Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2026-28219
1.3 (4.0)
Privilege Escalation via Mass Assignment Allows Regula… discourse
 discourse
 2026-02-26T21:25:36.635Z 2026-02-26T21:25:36.635Z
CVE-2026-28218
5.3 (4.0)
Discourse's Fail-Open Access Control in Data Explorer … discourse
 discourse
 2026-02-26T21:23:32.354Z 2026-02-26T21:23:32.354Z
CVE-2026-27154
1.3 (4.0)
Discourse has XSS when editing a malicious post discourse
 discourse
 2026-02-26T21:20:25.181Z 2026-02-26T21:20:25.181Z
CVE-2026-27521
6.9 (4.0)
6.5 (3.1)
Binardat 10G08-0800GSM Network Switch Missing Login Ra… Binardat Ltd.
 10G08-0800GSM Network Switch
 2026-02-24T15:08:14.170Z 2026-02-26T21:19:50.599Z
CVE-2026-27153
1.3 (4.0)
Discourse doesn't prevent moderators from exporting us… discourse
 discourse
 2026-02-26T21:16:41.077Z 2026-02-26T21:18:26.613Z
CVE-2026-27585
6.9 (4.0)
Caddy's improper sanitization of glob characters in fi… caddyserver
 caddy
 2026-02-24T16:06:05.030Z 2026-02-26T21:17:36.422Z
CVE-2026-2768
10 (3.1)
Sandbox escape in the Storage: IndexedDB component Mozilla
 Firefox
 2026-02-24T13:33:06.258Z 2026-02-26T21:05:03.087Z
CVE-2026-27598
7.1 (4.0)
Dagu: Path traversal in DAG creation allows arbitrary … dagu-org
 dagu
 2026-02-25T00:27:40.654Z 2026-02-26T21:02:19.359Z
CVE-2026-27621
6.8 (4.0)
TypiCMS Core has Stored Cross-Site Scripting (XSS) via… TypiCMS
 Core
 2026-02-25T02:36:12.353Z 2026-02-26T20:59:12.644Z
CVE-2026-23627
7.4 (4.0)
OpenEMR has SQL Injection in Immunization Search/Report openemr
 openemr
 2026-02-25T17:39:20.540Z 2026-02-26T20:58:11.023Z
CVE-2026-3135
6.9 (4.0)
7.3 (3.1)
7.3 (3.0)
itsourcecode News Portal Project add-category.php sql … itsourcecode
 News Portal Project
 2026-02-25T00:02:08.161Z 2026-02-26T20:57:10.132Z
CVE-2026-27586
8.8 (4.0)
Caddy's mTLS client authentication silently fails open… caddyserver
 caddy
 2026-02-24T16:08:20.569Z 2026-02-26T20:56:20.526Z
CVE-2026-25746
8.8 (3.1)
OpenEMR has SQL Injection Vulnerability openemr
 openemr
 2026-02-25T18:39:24.787Z 2026-02-26T20:54:39.616Z
CVE-2026-25743
7.2 (4.0)
OpenEMR has Stored XSS in Questionnaire answers openemr
 openemr
 2026-02-25T18:33:56.620Z 2026-02-26T20:53:59.221Z
CVE-2026-2770
8.8 (3.1)
Use-after-free in the DOM: Bindings (WebIDL) component Mozilla
 Firefox
 2026-02-24T13:33:07.898Z 2026-02-26T20:52:50.468Z
CVE-2026-2772
8.8 (3.1)
Use-after-free in the Audio/Video: Playback component Mozilla
 Firefox
 2026-02-24T13:33:09.181Z 2026-02-26T20:52:50.266Z
CVE-2026-2789
8.8 (3.1)
Use-after-free in the Graphics: ImageLib component Mozilla
 Firefox
 2026-02-24T13:33:20.961Z 2026-02-26T20:52:50.078Z
CVE-2026-2795
8.8 (3.1)
Use-after-free in the JavaScript: GC component Mozilla
 Firefox
 2026-02-24T13:33:26.111Z 2026-02-26T20:52:49.920Z
CVE-2026-2797
8.8 (3.1)
Use-after-free in the JavaScript: GC component Mozilla
 Firefox
 2026-02-24T13:33:27.406Z 2026-02-26T20:52:49.775Z
CVE-2026-2799
8.8 (3.1)
Use-after-free in the DOM: Core & HTML component Mozilla
 Firefox
 2026-02-24T13:33:28.665Z 2026-02-26T20:52:49.623Z
CVE-2025-67433
7.5 (3.1)
A heap buffer overflow in the processRequest func… n/a
 n/a
 2026-02-12T00:00:00.000Z 2026-02-26T20:52:47.206Z
CVE-2025-43537
3.5 (3.1)
A path handling issue was addressed with improved… Apple
 iOS and iPadOS
 2026-02-11T22:57:59.635Z 2026-02-26T20:52:33.264Z
CVE-2026-23541
N/A
WordPress Mail Mint plugin <= 1.19.4 - Broken Access C… WPFunnels
 Mail Mint
 2026-02-19T08:26:48.368Z 2026-02-26T20:51:38.720Z
CVE-2026-2801
7.5 (3.1)
Incorrect boundary conditions in the JavaScript: WebAs… Mozilla
 Firefox
 2026-02-24T13:33:29.929Z 2026-02-26T20:50:24.195Z
CVE-2025-68834
N/A
WordPress Sync Master Sheet – Product Sync with Google… Saiful Islam
 Sync Master Sheet &#8211; Product Sync with Google Sheet for WooCommerce
 2026-02-20T15:46:41.323Z 2026-02-26T20:50:19.073Z
CVE-2026-24487
5.7 (4.0)
OpenEMR has FHIR Patient Compartment Bypass in CareTea… openemr
 openemr
 2026-02-25T17:45:24.584Z 2026-02-26T20:48:47.360Z
CVE-2026-25942
5.5 (4.0)
FreeRDP has global-buffer-overflow in xf_rail_server_e… FreeRDP
 FreeRDP
 2026-02-25T20:01:16.472Z 2026-02-26T20:47:09.779Z
CVE-2026-1565
8.8 (3.1)
User Frontend: AI Powered Frontend Posting, User Direc… wedevs
 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration
 2026-02-26T19:23:09.638Z 2026-02-26T20:45:54.082Z
CVE-2026-25136
8.1 (3.1)
Rucio WebUI has a Reflected Cross-site Scripting Vulne… rucio
 rucio
 2026-02-25T18:57:28.589Z 2026-02-26T20:44:57.174Z
CVE-2026-24005
0 (3.1)
OpenKruise PodProbeMarker is Vulnerable to SSRF via Un… openkruise
 kruise
 2026-02-25T18:53:30.170Z 2026-02-26T20:44:09.282Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-20010
7.4 (3.1)
Cisco Nexus 3000 and 9000 Series Switches Link Layer D… Cisco
 Cisco NX-OS Software
 2026-02-25T16:18:14.561Z 2026-02-25T19:05:49.108Z
CVE-2026-1779
8.1 (3.1)
User Registration & Membership <= 5.1.2 - Authenticati… wpeverest
 User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder
 2026-02-26T02:23:56.402Z 2026-02-26T14:36:33.220Z
CVE-2026-1698
5.3 (4.0)
HTTP Host header vulnerability in WebClient and WebSch… arcinfo
 PcVue
 2026-02-26T07:58:00.626Z 2026-02-26T14:30:21.442Z
CVE-2026-1697
5.3 (4.0)
Use of unsecure cookies for GraphicalData web service … arcinfo
 PcVue
 2026-02-26T07:57:46.166Z 2026-02-26T14:32:13.364Z
CVE-2026-1696
2.3 (4.0)
Missing security HTTP headers arcinfo
 PcVue
 2026-02-26T07:57:29.109Z 2026-02-26T14:33:12.572Z
CVE-2026-1695
5.3 (4.0)
XSS vulnerability upon unsuccessful authentication arcinfo
 PcVue
 2026-02-26T07:57:11.931Z 2026-02-26T14:21:32.290Z
CVE-2026-1694
2.3 (4.0)
Server configuration details in HTTP headers arcinfo
 PcVue
 2026-02-26T07:56:57.048Z 2026-02-26T14:22:11.880Z
CVE-2026-1693
5.3 (4.0)
Use of vulnerable Resource Owner Password Credentials flow arcinfo
 PcVue
 2026-02-26T07:56:10.326Z 2026-02-26T14:22:42.916Z
CVE-2026-1692
5.3 (4.0)
Missing origin validation in GraphicalData web service… arcinfo
 PcVue
 2026-02-26T07:55:18.433Z 2026-02-26T14:23:20.892Z
CVE-2026-1557
7.5 (3.1)
WP Responsive Images <= 1.0 - Unauthenticated Path Tra… stuartbates
 WP Responsive Images
 2026-02-26T01:24:14.199Z 2026-02-26T15:31:50.388Z
CVE-2026-1311
8.8 (3.1)
Worry Proof Backup <= 0.2.4 - Authenticated (Subscribe… bearsthemes
 Worry Proof Backup
 2026-02-26T04:36:16.923Z 2026-02-26T14:25:46.217Z
CVE-2026-1198
8.6 (4.0)
SQL Injection in SIMPLE.ERP Simple SA
 Simple.ERP
 2026-02-26T11:27:18.585Z 2026-02-26T14:27:02.779Z
CVE-2026-0542
9.2 (4.0)
Remote Code Execution in ServiceNow AI Platform ServiceNow
 ServiceNow AI Platform
 2026-02-25T20:35:27.303Z 2026-02-26T15:53:05.161Z
CVE-2025-69771
9.6 (3.1)
An arbitrary file upload vulnerability in the sub… n/a
 n/a
 2026-02-25T00:00:00.000Z 2026-02-26T19:36:16.836Z
CVE-2025-64999
7.3 (4.0)
Cross-site scripting in HTML logs of Synthetic Monitor… Checkmk GmbH
 Checkmk
 2026-02-26T10:26:00.127Z 2026-02-26T14:28:55.683Z
CVE-2025-1242
9.3 (4.0)
9.1 (3.1)
Administrative Credentials Can Be Extracted Through Ga… Gardyn
 Home Kit
 2026-02-25T15:21:48.369Z 2026-02-25T20:30:46.714Z
CVE-2026-3293
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
snowflakedb snowflake-jdbc JDBC URL SdkProxyRoutePlann… snowflakedb
 snowflake-jdbc
 2026-02-27T05:32:09.400Z 2026-02-27T18:53:38.099Z
CVE-2026-3289
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
Sanluan PublicCMS Template Cache Generation TemplateCa… Sanluan
 PublicCMS
 2026-02-27T04:32:10.857Z 2026-02-27T18:48:46.975Z
CVE-2026-3287
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
youlaitech youlai-mall App-side Product Pagination End… youlaitech
 youlai-mall
 2026-02-27T04:02:43.295Z 2026-02-27T18:50:33.929Z
CVE-2026-3286
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
itwanger paicoding Image Save Endpoint ImageRestContro… itwanger
 paicoding
 2026-02-27T03:32:43.266Z 2026-02-27T18:51:00.595Z
CVE-2026-3285
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
berry-lang berry be_lexer.c scan_string out-of-bounds berry-lang
 berry
 2026-02-27T03:02:13.772Z 2026-02-27T18:50:12.298Z
CVE-2026-3284
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
libvips extract.c vips_extract_area_build integer overflow n/a
 libvips
 2026-02-27T03:02:09.219Z 2026-02-27T18:49:42.929Z
CVE-2026-3283
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
libvips extract.c vips_extract_band_build out-of-bounds n/a
 libvips
 2026-02-27T02:32:12.328Z 2026-02-27T18:49:14.477Z
CVE-2026-3282
4.8 (4.0)
3.3 (3.1)
3.3 (3.0)
libvips unpremultiply.c vips_unpremultiply_build out-o… n/a
 libvips
 2026-02-27T02:32:09.109Z 2026-02-27T18:55:47.355Z
CVE-2026-3281
4.8 (4.0)
5.3 (3.1)
5.3 (3.0)
libvips bandrank.c vips_bandrank_build heap-based overflow n/a
 libvips
 2026-02-27T02:02:10.922Z 2026-02-27T18:56:21.995Z
CVE-2026-3270
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
psi-probe PSI Probe Whois Whois.java lookup server-sid… psi-probe
 PSI Probe
 2026-02-26T23:32:09.687Z 2026-02-27T19:55:03.743Z
CVE-2026-3269
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
psi-probe PSI Probe Session ExpireSessionsController.j… psi-probe
 PSI Probe
 2026-02-26T23:32:07.430Z 2026-02-27T19:57:57.822Z
CVE-2026-3268
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
psi-probe PSI Probe Session Attribute RemoveSessAttrib… psi-probe
 PSI Probe
 2026-02-26T23:02:08.067Z 2026-02-27T17:27:38.521Z
CVE-2026-3265
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Free-CRM Security API improper authorization go2ismail
 Free-CRM
 2026-02-26T22:32:08.486Z 2026-02-27T18:49:54.918Z
CVE-2026-3264
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Free-CRM Administrative redirect go2ismail
 Free-CRM
 2026-02-26T22:02:07.996Z 2026-02-27T20:02:33.352Z
ID Description Published Updated
fkie_cve-2026-1697 The Secure and SameSite attribute are missing in the GraphicalData web services and WebClient web a… 2026-02-26T08:16:19.620 2026-02-27T14:06:59.787
fkie_cve-2026-1696 Some HTTP security headers are not properly set by the web server when sending responses to the cli… 2026-02-26T08:16:19.323 2026-02-27T14:06:59.787
fkie_cve-2026-1695 An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and … 2026-02-26T08:16:19.063 2026-02-27T14:06:59.787
fkie_cve-2026-1694 HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the … 2026-02-26T08:16:18.763 2026-02-27T14:06:59.787
fkie_cve-2026-1693 The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservi… 2026-02-26T08:16:18.490 2026-02-27T14:06:59.787
fkie_cve-2026-1692 A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used… 2026-02-26T08:16:18.160 2026-02-27T14:06:59.787
fkie_cve-2026-1557 The WP Responsive Images plugin for WordPress is vulnerable to Path Traversal in all versions up to… 2026-02-26T02:16:19.990 2026-02-27T14:06:59.787
fkie_cve-2026-1311 The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, … 2026-02-26T05:17:41.933 2026-02-27T14:06:59.787
fkie_cve-2026-1198 SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window… 2026-02-26T12:15:58.550 2026-02-27T14:06:59.787
fkie_cve-2026-0542 ServiceNow has addressed a remote code execution vulnerability that was identified in the ServiceNo… 2026-02-25T21:16:36.147 2026-02-27T14:06:59.787
fkie_cve-2025-69771 An arbitrary file upload vulnerability in the subtitle loading function of asbplayer v1.13.0 allows… 2026-02-25T16:23:22.273 2026-02-27T14:06:59.787
fkie_cve-2025-64999 Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p… 2026-02-26T11:16:02.203 2026-02-27T14:06:59.787
fkie_cve-2025-1242 The administrative credentials can be extracted through application API responses, mobile applicati… 2026-02-25T16:23:20.930 2026-02-27T14:06:59.787
fkie_cve-2026-3293 A weakness has been identified in snowflakedb snowflake-jdbc up to 4.0.1. Impacted is the function … 2026-02-27T06:18:00.250 2026-02-27T14:06:37.987
fkie_cve-2026-3289 A weakness has been identified in Sanluan PublicCMS 6.202506.d. This impacts the function saveMetad… 2026-02-27T05:18:21.613 2026-02-27T14:06:37.987
fkie_cve-2026-3287 A security flaw has been discovered in youlaitech youlai-mall 2.0.0. This affects the function list… 2026-02-27T05:18:21.190 2026-02-27T14:06:37.987
fkie_cve-2026-3286 A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3. The impacted element … 2026-02-27T04:16:03.770 2026-02-27T14:06:37.987
fkie_cve-2026-3285 A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the functio… 2026-02-27T03:16:03.397 2026-02-27T14:06:37.987
fkie_cve-2026-3284 A vulnerability was found in libvips 8.19.0. Impacted is the function vips_extract_area_build of th… 2026-02-27T03:16:03.167 2026-02-27T14:06:37.987
fkie_cve-2026-3283 A vulnerability has been found in libvips 8.19.0. This issue affects the function vips_extract_band… 2026-02-27T03:16:02.940 2026-02-27T14:06:37.987
fkie_cve-2026-3282 A flaw has been found in libvips 8.19.0. This vulnerability affects the function vips_unpremultiply… 2026-02-27T03:16:02.713 2026-02-27T14:06:37.987
fkie_cve-2026-3281 A vulnerability was detected in libvips 8.19.0. This affects the function vips_bandrank_build of th… 2026-02-27T02:16:20.963 2026-02-27T14:06:37.987
fkie_cve-2026-3270 A vulnerability has been found in psi-probe PSI Probe up to 5.3.0. This affects the function lookup… 2026-02-27T00:16:58.930 2026-02-27T14:06:37.987
fkie_cve-2026-3269 A flaw has been found in psi-probe PSI Probe up to 5.3.0. The impacted element is the function hand… 2026-02-27T00:16:58.717 2026-02-27T14:06:37.987
fkie_cve-2026-3268 A vulnerability was detected in psi-probe PSI Probe up to 5.3.0. The affected element is an unknown… 2026-02-26T23:16:38.337 2026-02-27T14:06:37.987
fkie_cve-2026-3265 A vulnerability was identified in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1… 2026-02-26T23:16:38.120 2026-02-27T14:06:37.987
fkie_cve-2026-3264 A vulnerability was determined in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1… 2026-02-26T23:16:37.910 2026-02-27T14:06:37.987
fkie_cve-2026-3263 A vulnerability was found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250… 2026-02-26T22:20:52.207 2026-02-27T14:06:37.987
fkie_cve-2026-3262 A vulnerability has been found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.… 2026-02-26T22:20:51.980 2026-02-27T14:06:37.987
fkie_cve-2026-28364 In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime… 2026-02-27T04:16:03.410 2026-02-27T14:06:37.987
ID Severity Description Published Updated
ghsa-v9fg-3cr2-277j
9.0 (3.1)
Rust has Critical Stored XSS in Preview Modal, leading to Administrative Account Takeover 2026-02-25T23:00:18Z 2026-02-25T23:00:18Z
ghsa-mphv-75cg-56wg
4.1 (3.1)
LangChain Community: redirect chaining can lead to SSRF bypass via RecursiveUrlLoader 2026-02-25T22:59:48Z 2026-02-25T22:59:48Z
ghsa-mhr3-j7m5-c7c9
6.6 (3.1)
LangGraph: BaseCache Deserialization of Untrusted Data may lead to Remote Code Execution 2026-02-25T22:59:12Z 2026-02-25T22:59:12Z
ghsa-p2v6-84h2-5x4r
8.6 (3.1)
esm.sh has SSRF localhost/private-network bypass in `/http(s)` module route 2026-02-25T22:57:59Z 2026-02-25T22:57:59Z
ghsa-663h-2vr3-ghrj
7.4 (3.1)
yapi disables TLS/SSL certificate validation via rejectUnauthorized: false in Axios HTTPS agent 2026-02-23T18:32:02Z 2026-02-25T22:46:40Z
ghsa-x288-3778-4hhx
9.2 (4.0)
Angular SSR is vulnerable to SSRF and Header Injection via request handling pipeline 2026-02-25T22:42:36Z 2026-02-25T22:42:36Z
ghsa-xh43-g2fq-wjrj
6.9 (4.0)
Angular SSR has an Open Redirect via X-Forwarded-Prefix 2026-02-25T22:41:57Z 2026-02-25T22:41:57Z
ghsa-w5fh-f8xh-5x3p
8.1 (3.1)
RustFS: Missing Post Policy Validation leads to Arbitrary Object Write 2026-02-25T22:38:40Z 2026-02-25T22:38:40Z
ghsa-mw96-cpmx-2vgc
8.8 (4.0)
Rollup 4 has Arbitrary File Write via Path Traversal 2026-02-25T22:37:26Z 2026-02-25T22:37:26Z
ghsa-5rq4-664w-9x2c
9.1 (3.1)
Basic FTP has Path Traversal Vulnerability in its downloadToDir() method 2026-02-25T22:34:26Z 2026-02-25T22:34:26Z
ghsa-jm64-8m5q-4qh8
5.9 (3.1)
Astro has memory exhaustion DoS due to missing request body size limit in Server Actions 2026-02-25T22:33:13Z 2026-02-25T22:33:14Z
ghsa-76rv-2r9v-c5m6
4.3 (3.1)
zae-limiter: DynamoDB hot partition throttling enables per-entity Denial of Service 2026-02-25T22:31:10Z 2026-02-25T22:31:10Z
ghsa-rwv9-wgmx-5vq4
7.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 12.2 before 18.7.5, 18.8… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-rr3q-q2xp-f894
8.0 (3.1)
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with… 2026-02-25T21:31:18Z 2026-02-25T21:31:19Z
ghsa-qfj5-c4hr-4gr8
5.3 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that coul… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-pwm4-ghcj-9c94
7.3 (3.1)
5.5 (4.0)
A vulnerability was identified in z-9527 admin 1.0/2.0. The affected element is the function checkN… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-p743-h3f6-5f74
6.2 (3.1)
VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privil… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-j9jv-5q76-4q2h
6.5 (3.1)
An issue has been discovered in GitLab CE/EE affecting all versions from 11.2 before 18.7.5, 18.8 b… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-g3hq-7735-4x6v
4.3 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 17.7 before 18.7.5, 18.8… 2026-02-25T21:31:18Z 2026-02-25T21:31:19Z
ghsa-fww6-3c6x-rf7p
5.5 (3.1)
This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" w… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-8h66-rpjm-6pwc
9.2 (4.0)
ServiceNow has addressed a remote code execution vulnerability that was identified in the ServiceNo… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-8c9p-4w69-6q42
8.0 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 16.2 before 18.7.5, 18.8… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-845x-h4jv-2v89
7.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.4 before 18.7.5, 18.8… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-789c-mgqf-5hwx
8.1 (3.1)
Buffer overflow in parallel HNSW index build in pgvector 0.6.0 through 0.8.1 allows a database user… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-35pf-5r93-c5jc
7.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.2 before 18.7.5, 18.8 … 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-289q-cmj5-r43x
4.3 (3.1)
GitLab has remediated an issue in GitLab EE affecting all versions from 17.11 before 18.7.5, 18.8 b… 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-23hx-3f44-x72r
6.5 (3.1)
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 9.0 before 18.7.5, 18.8 … 2026-02-25T21:31:19Z 2026-02-25T21:31:19Z
ghsa-m8jj-q5xq-4qhp
7.5 (3.1)
Information disclosure due to uninitialized memory in Firefox and Firefox Focus for Android. This v… 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-j57x-8g4m-v9v5
7.5 (3.1)
Due to an improperly configured firewall rule, the router will accept any connection on the WAN por… 2026-02-25T18:31:38Z 2026-02-25T21:31:18Z
ghsa-hwjj-g6g7-p8cf
9.1 (3.1)
Uninitialized memory in the Graphics: Text component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ID Severity Description Package Published Updated
pysec-2024-79
8.8 (3.1)
An arbitrary code execution vulnerability exists in versions 23.10.5.0 up to 24.7.4.1 of … mindsdb 2024-09-12T13:15:00+00:00 2024-09-16T19:20:04.841635+00:00
pysec-2024-78
8.8 (3.1)
An arbitrary code execution vulnerability exists in versions 23.12.4.0 up to 24.7.4.1 of … mindsdb 2024-09-12T13:15:00+00:00 2024-09-16T19:20:04.697678+00:00
pysec-2024-77
8.8 (3.1)
An arbitrary code execution vulnerability exists in versions 23.10.3.0 up to 24.7.4.1 of … mindsdb 2024-09-12T13:15:00+00:00 2024-09-16T19:20:04.616691+00:00
pysec-2024-76
7.5 (3.1)
An XML External Entity (XXE) vulnerability in the ebookmeta.get_metadata function of eboo… ebookmeta 2024-06-07T19:15:00+00:00 2024-09-13T21:22:04.531357+00:00
pysec-2024-75
6.1 (3.1)
Twisted is an event-based framework for internet applications, supporting Python 3.6+. Th… twisted 2024-07-29T16:15:00+00:00 2024-09-11T19:19:18.005250+00:00
pysec-2024-71
7.5 (3.1)
A vulnerability in corydolphin/flask-cors up to version 4.0.1 allows the `Access-Control-… flask-cors 2024-08-18T19:15:00Z 2024-09-09T07:59:30.591275Z
pysec-2024-74
9.1 (3.1)
MindsDB is a platform for building artificial intelligence from enterprise data. Prior to… mindsdb 2024-09-05T17:15:00+00:00 2024-09-06T15:22:53.971446+00:00
pysec-2024-73
9.1 (3.1)
A vulnerability in the JSON file handling of gaizhenbiao/chuanhuchatgpt version 20240410 … chuanhuchatgpt 2024-07-31T01:15:00+00:00 2024-08-27T15:22:40.259109+00:00
pysec-2024-70
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. QuerySet.values… django 2024-08-07T15:15:00+00:00 2024-08-07T17:22:10.804411+00:00
pysec-2024-69
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize and … django 2024-08-07T15:15:00+00:00 2024-08-07T17:22:10.745844+00:00
pysec-2024-68
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The urlize() an… django 2024-08-07T15:15:00+00:00 2024-08-07T17:22:10.682679+00:00
pysec-2024-67
An issue was discovered in Django 5.0 before 5.0.8 and 4.2 before 4.2.15. The floatformat… django 2024-08-07T15:15:00+00:00 2024-08-07T17:22:10.613440+00:00
pysec-2024-66
7.8 (3.1)
dbt enables data analysts and engineers to transform their data using the same practices … dbt-core 2024-07-16T23:15:00+00:00 2024-07-19T17:21:49.664320+00:00
pysec-2024-65
Roundup before 2.4.0 allows XSS via JavaScript in PDF, XML, and SVG documents. roundup 2024-07-17T20:15:00+00:00 2024-07-17T23:22:05.024899+00:00
pysec-2024-64
Roundup before 2.4.0 allows XSS via a SCRIPT element in an HTTP Referer header. roundup 2024-07-17T20:15:00+00:00 2024-07-17T23:22:04.987078+00:00
pysec-2024-63
In Roundup before 2.4.0, classhelpers (_generic.help.html) allow XSS. roundup 2024-07-17T20:15:00+00:00 2024-07-17T23:22:04.949977+00:00
pysec-2024-62
Versions of the package langchain-experimental from 0.0.15 and before 0.0.21 are vulnerab… langchain-experimental 2024-07-15T05:15:00+00:00 2024-07-15T11:19:36.686972+00:00
pysec-2024-61
6.1 (3.1)
A Stored Cross-Site Scripting (XSS) vulnerability exists in gaizhenbiao/chuanhuchatgpt ve… chuanhuchatgpt 2024-07-11T11:15:00+00:00 2024-07-12T21:33:00.657381+00:00
pysec-2024-60
7.5 (3.1)
A vulnerability was identified in the kjd/idna library, specifically within the `idna.enc… idna 2024-07-07T18:15:00+00:00 2024-07-11T17:21:37.216928+00:00
pysec-2024-59
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. get_supported_l… django 2024-07-10T05:15:00+00:00 2024-07-10T11:20:07.800540+00:00
pysec-2024-58
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. Derived classes… django 2024-07-10T05:15:00+00:00 2024-07-10T11:20:07.704786+00:00
pysec-2024-57
An issue was discovered in Django 5.0 before 5.0.7 and 4.2 before 4.2.14. The django.cont… django 2024-07-10T05:15:00+00:00 2024-07-10T11:20:07.604887+00:00
pysec-2024-56
An issue was discovered in Django 4.2 before 4.2.14 and 5.0 before 5.0.7. urlize and urli… django 2024-07-10T05:15:00+00:00 2024-07-10T11:20:07.495359+00:00
pysec-2024-54
6.5 (3.1)
CodeChecker is an analyzer tooling, defect database and viewer extension for the Clang St… codechecker 2024-06-24T18:15:00+00:00 2024-06-26T19:19:24.981233+00:00
pysec-2024-53
langchain_experimental (aka LangChain Experimental) before 0.0.61 for LangChain provides … langchain-experimental 2024-06-16T15:15:00+00:00 2024-06-16T17:20:32.187558+00:00
pysec-2024-52
lepture Authlib before 1.3.1 has algorithm confusion with asymmetric public keys. Unless … authlib 2024-06-09T19:15:00+00:00 2024-06-09T21:20:21.309692+00:00
pysec-2024-51
A broken access control vulnerability exists in mlflow/mlflow versions before 2.10.1, whe… mlflow 2024-05-16T09:15:00+00:00 2024-05-16T11:19:52.866536+00:00
pysec-2024-50
Synapse is an open-source Matrix homeserver. A remote Matrix user with malicious intent, … matrix-synapse 2024-04-23T18:15:00+00:00 2024-04-23T21:18:51.688096+00:00
pysec-2023-260
6.1 (3.1)
A reflected Cross-Site Scripting (XSS) vulnerability exists in the mlflow/mlflow reposito… mlflow 2023-12-07T05:15:00+00:00 2024-04-16T15:20:55.191003+00:00
pysec-2024-49
Lektor before 3.3.11 does not sanitize DB path traversal. Thus, shell commands might be e… lektor 2024-03-27T06:15:00+00:00 2024-03-27T11:18:36.506150+00:00
ID Description Type
ID Description Updated
gsd-2024-33255 Jerryscript commit cefd391 was discovered to contain an Assertion Failure via ECMA_STRING… 2024-04-24T05:02:09.756677Z
gsd-2024-33275 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.756484Z
gsd-2024-33096 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.756284Z
gsd-2024-33168 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.756074Z
gsd-2024-33100 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.755796Z
gsd-2024-33431 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.755593Z
gsd-2024-33143 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.755388Z
gsd-2024-33190 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.755195Z
gsd-2024-33251 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.755000Z
gsd-2024-33134 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.754805Z
gsd-2024-33118 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.754600Z
gsd-2024-33128 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.754393Z
gsd-2024-33068 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.754188Z
gsd-2024-33421 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.753988Z
gsd-2024-33368 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.753782Z
gsd-2024-33464 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.753578Z
gsd-2024-33439 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.753324Z
gsd-2024-33258 Jerryscript commit ff9ff8f was discovered to contain a segmentation violation via the com… 2024-04-24T05:02:09.753118Z
gsd-2024-33208 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.752907Z
gsd-2024-33229 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.752692Z
gsd-2024-33090 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.752483Z
gsd-2024-33390 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.752268Z
gsd-2024-33361 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.752033Z
gsd-2024-33287 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.751819Z
gsd-2024-33450 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.751570Z
gsd-2024-33125 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.749323Z
gsd-2024-33188 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.749121Z
gsd-2024-33486 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.748923Z
gsd-2024-33215 Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu… 2024-04-24T05:02:09.748476Z
gsd-2024-33192 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.748196Z
ID Description Published Updated
mal-2026-523 Malicious code in mapkit-example-svelte (npm) 2026-01-27T02:25:01Z 2026-02-02T05:56:28Z
mal-2026-522 Malicious code in magento-coding-standard-eslint-plugin (npm) 2026-01-27T02:25:01Z 2026-02-02T05:56:28Z
mal-2026-609 Malicious code in euskalplantxa (npm) 2026-01-30T15:31:12Z 2026-02-02T05:56:27Z
mal-2026-608 Malicious code in ezviz-shop-mall (npm) 2026-01-30T13:08:07Z 2026-02-02T05:56:27Z
mal-2026-605 Malicious code in dhgshop (npm) 2026-01-29T15:50:42Z 2026-02-02T05:56:27Z
mal-2026-589 Malicious code in dotenv-embed (npm) 2026-01-28T14:56:54Z 2026-02-02T05:56:27Z
mal-2026-569 Malicious code in ern-picking2-api (npm) 2026-01-28T07:48:24Z 2026-02-02T05:56:27Z
mal-2026-568 Malicious code in equimper (npm) 2026-01-28T07:43:53Z 2026-02-02T05:56:27Z
mal-2026-567 Malicious code in debug-glitz (npm) 2026-01-28T07:37:08Z 2026-02-02T05:56:27Z
mal-2026-566 Malicious code in debug-fmt (npm) 2026-01-28T07:37:08Z 2026-02-02T05:56:27Z
mal-2026-556 Malicious code in digital-music-dynmsg-ribbon (npm) 2026-01-28T06:52:12Z 2026-02-02T05:56:27Z
mal-2026-551 Malicious code in express-lists-routes (npm) 2026-01-28T03:26:59Z 2026-02-02T05:56:27Z
mal-2026-531 Malicious code in hackerxhj (npm) 2026-01-27T08:09:00Z 2026-02-02T05:56:27Z
mal-2026-530 Malicious code in grepleaks (npm) 2026-01-27T08:09:32Z 2026-02-02T05:56:27Z
mal-2026-529 Malicious code in fileupload-core (npm) 2026-01-27T07:56:49Z 2026-02-02T05:56:27Z
mal-2026-521 Malicious code in hammer-jquery (npm) 2026-01-27T02:25:01Z 2026-02-02T05:56:27Z
mal-2026-520 Malicious code in ftm-noderpc (npm) 2026-01-27T02:44:52Z 2026-02-02T05:56:27Z
mal-2026-588 Malicious code in chai-sub (npm) 2026-01-28T14:53:28Z 2026-02-02T05:56:26Z
mal-2026-587 Malicious code in chai-px (npm) 2026-01-28T14:48:04Z 2026-02-02T05:56:26Z
mal-2026-586 Malicious code in chai-chains-async (npm) 2026-01-28T14:46:57Z 2026-02-02T05:56:26Z
mal-2026-585 Malicious code in chai-async-tests (npm) 2026-01-28T14:56:54Z 2026-02-02T05:56:26Z
mal-2026-584 Malicious code in chai-as-extended (npm) 2026-01-28T15:06:22Z 2026-02-02T05:56:26Z
mal-2026-565 Malicious code in converse-rn-lib (npm) 2026-01-28T07:50:39Z 2026-02-02T05:56:26Z
mal-2026-564 Malicious code in chai-as-hashed (npm) 2026-01-28T07:53:44Z 2026-02-02T05:56:26Z
mal-2026-555 Malicious code in acuitymobileapp (npm) 2026-01-28T07:13:15Z 2026-02-02T05:56:26Z
mal-2026-550 Malicious code in cdnhost (npm) 2026-01-28T03:21:37Z 2026-02-02T05:56:26Z
mal-2026-549 Malicious code in blockchain-helper-lib (npm) 2026-01-28T03:20:46Z 2026-02-02T05:56:26Z
mal-2026-508 Malicious code in cartos-dds-ui (npm) 2026-01-26T16:41:17Z 2026-02-02T05:56:26Z
mal-2026-578 Malicious code in @pukpuk1/somsodamsd (npm) 2026-01-28T13:59:24Z 2026-02-02T05:56:25Z
mal-2026-563 Malicious code in @nayzak51/primebeem-db (npm) 2026-01-28T07:27:26Z 2026-02-02T05:56:25Z
ID Description Published Updated
wid-sec-w-2025-2339 ImageMagick (BMP decoder): Schwachstelle ermöglicht Denial of Service 2025-10-19T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1981 ImageMagick (MagickCore blob): Schwachstelle ermöglicht Codeausführung 2025-09-04T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1906 ImageMagick: Mehrere Schwachstellen 2025-08-25T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1637 GNU libc: Schwachstelle ermöglicht unspezifischen Angriff 2025-07-23T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1593 Grafana: Mehrere Schwachstellen 2025-07-17T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1327 Grafana: Schwachstelle ermöglicht Offenlegung von Informationen 2025-06-15T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-1089 GNU libc: Schwachstelle ermöglicht Codeausführung 2025-05-18T22:00:00.000+00:00 2025-12-18T23:00:00.000+00:00
wid-sec-w-2025-2880 Mattermost Server und Desktop: Mehrere Schwachstellen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2878 M-Files Server: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2877 FreeRDP: Schwachstelle ermöglicht Denial of Service 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2876 HCL BigFix Remote Control: Mehrere Schwachstellen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2875 KeePassXC-Browser: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2874 FreeBSD Project FreeBSD OS: Mehrere Schwachstellen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2872 Drupal HTTP Client Manager: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2870 Cisco AsyncOS für Secure Email Gateway: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten 2025-12-17T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2860 JetBrains TeamCity: Mehrere Schwachstellen 2025-12-16T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2847 Autodesk AutoCAD: Mehrere Schwachstellen 2025-12-15T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2838 Apple macOS: Mehrere Schwachstellen 2025-12-14T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2837 Apple Safari: Mehrere Schwachstellen 2025-12-14T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2743 Checkmk: Schwachstelle ermöglicht Offenlegung von Informationen 2025-12-04T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2711 Android Patchday Dezember 2025: Mehrere Schwachstellen 2025-12-01T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2533 RedHat Multicluster Engine for Kubernetes: Schwachstelle ermöglicht Privilegieneskalation 2025-11-09T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2462 Microsoft Edge: Schwachstelle ermöglicht Codeausführung 2025-11-02T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2325 xpdf: Schwachstelle ermöglicht Denial of Service 2025-10-16T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-1996 VMware Tanzu Spring Cloud: Schwachstelle ermöglicht Manipulation von Daten 2025-09-08T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-1468 Apache Tomcat: Mehrere Schwachstellen ermöglichen Denial of Service 2025-07-07T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-0861 Linux Kernel: Mehrere Schwachstellen 2025-04-21T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-0837 Linux Kernel: Mehrere Schwachstellen ermöglichen Denial of Service 2025-04-15T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-0831 Linux Kernel: Schwachstelle ermöglicht Denial of Service 2025-04-15T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-0639 Icinga: Mehrere Schwachstellen 2025-03-25T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
ID Description Published Updated
ncsc-2024-0340 Kwetsbaarheid verholpen in Ivanti Virtual Traffic Manager 2024-08-14T09:48:46.175634Z 2024-09-03T11:19:00.763993Z
ncsc-2024-0357 Kwetsbaarheden verholpen in Zyxel Flex en USG Firewalls 2024-09-03T09:51:27.134213Z 2024-09-03T09:51:27.134213Z
ncsc-2024-0356 Kwetsbaarheid verholpen in Zyxel Access Points en Secure Routers 2024-09-03T09:45:01.012004Z 2024-09-03T09:45:01.012004Z
ncsc-2024-0355 Kwetsbaarheden verholpen in Progress WhatsUp Gold 2024-08-30T13:44:34.239519Z 2024-09-02T11:51:17.688561Z
ncsc-2024-0354 Kwetsbaarheden verholpen in Progress WS_FTP server 2024-08-30T13:42:50.517100Z 2024-08-30T13:42:50.517100Z
ncsc-2024-0334 Kwetsbaarheden verholpen in Microsoft Windows 2024-08-13T18:19:27.728322Z 2024-08-27T07:59:08.391850Z
ncsc-2024-0351 Kwetsbaarheden verholpen in Google Chrome, Chromium & Microsoft Edge 2024-08-22T11:42:49.629133Z 2024-08-23T12:59:41.787815Z
ncsc-2024-0352 Kwetsbaarheden verholpen in Solarwinds Web Helpdesk 2024-08-22T13:05:56.658579Z 2024-08-22T13:05:56.658579Z
ncsc-2024-0350 Kwetsbaarheden verholpen in GitHub Enterprise Server 2024-08-22T11:40:38.472495Z 2024-08-22T11:40:38.472495Z
ncsc-2024-0349 Kwetsbaarheid verholpen in Kubernetes 2024-08-19T11:37:30.925578Z 2024-08-19T11:37:30.925578Z
ncsc-2024-0348 Kwetsbaarheden verholpen in Adobe Commerce en Magento 2024-08-14T12:58:38.046219Z 2024-08-14T12:58:38.046219Z
ncsc-2024-0347 Kwetsbaarheden verholpen in Adobe Acrobat en Acrobat Reader 2024-08-14T12:52:29.316273Z 2024-08-14T12:52:29.316273Z
ncsc-2024-0346 Kwetsbaarheden verholpen in Adobe InDesign 2024-08-14T12:47:08.240249Z 2024-08-14T12:47:08.240249Z
ncsc-2024-0345 Kwetsbaarheid verholpen in Adobe Photoshop 2024-08-14T12:44:49.541083Z 2024-08-14T12:44:49.541083Z
ncsc-2024-0344 Kwetsbaarheden verholpen in Adobe Dimension 2024-08-14T12:42:00.097800Z 2024-08-14T12:42:00.097800Z
ncsc-2024-0343 Kwetsbaarheden verholpen in Adobe Illustrator 2024-08-14T12:38:58.918490Z 2024-08-14T12:38:58.918490Z
ncsc-2024-0342 Kwetsbaarheden verholpen in Ivanti Avalanche 2024-08-14T09:56:40.653912Z 2024-08-14T09:56:40.653912Z
ncsc-2024-0341 Kwetsbaarheden verholpen in Ivanti Neurons for ITSM 2024-08-14T09:54:26.701111Z 2024-08-14T09:54:26.701111Z
ncsc-2024-0339 Kwetsbaarheden verholpen in Microsoft Mariner 2024-08-13T18:23:22.271316Z 2024-08-13T18:23:22.271316Z
ncsc-2024-0338 Kwetsbaarheden verholpen in Microsoft Dynamics 2024-08-13T18:22:21.160613Z 2024-08-13T18:22:21.160613Z
ncsc-2024-0337 Kwetsbaarheden verholpen in Microsoft Office 2024-08-13T18:21:45.385690Z 2024-08-13T18:21:45.385690Z
ncsc-2024-0336 Kwetsbaarheden verholpen in Microsoft Developer Tools 2024-08-13T18:21:06.220640Z 2024-08-13T18:21:06.220640Z
ncsc-2024-0335 Kwetsbaarheden verholpen in Microsoft Azure componenten 2024-08-13T18:20:23.647785Z 2024-08-13T18:20:23.647785Z
ncsc-2024-0333 Kwetsbaarheden verholpen in SAP producten 2024-08-13T13:47:02.764070Z 2024-08-13T13:47:02.764070Z
ncsc-2024-0332 Kwetsbaarheden verholpen in Siemens producten 2024-08-13T09:21:28.381575Z 2024-08-13T09:21:28.381575Z
ncsc-2024-0331 Kwetsbaarheden verholpen in Zabbix 2024-08-12T10:34:15.273912Z 2024-08-12T10:34:15.273912Z
ncsc-2024-0330 Kwetsbaarheid verholpen in Asterisk 2024-08-12T10:31:33.788930Z 2024-08-12T10:31:33.788930Z
ncsc-2024-0329 Kwetsbaarheden verholpen in GitLab Enterprise Edition en Community Edition 2024-08-12T08:24:49.808846Z 2024-08-12T08:24:49.808846Z
ncsc-2024-0328 Kwetsbaarheden verholpen in IBM InfoSphere 2024-08-12T08:22:38.701674Z 2024-08-12T08:22:38.701674Z
ncsc-2024-0327 Kwetsbaarheden verholpen in Cisco Small Business IP Phones 2024-08-08T08:01:30.827296Z 2024-08-08T08:01:30.827296Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2025:3439 Red Hat Security Advisory: ACS 4.6 enhancement and security update 2025-04-01T04:55:49+00:00 2026-02-17T07:58:30+00:00
rhsa-2025:3437 Red Hat Security Advisory: ACS 4.5 enhancement and security update 2025-04-01T04:50:24+00:00 2026-02-17T07:58:30+00:00
rhsa-2025:3438 Red Hat Security Advisory: ACS 4.7 enhancement and security update 2025-04-01T04:50:23+00:00 2026-02-17T07:58:29+00:00
rhsa-2025:3411 Red Hat Security Advisory: opentelemetry-collector security update 2025-03-31T14:36:15+00:00 2026-02-17T07:58:27+00:00
rhsa-2025:3406 Red Hat Security Advisory: python-jinja2 security update 2025-03-31T14:03:55+00:00 2026-02-17T07:58:27+00:00
rhsa-2025:3371 Red Hat Security Advisory: Red Hat OpenStack Platform 17.1 (openstack-ansible-core) security update 2025-03-27T18:40:48+00:00 2026-02-17T07:58:27+00:00
rhsa-2025:3388 Red Hat Security Advisory: python-jinja2 security update 2025-03-31T02:09:23+00:00 2026-02-17T07:58:25+00:00
rhsa-2025:3344 Red Hat Security Advisory: grafana security update 2025-03-27T15:46:43+00:00 2026-02-17T07:58:21+00:00
rhsa-2025:3336 Red Hat Security Advisory: podman security update 2025-03-27T15:01:22+00:00 2026-02-17T07:58:20+00:00
rhsa-2025:3335 Red Hat Security Advisory: opentelemetry-collector security update 2025-03-27T15:00:22+00:00 2026-02-17T07:58:20+00:00
rhsa-2025:3301 Red Hat Security Advisory: OpenShift Container Platform 4.16.38 bug fix and security update 2025-04-03T00:21:28+00:00 2026-02-17T07:58:14+00:00
rhsa-2025:3268 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T14:31:13+00:00 2026-02-17T07:58:14+00:00
rhsa-2025:3266 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T14:25:08+00:00 2026-02-17T07:58:14+00:00
rhsa-2025:3210 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-26T02:19:46+00:00 2026-02-17T07:58:12+00:00
rhsa-2025:3186 Red Hat Security Advisory: podman security update 2025-03-25T20:42:41+00:00 2026-02-17T07:58:12+00:00
rhsa-2025:3185 Red Hat Security Advisory: gvisor-tap-vsock security update 2025-03-25T20:37:10+00:00 2026-02-17T07:58:12+00:00
rhsa-2025:3184 Red Hat Security Advisory: podman security update 2025-03-25T20:36:10+00:00 2026-02-17T07:58:12+00:00
rhsa-2025:3175 Red Hat Security Advisory: container-tools:rhel8 security update 2025-03-25T18:12:58+00:00 2026-02-17T07:57:52+00:00
rhsa-2025:3172 Red Hat Security Advisory: VolSync 0.12.1 security fixes and enhancements for RHEL 9 2025-03-25T19:58:29+00:00 2026-02-17T07:57:50+00:00
rhsa-2025:3165 Red Hat Security Advisory: podman security update 2025-03-25T14:24:49+00:00 2026-02-17T07:57:47+00:00
rhsa-2025:3162 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Container Release Update 2025-03-25T17:10:27+00:00 2026-02-17T07:57:42+00:00
rhsa-2025:3124 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Container Release Update 2025-03-24T23:57:44+00:00 2026-02-17T07:57:19+00:00
rhsa-2025:3160 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.5 Product Security and Bug Fix Update 2025-03-25T12:26:53+00:00 2026-02-17T07:57:14+00:00
rhsa-2025:3123 Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update 2025-03-24T17:53:25+00:00 2026-02-17T07:57:13+00:00
rhsa-2025:3113 Red Hat Security Advisory: fence-agents security update 2025-03-24T14:13:20+00:00 2026-02-17T07:57:08+00:00
rhsa-2025:3111 Red Hat Security Advisory: fence-agents security update 2025-03-24T10:53:59+00:00 2026-02-17T07:57:07+00:00
rhsa-2025:3068 Red Hat Security Advisory: OpenShift Container Platform 4.18.6 packages and security update 2025-03-25T07:18:49+00:00 2026-02-17T07:57:03+00:00
rhsa-2025:3066 Red Hat Security Advisory: OpenShift Container Platform 4.18.6 bug fix and security update 2025-03-25T06:59:06+00:00 2026-02-17T07:57:03+00:00
rhsa-2025:3061 Red Hat Security Advisory: OpenShift Container Platform 4.17.22 packages and security update 2025-03-27T01:12:40+00:00 2026-02-17T07:57:02+00:00
rhsa-2025:3059 Red Hat Security Advisory: OpenShift Container Platform 4.17.22 bug fix and security update 2025-03-26T21:49:54+00:00 2026-02-17T07:56:58+00:00
ID Description Published Updated
icsa-11-119-01 7-Technologies IGSS ODBC Remote Stack Overflow 2011-01-30T07:00:00.000000Z 2025-06-09T17:27:17.552804Z
icsa-11-094-01 Wonderware InBatch Client ActiveX Buffer Overflow 2011-01-05T07:00:00.000000Z 2025-06-09T17:27:11.317840Z
icsa-11-082-01 Ecava IntegraXor SQL 2011-12-24T07:00:00.000000Z 2025-06-09T17:27:05.078770Z
icsa-11-074-01 WellinTech KingView 6.53 KVWebSvr ActiveX 2011-12-16T07:00:00.000000Z 2025-06-09T17:26:58.846835Z
icsa-11-069-01b Samsung Data Management Server (Update B) 2011-12-11T07:00:00.000000Z 2025-06-09T17:26:52.608805Z
icsa-11-018-02 7-Technologies IGSS 8 ODBC Server Remote Heap Corruption 2011-10-21T06:00:00.000000Z 2025-06-09T17:26:46.401729Z
icsa-11-017-02 Sielco Sistemi WinLog Stack Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:40.152728Z
icsa-11-017-01 WellinTech Kingview 6.53 Remote Heap Overflow 2011-10-20T06:00:00.000000Z 2025-06-09T17:26:33.851054Z
icsa-16-278-02 Beckhoff Embedded PC Images and TwinCAT Components Vulnerabilities 2016-07-08T06:00:00.000000Z 2025-06-09T17:26:21.351731Z
icsa-16-278-01 INDAS Web SCADA Path Traversal Vulnerability 2016-07-08T06:00:00.000000Z 2025-06-09T17:26:15.107305Z
icsa-16-273-01 American Auto-Matrix Front-End Solutions Vulnerabilities 2016-07-03T06:00:00.000000Z 2025-06-09T17:26:02.661948Z
icsa-16-271-01 Siemens SCALANCE M-800/S615 Web Vulnerability 2016-07-01T06:00:00.000000Z 2025-06-09T17:25:56.431711Z
icsa-16-264-01 Moxa Active OPC Server Unquoted Service Path Escalation Vulnerability 2016-06-24T06:00:00.000000Z 2025-06-09T17:25:49.863879Z
icsa-16-259-03 Trane Tracer SC Sensitive Information Exposure Vulnerability 2016-06-19T06:00:00.000000Z 2025-06-09T17:25:43.638859Z
icsa-16-259-02 ABB DataManagerPro Credential Management Vulnerability 2016-06-19T06:00:00.000000Z 2025-06-09T17:25:37.418487Z
icsa-16-259-01 Yokogawa STARDOM Authentication Bypass Vulnerability 2016-06-19T06:00:00.000000Z 2025-06-09T17:25:31.208192Z
icsa-16-252-01 GE Bently Nevada 3500/22M Improper Authorization Vulnerability 2016-06-12T06:00:00.000000Z 2025-06-09T17:25:24.979586Z
icsa-16-250-01 Siemens SIPROTEC 4 and SIPROTEC Compact Vulnerabilities 2016-06-10T06:00:00.000000Z 2025-06-09T17:25:06.309002Z
icsa-16-236-01a Moxa OnCell Vulnerabilities (Update A) 2016-05-27T06:00:00.000000Z 2025-06-09T17:24:47.614316Z
icsa-16-224-02a Rockwell Automation RSLogix 500 and RSLogix Micro File Parser Buffer Overflow Vulnerability (Update A) 2016-05-15T06:00:00.000000Z 2025-06-09T17:24:28.897472Z
icsa-16-224-01 Rockwell Automation MicroLogix 1400 SNMP Credentials Vulnerability 2016-05-15T06:00:00.000000Z 2025-06-09T17:24:22.668983Z
icsa-16-215-02a Siemens SINEMA Server Privilege Escalation Vulnerability (Update A) 2016-05-06T06:00:00.000000Z 2025-06-09T17:24:16.438062Z
icsa-16-215-01 Moxa SoftCMS SQL Injection Vulnerability 2016-05-06T06:00:00.000000Z 2025-06-09T17:24:09.907471Z
icsa-16-208-03 Siemens SINEMA Remote Connect Server Cross-site Scripting Vulnerability 2016-04-29T06:00:00.000000Z 2025-06-09T17:24:03.623977Z
icsa-16-208-02 Siemens SIMATIC NET PC-Software Denial-of-Service Vulnerability 2016-04-29T06:00:00.000000Z 2025-06-09T17:23:57.388610Z
icsa-16-196-03 Schneider Electric SoMachine HVAC Unsafe ActiveX Control Vulnerability 2016-04-17T06:00:00.000000Z 2025-06-09T17:23:38.592319Z
icsa-16-196-02 Moxa MGate Authentication Bypass Vulnerability 2016-04-17T06:00:00.000000Z 2025-06-09T17:23:32.371585Z
icsa-16-194-02 GE Proficy HMI SCADA CIMPLICITY Privilege Management Vulnerability 2016-04-15T06:00:00.000000Z 2025-06-09T17:23:26.098354Z
icsa-16-194-01 Tollgrade Smart Grid EMS LightHouse Vulnerabilities 2016-04-15T06:00:00.000000Z 2025-06-09T17:23:07.404201Z
icsa-16-189-02 Moxa Device Server Web Console Authorization Bypass Vulnerability 2016-04-10T06:00:00.000000Z 2025-06-09T17:23:01.168936Z
ID Description Published Updated
cisco-sa-ap-cli-dos-tc2ekepu Cisco Access Point Software Denial of Service Vulnerability 2023-03-22T16:00:00+00:00 2023-03-22T16:00:00+00:00
cisco-sa-ap-assoc-dos-d2sunwk2 Cisco Access Point Software Association Request Denial of Service Vulnerability 2023-03-22T16:00:00+00:00 2023-03-22T16:00:00+00:00
cisco-sa-aironetap-cmdinj-6bjt4fl8 Cisco Access Point Software Command Injection Vulnerability 2023-03-22T16:00:00+00:00 2023-03-22T16:00:00+00:00
cisco-sa-ip-phone-cmd-inj-kmfynvcp Cisco IP Phone 6800, 7800, and 8800 Series Web UI Vulnerabilities 2023-03-01T16:00:00+00:00 2023-03-20T20:45:17+00:00
cisco-sa-bfd-xmrescbt Cisco IOS XR Software for ASR 9000 Series Routers Bidirectional Forwarding Detection Denial of Service Vulnerability 2023-03-08T16:00:00+00:00 2023-03-08T16:00:00+00:00
cisco-sa-roomos-dkjgfgrk Cisco TelePresence Collaboration Endpoint and RoomOS Software Vulnerabilities 2023-01-11T16:00:00+00:00 2023-03-07T14:21:36+00:00
cisco-sa-finesse-proxy-dos-vy5dqhrv Cisco Finesse Reverse Proxy VPN-less Access to Finesse Desktop Denial of Service Vulnerability 2023-03-01T16:00:00+00:00 2023-03-02T20:35:00+00:00
cisco-sa-webex-xss-yn8hhsmj Cisco Webex App for Web Cross-Site Scripting Vulnerability 2023-03-01T16:00:00+00:00 2023-03-01T16:00:00+00:00
cisco-sa-cuic-infodisc-ssrf-84zbmwvk Cisco Unified Intelligence Center Vulnerabilities 2023-03-01T16:00:00+00:00 2023-03-01T16:00:00+00:00
cisco-sa-webex-app-qrto6yc2 Cisco Webex Meetings App Character Interface Manipulation Vulnerability 2022-09-07T16:00:00+00:00 2023-02-24T15:40:30+00:00
cisco-sa-nxos-x509v3-unsupportedconfig-scrtabuk Cisco NX-OS Software SSH X.509v3 Certificate Authentication with Unsupported Remote Authorization Method Privilege Escalation Issues 2023-02-22T16:00:00+00:00 2023-02-22T16:00:00+00:00
cisco-sa-nxos-cli-cmdinject-euqvk9u Cisco NX-OS Software CLI Command Injection Vulnerability 2023-02-22T16:00:00+00:00 2023-02-22T16:00:00+00:00
cisco-sa-nxfp-cmdinj-xxbzjtr Cisco Firepower 4100 Series, Firepower 9300 Security Appliances, and UCS Fabric Interconnects Command Injection Vulnerability 2023-02-22T16:00:00+00:00 2023-02-22T16:00:00+00:00
cisco-sa-elyfex-dos-gfvcbyx Cisco Nexus 9300-FX3 Series Fabric Extender for UCS Fabric Interconnects Authentication Bypass Vulnerability 2023-02-22T16:00:00+00:00 2023-02-22T16:00:00+00:00
cisco-sa-aci-lldp-dos-yscnzopx Cisco Nexus 9000 Series Fabric Switches in ACI Mode Link Layer Discovery Protocol Memory Leak Denial of Service Vulnerability 2023-02-22T16:00:00+00:00 2023-02-22T16:00:00+00:00
cisco-sa-clamav-q8dthcy ClamAV HFS+ Partition Scanning Buffer Overflow Vulnerability Affecting Cisco Products: February 2023 2023-02-15T16:00:00+00:00 2023-02-22T14:09:19+00:00
cisco-sa-esa-sma-privesc-9dvkfpj8 Cisco Email Security Appliance and Cisco Secure Email and Web Manager Vulnerabilities 2023-02-15T16:00:00+00:00 2023-02-16T17:32:38+00:00
cisco-sa-clamav-xxe-tcszduhn ClamAV DMG File Parsing XML Entity Expansion Vulnerability Affecting Cisco Products: February 2023 2023-02-15T16:00:00+00:00 2023-02-15T20:15:58+00:00
cisco-sa-nexus-dashboard-xss-xc5bcgsq Cisco Nexus Dashboard Cross-Site Scripting Vulnerability 2023-02-15T16:00:00+00:00 2023-02-15T16:00:00+00:00
cisco-sa-ndb-dnsdos-bysczosu Cisco Nexus Dashboard Denial of Service Vulnerability 2023-02-15T16:00:00+00:00 2023-02-15T16:00:00+00:00
cisco-sa-ise-xss-ubfhg75c Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability 2023-02-15T16:00:00+00:00 2023-02-15T16:00:00+00:00
cisco-sa-esa-url-bypass-wbmqqnjh Cisco Email Security Appliance URL Filtering Bypass Vulnerability 2023-01-18T16:00:00+00:00 2023-02-13T15:30:30+00:00
cisco-sa-java-spring-rce-zx9guc67 Vulnerability in Spring Framework Affecting Cisco Products: March 2022 2022-04-01T23:45:00+00:00 2023-02-09T15:14:14+00:00
cisco-sa-bw-dos-hpkeyzp Cisco BroadWorks Application Delivery Platform and Xtended Services Platform Denial of Service Vulnerability 2023-01-11T16:00:00+00:00 2023-02-06T18:20:29+00:00
cisco-sa-nso-path-trvsl-zjbemkzg Cisco Network Services Orchestrator Path Traversal Vulnerability 2023-01-11T16:00:00+00:00 2023-02-03T17:57:30+00:00
cisco-sa-ise-xxe-inj-gecehy58 Cisco Identity Services Engine XML External Entity Injection Vulnerability 2023-02-01T16:00:00+00:00 2023-02-02T14:24:08+00:00
cisco-sa-sb-rv-afu-exxwa65v Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Arbitrary File Upload Vulnerability 2023-02-01T16:00:00+00:00 2023-02-01T16:00:00+00:00
cisco-sa-ise-os-injection-pxhksdm Cisco Identity Services Engine Privilege Escalation Vulnerabilities 2023-02-01T16:00:00+00:00 2023-02-01T16:00:00+00:00
cisco-sa-cisco-pi-xss-pu6dnfd9 Cisco Prime Infrastructure Reflected Cross-Site Scripting Vulnerability 2023-02-01T16:00:00+00:00 2023-02-01T16:00:00+00:00
cisco-sa-ise-path-trav-dz5dpzym Cisco Identity Services Engine Unauthorized File Access Vulnerability 2022-10-19T16:00:00+00:00 2023-01-24T18:18:32+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2024-58088 bpf: Fix deadlock when freeing cgroup storage 2025-03-02T00:00:00.000Z 2026-02-21T02:26:33.000Z
msrc_cve-2024-46679 ethtool: check device is present when getting link settings 2024-09-01T07:00:00.000Z 2026-02-21T02:26:23.000Z
msrc_cve-2024-50066 mm/mremap: fix move_normal_pmd/retract_page_tables race 2024-10-01T07:00:00.000Z 2026-02-21T02:26:21.000Z
msrc_cve-2022-27779 libcurl wrongly allows cookies to be set for Top Level Domains (TLDs) if thehost name is provided with a trailing dot.curl can be told to receive and send cookies. curl's "cookie engine" can bebuilt with or without [Public Suffix List](https://publicsuffix.org/)awareness. If PSL support not provided a more rudimentary check exists to atleast prevent cookies from being set on TLDs. This check was broken if thehost name in the URL uses a trailing dot.This can allow arbitrary sites to set cookies that then would get sent to adifferent and unrelated site or domain. 2022-06-02T00:00:00.000Z 2026-02-21T02:26:03.000Z
msrc_cve-2024-45720 Apache Subversion: Command line argument injection on Windows platforms 2024-10-01T07:00:00.000Z 2026-02-21T02:25:42.000Z
msrc_cve-2025-21861 mm/migrate_device: don't add folio to be freed to LRU in migrate_device_finalize() 2025-03-02T00:00:00.000Z 2026-02-21T02:25:37.000Z
msrc_cve-2025-22004 net: atm: fix use after free in lec_send() 2025-04-02T00:00:00.000Z 2026-02-21T02:24:52.000Z
msrc_cve-2024-46762 xen: privcmd: Fix possible access to a freed kirqfd instance 2024-09-01T07:00:00.000Z 2026-02-21T02:24:49.000Z
msrc_cve-2022-27781 libcurl provides the `CURLOPT_CERTINFO` option to allow applications torequest details to be returned about a server's certificate chain.Due to an erroneous function a malicious server could make libcurl built withNSS get stuck in a never-ending busy-loop when trying to retrieve thatinformation. 2022-06-02T00:00:00.000Z 2026-02-21T02:24:40.000Z
msrc_cve-2024-46838 userfaultfd: don't BUG_ON() if khugepaged yanks our page table 2024-09-01T07:00:00.000Z 2026-02-21T02:24:23.000Z
msrc_cve-2025-21856 s390/ism: add release function for struct device 2025-03-02T00:00:00.000Z 2026-02-21T02:24:09.000Z
msrc_cve-2024-50003 drm/amd/display: Fix system hang while resume with TBT monitor 2024-10-01T07:00:00.000Z 2026-02-21T02:23:46.000Z
msrc_cve-2024-46770 ice: Add netif_device_attach/detach into PF reset flow 2024-09-01T07:00:00.000Z 2026-02-21T02:23:19.000Z
msrc_cve-2025-22871 Request smuggling due to acceptance of invalid chunked data in net/http 2025-04-02T00:00:00.000Z 2026-02-21T02:23:18.000Z
msrc_cve-2025-46420 Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c 2025-04-02T00:00:00.000Z 2026-02-21T02:23:14.000Z
msrc_cve-2024-45005 KVM: s390: fix validity interception issue when gisa is switched off 2024-09-01T07:00:00.000Z 2026-02-21T02:23:13.000Z
msrc_cve-2025-21863 io_uring: prevent opcode speculation 2025-03-02T00:00:00.000Z 2026-02-21T02:23:12.000Z
msrc_cve-2024-46836 usb: gadget: aspeed_udc: validate endpoint index for ast udc 2024-09-01T07:00:00.000Z 2026-02-21T02:22:14.000Z
msrc_cve-2024-46761 pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv 2024-09-01T07:00:00.000Z 2026-02-21T02:21:51.000Z
msrc_cve-2025-21847 ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() 2025-03-02T00:00:00.000Z 2026-02-21T02:21:42.000Z
msrc_cve-2024-11738 Rustls: rustls network-reachable panic in `acceptor::accept` 2024-12-02T00:00:00.000Z 2026-02-21T02:21:25.000Z
msrc_cve-2024-49950 Bluetooth: L2CAP: Fix uaf in l2cap_connect 2024-10-01T07:00:00.000Z 2026-02-21T02:21:20.000Z
msrc_cve-2024-46834 ethtool: fail closed if we can't get max channel used in indirection tables 2024-09-01T07:00:00.000Z 2026-02-21T02:21:06.000Z
msrc_cve-2025-21866 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC 2025-03-02T00:00:00.000Z 2026-02-21T02:20:42.000Z
msrc_cve-2024-46760 wifi: rtw88: usb: schedule rx work after everything is set up 2024-09-01T07:00:00.000Z 2026-02-21T02:20:14.000Z
msrc_cve-2024-50072 x86/bugs: Use code segment selector for VERW operand 2024-10-01T07:00:00.000Z 2026-02-21T02:19:50.000Z
msrc_cve-2024-44950 serial: sc16is7xx: fix invalid FIFO access with special register set 2024-09-01T07:00:00.000Z 2026-02-21T02:19:46.000Z
msrc_cve-2022-49317 f2fs: avoid infinite loop to flush node pages 2025-02-02T00:00:00.000Z 2026-02-21T02:19:02.000Z
msrc_cve-2024-46756 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2024-09-01T07:00:00.000Z 2026-02-21T02:18:55.000Z
msrc_cve-2022-27775 An information disclosure vulnerability exists in curl 7.65.0 to 7.82.0 are vulnerable that by using an IPv6 address that was in the connection pool but with a different zone id it could reuse a connection instead. 2022-06-02T00:00:00.000Z 2026-02-21T02:18:25.000Z
ID Description Published Updated
ID Description Updated
var-201210-0155 Adobe Flash Player before 10.3.183.29 and 11.x before 11.4.402.287 on Windows and Mac OS … 2025-12-22T22:02:10.798000Z
var-200102-0027 CBOS 2.4.1 and earlier in Cisco 600 routers allows remote attackers to cause a denial of … 2025-12-22T22:01:40.319000Z
var-200608-0035 Unspecified vulnerability in ImageIO in Apple Mac OS X 10.4.7 allows user-assisted attack… 2025-12-22T22:01:03.497000Z
var-201108-0076 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and … 2025-12-22T22:00:40.931000Z
var-201002-0694 The load_elf_binary function in fs/binfmt_elf.c in the Linux kernel before 2.6.32.8 on th… 2025-12-22T22:00:40.403000Z
var-202108-1249 A buffer overflow issue was addressed with improved memory handling. This issue is fixed … 2025-12-22T22:00:05.518000Z
var-201910-1646 By design, BIND is intended to limit the number of TCP clients that can be connected at a… 2025-12-22T22:00:03.734000Z
var-200808-0011 Apache Tomcat 4.1.0 through 4.1.37, 5.5.0 through 5.5.26, and 6.0.0 through 6.0.16, when … 2025-12-22T22:00:03.392000Z
var-201602-0004 Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the… 2025-12-22T22:00:02.674000Z
var-201908-0260 Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, poten… 2025-12-22T21:59:20.267000Z
var-201812-0273 Perl before 5.26.3 has a buffer over-read via a crafted regular expression that triggers … 2025-12-22T21:59:17.312000Z
var-201903-0418 A memory corruption issue was addressed with improved memory handling. This issue is fixe… 2025-12-22T21:59:17.243000Z
var-201210-0133 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T21:58:47.985000Z
var-201202-0206 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T21:58:47.580000Z
var-201408-0082 Multiple buffer overflows in crypto/srp/srp_lib.c in the SRP implementation in OpenSSL 1.… 2025-12-22T21:58:47.245000Z
var-201007-0948 Use-after-free vulnerability in WebKit in Apple Safari before 5.0.1 on Mac OS X 10.5 thro… 2025-12-22T21:58:46.566000Z
var-201912-0627 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T21:58:43.906000Z
var-201306-0147 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T21:58:32.387000Z
var-201108-0183 Buffer overflow in Adobe Flash Player before 10.3.183.5 on Windows, Mac OS X, Linux, and … 2025-12-22T21:58:30.158000Z
var-201707-0592 Heimdal before 7.4 allows remote attackers to impersonate services with Orpheus' Lyre att… 2025-12-22T21:58:29.222000Z
var-201912-0597 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T21:58:29.050000Z
var-201912-1044 xmlParseBalancedChunkMemoryRecover in parser.c in libxml2 before 2.9.10 has a memory leak… 2025-12-22T21:58:28.902000Z
var-202112-1782 Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not pro… 2025-12-22T21:58:28.588000Z
var-201806-1445 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2025-12-22T21:58:28.438000Z
var-201711-0472 An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… 2025-12-22T21:58:26.797000Z
var-201212-0268 libxml2 before 2.8.0 computes hash values without restricting the ability to trigger hash… 2025-12-22T21:58:21.038000Z
var-201404-0288 Apache Commons BeanUtils, as distributed in lib/commons-beanutils-1.8.0.jar in Apache Str… 2025-12-22T21:58:16.294000Z
var-200708-0604 The drm/i915 component in the Linux kernel before 2.6.22.2, when used with i965G and late… 2025-12-22T21:58:13.910000Z
var-201010-0168 Memory leak in the apr_brigade_split_line function in buckets/apr_brigade.c in the Apache… 2025-12-22T21:58:08.441000Z
var-201912-0617 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T21:57:36.927000Z
ID Description Published Updated
jvndb-2023-002512 EL Injection Vulnerability in Hitachi Replication Manager 2023-07-19T14:48+09:00 2024-04-26T12:24+09:00
jvndb-2024-003119 NETGEAR routers vulnerable to buffer overflow 2024-04-25T11:21+09:00 2024-04-25T11:21+09:00
jvndb-2024-000042 Multiple vulnerabilities in RoamWiFi R10 2024-04-24T13:44+09:00 2024-04-24T13:44+09:00
jvndb-2024-003008 Sangoma Technologies CG/MG family driver cg6kwin2k.sys vulnerable to insufficient access control on its IOCTL 2024-03-22T13:50+09:00 2024-04-24T11:45+09:00
jvndb-2023-003028 Phoenix Technologies Windows kernel driver vulnerable to insufficient access control on its IOCTL 2023-08-30T10:05+09:00 2024-04-24T11:43+09:00
jvndb-2024-003116 Multiple vulnerabilities in OMRON Sysmac Studio/CX-One and CX-Programmer 2024-04-24T10:13+09:00 2024-04-24T10:13+09:00
jvndb-2024-000901 TvRock vulnerable to cross-site request forgery 2024-04-23T18:22+09:00 2024-04-23T18:22+09:00
jvndb-2024-000903 TvRock vulnerable to denial-of-service (DoS) 2024-04-23T18:21+09:00 2024-04-23T18:21+09:00
jvndb-2023-000119 Ruckus Access Point contains a cross-site scripting vulnerability. 2023-12-01T14:58+09:00 2024-04-23T17:51+09:00
jvndb-2023-000112 Multiple vulnerabilities in Pleasanter 2023-11-13T15:57+09:00 2024-04-22T17:56+09:00
jvndb-2024-003108 Armeria-saml improperly handles SAML messages 2024-04-22T17:28+09:00 2024-04-22T17:28+09:00
jvndb-2023-000122 Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series 2023-12-11T14:12+09:00 2024-04-22T16:55+09:00
jvndb-2023-002413 Multiple vulnerabilities in ELECOM and LOGITEC wireless LAN routers 2023-07-12T16:15+09:00 2024-04-22T16:18+09:00
jvndb-2023-002270 Null pointer dereference vulnerability in multiple printers and MFPs which implement BROTHER debut web server 2023-06-30T11:49+09:00 2024-04-22T16:07+09:00
jvndb-2023-014491 LINE client for iOS vulnerable to improper server certificate verification 2024-04-22T15:27+09:00 2024-04-22T15:27+09:00
jvndb-2023-000075 Improper restriction of XML external entity references (XXE) in Applicant Programme 2023-07-24T15:44+09:00 2024-04-22T14:20+09:00
jvndb-2023-002722 Fujitsu network devices Si-R series and SR-M series vulnerable to authentication bypass 2023-07-27T18:12+09:00 2024-04-19T18:07+09:00
jvndb-2023-000076 SEIKO EPSON printer Web Config vulnerable to denial-of-service (DoS) 2023-08-02T14:55+09:00 2024-04-19T17:27+09:00
jvndb-2023-000062 "WPS Office" vulnerable to OS command injection 2023-06-12T12:57+09:00 2024-04-18T17:49+09:00
jvndb-2023-000048 ASUS Router RT-AX3000 vulnerable to using sensitive cookies without 'Secure' attribute 2023-06-09T15:18+09:00 2024-04-18T17:44+09:00
jvndb-2023-002022 Multiple vulnerabilities in FUJI ELECTRIC FRENIC RHC Loader 2023-06-05T15:55+09:00 2024-04-18T17:40+09:00
jvndb-2023-002906 Multiple vulnerabilities in Panasonic Control FPWIN Pro7 2023-08-22T18:02+09:00 2024-04-18T17:31+09:00
jvndb-2023-011403 ELECOM wireless LAN routers vulnerable to OS command injection 2023-12-13T15:06+09:00 2024-04-18T17:22+09:00
jvndb-2024-000041 Multiple vulnerabilities in WordPress Plugin "Forminator" 2024-04-18T13:53+09:00 2024-04-18T13:53+09:00
jvndb-2023-000070 Multiple vulnerabilities in WordPress Plugin "TS Webfonts for SAKURA" 2023-07-20T16:05+09:00 2024-04-17T17:20+09:00
jvndb-2022-017175 Proscend Communications M330-W and M330-W5 vulnerable to OS command injection 2024-04-16T14:30+09:00 2024-04-16T14:30+09:00
jvndb-2024-000040 Multiple vulnerabilities in BUFFALO wireless LAN routers 2024-04-15T16:29+09:00 2024-04-15T16:29+09:00
jvndb-2023-000074 Fujitsu Real-time Video Transmission Gear "IP series" uses a hard-coded credentials 2023-07-26T18:00+09:00 2024-04-12T18:04+09:00
jvndb-2023-000073 GBrowse vulnerable to unrestricted upload of files with dangerous types 2023-07-21T15:02+09:00 2024-04-12T17:31+09:00
jvndb-2023-002905 Multiple vulnerabilities in CBC digital video recorders 2023-08-22T17:35+09:00 2024-04-10T17:39+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:21197-1 Security update for binutils 2025-12-12T15:58:29Z 2025-12-12T15:58:29Z
suse-su-2025:21195-1 Security update for binutils 2025-12-12T15:58:29Z 2025-12-12T15:58:29Z
suse-su-2025:4389-1 Security update for python 2025-12-12T13:49:14Z 2025-12-12T13:49:14Z
suse-su-2025:4388-1 Security update for postgresql16 2025-12-12T13:36:29Z 2025-12-12T13:36:29Z
suse-su-2025:4387-1 Security update for postgresql16 2025-12-12T13:35:46Z 2025-12-12T13:35:46Z
suse-su-2025:4386-1 Security update for postgresql16 2025-12-12T13:34:19Z 2025-12-12T13:34:19Z
suse-su-2025:4384-1 Security update for python-Django 2025-12-12T13:28:27Z 2025-12-12T13:28:27Z
suse-su-2025:4383-1 Security update for libpng12 2025-12-12T13:13:47Z 2025-12-12T13:13:47Z
suse-su-2025:4382-1 Security update for gegl 2025-12-12T13:06:54Z 2025-12-12T13:06:54Z
suse-su-2025:4381-1 Security update for kubernetes-client 2025-12-12T10:19:11Z 2025-12-12T10:19:11Z
suse-su-2025:4380-1 Security update for kubernetes-client 2025-12-12T10:18:54Z 2025-12-12T10:18:54Z
suse-su-2025:21194-1 Security update for keylime 2025-12-12T09:45:03Z 2025-12-12T09:45:03Z
suse-su-2025:4373-1 Security update for container-suseconnect 2025-12-12T09:05:38Z 2025-12-12T09:05:38Z
suse-su-2025:21193-1 Security update for go1.24 2025-12-12T07:45:36Z 2025-12-12T07:45:36Z
suse-su-2025:21192-1 Security update for go1.25 2025-12-12T07:24:50Z 2025-12-12T07:24:50Z
suse-su-2025:4372-1 Security update for postgresql15 2025-12-11T19:06:38Z 2025-12-11T19:06:38Z
suse-su-2025:4371-1 Security update for postgresql14 2025-12-11T19:04:45Z 2025-12-11T19:04:45Z
suse-su-2025:4370-1 Security update for postgresql14 2025-12-11T19:03:37Z 2025-12-11T19:03:37Z
suse-su-2025:4368-1 Security update for python3 2025-12-11T15:12:31Z 2025-12-11T15:12:31Z
suse-su-2025:4364-1 Security update for postgresql17, postgresql18 2025-12-11T10:12:26Z 2025-12-11T10:12:26Z
suse-su-2025:4363-1 Security update for postgresql17, postgresql18 2025-12-11T10:10:24Z 2025-12-11T10:10:24Z
suse-su-2025:4353-1 Security update for fontforge 2025-12-10T18:03:31Z 2025-12-10T18:03:31Z
suse-su-2025:4352-1 Security update for python310 2025-12-10T17:18:21Z 2025-12-10T17:18:21Z
suse-su-2025:4347-1 Security update for glib2 2025-12-10T13:02:34Z 2025-12-10T13:02:34Z
suse-su-2025:4346-1 Security update for gnutls 2025-12-10T10:39:49Z 2025-12-10T10:39:49Z
suse-su-2025:1004-2 Security update for python-Jinja2 2025-12-10T10:34:31Z 2025-12-10T10:34:31Z
suse-su-2025:4337-1 Security update for go1.24 2025-12-09T23:51:31Z 2025-12-09T23:51:31Z
suse-su-2025:4336-1 Security update for go1.25 2025-12-09T23:50:12Z 2025-12-09T23:50:12Z
suse-su-2025:4335-1 Security update for gegl 2025-12-09T18:19:44Z 2025-12-09T18:19:44Z
suse-su-2025:4334-1 Security update for postgresql13 2025-12-09T18:17:22Z 2025-12-09T18:17:22Z
ID Description Published Updated
opensuse-su-2025:15738-1 MozillaThunderbird-140.5.0-1.1 on GA media 2025-11-17T00:00:00Z 2025-11-17T00:00:00Z
opensuse-su-2025:15737-1 teleport-17.7.10-1.1 on GA media 2025-11-14T00:00:00Z 2025-11-14T00:00:00Z
opensuse-su-2025:15736-1 chromedriver-142.0.7444.162-1.1 on GA media 2025-11-14T00:00:00Z 2025-11-14T00:00:00Z
opensuse-su-2025:15735-1 MozillaFirefox-145.0-1.1 on GA media 2025-11-14T00:00:00Z 2025-11-14T00:00:00Z
opensuse-su-2025:15734-1 starboard-0.15.28-1.1 on GA media 2025-11-13T00:00:00Z 2025-11-13T00:00:00Z
opensuse-su-2025:15733-1 weblate-5.14.3-1.1 on GA media 2025-11-12T00:00:00Z 2025-11-12T00:00:00Z
opensuse-su-2025:15732-1 python-Scrapy-doc-2.13.3-2.1 on GA media 2025-11-12T00:00:00Z 2025-11-12T00:00:00Z
opensuse-su-2025:15731-1 python311-Brotli-1.2.0-1.1 on GA media 2025-11-12T00:00:00Z 2025-11-12T00:00:00Z
opensuse-su-2025:15730-1 helm-3.19.1-1.1 on GA media 2025-11-12T00:00:00Z 2025-11-12T00:00:00Z
opensuse-su-2025:15729-1 go-sendxmpp-0.15.1-1.1 on GA media 2025-11-12T00:00:00Z 2025-11-12T00:00:00Z
opensuse-su-2025:15728-1 tcpreplay-4.5.2-1.1 on GA media 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
opensuse-su-2025:15727-1 python311-pdfminer.six-20251107-1.1 on GA media 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
opensuse-su-2025:15726-1 containerd-1.7.29-1.1 on GA media 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
opensuse-su-2025:15725-1 binutils-2.45-2.1 on GA media 2025-11-11T00:00:00Z 2025-11-11T00:00:00Z
opensuse-su-2025:20037-1 Security update for chromium 2025-11-10T17:22:06Z 2025-11-10T17:22:06Z
opensuse-su-2025:20035-1 Security update for micropython 2025-11-10T15:52:16Z 2025-11-10T15:52:16Z
opensuse-su-2025:15724-1 trivy-0.67.2-1.1 on GA media 2025-11-10T00:00:00Z 2025-11-10T00:00:00Z
opensuse-su-2025:15723-1 regclient-0.10.0-1.1 on GA media 2025-11-10T00:00:00Z 2025-11-10T00:00:00Z
opensuse-su-2025:15722-1 hauler-1.3.1-1.1 on GA media 2025-11-10T00:00:00Z 2025-11-10T00:00:00Z
opensuse-su-2025:15721-1 incus-6.17-2.1 on GA media 2025-11-09T00:00:00Z 2025-11-09T00:00:00Z
opensuse-su-2025:15720-1 chromedriver-142.0.7444.134-1.1 on GA media 2025-11-08T00:00:00Z 2025-11-08T00:00:00Z
opensuse-su-2025:20026-1 Security update for MozillaThunderbird 2025-11-07T12:08:41Z 2025-11-07T12:08:41Z
opensuse-su-2025:15719-1 xen-4.20.1_08-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15718-1 tomcat11-11.0.13-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15717-1 tomcat10-10.1.48-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15716-1 tomcat-9.0.111-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15715-1 squid-7.3-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15714-1 libshibsp-lite12-3.5.1-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15713-1 python315-3.15.0~a1-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15712-1 python311-Django-5.2.8-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-node-2025-23084 2025-01-30T19:20:24.038Z 2025-11-06T13:25:46.476Z
bit-node-2023-46809 2024-09-11T07:20:44.318Z 2025-11-06T13:25:46.476Z
bit-node-2023-39333 2024-09-10T07:16:15.926Z 2025-11-06T13:25:46.476Z
bit-node-2023-39332 2024-03-06T10:59:07.902Z 2025-11-06T13:25:46.476Z
bit-node-2023-39331 2024-03-06T10:59:16.754Z 2025-11-06T13:25:46.476Z
bit-node-2023-38552 2024-03-06T10:59:25.318Z 2025-11-06T13:25:46.476Z
bit-node-2023-32559 2024-03-06T10:59:36.367Z 2025-11-06T13:25:46.476Z
bit-node-2023-30590 2024-03-06T11:00:43.978Z 2025-11-06T13:25:46.476Z
bit-node-2023-30589 2024-03-06T11:00:53.995Z 2025-11-06T13:25:46.476Z
bit-node-2023-30588 2024-03-06T11:01:05.481Z 2025-11-06T13:25:46.476Z
bit-node-2023-30585 2024-03-06T11:01:27.978Z 2025-11-06T13:25:46.476Z
bit-node-2023-30581 2024-03-06T11:01:38.980Z 2025-11-06T13:25:46.476Z
bit-node-2022-3786 X.509 Email Address Variable Length Buffer Overflow 2024-03-06T11:02:40.764Z 2025-11-06T13:25:46.476Z
bit-node-2022-3602 X.509 Email Address 4-byte Buffer Overflow 2024-03-06T11:02:52.601Z 2025-11-06T13:25:46.476Z
bit-nifi-2024-45477 Apache NiFi: Improper Neutralization of Input in Parameter Description 2025-09-12T11:47:04.858Z 2025-11-06T13:25:46.476Z
bit-nginx-2025-53859 NGINX ngx_mail_smtp_module vulnerability 2025-08-18T08:07:31.835Z 2025-11-06T13:25:46.476Z
bit-nginx-2025-23419 TLS Session Resumption Vulnerability 2025-02-07T07:15:11.088Z 2025-11-06T13:25:46.476Z
bit-nginx-2024-7347 NGINX MP4 module vulnerability 2024-08-16T07:27:39.450Z 2025-11-06T13:25:46.476Z
bit-mongoose-2024-53900 2025-10-02T14:44:18.222Z 2025-11-06T13:25:46.476Z
bit-mongodb-2025-0755 MongoDB C Driver bson library may be susceptible to buffer overflow 2025-09-23T08:46:21.341Z 2025-11-06T13:25:46.476Z
bit-modsecurity2-2025-54571 ModSecurity's Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure 2025-08-08T05:55:32.006Z 2025-11-06T13:25:46.476Z
bit-modsecurity-2025-54571 ModSecurity's Insufficient Return Value Handling can Lead to XSS and Source Code Disclosure 2025-08-08T05:55:15.874Z 2025-11-06T13:25:46.476Z
bit-mlflow-2025-11200 MLflow Weak Password Requirements Authentication Bypass Vulnerability 2025-11-06T12:53:59.130Z 2025-11-06T13:25:46.476Z
bit-mariadb-2025-30722 2025-07-16T08:17:21.862Z 2025-11-06T13:25:46.476Z
bit-mariadb-2025-30693 2025-07-16T08:17:14.760Z 2025-11-06T13:25:46.476Z
bit-mariadb-2025-21490 2025-03-13T07:13:52.740Z 2025-11-06T13:25:46.476Z
bit-mariadb-2023-52970 2025-03-13T07:14:09.649Z 2025-11-06T13:25:46.476Z
bit-mariadb-2023-52969 2025-03-13T07:14:15.453Z 2025-11-06T13:25:46.476Z
bit-magento-2020-24408 Stored XSS in customer address upload feature 2024-03-06T11:07:09.974Z 2025-11-06T13:25:46.476Z
bit-libpython-2025-0938 URL parser allowed square brackets in domain names 2025-08-11T13:53:03.173Z 2025-11-06T13:25:46.476Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
cnvd-2026-04937 Adobe ColdFusion访问控制不当漏洞 2025-12-15 2026-01-19
cnvd-2026-04936 Adobe ColdFusion凭据保护不足漏洞 2025-12-15 2026-01-19
cnvd-2026-04917 Refugee Food Management System SQL注入漏洞 2026-01-14 2026-01-19
cnvd-2026-04912 Tenda AC7堆栈缓冲区溢出漏洞 2023-09-01 2026-01-19
cnvd-2026-04911 Tenda O3 fromDhcpSetSer函数堆栈缓冲区溢出漏洞 2024-07-23 2026-01-19
cnvd-2026-04890 Google Chrome释放后重用漏洞 2025-12-08 2026-01-19
cnvd-2026-04889 Google Chrome竞争条件漏洞 2025-12-08 2026-01-19
cnvd-2026-04888 Google Chrome错误类型转换漏洞 2025-12-09 2026-01-19
cnvd-2026-04296 北京邦永科技有限公司PM2项目管理平台存在SQL注入漏洞(CNVD-C-2025-983218) 2025-12-05 2026-01-19
cnvd-2026-04266 Kentico Xperience跨站脚本漏洞(CNVD-2026-04266) 2025-12-25 2026-01-19
cnvd-2026-04265 Kentico Xperience跨站脚本漏洞(CNVD-2026-04265) 2025-12-25 2026-01-19
cnvd-2026-04264 Kentico Xperience存在未明漏洞(CNVD-2026-04264) 2025-12-25 2026-01-19
cnvd-2026-04263 Kentico Xperience存在未明漏洞(CNVD-2026-04263) 2025-12-25 2026-01-19
cnvd-2026-04262 Kentico Xperience安全绕过漏洞 2025-12-25 2026-01-19
cnvd-2026-04261 Kentico Xperience跨站脚本漏洞(CNVD-2026-04261) 2025-12-25 2026-01-19
cnvd-2026-04247 Kentico Xperience信息泄露漏洞(CNVD-2026-04247) 2025-12-25 2026-01-19
cnvd-2026-04246 Kentico Xperience访问控制绕过漏洞 2025-12-25 2026-01-19
cnvd-2026-04245 Kentico Xperience信息泄露漏洞 2025-12-25 2026-01-19
cnvd-2026-04244 Kentico Xperience拒绝服务漏洞 2025-12-25 2026-01-19
cnvd-2026-04243 Kentico Xperience跨站脚本漏洞 2025-12-25 2026-01-19
cnvd-2026-04242 Kentico Xperience SQL注入漏洞 2025-12-25 2026-01-19
cnvd-2026-04898 Tenda AC10U formSetQosBand函数堆栈缓冲区溢出漏洞 2024-03-22 2026-01-16
cnvd-2026-04897 Tenda AC10U formSetFirewallCfg函数堆栈缓冲区溢出漏洞 2024-03-22 2026-01-16
cnvd-2026-04896 Tenda AC10U formSetDeviceName函数栈缓冲区溢出漏洞 2024-03-22 2026-01-16
cnvd-2026-04895 Tenda AC15 saveParentControlInfo方法堆栈缓冲区溢出漏洞 2024-03-26 2026-01-16
cnvd-2026-04894 Tenda AC15 R7WebsSecurityHandler方法堆栈缓冲区溢出漏洞 2024-03-26 2026-01-16
cnvd-2026-04893 Tenda AC15 fromSetSysTime方法堆栈缓冲区溢出漏洞 2024-03-26 2026-01-16
cnvd-2026-04892 Tenda AC15 fromDhcpListClient函数堆栈缓冲区溢出漏洞 2024-04-17 2026-01-16
cnvd-2026-04891 Tenda AC15 fromWizardHandle方法堆栈缓冲区溢出漏洞 2024-04-22 2026-01-16
cnvd-2026-04665 FastAdmin SQL注入漏洞 2026-01-14 2026-01-16
ID Description Published Updated
certfr-2025-avi-0776 Multiples vulnérabilités dans GitLab 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0775 Multiples vulnérabilités dans Curl 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0774 Vulnérabilité dans Liferay 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0773 Multiples vulnérabilités dans les produits Fortinet 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0772 Vulnérabilité dans les points d'accès Sophos AP6 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0771 Multiples vulnérabilités dans Xen 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0770 Multiples vulnérabilités dans les produits Adobe 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0769 Multiples vulnérabilités dans Google Chrome 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0768 Multiples vulnérabilités dans les produits Ivanti 2025-09-10T00:00:00.000000 2025-09-10T00:00:00.000000
certfr-2025-avi-0767 Vulnérabilité dans les produits Adobe 2025-09-09T00:00:00.000000 2025-09-09T00:00:00.000000
certfr-2025-avi-0765 Multiples vulnérabilités dans les produits Siemens 2025-09-09T00:00:00.000000 2025-09-09T00:00:00.000000
certfr-2025-avi-0764 Multiples vulnérabilités dans les produits SAP 2025-09-09T00:00:00.000000 2025-09-09T00:00:00.000000
certfr-2025-avi-0763 Vulnérabilité dans Spring Cloud Gateway 2025-09-09T00:00:00.000000 2025-09-09T00:00:00.000000
certfr-2025-avi-0762 Vulnérabilité dans SPIP 2025-09-08T00:00:00.000000 2025-09-08T00:00:00.000000
certfr-2025-avi-0761 Multiples vulnérabilités dans Microsoft Edge 2025-09-08T00:00:00.000000 2025-09-08T00:00:00.000000
certfr-2025-avi-0760 Multiples vulnérabilités dans les produits IBM 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0759 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0758 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0757 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0756 Multiples vulnérabilités dans les produits VMware 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0755 Vulnérabilité dans les produits Synology 2025-09-05T00:00:00.000000 2025-09-05T00:00:00.000000
certfr-2025-avi-0754 Multiples vulnérabilités dans les produits VMware 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0753 Vulnérabilité dans Shibboleth Service Provider 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0752 Multiples vulnérabilités dans Google Pixel 2025-09-04T00:00:00.000000 2025-09-04T00:00:00.000000
certfr-2025-avi-0751 Multiples vulnérabilités dans les produits VMware 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0750 Multiples vulnérabilités dans Google Android 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0749 Multiples vulnérabilités dans Google Chrome 2025-09-03T00:00:00.000000 2025-09-03T00:00:00.000000
certfr-2025-avi-0748 Vulnérabilité dans les produits Liferay 2025-09-02T00:00:00.000000 2025-09-02T00:00:00.000000
certfr-2025-avi-0747 Multiples vulnérabilités dans les produits Qnap 2025-09-01T00:00:00.000000 2025-09-01T00:00:00.000000
certfr-2025-avi-0746 Multiples vulnérabilités dans les produits IBM 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated