Recent vulnerabilities

Recent vulnerabilities from
Select from 69 available sources using the dropdown above.
ID CVSS Description Vendor Product Published Updated
CVE-1999-0578
N/A
A Windows NT system's registry audit policy does … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.691Z
CVE-1999-0579
N/A
A Windows NT system's registry audit policy does … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.675Z
CVE-1999-0580
N/A
The HKEY_LOCAL_MACHINE key in a Windows NT system… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.690Z
CVE-1999-0581
N/A
The HKEY_CLASSES_ROOT key in a Windows NT system … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.670Z
CVE-1999-0582
N/A
A Windows NT account policy has inappropriate, se… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.690Z
CVE-1999-0583
N/A
There is a one-way or two-way trust relationship … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.688Z
CVE-1999-0584
N/A
A Windows NT file system is not NTFS. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.647Z
CVE-1999-0585
N/A
A Windows NT administrator account has the defaul… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.675Z
CVE-1999-0586
N/A
A network service is running on a nonstandard port. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.665Z
CVE-1999-0587
N/A
A WWW server is not running in a restricted file … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.687Z
CVE-1999-0588
N/A
A filter in a router or firewall allows unusual f… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.716Z
CVE-1999-0589
N/A
A system-critical Windows NT registry key has ina… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.688Z
CVE-1999-0590
N/A
A system does not present an appropriate legal me… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.692Z
CVE-1999-0591
N/A
An event log in Windows NT has inappropriate acce… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.649Z
CVE-1999-0592
N/A
The Logon box of a Windows NT system displays the… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.675Z
CVE-1999-0593
N/A
The default setting for the Winlogon key entry Sh… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.690Z
CVE-1999-0594
N/A
A Windows NT system does not restrict access to r… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.685Z
CVE-1999-0595
N/A
A Windows NT system does not clear the system pag… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.689Z
CVE-1999-0596
N/A
A Windows NT log file has an inappropriate maximu… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.679Z
CVE-1999-0597
N/A
A Windows NT account policy does not forcibly dis… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.686Z
CVE-1999-0598
N/A
A network intrusion detection system (IDS) does n… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.644Z
CVE-1999-0599
N/A
A network intrusion detection system (IDS) does n… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.665Z
CVE-1999-0600
N/A
A network intrusion detection system (IDS) does n… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.710Z
CVE-1999-0601
N/A
A network intrusion detection system (IDS) does n… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.687Z
CVE-1999-0602
N/A
A network intrusion detection system (IDS) does n… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.654Z
CVE-1999-0603
N/A
In Windows NT, an inappropriate user is a member … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.692Z
CVE-1999-0604
N/A
An incorrect configuration of the WebStore 1.0 sh… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.678Z
CVE-1999-0605
N/A
An incorrect configuration of the Order Form 1.0 … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.687Z
CVE-1999-0606
N/A
An incorrect configuration of the EZMall 2000 sho… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.719Z
CVE-1999-0607
N/A
quikstore.cgi in QuikStore shopping cart stores q… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.677Z
ID CVSS Description Vendor Product Published Updated
CVE-1999-0205
N/A
Denial of service in Sendmail 8.6.11 and 8.6.12. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:27:57.930Z
CVE-1999-0220
N/A
Attackers can do a denial of service of IRC by cr… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:50.898Z
CVE-1999-0226
N/A
Windows NT TCP/IP processes fragmented IP packets… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.886Z
CVE-1999-0231
N/A
Buffer overflow in IP-Switch IMail and Seattle La… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.459Z
CVE-1999-0240
N/A
Some filters or firewalls allow fragmented SYN pa… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.775Z
CVE-1999-0243
N/A
Linux cfingerd could be exploited to gain root access. n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.621Z
CVE-1999-0248
N/A
A race condition in the authentication agent mech… n/a
 n/a
 2000-10-13T04:00:00.000Z 2024-08-01T16:34:51.869Z
CVE-1999-0255
N/A
Buffer overflow in ircd allows arbitrary command … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.769Z
CVE-1999-0268
N/A
MetaInfo MetaWeb web server allows users to uploa… n/a
 n/a
 2001-05-07T04:00:00.000Z 2024-08-01T16:34:51.863Z
CVE-1999-0276
N/A
mSQL v2.0.1 and below allows remote execution thr… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.876Z
CVE-1999-0283
N/A
The Java Web Server would allow remote users to o… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.952Z
CVE-1999-0285
N/A
Denial of service in telnet from the Windows NT R… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.957Z
CVE-1999-0286
N/A
In some NT web servers, appending a space at the … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.867Z
CVE-1999-0355
N/A
Local or remote users can force ControlIT 4.5 to … n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.893Z
CVE-1999-0361
N/A
NetWare version of LaserFiche stores usernames an… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.897Z
CVE-1999-0364
N/A
Microsoft Access 97 stores a database password as… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.833Z
CVE-1999-0384
N/A
The Forms 2.0 ActiveX control (included with Visu… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:51.891Z
CVE-1999-0388
N/A
DataLynx suGuard trusts the PATH environment vari… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:34:52.030Z
CVE-1999-0393
N/A
Remote attackers can cause a denial of service in… n/a
 n/a
 2000-10-13T04:00:00.000Z 2024-08-01T16:34:51.979Z
CVE-1999-0394
N/A
DPEC Online Courseware allows an attacker to chan… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.027Z
CVE-1999-0395
N/A
A race condition in the BackWeb Polite Agent Prot… n/a
 n/a
 2000-10-13T04:00:00.000Z 2024-08-01T16:34:51.863Z
CVE-1999-0397
N/A
The demo version of the Quakenbush NT Password Ap… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.964Z
CVE-1999-0398
N/A
In some instances of SSH 1.2.27 and 2.0.11 on Lin… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:51.945Z
CVE-1999-0399
N/A
The DCC server command in the Mirc 5.5 client doe… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.118Z
CVE-1999-0401
N/A
A race condition in Linux 2.2.1 allows local user… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:34:52.159Z
CVE-1999-0448
N/A
IIS 4.0 and Apache log HTTP request methods, rega… n/a
 n/a
 1999-09-29T04:00:00.000Z 2024-08-01T16:41:44.992Z
CVE-1999-0452
N/A
A service or application has a backdoor password … n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:44.901Z
CVE-1999-0453
N/A
An attacker can identify a CISCO device by sendin… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.387Z
CVE-1999-0454
N/A
A remote attacker can sometimes identify the oper… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:44.964Z
CVE-1999-0465
N/A
Remote attackers can crash Lynx and Internet Expl… n/a
 n/a
 2000-02-04T05:00:00.000Z 2024-08-01T16:41:45.406Z
ID Description Published Updated
ID Severity Description Published Updated
ghsa-f5cf-f7px-xpmh
6.5 (3.1)
Moderate severity vulnerability that affects org.apache.qpid:proton-j 2018-10-16T19:50:27Z 2021-09-09T21:40:11Z
ghsa-7xr3-rgwh-pw22
7.5 (3.1)
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents 2018-10-16T19:50:39Z 2024-03-04T23:40:34Z
ghsa-8336-mxp6-v5h9
5.3 (3.1)
Moderate severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua 2018-10-16T19:51:18Z 2021-06-11T15:34:21Z
ghsa-782p-53wq-cxmj
7.5 (3.1)
High severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua 2018-10-16T19:51:31Z 2021-06-11T13:55:54Z
ghsa-35hc-x2cw-2j4v
7.5 (3.1)
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents 2018-10-16T19:54:06Z 2022-04-26T19:04:54Z
ghsa-j378-6mmw-hqfr
7.5 (3.1)
Denial of service vulnerability exists when System.IO.Pipelines improperly handles requests 2018-10-16T19:56:38Z 2022-10-26T18:56:19Z
ghsa-vhvh-528q-ff3p
7.5 (3.1)
Security feature bypass vulnerability exists in ASP.NET when the number of incorrect login attempts… 2018-10-16T19:56:50Z 2022-04-26T19:05:55Z
ghsa-365p-96qv-xr7g
8.8 (3.1)
ASP.NET Core allow an elevation of privilege 2018-10-16T19:56:59Z 2022-04-26T19:06:29Z
ghsa-qhqf-ghgh-x2m4
7.3 (3.1)
High severity vulnerability that affects Microsoft.AspNetCore.Mvc 2018-10-16T19:57:38Z 2021-10-08T21:18:12Z
ghsa-j8f4-2w4p-mhjc
5.3 (3.1)
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc 2018-10-16T19:57:48Z 2021-07-01T21:44:55Z
ghsa-6xh7-4v2w-36q6
7.5 (3.1)
ASP.NET Core fails to properly validate web requests 2018-10-16T19:58:05Z 2022-04-26T19:07:08Z
ghsa-mv2r-q4g5-j8q5
7.5 (3.1)
Denial of service in ASP.NET Core 2018-10-16T19:58:31Z 2022-07-07T21:37:06Z
ghsa-gr4c-5rq6-cgh3
5.3 (3.1)
OPC UA applications can allow a remote attacker to determine a Server's private key 2018-10-16T19:58:42Z 2022-04-26T19:12:42Z
ghsa-ch6p-4jcm-h8vh
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc and Microsoft.AspNetCore.Mvc.Core 2018-10-16T19:58:52Z 2024-02-28T23:01:55Z
ghsa-jc8g-xhw5-6x46
7.5 (3.1)
Improper Certificate Validation in Microsoft .NET Framework components 2018-10-16T19:59:05Z 2022-07-07T21:42:15Z
ghsa-3m2r-q8x3-xmf7
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.… 2018-10-16T19:59:48Z 2021-12-03T14:27:36Z
ghsa-cgpw-2gph-2r9g
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.App, an… 2018-10-16T19:59:59Z 2021-12-03T14:28:10Z
ghsa-r53v-vm87-f72c
Improper Validation of Certificates in apache axis 2018-10-16T20:50:58Z 2024-03-01T20:29:59Z
ghsa-96jq-75wh-2658
6.1 (3.1)
Moderate severity vulnerability that affects apache axis 2018-10-16T20:51:15Z 2024-06-21T22:05:49Z
ghsa-8p83-68cw-943f
7.5 (3.1)
Apache Ignite communicates to an external PHP server where sensitive information is sent 2018-10-16T20:53:20Z 2024-11-22T18:28:37Z
ghsa-8qfc-cvjp-mgpq
5.9 (3.1)
Moderate severity vulnerability that affects org.apache.ignite:ignite-core 2018-10-16T20:53:31Z 2021-09-07T20:29:22Z
ghsa-chp4-rv79-68j3
9.8 (3.1)
Apache serialization mechanism does not have a list of classes allowed for serialization/deserialization 2018-10-16T20:53:44Z 2024-04-19T19:24:01Z
ghsa-qcjv-wfcg-mmpr
9.8 (3.1)
Code execution via deserialization in org.apache.ignite:ignite-core 2018-10-16T20:53:54Z 2024-03-04T23:29:23Z
ghsa-vf4q-8mr7-5c5c
9.8 (3.1)
Camel-castor component in Apache Camel is vulnerable to Java object de-serialisation 2018-10-16T23:05:58Z 2023-12-13T13:42:09Z
ghsa-8vfm-4388-6rpc
9.8 (3.1)
Apache is vulnerable to XXE in XSD validation processor 2018-10-16T23:06:25Z 2022-11-17T18:47:38Z
ghsa-jv74-f9pj-xp3f
5.3 (3.1)
Apache Camel's Mail is vulnerable to path traversal 2018-10-16T23:07:57Z 2022-11-17T19:14:08Z
ghsa-3hrc-f439-727g
Apache Camel XML External Entity vulnerability 2018-10-16T23:08:43Z 2022-11-17T18:38:58Z
ghsa-mhx2-r3jx-g94c
Apache Camel allows remote actor to read arbitrary files via external entity in invalid XML string … 2018-10-16T23:09:15Z 2022-11-17T19:39:36Z
ghsa-gv5f-cjw9-5vxg
9.8 (3.1)
Camel-xstream component in Apache Camel can allow remote attackers to execute arbitrary commands 2018-10-16T23:10:23Z 2023-12-19T22:33:53Z
ghsa-26v6-w6fw-rh94
8.1 (3.1)
Apache Camel can allow remote attackers to execute arbitrary commands 2018-10-16T23:12:20Z 2023-12-19T22:56:00Z
ID Severity Description Package Published Updated
pysec-2019-153
modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided dat… modulemd 2019-01-10T21:29:00Z 2021-07-05T00:01:22.789825Z
pysec-2019-108
** DISPUTED ** An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle … numpy 2019-01-16T05:29:00Z 2019-10-01T00:15:00Z
pysec-2019-250
8.8 (3.1)
GattLib 0.2 has a stack-based buffer over-read in gattlib_connect in dbus/gattlib.c becau… gattlib-py 2019-01-21T06:29:00Z 2024-11-21T14:22:50.820785Z
pysec-2019-143
The LDAP auth backend (airflow.contrib.auth.backends.ldap_auth) prior to Apache Airflow 1… apache-airflow 2019-01-23T17:29:00Z 2021-06-10T06:51:25.502672Z
pysec-2019-147
In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on t… apache-airflow 2019-01-23T17:29:00Z 2021-07-05T00:01:17.000324Z
pysec-2019-148
In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command in… apache-airflow 2019-01-23T17:29:00Z 2021-07-05T00:01:17.030004Z
pysec-2019-149
In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authentica… apache-airflow 2019-01-23T17:29:00Z 2021-07-05T00:01:17.060541Z
pysec-2019-113
CRLF Injection in pypiserver 1.2.5 and below allows attackers to set arbitrary HTTP heade… pypiserver 2019-01-25T04:29:00Z 2019-01-25T19:42:00Z
pysec-2019-167
In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause… colander 2019-02-01T09:29:00Z 2021-08-25T04:29:57.387774Z
pysec-2019-7
www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of … buildbot 2019-02-03T08:29:00Z 2019-02-06T21:48:00Z
pysec-2019-169
When using PySpark , it's possible for a different local user to connect to the Spark app… pyspark 2019-02-04T17:29:00Z 2021-08-25T04:30:27.510120Z
pysec-2019-1
aioxmpp version 0.10.2 and earlier contains a Improper Handling of Structural Elements vu… aioxmpp 2019-02-04T21:29:00Z 2019-02-15T15:00:00Z
pysec-2019-121
slixmpp version before commit 7cd73b594e8122dddf847953fcfc85ab4d316416 contains an incorr… slixmpp 2019-02-04T21:29:00Z 2020-08-24T17:37:00Z
pysec-2019-124
SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled. sqlalchemy 2019-02-06T21:29:00Z 2021-01-20T15:15:00Z
pysec-2019-252
5.5 (3.1)
In parser/btorsmt2.c in Boolector 3.0.0, opening a specially crafted input file leads to … pyboolector 2019-02-07T07:29:00Z 2024-11-25T18:35:18.357593Z
pysec-2019-18
Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontro… django 2019-02-11T13:29:00Z 2020-08-24T17:37:00Z
pysec-2019-255
6.1 (3.1)
data/interfaces/default/history.html in Tautulli 2.1.26 has XSS via a crafted Plex userna… tautulli 2019-02-19T16:29:00Z 2025-01-12T05:34:20.550037Z
pysec-2019-123
SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by… sqlalchemy 2019-02-20T00:29:00Z 2021-01-20T15:15:00Z
pysec-2019-248
8.8 (3.1)
An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::print… exiv2 2019-02-25T15:29:00Z 2024-11-21T14:22:49.79084Z
pysec-2019-249
8.8 (3.1)
An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::print… exiv2 2019-02-25T15:29:00Z 2024-11-21T14:22:49.85073Z
pysec-2019-142
In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects i… apache-airflow 2019-02-27T18:29:00Z 2021-06-10T06:52:05.219935Z
pysec-2019-139
An issue was discovered in webargs before 5.1.3, as used with marshmallow and other produ… webargs 2019-03-12T02:29:00Z 2019-03-12T13:09:00Z
pysec-2019-159
An XSSI (cross-site inclusion) vulnerability in Jupyter Notebook before 5.7.6 allows incl… notebook 2019-03-12T09:29:00Z 2021-07-15T02:22:16.344384Z
pysec-2019-190
An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.… neutron 2019-03-13T02:29:00Z 2021-08-27T03:22:08.807010Z
pysec-2019-115
python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other cip… python-gnupg 2019-03-21T16:01:00Z 2020-07-13T04:15:00Z
pysec-2019-187
Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is … matrix-synapse 2019-03-21T16:01:00Z 2021-08-27T03:22:06.392030Z
pysec-2019-203
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates… splunk-sdk 2019-03-21T16:01:00Z 2021-08-27T03:22:21.751156Z
pysec-2019-21
An issue was discovered in Donfig 0.3.0. There is a vulnerability in the collect_yaml met… donfig 2019-03-21T20:29:00Z 2019-03-26T14:13:00Z
pysec-2019-180
A code injection issue was discovered in ipycache through 2016-05-31. ipycache 2019-03-21T21:29:00Z 2021-08-27T03:22:04.582276Z
pysec-2019-193
In a default Red Hat Openstack Platform Director installation, openstack-octavia before v… octavia 2019-03-26T18:29:00Z 2021-08-27T03:22:09.768851Z
ID Description Updated
ID Description Published Updated
mal-2022-419 Malicious code in @mariacasino/fetlife-assets (npm) 2022-06-20T18:20:24Z 2022-06-20T18:20:25Z
mal-2022-420 Malicious code in @marriott/fetlife-assets (npm) 2022-06-20T18:20:25Z 2022-06-20T18:20:25Z
mal-2022-421 Malicious code in @mashov/fetlife-assets (npm) 2022-06-20T18:20:25Z 2022-06-20T18:20:25Z
mal-2022-424 Malicious code in @mcd-gws/fetlife-assets (npm) 2022-06-20T18:20:25Z 2022-06-20T18:20:30Z
mal-2022-425 Malicious code in @mcdonalds/fetlife-assets (npm) 2022-06-20T18:20:25Z 2022-06-20T18:20:26Z
mal-2022-426 Malicious code in @mckesson/fetlife-assets (npm) 2022-06-20T18:20:25Z 2022-06-20T18:20:26Z
mal-2022-433 Malicious code in @micropython/fetlife-assets (npm) 2022-06-20T18:20:26Z 2022-06-20T18:20:26Z
mal-2022-435 Malicious code in @moneybird/fetlife-assets (npm) 2022-06-20T18:20:26Z 2022-06-20T18:20:26Z
mal-2022-436 Malicious code in @mozilla-mobile/fetlife-assets (npm) 2022-06-20T18:20:26Z 2022-06-20T18:20:27Z
mal-2022-446 Malicious code in @myndr/fetlife-assets (npm) 2022-06-20T18:20:26Z 2022-06-20T18:20:27Z
mal-2022-449 Malicious code in @navyfederal/fetlife-assets (npm) 2022-06-20T18:20:27Z 2022-06-20T18:20:27Z
mal-2022-450 Malicious code in @ncr-design-system/cxd-npm-group (npm) 2022-06-20T18:20:27Z 2022-06-20T18:20:27Z
mal-2022-451 Malicious code in @ncr-design-system/cxd-npm-releases (npm) 2022-06-20T18:20:27Z 2022-06-20T18:20:28Z
mal-2022-452 Malicious code in @ncr-swt-retail/scox-npm-group (npm) 2022-06-20T18:20:27Z 2022-06-20T18:20:28Z
mal-2022-453 Malicious code in @ncr-swt-retail/scox-npm-releases (npm) 2022-06-20T18:20:28Z 2022-06-20T18:20:28Z
mal-2022-476 Malicious code in @node32/fetlife-assets (npm) 2022-06-20T18:20:28Z 2022-06-20T18:20:28Z
mal-2022-478 Malicious code in @octopus-ng/fetlife-assets (npm) 2022-06-20T18:20:28Z 2022-06-20T18:20:29Z
mal-2022-479 Malicious code in @ohiosos/fetlife-assets (npm) 2022-06-20T18:20:28Z 2022-06-20T18:20:29Z
mal-2022-482 Malicious code in @openmage/fetlife-assets (npm) 2022-06-20T18:20:29Z 2022-06-20T18:20:29Z
mal-2022-483 Malicious code in @openu/fetlife-assets (npm) 2022-06-20T18:20:29Z 2022-06-20T18:20:29Z
mal-2022-495 Malicious code in @parabol/fetlife-assets (npm) 2022-06-20T18:20:29Z 2022-06-20T18:20:29Z
mal-2022-497 Malicious code in @passit/fetlife-assets (npm) 2022-06-20T18:20:29Z 2022-06-20T18:20:30Z
mal-2022-500 Malicious code in @phabricator/fetlife-assets (npm) 2022-06-20T18:20:30Z 2022-06-20T18:20:30Z
mal-2022-501 Malicious code in @picsart/fetlife-assets (npm) 2022-06-20T18:20:30Z 2022-06-20T18:20:30Z
mal-2022-504 Malicious code in @plantemoran/fetlife-assets (npm) 2022-06-20T18:20:30Z 2022-06-20T18:20:31Z
mal-2022-509 Malicious code in @pnfp/fetlife-assets (npm) 2022-06-20T18:20:30Z 2022-06-20T18:20:31Z
mal-2022-510 Malicious code in @polymail/fetlife-assets (npm) 2022-06-20T18:20:31Z 2022-06-20T18:20:31Z
mal-2022-512 Malicious code in @pornhub/fetlife-assets (npm) 2022-06-20T18:20:31Z 2022-06-20T18:20:31Z
mal-2022-517 Malicious code in @portswigger/fetlife-assets (npm) 2022-06-20T18:20:31Z 2022-06-20T18:20:32Z
mal-2022-533 Malicious code in @prospect/fetlife-assets (npm) 2022-06-20T18:20:31Z 2022-06-20T18:20:32Z
ID Description Published Updated
ID Description Published Updated
wid-sec-w-2023-1920 Wireshark: Schwachstelle ermöglicht Denial of Service 2020-05-19T22:00:00.000+00:00 2023-07-30T22:00:00.000+00:00
wid-sec-w-2024-0978 Mehrere DNS Server: Schwachstelle ermöglicht Denial of Service 2020-05-19T22:00:00.000+00:00 2024-10-01T22:00:00.000+00:00
wid-sec-w-2022-1870 Apache Tomcat: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2020-05-21T22:00:00.000+00:00 2024-08-01T22:00:00.000+00:00
wid-sec-w-2024-0747 libvirt: Schwachstelle ermöglicht Denial of Service 2020-05-21T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2024-1977 QEMU: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-05-24T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-0558 jQuery: Schwachstelle ermöglicht Cross-Site Scripting 2020-05-25T22:00:00.000+00:00 2024-05-07T22:00:00.000+00:00
wid-sec-w-2022-1267 QEMU: Schwachstelle ermöglicht Denial of Service 2020-05-26T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2024-1976 QEMU: Mehrere Schwachstellen ermöglichen Denial of Service 2020-05-27T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2023-2982 Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Denial of Service 2020-05-28T22:00:00.000+00:00 2023-11-21T23:00:00.000+00:00
wid-sec-w-2023-0679 QEMU: Mehrere Schwachstellen ermöglichen Denial of Service 2020-06-01T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2024-1448 Aruba ClearPass: Mehrere Schwachstellen 2020-06-02T22:00:00.000+00:00 2024-11-11T23:00:00.000+00:00
wid-sec-w-2025-0900 docker: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-06-02T22:00:00.000+00:00 2025-10-12T22:00:00.000+00:00
wid-sec-w-2024-1975 QEMU: Mehrere Schwachstellen 2020-06-03T22:00:00.000+00:00 2024-11-10T23:00:00.000+00:00
wid-sec-w-2022-2006 dbus: Schwachstelle ermöglicht Denial of Service 2020-06-04T22:00:00.000+00:00 2025-06-29T22:00:00.000+00:00
wid-sec-w-2023-1319 Perl: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit den Rechten des Dienstes 2020-06-07T22:00:00.000+00:00 2023-12-04T23:00:00.000+00:00
wid-sec-w-2023-1374 Node.js: Mehrere Schwachstellen 2020-06-07T22:00:00.000+00:00 2023-10-23T22:00:00.000+00:00
wid-sec-w-2022-1808 LibreOffice: Mehrere Schwachstellen 2020-06-08T22:00:00.000+00:00 2024-01-01T23:00:00.000+00:00
wid-sec-w-2023-1516 VLC: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode 2020-06-08T22:00:00.000+00:00 2023-06-20T22:00:00.000+00:00
wid-sec-w-2024-1974 QEMU: Schwachstelle ermöglicht Denial of Service 2020-06-08T22:00:00.000+00:00 2024-09-02T22:00:00.000+00:00
wid-sec-w-2022-2050 Red Hat JBoss Application Server (JBoss): Mehrere Schwachstellen 2020-06-11T22:00:00.000+00:00 2025-07-10T22:00:00.000+00:00
wid-sec-w-2022-2245 mutt: Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen 2020-06-14T22:00:00.000+00:00 2022-12-06T23:00:00.000+00:00
wid-sec-w-2022-1897 PCRE (Perl Compatible Regular Expressions): Mehrere Schwachstellen 2020-06-15T22:00:00.000+00:00 2024-01-24T23:00:00.000+00:00
wid-sec-w-2022-2244 mutt: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen 2020-06-15T22:00:00.000+00:00 2022-12-06T23:00:00.000+00:00
wid-sec-w-2023-0683 Treck TCP/IP-Stack: Mehrere Schwachstellen 2020-06-16T22:00:00.000+00:00 2023-03-19T23:00:00.000+00:00
wid-sec-w-2023-1154 GitLab: Mehrere Schwachstellen ermöglichen Cross-Site Scripting 2020-06-16T22:00:00.000+00:00 2023-05-10T22:00:00.000+00:00
wid-sec-w-2023-1824 IBM MQ: Mehrere Schwachstellen ermöglichen Denial of Service 2020-06-16T22:00:00.000+00:00 2023-07-19T22:00:00.000+00:00
wid-sec-w-2022-2243 mutt: Schwachstelle ermöglicht Manipulation von Daten 2020-06-21T22:00:00.000+00:00 2025-01-15T23:00:00.000+00:00
wid-sec-w-2023-1360 Squid: Mehrere Schwachstellen ermöglichen Denial of Service 2020-06-21T22:00:00.000+00:00 2023-06-06T22:00:00.000+00:00
wid-sec-w-2023-1636 cURL: Mehrere Schwachstellen 2020-06-23T22:00:00.000+00:00 2025-11-06T23:00:00.000+00:00
wid-sec-w-2023-2471 Apache Traffic Server: Schwachstelle ermöglicht Denial of Service 2020-06-24T22:00:00.000+00:00 2023-09-27T22:00:00.000+00:00
ID Description Published Updated
icsma-17-229-01 ICSMA-17-229-01_Philips' DoseWise Portal Vulnerabilities 2017-08-17T00:00:00.000000Z 2017-08-17T00:00:00.000000Z
icsa-17-234-01 Automated Logic Corporation WebCTRL, i-VU, SiteScan 2017-08-22T00:00:00.000000Z 2017-08-22T00:00:00.000000Z
icsa-17-234-02 SpiderControl SCADA MicroBrowser 2017-08-22T00:00:00.000000Z 2017-08-22T00:00:00.000000Z
icsa-17-234-03 SpiderControl SCADA Web Server 2017-08-22T00:00:00.000000Z 2017-08-22T00:00:00.000000Z
icsa-17-234-04 General Motors and Shanghai OnStar (SOS) iOS Client 2017-08-22T00:00:00.000000Z 2018-01-09T00:00:00.000000Z
icsa-17-236-01 ICSA-17-236-01_Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 2017-08-24T00:00:00.000000Z 2017-08-24T00:00:00.000000Z
icsa-17-241-01 AzeoTech DAQFactory 2017-08-29T00:00:00.000000Z 2017-08-29T00:00:00.000000Z
icsa-17-241-02 Advantech WebAccess 2017-08-29T00:00:00.000000Z 2017-08-29T00:00:00.000000Z
icsma-17-241-01 ICSMA-17-241-01_Abbott Laboratories ' Accent/Anthem, Accent MRI, Assurity/Allure, and Assurity MRI Pacemaker Vulnerabilities 2017-08-29T00:00:00.000000Z 2017-08-29T00:00:00.000000Z
icsa-17-243-01 Siemens OPC UA Protocol Stack Discovery Service (Update E) 2017-08-30T00:00:00.000000Z 2025-05-06T06:00:00.000000Z
icsa-17-243-02 Siemens LOGO! (Update A) 2017-08-30T00:00:00.000000Z 2020-12-08T00:00:00.000000Z
icsa-17-243-03 Siemens 7KM PAC Switched Ethernet 2017-08-31T00:00:00.000000Z 2017-08-31T00:00:00.000000Z
icsa-17-243-04 OPW Fuel Management Systems SiteSentinel Integra and SiteSentinel iSite 2017-08-31T00:00:00.000000Z 2017-08-31T00:00:00.000000Z
icsa-17-243-05 Moxa SoftCMS Live Viewer 2017-08-31T00:00:00.000000Z 2017-08-31T00:00:00.000000Z
icsa-17-250-01 SpiderControl SCADA Web Server 2017-09-07T00:00:00.000000Z 2017-09-07T00:00:00.000000Z
icsa-17-250-02 PHOENIX CONTACT, Innominate Security Technologies mGuard Firmware 2017-09-07T00:00:00.000000Z 2017-09-07T00:00:00.000000Z
icsma-17-250-01 i-SENS, Inc. SmartLog Diabetes Management Software 2017-09-07T00:00:00.000000Z 2017-09-07T00:00:00.000000Z
icsma-17-250-02a Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump Vulnerabilities (Update A) 2017-09-07T00:00:00.000000Z 2017-12-12T00:00:00.000000Z
icsa-17-255-01 mySCADA myPRO 2017-09-12T00:00:00.000000Z 2017-09-12T00:00:00.000000Z
icsma-17-255-01 ICSMA-17-255-01_Philips' IntelliView MX40 Patient Worn Monitor (WLAN) Vulnerabilities 2017-09-12T00:00:00.000000Z 2017-09-12T00:00:00.000000Z
icsa-17-257-01 LOYTEC LVIS-3ME 2017-09-14T00:00:00.000000Z 2017-09-14T00:00:00.000000Z
icsa-17-262-01 PHOENIX CONTACT mGuard Device Manager 2017-09-19T00:00:00.000000Z 2017-09-19T00:00:00.000000Z
icsa-17-234-05 Saia Burgess Controls PCD Controllers 2017-09-21T00:00:00.000000Z 2017-09-21T00:00:00.000000Z
icsa-17-264-01 Schneider Electric InduSoft Web Studio, InTouch Machine Edition 2017-09-21T00:00:00.000000Z 2017-09-21T00:00:00.000000Z
icsa-17-264-02 Ctek, Inc. SkyRouter 2017-09-21T00:00:00.000000Z 2017-09-21T00:00:00.000000Z
icsa-17-264-03 Digium Asterisk GUI 2017-09-21T00:00:00.000000Z 2017-09-21T00:00:00.000000Z
icsa-17-264-04 iniNet Solutions GmbH SCADA Webserver 2017-09-21T00:00:00.000000Z 2017-09-21T00:00:00.000000Z
icsa-17-271-01b Siemens Ruggedcom ROS, SCALANCE 2017-09-28T00:00:00.000000Z 2025-08-12T00:00:00.000000Z
icsa-17-278-01a GE CIMPLICITY (Update A) 2017-10-05T00:00:00.000000Z 2017-10-10T00:00:00.000000Z
icsa-17-278-02 Siemens 7KT PAC1200 Data Manager 2017-10-05T00:00:00.000000Z 2017-10-05T00:00:00.000000Z
ID Description Published Updated
cisco-sa-20190515-nxos-cmdinj-1770 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1770) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1774-1775 Cisco NX-OS Software Command Injection Vulnerabilities (CVE-2019-1774, CVE-2019-1775) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1776 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1776) 2019-05-15T16:00:00+00:00 2019-07-18T00:00:28+00:00
cisco-sa-20190515-nxos-cmdinj-1778 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1778) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1783 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1783) 2019-05-15T16:00:00+00:00 2019-07-18T00:00:27+00:00
cisco-sa-20190515-nxos-cmdinj-1790 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1790) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1791 Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1791) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-cmdinj-1795 Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1795) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-conf-bypass Cisco FXOS and NX-OS Software Secure Configuration Bypass Vulnerability 2019-05-15T16:00:00+00:00 2021-07-12T14:24:25+00:00
cisco-sa-20190515-nxos-file-write Cisco NX-OS Software Arbitrary File Overwrite Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-fxos-cmdinj-1779 Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1779) 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-fxos-cmdinj-1780 Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1780) 2019-05-15T16:00:00+00:00 2019-05-21T13:55:18+00:00
cisco-sa-20190515-nxos-fxos-info Cisco FXOS and NX-OS Software Sensitive File Read Information Disclosure Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-linecardinj-1769 Cisco NX-OS Software Line Card Command Injection Vulnerability (CVE-2019-1769) 2019-05-15T16:00:00+00:00 2019-05-28T15:20:22+00:00
cisco-sa-20190515-nxos-nxapi-xss Cisco NX-OS Software NX-API Sandbox Cross-Site Scripting Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-overflow-inj Cisco NX-OS Software Buffer Overflow and Command Injection Vulnerabilities 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-psvb Cisco NX-OS Software Patch Signature Verification Bypass Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-pyth-escal Cisco NX-OS Software Python Parser Privilege Escalation Vulnerability 2019-05-15T16:00:00+00:00 2021-08-25T15:49:16+00:00
cisco-sa-20190515-nxos-rpm-injec Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-sisv Cisco Nexus 3000 Series and 9000 Series Switches in NX-OS Mode CLI Command Software Image Signature Verification Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-sisv2 Cisco NX-OS CLI Command Software Image Signature Verification Vulnerabilities 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-snmp-dos Cisco FXOS and NX-OS Software Simple Network Management Protocol Denial of Service Vulnerability 2019-05-15T16:00:00+00:00 2021-07-12T14:24:24+00:00
cisco-sa-20190515-nxos-spsv Cisco MDS 9700 Series Multilayer Directors and Nexus 7000/7700 Series Switches Software Patch Signature Verification Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-nxos-ssh-info Cisco NX-OS Software SSH Key Information Disclosure Vulnerability 2019-05-15T16:00:00+00:00 2019-05-16T15:49:37+00:00
cisco-sa-20190515-pi-pathtrav-1818 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-pi-pathtrav-1819 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-pi-pathtrav-1820 Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-pi-rce Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerabilities 2019-05-15T16:00:00+00:00 2019-05-15T22:58:48+00:00
cisco-sa-20190515-pi-sqlinject Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerabilities 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
cisco-sa-20190515-sb-snmpdos Cisco Small Business Series Switches Simple Network Management Protocol Denial of Service Vulnerability 2019-05-15T16:00:00+00:00 2019-05-15T16:00:00+00:00
ID Description Published Updated
msrc_cve-2020-10767 A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-10768 A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-10781 A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that ZRAM device. With this vulnerability continually reading the device may consume a large amount of system memory and cause the Out-of-Memory (OOM) killer to activate and terminate random userspace processes possibly making the system inoperable. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-14314 A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-14331 A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console calling an ioctl VT_RESIZE which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-14342 It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission such as via sudo rules could use this flaw to escalate their privileges. 2020-09-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-14376 A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. 2020-09-02T00:00:00.000Z 2025-09-03T22:40:46.000Z
msrc_cve-2020-14378 An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending on how `vhost_crypto` is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period. 2020-09-02T00:00:00.000Z 2026-02-18T14:21:43.000Z
msrc_cve-2020-14385 A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown or otherwise rendered inaccessible until it is remounted leading to a denial of service. The highest threat from this vulnerability is to system availability. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-14386 A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-14390 A flaw was found in the Linux kernel in versions before 5.9-rc6. When changing screen size an out-of-bounds memory write can occur leading to memory corruption or a denial of service. Due to the nature of the flaw privilege escalation cannot be fully ruled out. 2020-09-02T00:00:00.000Z 2020-09-30T00:00:00.000Z
msrc_cve-2020-24553 Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. 2020-09-02T00:00:00.000Z 2024-09-11T00:00:00.000Z
msrc_cve-2020-24659 An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing and then an invalid second handshake occurs. The crash happens in the application's error handling path where the gnutls_deinit function is called after detecting a handshake failure. 2020-09-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-24977 GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. 2020-09-02T00:00:00.000Z 2020-09-11T00:00:00.000Z
msrc_cve-2020-24978 In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7. 2020-09-02T00:00:00.000Z 2025-09-03T23:25:22.000Z
msrc_cve-2020-25211 In the Linux kernel through 5.8.7 local attackers able to inject conntrack netlink configuration could overflow a local buffer causing crashes or triggering use of incorrect protocol numbers in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c aka CID-1cc5ef91d2ff. 2020-09-02T00:00:00.000Z 2020-09-17T00:00:00.000Z
msrc_cve-2020-25212 A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c aka CID-b4487b935452. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25219 url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion. 2020-09-02T00:00:00.000Z 2021-12-16T00:00:00.000Z
msrc_cve-2020-25284 The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used incomplete permission checking for access to rbd devices which could be leveraged by local attackers to map or unmap rbd block devices aka CID-f44d04e696fe. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25285 A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8 could be used by local attackers to corrupt memory cause a NULL pointer dereference or possibly have unspecified other impact aka CID-17743798d812. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25576 An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. 2020-09-02T00:00:00.000Z 2026-02-18T02:16:00.000Z
msrc_cve-2020-25791 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with unit(). 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25792 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with pair(). 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25793 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with From<InlineArray<A T>>. 2020-09-02T00:00:00.000Z 2020-09-26T00:00:00.000Z
msrc_cve-2020-25794 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation clone can have a memory-safety issue upon a panic. 2020-09-02T00:00:00.000Z 2020-09-25T00:00:00.000Z
msrc_cve-2020-25795 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation insert_from can have a memory-safety issue upon a panic. 2020-09-02T00:00:00.000Z 2020-09-26T00:00:00.000Z
msrc_cve-2020-25796 An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the InlineArray implementation an unaligned reference may be generated for a type that has a large alignment requirement. 2020-09-02T00:00:00.000Z 2020-09-26T00:00:00.000Z
msrc_cve-2020-26088 A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets bypassing security mechanisms aka CID-26896f01467a. 2020-09-02T00:00:00.000Z 2020-10-07T00:00:00.000Z
msrc_cve-2020-26116 http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. 2020-09-02T00:00:00.000Z 2020-11-10T00:00:00.000Z
msrc_cve-2020-26137 urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. 2020-09-02T00:00:00.000Z 2020-12-21T00:00:00.000Z
ID Description Published Updated
ncsc-2026-0002 Kwetsbaarheid verholpen in n8n 2026-01-08T12:34:29.315681Z 2026-01-08T12:34:29.315681Z
ncsc-2026-0003 Kwetsbaarheden verholpen in GitLab 2026-01-09T11:11:48.308357Z 2026-01-09T11:11:48.308357Z
ncsc-2026-0004 Kwetsbaarheden verholpen in Trend Micro Apex Central 2026-01-09T11:14:58.910197Z 2026-01-09T11:14:58.910197Z
ncsc-2026-0005 Kwetsbaarheden verholpen in Siemens producten 2026-01-13T12:05:57.353070Z 2026-01-13T12:05:57.353070Z
ncsc-2026-0006 Kwetsbaarheden verholpen in SAP producten 2026-01-13T14:42:24.621603Z 2026-01-13T14:42:24.621603Z
ncsc-2026-0007 Kwetsbaarheden verholpen in Microsoft Windows 2026-01-13T19:16:30.720079Z 2026-04-10T12:53:42.521564Z
ncsc-2026-0008 Kwetsbaarheid verholpen in Microsoft SQL Server 2026-01-13T19:17:18.848673Z 2026-01-13T19:17:18.848673Z
ncsc-2026-0009 Kwetsbaarheden verholpen in Microsoft Azure 2026-01-13T19:17:59.629364Z 2026-01-13T19:17:59.629364Z
ncsc-2026-0010 Kwetsbaarheden verholpen in Microsoft Office 2026-01-13T19:18:45.984019Z 2026-03-20T14:03:59.225773Z
ncsc-2026-0011 Kwetsbaarheid verholpen in Microsoft Developer Tools 2026-01-13T19:19:27.690900Z 2026-01-13T19:19:27.690900Z
ncsc-2026-0012 Kwetsbaarheden verholpen in Adobe Dreamweaver Desktop 2026-01-14T13:41:56.261778Z 2026-01-14T13:41:56.261778Z
ncsc-2026-0013 Kwetsbaarheden verholpen in Adobe InDesign Desktop 2026-01-14T13:45:48.530782Z 2026-01-14T13:45:48.530782Z
ncsc-2026-0014 Kwetsbaarheden verholpen in Adobe Illustrator 2026-01-15T12:16:05.427141Z 2026-01-15T12:16:05.427141Z
ncsc-2026-0015 Kwetsbaarheid verholpen in Fortinet FortiOS 2026-01-15T12:31:57.265723Z 2026-01-15T12:31:57.265723Z
ncsc-2026-0016 Kwetsbaarheden verholpen in Aruba Networks ArubaOS 2026-01-16T09:44:20.575860Z 2026-01-16T09:44:20.575860Z
ncsc-2026-0017 Kwetsbaarheden verholpen in Juniper Networks JunOS 2026-01-16T10:07:39.310560Z 2026-01-16T10:07:39.310560Z
ncsc-2026-0018 Kwetsbaarheden verholpen in TYPO3 CMS 2026-01-16T10:11:37.524826Z 2026-01-16T10:11:37.524826Z
ncsc-2026-0019 Kwetsbaarheid verholpen in Fortinet FortiSIEM 2026-01-16T13:34:34.467426Z 2026-01-16T13:34:34.467426Z
ncsc-2026-0020 Kwetsbaarheden verholpen in Oracle Commerce 2026-01-21T09:18:16.268788Z 2026-01-21T09:18:16.268788Z
ncsc-2026-0021 Kwetsbaarheden verholpen in Oracle Database Server producten 2026-01-21T09:19:00.000449Z 2026-01-21T09:19:00.000449Z
ncsc-2026-0022 Kwetsbaarheden verholpen in Oracle Communications producten 2026-01-21T09:25:39.876330Z 2026-01-21T09:25:39.876330Z
ncsc-2026-0023 Kwetsbaarheden verholpen in Oracle PeopleSoft 2026-01-21T09:27:58.715578Z 2026-01-21T09:27:58.715578Z
ncsc-2026-0024 Kwetsbaarheden verholpen in Oracle E-Business Suite 2026-01-21T09:29:38.334428Z 2026-01-21T09:29:38.334428Z
ncsc-2026-0025 Kwetsbaarheden verholpen in Oracle Financial Services 2026-01-21T09:55:33.889125Z 2026-01-21T09:55:33.889125Z
ncsc-2026-0026 Kwetsbaarheden verholpen in Oracle Enterprise Manager 2026-01-21T10:06:27.920991Z 2026-01-21T10:06:27.920991Z
ncsc-2026-0027 Kwetsbaarheden verholpen in Oracle Fusion Middleware 2026-01-21T10:08:59.379774Z 2026-01-21T10:08:59.379774Z
ncsc-2026-0028 Kwetsbaarheden verholpen in Oracle Analytics 2026-01-21T10:10:15.985753Z 2026-01-21T10:10:15.985753Z
ncsc-2026-0029 Kwetsbaarheden verholpen in Oracle Hyperion 2026-01-21T10:10:46.297433Z 2026-01-21T10:10:46.297433Z
ncsc-2026-0030 Kwetsbaarheden verholpen in Oracle Java 2026-01-21T10:11:39.759123Z 2026-01-21T10:11:39.759123Z
ncsc-2026-0031 Kwetsbaarheden verholpen in Oracle JD Edwards 2026-01-21T10:12:00.674214Z 2026-01-21T10:12:00.674214Z
ID Description Published Updated
ID Description Published Updated
opensuse-su-2019:2145-1 Security update for python-Werkzeug 2019-09-17T12:19:59Z 2019-09-17T12:19:59Z
opensuse-su-2019:2149-1 Security update for curl 2019-09-17T18:18:30Z 2019-09-17T18:18:30Z
opensuse-su-2019:2152-1 Security update for chromium 2019-09-19T05:36:39Z 2019-09-19T05:36:39Z
opensuse-su-2019:2153-1 Security update for chromium 2019-09-19T05:37:19Z 2019-09-19T05:37:19Z
opensuse-su-2019:2154-1 Security update for opera 2019-09-19T12:36:22Z 2019-09-19T12:36:22Z
opensuse-su-2019:2155-1 Security update for chromium 2019-09-20T08:46:30Z 2019-09-20T08:46:30Z
opensuse-su-2019:2156-1 Security update for chromium 2019-09-20T08:46:46Z 2019-09-20T08:46:46Z
opensuse-su-2019:2157-1 Security update for openldap2 2019-09-23T18:19:38Z 2019-09-23T18:19:38Z
opensuse-su-2019:2158-1 Security update for openssl-1_1 2019-09-23T22:20:10Z 2019-09-23T22:20:10Z
opensuse-su-2019:2159-1 Security update for skopeo 2019-09-24T08:16:02Z 2019-09-24T08:16:02Z
opensuse-su-2019:2160-1 Security update for ghostscript 2019-09-24T08:16:12Z 2019-09-24T08:16:12Z
opensuse-su-2019:2161-1 Security update for libgcrypt 2019-09-24T08:16:21Z 2019-09-24T08:16:21Z
opensuse-su-2019:2169-1 Security update for curl 2019-09-24T08:18:09Z 2019-09-24T08:18:09Z
opensuse-su-2019:2173-1 Security update for the Linux Kernel 2019-09-24T08:19:55Z 2019-09-24T08:19:55Z
opensuse-su-2019:2174-1 Security update for ibus 2019-09-24T08:20:15Z 2019-09-24T08:20:15Z
opensuse-su-2019:2175-1 Security update for util-linux and shadow 2019-09-24T08:20:26Z 2019-09-24T08:20:26Z
opensuse-su-2019:2176-1 Security update for openldap2 2019-09-24T08:20:38Z 2019-09-24T08:20:38Z
opensuse-su-2019:2177-1 Security update for fish3 2019-09-24T10:13:43Z 2019-09-24T10:13:43Z
opensuse-su-2019:2178-1 Security update for bird 2019-09-24T10:13:50Z 2019-09-24T10:13:50Z
opensuse-su-2019:2180-1 Security update for bird 2019-09-24T15:27:23Z 2019-09-24T15:27:23Z
opensuse-su-2019:2181-1 Security update for the Linux Kernel 2019-09-24T16:41:18Z 2019-09-24T16:41:18Z
opensuse-su-2019:2183-1 Security update for libreoffice 2019-09-25T04:18:05Z 2019-09-25T04:18:05Z
opensuse-su-2019:2184-1 Security update for varnish 2019-09-25T08:18:43Z 2019-09-25T08:18:43Z
opensuse-su-2019:2185-1 Security update for links 2019-09-25T08:19:05Z 2019-09-25T08:19:05Z
opensuse-su-2019:2186-1 Security update for chromium 2019-09-25T08:19:49Z 2019-09-25T08:19:49Z
opensuse-su-2019:2188-1 Security update for fish3 2019-09-25T10:20:36Z 2019-09-25T10:20:36Z
opensuse-su-2019:2189-1 Security update for openssl-1_1 2019-09-25T10:20:42Z 2019-09-25T10:20:42Z
opensuse-su-2019:2198-1 Security update for nmap 2019-09-26T04:19:00Z 2019-09-26T04:19:00Z
opensuse-su-2019:2199-1 Security update for ibus 2019-09-26T04:19:10Z 2019-09-26T04:19:10Z
opensuse-su-2019:2200-1 Security update for nmap 2019-09-26T04:19:17Z 2019-09-26T04:19:17Z
ID Description Published Updated
ID Description Published Updated
rhsa-2005:517 Red Hat Security Advisory: HelixPlayer security update 2005-06-23T19:31:00+00:00 2025-11-21T17:29:14+00:00
rhsa-2005:535 Red Hat Security Advisory: sudo security update 2005-06-29T15:54:00+00:00 2026-01-13T20:57:36+00:00
rhsa-2005:569 Red Hat Security Advisory: zlib security update 2005-07-06T14:30:00+00:00 2025-11-21T17:29:18+00:00
rhsa-2005:564 Red Hat Security Advisory: php security update 2005-07-07T19:56:00+00:00 2026-01-28T22:51:00+00:00
rhsa-2005:575 Red Hat Security Advisory: Adobe Acrobat Reader security update 2005-07-08T19:40:00+00:00 2026-01-13T22:39:46+00:00
rhsa-2005:562 Red Hat Security Advisory: krb5 security update 2005-07-12T18:12:00+00:00 2026-01-13T20:57:41+00:00
rhsa-2005:567 Red Hat Security Advisory: krb5 security update 2005-07-12T18:15:00+00:00 2026-01-13T20:57:39+00:00
rhsa-2005:571 Red Hat Security Advisory: cups security update 2005-07-14T17:48:00+00:00 2025-11-21T17:29:18+00:00
rhsa-2005:586 Red Hat Security Advisory: firefox security update 2005-07-21T10:14:00+00:00 2025-11-21T17:29:21+00:00
rhsa-2005:601 Red Hat Security Advisory: thunderbird security update 2005-07-21T17:42:00+00:00 2026-01-13T22:35:25+00:00
rhsa-2005:584 Red Hat Security Advisory: zlib security update 2005-07-21T17:50:00+00:00 2026-01-13T22:38:25+00:00
rhsa-2005:378 Red Hat Security Advisory: cpio security update 2005-07-21T18:12:00+00:00 2025-11-21T17:28:58+00:00
rhsa-2005:639 Red Hat Security Advisory: kdenetwork security update 2005-07-22T01:26:00+00:00 2026-02-17T02:19:41+00:00
rhsa-2005:587 Red Hat Security Advisory: mozilla security update 2005-07-22T10:41:00+00:00 2025-11-21T17:29:21+00:00
rhsa-2005:582 Red Hat Security Advisory: httpd security update 2005-07-25T07:46:00+00:00 2025-11-21T17:29:19+00:00
rhsa-2005:640 Red Hat Security Advisory: fetchmail security update 2005-07-25T07:50:00+00:00 2025-11-21T17:29:29+00:00
rhsa-2005:603 Red Hat Security Advisory: dhcpcd security update 2005-07-27T15:11:00+00:00 2026-01-13T22:34:39+00:00
rhsa-2005:612 Red Hat Security Advisory: kdelibs security update 2005-07-27T15:22:00+00:00 2026-01-13T20:57:44+00:00
rhsa-2005:583 Red Hat Security Advisory: dump security update 2005-08-03T14:12:00+00:00 2025-11-21T17:29:21+00:00
rhsa-2005:595 Red Hat Security Advisory: squirrelmail security update 2005-08-03T14:16:00+00:00 2026-01-13T20:57:42+00:00
rhsa-2005:543 Red Hat Security Advisory: ruby security update 2005-08-05T13:31:00+00:00 2026-01-13T20:57:35+00:00
rhsa-2005:706 Red Hat Security Advisory: cups security update 2005-08-09T15:54:00+00:00 2025-11-21T17:29:28+00:00
rhsa-2005:598 Red Hat Security Advisory: sysreport security update 2005-08-09T16:02:00+00:00 2025-11-21T17:29:23+00:00
rhsa-2005:720 Red Hat Security Advisory: ucd-snmp security update 2005-08-09T16:10:00+00:00 2025-11-21T17:29:29+00:00
rhsa-2005:670 Red Hat Security Advisory: xpdf security update 2005-08-09T16:13:00+00:00 2025-11-21T17:29:26+00:00
rhsa-2005:671 Red Hat Security Advisory: kdegraphics security update 2005-08-09T16:45:00+00:00 2025-11-21T17:29:26+00:00
rhsa-2005:589 Red Hat Security Advisory: gaim security update 2005-08-10T03:48:00+00:00 2026-02-16T20:07:22+00:00
rhsa-2005:687 Red Hat Security Advisory: ethereal security update 2005-08-10T17:28:00+00:00 2025-11-21T17:29:28+00:00
rhsa-2005:708 Red Hat Security Advisory: gpdf security update 2005-08-10T17:38:00+00:00 2025-11-21T17:29:31+00:00
rhsa-2005:750 Red Hat Security Advisory: Adobe Acrobat Reader security update 2005-08-16T20:01:00+00:00 2025-11-21T17:29:31+00:00
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
suse-su-2016:0600-1 Security update for rubygem-activesupport-4_1 2016-02-26T15:08:46Z 2016-02-26T15:08:46Z
suse-su-2016:0621-1 Security update for openssl 2016-03-01T13:29:20Z 2016-03-01T13:29:20Z
suse-su-2016:0617-1 Security update for openssl 2016-03-01T13:29:49Z 2016-03-01T13:29:49Z
suse-su-2016:0620-1 Security update for openssl 2016-03-01T13:48:37Z 2016-03-01T13:48:37Z
suse-su-2016:0622-1 Security update for libssh 2016-03-01T13:49:50Z 2016-03-01T13:49:50Z
suse-su-2016:0618-1 Security update for rubygem-actionpack-3_2 2016-03-01T13:50:54Z 2016-03-01T13:50:54Z
suse-su-2016:0623-1 Security update for rubygem-activesupport-3_2 2016-03-01T13:52:03Z 2016-03-01T13:52:03Z
suse-su-2016:0619-1 Security update for rubygem-activerecord-3_2 2016-03-01T13:53:09Z 2016-03-01T13:53:09Z
suse-su-2016:0624-1 Security update for openssl 2016-03-01T15:06:49Z 2016-03-01T15:06:49Z
suse-su-2016:0625-1 Security update for libssh 2016-03-01T15:49:06Z 2016-03-01T15:49:06Z
suse-su-2016:0631-1 Security update for compat-openssl097g 2016-03-02T13:24:49Z 2016-03-02T13:24:49Z
suse-su-2016:0636-1 Security update for java-1_7_0-ibm 2016-03-02T18:02:18Z 2016-03-02T18:02:18Z
suse-su-2016:0641-1 Security update for openssl 2016-03-03T11:02:43Z 2016-03-03T11:02:43Z
suse-su-2016:0677-1 Security update for postgresql94 2016-03-07T14:09:05Z 2016-03-07T14:09:05Z
suse-su-2016:0700-1 Security update for bsh2 2016-03-09T08:03:33Z 2016-03-09T08:03:33Z
suse-su-2016:0699-1 Security update for bsh2 2016-03-09T08:03:57Z 2016-03-09T08:03:57Z
suse-su-2016:0707-1 Security update for libotr 2016-03-09T18:01:45Z 2016-03-09T18:01:45Z
suse-su-2016:0706-1 Security update for libotr 2016-03-09T18:06:39Z 2016-03-09T18:06:39Z
suse-su-2016:0716-1 Security update for flash-player 2016-03-11T09:04:23Z 2016-03-11T09:04:23Z
suse-su-2016:0715-1 Security update for flash-player 2016-03-11T09:04:38Z 2016-03-11T09:04:38Z
suse-su-2016:0718-1 Security update for libssh2_org 2016-03-11T09:18:12Z 2016-03-11T09:18:12Z
suse-su-2016:0723-1 Security update for libssh2_org 2016-03-11T10:18:54Z 2016-03-11T10:18:54Z
suse-su-2016:0727-1 Security update for MozillaFirefox, mozilla-nspr, mozilla-nss 2016-03-11T15:25:25Z 2016-03-11T15:25:25Z
suse-su-2016:0739-1 Security update for openstack-trove 2016-03-14T10:34:41Z 2016-03-14T10:34:41Z
suse-su-2016:0745-1 Security update for kernel live patch 3 2016-03-14T13:29:48Z 2016-03-14T13:29:48Z
suse-su-2016:0746-1 Security update for kernel live patch 4 2016-03-14T13:29:56Z 2016-03-14T13:29:56Z
suse-su-2016:0750-1 Security update for kernel live patch 5 2016-03-14T13:30:05Z 2016-03-14T13:30:05Z
suse-su-2016:0753-1 Security update for kernel live patch 6 2016-03-14T13:30:12Z 2016-03-14T13:30:12Z
suse-su-2016:0756-1 Security update for kernel live patch 7 2016-03-14T13:30:20Z 2016-03-14T13:30:20Z
suse-su-2016:0757-1 Security update for kernel live patch 8 2016-03-14T13:30:27Z 2016-03-14T13:30:27Z
ID Description Published Updated
alsa-2022:8384 Moderate: harfbuzz security update 2022-11-15T00:00:00Z 2022-11-18T13:20:20Z
alsa-2022:8385 Moderate: dhcp security and enhancement update 2022-11-15T00:00:00Z 2022-11-17T21:26:28Z
alsa-2022:8393 Moderate: logrotate security update 2022-11-15T00:00:00Z 2022-11-17T21:19:07Z
alsa-2022:8400 Moderate: libtirpc security update 2022-11-15T00:00:00Z 2022-11-18T13:21:27Z
alsa-2022:8415 Low: mingw-gcc security and bug fix update 2022-11-15T00:00:00Z 2022-11-17T21:02:48Z
alsa-2022:8418 Low: mingw-glib2 security and bug fix update 2022-11-15T00:00:00Z 2022-11-18T12:08:00Z
alsa-2022:8420 Important: mingw-zlib security update 2022-11-15T00:00:00Z 2022-11-18T12:06:24Z
alsa-2022:8431 Low: podman security, bug fix, and enhancement update 2022-11-15T00:00:00Z 2023-09-15T13:41:48Z
alsa-2022:8434 Moderate: dotnet7.0 security, bug fix, and enhancement update 2022-11-15T00:00:00Z 2022-11-17T13:06:37Z
alsa-2022:8444 Moderate: keylime security update 2022-11-15T00:00:00Z 2022-11-17T14:03:20Z
alsa-2022:8453 Important: device-mapper-multipath security update 2022-11-15T00:00:00Z 2022-11-17T13:38:40Z
alsa-2022:8492 Important: python39:3.9 security update 2022-11-16T00:00:00Z 2022-11-21T13:28:15Z
alsa-2022:8493 Important: python3.9 security update 2022-11-16T00:00:00Z 2023-03-13T16:36:13Z
alsa-2022:8547 Important: thunderbird security update 2022-11-21T00:00:00Z 2022-11-21T19:01:55Z
alsa-2022:8554 Important: firefox security update 2022-11-21T00:00:00Z 2022-11-21T21:14:16Z
alsa-2022:8561 Important: thunderbird security update 2022-11-21T00:00:00Z 2022-11-21T21:22:05Z
alsa-2022:8580 Important: firefox security update 2022-11-22T00:00:00Z 2022-11-22T23:10:10Z
alsa-2022:8637 Important: krb5 security update 2022-11-28T00:00:00Z 2023-03-13T16:36:21Z
alsa-2022:8638 Important: krb5 security update 2022-11-28T00:00:00Z 2022-12-11T18:28:11Z
alsa-2022:8643 Important: varnish security update 2022-11-28T00:00:00Z 2023-03-13T16:36:22Z
alsa-2022:8649 Important: varnish:6 security update 2022-11-28T00:00:00Z 2022-12-05T10:39:48Z
alsa-2022:8832 Moderate: nodejs:18 security, bug fix, and enhancement update 2022-12-06T00:00:00Z 2022-12-07T14:39:51Z
alsa-2022:8833 Moderate: nodejs:18 security, bug fix, and enhancement update 2022-12-06T00:00:00Z 2022-12-07T13:22:28Z
alsa-2022:9058 Important: prometheus-jmx-exporter security update 2022-12-15T00:00:00Z 2022-12-16T10:11:55Z
alsa-2022:9065 Important: firefox security update 2022-12-15T00:00:00Z 2022-12-16T10:17:30Z
alsa-2022:9067 Important: firefox security update 2022-12-15T00:00:00Z 2022-12-16T10:20:49Z
alsa-2022:9073 Moderate: nodejs:16 security, bug fix, and enhancement update 2022-12-15T00:00:00Z 2023-09-15T13:41:48Z
alsa-2022:9074 Important: thunderbird security update 2022-12-15T00:00:00Z 2022-12-16T10:32:11Z
alsa-2022:9080 Important: thunderbird security update 2022-12-15T00:00:00Z 2022-12-16T10:36:19Z
alsa-2023:0005 Important: bcel security update 2023-01-02T00:00:00Z 2023-01-04T07:42:29Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
osv-2020-1242 Heap-buffer-overflow in ih264d_cavlc_parse4x4coeff_n8 2020-07-22T21:49:59.528779Z 2022-04-13T03:04:35.468419Z
osv-2020-1244 Use-of-uninitialized-value in decimate_dsd_run 2020-07-22T21:49:59.837324Z 2022-04-13T03:04:42.365855Z
osv-2020-1245 Heap-buffer-overflow in c2i_ASN1_INTEGER 2020-07-22T21:49:59.889244Z 2022-04-13T03:04:38.784279Z
osv-2020-1246 Stack-buffer-overflow in void apply_sao_internal<unsigned short> 2020-07-22T21:50:00.006966Z 2022-04-13T03:04:32.453257Z
osv-2020-1250 Heap-use-after-free in WelsDec::MapColToList0 2020-07-22T21:50:00.192005Z 2022-04-13T03:04:37.642190Z
osv-2020-1252 Heap-buffer-overflow in jpc_dec_process_sot 2020-07-22T21:50:00.494951Z 2022-04-13T03:04:31.495336Z
osv-2020-1253 Heap-buffer-overflow in pixReadFromTiffStream 2020-07-22T21:50:00.586423Z 2022-04-13T03:04:32.644327Z
osv-2020-1256 UNKNOWN WRITE in TIFFReadRGBATileExt 2020-07-22T21:50:00.758042Z 2022-04-13T03:04:31.525122Z
osv-2020-1257 Stack-buffer-overflow in readstat_convert 2020-07-22T21:50:00.845495Z 2022-04-13T03:04:40.651968Z
osv-2020-1258 Heap-use-after-free in WelsDec::MapColToList0 2020-07-22T21:50:00.916036Z 2022-04-13T03:04:37.430754Z
osv-2020-1260 Negative-size-param in heif::HeifPixelImage::fill_RGB_16bit 2020-07-22T21:50:01.133969Z 2022-04-13T03:04:32.430391Z
osv-2020-1263 Heap-buffer-overflow in getSSCertificateFingerprint 2020-07-22T21:50:01.471193Z 2022-04-13T03:04:36.210485Z
osv-2020-1264 Use-of-uninitialized-value in AnnotAppearanceBuilder::drawText 2020-07-22T21:50:01.559473Z 2022-04-13T03:04:37.301038Z
osv-2020-1266 UNKNOWN READ in arrow::Array::IsNull 2020-07-22T21:50:01.820417Z 2022-04-13T03:04:31.910847Z
osv-2020-1272 Heap-buffer-overflow in ASN1_get_object 2020-07-22T21:50:02.220943Z 2022-04-13T03:04:38.807734Z
osv-2020-1273 Use-of-uninitialized-value in psscan 2020-07-22T21:50:02.326023Z 2022-04-13T03:04:34.982236Z
osv-2020-1274 Heap-buffer-overflow in exif_entry_get_value 2020-07-22T21:50:02.388928Z 2022-04-13T03:04:40.847318Z
osv-2020-1278 Use-of-uninitialized-value in SampledFunction::SampledFunction 2020-07-22T21:50:02.576507Z 2023-02-24T02:26:34.919340Z
osv-2020-1280 Heap-buffer-overflow in cdf_read_property_info 2020-07-22T21:50:02.720163Z 2022-04-13T03:04:30.831905Z
osv-2020-1285 Use-of-uninitialized-value in ihevc_deblk_luma_vert_ssse3 2020-07-22T21:50:02.950786Z 2023-02-24T01:30:44.196020Z
osv-2020-1288 Heap-buffer-overflow in asn1_decode_entry 2020-07-22T21:50:03.236534Z 2022-04-13T03:04:41.602984Z
osv-2020-1289 Heap-use-after-free in WelsDec::MapColToList0 2020-07-22T21:50:03.268821Z 2022-04-13T03:04:37.441439Z
osv-2020-1290 Bad-free in aes_gcm_cleanup 2020-07-22T21:50:03.494497Z 2022-04-13T03:04:35.066076Z
osv-2020-1291 UNKNOWN READ in std::__1::_MetaBase<__can_be_converted_to_string_view<char, std::__1::char_trait 2020-07-22T21:50:03.564988Z 2022-04-13T03:04:42.741248Z
osv-2020-1292 Stack-buffer-overflow in ot::ExtendedTlv::GetLength 2020-07-22T21:50:03.818147Z 2022-04-13T03:04:38.852567Z
osv-2020-1294 Heap-buffer-overflow in SHA1Update 2020-07-22T21:50:03.900037Z 2022-04-13T03:04:36.275838Z
osv-2020-1296 Heap-use-after-free in WelsDec::WelsReorderRefList 2020-07-22T21:50:04.064679Z 2022-04-13T03:04:37.678756Z
osv-2020-1297 Heap-buffer-overflow in pcpp::DnsResource::getDataLength 2020-07-22T21:50:04.093662Z 2022-04-13T03:04:38.526413Z
osv-2020-1299 UNKNOWN WRITE in ideint_weave_blk 2020-07-22T21:50:04.188246Z 2022-04-13T03:04:33.824326Z
osv-2020-1300 Heap-buffer-overflow in ihevcd_parse_slice_data 2020-07-22T21:50:04.218936Z 2022-04-13T03:04:30.928706Z
ID Description Published Updated
rustsec-2024-0388 `derivative` is unmaintained; consider using an alternative 2024-06-26T12:00:00Z 2024-11-10T13:34:40Z
rustsec-2024-0346 Incorrect usage of `#[repr(packed)]` 2024-07-01T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0347 Incorrect usage of `#[repr(packed)]` 2024-07-01T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0387 `opentelemetry_api` has been merged into the `opentelemetry` crate 2024-07-03T12:00:00Z 2024-11-10T13:29:25Z
rustsec-2024-0389 `openslide` is unmaintained 2024-07-03T12:00:00Z 2024-11-10T13:42:14Z
rustsec-2024-0442 Dump Undefined Memory by `JitDumpFile` 2024-07-06T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0369 phonenumber: panic on parsing crafted phonenumber inputs 2024-07-07T12:00:00Z 2024-09-05T13:40:37Z
rustsec-2024-0354 Usage of non-constant time base64 decoder could lead to leakage of secret key material 2024-07-17T12:00:00Z 2024-07-18T11:24:58Z
rustsec-2024-0355 gix-path can use a fake program files location 2024-07-18T12:00:00Z 2024-07-18T16:46:06Z
rustsec-2024-0356 `UserIdentity::is_verified` not checking verification status of own user identity while performing the check 2024-07-18T12:00:00Z 2024-07-19T10:11:38Z
rustsec-2024-0391 Ambiguous challenge derivation 2024-07-18T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0392 Ambiguous challenge derivation 2024-07-18T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0393 Ambiguous challenge derivation 2024-07-18T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0403 op_panic in the base runtime can force a panic in the runtime's containing thread 2024-07-18T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0405 op_panic in the base runtime can force a panic in the runtime's containing thread 2024-07-18T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0357 `MemBio::get_buf` has undefined behavior with empty buffers 2024-07-21T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0358 Apache Arrow Rust Object Store: AWS WebIdentityToken exposure in log files 2024-07-23T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0359 The kstring integration in gix-attributes is unsound 2024-07-24T12:00:00Z 2025-01-19T00:36:24Z
rustsec-2024-0360 `XmpFile::close` can trigger UB 2024-07-26T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0446 Shell expansion in custom commands 2024-07-26T12:00:00Z 2025-12-22T13:54:49Z
rustsec-2024-0362 Stack overflow when parsing specially crafted JSON ABI strings 2024-07-30T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0361 CWA-2024-004: Gas mispricing in cosmwasm-vm 2024-08-08T12:00:00Z 2024-08-08T17:11:37Z
rustsec-2024-0390 minitrace is Unmaintained 2024-08-14T12:00:00Z 2024-11-10T13:54:21Z
rustsec-2024-0444 Uncaught exception when transitioning the state of `AsyncGenerator` objects from within a property getter of `then` 2024-08-14T12:00:00Z 2025-12-19T06:15:15Z
rustsec-2024-0363 Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts 2024-08-15T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0364 gitoxide-core does not neutralize special characters for terminals 2024-08-22T12:00:00Z 2024-08-22T23:15:02Z
rustsec-2024-0365 Binary Protocol Misinterpretation caused by Truncating or Overflowing Casts 2024-08-23T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0385 `cw0` is unmaintained 2024-08-26T12:00:00Z 2024-11-10T13:12:32Z
rustsec-2024-0366 CWA-2023-004: Excessive number of function parameters in compiled Wasm 2024-08-27T12:00:00Z 2025-10-28T06:02:18Z
rustsec-2024-0367 gix-path uses local config across repos when it is the highest scope 2024-08-31T12:00:00Z 2024-09-03T22:23:51Z
ID Description Published Updated
bit-airflow-2022-38170 Overly permissive umask for daemons 2024-03-06T10:57:57.694Z 2025-05-20T10:02:07.006Z
bit-apache-2020-11984 2024-03-06T10:57:57.770Z 2025-04-03T14:40:37.652Z
bit-discourse-2023-29196 HTML injection via topic embedding in Discourse 2024-03-06T10:57:57.969Z 2025-05-20T10:02:07.006Z
bit-golang-2022-41722 Path traversal on Windows in path/filepath 2024-03-06T10:57:57.994Z 2025-05-20T10:02:07.006Z
bit-moodle-2023-5543 Moodle: duplicating a bigbluebutton activity assigns the same meeting id 2024-03-06T10:57:59.204Z 2025-05-20T10:02:07.006Z
bit-magento-2021-28585 Magento Commerce improper input validation in customer customer webapi 2024-03-06T10:58:00.077Z 2026-03-20T09:47:33.381Z
bit-dotnet-2022-29145 .NET and Visual Studio Denial of Service Vulnerability 2024-03-06T10:58:00.664Z 2025-05-20T10:02:07.006Z
bit-mariadb-2022-31622 2024-03-06T10:58:01.573Z 2025-04-03T14:40:37.652Z
bit-drupal-2020-13667 2024-03-06T10:58:01.865Z 2025-04-03T14:40:37.652Z
bit-minio-2021-21390 MITM modification of request bodies in MinIO 2024-03-06T10:58:02.168Z 2025-05-20T10:02:07.006Z
bit-jenkins-2022-34170 2024-03-06T10:58:03.470Z 2025-04-03T14:40:37.652Z
bit-nats-2023-46129 xkeys Seal encryption used fixed key for all encryption 2024-03-06T10:58:03.564Z 2025-05-20T10:02:07.006Z
bit-mongodb-2021-20330 Specific replication command with malformed oplog entries can crash secondaries 2024-03-06T10:58:03.684Z 2025-05-20T10:02:07.006Z
bit-envoy-2021-32779 Incorrectly handling of URI '#fragment' element as part of the path element 2024-03-06T10:58:04.972Z 2025-05-20T10:02:07.006Z
bit-grafana-2022-21713 Exposure of Sensitive Information in Grafana 2024-03-06T10:58:05.785Z 2025-05-20T10:02:07.006Z
bit-gitlab-2023-4912 Allocation of Resources Without Limits or Throttling in GitLab 2024-03-06T10:58:07.108Z 2025-05-20T10:02:07.006Z
bit-discourse-2023-28440 Denial of service via admin theme import route in Discourse 2024-03-06T10:58:07.559Z 2025-05-20T10:02:07.006Z
bit-airflow-2022-38054 Session Fixation 2024-03-06T10:58:07.690Z 2025-05-20T10:02:07.006Z
bit-golang-2022-41720 Restricted file access on Windows in os and net/http 2024-03-06T10:58:08.803Z 2025-05-20T10:02:07.006Z
bit-neo4j-2021-34371 2024-03-06T10:58:09.184Z 2025-04-03T14:40:37.652Z
bit-moodle-2023-5542 Moodle: students can view other users in "only see own membership" groups 2024-03-06T10:58:09.570Z 2025-05-20T10:02:07.006Z
bit-minio-2021-21362 Bypassing readOnly policy by creating a temporary 'mc share upload' URL 2024-03-06T10:58:10.992Z 2025-05-20T10:02:07.006Z
bit-dotnet-2022-29117 .NET and Visual Studio Denial of Service Vulnerability 2024-03-06T10:58:11.981Z 2025-05-20T10:02:07.006Z
bit-nats-2022-26652 2024-03-06T10:58:12.167Z 2025-04-03T14:40:37.652Z
bit-mariadb-2022-31621 2024-03-06T10:58:12.962Z 2025-04-03T14:40:37.652Z
bit-magento-2021-28584 Magento Commerce path traversal vulnerability in child theme store creation 2024-03-06T10:58:13.389Z 2026-03-20T09:47:33.381Z
bit-envoy-2021-32778 Excessive CPU utilization when closing HTTP/2 streams 2024-03-06T10:58:13.992Z 2025-05-20T10:02:07.006Z
bit-mongodb-2021-20326 Specially crafted query may result in a denial of service of mongod 2024-03-06T10:58:14.498Z 2025-05-20T10:02:07.006Z
bit-drupal-2020-13666 2024-03-06T10:58:14.593Z 2025-04-03T14:40:37.652Z
bit-grafana-2022-21703 Cross Site Request Forgery in Grafana 2024-03-06T10:58:16.171Z 2025-05-20T10:02:07.006Z
ID Description Published Updated
cleanstart-2026-af52025 In libexpat before 2 2026-04-08T00:39:48.013620Z 2026-04-07T05:54:38Z
cleanstart-2026-fz55932 SSH clients receiving SSH_AGENT_SUCCESS when expecting a typed response will panic and cause early termination of the client process 2026-04-09T00:41:07.286953Z 2026-04-08T10:10:33Z
cleanstart-2026-iw23933 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:42:07.594705Z 2026-04-08T10:12:34Z
cleanstart-2026-ku98579 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:42:07.643397Z 2026-04-08T10:07:21Z
cleanstart-2026-ly88807 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:43:37.430373Z 2026-04-08T10:02:31Z
cleanstart-2026-nv37937 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:44:07.747698Z 2026-04-08T09:58:55Z
cleanstart-2026-bd18029 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:45:07.480117Z 2026-04-08T09:49:10Z
cleanstart-2026-hz73294 Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service 2026-04-09T00:45:08.400884Z 2026-04-08T10:12:22Z
cleanstart-2026-co68219 Docker CLI for Windows searches for plugin binaries in C:\\\\\\\\ProgramData\\\\\\\\Docker\\\\\\\\cli-plugins, a directory that does not exist by default 2026-04-09T00:47:37.444297Z 2026-04-08T09:44:10Z
cleanstart-2026-by59711 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:47:37.687304Z 2026-04-08T09:36:51Z
cleanstart-2026-mi26424 net/url package does not set a limit on the number of query parameters in a query 2026-04-09T00:48:07.244191Z 2026-04-08T09:30:12Z
cleanstart-2026-mo53190 gRPC-Go is the Go language implementation of gRPC 2026-04-09T00:49:37.904336Z 2026-04-08T09:47:14Z
cleanstart-2026-bg72514 Uncontrolled Recursion vulnerability in Apache Commons Lang 2026-04-09T00:49:38.775284Z 2026-04-08T09:13:42Z
cleanstart-2026-oq84658 Netty is an asynchronous, event-driven network application framework 2026-04-09T00:52:07.697782Z 2026-04-08T08:14:27Z
cleanstart-2026-iw08736 Uncontrolled Recursion vulnerability in Apache Commons Lang 2026-04-09T00:53:08.467045Z 2026-04-08T09:19:34Z
cleanstart-2026-cq39708 Netty is an asynchronous, event-driven network application framework 2026-04-09T00:53:38.262441Z 2026-04-08T08:11:56Z
cleanstart-2026-ot38160 url 2026-04-09T00:55:38.018075Z 2026-04-08T07:36:24Z
cleanstart-2026-ba09462 OpenTelemetry-Go is the Go implementation of OpenTelemetry 2026-04-09T00:57:38.077873Z 2026-04-08T07:00:07Z
cleanstart-2026-gy86690 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.6.4-r4 2026-04-09T00:57:57.606656Z 2026-04-08T06:46:14Z
cleanstart-2026-ki25096 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-09T00:59:38.592849Z 2026-04-08T06:46:14Z
cleanstart-2026-mw52739 Security fixes for ghsa-72hv-8253-57qq, ghsa-qqpg-mvqg-649v applied in versions: 3.9.4-r0, 3.9.4-r6 2026-04-09T00:59:39.080550Z 2026-04-08T06:46:14Z
cleanstart-2026-ij23041 In libexpat before 2 2026-04-09T01:01:38.269615Z 2026-04-08T06:46:14Z
cleanstart-2026-ge08280 Ruby JSON is a JSON implementation for Ruby 2026-04-09T01:01:38.909372Z 2026-04-08T08:04:46Z
cleanstart-2026-ay21238 security issue was discovered in Kubernetes where a malicious or compromised pod could bypass network restrictions enforced by network policies during namespace deletion 2026-04-10T00:37:58.214935Z 2026-04-09T11:56:50Z
cleanstart-2026-jy63371 Delete function fails to properly validate offsets when processing malformed JSON input 2026-04-10T00:45:58.478015Z 2026-04-09T11:52:13Z
cleanstart-2026-ng28268 gRPC-Go is the Go language implementation of gRPC 2026-04-10T00:47:58.418185Z 2026-04-09T11:52:13Z
cleanstart-2026-cd13174 gRPC-Go is the Go language implementation of gRPC 2026-04-10T00:49:58.731115Z 2026-04-09T11:52:13Z
cleanstart-2026-ar20742 attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing 2026-04-10T00:51:28.608050Z 2026-04-09T11:46:58Z
cleanstart-2026-dk61762 filippo 2026-04-10T00:51:28.611547Z 2026-04-09T11:46:58Z
cleanstart-2026-ag20129 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0 2026-04-10T00:51:29.221302Z 2026-04-09T11:45:48Z
ID Description Published Updated
ID Description Updated
ID Description Published Updated
ID Description Published Updated
certa-2003-avi-148 Vulnérabilité dans Microsoft Access Snapshot Viewer 2003-09-04T00:00:00.000000 2003-09-04T00:00:00.000000
certa-2003-avi-149 Vulnérabilités dans le service RPCSS sous Windows 2003-09-11T00:00:00.000000 2003-09-17T00:00:00.000000
certa-2003-avi-150 Vulnérabilités du client de messagerie Pine 2003-09-11T00:00:00.000000 2003-09-12T00:00:00.000000
certa-2003-avi-151 Vulnérabilité du serveur de base de données MySQL 2003-09-16T00:00:00.000000 2003-10-10T00:00:00.000000
certa-2003-avi-152 Vulnérabilité du serveur OpenSSH 2003-09-17T00:00:00.000000 2003-10-01T00:00:00.000000
certa-2003-avi-153 Vulnérabilités dans le serveur de messagerie Sendmail 2003-09-19T00:00:00.000000 2004-01-21T00:00:00.000000
certa-2003-avi-154 Vulnérabilité dans lsh 2003-09-22T00:00:00.000000 2003-10-02T00:00:00.000000
certa-2003-avi-155 Vulnérabilité de ProFTPD 2003-09-26T00:00:00.000000 2004-05-12T00:00:00.000000
certa-2003-avi-156 Failles dans des implémentations de SSL/TLS 2003-09-30T00:00:00.000000 2004-03-11T00:00:00.000000
certa-2003-avi-157 Vulnérabilité de DCE 2003-10-03T00:00:00.000000 2003-10-03T00:00:00.000000
certa-2003-avi-158 Vulnérabilité dans les équipements NetScreen Firewall/VPN 2003-10-07T00:00:00.000000 2003-10-07T00:00:00.000000
certa-2003-avi-159 Vulnérabilité de NFS sous SGI IRIX 2003-10-07T00:00:00.000000 2003-10-07T00:00:00.000000
certa-2003-avi-160 Vulnérabilité des noyaux BSD dans la gestion du cache ARP 2003-10-09T00:00:00.000000 2003-10-09T00:00:00.000000
certa-2003-avi-161 Vulnérabilité dans procfs et linprocfs sous FreeBSD 2003-10-10T00:00:00.000000 2003-10-10T00:00:00.000000
certa-2003-avi-162 Vulnérabilités dans la fonction "readv" sous FreeBSD 2003-10-10T00:00:00.000000 2003-10-17T00:00:00.000000
certa-2003-avi-163 Vulnérabilité de dtprintinfo sous HP-UX 2003-10-13T00:00:00.000000 2003-10-13T00:00:00.000000
certa-2003-avi-164 Vulnérabilité dans Apache Tomcat 4.x 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-165 Vulnérabilité de l'appel système sysinfo sous Solaris 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-166 Vulnérabilité dans la vérification Authenticode 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-167 Vulnérabilité dans l'aide à la résolution de problèmes sous windows 2000 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-168 Vulnérabilité dans Microsoft Messenger Service 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-169 Vulnérabilité dans le protocole "Help and Support Center" de Microsoft 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-170 Vulnérabilité dans les contrôles ListBox et ComboBox 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-171 Vulnérabilité dans Exchange Server 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-172 Vulnérabilité de Microsoft Exchange Server Outlook Web Access 2003-10-16T00:00:00.000000 2003-10-16T00:00:00.000000
certa-2003-avi-173 Vulnérabilité du navigateur et du client de messagerie Opera 2003-10-27T00:00:00.000000 2003-11-21T00:00:00.000000
certa-2003-avi-174 Déni de service dans GDM 2003-10-27T00:00:00.000000 2003-10-27T00:00:00.000000
certa-2003-avi-175 Vulnérabilité de la Machine Virtuelle Java de Sun 2003-10-29T00:00:00.000000 2003-11-07T00:00:00.000000
certa-2003-avi-176 Vulnérabilité du serveur NFS sous Solaris 2003-10-30T00:00:00.000000 2003-10-30T00:00:00.000000
certa-2003-avi-177 Vulnérabilités du serveur HTTP Apache 2003-10-30T00:00:00.000000 2004-02-23T00:00:00.000000
ID Description Published Updated
jvndb-2011-000082 WEB FORUM vulnerable to cross-site scripting 2011-10-11T19:28+09:00 2011-10-25T13:46+09:00
jvndb-2011-000083 Plume vulnerable to cross-site scripting 2011-10-13T18:38+09:00 2011-10-13T18:38+09:00
jvndb-2011-000084 Pligg vulnerable to cross-site scripting 2011-10-13T18:56+09:00 2011-10-13T18:56+09:00
jvndb-2011-000085 DAEMON Tools vulnerable to denial-of-service 2011-10-13T18:58+09:00 2011-10-13T18:58+09:00
jvndb-2011-000086 DBD::mysqlPP vulnerable to SQL injection 2011-10-14T17:50+09:00 2011-10-14T17:50+09:00
jvndb-2011-000087 EC-CUBE vulnerable to SQL injection 2011-10-14T17:53+09:00 2011-10-14T17:53+09:00
jvndb-2011-000088 Safari for iOS vulnerable to cross-site scripting 2011-10-17T18:56+09:00 2012-08-07T12:11+09:00
jvndb-2011-000091 FFFTP may insecurely load executable files 2011-10-28T17:39+09:00 2011-10-28T17:39+09:00
jvndb-2011-000092 Multiple D-Link products vulnerable to buffer overflow 2011-10-28T17:42+09:00 2011-10-28T17:42+09:00
jvndb-2011-000089 Touhou Hisouten vulnerable to denial-of-service 2011-10-28T17:49+09:00 2011-10-28T17:49+09:00
jvndb-2011-000093 Multiple SKYARC System Co., Ltd. products fail to restrict access permissions 2011-10-31T17:54+09:00 2011-11-08T17:38+09:00
jvndb-2011-000094 Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery 2011-10-31T18:03+09:00 2011-11-08T17:38+09:00
jvndb-2011-000095 CSWorks LiveData Service vulnerable to denial-of-service (DoS) 2011-11-01T16:05+09:00 2011-11-02T14:42+09:00
jvndb-2011-000096 Opengear console servers vulnerable to authentication bypass 2011-11-04T17:34+09:00 2011-11-04T17:34+09:00
jvndb-2011-000097 WebObjects vulnerable to cross-site scripting 2011-11-04T17:36+09:00 2011-11-04T17:36+09:00
jvndb-2011-000098 Iwate Portal Bar vulnerable to arbitrary script execution 2011-11-08T18:25+09:00 2011-11-08T18:25+09:00
jvndb-2011-000099 ChaSen vulnerable to buffer overflow 2011-11-08T18:31+09:00 2011-12-20T18:13+09:00
jvndb-2011-000075 Nikki vulnerable to directory traversal 2011-11-21T18:22+09:00 2011-11-21T18:22+09:00
jvndb-2011-000076 Nikki vulnerable to OS command injection 2011-11-21T18:23+09:00 2011-11-21T18:23+09:00
jvndb-2011-000100 PowerChute Business Edition vulnerable to cross-site scripting 2011-12-06T16:49+09:00 2011-12-06T16:49+09:00
jvndb-2011-000101 Etomite vulnerable to cross-site scripting 2011-12-06T17:45+09:00 2011-12-06T17:45+09:00
jvndb-2011-000103 phpWebSite vulnerable to cross-site scripting 2011-12-08T17:15+09:00 2011-12-08T17:15+09:00
jvndb-2011-000104 FFFTP may insecurely load executable files 2011-12-09T17:08+09:00 2011-12-09T17:08+09:00
jvndb-2011-000102 Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK 2011-12-15T16:26+09:00 2011-12-20T18:14+09:00
jvndb-2011-000105 Safari for iOS vulnerable to denial-of-service 2011-12-15T16:30+09:00 2011-12-15T16:30+09:00
jvndb-2011-000106 Apache Struts vulnerable to cross-site scripting 2011-12-22T18:08+09:00 2011-12-22T18:08+09:00
jvndb-2011-000107 PukiWiki Plus! vulnerable to cross-site scripting 2011-12-22T18:16+09:00 2011-12-22T18:16+09:00
jvndb-2011-000110 WordPress Japanese vulnerable to cross-site scripting 2011-12-26T14:26+09:00 2011-12-26T14:26+09:00
jvndb-2011-000109 WordPress vulnerable to arbitrary PHP code execution 2011-12-26T14:28+09:00 2011-12-26T14:28+09:00
jvndb-2011-000108 Movable Type Plugin MailForm vulnerable to cross-site scripting 2011-12-26T14:49+09:00 2011-12-26T14:49+09:00
ID Description Published Updated
cnvd-2015-00614 Libevent存在多个堆缓冲区溢出漏洞 2015-01-23 2015-01-26
cnvd-2015-00615 Cpio符号链接目录遍历漏洞 2015-01-23 2015-01-26
cnvd-2015-00616 Google Chrome拒绝服务漏洞(CNVD-2015-00616) 2015-01-23 2015-01-26
cnvd-2015-00617 Google Chrome SSL证书验证漏洞 2015-01-23 2015-01-26
cnvd-2015-00618 Google Chrome存在未明漏洞(CNVD-2015-00618) 2015-01-23 2015-01-26
cnvd-2015-00619 Google Chrome存在未明漏洞(CNVD-2015-00619) 2015-01-23 2015-01-26
cnvd-2015-00650 CAS Server LDAP身份验证绕过漏洞 2015-01-23 2015-01-27
cnvd-2015-00654 MediaWiki Hovercards扩展跨站脚本漏洞 2015-01-23 2015-01-27
cnvd-2015-00657 ADB P.DGA4001N路由器存在未明漏洞 2015-01-23 2015-01-27
cnvd-2015-00658 IBM BladeCenter SAS Connectivity Module和SAS RAID Module存在未明漏洞 2015-01-23 2015-01-27
cnvd-2015-00659 Pivotal Software RabbitMQ management插件跨站脚本漏洞 2015-01-23 2015-01-27
cnvd-2015-00660 F5 BIG-IP Application Security Manager跨站脚本漏洞 2015-01-23 2015-01-27
cnvd-2015-00661 Debian php5内存破坏漏洞 2015-01-23 2015-01-27
cnvd-2015-00662 b2evolution 'filemanager'跨站脚本漏洞 2015-01-23 2015-01-27
cnvd-2015-00630 KDE Plasma-Workspace安全绕过漏洞 2015-01-26 2015-01-27
cnvd-2015-00631 多款KDE产品存在安全绕过漏洞 2015-01-26 2015-01-27
cnvd-2015-00632 Adobe Flash Player存在未明漏洞(CNVD-2015-00632) 2015-01-26 2015-01-27
cnvd-2015-00633 grep 'kwset.c'远程缓冲区溢出漏洞 2015-01-26 2015-01-27
cnvd-2015-00634 LabTech不安全文件权限漏洞 2015-01-26 2015-01-27
cnvd-2015-00635 JasPer 'jpc_qmfb.c'任意代码执行漏洞 2015-01-26 2015-01-27
cnvd-2015-00636 Apple Mac OS X IOBluetoothDevice本地权限提升漏洞 2015-01-26 2015-01-27
cnvd-2015-00637 Vorbis Tools整数溢出漏洞 2015-01-26 2015-01-27
cnvd-2015-00638 JasPer 'jpc_dec_process_sot()'远程堆缓冲区溢出漏洞 2015-01-26 2015-01-27
cnvd-2015-00639 Apple Mac OS X XPC类型混淆安全绕过漏洞 2015-01-26 2015-01-27
cnvd-2015-00640 NETIKUS.NET EventSentry跨站脚本漏洞 2015-01-26 2015-01-27
cnvd-2015-00641 SAP HANA Extended Application Services ABAP代码注入漏洞 2015-01-26 2015-01-27
cnvd-2015-00651 Vorbis Tools拒绝服务漏洞(CNVD-2015-00651) 2015-01-26 2015-01-27
cnvd-2015-00652 Vorbis Tools拒绝服务漏洞(CNVD-2015-00652) 2015-01-26 2015-01-27
cnvd-2015-00653 SmartCMS存在多个SQL注入漏洞 2015-01-26 2015-01-27
cnvd-2015-00655 ManageEngine ServiceDesk Plus 'CreateReportTable.jsp' SQL注入漏洞 2015-01-26 2015-01-27
ID Description Published Updated
bdu:2015-03081 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03082 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03083 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03084 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03085 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03086 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03087 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03088 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03089 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03090 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03091 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03092 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03093 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03094 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03095 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03096 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03097 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03098 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03099 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03100 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03101 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03102 Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03103 Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03104 Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03105 Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03106 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03107 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03108 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
bdu:2015-03109 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 28.11.2016
bdu:2015-03110 Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику н… 28.04.2015 05.07.2024
ID Description Updated
var-201304-0569 RuggedCom Inc is the world's leading manufacturer of high-performance network and communi… 2022-05-04T09:12:35.032000Z
var-201211-0604 NETGEAR NTV300 (NeoTV) is a set-top box device. By default, NETGEAR NTV300 (NeoTV) has a … 2022-05-04T09:12:40.205000Z
var-201106-0304 Siemens SIMATIC S7 series PLC Used in various industrial fields, including energy, water … 2022-05-04T09:12:55.323000Z
var-201009-0323 A Built-in database used by JP1/Automatic Job Management System 3 (JP1/AJS3) - Manager an… 2022-05-04T09:13:06.548000Z
var-200310-0017 Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks… 2022-05-04T09:14:51.445000Z
var-202112-1084 H3C GR1108-P is a new generation of high-performance enterprise-class router launched by … 2022-05-04T09:15:11.001000Z
var-202109-1973 Huawei SVN2230 is a VPN gateway. Huawei SVN2230 has a weak password vulnerability, wh… 2022-05-04T09:15:17.701000Z
var-202108-2571 Established in 1995, TOPSEC Technology Group is the first domestic network security compa… 2022-05-04T09:15:18.823000Z
var-202108-2550 AXIS 241SA is a network video server of Axis Communications AB. Axis Communications A… 2022-05-04T09:15:18.833000Z
var-202108-2529 GS724Tv4 is a 24-port Gigabit intelligent management professional switch with 2 SFP ports… 2022-05-04T09:15:18.844000Z
var-202108-2508 Ricoh (China) Investment Co., Ltd. provides office image processing equipment (such as MF… 2022-05-04T09:15:18.860000Z
var-202108-2487 Axis is an IT company that specializes in providing network video solutions. AXIS P12… 2022-05-04T09:15:18.871000Z
var-202108-2466 CLX-9201 is a color copier from Samsung (China) Investment Co., Ltd. Samsung (China) … 2022-05-04T09:15:18.882000Z
var-202108-2445 M4080FX is an all-in-one printer of Samsung (China) Investment Co., Ltd. Samsung (Chi… 2022-05-04T09:15:18.894000Z
var-202108-2405 Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… 2022-05-04T09:15:18.903000Z
var-202108-2384 Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… 2022-05-04T09:15:18.913000Z
var-202108-2363 Hewlett-Packard Trading (Shanghai) Co., Ltd. is a company whose business scope includes c… 2022-05-04T09:15:18.924000Z
var-202108-2342 Hewlett-Packard (Hewlett-Packard, referred to as HP) is one of the information technology… 2022-05-04T09:15:18.940000Z
var-202108-2321 Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating indepe… 2022-05-04T09:15:18.952000Z
var-202108-2300 The CDAsp component of the PKS system software provides network services based on the con… 2022-05-04T09:15:18.963000Z
var-202107-1912 Omron Automation (China) Co., Ltd. is a multinational company that leads industrial autom… 2022-05-04T09:15:23.264000Z
var-202107-1891 Axis is an IT company that specializes in providing network video solutions. AXIS M10… 2022-05-04T09:15:23.275000Z
var-202107-1870 Axis is an IT company that specializes in providing network video solutions. Axis 212… 2022-05-04T09:15:23.287000Z
var-202107-1849 Axis is an IT company that specializes in providing network video solutions. Axis 205… 2022-05-04T09:15:23.302000Z
var-202107-1828 General Mobile is a Turkish smartphone manufacturer. General Mobile GM9 Pro has an in… 2022-05-04T09:15:23.313000Z
var-202107-1807 Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating indepe… 2022-05-04T09:15:23.326000Z
var-202107-1786 Founded in 1987, Huawei Technologies Co., Ltd. is the world's leading provider of ICT (in… 2022-05-04T09:15:23.336000Z
var-202107-1765 SP 320DN, SP 325DNw, SP 320SN, etc. are all-in-one printers, using RTOS operating system.… 2022-05-04T09:15:23.347000Z
var-202107-1744 Axis 210A is a network camera of Axis Communications AB. Axis Communications AB 210A … 2022-05-04T09:15:23.358000Z
var-202107-1723 TOTOLINK is a brand owned by Zeon Electronics (Shenzhen) Co., Ltd. Founded in 1999, it is… 2022-05-04T09:15:23.372000Z
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID Description Published Updated
ID CVSS Description Vendor Product Published Updated
ID CVSS Description Vendor Product Published Updated