnérabilités dans Google Chrome | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-439 | Multiples vulnérabilités dans les produits Siemens | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-438 | Multiples vulnérabilités dans Adobe ColdFusion | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-437 | Multiples vulnérabilités dans Oracle Virtualization | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-436 | Multiples vulnérabilités dans Oracle Systems | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-435 | Multiples vulnérabilités dans Oracle MySQL | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-434 | Multiples vulnérabilités dans Oracle Java SE | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-433 | Multiples vulnérabilités dans Oracle Database Server | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-432 | Multiples vulnérabilités dans SAP | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-431 | Multiples vulnérabilités dans les produits Microsoft | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-430 | Vulnérabilité dans Microsoft .Net | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-429 | Multiples vulnérabilités dans Microsoft Windows | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-428 | Multiples vulnérabilités dans Microsoft Office | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-427 | Multiples vulnérabilités dans Microsoft Edge | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-426 | Multiples vulnérabilités dans Microsoft IE | 2020-07-15T00:00:00.000000 | 2020-07-15T00:00:00.000000 |
| certfr-2020-avi-425 | Vulnérabilité dans les produits VMware | 2020-07-10T00:00:00.000000 | 2020-07-10T00:00:00.000000 |
| certfr-2020-avi-424 | Multiples vulnérabilités dans Moxa MGate | 2020-07-10T00:00:00.000000 | 2020-07-10T00:00:00.000000 |
| certfr-2020-avi-422 | Vulnérabilité dans Mozilla Firefox | 2020-07-10T00:00:00.000000 | 2020-07-10T00:00:00.000000 |
| certfr-2020-avi-421 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2020-07-09T00:00:00.000000 | 2020-07-09T00:00:00.000000 |
| certfr-2020-avi-420 | Multiples vulnérabilités dans les produits Juniper | 2020-07-09T00:00:00.000000 | 2020-07-09T00:00:00.000000 |
| certfr-2020-avi-419 | Multiples vulnérabilités dans Palo Alto Networks PAN-OS | 2020-07-09T00:00:00.000000 | 2020-07-09T00:00:00.000000 |
| certfr-2020-avi-418 | Multiples vulnérabilités dans Citrix Hypervisor | 2020-07-09T00:00:00.000000 | 2020-07-09T00:00:00.000000 |
| certfr-2020-avi-417 | Multiples vulnérabilités dans les produits Symantec | 2020-07-09T00:00:00.000000 | 2020-07-09T00:00:00.000000 |
| certfr-2020-avi-416 | Multiples vulnérabilités dans les produits Citrix | 2020-07-08T00:00:00.000000 | 2020-07-08T00:00:00.000000 |
| certfr-2020-avi-415 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2020-07-08T00:00:00.000000 | 2020-07-08T00:00:00.000000 |
| certfr-2020-avi-414 | Multiples vulnérabilités dans Xen | 2020-07-08T00:00:00.000000 | 2020-07-08T00:00:00.000000 |
| certfr-2020-avi-413 | Vulnérabilité dans VMware VeloCloud Orchestrator | 2020-07-08T00:00:00.000000 | 2020-07-08T00:00:00.000000 |
| certfr-2020-avi-412 | Vulnérabilité dans Mozilla Firefox | 2020-07-08T00:00:00.000000 | 2020-07-08T00:00:00.000000 |