Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-22252 |
9.1 (3.1)
|
LibreChat MCP Stdio Remote Command Execution |
danny-avila |
LibreChat |
2026-01-12T18:01:48.399Z | 2026-01-12T18:48:33.821Z |
| CVE-2026-22251 |
5.3 (3.1)
|
wlc may leak API keys due to an insecure API key confi… |
WeblateOrg |
wlc |
2026-01-12T17:55:09.699Z | 2026-01-12T18:43:53.664Z |
| CVE-2026-22250 |
2.5 (3.1)
|
wlc can skip SSL verification |
WeblateOrg |
wlc |
2026-01-12T17:52:01.390Z | 2026-01-12T18:07:33.376Z |
| CVE-2026-22033 |
8.6 (4.0)
|
Label Studio vulnerable to full account takeover by ch… |
HumanSignal |
label-studio |
2026-01-12T17:47:34.060Z | 2026-01-12T18:12:36.147Z |
| CVE-2025-68471 |
6.5 (3.1)
|
Avahi has a reachable assertion in lookup_start |
avahi |
avahi |
2026-01-12T17:39:57.416Z | 2026-01-12T18:42:26.343Z |
| CVE-2025-68468 |
6.5 (3.1)
|
Avahi has a reachable assertion in lookup_multicast_callback |
avahi |
avahi |
2026-01-12T17:38:10.492Z | 2026-01-12T18:41:50.855Z |
| CVE-2025-68276 |
5.5 (3.1)
|
Avahi has a reachable assertion in avahi_wide_area_sca… |
avahi |
avahi |
2026-01-12T17:31:49.652Z | 2026-01-12T18:41:22.098Z |
| CVE-2025-68657 |
6.4 (3.1)
|
espressif/usb_host_hid Double-Free Race Condition in U… |
espressif |
esp-usb |
2026-01-12T17:26:51.106Z | 2026-01-12T18:40:25.838Z |
| CVE-2025-68656 |
6.8 (3.1)
|
Espressif ESP-IDF USB Host HID (Human Interface Device… |
espressif |
esp-usb |
2026-01-12T17:23:19.393Z | 2026-01-12T18:39:37.514Z |
| CVE-2026-22050 |
6.9 (4.0)
|
ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.… |
NETAPP |
ONTAP 9 |
2026-01-12T17:15:07.484Z | 2026-01-13T17:30:51.952Z |
| CVE-2025-68622 |
6.8 (3.1)
|
Espressif ESP-IDF USB Host UVC Class Driver has a stac… |
espressif |
esp-usb |
2026-01-12T17:08:22.941Z | 2026-01-12T18:37:35.287Z |
| CVE-2025-68472 |
8.1 (3.1)
|
MindsDB has improper sanitation of filepath that leads… |
mindsdb |
mindsdb |
2026-01-12T16:53:47.748Z | 2026-01-12T18:36:45.793Z |
| CVE-2025-71063 |
8.2 (3.1)
|
Errands before 46.2.10 does not verify TLS certif… |
mrvladus |
Errands |
2026-01-12T15:56:26.913Z | 2026-01-12T16:26:36.720Z |
| CVE-2025-41078 |
8.7 (4.0)
|
Multiple vulnerabilities in Viafirma products |
Viafirma |
Viafirma Documents |
2026-01-12T14:59:26.385Z | 2026-01-12T16:23:16.534Z |
| CVE-2025-41077 |
8.6 (4.0)
|
Multiple vulnerabilities in Viafirma products |
Viafirma |
Inbox |
2026-01-12T14:54:51.852Z | 2026-01-12T16:23:22.680Z |
| CVE-2025-41006 |
9.3 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
MEMS Events CRM |
2026-01-12T14:39:11.953Z | 2026-01-12T16:23:28.618Z |
| CVE-2025-41005 |
8.7 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
MEMS Events CRM |
2026-01-12T14:35:20.087Z | 2026-01-12T16:23:34.442Z |
| CVE-2025-41004 |
8.7 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
Patient Record Management System |
2026-01-12T13:55:28.273Z | 2026-01-12T14:20:07.352Z |
| CVE-2025-41003 |
5.1 (4.0)
|
Multiple vulnerabilities in Imaster products Open conf… |
Imaster |
Patient Record Management System |
2026-01-12T13:50:34.267Z | 2026-01-12T14:29:51.672Z |
| CVE-2025-40978 |
5.1 (4.0)
|
Multiple vulnerabilities in WorkDo products |
WorkDo |
eCommerceGo SaaS |
2026-01-12T11:28:35.332Z | 2026-01-12T12:53:10.833Z |
| CVE-2025-40977 |
5.1 (4.0)
|
Multiple vulnerabilities in WorkDo products |
WorkDo |
eCommerceGo SaaS |
2026-01-12T11:28:01.725Z | 2026-01-12T13:10:34.512Z |
| CVE-2025-40976 |
5.1 (4.0)
|
Multiple vulnerabilities in WorkDo products |
WorkDo |
TicketGo |
2026-01-12T11:27:20.271Z | 2026-01-12T14:37:56.810Z |
| CVE-2025-40975 |
5.1 (4.0)
|
Multiple vulnerabilities in WorkDo products |
WorkDo |
HRMGo |
2026-01-12T11:26:30.574Z | 2026-01-12T14:38:20.788Z |
| CVE-2025-14279 |
8.1 (3.0)
|
DNS Rebinding Vulnerability in mlflow/mlflow |
mlflow |
mlflow/mlflow |
2026-01-12T08:15:58.607Z | 2026-01-12T14:54:38.693Z |
| CVE-2026-0855 |
8.7 (4.0)
8.8 (3.1)
|
Merit LILIN|IP Camera - OS Command Injection |
Merit LILIN |
P2 |
2026-01-12T06:44:40.227Z | 2026-01-12T14:55:25.696Z |
| CVE-2025-14579 |
4.8 (3.1)
|
Quiz Maker < 6.7.0.89 - Admin+ Stored XSS |
Unknown |
Quiz Maker |
2026-01-12T06:00:10.319Z | 2026-01-12T16:23:40.641Z |
| CVE-2026-0854 |
8.7 (4.0)
8.8 (3.1)
|
Merit LILIN|NVR - OS Command Injection |
Merit LILIN |
DH032 |
2026-01-12T05:58:52.175Z | 2026-01-12T14:56:28.862Z |
| CVE-2025-69276 |
2.3 (4.0)
|
Spectrum insecure deserialiation |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:53:09.752Z | 2026-01-12T14:56:58.184Z |
| CVE-2025-69275 |
7.1 (4.0)
|
Spectrum outdated java library in class-path |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:47:07.893Z | 2026-01-12T14:57:23.830Z |
| CVE-2025-69274 |
2.3 (4.0)
|
Spectrum broken authorization scheme |
Broadcom |
DX NetOps Spectrum |
2026-01-12T04:42:39.547Z | 2026-01-12T14:58:15.237Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-15514 |
8.7 (4.0)
|
Ollama Multi-Modal Model Image Processing NULL Pointer… |
Ollama |
Ollama |
2026-01-12T23:03:52.922Z | 2026-01-13T17:19:59.689Z |
| CVE-2024-58340 |
8.7 (4.0)
|
LangChain <= 0.3.1 MRKLOutputParser ReDoS |
LangChain AI |
LangChain |
2026-01-12T23:05:00.801Z | 2026-01-13T16:21:35.172Z |
| CVE-2024-58339 |
8.7 (4.0)
|
LlamaIndex <= 0.12.2 VannaQueryEngine SQL Execution Al… |
run-llama |
llama_index |
2026-01-12T23:04:25.256Z | 2026-01-13T17:18:28.994Z |
| CVE-2024-14021 |
8.4 (4.0)
|
LlamaIndex <= 0.11.6 BGEM3Index Unsafe Deserialization |
run-llama |
llama_index |
2026-01-12T23:04:43.095Z | 2026-01-13T16:23:36.237Z |
| CVE-2026-22799 |
9.3 (4.0)
|
emlog Arbitrary File Upload Vulnerability |
emlog |
emlog |
2026-01-12T22:05:01.012Z | 2026-01-13T19:08:11.094Z |
| CVE-2026-22798 |
5.9 (3.1)
|
hermes's raw options logging may disclose secrets pass… |
softwarepub |
hermes |
2026-01-12T22:00:30.175Z | 2026-01-13T19:08:22.846Z |
| CVE-2026-22794 |
9.7 (3.1)
|
Account Takeover Vulnerability in Appsmith |
appsmithorg |
appsmith |
2026-01-12T21:54:52.803Z | 2026-01-13T19:08:29.794Z |
| CVE-2026-22789 |
5.4 (3.1)
|
WebErpMesv2 has a File Upload Validation Bypass Leadin… |
SMEWebify |
WebErpMesv2 |
2026-01-12T21:52:11.880Z | 2026-01-13T19:41:31.721Z |
| CVE-2026-22788 |
8.2 (3.1)
|
WebErpMesv2 allows unauthenticated API Access |
SMEWebify |
WebErpMesv2 |
2026-01-12T21:40:11.913Z | 2026-01-13T19:08:34.529Z |
| CVE-2026-22786 |
7.3 (4.0)
|
Gin-vue-admin has arbitrary file upload vulnerability … |
flipped-aurora |
gin-vue-admin |
2026-01-12T21:09:01.732Z | 2026-01-13T19:15:06.777Z |
| CVE-2025-67146 |
9.4 (3.1)
|
Multiple SQL Injection vulnerabilities exist in A… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T21:25:47.231Z |
| CVE-2025-29329 |
9.8 (3.1)
|
Buffer Overflow in the ippprint (Internet Printin… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-13T14:36:21.913Z |
| CVE-2025-12420 |
9.3 (4.0)
|
Unauthenticated Privilege Escalation in ServiceNow AI … |
ServiceNow |
Now Assist AI Agents |
2026-01-12T21:29:37.421Z | 2026-01-14T04:57:13.510Z |
| CVE-2026-22772 |
5.8 (3.1)
|
Fulcio vulnerable to Server-Side Request Forgery (SSRF… |
sigstore |
fulcio |
2026-01-12T20:58:53.659Z | 2026-01-12T21:17:31.478Z |
| CVE-2025-67147 |
9.8 (3.1)
|
Multiple SQL Injection vulnerabilities exist in a… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T21:21:52.528Z |
| CVE-2021-41074 |
5.4 (3.1)
|
A CSRF issue in index.php in QloApps hotel eComme… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T20:24:00.855Z |
| CVE-2025-66802 |
9.8 (3.1)
|
Sourcecodester Covid-19 Contact Tracing System 1.… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T19:37:06.392Z |
| CVE-2025-51567 |
9.1 (3.1)
|
A SQL Injection was found in the /exam/user/profi… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T20:06:58.653Z |
| CVE-2023-36331 |
8.2 (3.1)
|
Incorrect access control in the /member/orderList… |
n/a |
n/a |
2026-01-12T00:00:00.000Z | 2026-01-12T20:12:16.471Z |
| CVE-2026-22785 |
9.3 (4.0)
|
orval MCP client is vulnerable to a code injection attack. |
orval-labs |
orval |
2026-01-12T18:43:16.637Z | 2026-01-12T18:56:50.902Z |
| CVE-2026-22784 |
2.3 (4.0)
|
Lychee cross-album password propagation on Album unlocking |
LycheeOrg |
Lychee |
2026-01-12T18:37:55.183Z | 2026-01-12T18:55:55.328Z |
| CVE-2026-22783 |
9.6 (3.1)
|
Iris Allows Arbitrary File Deletion via Mass Assignmen… |
dfir-iris |
iris-web |
2026-01-12T18:27:38.259Z | 2026-01-12T18:52:04.765Z |
| CVE-2026-22781 |
10 (4.0)
|
TinyWeb CGI Command Injection |
maximmasiutin |
TinyWeb |
2026-01-12T18:23:00.512Z | 2026-01-12T18:50:57.979Z |
| CVE-2026-22776 |
8.7 (4.0)
|
cpp-httplib vulnerable to a denial of service (DOS) us… |
yhirose |
cpp-httplib |
2026-01-12T18:18:01.527Z | 2026-01-12T18:49:59.317Z |
| CVE-2026-22771 |
8.8 (3.1)
|
Envoy Extension Policy lua scripts injection causes ar… |
envoyproxy |
gateway |
2026-01-12T18:08:22.532Z | 2026-01-12T18:49:19.868Z |
| CVE-2026-22252 |
9.1 (3.1)
|
LibreChat MCP Stdio Remote Command Execution |
danny-avila |
LibreChat |
2026-01-12T18:01:48.399Z | 2026-01-12T18:48:33.821Z |
| CVE-2026-22200 |
8.7 (4.0)
|
osTicket <= 1.18.2 PDF Export Arbitrary File Read |
Enhancesoft |
osTicket |
2026-01-12T18:34:12.781Z | 2026-01-12T19:11:35.394Z |
| CVE-2025-14470 |
N/A
|
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in this candidate have been removed to prevent accidental usage. | N/A | N/A | 2026-01-12T18:23:11.236Z | |
| CVE-2026-22251 |
5.3 (3.1)
|
wlc may leak API keys due to an insecure API key confi… |
WeblateOrg |
wlc |
2026-01-12T17:55:09.699Z | 2026-01-12T18:43:53.664Z |
| CVE-2026-22250 |
2.5 (3.1)
|
wlc can skip SSL verification |
WeblateOrg |
wlc |
2026-01-12T17:52:01.390Z | 2026-01-12T18:07:33.376Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-2qp6-v7mh-v798 |
4.3 (3.1)
|
SAP Product Designer Web UI of Business Server Pages allows authenticated non-administrative users … | 2026-01-13T03:32:08Z | 2026-01-13T03:32:08Z |
| ghsa-xjvw-vc5c-qgj5 |
2.4 (4.0)
|
RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulner… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:47Z |
| ghsa-x7h6-xxfr-j6pv |
4.8 (4.0)
|
TinyOS versions up to and including 2.1.2 contain a stack-based buffer overflow vulnerability in th… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:46Z |
| ghsa-rfq2-gv2r-vgjg |
6.8 (4.0)
|
RIOT OS versions up to and including 2026.01-devel-317 contain a stack-based buffer overflow vulner… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:47Z |
| ghsa-pq2w-3m7x-qx76 |
8.7 (4.0)
|
LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service (ReDoS)… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:46Z |
| ghsa-m592-cr2f-4qg5 |
8.4 (4.0)
|
LlamaIndex (run-llama/llama_index) versions up to and including 0.11.6 contain an unsafe deserializ… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:47Z |
| ghsa-h7v7-pr65-4w53 |
8.7 (4.0)
|
LlamaIndex (run-llama/llama_index) versions up to and including 0.12.2 contain an uncontrolled reso… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:47Z |
| ghsa-6q56-mrmc-cph4 |
8.7 (4.0)
|
Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability i… | 2026-01-13T00:30:46Z | 2026-01-13T00:30:46Z |
| ghsa-whj7-f2cg-8pv5 |
9.8 (3.1)
|
Buffer Overflow in the ippprint (Internet Printing Protocol) service in Sagemcom F@st 3686 MAGYAR_4… | 2026-01-13T00:30:45Z | 2026-01-13T15:37:03Z |
| ghsa-mwg5-cwh8-88m5 |
9.3 (4.0)
|
A vulnerability has been identified in the ServiceNow AI Platform that could enable an unauthentica… | 2026-01-13T00:30:45Z | 2026-01-13T15:37:03Z |
| ghsa-hvj6-2w8w-j3wj |
9.4 (3.1)
|
Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'n… | 2026-01-13T00:30:45Z | 2026-01-13T00:30:45Z |
| ghsa-xfhq-47hp-mvcx |
9.1 (3.1)
|
A SQL Injection was found in the /exam/user/profile.php page of kashipara Online Exam System V1.0, … | 2026-01-12T21:30:34Z | 2026-01-12T21:30:35Z |
| ghsa-x4r4-f558-hvh7 |
9.8 (3.1)
|
Sourcecodester Covid-19 Contact Tracing System 1.0 is vulnerable to RCE (Remote Code Execution). Th… | 2026-01-12T21:30:34Z | 2026-01-12T21:30:34Z |
| ghsa-vgc8-whvm-22v4 |
5.4 (3.1)
|
A CSRF issue in index.php in QloApps hotel eCommerce 1.5.1 allows an attacker to change the admin's… | 2026-01-12T21:30:34Z | 2026-01-12T21:30:34Z |
| ghsa-f2p8-hh36-r2r8 |
9.8 (3.1)
|
Multiple SQL Injection vulnerabilities exist in amansuryawanshi Gym-Management-System-PHP 1.0 via t… | 2026-01-12T21:30:34Z | 2026-01-13T00:30:46Z |
| ghsa-7v52-p3w5-3m2m |
8.2 (3.1)
|
Incorrect access control in the /member/orderList API of xmall v1.1 allows attackers to arbitrarily… | 2026-01-12T21:30:34Z | 2026-01-12T21:30:34Z |
| ghsa-4hcq-q3qf-q453 |
8.7 (4.0)
|
Enhancesoft osTicket versions up to and including 1.18.2 contain an arbitrary file read vulnerabili… | 2026-01-12T21:30:34Z | 2026-01-12T21:30:34Z |
| ghsa-rv23-6fx7-9r87 |
9.9 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-mp53-vxqr-3f76 |
9.8 (3.1)
|
An issue in Automai BotManager v.25.2.0 allows a remote attacker to execute arbitrary code via the … | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-hxc4-9x7v-pg3w |
6.9 (4.0)
|
ONTAP versions 9.16.1 prior to 9.16.1P9 and 9.17.1 prior to 9.17.1P2 with snapshot locking enabled … | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-g579-x2p7-hjfv |
5.4 (3.1)
|
Cross Site Scripting vulnerability in 66biolinks by AltumCode v.61.0.1 allows an attacker to execut… | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-c87m-hx3f-42wq |
5.3 (3.1)
|
Quest KACE Desktop Authority through 11.3.1 has Insecure Permissions on the Named Pipes used for in… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-9g5v-hmcj-pxrc |
10.0 (3.1)
|
A static password reset token in the password reset function of DDSN Interactive Acora CMS v10.7.1 … | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-7g4v-c9v7-6647 |
8.8 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to execute arbitrary code via the up… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-577g-w45q-4pwf |
6.5 (3.1)
|
A path traversal vulnerability exists in Zen MCP Server before 9.8.2 that allows authenticated atta… | 2026-01-12T18:30:30Z | 2026-01-12T21:30:34Z |
| ghsa-4rm3-56gv-9xv3 |
8.2 (3.1)
|
An issue in Automai Director v.25.2.0 allows a remote attacker to escalate privileges and obtain se… | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-3hjw-x946-3rhg |
8.2 (3.1)
|
Errands before 46.2.10 does not verify TLS certificates for CalDAV servers. | 2026-01-12T18:30:30Z | 2026-01-12T18:30:30Z |
| ghsa-9rp8-h4g8-8766 |
5.3 (3.1)
|
Weblate wlc has insecure API key configuration | 2026-01-12T18:07:03Z | 2026-01-12T20:07:26Z |
| ghsa-2mmv-7rrp-g8xh |
2.5 (3.1)
|
Weblate command-line client susceptible to SSL verification skip | 2026-01-12T16:13:33Z | 2026-01-12T20:07:14Z |
| ghsa-2mq9-hm29-8qch |
8.6 (4.0)
|
Label Studio is vulnerable to full account takeover by chaining Stored XSS + IDOR in User Profile v… | 2026-01-12T16:12:50Z | 2026-01-12T20:06:35Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2022-42993 |
|
GuardDog is a CLI tool to identify malicious PyPI packages. Versions prior to v0.1.8 are … | guarddog | 2022-12-16T23:15:00Z | 2023-05-04T04:29:25.550921Z |
| pysec-2022-43061 |
6.1 (3.1)
|
A vulnerability was found in django-photologue up to 3.15.1 and classified as problematic… | django-photologue | 2022-12-15T21:15:00+00:00 | 2023-11-07T20:24:24.147635+00:00 |
| pysec-2022-42990 |
|
A vulnerability was found in collective.task up to 3.0.9. It has been classified as probl… | collective-task | 2022-12-15T21:15:00Z | 2023-05-04T04:29:24.403566Z |
| pysec-2022-43060 |
5.9 (3.1)
|
The Apache Bookkeeper Java Client (before 4.14.6 and also 4.15.0) does not close the conn… | apache-bookkeeper-client | 2022-12-15T19:15:00+00:00 | 2023-11-07T20:24:23.853507+00:00 |
| pysec-2022-42989 |
|
A vulnerability, which was classified as problematic, has been found in collective.dms.ba… | collective-dms-basecontent | 2022-12-14T15:15:00Z | 2023-05-04T03:49:45.138352Z |
| pysec-2022-43155 |
5.5 (3.1)
|
wasm3 commit 7890a2097569fde845881e0b352d813573e371f9 was discovered to contain a segment… | pywasm3 | 2022-12-13T23:15:00Z | 2024-11-21T14:23:00.213494Z |
| pysec-2022-43062 |
7.8 (3.1)
|
A vulnerability classified as problematic was found in pacparser up to 1.3.x. Affected by… | pacparser | 2022-12-13T18:15:00+00:00 | 2023-11-07T20:24:25.809231+00:00 |
| pysec-2022-43002 |
|
Improper Privilege Management in GitHub repository ikus060/rdiffweb prior to 2.5.2. | rdiffweb | 2022-12-12T18:15:00Z | 2023-05-04T04:29:29.006053Z |
| pysec-2022-43011 |
|
Sentry is an error tracking and performance monitoring platform. In versions of the sentr… | sentry | 2022-12-10T01:15:00Z | 2023-05-04T04:29:29.699170Z |
| pysec-2022-42986 |
|
Certifi is a curated collection of Root Certificates for validating the trustworthiness o… | certifi | 2022-12-07T22:15:00Z | 2023-05-04T03:49:45.039819Z |
| pysec-2022-43063 |
9.8 (3.1)
|
Code injection in paddle.audio.functional.get_window in PaddlePaddle 2.4.0-rc0 allows arb… | paddlepaddle | 2022-12-07T09:15:00+00:00 | 2024-11-22T12:27:25.862098+00:00 |
| pysec-2022-42998 |
|
A directory traversal vulnerability in the SevenZipFile.extractall() function of the pyth… | py7zr | 2022-12-06T20:15:00Z | 2023-05-04T04:29:28.497759Z |
| pysec-2022-42997 |
|
Passeo is an open source python password generator. Versions prior to 1.0.5 rely on the p… | passeo | 2022-12-06T18:15:00Z | 2023-05-04T04:29:27.942516Z |
| pysec-2022-42992 |
|
All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to im… | gitpython | 2022-12-06T05:15:00Z | 2023-05-04T03:49:45.777062Z |
| pysec-2022-43175 |
6.1 (3.1)
|
Drag and Drop XBlock v2 implements a drag-and-drop style problem, where a learner has to … | xblock-drag-and-drop-v2 | 2022-11-28T21:15:00+00:00 | 2024-11-21T14:23:03.352390+00:00 |
| pysec-2022-43015 |
|
In PyTorch before trunk/89695, torch.jit.annotations.parse_type_line can cause arbitrary … | torch | 2022-11-26T02:15:00Z | 2023-05-04T03:49:48.383740Z |
| pysec-2022-42996 |
|
MPXJ is an open source library to read and write project plans from a variety of file for… | mpxj | 2022-11-25T19:15:00Z | 2023-05-04T04:29:27.436392Z |
| pysec-2022-42995 |
|
A vulnerability was found in keylime. This security issue happens in some circumstances, … | keylime | 2022-11-22T19:15:00Z | 2023-05-04T04:29:25.773897Z |
| pysec-2022-42987 |
|
CKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is… | ckan | 2022-11-22T01:15:00Z | 2023-05-04T04:29:23.890366Z |
| pysec-2022-43140 |
6.5 (3.1)
|
A heap buffer overflow in the LIEF::MachO::BinaryParser::parse_dyldinfo_generic_bind func… | lief | 2022-11-17T23:15:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2022-43001 |
|
Missing Authentication for Critical Function in GitHub repository ikus060/rdiffweb prior … | rdiffweb | 2022-11-16T13:15:00Z | 2023-05-04T04:29:28.960174Z |
| pysec-2022-42984 |
|
In Apache Airflow versions prior to 2.4.3, there was an open redirect in the webserver's … | apache-airflow | 2022-11-15T09:15:00Z | 2023-05-04T04:29:22.748527Z |
| pysec-2022-43000 |
|
Insufficient Session Expiration in GitHub repository ikus060/rdiffweb prior to 2.5.0. | rdiffweb | 2022-11-14T21:15:00Z | 2023-05-04T04:29:28.911542Z |
| pysec-2022-42982 |
|
A vulnerability in Example Dags of Apache Airflow allows an attacker with UI access who c… | apache-airflow | 2022-11-14T10:15:00Z | 2023-05-04T04:29:22.645854Z |
| pysec-2022-42981 |
|
A vulnerability in UI of Apache Airflow allows an attacker to view unmasked secrets in re… | apache-airflow | 2022-11-14T10:15:00Z | 2023-05-04T04:29:22.592547Z |
| pysec-2022-42980 |
|
Pillow before 9.3.0 allows denial of service via SAMPLESPERPIXEL. | pillow | 2022-11-14T07:15:00Z | 2023-05-25T05:07:00Z |
| pysec-2022-42979 |
|
Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data (Data Amplif… | pillow | 2022-11-14T07:15:00Z | 2022-11-14T11:29:25.508491Z |
| pysec-2022-43055 |
7.5 (3.1)
|
Hyperledger Fabric 2.3 allows attackers to cause a denial of service (orderer crash) by r… | hyperledger | 2022-11-12T20:15:00+00:00 | 2023-08-17T03:22:31.453589+00:00 |
| pysec-2022-43018 |
|
WsgiDAV is a generic and extendable WebDAV server based on WSGI. Implementations using th… | wsgidav | 2022-11-11T21:15:00Z | 2023-05-04T04:29:31.369774Z |
| pysec-2022-42985 |
|
Arches is a web platform for creating, managing, & visualizing geospatial data. Versions … | arches | 2022-11-11T04:15:00Z | 2023-05-04T04:29:23.524968Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-192609 | Malicious code in f5rest (PyPI) | 2025-12-18T19:50:55Z | 2025-12-18T19:50:55Z |
| mal-2025-192608 | Malicious code in f5-logger (PyPI) | 2025-12-18T19:50:28Z | 2025-12-18T19:50:28Z |
| mal-2025-192607 | Malicious code in bigip (PyPI) | 2025-12-18T19:49:24Z | 2025-12-18T19:49:24Z |
| mal-2025-192606 | Malicious code in sarumaan_a (npm) | 2025-12-18T11:16:23Z | 2025-12-22T21:38:13Z |
| mal-2025-192605 | Malicious code in trondec (PyPI) | 2025-12-17T17:56:56Z | 2025-12-17T17:56:56Z |
| mal-2025-192604 | Malicious code in xbox-bottomnav (npm) | 2025-12-17T13:15:52Z | 2025-12-22T21:38:14Z |
| mal-2025-192603 | Malicious code in vitor-js (npm) | 2025-12-17T02:43:11Z | 2026-01-11T22:09:27Z |
| mal-2025-192602 | Malicious code in plugin-senna (npm) | 2025-12-17T01:35:51Z | 2026-01-11T22:09:25Z |
| mal-2025-192601 | Malicious code in vscode-azure-mcp-server (npm) | 2025-12-16T17:02:46Z | 2025-12-30T17:25:53Z |
| mal-2025-192597 | Malicious code in raven-hubspot (npm) | 2025-12-16T07:30:49Z | 2025-12-22T21:38:13Z |
| mal-2025-192600 | Malicious code in tailwind-variables (npm) | 2025-12-16T07:27:00Z | 2025-12-22T21:38:14Z |
| mal-2025-192599 | Malicious code in tailwind-stylecss (npm) | 2025-12-16T07:27:00Z | 2025-12-22T21:38:14Z |
| mal-2025-192598 | Malicious code in bigmathlib (npm) | 2025-12-16T07:25:20Z | 2025-12-22T21:38:09Z |
| mal-2025-192593 | Malicious code in openhands-frontend (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:12Z |
| mal-2025-192590 | Malicious code in example-vue2-micro (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| mal-2025-192586 | Malicious code in dubbo-js-private-workspace (npm) | 2025-12-16T07:05:12Z | 2025-12-22T21:38:10Z |
| mal-2025-192595 | Malicious code in smart-utils-alice (npm) | 2025-12-16T07:05:11Z | 2025-12-24T10:09:30Z |
| mal-2025-192592 | Malicious code in nad-home (npm) | 2025-12-16T07:05:11Z | 2025-12-22T21:38:12Z |
| mal-2025-192591 | Malicious code in i18never (npm) | 2025-12-16T07:05:11Z | 2025-12-22T21:38:11Z |
| mal-2025-192596 | Malicious code in starling-api (npm) | 2025-12-16T07:03:48Z | 2025-12-22T21:38:14Z |
| mal-2025-192594 | Malicious code in prod-natwest (npm) | 2025-12-16T07:03:48Z | 2025-12-22T21:38:13Z |
| mal-2025-192588 | Malicious code in elf-stats-fuzzy-wreath-278 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| mal-2025-192587 | Malicious code in elf-stats-aurora-cocoa-911 (npm) | 2025-12-16T06:42:31Z | 2025-12-22T21:38:10Z |
| mal-2025-192584 | Malicious code in jsondatatoruby (npm) | 2025-12-16T06:27:18Z | 2025-12-22T21:38:11Z |
| mal-2025-192589 | Malicious code in elf-stats-nutmeg-sleigh-350 (npm) | 2025-12-16T06:26:09Z | 2025-12-22T21:38:10Z |
| mal-2025-192585 | Malicious code in betterjsloggin (npm) | 2025-12-16T06:25:18Z | 2025-12-22T21:38:09Z |
| mal-2025-192583 | Malicious code in swissid-common (npm) | 2025-12-16T06:23:05Z | 2025-12-24T10:09:30Z |
| mal-2025-192582 | Malicious code in sds-swissid-common (npm) | 2025-12-16T06:23:05Z | 2025-12-22T21:38:13Z |
| mal-2025-192581 | Malicious code in sds-oauth-client (npm) | 2025-12-16T06:23:04Z | 2025-12-22T21:38:13Z |
| mal-2025-192580 | Malicious code in sds-auth-ui (npm) | 2025-12-16T06:23:04Z | 2025-12-22T21:38:13Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2280 | Microsoft Exchange: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-10-14T22:00:00.000+00:00 |
| wid-sec-w-2025-2279 | Microsoft Office Produkte: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-10-14T22:00:00.000+00:00 |
| wid-sec-w-2025-2278 | Microsoft Developer Tools: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2277 | Microsoft Apps: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-10-14T22:00:00.000+00:00 |
| wid-sec-w-2025-2276 | Microsoft Azure: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-10-14T22:00:00.000+00:00 |
| wid-sec-w-2025-2275 | Mozilla Firefox: Mehrere Schwachstellen | 2025-10-14T22:00:00.000+00:00 | 2025-12-15T23:00:00.000+00:00 |
| wid-sec-w-2025-2274 | Veeam Backup & Replication: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2273 | Rockwell Automation FactoryTalk (View Point, View Machine, Linx): Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-14T22:00:00.000+00:00 |
| wid-sec-w-2025-2272 | Moodle: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-23T22:00:00.000+00:00 |
| wid-sec-w-2025-2271 | D-LINK Access Point (AP): Schwachstelle ermöglicht Codeausführung | 2025-10-13T22:00:00.000+00:00 | 2025-10-13T22:00:00.000+00:00 |
| wid-sec-w-2025-2270 | Lenovo Dispatcher Driver: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2025-10-13T22:00:00.000+00:00 | 2025-10-13T22:00:00.000+00:00 |
| wid-sec-w-2025-2269 | WebKitGTK: Schwachstelle ermöglicht Denial of Service und potenziell Codeausführung | 2025-10-13T22:00:00.000+00:00 | 2025-11-27T23:00:00.000+00:00 |
| wid-sec-w-2025-2268 | Linux Kernel: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2026-01-06T23:00:00.000+00:00 |
| wid-sec-w-2025-2267 | Liferay Portal: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-13T22:00:00.000+00:00 |
| wid-sec-w-2025-2266 | F5 BIG-IP: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-10-13T22:00:00.000+00:00 | 2025-10-13T22:00:00.000+00:00 |
| wid-sec-w-2025-2265 | SAP Patchday Oktober 2025: Mehrere Schwachstellen | 2025-10-13T22:00:00.000+00:00 | 2025-10-13T22:00:00.000+00:00 |
| wid-sec-w-2025-2264 | Ivanti Endpoint Manager: Mehrere Schwachstellen ermöglichen Codeausführung und Privilegien-Erweiterung | 2025-10-12T22:00:00.000+00:00 | 2025-11-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2263 | Oracle E-Business Suite (Runtime UI): Schwachstelle ermöglicht Offenlegung von Informationen | 2025-10-12T22:00:00.000+00:00 | 2025-10-20T22:00:00.000+00:00 |
| wid-sec-w-2025-2262 | HCL BigFix WebUI Anwendungen: Schwachstelle ermöglicht Manipulation von Dateien | 2025-10-12T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2025-2261 | 7-Zip: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2025-10-12T22:00:00.000+00:00 | 2025-11-26T23:00:00.000+00:00 |
| wid-sec-w-2025-2260 | poppler: Schwachstelle ermöglicht Codeausführung | 2025-10-12T22:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2259 | SonarSource SonarQube: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-10-12T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2025-2258 | NetApp ActiveIQ Unified Manager für VMware vSphere (Glib, SQLite): Mehrere Schwachstellen | 2025-10-12T22:00:00.000+00:00 | 2025-11-30T23:00:00.000+00:00 |
| wid-sec-w-2025-2257 | IBM Security Verify Access: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-10-12T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2025-2256 | Liferay Portal und DXP: Mehrere Schwachstellen | 2025-10-12T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2025-2255 | Gladinet CentreStack: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-10-12T22:00:00.000+00:00 | 2025-11-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2254 | Lenovo BIOS: Schwachstelle ermöglicht Codeausführung | 2025-10-09T22:00:00.000+00:00 | 2025-10-09T22:00:00.000+00:00 |
| wid-sec-w-2025-2253 | Checkmk: Mehrere Schwachstellen | 2025-10-09T22:00:00.000+00:00 | 2025-10-09T22:00:00.000+00:00 |
| wid-sec-w-2025-2252 | ServiceNow Now Platform (AI Platform): Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2025-10-09T22:00:00.000+00:00 | 2025-10-09T22:00:00.000+00:00 |
| wid-sec-w-2025-2251 | Red Hat OpenShift GitOps: Mehrere Schwachstellen | 2025-10-09T22:00:00.000+00:00 | 2025-11-24T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| ncsc-2024-0226 | Kwetsbaarheden verholpen in Adobe Animate | 2024-05-16T12:55:49.361352Z | 2024-05-16T12:55:49.361352Z |
| ncsc-2024-0225 | Kwetsbaarheden verholpen in Adobe FrameMaker | 2024-05-16T12:54:55.359838Z | 2024-05-16T12:54:55.359838Z |
| ncsc-2024-0224 | Kwetsbaarheid verholpen in Adobe Dreamweaver | 2024-05-16T12:45:03.866353Z | 2024-05-16T12:45:03.866353Z |
| ncsc-2024-0223 | Kwetsbaarheden verholpen in Adobe Acrobat Reader | 2024-05-16T12:44:31.298431Z | 2024-05-16T12:44:31.298431Z |
| ncsc-2024-0222 | Kwetsbaarheden verholpen in Fortinet FortiOS | 2024-05-16T12:43:57.240443Z | 2024-05-16T12:43:57.240443Z |
| ncsc-2024-0221 | Kwetsbaarheden verholpen in Google Chrome | 2024-05-16T12:42:36.777137Z | 2024-05-16T12:42:36.777137Z |
| ncsc-2024-0220 | Kwetsbaarheden verholpen in Aruba Networks ArubaOS | 2024-05-16T12:41:16.031110Z | 2024-05-16T12:41:16.031110Z |
| ncsc-2024-0219 | Kwetsbaarheden verholpen in Apple iOS en iPadOS | 2024-05-15T12:47:39.940581Z | 2024-05-15T12:47:39.940581Z |
| ncsc-2024-0218 | Kwetsbaarheden verholpen in Mozilla Firefox en Thunderbird | 2024-05-15T12:29:43.620890Z | 2024-05-15T12:29:43.620890Z |
| ncsc-2024-0217 | Kwetsbaarheden verholpen in Apple MacOS | 2024-05-15T10:50:09.062571Z | 2024-05-15T11:18:13.188010Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2025:20983 | Red Hat Security Advisory: podman security update | 2025-11-11T19:19:32+00:00 | 2026-01-08T03:39:09+00:00 |
| rhsa-2025:21002 | Red Hat Security Advisory: squid security update | 2025-11-11T19:17:56+00:00 | 2025-11-21T19:31:06+00:00 |
| rhsa-2025:20954 | Red Hat Security Advisory: sssd security update | 2025-11-11T15:28:09+00:00 | 2026-01-08T03:00:37+00:00 |
| rhsa-2025:20961 | Red Hat Security Advisory: xorg-x11-server security update | 2025-11-11T15:10:03+00:00 | 2026-01-05T10:09:50+00:00 |
| rhsa-2025:20960 | Red Hat Security Advisory: xorg-x11-server-Xwayland security update | 2025-11-11T15:09:24+00:00 | 2026-01-05T10:08:49+00:00 |
| rhsa-2025:20956 | Red Hat Security Advisory: libtiff security update | 2025-11-11T15:08:53+00:00 | 2026-01-08T03:12:13+00:00 |
| rhsa-2025:20958 | Red Hat Security Advisory: tigervnc security update | 2025-11-11T15:07:34+00:00 | 2026-01-05T10:08:43+00:00 |
| rhsa-2025:20955 | Red Hat Security Advisory: redis:7 security update | 2025-11-11T15:07:28+00:00 | 2025-12-15T20:32:55+00:00 |
| rhsa-2025:20957 | Red Hat Security Advisory: runc security update | 2025-11-11T15:07:24+00:00 | 2026-01-08T03:16:05+00:00 |
| rhsa-2025:20959 | Red Hat Security Advisory: libsoup security update | 2025-11-11T15:07:23+00:00 | 2025-11-25T10:22:23+00:00 |
| rhsa-2025:20963 | Red Hat Security Advisory: qt5-qt3d security update | 2025-11-11T15:06:58+00:00 | 2025-12-03T15:34:35+00:00 |
| rhsa-2025:20962 | Red Hat Security Advisory: pcs security update | 2025-11-11T15:05:08+00:00 | 2025-11-21T19:31:02+00:00 |
| rhsa-2025:20945 | Red Hat Security Advisory: vim security update | 2025-11-11T14:14:42+00:00 | 2025-12-10T19:00:34+00:00 |
| rhsa-2025:20943 | Red Hat Security Advisory: libssh security update | 2025-11-11T14:12:42+00:00 | 2026-01-08T03:07:20+00:00 |
| rhba-2025:20916 | Red Hat Bug Fix Advisory: .NET 10.0 bug fix and enhancement update | 2025-11-11T14:10:19+00:00 | 2025-12-16T09:32:55+00:00 |
| rhsa-2025:20936 | Red Hat Security Advisory: sqlite security update | 2025-11-11T14:06:37+00:00 | 2026-01-06T06:39:35+00:00 |
| rhsa-2025:20928 | Red Hat Security Advisory: ipa security update | 2025-11-11T14:05:57+00:00 | 2025-11-21T19:30:56+00:00 |
| rhsa-2025:20935 | Red Hat Security Advisory: squid security update | 2025-11-11T14:05:53+00:00 | 2025-11-21T19:30:57+00:00 |
| rhsa-2025:20909 | Red Hat Security Advisory: podman security update | 2025-11-11T13:58:42+00:00 | 2026-01-08T03:39:08+00:00 |
| rhsa-2025:20926 | Red Hat Security Advisory: redis security update | 2025-11-11T13:58:33+00:00 | 2025-12-15T20:32:53+00:00 |
| rhsa-2025:20922 | Red Hat Security Advisory: webkit2gtk3 security update | 2025-11-11T13:58:27+00:00 | 2025-11-21T19:30:56+00:00 |
| rhsa-2025:19890 | Red Hat Security Advisory: OpenShift Container Platform 4.20.3 bug fix and security update | 2025-11-11T13:19:56+00:00 | 2025-12-18T13:34:02+00:00 |
| rhsa-2025:20478 | Red Hat Security Advisory: zziplib security update | 2025-11-11T11:39:12+00:00 | 2025-11-27T17:36:20+00:00 |
| rhsa-2025:20838 | Red Hat Security Advisory: zziplib security update | 2025-11-11T09:45:24+00:00 | 2025-11-21T19:30:55+00:00 |
| rhsa-2025:20801 | Red Hat Security Advisory: libtiff security update | 2025-11-11T09:33:14+00:00 | 2025-12-10T19:00:33+00:00 |
| rhba-2025:20841 | Red Hat Bug Fix Advisory: open-vm-tools bug fix and enhancement update | 2025-11-11T09:19:58+00:00 | 2025-11-21T17:23:51+00:00 |
| rhsa-2025:20518 | Red Hat Security Advisory: kernel security update | 2025-11-11T09:13:24+00:00 | 2026-01-08T17:01:19+00:00 |
| rhsa-2025:20559 | Red Hat Security Advisory: shadow-utils security update | 2025-11-11T09:01:50+00:00 | 2025-12-10T19:00:32+00:00 |
| rhsa-2025:20532 | Red Hat Security Advisory: grub2 security update | 2025-11-11T08:55:23+00:00 | 2025-11-21T19:30:53+00:00 |
| rhsa-2025:20155 | Red Hat Security Advisory: binutils security update | 2025-11-11T08:32:02+00:00 | 2025-11-21T19:30:50+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-25-014-03 | Schneider Electric EcoStruxure | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-25-014-02 | Schneider Electric Vijeo Designer and EcoStruxureâ„¢ Machine Expert (Update A) | 2024-09-10T00:00:00.000000Z | 2025-07-08T04:00:00.000000Z |
| icsa-24-261-01 | Siemens SIMATIC S7-200 SMART Devices | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-24-256-16 | Siemens Third-Party Component in SICAM and SITIPE Products | 2024-09-10T00:00:00.000000Z | 2025-12-09T00:00:00.000000Z |
| icsa-24-256-15 | Siemens Industrial Products | 2024-09-10T00:00:00.000000Z | 2025-07-08T00:00:00.000000Z |
| icsa-24-256-14 | Siemens SIMATIC SCADA and PCS 7 Systems | 2024-09-10T00:00:00.000000Z | 2025-01-14T00:00:00.000000Z |
| icsa-24-256-13 | Siemens SCALANCE W700 | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-12 | Siemens Tecnomatix Plant Simulation | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-11 | Siemens Industrial Edge Management | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-24-256-10 | Siemens SINEMA | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-24-256-09 | Siemens SIMATIC, SIPLUS, and TIM | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-08 | Siemens Industrial Products | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-07 | Siemens SIMATIC RFID Readers | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-06 | Siemens Automation License Manager | 2024-09-10T00:00:00.000000Z | 2025-05-13T00:00:00.000000Z |
| icsa-24-256-05 | Siemens Mendix Runtime | 2024-09-10T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-24-256-04 | Siemens SINUMERIK Systems | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-24-256-03 | Siemens User Management Component (UMC) | 2024-09-10T00:00:00.000000Z | 2025-10-14T00:00:00.000000Z |
| icsa-24-256-02 | Siemens SINUMERIK ONE, SINUMERIK 840D and SINUMERIK 828D | 2024-09-10T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-24-256-01 | Siemens SINEMA Remote Connect Server | 2024-09-10T00:00:00.000000Z | 2024-09-10T00:00:00.000000Z |
| icsa-25-182-01 | FESTO Didactic CP, MPS 200, and MPS 400 Firmware | 2024-09-09T07:00:00.000000Z | 2024-09-09T07:00:00.000000Z |
| icsma-24-249-01 | Baxter Connex Health Portal | 2024-09-05T06:00:00.000000Z | 2024-09-05T06:00:00.000000Z |
| icsa-24-249-01 | Hughes Network Systems WL3000 Fusion Software | 2024-09-05T06:00:00.000000Z | 2024-09-05T06:00:00.000000Z |
| icsa-24-247-01 | LOYTEC Electronics LINX Series | 2024-09-03T06:00:00.000000Z | 2024-09-03T06:00:00.000000Z |
| icsa-24-242-02 | Delta Electronics DTN Soft | 2024-08-29T06:00:00.000000Z | 2024-08-29T06:00:00.000000Z |
| icsa-24-242-01 | Rockwell Automation ThinManager ThinServer | 2024-08-29T06:00:00.000000Z | 2024-08-29T06:00:00.000000Z |
| icsa-24-331-04 | Hitachi Energy MicroSCADA Pro/X SYS600 (Update A) | 2024-08-27T12:30:00.000000Z | 2025-03-25T13:30:00.000000Z |
| icsa-24-235-03 | Authenticated Remote Code Execution affects Mobotix P3 and Mx6 cameras | 2024-08-22T10:00:00.000000Z | 2024-08-22T10:00:00.000000Z |
| icsa-24-235-04 | Avtec Outpost 0810 | 2024-08-22T06:00:00.000000Z | 2024-08-22T06:00:00.000000Z |
| icsa-24-235-02 | Rockwell Automation 5015 - AENFTXT | 2024-08-22T06:00:00.000000Z | 2024-08-22T06:00:00.000000Z |
| icsa-24-235-01 | Rockwell Automation Emulate3D | 2024-08-22T06:00:00.000000Z | 2024-08-22T06:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-vmanage-msg-serv-aqtup7vs | Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services Vulnerability | 2022-09-07T16:00:00+00:00 | 2022-09-27T21:40:31+00:00 |
| cisco-sa-sb-rv-vpnbypass-cpheup9o | Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers IPSec VPN Server Authentication Bypass Vulnerability | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-mlx5-jbpcrqd8 | Vulnerability in NVIDIA Data Plane Development Kit Affecting Cisco Products: August 2022 | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-meraki-config-ab3da | Cisco Meraki MR Series Splash Page Insecure Configuration Option | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-nxos-ospfv3-dos-48qutcu | Cisco NX-OS Software OSPFv3 Denial of Service Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-nxos-cdp-dos-ce-wwvpucc9 | Cisco FXOS and NX-OS Software Cisco Discovery Protocol Denial of Service and Arbitrary Code Execution Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-mso-prvesc-bpfp9czs | Cisco ACI Multi-Site Orchestrator Privilege Escalation Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-fxos-cmdinj-txclnznh | Cisco FXOS Software Command Injection Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-wsa-prv-esc-8pdru8t8 | Cisco Secure Web Appliance Privilege Escalation Vulnerability | 2022-08-17T16:00:00+00:00 | 2022-10-03T18:13:53+00:00 |
| cisco-sa-asaftd-rsa-key-leak-ms7uefzz | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software RSA Private Key Leak Vulnerability | 2022-08-10T16:00:00+00:00 | 2022-08-10T16:00:00+00:00 |
| cisco-sa-asa-webvpn-loeksnmo | Cisco Adaptive Security Appliance and Firepower Threat Defense Software VPN Web Client Services Client-Side Request Smuggling Vulnerability | 2022-08-10T16:00:00+00:00 | 2023-11-01T16:00:01+00:00 |
| cisco-sa-webex-xss-frmhijck-ko3wmkus | Cisco Webex Meetings Web Interface Vulnerabilities | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-sb-mult-vuln-cbvp4sur | Cisco Small Business RV Series Routers Vulnerabilities | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-ise-pwd-wh64ahqf | Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-cucm-file-delete-n2vpmone | Cisco Unified Communications Manager Arbitrary File Deletion Vulnerability | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-broadworks-xss-xbhfr4cd | Cisco BroadWorks Application Delivery Platform Software Cross-Site Scripting Vulnerability | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-sb-rv-rce-overflow-yghbyak | Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-mprvesc-emhdgxe5 | Cisco Nexus Dashboard Privilege Escalation Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-mhcvuln-vpsbpj9y | Cisco Nexus Dashboard Unauthorized Access Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-afw-2mt9tb99 | Cisco Nexus Dashboard Arbitrary File Write Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-nd-tlsvld-tbaqlp3n | Cisco Nexus Dashboard SSL Certificate Validation Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ise-lifetime-pwd-gpcs76mb | Cisco Identity Services Engine Administrator Password Lifetime Expiration Issue | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-iotcc-xss-wqrclrvd | Cisco IoT Control Center Cross-Site Scripting Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ucm-timing-jvbhecok | Cisco Unified Communications Products Timing Attack Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-ucm-file-read-qgjhec3a | Cisco Unified Communications Manager Arbitrary File Read Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-ucm-access-dmkvv2dy | Cisco Unified Communications Products Access Control Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-roomos-infodisc-yotz9ct7 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-onprem-privesc-tp6unzos | Cisco Smart Software Manager On-Prem Denial of Service Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-expressway-overwrite-3buqw8lh | Cisco Expressway Series and Cisco TelePresence Video Communication Server Vulnerabilities | 2022-07-06T16:00:00+00:00 | 2023-04-04T20:50:42+00:00 |
| cisco-sa-cucm-xss-rgh7mpka | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-59250 | JDBC Driver for SQL Server Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59249 | Microsoft Exchange Server Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59248 | Microsoft Exchange Server Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59247 | Azure PlayFab Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-09T07:00:00.000Z |
| msrc_cve-2025-59246 | Azure Entra ID Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-09T07:00:00.000Z |
| msrc_cve-2025-59244 | NTLM Hash Disclosure Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59243 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59242 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59241 | Windows Health and Optimized Experiences Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59238 | Microsoft PowerPoint Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59237 | Microsoft SharePoint Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59236 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59235 | Microsoft Excel Information Disclosure Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59234 | Microsoft Office Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59233 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-15T07:00:00.000Z |
| msrc_cve-2025-59232 | Microsoft Excel Information Disclosure Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59231 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59230 | Windows Remote Access Connection Manager Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59229 | Microsoft Office Denial of Service Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59228 | Microsoft SharePoint Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59227 | Microsoft Office Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-15T07:00:00.000Z |
| msrc_cve-2025-59226 | Microsoft Office Visio Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59225 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59224 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59223 | Microsoft Excel Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59222 | Microsoft Word Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59221 | Microsoft Word Remote Code Execution Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59218 | Azure Entra ID Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-09T07:00:00.000Z |
| msrc_cve-2025-59214 | Microsoft Windows File Explorer Spoofing Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| msrc_cve-2025-59213 | Configuration Manager Elevation of Privilege Vulnerability | 2025-10-14T07:00:00.000Z | 2025-10-14T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201112-0046 | Google Chrome before 16.0.912.63 does not properly parse SVG documents, which allows remo… | 2025-12-22T21:52:30.608000Z |
| var-200807-0659 | ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS… | 2025-12-22T21:52:30.295000Z |
| var-200705-0681 | Apache httpd 1.3.37, 2.0.59, and 2.2.4 with the Prefork MPM module, allows local users to… | 2025-12-22T21:51:54.214000Z |
| var-202108-2072 | A race condition was addressed with improved locking. This issue is fixed in Security Upd… | 2025-12-22T21:51:22.025000Z |
| var-201512-0007 | Heap-based buffer overflow in the xmlGROW function in parser.c in libxml2 before 2.9.3 al… | 2025-12-22T21:51:19.576000Z |
| var-201912-0511 | A logic issue existed in the handling of document loads. This issue was addressed with im… | 2025-12-22T21:51:14.924000Z |
| var-201711-0455 | An issue was discovered in certain Apple products. iOS before 11.1 is affected. Safari be… | 2025-12-22T21:51:14.825000Z |
| var-200706-0666 | Cross-site scripting (XSS) vulnerability in mod_status.c in the mod_status module in Apac… | 2025-12-22T21:51:14.425000Z |
| var-201710-0207 | Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GT… | 2025-12-22T21:51:09.603000Z |
| var-200701-0510 | The Adobe PDF specification 1.3, as implemented by Apple Mac OS X Preview, allows remote … | 2025-12-22T21:51:08.747000Z |
| var-201801-1708 | The tcpmss_mangle_packet function in net/netfilter/xt_TCPMSS.c in the Linux kernel before… | 2025-12-22T21:51:07.921000Z |
| var-200904-0794 | Integer overflow in the TIFF image decoding routines in CUPS 1.3.9 and earlier allows rem… | 2025-12-22T21:51:06.825000Z |
| var-201103-0114 | The STARTTLS implementation in Postfix 2.4.x before 2.4.16, 2.5.x before 2.5.12, 2.6.x be… | 2025-12-22T21:51:04.422000Z |
| var-201903-0388 | An integer overflow flaw which could lead to an out of bounds write was discovered in lib… | 2025-12-22T21:51:03.499000Z |
| var-202203-0043 | A flaw was found in the way the "flags" member of the new pipe buffer structure was lacki… | 2025-12-22T21:51:02.622000Z |
| var-202010-1236 | An access issue existed in Content Security Policy. This issue was addressed with improve… | 2025-12-22T21:51:01.820000Z |
| var-200102-0104 | "Multiple Users" Control Panel in Mac OS 9 allows Normal users to gain Owner privileges b… | 2025-12-22T21:51:01.420000Z |
| var-200609-0313 | Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to… | 2025-12-22T21:51:01.300000Z |
| var-201205-0246 | sapi/cgi/cgi_main.c in PHP before 5.3.13 and 5.4.x before 5.4.3, when configured as a CGI… | 2025-12-22T21:50:52.724000Z |
| var-201904-0985 | SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remot… | 2025-12-22T21:50:52.629000Z |
| var-201203-0191 | Use-after-free vulnerability in Google Chrome before 17.0.963.65 allows remote attackers … | 2025-12-22T21:50:21.242000Z |
| var-201808-1004 | Bluetooth firmware or operating system software drivers in macOS versions before 10.13, H… | 2025-12-22T21:50:21.160000Z |
| var-201409-1147 | The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remot… | 2025-12-22T21:50:17.644000Z |
| var-202006-1832 | A memory corruption issue was addressed with improved validation. This issue is fixed in … | 2025-12-22T21:50:17.264000Z |
| var-200504-0292 | Directory traversal vulnerability in gunzip -N in gzip 1.2.4 through 1.3.5 allows remote … | 2025-12-22T21:50:17.195000Z |
| var-202109-1900 | An integer overflow exists in HAProxy 2.0 through 2.5 in htx_add_header that can be explo… | 2025-12-22T21:50:17.010000Z |
| var-202112-1608 | A carefully crafted request body can cause a buffer overflow in the mod_lua multipart par… | 2025-12-22T21:50:16.169000Z |
| var-201110-0291 | The mod_proxy module in the Apache HTTP Server 1.3.x through 1.3.42, 2.0.x through 2.0.64… | 2025-12-22T21:50:16.091000Z |
| var-200802-0651 | modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunder… | 2025-12-22T21:50:15.170000Z |
| var-201210-0179 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2025-12-22T21:50:08.186000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2022-002338 | PLANEX MZK-DP150N contains hidden administrative functionality | 2022-08-23T15:02+09:00 | 2024-06-14T14:06+09:00 |
| jvndb-2022-000063 | PukiWiki vulnerable to cross-site scripting | 2022-08-23T14:40+09:00 | 2024-06-14T12:00+09:00 |
| jvndb-2022-002337 | UNIMO Technology digital video recorders vulnerable to missing authentication for critical functions | 2022-08-23T14:31+09:00 | 2024-06-14T10:24+09:00 |
| jvndb-2022-002295 | Multiple vulnerabilities in Trend Micro Security | 2022-08-19T11:42+09:00 | 2022-08-19T11:42+09:00 |
| jvndb-2022-002265 | Trend Micro Endpoint security products for enterprises vulnerable to Link Following Local Privilege Escalation | 2022-08-18T15:45+09:00 | 2024-06-14T17:11+09:00 |
| jvndb-2022-000062 | Kaitai Struct: compiler vulnerable to denial-of-service (DoS) | 2022-08-04T15:14+09:00 | 2022-08-04T15:14+09:00 |
| jvndb-2022-002112 | CONTEC SolarView Compact vulnerable to insufficient verification in uploading files | 2022-08-03T17:40+09:00 | 2024-06-14T15:21+09:00 |
| jvndb-2022-002143 | Information Disclosure Vulnerability in Hitachi Automation Director and Hitachi Ops Center Automator | 2022-08-01T17:10+09:00 | 2022-08-01T17:10+09:00 |
| jvndb-2022-000056 | Multiple vulnerabilities in Nintendo Wi-Fi Network Adaptor WAP-001 | 2022-07-29T13:43+09:00 | 2024-06-14T16:27+09:00 |
| jvndb-2022-000061 | "JustSystems JUST Online Update for J-License" starts a program with an unquoted file path | 2022-07-28T13:40+09:00 | 2022-07-28T13:40+09:00 |
| jvndb-2022-000060 | "Hulu" App for iOS vulnerable to improper server certificate verification | 2022-07-28T09:51+09:00 | 2024-06-14T12:25+09:00 |
| jvndb-2022-000059 | "Hulu" App for Android uses a hard-coded API key for an external service | 2022-07-28T09:14+09:00 | 2024-06-14T14:42+09:00 |
| jvndb-2022-000057 | WordPress Plugin "Newsletter" vulnerable to cross-site scripting | 2022-07-25T14:30+09:00 | 2024-06-18T11:21+09:00 |
| jvndb-2022-000058 | Multiple vulnerabilities in untangle | 2022-07-25T14:18+09:00 | 2024-06-17T11:03+09:00 |
| jvndb-2022-000055 | Booked vulnerable to open redirect | 2022-07-22T13:40+09:00 | 2024-06-14T17:43+09:00 |
| jvndb-2022-000054 | Multiple vulnerabilities in Cybozu Office | 2022-07-20T17:28+09:00 | 2024-06-14T14:02+09:00 |
| jvndb-2022-002017 | U-Boot squashfs filesystem implementation vulnerable to heap-based buffer overflow | 2022-07-14T15:59+09:00 | 2024-06-14T17:53+09:00 |
| jvndb-2022-000053 | Django Extract and Trunc functions vulnerable to SQL injection | 2022-07-12T13:47+09:00 | 2024-06-18T11:57+09:00 |
| jvndb-2022-000052 | Passage Drive vulnerable to insufficient data verification | 2022-07-08T13:42+09:00 | 2024-06-14T17:48+09:00 |
| jvndb-2022-000051 | Multiple vulnerabilities in Cybozu Garoon | 2022-07-04T14:17+09:00 | 2024-06-17T16:49+09:00 |
| jvndb-2022-000050 | LiteCart vulnerable to cross-site scripting | 2022-07-04T14:12+09:00 | 2024-06-17T10:39+09:00 |
| jvndb-2022-000049 | HOME SPOT CUBE2 vulnerable to OS command injection | 2022-06-29T13:42+09:00 | 2024-06-17T10:45+09:00 |
| jvndb-2022-000048 | L2Blocker Sensor setup screen vulnerable to authentication bypass | 2022-06-24T14:21+09:00 | 2024-06-18T10:45+09:00 |
| jvndb-2022-000047 | web2py vulnerable to open redirect | 2022-06-23T14:21+09:00 | 2024-06-18T10:48+09:00 |
| jvndb-2022-000046 | Gitlab vulnerable to server-side request forgery | 2022-06-17T12:26+09:00 | 2024-06-20T15:39+09:00 |
| jvndb-2022-001953 | Growi vulnerable to weak password requirements | 2022-06-15T17:47+09:00 | 2022-06-15T17:47+09:00 |
| jvndb-2022-000045 | FreeBSD vulnerable to denial-of-service (DoS) | 2022-06-15T12:28+09:00 | 2024-06-13T16:31+09:00 |
| jvndb-2022-000044 | Cisco Catalyst 2940 Series Switches vulnerable to cross-site scripting | 2022-06-14T13:46+09:00 | 2024-06-18T10:51+09:00 |
| jvndb-2022-000043 | SHIRASAGI vulnerable to cross-site scripting | 2022-06-09T13:31+09:00 | 2024-06-18T11:13+09:00 |
| jvndb-2022-001948 | Multiple vulnerabilities in Trend Micro Apex One and Apex One as a Service | 2022-06-03T12:17+09:00 | 2024-06-18T16:30+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:20872-1 | Security update for haproxy | 2025-10-23T15:27:42Z | 2025-10-23T15:27:42Z |
| suse-su-2025:20911-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_13 | 2025-10-23T15:08:57Z | 2025-10-23T15:08:57Z |
| suse-su-2025:20871-1 | Security update for kernel-livepatch-MICRO-6-0-RT_Update_13 | 2025-10-23T15:08:57Z | 2025-10-23T15:08:57Z |
| suse-su-2025:3761-1 | Security update for the Linux Kernel | 2025-10-23T15:04:37Z | 2025-10-23T15:04:37Z |
| suse-su-2025:3760-1 | Security update for mozilla-nss | 2025-10-23T14:01:15Z | 2025-10-23T14:01:15Z |
| suse-su-2025:3759-1 | Security update for mozilla-nss | 2025-10-23T14:00:31Z | 2025-10-23T14:00:31Z |
| suse-su-2025:20898-1 | Security update for the Linux Kernel | 2025-10-23T13:59:20Z | 2025-10-23T13:59:20Z |
| suse-su-2025:3758-1 | Security update for openssl-1_1-livepatches | 2025-10-23T13:45:12Z | 2025-10-23T13:45:12Z |
| suse-su-2025:20910-1 | Security update for openssl-3-livepatches | 2025-10-23T13:08:17Z | 2025-10-23T13:08:17Z |
| suse-su-2025:20897-1 | Security update for libxslt | 2025-10-23T12:41:24Z | 2025-10-23T12:41:24Z |
| suse-su-2025:3755-1 | Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP6) | 2025-10-23T11:05:11Z | 2025-10-23T11:05:11Z |
| suse-su-2025:3754-1 | Security update for python-Authlib | 2025-10-23T10:27:00Z | 2025-10-23T10:27:00Z |
| suse-su-2025:3753-1 | Security update for libsoup | 2025-10-23T10:26:39Z | 2025-10-23T10:26:39Z |
| suse-su-2025:3752-1 | Security update for libsoup | 2025-10-23T10:26:29Z | 2025-10-23T10:26:29Z |
| suse-su-2025:3751-1 | Security update for the Linux Kernel | 2025-10-23T10:25:37Z | 2025-10-23T10:25:37Z |
| suse-su-2025:3748-1 | Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP6) | 2025-10-23T09:08:16Z | 2025-10-23T09:08:16Z |
| suse-su-2025:3744-1 | Security update for aws-cli, local-npm-registry, python-boto3, python-botocore, python-coverage, python-flaky, python-pluggy, python-pytest, python-pytest-cov, python-pytest-html, python-pytest-metadata, python-pytest-mock | 2025-10-23T06:22:53Z | 2025-10-23T06:22:53Z |
| suse-su-2025:3743-1 | Security update for libxslt | 2025-10-23T06:19:50Z | 2025-10-23T06:19:50Z |
| suse-su-2025:3742-1 | Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6) | 2025-10-23T06:06:49Z | 2025-10-23T06:06:49Z |
| suse-su-2025:3741-1 | Security update for the Linux Kernel (Live Patch 30 for SLE 15 SP5) | 2025-10-23T05:46:36Z | 2025-10-23T05:46:36Z |
| suse-su-2025:3740-1 | Security update for the Linux Kernel (Live Patch 29 for SLE 15 SP5) | 2025-10-23T05:46:28Z | 2025-10-23T05:46:28Z |
| suse-su-2025:3736-1 | Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP5) | 2025-10-22T22:41:33Z | 2025-10-22T22:41:33Z |
| suse-su-2025:3733-1 | Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP5) | 2025-10-22T18:34:34Z | 2025-10-22T18:34:34Z |
| suse-su-2025:3734-1 | Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP5) | 2025-10-22T17:04:43Z | 2025-10-22T17:04:43Z |
| suse-su-2025:3731-1 | Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP5) | 2025-10-22T13:34:30Z | 2025-10-22T13:34:30Z |
| suse-su-2025:3729-1 | Security update for krb5 | 2025-10-22T13:19:35Z | 2025-10-22T13:19:35Z |
| suse-su-2025:20869-1 | Security update for podman | 2025-10-22T12:25:33Z | 2025-10-22T12:25:33Z |
| suse-su-2025:20896-1 | Security update for openssl-3 | 2025-10-22T12:18:32Z | 2025-10-22T12:18:32Z |
| suse-su-2025:20895-1 | Security update for expat | 2025-10-22T12:11:31Z | 2025-10-22T12:11:31Z |
| suse-su-2025:20868-1 | Security update for expat | 2025-10-22T12:00:46Z | 2025-10-22T12:00:46Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15290-1 | python39-3.9.23-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15289-1 | python314-3.14.0~b3-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15288-1 | python313-3.13.5-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15287-1 | python312-3.12.11-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15286-1 | python311-3.11.13-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15285-1 | python310-3.10.18-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15284-1 | python311-urllib3_1-1.26.20-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15283-1 | python311-urllib3-2.5.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15282-1 | python311-rfc3161-client-1.0.3-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15281-1 | python311-requests-2.32.4-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15280-1 | python311-pytest-html-4.1.1-6.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15279-1 | python311-pydata-sphinx-theme-0.16.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15278-1 | jupyter-plotly-6.1.2-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15277-1 | jupyter-panel-1.7.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15276-1 | jupyter-nbdime-7.0.2-20.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15275-1 | jupyter-nbclassic-1.3.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15274-1 | jupyter-jupyterlab-templates-0.5.2-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15273-1 | python311-jupyter-ydoc-3.1.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15272-1 | python311-jupyter-core-5.8.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15271-1 | jupyter-matplotlib-0.11.4-15.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15270-1 | python-furo-doc-2024.8.6-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15269-1 | jupyter-bqplot-jupyterlab-0.5.44-10.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15268-1 | python311-Django4-4.2.22-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15267-1 | python311-Django-5.2.2-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15266-1 | pure-ftpd-1.0.51-5.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15265-1 | libprotobuf-lite31_1_0-31.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15264-1 | postgresql-jdbc-42.7.7-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15263-1 | polaris-9.6.4-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15262-1 | podman-5.5.2-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15261-1 | perl-YAML-LibYAML-0.904.0-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-27887 | WordPress WPFunnels plugin路径遍历漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27886 | WordPress WPFunnels plugin未经授权的用户注册漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27885 | WordPress WP Airbnb Review Slider plugin跨站脚本漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27884 | WordPress Smart Auto Upload Images plugin任意文件上传漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27883 | WordPress Simple Downloads List plugin未经授权的数据修改漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27882 | WordPress Ovatheme Events Manager plugin未经授权的访问漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27881 | WordPress Mang Board plugin跨站脚本漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27880 | WordPress LC Wizard plugin权限提升漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27879 | WordPress IDonate plugin不安全的直接对象引用漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27878 | WordPress Gravity Forms plugin任意文件上传漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27877 | WordPress Course Booking System plugin未授权访问数据漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27876 | WordPress Contact Form 7 AWeber Extension plugin未经授权的数据修改漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-27875 | WordPress Asgaros Forum plugin SQL注入漏洞 | 2025-11-12 | 2025-11-14 |
| cnvd-2025-31104 | Advantech WebAccess/VPN命令注入漏洞 | 2025-11-11 | 2025-12-22 |
| cnvd-2025-31103 | Advantech WebAccess/VPN绝对路径遍历漏洞 | 2025-11-11 | 2025-12-22 |
| cnvd-2025-31070 | Advantech WebAccess/VPN StandaloneVpnClientsController.addStandaloneVpnClientAction函数跨站脚本漏洞 | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31069 | Advantech WebAccess/VPN NetworksController.addNetworkAction函数跨站脚本漏洞 | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31068 | Advantech WebAccess/VPN AjaxFwRulesController.ajaxNetworkFwRulesAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31067 | Advantech WebAccess/VPN AjaxFwRulesController.ajaxDeviceFwRulesAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31066 | Advantech WebAccess/VPN AjaxDeviceController.ajaxDeviceAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31065 | Advantech iView SQL注入漏洞(CNVD-2025-31065) | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31064 | Advantech iView SQL注入漏洞(CNVD-2025-31064) | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31063 | Advantech iView SQL注入漏洞(CNVD-2025-31063) | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31062 | Advantech iView SQL注入漏洞(CNVD-2025-31062) | 2025-11-11 | 2025-12-19 |
| cnvd-2025-31061 | Advantech iView SQL注入漏洞(CNVD-2025-31061) | 2025-11-11 | 2025-12-19 |
| cnvd-2025-30965 | Advantech WebAccess/VPN NetworksController.addNetworkAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30964 | Advantech WebAccess/VPN AppManagementController.appUpgradeAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30963 | Advantech WebAccess/VPN AjaxStandaloneVpnClientsController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30962 | Advantech WebAccess/VPN AjaxPrevalidationController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| cnvd-2025-30961 | Advantech WebAccess/VPN AjaxNetworkController.ajaxAction函数SQL注入漏洞 | 2025-11-11 | 2025-12-18 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0528 | Multiples vulnérabilités dans les produits Citrix | 2025-06-20T00:00:00.000000 | 2025-06-20T00:00:00.000000 |
| certfr-2025-avi-0527 | Vulnérabilité dans les produits Microsoft | 2025-06-20T00:00:00.000000 | 2025-06-20T00:00:00.000000 |
| certfr-2025-avi-0526 | Multiples vulnérabilités dans Microsoft Edge | 2025-06-20T00:00:00.000000 | 2025-06-20T00:00:00.000000 |
| certfr-2025-avi-0525 | Multiples vulnérabilités dans Mattermost Server | 2025-06-19T00:00:00.000000 | 2025-08-19T00:00:00.000000 |
| certfr-2025-avi-0524 | Multiples vulnérabilités dans VMware Tanzu | 2025-06-19T00:00:00.000000 | 2025-06-19T00:00:00.000000 |
| certfr-2025-avi-0523 | Vulnérabilité dans Cisco Meraki MX | 2025-06-19T00:00:00.000000 | 2025-06-19T00:00:00.000000 |
| certfr-2025-avi-0522 | Multiples vulnérabilités dans ClamAV | 2025-06-19T00:00:00.000000 | 2025-06-19T00:00:00.000000 |
| certfr-2025-avi-0521 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2025-06-18T00:00:00.000000 | 2025-06-18T00:00:00.000000 |
| certfr-2025-avi-0520 | Multiples vulnérabilités dans les produits Atlassian | 2025-06-18T00:00:00.000000 | 2025-06-18T00:00:00.000000 |
| certfr-2025-avi-0519 | Multiples vulnérabilités dans Moodle | 2025-06-18T00:00:00.000000 | 2025-06-18T00:00:00.000000 |
| certfr-2025-avi-0518 | Multiples vulnérabilités dans Google Chrome | 2025-06-18T00:00:00.000000 | 2025-06-18T00:00:00.000000 |
| certfr-2025-avi-0517 | Multiples vulnérabilités dans les produits Veeam | 2025-06-18T00:00:00.000000 | 2025-06-18T00:00:00.000000 |
| certfr-2025-avi-0516 | Multiples vulnérabilités dans Apache Tomcat | 2025-06-17T00:00:00.000000 | 2025-06-17T00:00:00.000000 |
| certfr-2025-avi-0515 | Vulnérabilité dans Grafana | 2025-06-16T00:00:00.000000 | 2025-06-16T00:00:00.000000 |
| certfr-2025-avi-0514 | Vulnérabilité dans PostgreSQL JDBC | 2025-06-16T00:00:00.000000 | 2025-06-16T00:00:00.000000 |
| certfr-2025-avi-0513 | Multiples vulnérabilités dans Microsoft Edge | 2025-06-16T00:00:00.000000 | 2025-06-16T00:00:00.000000 |
| certfr-2025-avi-0512 | Multiples vulnérabilités dans les produits IBM | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0511 | Multiples vulnérabilités dans les produits Google | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0510 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0509 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0508 | Multiples vulnérabilités dans les produits Splunk | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0507 | Multiples vulnérabilités dans Tenable Nessus Agent | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0506 | Vulnérabilité dans Spring Framework | 2025-06-13T00:00:00.000000 | 2025-06-13T00:00:00.000000 |
| certfr-2025-avi-0505 | Multiples vulnérabilités dans les produits Palo Alto Networks | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0504 | Vulnérabilité dans les produits Moxa | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0503 | Multiples vulnérabilités dans les produits Mitel | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0502 | Multiples vulnérabilités dans GitLab | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0501 | Multiples vulnérabilités dans les produits Microsoft | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0500 | Vulnérabilité dans Microsoft .Net | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0499 | Multiples vulnérabilités dans Microsoft Windows | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |