Recent vulnerabilities

ID CVSS Description Vendor Product Published Updated
CVE-2025-67433
7.5 (3.1)
A heap buffer overflow in the processRequest func… n/a
 n/a
 2026-02-12T00:00:00.000Z 2026-02-26T20:52:47.206Z
CVE-2025-43537
3.5 (3.1)
A path handling issue was addressed with improved… Apple
 iOS and iPadOS
 2026-02-11T22:57:59.635Z 2026-02-26T20:52:33.264Z
CVE-2026-23541
N/A
WordPress Mail Mint plugin <= 1.19.4 - Broken Access C… WPFunnels
 Mail Mint
 2026-02-19T08:26:48.368Z 2026-02-26T20:51:38.720Z
CVE-2026-2801
7.5 (3.1)
Incorrect boundary conditions in the JavaScript: WebAs… Mozilla
 Firefox
 2026-02-24T13:33:29.929Z 2026-02-26T20:50:24.195Z
CVE-2025-68834
N/A
WordPress Sync Master Sheet – Product Sync with Google… Saiful Islam
 Sync Master Sheet &#8211; Product Sync with Google Sheet for WooCommerce
 2026-02-20T15:46:41.323Z 2026-02-26T20:50:19.073Z
CVE-2026-24487
5.7 (4.0)
OpenEMR has FHIR Patient Compartment Bypass in CareTea… openemr
 openemr
 2026-02-25T17:45:24.584Z 2026-02-26T20:48:47.360Z
CVE-2026-25942
5.5 (4.0)
FreeRDP has global-buffer-overflow in xf_rail_server_e… FreeRDP
 FreeRDP
 2026-02-25T20:01:16.472Z 2026-02-26T20:47:09.779Z
CVE-2026-1565
8.8 (3.1)
User Frontend: AI Powered Frontend Posting, User Direc… wedevs
 User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration
 2026-02-26T19:23:09.638Z 2026-02-26T20:45:54.082Z
CVE-2026-25136
8.1 (3.1)
Rucio WebUI has a Reflected Cross-site Scripting Vulne… rucio
 rucio
 2026-02-25T18:57:28.589Z 2026-02-26T20:44:57.174Z
CVE-2026-24005
0 (3.1)
OpenKruise PodProbeMarker is Vulnerable to SSRF via Un… openkruise
 kruise
 2026-02-25T18:53:30.170Z 2026-02-26T20:44:09.282Z
CVE-2026-1241
8.7 (4.0)
Authentication Bypass Using an Alternate Path or Chann… Pelco, Inc.
 Sarix Professional IMP 3 Series
 2026-02-26T19:21:26.754Z 2026-02-26T20:43:53.216Z
CVE-2026-25930
6.5 (3.1)
OpenEMR's Printable LBF Endpoint Leaks Arbitrary Patie… openemr
 openemr
 2026-02-25T18:48:10.373Z 2026-02-26T20:43:11.655Z
CVE-2026-26973
4.3 (3.1)
Discourse doesn't scope reviewable notes to user-visib… discourse
 discourse
 2026-02-26T19:19:18.139Z 2026-02-26T20:41:30.698Z
CVE-2026-27575
9.1 (3.1)
Vijkunja has Weak Password Policy Combined with Persis… go-vikunja
 vikunja
 2026-02-25T21:35:23.230Z 2026-02-26T20:39:18.888Z
CVE-2026-27616
7.3 (3.1)
Vikunja Vulnerable to Stored Cross-Site Scripting (XSS… go-vikunja
 vikunja
 2026-02-25T21:37:57.671Z 2026-02-26T20:38:41.085Z
CVE-2026-26979
0 (4.0)
Discourse: TL4 users are able to change status of rest… discourse
 discourse
 2026-02-26T19:25:15.812Z 2026-02-26T20:38:24.755Z
CVE-2026-27950
5.5 (4.0)
FreeRDP heap-use-after-free in update_pointer_new(SDL)… FreeRDP
 FreeRDP
 2026-02-25T21:05:23.581Z 2026-02-26T20:38:07.068Z
CVE-2026-26986
5.5 (4.0)
FreeRDP has heap-use-after-free in rail_window_free FreeRDP
 FreeRDP
 2026-02-25T21:01:16.916Z 2026-02-26T20:36:03.263Z
CVE-2023-6681
5.3 (3.1)
Jwcrypto: denail of service via specifically crafted jwe Red Hat
 Red Hat Enterprise Linux 8
 2024-02-12T14:04:45.113Z 2026-02-26T20:34:50.814Z
CVE-2026-2800
9.8 (3.1)
Spoofing issue in the WebAuthn component in Firefox fo… Mozilla
 Firefox
 2026-02-24T13:33:29.312Z 2026-02-26T20:34:47.938Z
CVE-2026-26955
8.8 (3.1)
FreeRDP has Out-of-bounds Write FreeRDP
 FreeRDP
 2026-02-25T20:47:14.660Z 2026-02-26T20:30:46.008Z
CVE-2024-9632
7.8 (3.1)
Xorg-x11-server: tigervnc: heap-based buffer overflow …

2024-10-30T07:42:35.320Z 2026-02-26T20:29:19.662Z
CVE-2026-27494
7.1 (4.0)
n8n has Arbitrary File Read via Python Code Node Sandb… n8n-io
 n8n
 2026-02-25T22:08:00.520Z 2026-02-26T20:28:57.625Z
CVE-2026-27495
9.4 (4.0)
n8n has a Sandbox Escape in its JavaScript Task Runner n8n-io
 n8n
 2026-02-25T22:10:04.054Z 2026-02-26T20:28:18.099Z
CVE-2023-3812
7.8 (3.1)
Kernel: tun: bugs for oversize packet when napi frags … Red Hat
 Red Hat Enterprise Linux 8
 2023-07-24T15:19:21.817Z 2026-02-26T20:27:31.255Z
CVE-2026-27493
9.5 (4.0)
n8n has Unauthenticated Expression Evaluation via Form Node n8n-io
 n8n
 2026-02-25T22:05:00.686Z 2026-02-26T20:27:26.036Z
CVE-2026-27148
8.9 (4.0)
Storybook Dev Server Vulnerable to WebSocket Hijacking storybookjs
 storybook
 2026-02-25T21:46:48.967Z 2026-02-26T20:26:14.136Z
CVE-2026-27819
7.2 (3.1)
Vikunja has Path Traversal in CLI Restore go-vikunja
 vikunja
 2026-02-25T21:40:38.703Z 2026-02-26T20:24:45.237Z
CVE-2026-27613
10 (4.0)
CGI Parameter Injection (Bypass of STRICT_CGI_PARAMS a… maximmasiutin
 TinyWeb
 2026-02-25T22:58:16.358Z 2026-02-26T20:22:22.813Z
CVE-2026-2774
8.8 (3.1)
Integer overflow in the Audio/Video component Mozilla
 Firefox
 2026-02-24T13:33:10.821Z 2026-02-26T20:21:19.007Z
ID CVSS Description Vendor Product Published Updated
CVE-2026-3269
5.3 (4.0)
4.3 (3.1)
4.3 (3.0)
psi-probe PSI Probe Session ExpireSessionsController.j… psi-probe
 PSI Probe
 2026-02-26T23:32:07.430Z 2026-02-27T19:57:57.822Z
CVE-2026-3268
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
psi-probe PSI Probe Session Attribute RemoveSessAttrib… psi-probe
 PSI Probe
 2026-02-26T23:02:08.067Z 2026-02-27T17:27:38.521Z
CVE-2026-3265
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Free-CRM Security API improper authorization go2ismail
 Free-CRM
 2026-02-26T22:32:08.486Z 2026-02-27T18:49:54.918Z
CVE-2026-3264
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Free-CRM Administrative redirect go2ismail
 Free-CRM
 2026-02-26T22:02:07.996Z 2026-02-27T20:02:33.352Z
CVE-2026-3263
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Asp.Net-Core-Inventory-Order-Management-Syst… go2ismail
 Asp.Net-Core-Inventory-Order-Management-System
 2026-02-26T21:32:08.766Z 2026-02-26T21:32:08.766Z
CVE-2026-3262
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
go2ismail Asp.Net-Core-Inventory-Order-Management-Syst… go2ismail
 Asp.Net-Core-Inventory-Order-Management-System
 2026-02-26T21:02:10.682Z 2026-02-27T15:15:41.931Z
CVE-2026-28364
7.9 (3.1)
In OCaml before 4.14.3 and 5.x before 5.4.1, a bu… OCaml
 OCaml
 2026-02-27T03:54:53.458Z 2026-02-27T15:49:06.382Z
CVE-2026-2831
4.9 (3.1)
MailArchiver <= 4.5.0 - Authenticated (Admininistrator… pierrelannoy
 MailArchiver
 2026-02-27T11:22:49.958Z 2026-02-27T15:37:32.548Z
CVE-2026-28296
4.3 (3.1)
Gvfs: ftp gvfs backend: arbitrary ftp command injectio… Red Hat
 Red Hat Enterprise Linux 10
 2026-02-26T15:10:47.917Z 2026-02-26T18:23:09.297Z
CVE-2026-28295
4.3 (3.1)
Gvfs: gvfs ftp backend: information disclosure via unt… Red Hat
 Red Hat Enterprise Linux 10
 2026-02-26T15:33:23.865Z 2026-02-26T18:07:15.054Z
CVE-2026-28269
5.9 (3.1)
Kiteworks Core has an OS Command Injection kiteworks
 security-advisories
 2026-02-26T22:52:26.688Z 2026-02-27T17:53:05.993Z
CVE-2026-28230
5.7 (4.0)
In SteVe, any authenticated charger can terminate any … steve-community
 steve
 2026-02-26T22:49:33.613Z 2026-02-27T18:17:19.675Z
CVE-2026-28227
1.2 (4.0)
Discourse Vulnerable to Unauthorized Topic Creation in… discourse
 discourse
 2026-02-26T21:27:38.926Z 2026-02-26T21:27:38.926Z
CVE-2026-28226
6.5 (3.1)
Phishing Club has Authenticated Blind SQL Injection in… phishingclub
 phishingclub
 2026-02-26T22:43:05.629Z 2026-02-27T18:18:06.714Z
CVE-2026-28219
1.3 (4.0)
Privilege Escalation via Mass Assignment Allows Regula… discourse
 discourse
 2026-02-26T21:25:36.635Z 2026-02-26T21:25:36.635Z
CVE-2026-28218
5.3 (4.0)
Discourse's Fail-Open Access Control in Data Explorer … discourse
 discourse
 2026-02-26T21:23:32.354Z 2026-02-26T21:23:32.354Z
CVE-2026-28211
7.8 (3.1)
Arbitrary code execution in log reader via untrusted l… CyrilleB79
 NVDA-Dev-Test-Toolbox
 2026-02-26T22:29:36.164Z 2026-02-27T18:52:30.864Z
CVE-2026-27839
4.3 (3.1)
wger: IDOR in nutritional_values endpoints exposes pri… wger-project
 wger
 2026-02-26T22:07:43.640Z 2026-02-26T22:07:43.640Z
CVE-2026-27838
3.1 (3.1)
wger: IDOR via user-unscoped cache keys on routine API… wger-project
 wger
 2026-02-26T22:04:57.968Z 2026-02-26T22:04:57.968Z
CVE-2026-27835
4.3 (3.1)
wger: IDOR in RepetitionsConfig and MaxRepetitionsConf… wger-project
 wger
 2026-02-26T22:00:23.768Z 2026-02-26T22:00:23.768Z
CVE-2026-27776
7.2 (3.0)
8.6 (4.0)
IM-LogicDesigner module of intra-mart Accel Platf… NTT DATA INTRAMART Corporation
 intra-mart Accel Platform
 2026-02-27T07:50:42.103Z 2026-02-27T07:50:42.103Z
CVE-2026-27773
6.5 (3.1)
SWITCH EV swtchenergy.com Insufficiently Protected Cre… SWITCH EV
 swtchenergy.com
 2026-02-27T00:03:43.458Z 2026-02-27T00:03:43.458Z
CVE-2026-27772
9.4 (3.1)
EV Energy ev.energy Missing Authentication for Critica… EV Energy
 ev.energy
 2026-02-27T00:09:12.986Z 2026-02-27T00:09:12.986Z
CVE-2026-27767
9.4 (3.1)
SWITCH EV swtchenergy.com Missing Authentication for C… SWITCH EV
 swtchenergy.com
 2026-02-26T23:57:51.070Z 2026-02-27T00:00:53.815Z
CVE-2026-27653
6.7 (3.0)
5.4 (4.0)
The installers for multiple products provided by … Soliton Systems K.K.
 Soliton SecureBrowser for OneGate
 2026-02-27T05:39:54.060Z 2026-02-27T18:52:30.918Z
CVE-2026-27652
7.3 (3.1)
CloudCharge cloudcharge.se Insufficient Session Expiration CloudCharge
 cloudcharge.se
 2026-02-26T23:36:33.131Z 2026-02-26T23:36:33.131Z
CVE-2026-27647
7.3 (3.1)
Mobility46 mobility46.se Insufficient Session Expiration Mobility46
 mobility46.se
 2026-02-27T00:23:50.315Z 2026-02-27T00:23:50.315Z
CVE-2026-27449
7.5 (3.1)
Umbraco.Engage.Forms Allows Unauthorized Access to Mul… umbraco
 Umbraco.Engage.Forms
 2026-02-26T21:51:14.512Z 2026-02-26T21:51:14.512Z
CVE-2026-27162
4.9 (4.0)
DIscourse doesn't prevent whispers to leak in excerpts discourse
 discourse
 2026-02-26T19:58:33.819Z 2026-02-26T19:58:33.819Z
CVE-2026-27154
1.3 (4.0)
Discourse has XSS when editing a malicious post discourse
 discourse
 2026-02-26T21:20:25.181Z 2026-02-26T21:20:25.181Z
ID Description Published Updated
fkie_cve-2026-3263 A vulnerability was found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250… 2026-02-26T22:20:52.207 2026-02-27T14:06:37.987
fkie_cve-2026-3262 A vulnerability has been found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.… 2026-02-26T22:20:51.980 2026-02-27T14:06:37.987
fkie_cve-2026-28364 In OCaml before 4.14.3 and 5.x before 5.4.1, a buffer over-read in Marshal deserialization (runtime… 2026-02-27T04:16:03.410 2026-02-27T14:06:37.987
fkie_cve-2026-2831 The MailArchiver plugin for WordPress is vulnerable to SQL Injection via the ‘logid’ parameter in a… 2026-02-27T12:16:03.383 2026-02-27T14:06:37.987
fkie_cve-2026-28296 A flaw was found in the FTP GVfs backend. A remote attacker could exploit this input validation vul… 2026-02-26T16:24:09.580 2026-02-27T14:06:37.987
fkie_cve-2026-28295 A flaw was found in the FTP GVfs backend. A malicious FTP server can exploit this vulnerability by … 2026-02-26T16:24:09.370 2026-02-27T14:06:37.987
fkie_cve-2026-28269 Kiteworks is a private data network (PDN). Prior to version 9.2.0, avulnerability in Kiteworks comm… 2026-02-26T23:16:36.910 2026-02-27T14:06:37.987
fkie_cve-2026-28230 SteVe is an open-source EV charging station management system. In versions up to and including 3.11… 2026-02-26T23:16:36.733 2026-02-27T14:06:37.987
fkie_cve-2026-28227 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T22:20:49.927 2026-02-27T14:06:37.987
fkie_cve-2026-28226 Phishing Club is a phishing simulation and man-in-the-middle framework. Prior to version 1.30.2, an… 2026-02-26T23:16:36.570 2026-02-27T14:06:37.987
fkie_cve-2026-28219 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T22:20:49.767 2026-02-27T14:06:37.987
fkie_cve-2026-28218 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T22:20:49.600 2026-02-27T14:06:37.987
fkie_cve-2026-28211 The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and test… 2026-02-26T23:16:35.600 2026-02-27T14:06:37.987
fkie_cve-2026-27839 wger is a free, open-source workout and fitness manager. In versions up to and including 2.4, three… 2026-02-26T23:16:35.123 2026-02-27T14:06:37.987
fkie_cve-2026-27838 wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check… 2026-02-26T23:16:34.963 2026-02-27T14:06:37.987
fkie_cve-2026-27835 wger is a free, open-source workout and fitness manager. In versions up to and including 2.4, `Repe… 2026-02-26T22:20:49.333 2026-02-27T14:06:37.987
fkie_cve-2026-27776 IM-LogicDesigner module of intra-mart Accel Platform contains insecure deserialization issue. This … 2026-02-27T08:17:09.850 2026-02-27T14:06:37.987
fkie_cve-2026-27773 Charging station authentication identifiers are publicly accessible via web-based mapping platforms. 2026-02-27T00:16:58.423 2026-02-27T14:06:37.987
fkie_cve-2026-27772 WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthori… 2026-02-27T00:16:58.250 2026-02-27T14:06:37.987
fkie_cve-2026-27767 WebSocket endpoints lack proper authentication mechanisms, enabling attackers to perform unauthori… 2026-02-27T00:16:58.073 2026-02-27T14:06:37.987
fkie_cve-2026-27653 The installers for multiple products provided by Soliton Systems K.K. contain an issue with incorre… 2026-02-27T06:17:59.753 2026-02-27T14:06:37.987
fkie_cve-2026-27652 The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows … 2026-02-27T00:16:57.900 2026-02-27T14:06:37.987
fkie_cve-2026-27647 The WebSocket backend uses charging station identifiers to uniquely associate sessions but allows … 2026-02-27T01:16:20.967 2026-02-27T14:06:37.987
fkie_cve-2026-27449 Umbraco Engage is a business intelligence platform. A vulnerability has been identified in Umbraco … 2026-02-26T22:20:47.960 2026-02-27T14:06:37.987
fkie_cve-2026-27162 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T21:28:54.800 2026-02-27T14:06:37.987
fkie_cve-2026-27154 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T22:20:47.730 2026-02-27T14:06:37.987
fkie_cve-2026-27153 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T22:20:47.570 2026-02-27T14:06:37.987
fkie_cve-2026-27152 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T21:28:54.650 2026-02-27T14:06:37.987
fkie_cve-2026-27151 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T21:28:54.493 2026-02-27T14:06:37.987
fkie_cve-2026-27150 Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.… 2026-02-26T21:28:54.343 2026-02-27T14:06:37.987
ID Severity Description Published Updated
ghsa-h4vm-j32v-95qm
9.8 (3.1)
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-gvhp-5j8m-528x
9.8 (3.1)
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-c3q8-4689-m4p6
9.8 (3.1)
JIT miscompilation in the JavaScript: WebAssembly component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-8g7m-g6r7-rqcp
9.8 (3.1)
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-7cfj-7vv8-r64h
7.5 (3.1)
Information disclosure, mitigation bypass in the Settings UI component. This vulnerability affects … 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-6xq2-fm6w-mxfm
4.6 (3.1)
URLs containing percent-encoded slashes (`/` or `\`) can trick wcurl into saving the output file ou… 2026-02-25T09:30:26Z 2026-02-25T21:31:18Z
ghsa-6j93-38rf-cf9g
6.2 (3.1)
Due to missing authentication, a user with physical access to the device can misuse the mesh functi… 2026-02-25T18:31:37Z 2026-02-25T21:31:18Z
ghsa-62xf-gv4m-h3vc
9.8 (3.1)
Invalid pointer in the DOM: Core & HTML component. This vulnerability affects Firefox < 148. 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-3wfp-66x3-wgq2
7.5 (3.1)
Incorrect boundary conditions in the JavaScript: WebAssembly component. This vulnerability affects … 2026-02-24T15:30:32Z 2026-02-25T21:31:18Z
ghsa-v9qg-w85w-hq2h
5.5 (3.1)
5.1 (4.0)
Path traversal in Samsung Members prior to Chinese version 15.5.05.4 allows local attackers to over… 2026-02-04T09:30:28Z 2026-02-25T21:31:17Z
ghsa-qx85-r5h6-jm6f
6.5 (3.1)
Missing Authorization vulnerability in Addonify Addonify Floating Cart For WooCommerce addonify-flo… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-q682-57gm-p99w
7.5 (3.1)
Missing Authorization vulnerability in YayCommerce YayCurrency yaycurrency allows Exploiting Incorr… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-q4hc-vp2m-fr47
7.2 (3.1)
A flaw was found in the 389-ds-base server. A heap buffer overflow vulnerability exists in the `sch… 2026-02-23T18:32:02Z 2026-02-25T21:31:17Z
ghsa-q2ch-643m-222m
9.8 (3.1)
9.2 (4.0)
Improper Neutralization of Special Elements used in a Command ('Command Injection') in Owl opds 2.2… 2026-02-20T18:31:40Z 2026-02-25T21:31:17Z
ghsa-mj24-8cx9-5wc8
6.5 (3.1)
Missing Authorization vulnerability in Passionate Brains Advanced WC Analytics advance-wc-analytics… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-h4mg-9g94-m3mv
4.3 (3.1)
7.0 (4.0)
Improper input validation in Samsung Members prior to version 5.6.00.11 allows remote attackers to … 2026-02-04T09:30:28Z 2026-02-25T21:31:17Z
ghsa-g5wr-mqvx-5c3v
6.5 (3.1)
Missing Authorization vulnerability in Travelpayouts Travelpayouts travelpayouts allows Exploiting … 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-cm5v-8jg4-g44j
6.5 (3.1)
Missing Authorization vulnerability in Passionate Brains GA4WP: Google Analytics for WordPress ga-f… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-cg8f-pcpw-6836
7.6 (3.1)
Improper Control of Generation of Code ('Code Injection') vulnerability in inpersttion Inpersttion … 2026-02-20T18:31:33Z 2026-02-25T21:31:17Z
ghsa-cf7g-cxh2-5vhr
6.5 (3.1)
Missing Authorization vulnerability in aDirectory aDirectory adirectory allows Exploiting Incorrect… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-c29h-3pp8-76hf
7.4 (3.1)
Authorization Bypass Through User-Controlled Key vulnerability in Shiprocket Shiprocket shiprocket … 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-9crc-72v8-4jmj
9.9 (3.1)
Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Wiguard wiguard allows … 2026-02-20T18:31:35Z 2026-02-25T21:31:17Z
ghsa-63pr-8qvw-vfv9
6.5 (3.1)
Missing Authorization vulnerability in Addonify Addonify &#8211; Compare Products For WooCommerce a… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-5cwv-6xqx-92m5
7.8 (3.1)
A flaw was found in the QEMU disk image utility (qemu-img) 'info' command. A specially crafted imag… 2024-07-02T21:32:15Z 2026-02-25T21:31:17Z
ghsa-58p5-8f5p-8qqg
6.5 (3.1)
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in 100… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-4gvf-3g6g-c2mg
7.5 (3.1)
Missing Authorization vulnerability in XLPlugins NextMove Lite woo-thank-you-page-nextmove-lite all… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-4ggr-f4xw-9446
6.5 (3.1)
Authorization Bypass Through User-Controlled Key vulnerability in Cozmoslabs Paid Member Subscripti… 2026-02-20T18:31:35Z 2026-02-25T21:31:17Z
ghsa-3mfv-m4f8-5m67
6.5 (3.1)
Missing Authorization vulnerability in ConveyThis ConveyThis conveythis-translate allows Exploiting… 2026-02-20T18:31:34Z 2026-02-25T21:31:17Z
ghsa-x65r-rvgh-v43v
7.8 (3.1)
Multiple vulnerabilities in the CLI of Cisco SD-WAN Software could allow an authenticated, local at… 2022-10-01T00:00:18Z 2026-02-25T21:31:14Z
ghsa-3w9c-vcrh-mvp2
8.8 (3.1)
Integer overflow in Microsoft Internet Explorer 6 on Windows XP SP2 allows remote attackers to caus… 2022-05-01T07:12:02Z 2026-02-25T21:31:14Z
ID Severity Description Package Published Updated
pysec-2024-48
Versions of the package black before 24.3.0 are vulnerable to Regular Expression Denial o… black 2024-03-19T05:15:00+00:00 2024-03-19T11:18:50.379002+00:00
pysec-2024-47
In Django 3.2 before 3.2.25, 4.2 before 4.2.11, and 5.0 before 5.0.3, the django.utils.te… django 2024-03-15T20:15:00+00:00 2024-03-15T23:20:34.975097+00:00
pysec-2024-46
Apache Airflow, versions 2.8.0 through 2.8.2, has a vulnerability that allows an authenti… apache-airflow 2024-03-14T09:15:00+00:00 2024-03-14T11:19:09.515892+00:00
pysec-2024-45
LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro… langchain-core 2024-03-04T00:15:00+00:00 2024-03-13T23:20:07.486731+00:00
pysec-2024-44
In RPyC before 6.0.0, when a server exposes a method that calls the attribute named __arr… rpyc 2024-03-12T16:15:00+00:00 2024-03-12T19:19:21.886478+00:00
pysec-2024-43
LangChain through 0.1.10 allows ../ directory traversal by an actor who is able to contro… langchain 2024-03-04T00:15:00+00:00 2024-03-05T10:22:15.555734+00:00
pysec-2024-42
Apache Airflow, versions before 2.8.2, has a vulnerability that allows authenticated Ops … apache-airflow 2024-03-01T11:15:00+00:00 2024-03-01T14:20:34.498842+00:00
pysec-2023-259
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-select 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.851255+00:00
pysec-2023-258
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-os 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.721783+00:00
pysec-2023-257
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-io 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.603749+00:00
pysec-2023-256
9.8 (3.1)
A vulnerability, which was classified as critical, has been found in MicroPython 1.21.0/1… micropython-copy 2023-12-29T05:15:00+00:00 2024-02-29T07:20:31.464203+00:00
pysec-2023-255
8.1 (3.1)
Command Injection in GitHub repository gradio-app/gradio prior to main. gradio 2023-12-14T14:15:00+00:00 2024-02-28T16:22:37.359017+00:00
pysec-2024-41
diffoscope before 256 allows directory traversal via an embedded filename in a GPG file. … diffoscope 2024-02-27T02:15:00+00:00 2024-02-27T07:20:27.954412+00:00
pysec-2024-40
orjson.loads in orjson before 3.9.15 does not limit recursion for deeply nested JSON documents. orjson 2024-02-26T16:28:00+00:00 2024-02-26T18:22:26.039698+00:00
pysec-2024-39
Versions of the package fastecdsa before 2.3.2 are vulnerable to Use of Uninitialized Var… fastecdsa 2024-02-24T05:15:00+00:00 2024-02-24T07:19:09.418536+00:00
pysec-2023-254
7.5 (3.1)
cryptography is a package designed to expose cryptographic primitives and recipes to Pyth… cryptography 2023-11-29T19:15:00+00:00 2024-02-17T07:18:27.688636+00:00
pysec-2024-38
7.5 (3.1)
FastAPI is a web framework for building APIs with Python 3.8+ based on standard Python ty… fastapi 2024-02-05T15:15:00+00:00 2024-02-16T18:22:32.607118+00:00
pysec-2024-37
6.5 (3.1)
nonebot2 is a cross-platform Python asynchronous chatbot framework written in Python. Thi… nonebot2 2024-02-09T23:15:00+00:00 2024-02-16T16:22:37.389642+00:00
pysec-2022-43059
5.5 (3.1)
AIOHTTP 3.8.1 can report a "ValueError: Invalid IPv6 URL" outcome, which can lead to a De… aiohttp 2022-06-23T17:15:00Z 2024-02-16T13:47:54.655573Z
pysec-2024-36
5.5 (3.1)
An information disclosure flaw was found in ansible-core due to a failure to respect the … ansible-core 2024-02-06T12:15:00+00:00 2024-02-14T07:20:09.911618+00:00
pysec-2023-253
8.1 (3.1)
Path Traversal: '\..\filename' in GitHub repository mlflow/mlflow prior to 2.9.2. mlflow 2023-12-15T01:15:00+00:00 2024-02-14T00:26:12.242703+00:00
pysec-2024-35
5.4 (3.1)
Versions of the package dash-core-components before 2.13.0; all versions of the package d… dash 2024-02-02T05:15:00+00:00 2024-02-10T07:18:43.563257+00:00
pysec-2024-12
LlamaIndex (aka llama_index) through 0.9.34 allows SQL injection via the Text-to-SQL feat… llama-index 2024-01-22T01:15:00Z 2024-02-10T01:22:25.611009Z
pysec-2024-34
9.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6-server 2024-01-30T16:15:00+00:00 2024-02-08T20:20:16.896186+00:00
pysec-2024-33
9.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6-node 2024-01-30T16:15:00+00:00 2024-02-08T20:20:16.842528+00:00
pysec-2024-32
4.3 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.342089+00:00
pysec-2024-31
3.7 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.276390+00:00
pysec-2024-30
8.8 (3.1)
The vantage6 technology enables to manage and deploy privacy enhancing technologies like … vantage6 2024-01-30T16:15:00+00:00 2024-02-08T18:22:28.210087+00:00
pysec-2024-29
4.9 (3.1)
OctoPrint is a web interface for 3D printer.s OctoPrint versions up until and including 1… octoprint 2024-01-31T18:15:00+00:00 2024-02-08T07:19:40.535297+00:00
pysec-2024-28
An issue was discovered in Django 3.2 before 3.2.24, 4.2 before 4.2.10, and Django 5.0 be… django 2024-02-06T22:16:00+00:00 2024-02-07T00:25:46.826634+00:00
ID Description Type
ID Description Updated
gsd-2024-33161 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747995Z
gsd-2024-33423 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747796Z
gsd-2024-33248 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747603Z
gsd-2024-33447 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747407Z
gsd-2024-33001 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747211Z
gsd-2024-33238 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.747012Z
gsd-2024-33157 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.746799Z
gsd-2024-33038 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.746582Z
gsd-2024-33366 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.746377Z
gsd-2024-33195 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.746132Z
gsd-2024-33277 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.745937Z
gsd-2024-33485 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.745744Z
gsd-2024-33286 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.745545Z
gsd-2024-33169 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.745339Z
gsd-2024-33029 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.745140Z
gsd-2024-33399 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.744940Z
gsd-2024-33249 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.744741Z
gsd-2024-33016 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.744543Z
gsd-2024-33373 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.744340Z
gsd-2024-33524 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.744149Z
gsd-2024-33380 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.743956Z
gsd-2024-33237 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.743713Z
gsd-2024-33437 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.743513Z
gsd-2024-33404 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.743316Z
gsd-2024-33113 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.743114Z
gsd-2024-33473 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.742910Z
gsd-2024-33078 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.742686Z
gsd-2024-33064 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.742494Z
gsd-2024-33081 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.742295Z
gsd-2024-33206 The format of the source doesn't require a description, click on the link for more details. 2024-04-24T05:02:09.742097Z
ID Description Published Updated
mal-2026-528 Malicious code in @shije/new-qs (npm) 2026-01-27T07:55:42Z 2026-02-02T05:56:25Z
mal-2026-527 Malicious code in @santandergroup-uk/edgehome-components (npm) 2026-01-27T08:16:51Z 2026-02-02T05:56:25Z
mal-2026-526 Malicious code in @row-components/pricing-embedded-sui (npm) 2026-01-27T08:01:02Z 2026-02-02T05:56:25Z
mal-2026-519 Malicious code in @afg-ikea/ikea-modals (npm) 2026-01-27T02:11:41Z 2026-02-02T05:56:25Z
mal-2026-518 Malicious code in @afg-ikea/ikea-kiosk-related-components (npm) 2026-01-27T02:11:40Z 2026-02-02T05:56:25Z
mal-2026-517 Malicious code in @afg-ikea/ikea-family-registration-module (npm) 2026-01-27T02:11:40Z 2026-02-02T05:56:25Z
mal-2026-509 Malicious code in @sommos/create-program-template-form-data (npm) 2026-01-26T18:20:46Z 2026-02-02T05:56:25Z
mal-2026-635 Malicious code in finnairshop (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-633 Malicious code in cowsay-fancy (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-632 Malicious code in cowsay-deluxe (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-631 Malicious code in cowsay-caps (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-630 Malicious code in cowsay-allcaps (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-629 Malicious code in client-desktop-web-installer (npm) 2026-02-02T05:19:43Z 2026-02-02T05:19:43Z
mal-2026-627 Malicious code in theanswre (PyPI) 2026-01-29T13:57:51Z 2026-02-02T01:40:48Z
mal-2026-624 Malicious code in hultine (PyPI) 2026-02-01T21:00:48Z 2026-02-01T21:00:48Z
mal-2026-621 Malicious code in base-local-planner (PyPI) 2026-02-01T19:14:02Z 2026-02-01T19:27:08Z
mal-2026-622 Malicious code in genvia-utils (PyPI) 2026-02-01T19:06:58Z 2026-02-01T19:06:58Z
mal-2026-619 Malicious code in colorss (PyPI) 2026-02-01T10:28:48Z 2026-02-01T11:10:26Z
mal-2026-620 Malicious code in wandb-widget (PyPI) 2026-02-01T10:15:33Z 2026-02-01T10:15:33Z
mal-2026-618 Malicious code in learning-curve-projects (PyPI) 2026-01-31T19:19:08Z 2026-01-31T19:23:36Z
mal-2026-614 Malicious code in mkdocs-dataopslive (PyPI) 2026-01-31T02:09:30Z 2026-01-31T02:09:33Z
mal-2026-613 Malicious code in fastpi (PyPI) 2026-01-30T23:26:42Z 2026-01-30T23:30:09Z
mal-2025-6583 Malicious code in serverkeeper-verifier (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-3475 Malicious code in timekeeper-verifier (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-3006 Malicious code in tcloud-python-test (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-191905 Malicious code in time-service-checker (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-191904 Malicious code in time-server-test (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-191903 Malicious code in time-server-analyzer (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-191902 Malicious code in time-server-analysis (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
mal-2025-191901 Malicious code in time-check-server-get (PyPI) 2025-02-25T18:18:21Z 2026-01-30T19:45:46Z
ID Description Published Updated
wid-sec-w-2025-0512 Red Hat Advanced Cluster Security: Schwachstelle ermöglicht Denial of Service 2025-03-10T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-3082 Apache Commons IO: Schwachstelle ermöglicht Denial of Service 2024-10-03T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-2133 Linux Kernel: Mehrere Schwachstellen 2024-09-12T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-1240 OpenSSL: Schwachstelle ermöglicht Codeausführung, Datenmanipulation, Offenlegung von Informationen und Dos 2024-05-28T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-1171 OpenSSL: Schwachstelle ermöglicht Denial of Service 2024-05-16T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-0726 cURL: Mehrere Schwachstellen 2024-03-26T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-0093 OpenSSL: Schwachstelle ermöglicht Denial of Service 2024-01-15T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2024-0021 X.Org X11: Mehrere Schwachstellen ermöglichen Denial of Service 2019-08-06T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2023-1053 OpenSSL: Schwachstelle ermöglicht Denial of Service 2023-04-20T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2023-0068 OpenSSH: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-06-29T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2022-2043 Python: Schwachstelle ermöglicht Denial of Service 2022-11-08T23:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2022-1337 Python: Mehrere Schwachstellen 2022-09-07T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2022-1150 Python: Schwachstelle ermöglicht Offenlegung von Informationen 2022-08-22T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2022-0879 Red Hat Enterprise Linux: Mehrere Schwachstellen 2022-08-01T22:00:00.000+00:00 2025-12-17T23:00:00.000+00:00
wid-sec-w-2025-2865 TYPO3 Extension (Single Sign-on SAML): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2864 Sonatype Nexus Repository Manager: Mehrere Schwachstellen 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2863 Arista EOS: Schwachstelle ermöglicht Denial of Service 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2862 Nagios Enterprises Nagios XI: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2861 Red Hat OpenShift GitOps: Schwachstelle ermöglicht Erlangen von Administratorrechten 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2859 JetBrains IntelliJ IDEA: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2857 Claris FileMaker Server: Schwachstelle ermöglicht Codeausführung 2025-12-16T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2846 strongSwan (NetworkManager-Plugin): Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2025-12-14T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2666 vllm und PyTorch: Schwachstelle ermöglicht DoS und potenzielle Codeausführung 2025-11-23T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2485 cURL (wcurl): Schwachstelle ermöglicht Manipulation von Dateien 2025-11-03T23:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-2404 AMD “Zen 5” Prozessoren: Schwachstelle gefährdet Vertraulichkeit und Integrität 2025-10-23T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1933 Linux Kernel: Eine Schwachstelle ermöglicht einen Denial of Service 2025-08-31T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1914 Linux Kernel: Schwachstelle ermöglicht Codeausführung 2025-08-26T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1830 http/2 Implementierungen: Schwachstelle ermöglicht Denial of Service 2025-08-13T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1639 Keycloak (Quarkus): Schwachstelle ermöglicht Offenlegung von Informationen 2025-07-23T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
wid-sec-w-2025-1569 Oracle Java SE: Mehrere Schwachstellen 2025-07-15T22:00:00.000+00:00 2025-12-16T23:00:00.000+00:00
ID Description Published Updated
ncsc-2024-0268 Kwetsbaarheden verholpen in Progress WhatsUp Gold 2024-06-26T07:43:11.795773Z 2024-08-08T07:50:41.453544Z
ncsc-2024-0326 Kwetsbaarheden verholpen in RoundCube Webmail 2024-08-08T07:45:42.674316Z 2024-08-08T07:45:42.674316Z
ncsc-2024-0325 Kwetsbaarheden verholpen in Aruba Networks ArubaOS en InstantOS 2024-08-07T09:04:14.955844Z 2024-08-07T09:04:14.955844Z
ncsc-2024-0324 Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird 2024-08-07T08:58:12.457235Z 2024-08-07T08:58:12.457235Z
ncsc-2024-0323 Kwetsbaarheden verholpen in Siemens Omnivise 2024-08-06T09:29:53.292433Z 2024-08-06T09:29:53.292433Z
ncsc-2024-0322 Kwetsbaarheden verholpen in Google Android en Samsung Mobile 2024-08-06T09:25:08.253832Z 2024-08-06T09:25:08.253832Z
ncsc-2024-0269 Kwetsbaarheden verholpen in VMware ESXi en vCenter Server 2024-06-26T09:02:10.988453Z 2024-07-30T09:32:13.311694Z
ncsc-2024-0321 Kwetsbaarheid verholpen in Progress MOVEit Transfer 2024-07-30T08:45:50.286085Z 2024-07-30T08:45:50.286085Z
ncsc-2024-0320 Kwetsbaarheden verholpen in Apple MacOS 2024-07-30T08:42:07.365674Z 2024-07-30T08:42:07.365674Z
ncsc-2024-0319 Kwetsbaarheden verholpen in Apple iOS en iPadOS 2024-07-30T08:39:16.399394Z 2024-07-30T08:39:16.399394Z
ncsc-2024-0318 Kwetsbaarheden verholpen in Docker Moby 2024-07-25T11:28:37.900721Z 2024-07-25T11:28:37.900721Z
ncsc-2024-0317 Kwetsbaarheid gevonden in Ivanti Endpoint Manager 2024-07-24T14:37:09.864241Z 2024-07-24T14:37:09.864241Z
ncsc-2024-0316 Kwetsbaarheid verholpen in Broadcom Symantec Privileged Access Management 2024-07-22T09:17:29.853486Z 2024-07-22T09:17:29.853486Z
ncsc-2024-0315 Kwetsbaarheid verholpen in Cisco Smart Software Manager On-Prem 2024-07-19T13:06:00.004663Z 2024-07-19T13:06:00.004663Z
ncsc-2024-0314 Kwetsbaarheden verholpen in Apache HTTP Server 2024-07-19T07:34:12.997118Z 2024-07-19T07:34:12.997118Z
ncsc-2024-0313 Kwetsbaarheid verholpen in HPE 3PAR Service Processor 2024-07-18T13:58:07.127103Z 2024-07-18T13:58:07.127103Z
ncsc-2024-0312 Kwetsbaarheden verholpen in Solarwinds Platform 2024-07-18T13:23:55.561789Z 2024-07-18T13:23:55.561789Z
ncsc-2024-0311 Kwetsbaarheden verholpen in Cisco Secure Email Gateway 2024-07-18T12:46:34.019785Z 2024-07-18T12:46:34.019785Z
ncsc-2024-0310 Kwetsbaarheid verholpen in SonicOS 2024-07-18T12:25:06.813302Z 2024-07-18T12:25:06.813302Z
ncsc-2024-0309 Kwetsbaarheid gevonden in Ivanti Endpoint Manager 2024-07-18T12:00:25.689314Z 2024-07-18T12:00:25.689314Z
ncsc-2024-0308 Kwetsbaarheden verholpen in Oracle Virtualization 2024-07-17T13:55:57.768494Z 2024-07-17T13:55:57.768494Z
ncsc-2024-0307 Kwetsbaarheden verholpen in Oracle Systems 2024-07-17T13:55:53.343378Z 2024-07-17T13:55:53.343378Z
ncsc-2024-0306 Kwetsbaarheden verholpen in Oracle Supply Chain 2024-07-17T13:55:37.062720Z 2024-07-17T13:55:37.062720Z
ncsc-2024-0305 Kwetsbaarheden verholpen in Oracle Siebel CRM 2024-07-17T13:55:31.923970Z 2024-07-17T13:55:31.923970Z
ncsc-2024-0304 Kwetsbaarheden verholpen in Oracle PeopleSoft 2024-07-17T13:55:12.225033Z 2024-07-17T13:55:12.225033Z
ncsc-2024-0303 Kwetsbaarheden verholpen in Oracle MySQL 2024-07-17T13:54:56.036488Z 2024-07-17T13:54:56.036488Z
ncsc-2024-0302 Kwetsbaarheden verholpen in Oracle JD Edwards 2024-07-17T13:54:52.031796Z 2024-07-17T13:54:52.031796Z
ncsc-2024-0301 Kwetsbaarheden verholpen in Oracle Java SE 2024-07-17T13:54:46.188033Z 2024-07-17T13:54:46.188033Z
ncsc-2024-0300 Kwetsbaarheid verholpen in Oracle Hyperion 2024-07-17T13:54:07.536172Z 2024-07-17T13:54:07.536172Z
ncsc-2024-0299 Kwetsbaarheden verholpen in Oracle Analytics 2024-07-17T13:54:03.545073Z 2024-07-17T13:54:03.545073Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
rhsa-2025:3051 Red Hat Security Advisory: Gatekeeper v3.17.2 2025-03-20T04:38:00+00:00 2026-02-17T07:56:57+00:00
rhsa-2025:3053 Red Hat Security Advisory: Gatekeeper v3.15.4 2025-03-20T04:55:47+00:00 2026-02-17T07:56:56+00:00
rhsa-2025:3052 Red Hat Security Advisory: Gatekeeper v3.18.0 2025-03-20T04:53:19+00:00 2026-02-17T07:56:54+00:00
rhsa-2025:3017 Red Hat Security Advisory: fence-agents security update 2025-03-18T19:49:55+00:00 2026-02-17T07:56:54+00:00
rhsa-2025:2789 Red Hat Security Advisory: Red Hat build of OpenTelemetry 3.5.0 release 2025-03-13T14:28:17+00:00 2026-02-17T07:56:52+00:00
rhsa-2025:2688 Red Hat Security Advisory: fence-agents security update 2025-03-12T15:44:33+00:00 2026-02-17T07:56:52+00:00
rhsa-2025:2664 Red Hat Security Advisory: Red Hat Ansible Automation Platform Execution Environments Container Release Update 2025-03-11T15:12:47+00:00 2026-02-17T07:56:49+00:00
rhsa-2025:2612 Red Hat Security Advisory: python-jinja2 security update 2025-03-11T01:02:56+00:00 2026-02-17T07:56:48+00:00
rhsa-2025:2526 Red Hat Security Advisory: ACS 4.5 enhancement update 2025-03-10T15:51:20+00:00 2026-02-17T07:56:43+00:00
rhsa-2025:2399 Red Hat Security Advisory: Satellite 6.16.3 Async Update 2025-03-05T14:29:44+00:00 2026-02-17T07:56:43+00:00
rhsa-2025:23948 Red Hat Security Advisory: grafana security update 2025-12-22T17:10:29+00:00 2026-02-17T07:56:43+00:00
rhsa-2025:23741 Red Hat Security Advisory: go-toolset:rhel8 security update 2025-12-22T01:35:17+00:00 2026-02-17T07:56:43+00:00
rhsa-2025:23916 Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.18 security, enhancement & bug fix update 2025-12-22T14:47:09+00:00 2026-02-17T07:56:41+00:00
rhsa-2025:23747 Red Hat Security Advisory: grafana security update 2025-12-22T01:42:23+00:00 2026-02-17T07:56:41+00:00
rhsa-2025:23746 Red Hat Security Advisory: grafana security update 2025-12-22T01:42:33+00:00 2026-02-17T07:56:41+00:00
rhsa-2025:23740 Red Hat Security Advisory: go-toolset:rhel8 security update 2025-12-22T01:19:27+00:00 2026-02-17T07:56:38+00:00
rhsa-2025:23737 Red Hat Security Advisory: go-toolset:rhel8 security update 2025-12-22T01:43:37+00:00 2026-02-17T07:56:38+00:00
rhsa-2025:23736 Red Hat Security Advisory: grafana security update 2025-12-22T01:28:57+00:00 2026-02-17T07:56:37+00:00
rhsa-2025:23733 Red Hat Security Advisory: go-toolset:rhel8 security update 2025-12-22T01:38:52+00:00 2026-02-17T07:56:36+00:00
rhsa-2025:23546 Red Hat Security Advisory: Red Hat Quay 3.16.0 2025-12-17T18:13:48+00:00 2026-02-17T07:56:36+00:00
rhsa-2025:23535 Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.12 2025-12-17T15:38:59+00:00 2026-02-17T07:56:35+00:00
rhsa-2025:23534 Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.2.7 2025-12-17T15:37:08+00:00 2026-02-17T07:56:34+00:00
rhsa-2025:23531 Red Hat Security Advisory: RHOAI 2.25.1 - Red Hat OpenShift AI 2025-12-17T15:17:16+00:00 2026-02-17T07:56:33+00:00
rhsa-2025:23421 Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.8.1 release 2025-12-16T22:09:50+00:00 2026-02-17T07:56:32+00:00
rhsa-2025:23394 Red Hat Security Advisory: skopeo security update 2025-12-18T13:16:28+00:00 2026-02-17T07:56:31+00:00
rhsa-2025:23374 Red Hat Security Advisory: container-tools:rhel8 security update 2025-12-18T13:15:55+00:00 2026-02-17T07:56:30+00:00
rhsa-2025:23348 Red Hat Security Advisory: skopeo security update 2025-12-18T10:08:06+00:00 2026-02-17T07:56:30+00:00
rhsa-2025:23295 Red Hat Security Advisory: podman security update 2025-12-18T10:17:02+00:00 2026-02-17T07:56:29+00:00
rhsa-2025:23326 Red Hat Security Advisory: skopeo security update 2025-12-18T13:18:48+00:00 2026-02-17T07:56:28+00:00
rhsa-2025:23325 Red Hat Security Advisory: podman security update 2025-12-18T13:20:27+00:00 2026-02-17T07:56:27+00:00
ID Description Published Updated
icsa-16-187-01 Rexroth Bosch BLADEcontrol-WebVIS Vulnerabilities 2016-04-08T06:00:00.000000Z 2025-06-09T17:22:48.711804Z
icsa-16-182-02b Siemens SICAM PAS Information Disclosure Vulnerabilities (Update B) 2016-04-03T06:00:00.000000Z 2025-06-09T17:22:36.258239Z
icsa-16-182-01 Eaton ELCSoft Programming Software Memory Vulnerabilities 2016-04-03T06:00:00.000000Z 2025-06-09T17:22:23.490004Z
icsa-16-175-03 Meinberg NTP Time Server Vulnerabilities 2016-03-27T06:00:00.000000Z 2025-06-09T17:22:04.840219Z
icsa-16-175-01 Rockwell Automation Allen-Bradley Stratix 5400 and 5410 Packet Corruption Vulnerability 2016-03-27T06:00:00.000000Z 2025-06-09T17:21:58.604196Z
icsa-16-173-03 Rockwell Automation FactoryTalk EnergyMetrix Vulnerabilities 2016-03-25T06:00:00.000000Z 2025-06-09T17:21:46.144304Z
icsa-16-173-02 Schneider Electric PowerLogic PM8ECC Cross-site Scripting Vulnerability 2016-03-25T06:00:00.000000Z 2025-06-09T17:21:39.931685Z
icsa-16-173-01a Advantech WebAccess ActiveX Vulnerabilities (Update A) 2016-03-25T06:00:00.000000Z 2025-06-09T17:21:20.975954Z
icsa-16-168-01 Moxa PT-7728 Series Switch Improper Authorization Vulnerability 2016-03-20T06:00:00.000000Z 2025-06-09T17:21:14.745293Z
icsa-16-166-02 OSIsoft PI AF Server Input Validation Vulnerability 2016-03-18T06:00:00.000000Z 2025-06-09T17:21:08.204759Z
icsa-16-166-01 OSIsoft PI SQL Data Access Server Input Validation Vulnerability 2016-03-18T06:00:00.000000Z 2025-06-09T17:21:01.997483Z
icsa-16-161-02 Siemens SIMATIC WinCC Flexible Weakly Protected Credentials Vulnerability 2016-03-13T07:00:00.000000Z 2025-06-09T17:20:55.764569Z
icsa-16-161-01 Siemens SIMATIC S7-300 Denial-of-Service Vulnerability 2016-03-13T07:00:00.000000Z 2025-06-09T17:20:49.461799Z
icsa-12-030-01a Siemens SIMATIC WinCC Vulnerabilities 2012-11-02T06:00:00.000000Z 2025-06-09T16:35:39.943110Z
icsa-12-024-02 MICROSYS PROMOTIC Vulnerabilities 2012-10-27T06:00:00.000000Z 2025-06-09T16:35:20.987121Z
icsa-12-024-01 Ocean Data Systems Dream Reports XSS and Write Access Violation Vulnerabilities 2012-10-27T06:00:00.000000Z 2025-06-09T16:35:08.232133Z
icsa-12-018-01b Schneider Electric Quantum Ethernet Module Hard-Coded Credentials 2012-10-21T06:00:00.000000Z 2025-06-09T16:35:02.023038Z
icsa-12-016-01 Cogent DataHub XSS and CRLF 2012-10-19T06:00:00.000000Z 2025-06-09T16:34:49.600837Z
icsa-12-013-01 ING. Punzenberger COPA-DATA GMBH DoS Vulnerabilities 2012-10-16T06:00:00.000000Z 2025-06-09T16:34:37.147014Z
icsa-12-012-01a Open Automation Software OPC Systems.NET Vulnerability 2012-10-15T06:00:00.000000Z 2025-06-09T16:34:24.700109Z
icsa-12-006-01 3S CoDeSys Vulnerabilities 2012-10-09T06:00:00.000000Z 2025-06-09T16:34:06.000552Z
icsa-11-362-01 ScadaTEC ScadaPhone & Modbus TagServer Buffer Overflow Vulnerability 2011-09-30T06:00:00.000000Z 2025-06-09T16:33:59.781942Z
icsa-11-361-01 Siemens Automation License Manager Vulnerabilities 2011-09-29T06:00:00.000000Z 2025-06-09T16:33:34.827604Z
icsa-11-355-02 WellinTech KingView History Server Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:28.540538Z
icsa-11-355-01 7-Technologies IGSS Buffer Overflow 2011-09-23T06:00:00.000000Z 2025-06-09T16:33:22.315361Z
icsa-11-353-01 7-Technologies Interactive Graphical SCADA 2011-09-21T06:00:00.000000Z 2025-06-09T16:33:16.051366Z
icsa-11-343-01 Siemens FactoryLink Multiple ActiveX Vulnerabilities 2011-09-11T06:00:00.000000Z 2025-06-09T16:33:03.608185Z
icsa-16-026-02 Rockwell Automation MicroLogix 1100 PLC Overflow Vulnerability 2016-10-29T06:00:00.000000Z 2025-06-09T16:32:57.382277Z
icsa-16-026-01 MICROSYS PROMOTIC Memory Corruption Vulnerability 2016-10-29T06:00:00.000000Z 2025-06-09T16:32:51.175680Z
icsa-16-019-01 Siemens OZW672 and OZW772 XSS Vulnerability 2016-10-22T06:00:00.000000Z 2025-06-09T16:32:44.948067Z
ID Description Published Updated
cisco-sa-broadworks-ssrf-bjeqfpp Cisco BroadWorks CommPilot Application Software Vulnerabilities 2022-11-02T16:00:00+00:00 2023-01-24T17:26:16+00:00
cisco-sa-npe-hardening-dkel83jp Identifying and Mitigating Security Exposures When Using No Payload Encryption Images with Existing Cryptographic Configuration 2023-01-18T16:00:00+00:00 2023-01-18T16:00:00+00:00
cisco-sa-cucm-sql-rppczr8n Cisco Unified Communications Manager SQL Injection Vulnerability 2023-01-18T16:00:00+00:00 2023-01-18T16:00:00+00:00
cisco-sa-expressway-filewrite-bsfvwuev Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities 2022-05-18T16:00:00+00:00 2023-01-17T20:24:01+00:00
cisco-sa-sb-rv-rcedos-7hjp74jd Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Remote Code Execution and Denial of Service Vulnerability 2023-01-11T16:00:00+00:00 2023-01-12T16:07:37+00:00
cisco-sa-rv-cmd-exe-n47kjqle Cisco Small Business RV160 and RV260 Series VPN Routers Remote Command Execution Vulnerability 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-lldp-memlk-mcoecpt Cisco Webex Room Phone and Cisco Webex Share Link Layer Discovery Protocol Memory Leak Vulnerability 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-ip-phone-auth-bypass-psqxzrpr Cisco IP Phone 7800 and 8800 Series Web Management Interface Authentication Bypass Vulnerability 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-ind-fzyvjjtg Cisco Industrial Network Director Vulnerabilities 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-cxagent-goq9qjqz Cisco CX Cloud Agent Privilege Escalation Vulnerabilities 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-bw-xss-ezqdxqg4 Cisco BroadWorks Application Delivery Platform, Application Server, and Xtended Services Platform Cross-Site Scripting Vulnerability 2023-01-11T16:00:00+00:00 2023-01-11T16:00:00+00:00
cisco-sa-20170927-profinet Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T05:54:03+00:00
cisco-sa-20170927-dhcp Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T05:51:12+00:00
cisco-sa-20170927-ike Cisco IOS and IOS XE Software Internet Key Exchange Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T05:27:48+00:00
cisco-sa-20170927-rbip-dos Cisco IOS Software for Cisco Integrated Services Routers Generation 2 Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-17T04:17:58+00:00
cisco-sa-20171103-bgp Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial of Service Vulnerability 2017-11-03T16:00:00+00:00 2022-12-16T21:17:38+00:00
cisco-sa-20170927-nat Cisco IOS Software Network Address Translation Denial of Service Vulnerability 2017-09-27T16:00:00+00:00 2022-12-16T21:17:38+00:00
cisco-sa-20170927-cip Cisco IOS Software Common Industrial Protocol Request Denial of Service Vulnerabilities 2017-09-27T16:00:00+00:00 2022-12-16T21:17:37+00:00
cisco-sa-20180328-dhcpr3 Cisco IOS and IOS XE Software DHCP Version 4 Relay Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:57+00:00
cisco-sa-20180328-ike-dos Cisco IOS and IOS XE Software Internet Key Exchange Version 1 Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:56+00:00
cisco-sa-20180328-dos Cisco IOS Software Integrated Services Module for VPN Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:54+00:00
cisco-sa-20180328-dhcpr1 Cisco IOS and IOS XE Software DHCP Version 4 Relay Heap Overflow Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:52+00:00
cisco-sa-20180207-rv13x Cisco RV132W and RV134W Remote Code Execution and Denial of Service Vulnerability 2018-02-07T16:00:00+00:00 2022-12-15T22:19:52+00:00
cisco-sa-20180328-snmp Cisco IOS Software Simple Network Management Protocol GET MIB Object ID Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:51+00:00
cisco-sa-20191106-sbrv-cmd-x Cisco Small Business RV016, RV042, RV042G, and RV082 Routers Arbitrary Command Execution Vulnerability 2019-11-06T16:00:00+00:00 2022-12-15T22:19:50+00:00
cisco-sa-20180328-slogin Cisco IOS Software Login Enhancements Login Block Denial of Service Vulnerabilities 2018-03-28T16:00:00+00:00 2022-12-15T22:19:49+00:00
cisco-sa-hyperflex-rce-tjjnrkpr Cisco HyperFlex HX Command Injection Vulnerabilities 2021-05-05T16:00:00+00:00 2022-12-15T22:19:48+00:00
cisco-sa-20180328-ike Cisco IOS and IOS XE Software Internet Key Exchange Memory Leak Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:48+00:00
cisco-sa-20180328-lldp Cisco IOS, IOS XE, and IOS XR Software Link Layer Discovery Protocol Buffer Overflow Vulnerabilities 2018-03-28T16:00:00+00:00 2022-12-15T22:19:45+00:00
cisco-sa-20180328-dhcpr2 Cisco IOS and IOS XE Software DHCP Version 4 Relay Reply Denial of Service Vulnerability 2018-03-28T16:00:00+00:00 2022-12-15T22:19:44+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
msrc_cve-2024-50006 ext4: fix i_data_sem unlock order in ext4_ind_migrate() 2024-10-01T07:00:00.000Z 2026-02-21T02:18:16.000Z
msrc_cve-2024-46846 spi: rockchip: Resolve unbalanced runtime PM / system PM handling 2024-09-01T07:00:00.000Z 2026-02-21T02:18:11.000Z
msrc_cve-2025-21846 acct: perform last write from workqueue 2025-03-02T00:00:00.000Z 2026-02-21T02:18:03.000Z
msrc_cve-2024-46758 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. 2024-09-01T07:00:00.000Z 2026-02-21T02:17:10.000Z
msrc_cve-2024-0133 NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering. 2024-09-01T07:00:00.000Z 2026-02-21T02:17:01.000Z
msrc_cve-2022-32208 When curl < 7.84.0 does FTP transfers secured by krb5 it handles message verification failures wrongly. This flaw makes it possible for a Man-In-The-Middle attack to go unnoticed and even allows it to inject data to the client. 2022-07-02T00:00:00.000Z 2026-02-21T02:16:46.000Z
msrc_cve-2024-50007 ALSA: asihpi: Fix potential OOB array access 2024-10-01T07:00:00.000Z 2026-02-21T02:16:42.000Z
msrc_cve-2025-21864 tcp: drop secpath at the same time as we currently drop dst 2025-03-02T00:00:00.000Z 2026-02-21T02:16:27.000Z
msrc_cve-2025-21855 ibmvnic: Don't reference skb after sending to VIOS 2025-03-02T00:00:00.000Z 2026-02-21T02:15:21.000Z
msrc_cve-2024-46773 drm/amd/display: Check denominator pbn_div before used 2024-09-01T07:00:00.000Z 2026-02-21T02:15:14.000Z
msrc_cve-2024-46840 btrfs: clean up our handling of refs == 0 in snapshot delete 2024-09-01T07:00:00.000Z 2026-02-21T02:15:07.000Z
msrc_cve-2022-27780 The curl URL parser wrongly accepts percent-encoded URL separators like '/'when decoding the host name part of a URL making it a *different* URL usingthe wrong host name when it is later retrieved.For example a URL like `http://example.com%2F127.0.0.1/` would be allowed bythe parser and get transposed into `http://example.com/127.0.0.1/`. This flawcan be used to circumvent filters checks and more. 2022-06-02T00:00:00.000Z 2026-02-21T02:15:07.000Z
msrc_cve-2024-50073 tty: n_gsm: Fix use-after-free in gsm_cleanup_mux 2024-10-01T07:00:00.000Z 2026-02-21T02:14:47.000Z
msrc_cve-2024-49882 ext4: fix double brelse() the buffer of the extents path 2024-10-01T07:00:00.000Z 2026-02-21T02:13:29.000Z
msrc_cve-2024-31228 Denial-of-service due to unbounded pattern matching in Redis 2024-10-01T07:00:00.000Z 2026-02-21T02:13:27.000Z
msrc_cve-2024-8925 Erroneous parsing of multipart form data 2024-10-01T07:00:00.000Z 2026-02-21T02:12:24.000Z
msrc_cve-2024-49974 NFSD: Limit the number of concurrent async COPY operations 2024-10-01T07:00:00.000Z 2026-02-21T02:12:18.000Z
msrc_cve-2024-8926 PHP CGI Parameter Injection Vulnerability (CVE-2024-4577 bypass) 2024-10-01T07:00:00.000Z 2026-02-21T02:11:13.000Z
msrc_cve-2024-49971 drm/amd/display: Increase array size of dummy_boolean 2024-10-01T07:00:00.000Z 2026-02-21T02:10:31.000Z
msrc_cve-2024-46843 scsi: ufs: core: Remove SCSI host only if added 2024-09-01T07:00:00.000Z 2026-02-21T02:10:07.000Z
msrc_cve-2024-46735 ublk_drv: fix NULL pointer dereference in ublk_ctrl_start_recovery() 2024-09-01T07:00:00.000Z 2026-02-21T02:09:59.000Z
msrc_cve-2024-49945 net/ncsi: Disable the ncsi work before freeing the associated structure 2024-10-01T07:00:00.000Z 2026-02-21T02:09:18.000Z
msrc_cve-2024-46796 smb: client: fix double put of @cfile in smb2_set_path_size() 2024-09-01T07:00:00.000Z 2026-02-21T02:09:15.000Z
msrc_cve-2024-9026 PHP-FPM logs from children may be altered 2024-10-01T07:00:00.000Z 2026-02-21T02:09:10.000Z
msrc_cve-2024-46741 misc: fastrpc: Fix double free of 'buf' in error path 2024-09-01T07:00:00.000Z 2026-02-21T02:08:30.000Z
msrc_cve-2024-49973 r8169: add tally counter fields added with RTL8125 2024-10-01T07:00:00.000Z 2026-02-21T02:08:21.000Z
msrc_cve-2024-46841 btrfs: don't BUG_ON on ENOMEM from btrfs_lookup_extent_info() in walk_down_proc() 2024-09-01T07:00:00.000Z 2026-02-21T02:07:50.000Z
msrc_cve-2024-46797 powerpc/qspinlock: Fix deadlock in MCS queue 2024-09-01T07:00:00.000Z 2026-02-21T02:07:42.000Z
msrc_cve-2024-49972 drm/amd/display: Deallocate DML memory if allocation fails 2024-10-01T07:00:00.000Z 2026-02-21T02:07:06.000Z
msrc_cve-2024-46737 nvmet-tcp: fix kernel crash if commands allocation fails 2024-09-01T07:00:00.000Z 2026-02-21T02:06:51.000Z
ID Description Published Updated
ID Description Updated
var-201605-0133 The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo compo… 2025-12-22T21:57:05.201000Z
var-201201-0314 The Server Gated Cryptography (SGC) implementation in OpenSSL before 0.9.8s and 1.x befor… 2025-12-22T21:57:04.516000Z
var-202108-1057 An integer overflow was addressed with improved input validation. This issue is fixed in … 2025-12-22T21:57:04.449000Z
var-202012-1527 The X.509 GeneralName type is a generic type for representing different types of names. O… 2025-12-22T21:57:03.703000Z
var-201912-0124 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T21:56:08.596000Z
var-201411-0450 parser.c in libxml2 before 2.9.2 does not properly prevent entity expansion even when ent… 2025-12-22T21:56:07.491000Z
var-201507-0303 Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlie… 2025-12-22T21:56:05.938000Z
var-201912-1852 Multiple memory corruption issues were addressed with improved memory handling. This issu… 2025-12-22T21:56:05.251000Z
var-201006-0308 The cgi_initialize_string function in cgi-bin/var.c in the web interface in CUPS before 1… 2025-12-22T21:55:57.225000Z
var-201911-1627 Insufficient access control in a subsystem for Intel (R) processor graphics in 6th, 7th, … 2025-12-22T21:55:25.259000Z
var-201506-0210 The do_free_upto function in crypto/cms/cms_smime.c in OpenSSL before 0.9.8zg, 1.0.0 befo… 2025-12-22T21:55:25.176000Z
var-201710-0928 When apr_time_exp*() or apr_os_exp_time*() functions are invoked with an invalid month fi… 2025-12-22T21:54:50.775000Z
var-201702-0198 An issue was discovered in certain Apple products. iOS before 10.2 is affected. Safari be… 2025-12-22T21:54:50.625000Z
var-201403-0514 The Montgomery ladder implementation in OpenSSL through 1.0.0l does not ensure that certa… 2025-12-22T21:54:19.285000Z
var-202003-1771 A flaw was found when an OpenSSL security provider is used with Wildfly, the 'enabled-pro… 2025-12-22T21:53:47.753000Z
var-200703-0022 Unspecified vulnerability in diskimages-helper in Apple Mac OS X 10.3.9 and 10.4 through … 2025-12-22T21:53:15.963000Z
var-202208-0404 zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in in… 2025-12-22T21:53:11.295000Z
var-201806-1444 An issue was discovered in certain Apple products. iOS before 11.4 is affected. macOS bef… 2025-12-22T21:53:10.834000Z
var-200512-0678 The Internet Key Exchange version 1 (IKEv1) implementations in Fortinet FortiOS 2.50, 2.8… 2025-12-22T21:53:09.515000Z
var-201302-0147 Buffer overflow in Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on … 2025-12-22T21:53:08.878000Z
var-200810-0137 Integer overflow in the WriteProlog function in texttops in CUPS before 1.3.9 allows remo… 2025-12-22T21:53:08.811000Z
var-202201-0424 A validation issue was addressed with improved input sanitization. This issue is fixed in… 2025-12-22T21:53:08.743000Z
var-201206-0055 Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … 2025-12-22T21:52:37.582000Z
var-201907-1641 In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recordin… 2025-12-22T21:52:35.010000Z
var-202006-0241 Incomplete cleanup from specific special register read operations in some Intel(R) Proces… 2025-12-22T21:52:34.234000Z
var-201506-0038 Heap-based buffer overflow in the PCNET controller in QEMU allows remote attackers to exe… 2025-12-22T21:52:34.044000Z
var-201508-0620 The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not … 2025-12-22T21:52:33.870000Z
var-201510-0529 Unspecified vulnerability in Oracle Java SE 6u101, 7u85, and 8u60; Java SE Embedded 8u51;… 2025-12-22T21:52:33.791000Z
var-201804-1179 An issue was discovered in certain Apple products. iOS before 11.3 is affected. Safari be… 2025-12-22T21:52:30.872000Z
var-200707-0577 Integer overflow in the StreamPredictor::StreamPredictor function in xpdf 3.02, as used i… 2025-12-22T21:52:30.780000Z
ID Description Published Updated
jvndb-2024-000039 Multiple vulnerabilities in a-blog cms 2024-04-10T13:55+09:00 2024-04-10T13:55+09:00
jvndb-2021-000088 Multiple vulnerabilities in Cybozu Remote Service 2021-09-30T16:03+09:00 2024-04-08T18:09+09:00
jvndb-2024-000038 Multiple vulnerabilities in WordPress Plugin "Ninja Forms" 2024-04-08T13:44+09:00 2024-04-08T13:44+09:00
jvndb-2022-002765 Multiple vulnerabilities in OMRON CX-Programmer 2022-11-28T15:40+09:00 2024-04-05T18:15+09:00
jvndb-2023-002786 Multiple vulnerabilities in OMRON CX-Programmer 2023-08-03T13:42+09:00 2024-04-05T17:39+09:00
jvndb-2024-000037 Multiple vulnerabilities in NEC Aterm series 2024-04-05T14:53+09:00 2024-04-05T14:53+09:00
jvndb-2024-003067 Multiple vulnerabilities in PLANEX COMMUNICATIONS wireless LAN routers 2024-04-05T14:17+09:00 2024-04-05T14:17+09:00
jvndb-2023-000077 Fujitsu Software Infrastructure Manager (ISM) stores sensitive information in cleartext 2023-08-04T17:31+09:00 2024-04-03T17:19+09:00
jvndb-2024-003051 FURUNO SYSTEMS Managed Switch ACERA 9010 running in non MS mode with the initial configuration has no password 2024-04-02T18:03+09:00 2024-04-02T18:03+09:00
jvndb-2024-003050 KEYENCE VT STUDIO may insecurely load Dynamic Link Libraries 2024-04-01T14:44+09:00 2024-04-01T14:44+09:00
jvndb-2023-000071 Multiple vulnerabilities in multiple ELECOM wireless LAN routers and wireless LAN repeaters 2023-07-11T15:37+09:00 2024-03-29T15:28+09:00
jvndb-2024-000036 "Yahoo! JAPAN" App vulnerable to cross-site scripting 2024-03-29T13:28+09:00 2024-03-29T13:28+09:00
jvndb-2023-000079 Multiple vulnerabilities in Special Interest Group Network for Analysis and Liaison's API 2023-08-07T15:15+09:00 2024-03-28T18:08+09:00
jvndb-2023-000081 "Rikunabi NEXT" App for Android fails to restrict custom URL schemes properly 2023-08-09T12:45+09:00 2024-03-28T18:01+09:00
jvndb-2023-000080 "FFRI yarai" and "FFRI yarai Home and Business Edition" handle exceptional conditions improperly 2023-08-07T17:39+09:00 2024-03-28T17:54+09:00
jvndb-2023-000078 Multiple vulnerabilities in Proself 2023-08-18T13:47+09:00 2024-03-28T17:43+09:00
jvndb-2024-003047 SEEnergy SVR-116 vulnerable to OS command injection 2024-03-28T11:38+09:00 2024-03-28T11:38+09:00
jvndb-2024-003026 Security information for Hitachi Disk Array Systems 2024-03-27T15:52+09:00 2024-03-27T15:52+09:00
jvndb-2024-000035 Multiple vulnerabilities in WordPress Plugin "Survey Maker" 2024-03-27T14:48+09:00 2024-03-27T14:48+09:00
jvndb-2024-000034 SonicDICOM Media Viewer may insecurely load Dynamic Link Libraries 2024-03-27T14:31+09:00 2024-03-27T14:31+09:00
jvndb-2023-000086 Rakuten WiFi Pocket vulnerable to improper authentication 2023-08-23T12:42+09:00 2024-03-27T13:43+09:00
jvndb-2024-000905 Mini Thread vulnerable to cross-site scripting 2024-03-26T17:43+09:00 2024-03-26T17:43+09:00
jvndb-2023-012042 WordPress plugin "MW WP Form" vulnerable to arbitrary file upload 2023-12-15T15:17+09:00 2024-03-26T17:39+09:00
jvndb-2023-000083 Multiple vulnerabilities in LuxCal Web Calendar 2023-08-21T13:29+09:00 2024-03-26T17:09+09:00
jvndb-2024-000906 ffBull vulnerable to OS command injection 2024-03-26T16:07+09:00 2024-03-26T16:07+09:00
jvndb-2024-000900 "EasyRange" may insecurely load executable files 2024-03-26T15:50+09:00 2024-03-26T15:50+09:00
jvndb-2024-000907 0ch BBS Script (0ch) vulnerable to cross-site scripting 2024-03-26T15:35+09:00 2024-03-26T15:35+09:00
jvndb-2024-000902 TvRock vulnerable to cross-site scripting 2024-03-26T14:27+09:00 2024-03-26T14:27+09:00
jvndb-2024-000904 WebProxy vulnerable to OS command injection 2024-03-26T14:19+09:00 2024-03-26T14:19+09:00
jvndb-2023-025113 BUFFALO LinkStation 200 series vulnerable to arbitrary code execution 2024-03-25T18:16+09:00 2024-03-25T18:16+09:00
ID Description Updated
ID Description Published Updated
suse-su-2025:21207-1 Security update for python311 2025-12-09T17:22:29Z 2025-12-09T17:22:29Z
suse-su-2025:21206-1 Security update for curl 2025-12-09T16:41:54Z 2025-12-09T16:41:54Z
suse-su-2025:21189-1 Security update for openexr 2025-12-09T16:32:45Z 2025-12-09T16:32:45Z
suse-su-2025:21202-1 Security update for gnutls 2025-12-09T15:54:41Z 2025-12-09T15:54:41Z
suse-su-2025:21201-1 Security update for glib2 2025-12-09T15:43:38Z 2025-12-09T15:43:38Z
suse-su-2025:21200-1 Security update for libmicrohttpd 2025-12-09T15:28:06Z 2025-12-09T15:28:06Z
suse-su-2025:4333-1 Security update for gegl 2025-12-09T14:42:10Z 2025-12-09T14:42:10Z
suse-su-2025:4330-1 Security update for kubevirt, virt-api-container, virt-controller-container, virt-exportproxy-container, virt-exportserver-container, virt-handler-container, virt-launcher-container, virt-libguestfs-tools-container, virt-operator-container, virt-pr-helper-container 2025-12-09T11:33:55Z 2025-12-09T11:33:55Z
suse-su-2025:21199-1 Security update for python311 2025-12-09T07:37:33Z 2025-12-09T07:37:33Z
suse-su-2025:21198-1 Security update for curl 2025-12-09T07:19:13Z 2025-12-09T07:19:13Z
suse-su-2025:4325-1 Security update for postgresql13 2025-12-08T18:19:54Z 2025-12-08T18:19:54Z
suse-su-2025:4324-1 Security update for gimp 2025-12-08T18:18:01Z 2025-12-08T18:18:01Z
suse-su-2025:4323-1 Security update for gnutls 2025-12-08T18:14:16Z 2025-12-08T18:14:16Z
suse-su-2025:21170-1 Security update for mozjs128 2025-12-03T20:38:36Z 2025-12-03T20:38:36Z
suse-su-2025:4319-1 Security update for cups 2025-12-03T12:34:14Z 2025-12-03T12:34:14Z
suse-su-2025:21168-1 Security update for python-cbor2 2025-12-02T13:51:54Z 2025-12-02T13:51:54Z
suse-su-2025:21167-1 Security update for strongswan 2025-12-02T13:13:07Z 2025-12-02T13:13:07Z
suse-su-2025:4315-1 Security update for the Linux Kernel 2025-12-01T10:12:39Z 2025-12-01T10:12:39Z
suse-su-2025:4313-1 Security update for python 2025-12-01T09:29:19Z 2025-12-01T09:29:19Z
suse-su-2025:4311-1 Security update for the Linux Kernel (Live Patch 4 for SUSE Linux Enterprise 15 SP7) 2025-11-28T16:33:27Z 2025-11-28T16:33:27Z
suse-su-2025:4310-1 Security update for libcryptopp 2025-11-28T15:54:32Z 2025-11-28T15:54:32Z
suse-su-2025:4309-1 Security update for curl 2025-11-28T15:40:02Z 2025-11-28T15:40:02Z
suse-su-2025:4308-1 Security update for glib2 2025-11-28T15:38:47Z 2025-11-28T15:38:47Z
suse-su-2025:4306-1 Security update for the Linux Kernel (Live Patch 1 for SUSE Linux Enterprise 15 SP7) 2025-11-28T14:03:42Z 2025-11-28T14:03:42Z
suse-su-2025:4305-1 Security update for grub2 2025-11-28T13:33:43Z 2025-11-28T13:33:43Z
suse-su-2025:4302-1 Security update for the Linux Kernel (Live Patch 0 for SUSE Linux Enterprise 15 SP7) 2025-11-28T13:04:17Z 2025-11-28T13:04:17Z
suse-su-2025:4300-1 Security update for curl 2025-11-28T12:57:53Z 2025-11-28T12:57:53Z
suse-su-2025:21164-1 Security update for java-17-openjdk 2025-11-28T10:42:01Z 2025-11-28T10:42:01Z
suse-su-2025:4297-1 Security update for python311 2025-11-28T10:03:21Z 2025-11-28T10:03:21Z
suse-su-2025:21162-1 Security update for java-21-openjdk 2025-11-28T09:51:39Z 2025-11-28T09:51:39Z
ID Description Published Updated
opensuse-su-2025:15711-1 opentofu-1.10.7-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15710-1 govulncheck-vulndb-0.0.20251105T184115-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15709-1 google-osconfig-agent-20251028.00-1.1 on GA media 2025-11-07T00:00:00Z 2025-11-07T00:00:00Z
opensuse-su-2025:15708-1 python311-Django4-4.2.26-1.1 on GA media 2025-11-06T00:00:00Z 2025-11-06T00:00:00Z
opensuse-su-2025:15707-1 ghostscript-10.06.0-2.1 on GA media 2025-11-06T00:00:00Z 2025-11-06T00:00:00Z
opensuse-su-2025:15706-1 erlang-28.1.1-1.1 on GA media 2025-11-06T00:00:00Z 2025-11-06T00:00:00Z
opensuse-su-2025:15705-1 runc-1.3.3-1.1 on GA media 2025-11-05T00:00:00Z 2025-11-05T00:00:00Z
opensuse-su-2025:15704-1 zellij-0.43.1-2.1 on GA media 2025-11-04T00:00:00Z 2025-11-04T00:00:00Z
opensuse-su-2025:15703-1 kubecolor-0.5.3-1.1 on GA media 2025-11-04T00:00:00Z 2025-11-04T00:00:00Z
opensuse-su-2025:15702-1 kernel-devel-6.17.7-1.1 on GA media 2025-11-04T00:00:00Z 2025-11-04T00:00:00Z
opensuse-su-2025:15701-1 java-1_8_0-openjdk-1.8.0.472-1.1 on GA media 2025-11-04T00:00:00Z 2025-11-04T00:00:00Z
opensuse-su-2025:15700-1 OpenSMTPD-7.8.0p0-1.1 on GA media 2025-11-04T00:00:00Z 2025-11-04T00:00:00Z
opensuse-su-2025:15699-1 python311-djangorestframework-simplejwt-5.5.1-1.1 on GA media 2025-11-03T00:00:00Z 2025-11-03T00:00:00Z
opensuse-su-2025:15698-1 redis-8.2.3-1.1 on GA media 2025-11-02T00:00:00Z 2025-11-02T00:00:00Z
opensuse-su-2025:15697-1 kumactl-2.12.3-1.1 on GA media 2025-11-02T00:00:00Z 2025-11-02T00:00:00Z
opensuse-su-2025:15696-1 python311-starlette-0.49.1-1.1 on GA media 2025-11-01T00:00:00Z 2025-11-01T00:00:00Z
opensuse-su-2025:15695-1 govulncheck-vulndb-0.0.20251029T215107-1.1 on GA media 2025-11-01T00:00:00Z 2025-11-01T00:00:00Z
opensuse-su-2025:20022-1 Security update for python-Django 2025-10-31T08:58:03Z 2025-10-31T08:58:03Z
opensuse-su-2025:15694-1 java-25-openj9-25.0.1.0-1.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15693-1 java-21-openj9-21.0.9.0-1.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15692-1 java-1_8_0-openj9-1.8.0.472-1.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15691-1 java-17-openj9-17.0.17.0-1.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15690-1 java-11-openj9-11.0.29.0-1.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15689-1 gomuks-0.3.1-2.1 on GA media 2025-10-31T00:00:00Z 2025-10-31T00:00:00Z
opensuse-su-2025:15688-1 libmozjs-140-0-140.4.0-2.1 on GA media 2025-10-30T00:00:00Z 2025-10-30T00:00:00Z
opensuse-su-2025:15687-1 chromedriver-142.0.7444.59-2.1 on GA media 2025-10-30T00:00:00Z 2025-10-30T00:00:00Z
opensuse-su-2025:15686-1 MozillaFirefox-144.0.2-1.1 on GA media 2025-10-30T00:00:00Z 2025-10-30T00:00:00Z
opensuse-su-2025:15685-1 ImageMagick-7.1.2.8-1.1 on GA media 2025-10-30T00:00:00Z 2025-10-30T00:00:00Z
opensuse-su-2025:20021-1 Security update for MozillaThunderbird 2025-10-29T17:54:20Z 2025-10-29T17:54:20Z
opensuse-su-2025:15684-1 xwayland-24.1.8-4.1 on GA media 2025-10-29T00:00:00Z 2025-10-29T00:00:00Z
ID Description Published Updated
ID Description Published Updated
bit-libpython-2024-9287 Virtual environment (venv) activation scripts don't quote paths 2025-08-11T13:53:00.985Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-8088 Infinite loop when iterating over zip archive entry names from zipfile.Path 2025-08-11T13:52:58.648Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-7592 Quadratic complexity parsing cookies with backslashes 2025-08-11T13:52:56.070Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-6923 Email header injection due to unquoted newlines 2025-08-11T13:52:53.987Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-6232 Regular-expression DoS when parsing TarFile headers 2025-08-11T13:52:51.685Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-4032 Incorrect IPv4 and IPv6 private ranges 2025-08-11T13:52:45.426Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-11168 Improper validation of IPv6 and IPvFuture addresses 2025-08-11T13:52:38.571Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-0450 Quoted zip-bomb protection for zipfile 2025-08-11T13:52:36.704Z 2025-11-06T13:25:46.476Z
bit-libpython-2024-0397 Memory race condition in ssl.SSLContext certificate store methods 2025-08-11T13:52:34.942Z 2025-11-06T13:25:46.476Z
bit-libpython-2023-6597 2025-08-11T13:52:33.085Z 2025-11-06T13:25:46.476Z
bit-libpython-2023-40217 2025-08-11T13:52:27.063Z 2025-11-06T13:25:46.476Z
bit-libpython-2023-27043 2025-08-11T13:52:20.772Z 2025-11-06T13:25:46.476Z
bit-libpython-2023-24329 2025-08-11T13:52:18.649Z 2025-11-06T13:25:46.476Z
bit-libpython-2022-42919 2025-08-11T13:52:06.949Z 2025-11-06T13:25:46.476Z
bit-libpython-2022-0391 2025-08-11T13:52:00.191Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-4189 2025-08-11T13:51:57.853Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-3737 2025-08-11T13:51:55.583Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-3733 2025-08-11T13:51:53.167Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-3426 2025-08-11T13:51:50.836Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-29921 2025-08-11T13:51:46.493Z 2025-11-06T13:25:46.476Z
bit-libpython-2021-28861 2025-08-11T13:51:44.193Z 2025-11-06T13:25:46.476Z
bit-libpython-2020-10735 2025-08-11T13:51:26.807Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-6491 NULL Pointer Dereference in PHP SOAP Extension via Large XML Namespace Prefix 2025-08-11T13:54:53.967Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1861 Stream HTTP wrapper truncates redirect location to 1024 bytes 2025-08-11T13:54:51.879Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1736 Stream HTTP wrapper header check might omit basic auth header 2025-08-11T13:54:49.369Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1735 pgsql extension does not check for errors during escaping 2025-08-11T13:54:47.127Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1734 Streams HTTP wrapper does not fail for headers with invalid name and no colon 2025-08-11T13:54:44.717Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1220 Null byte termination in hostnames 2025-08-11T13:54:42.636Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1219 libxml streams use wrong content-type header when requesting a redirected resource 2025-08-11T13:54:40.311Z 2025-11-06T13:25:46.476Z
bit-libphp-2025-1217 Header parser of http stream wrapper does not handle folded headers 2025-08-11T13:54:37.988Z 2025-11-06T13:25:46.476Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
cnvd-2026-04664 Panda3d栈溢出漏洞 2026-01-14 2026-01-16
cnvd-2026-04663 PHPEMS跨站请求伪造漏洞 2026-01-15 2026-01-16
cnvd-2026-04542 PHPEMS竞争条件问题漏洞 2026-01-14 2026-01-16
cnvd-2026-04541 Open5GS GTPv2-C拒绝服务漏洞 2026-01-15 2026-01-16
cnvd-2026-04540 Open5GS GTPv2-C F-TEID s11-handler.c sgwc_s11_handle_create_session_request拒绝服务漏洞 2026-01-15 2026-01-16
cnvd-2026-04539 Tenda AX-1806路由器栈溢出漏洞 2026-01-16 2026-01-16
cnvd-2026-04241 Kentico Xperience CRLF注入漏洞 2025-12-25 2026-01-16
cnvd-2026-04240 Kentico Xperience Content-Type跨站脚本漏洞 2025-12-25 2026-01-16
cnvd-2026-04239 Apple macOS Tahoe安全绕过漏洞(CNVD-2026-04239) 2025-12-19 2026-01-16
cnvd-2026-04238 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04238) 2025-12-25 2026-01-16
cnvd-2026-04237 Apple macOS Tahoe存在未明漏洞(CNVD-2026-04237) 2025-12-25 2026-01-16
cnvd-2026-04236 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04236) 2025-12-25 2026-01-16
cnvd-2026-04235 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04235) 2025-12-25 2026-01-16
cnvd-2026-04234 Apple macOS Tahoe存在未明漏洞(CNVD-2026-04234) 2025-12-25 2026-01-16
cnvd-2026-04233 Apple macOS Tahoe信息泄露漏洞(CNVD-2026-04233) 2025-12-25 2026-01-16
cnvd-2026-04232 Apple macOS Tahoe存在未明漏洞(CNVD-2026-04232) 2025-12-25 2026-01-16
cnvd-2026-04231 Apple macOS Tahoe拒绝服务漏洞 2025-12-25 2026-01-16
cnvd-2026-04230 Apple macOS Tahoe信息泄露漏洞 2025-12-25 2026-01-16
cnvd-2026-04229 Apple macOS Tahoe安全绕过漏洞 2025-12-25 2026-01-16
cnvd-2026-04226 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04226) 2025-12-15 2026-01-16
cnvd-2026-04225 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04225) 2025-12-15 2026-01-16
cnvd-2026-04224 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04224) 2025-12-15 2026-01-16
cnvd-2026-04223 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04223) 2025-12-15 2026-01-16
cnvd-2026-04222 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04222) 2025-12-15 2026-01-16
cnvd-2026-04221 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04221) 2025-12-15 2026-01-16
cnvd-2026-04220 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04220) 2025-12-15 2026-01-16
cnvd-2026-04219 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04219) 2025-12-15 2026-01-16
cnvd-2026-04218 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04218) 2025-12-15 2026-01-16
cnvd-2026-04217 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04217) 2025-12-15 2026-01-16
cnvd-2026-04216 Adobe Experience Manager跨站脚本漏洞(CNVD-2026-04216) 2025-12-15 2026-01-16
ID Description Published Updated
certfr-2025-avi-0745 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0744 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0743 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0742 Vulnérabilité dans Microsoft Edge 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0741 Vulnérabilité dans Wireshark 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0740 Multiples vulnérabilités dans Tenable Security Center 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0739 Multiples vulnérabilités dans Asterisk 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0738 Multiples vulnérabilités dans les produits Elastic 2025-08-29T00:00:00.000000 2025-08-29T00:00:00.000000
certfr-2025-avi-0737 Multiples vulnérabilités dans les produits Cisco 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0736 Multiples vulnérabilités dans GitLab 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0735 Vulnérabilité dans GLPI 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0734 Vulnérabilité dans ISC Kea DHCP 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0733 Vulnérabilité dans Nagios XI 2025-08-28T00:00:00.000000 2025-08-28T00:00:00.000000
certfr-2025-avi-0732 Vulnérabilité dans Google Chrome 2025-08-27T00:00:00.000000 2025-08-27T00:00:00.000000
certfr-2025-avi-0731 Vulnérabilité dans Shibboleth Identity Provider 2025-08-27T00:00:00.000000 2025-08-27T00:00:00.000000
certfr-2025-avi-0730 Multiples vulnérabilités dans Citrix NetScaler ADC et NetScaler Gateway 2025-08-26T00:00:00.000000 2025-08-26T00:00:00.000000
certfr-2025-avi-0729 Multiples vulnérabilités dans Qnap File Station 2025-08-26T00:00:00.000000 2025-08-26T00:00:00.000000
certfr-2025-avi-0728 Vulnérabilité dans Centreon Web 2025-08-25T00:00:00.000000 2025-08-25T00:00:00.000000
certfr-2025-avi-0727 Multiples vulnérabilités dans les produits ESET 2025-08-25T00:00:00.000000 2025-08-25T00:00:00.000000
certfr-2025-avi-0726 Vulnérabilité dans les produits Moxa 2025-08-25T00:00:00.000000 2025-08-25T00:00:00.000000
certfr-2025-avi-0725 Vulnérabilité dans Liferay 2025-08-25T00:00:00.000000 2025-08-25T00:00:00.000000
certfr-2025-avi-0643 Vulnérabilité dans Mattermost Server 2025-07-31T00:00:00.000000 2025-08-25T00:00:00.000000
certfr-2025-avi-0724 Multiples vulnérabilités dans les produits IBM 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0723 Multiples vulnérabilités dans le noyau Linux de SUSE 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0722 Multiples vulnérabilités dans le noyau Linux de Red Hat 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0721 Multiples vulnérabilités dans le noyau Linux d'Ubuntu 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0720 Multiples vulnérabilités dans Microsoft Windows 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0719 Vulnérabilité dans Microsoft Edge 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0718 Multiples vulnérabilités dans les produits Liferay 2025-08-22T00:00:00.000000 2025-08-22T00:00:00.000000
certfr-2025-avi-0717 Vulnérabilité dans Elastic Beats 2025-08-21T00:00:00.000000 2025-08-21T00:00:00.000000
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated