Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0578 |
N/A
|
A Windows NT system's registry audit policy does … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.691Z |
| CVE-1999-0579 |
N/A
|
A Windows NT system's registry audit policy does … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.675Z |
| CVE-1999-0580 |
N/A
|
The HKEY_LOCAL_MACHINE key in a Windows NT system… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.690Z |
| CVE-1999-0581 |
N/A
|
The HKEY_CLASSES_ROOT key in a Windows NT system … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.670Z |
| CVE-1999-0582 |
N/A
|
A Windows NT account policy has inappropriate, se… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.690Z |
| CVE-1999-0583 |
N/A
|
There is a one-way or two-way trust relationship … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.688Z |
| CVE-1999-0584 |
N/A
|
A Windows NT file system is not NTFS. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.647Z |
| CVE-1999-0585 |
N/A
|
A Windows NT administrator account has the defaul… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.675Z |
| CVE-1999-0586 |
N/A
|
A network service is running on a nonstandard port. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.665Z |
| CVE-1999-0587 |
N/A
|
A WWW server is not running in a restricted file … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.687Z |
| CVE-1999-0588 |
N/A
|
A filter in a router or firewall allows unusual f… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.716Z |
| CVE-1999-0589 |
N/A
|
A system-critical Windows NT registry key has ina… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.688Z |
| CVE-1999-0590 |
N/A
|
A system does not present an appropriate legal me… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.692Z |
| CVE-1999-0591 |
N/A
|
An event log in Windows NT has inappropriate acce… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.649Z |
| CVE-1999-0592 |
N/A
|
The Logon box of a Windows NT system displays the… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.675Z |
| CVE-1999-0593 |
N/A
|
The default setting for the Winlogon key entry Sh… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.690Z |
| CVE-1999-0594 |
N/A
|
A Windows NT system does not restrict access to r… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.685Z |
| CVE-1999-0595 |
N/A
|
A Windows NT system does not clear the system pag… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.689Z |
| CVE-1999-0596 |
N/A
|
A Windows NT log file has an inappropriate maximu… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.679Z |
| CVE-1999-0597 |
N/A
|
A Windows NT account policy does not forcibly dis… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.686Z |
| CVE-1999-0598 |
N/A
|
A network intrusion detection system (IDS) does n… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.644Z |
| CVE-1999-0599 |
N/A
|
A network intrusion detection system (IDS) does n… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.665Z |
| CVE-1999-0600 |
N/A
|
A network intrusion detection system (IDS) does n… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.710Z |
| CVE-1999-0601 |
N/A
|
A network intrusion detection system (IDS) does n… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.687Z |
| CVE-1999-0602 |
N/A
|
A network intrusion detection system (IDS) does n… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.654Z |
| CVE-1999-0603 |
N/A
|
In Windows NT, an inappropriate user is a member … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.692Z |
| CVE-1999-0604 |
N/A
|
An incorrect configuration of the WebStore 1.0 sh… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.678Z |
| CVE-1999-0605 |
N/A
|
An incorrect configuration of the Order Form 1.0 … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.687Z |
| CVE-1999-0606 |
N/A
|
An incorrect configuration of the EZMall 2000 sho… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.719Z |
| CVE-1999-0607 |
N/A
|
quikstore.cgi in QuikStore shopping cart stores q… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.677Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0205 |
N/A
|
Denial of service in Sendmail 8.6.11 and 8.6.12. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:27:57.930Z |
| CVE-1999-0220 |
N/A
|
Attackers can do a denial of service of IRC by cr… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:50.898Z |
| CVE-1999-0226 |
N/A
|
Windows NT TCP/IP processes fragmented IP packets… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.886Z |
| CVE-1999-0231 |
N/A
|
Buffer overflow in IP-Switch IMail and Seattle La… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.459Z |
| CVE-1999-0240 |
N/A
|
Some filters or firewalls allow fragmented SYN pa… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.775Z |
| CVE-1999-0243 |
N/A
|
Linux cfingerd could be exploited to gain root access. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.621Z |
| CVE-1999-0248 |
N/A
|
A race condition in the authentication agent mech… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-01T16:34:51.869Z |
| CVE-1999-0255 |
N/A
|
Buffer overflow in ircd allows arbitrary command … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.769Z |
| CVE-1999-0268 |
N/A
|
MetaInfo MetaWeb web server allows users to uploa… |
n/a |
n/a |
2001-05-07T04:00:00 | 2024-08-01T16:34:51.863Z |
| CVE-1999-0276 |
N/A
|
mSQL v2.0.1 and below allows remote execution thr… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.876Z |
| CVE-1999-0283 |
N/A
|
The Java Web Server would allow remote users to o… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.952Z |
| CVE-1999-0285 |
N/A
|
Denial of service in telnet from the Windows NT R… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.957Z |
| CVE-1999-0286 |
N/A
|
In some NT web servers, appending a space at the … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.867Z |
| CVE-1999-0355 |
N/A
|
Local or remote users can force ControlIT 4.5 to … |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.893Z |
| CVE-1999-0361 |
N/A
|
NetWare version of LaserFiche stores usernames an… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.897Z |
| CVE-1999-0364 |
N/A
|
Microsoft Access 97 stores a database password as… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.833Z |
| CVE-1999-0384 |
N/A
|
The Forms 2.0 ActiveX control (included with Visu… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:51.891Z |
| CVE-1999-0388 |
N/A
|
DataLynx suGuard trusts the PATH environment vari… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:34:52.030Z |
| CVE-1999-0393 |
N/A
|
Remote attackers can cause a denial of service in… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-01T16:34:51.979Z |
| CVE-1999-0394 |
N/A
|
DPEC Online Courseware allows an attacker to chan… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.027Z |
| CVE-1999-0395 |
N/A
|
A race condition in the BackWeb Polite Agent Prot… |
n/a |
n/a |
2000-10-13T04:00:00 | 2024-08-01T16:34:51.863Z |
| CVE-1999-0397 |
N/A
|
The demo version of the Quakenbush NT Password Ap… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.964Z |
| CVE-1999-0398 |
N/A
|
In some instances of SSH 1.2.27 and 2.0.11 on Lin… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:51.945Z |
| CVE-1999-0399 |
N/A
|
The DCC server command in the Mirc 5.5 client doe… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.118Z |
| CVE-1999-0401 |
N/A
|
A race condition in Linux 2.2.1 allows local user… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:34:52.159Z |
| CVE-1999-0448 |
N/A
|
IIS 4.0 and Apache log HTTP request methods, rega… |
n/a |
n/a |
1999-09-29T04:00:00 | 2024-08-01T16:41:44.992Z |
| CVE-1999-0452 |
N/A
|
A service or application has a backdoor password … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.901Z |
| CVE-1999-0453 |
N/A
|
An attacker can identify a CISCO device by sendin… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.387Z |
| CVE-1999-0454 |
N/A
|
A remote attacker can sometimes identify the oper… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:44.964Z |
| CVE-1999-0465 |
N/A
|
Remote attackers can crash Lynx and Internet Expl… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.406Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-f5cf-f7px-xpmh |
6.5 (3.1)
|
Moderate severity vulnerability that affects org.apache.qpid:proton-j | 2018-10-16T19:50:27Z | 2021-09-09T21:40:11Z |
| ghsa-7xr3-rgwh-pw22 |
7.5 (3.1)
|
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents | 2018-10-16T19:50:39Z | 2024-03-04T23:40:34Z |
| ghsa-8336-mxp6-v5h9 |
5.3 (3.1)
|
Moderate severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua | 2018-10-16T19:51:18Z | 2021-06-11T15:34:21Z |
| ghsa-782p-53wq-cxmj |
7.5 (3.1)
|
High severity vulnerability that affects OPCFoundation.NetStandard.Opc.Ua | 2018-10-16T19:51:31Z | 2021-06-11T13:55:54Z |
| ghsa-35hc-x2cw-2j4v |
7.5 (3.1)
|
Denial of service vulnerability exists when .NET and .NET Core improperly process XML documents | 2018-10-16T19:54:06Z | 2022-04-26T19:04:54Z |
| ghsa-j378-6mmw-hqfr |
7.5 (3.1)
|
Denial of service vulnerability exists when System.IO.Pipelines improperly handles requests | 2018-10-16T19:56:38Z | 2022-10-26T18:56:19Z |
| ghsa-vhvh-528q-ff3p |
7.5 (3.1)
|
Security feature bypass vulnerability exists in ASP.NET when the number of incorrect login attempts… | 2018-10-16T19:56:50Z | 2022-04-26T19:05:55Z |
| ghsa-365p-96qv-xr7g |
8.8 (3.1)
|
ASP.NET Core allow an elevation of privilege | 2018-10-16T19:56:59Z | 2022-04-26T19:06:29Z |
| ghsa-qhqf-ghgh-x2m4 |
7.3 (3.1)
|
High severity vulnerability that affects Microsoft.AspNetCore.Mvc | 2018-10-16T19:57:38Z | 2021-10-08T21:18:12Z |
| ghsa-j8f4-2w4p-mhjc |
5.3 (3.1)
|
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc | 2018-10-16T19:57:48Z | 2021-07-01T21:44:55Z |
| ghsa-6xh7-4v2w-36q6 |
7.5 (3.1)
|
ASP.NET Core fails to properly validate web requests | 2018-10-16T19:58:05Z | 2022-04-26T19:07:08Z |
| ghsa-mv2r-q4g5-j8q5 |
7.5 (3.1)
|
Denial of service in ASP.NET Core | 2018-10-16T19:58:31Z | 2022-07-07T21:37:06Z |
| ghsa-gr4c-5rq6-cgh3 |
5.3 (3.1)
|
OPC UA applications can allow a remote attacker to determine a Server's private key | 2018-10-16T19:58:42Z | 2022-04-26T19:12:42Z |
| ghsa-ch6p-4jcm-h8vh |
|
Moderate severity vulnerability that affects Microsoft.AspNetCore.Mvc and Microsoft.AspNetCore.Mvc.Core | 2018-10-16T19:58:52Z | 2024-02-28T23:01:55Z |
| ghsa-jc8g-xhw5-6x46 |
7.5 (3.1)
|
Improper Certificate Validation in Microsoft .NET Framework components | 2018-10-16T19:59:05Z | 2022-07-07T21:42:15Z |
| ghsa-3m2r-q8x3-xmf7 |
|
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.Server.… | 2018-10-16T19:59:48Z | 2021-12-03T14:27:36Z |
| ghsa-cgpw-2gph-2r9g |
|
Moderate severity vulnerability that affects Microsoft.AspNetCore.All, Microsoft.AspNetCore.App, an… | 2018-10-16T19:59:59Z | 2021-12-03T14:28:10Z |
| ghsa-r53v-vm87-f72c |
|
Improper Validation of Certificates in apache axis | 2018-10-16T20:50:58Z | 2024-03-01T20:29:59Z |
| ghsa-96jq-75wh-2658 |
6.1 (3.1)
|
Moderate severity vulnerability that affects apache axis | 2018-10-16T20:51:15Z | 2024-06-21T22:05:49Z |
| ghsa-8p83-68cw-943f |
7.5 (3.1)
|
Apache Ignite communicates to an external PHP server where sensitive information is sent | 2018-10-16T20:53:20Z | 2024-11-22T18:28:37Z |
| ghsa-8qfc-cvjp-mgpq |
5.9 (3.1)
|
Moderate severity vulnerability that affects org.apache.ignite:ignite-core | 2018-10-16T20:53:31Z | 2021-09-07T20:29:22Z |
| ghsa-chp4-rv79-68j3 |
9.8 (3.1)
|
Apache serialization mechanism does not have a list of classes allowed for serialization/deserialization | 2018-10-16T20:53:44Z | 2024-04-19T19:24:01Z |
| ghsa-qcjv-wfcg-mmpr |
9.8 (3.1)
|
Code execution via deserialization in org.apache.ignite:ignite-core | 2018-10-16T20:53:54Z | 2024-03-04T23:29:23Z |
| ghsa-vf4q-8mr7-5c5c |
9.8 (3.1)
|
Camel-castor component in Apache Camel is vulnerable to Java object de-serialisation | 2018-10-16T23:05:58Z | 2023-12-13T13:42:09Z |
| ghsa-8vfm-4388-6rpc |
9.8 (3.1)
|
Apache is vulnerable to XXE in XSD validation processor | 2018-10-16T23:06:25Z | 2022-11-17T18:47:38Z |
| ghsa-jv74-f9pj-xp3f |
5.3 (3.1)
|
Apache Camel's Mail is vulnerable to path traversal | 2018-10-16T23:07:57Z | 2022-11-17T19:14:08Z |
| ghsa-3hrc-f439-727g |
|
Apache Camel XML External Entity vulnerability | 2018-10-16T23:08:43Z | 2022-11-17T18:38:58Z |
| ghsa-mhx2-r3jx-g94c |
|
Apache Camel allows remote actor to read arbitrary files via external entity in invalid XML string … | 2018-10-16T23:09:15Z | 2022-11-17T19:39:36Z |
| ghsa-gv5f-cjw9-5vxg |
9.8 (3.1)
|
Camel-xstream component in Apache Camel can allow remote attackers to execute arbitrary commands | 2018-10-16T23:10:23Z | 2023-12-19T22:33:53Z |
| ghsa-26v6-w6fw-rh94 |
8.1 (3.1)
|
Apache Camel can allow remote attackers to execute arbitrary commands | 2018-10-16T23:12:20Z | 2023-12-19T22:56:00Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-153 |
|
modulemd 1.3.1 and earlier uses an unsafe function for processing externally provided dat… | modulemd | 2019-01-10T21:29:00Z | 2021-07-05T00:01:22.789825Z |
| pysec-2019-108 |
|
** DISPUTED ** An issue was discovered in NumPy 1.16.0 and earlier. It uses the pickle … | numpy | 2019-01-16T05:29:00Z | 2019-10-01T00:15:00Z |
| pysec-2019-250 |
8.8 (3.1)
|
GattLib 0.2 has a stack-based buffer over-read in gattlib_connect in dbus/gattlib.c becau… | gattlib-py | 2019-01-21T06:29:00Z | 2024-11-21T14:22:50.820785Z |
| pysec-2019-143 |
|
The LDAP auth backend (airflow.contrib.auth.backends.ldap_auth) prior to Apache Airflow 1… | apache-airflow | 2019-01-23T17:29:00Z | 2021-06-10T06:51:25.502672Z |
| pysec-2019-147 |
|
In Apache Airflow 1.8.2 and earlier, an authenticated user can execute code remotely on t… | apache-airflow | 2019-01-23T17:29:00Z | 2021-07-05T00:01:17.000324Z |
| pysec-2019-148 |
|
In Apache Airflow 1.8.2 and earlier, a CSRF vulnerability allowed for a remote command in… | apache-airflow | 2019-01-23T17:29:00Z | 2021-07-05T00:01:17.030004Z |
| pysec-2019-149 |
|
In Apache Airflow 1.8.2 and earlier, an experimental Airflow feature displayed authentica… | apache-airflow | 2019-01-23T17:29:00Z | 2021-07-05T00:01:17.060541Z |
| pysec-2019-113 |
|
CRLF Injection in pypiserver 1.2.5 and below allows attackers to set arbitrary HTTP heade… | pypiserver | 2019-01-25T04:29:00Z | 2019-01-25T19:42:00Z |
| pysec-2019-167 |
|
In Pylons Colander through 1.6, the URL validator allows an attacker to potentially cause… | colander | 2019-02-01T09:29:00Z | 2021-08-25T04:29:57.387774Z |
| pysec-2019-7 |
|
www/resource.py in Buildbot before 1.8.1 allows CRLF injection in the Location header of … | buildbot | 2019-02-03T08:29:00Z | 2019-02-06T21:48:00Z |
| pysec-2019-169 |
|
When using PySpark , it's possible for a different local user to connect to the Spark app… | pyspark | 2019-02-04T17:29:00Z | 2021-08-25T04:30:27.510120Z |
| pysec-2019-1 |
|
aioxmpp version 0.10.2 and earlier contains a Improper Handling of Structural Elements vu… | aioxmpp | 2019-02-04T21:29:00Z | 2019-02-15T15:00:00Z |
| pysec-2019-121 |
|
slixmpp version before commit 7cd73b594e8122dddf847953fcfc85ab4d316416 contains an incorr… | slixmpp | 2019-02-04T21:29:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-124 |
|
SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled. | sqlalchemy | 2019-02-06T21:29:00Z | 2021-01-20T15:15:00Z |
| pysec-2019-252 |
5.5 (3.1)
|
In parser/btorsmt2.c in Boolector 3.0.0, opening a specially crafted input file leads to … | pyboolector | 2019-02-07T07:29:00Z | 2024-11-25T18:35:18.357593Z |
| pysec-2019-18 |
|
Django 1.11.x before 1.11.19, 2.0.x before 2.0.11, and 2.1.x before 2.1.6 allows Uncontro… | django | 2019-02-11T13:29:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-255 |
6.1 (3.1)
|
data/interfaces/default/history.html in Tautulli 2.1.26 has XSS via a crafted Plex userna… | tautulli | 2019-02-19T16:29:00Z | 2025-01-12T05:34:20.550037Z |
| pysec-2019-123 |
|
SQLAlchemy through 1.2.17 and 1.3.x through 1.3.0b2 allows SQL Injection via the order_by… | sqlalchemy | 2019-02-20T00:29:00Z | 2021-01-20T15:15:00Z |
| pysec-2019-248 |
8.8 (3.1)
|
An issue was discovered in Exiv2 0.27. There is infinite recursion at Exiv2::Image::print… | exiv2 | 2019-02-25T15:29:00Z | 2024-11-21T14:22:49.79084Z |
| pysec-2019-249 |
8.8 (3.1)
|
An issue was discovered in Exiv2 0.27. There is infinite recursion at BigTiffImage::print… | exiv2 | 2019-02-25T15:29:00Z | 2024-11-21T14:22:49.85073Z |
| pysec-2019-142 |
|
In Apache Airflow before 1.10.2, a malicious admin user could edit the state of objects i… | apache-airflow | 2019-02-27T18:29:00Z | 2021-06-10T06:52:05.219935Z |
| pysec-2019-139 |
|
An issue was discovered in webargs before 5.1.3, as used with marshmallow and other produ… | webargs | 2019-03-12T02:29:00Z | 2019-03-12T13:09:00Z |
| pysec-2019-159 |
|
An XSSI (cross-site inclusion) vulnerability in Jupyter Notebook before 5.7.6 allows incl… | notebook | 2019-03-12T09:29:00Z | 2021-07-15T02:22:16.344384Z |
| pysec-2019-190 |
|
An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.… | neutron | 2019-03-13T02:29:00Z | 2021-08-27T03:22:08.807010Z |
| pysec-2019-115 |
|
python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other cip… | python-gnupg | 2019-03-21T16:01:00Z | 2020-07-13T04:15:00Z |
| pysec-2019-187 |
|
Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is … | matrix-synapse | 2019-03-21T16:01:00Z | 2021-08-27T03:22:06.392030Z |
| pysec-2019-203 |
|
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates… | splunk-sdk | 2019-03-21T16:01:00Z | 2021-08-27T03:22:21.751156Z |
| pysec-2019-21 |
|
An issue was discovered in Donfig 0.3.0. There is a vulnerability in the collect_yaml met… | donfig | 2019-03-21T20:29:00Z | 2019-03-26T14:13:00Z |
| pysec-2019-180 |
|
A code injection issue was discovered in ipycache through 2016-05-31. | ipycache | 2019-03-21T21:29:00Z | 2021-08-27T03:22:04.582276Z |
| pysec-2019-193 |
|
In a default Red Hat Openstack Platform Director installation, openstack-octavia before v… | octavia | 2019-03-26T18:29:00Z | 2021-08-27T03:22:09.768851Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-419 | Malicious code in @mariacasino/fetlife-assets (npm) | 2022-06-20T18:20:24Z | 2022-06-20T18:20:25Z |
| mal-2022-420 | Malicious code in @marriott/fetlife-assets (npm) | 2022-06-20T18:20:25Z | 2022-06-20T18:20:25Z |
| mal-2022-421 | Malicious code in @mashov/fetlife-assets (npm) | 2022-06-20T18:20:25Z | 2022-06-20T18:20:25Z |
| mal-2022-424 | Malicious code in @mcd-gws/fetlife-assets (npm) | 2022-06-20T18:20:25Z | 2022-06-20T18:20:30Z |
| mal-2022-425 | Malicious code in @mcdonalds/fetlife-assets (npm) | 2022-06-20T18:20:25Z | 2022-06-20T18:20:26Z |
| mal-2022-426 | Malicious code in @mckesson/fetlife-assets (npm) | 2022-06-20T18:20:25Z | 2022-06-20T18:20:26Z |
| mal-2022-433 | Malicious code in @micropython/fetlife-assets (npm) | 2022-06-20T18:20:26Z | 2022-06-20T18:20:26Z |
| mal-2022-435 | Malicious code in @moneybird/fetlife-assets (npm) | 2022-06-20T18:20:26Z | 2022-06-20T18:20:26Z |
| mal-2022-436 | Malicious code in @mozilla-mobile/fetlife-assets (npm) | 2022-06-20T18:20:26Z | 2022-06-20T18:20:27Z |
| mal-2022-446 | Malicious code in @myndr/fetlife-assets (npm) | 2022-06-20T18:20:26Z | 2022-06-20T18:20:27Z |
| mal-2022-449 | Malicious code in @navyfederal/fetlife-assets (npm) | 2022-06-20T18:20:27Z | 2022-06-20T18:20:27Z |
| mal-2022-450 | Malicious code in @ncr-design-system/cxd-npm-group (npm) | 2022-06-20T18:20:27Z | 2022-06-20T18:20:27Z |
| mal-2022-451 | Malicious code in @ncr-design-system/cxd-npm-releases (npm) | 2022-06-20T18:20:27Z | 2022-06-20T18:20:28Z |
| mal-2022-452 | Malicious code in @ncr-swt-retail/scox-npm-group (npm) | 2022-06-20T18:20:27Z | 2022-06-20T18:20:28Z |
| mal-2022-453 | Malicious code in @ncr-swt-retail/scox-npm-releases (npm) | 2022-06-20T18:20:28Z | 2022-06-20T18:20:28Z |
| mal-2022-476 | Malicious code in @node32/fetlife-assets (npm) | 2022-06-20T18:20:28Z | 2022-06-20T18:20:28Z |
| mal-2022-478 | Malicious code in @octopus-ng/fetlife-assets (npm) | 2022-06-20T18:20:28Z | 2022-06-20T18:20:29Z |
| mal-2022-479 | Malicious code in @ohiosos/fetlife-assets (npm) | 2022-06-20T18:20:28Z | 2022-06-20T18:20:29Z |
| mal-2022-482 | Malicious code in @openmage/fetlife-assets (npm) | 2022-06-20T18:20:29Z | 2022-06-20T18:20:29Z |
| mal-2022-483 | Malicious code in @openu/fetlife-assets (npm) | 2022-06-20T18:20:29Z | 2022-06-20T18:20:29Z |
| mal-2022-495 | Malicious code in @parabol/fetlife-assets (npm) | 2022-06-20T18:20:29Z | 2022-06-20T18:20:29Z |
| mal-2022-497 | Malicious code in @passit/fetlife-assets (npm) | 2022-06-20T18:20:29Z | 2022-06-20T18:20:30Z |
| mal-2022-500 | Malicious code in @phabricator/fetlife-assets (npm) | 2022-06-20T18:20:30Z | 2022-06-20T18:20:30Z |
| mal-2022-501 | Malicious code in @picsart/fetlife-assets (npm) | 2022-06-20T18:20:30Z | 2022-06-20T18:20:30Z |
| mal-2022-504 | Malicious code in @plantemoran/fetlife-assets (npm) | 2022-06-20T18:20:30Z | 2022-06-20T18:20:31Z |
| mal-2022-509 | Malicious code in @pnfp/fetlife-assets (npm) | 2022-06-20T18:20:30Z | 2022-06-20T18:20:31Z |
| mal-2022-510 | Malicious code in @polymail/fetlife-assets (npm) | 2022-06-20T18:20:31Z | 2022-06-20T18:20:31Z |
| mal-2022-512 | Malicious code in @pornhub/fetlife-assets (npm) | 2022-06-20T18:20:31Z | 2022-06-20T18:20:31Z |
| mal-2022-517 | Malicious code in @portswigger/fetlife-assets (npm) | 2022-06-20T18:20:31Z | 2022-06-20T18:20:32Z |
| mal-2022-533 | Malicious code in @prospect/fetlife-assets (npm) | 2022-06-20T18:20:31Z | 2022-06-20T18:20:32Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2022-1870 | Apache Tomcat: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-05-21T22:00:00.000+00:00 | 2024-08-01T22:00:00.000+00:00 |
| wid-sec-w-2024-0747 | libvirt: Schwachstelle ermöglicht Denial of Service | 2020-05-21T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2024-1977 | QEMU: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-05-24T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-0558 | jQuery: Schwachstelle ermöglicht Cross-Site Scripting | 2020-05-25T22:00:00.000+00:00 | 2024-05-07T22:00:00.000+00:00 |
| wid-sec-w-2022-1267 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-05-26T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2024-1976 | QEMU: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-05-27T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2023-2982 | Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Denial of Service | 2020-05-28T22:00:00.000+00:00 | 2023-11-21T23:00:00.000+00:00 |
| wid-sec-w-2023-0679 | QEMU: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-06-01T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2024-1448 | Aruba ClearPass: Mehrere Schwachstellen | 2020-06-02T22:00:00.000+00:00 | 2024-11-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0900 | docker: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-06-02T22:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2024-1975 | QEMU: Mehrere Schwachstellen | 2020-06-03T22:00:00.000+00:00 | 2024-11-10T23:00:00.000+00:00 |
| wid-sec-w-2022-2006 | dbus: Schwachstelle ermöglicht Denial of Service | 2020-06-04T22:00:00.000+00:00 | 2025-06-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1319 | Perl: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-06-07T22:00:00.000+00:00 | 2023-12-04T23:00:00.000+00:00 |
| wid-sec-w-2023-1374 | Node.js: Mehrere Schwachstellen | 2020-06-07T22:00:00.000+00:00 | 2023-10-23T22:00:00.000+00:00 |
| wid-sec-w-2022-1808 | LibreOffice: Mehrere Schwachstellen | 2020-06-08T22:00:00.000+00:00 | 2024-01-01T23:00:00.000+00:00 |
| wid-sec-w-2023-1516 | VLC: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode | 2020-06-08T22:00:00.000+00:00 | 2023-06-20T22:00:00.000+00:00 |
| wid-sec-w-2024-1974 | QEMU: Schwachstelle ermöglicht Denial of Service | 2020-06-08T22:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-2050 | Red Hat JBoss Application Server (JBoss): Mehrere Schwachstellen | 2020-06-11T22:00:00.000+00:00 | 2025-07-10T22:00:00.000+00:00 |
| wid-sec-w-2022-2245 | mutt: Schwachstelle ermöglicht Umgehung von Sicherheitsvorkehrungen | 2020-06-14T22:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2022-1897 | PCRE (Perl Compatible Regular Expressions): Mehrere Schwachstellen | 2020-06-15T22:00:00.000+00:00 | 2024-01-24T23:00:00.000+00:00 |
| wid-sec-w-2022-2244 | mutt: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-06-15T22:00:00.000+00:00 | 2022-12-06T23:00:00.000+00:00 |
| wid-sec-w-2023-0683 | Treck TCP/IP-Stack: Mehrere Schwachstellen | 2020-06-16T22:00:00.000+00:00 | 2023-03-19T23:00:00.000+00:00 |
| wid-sec-w-2023-1154 | GitLab: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2020-06-16T22:00:00.000+00:00 | 2023-05-10T22:00:00.000+00:00 |
| wid-sec-w-2023-1824 | IBM MQ: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-06-16T22:00:00.000+00:00 | 2023-07-19T22:00:00.000+00:00 |
| wid-sec-w-2022-2243 | mutt: Schwachstelle ermöglicht Manipulation von Daten | 2020-06-21T22:00:00.000+00:00 | 2025-01-15T23:00:00.000+00:00 |
| wid-sec-w-2023-1360 | Squid: Mehrere Schwachstellen ermöglichen Denial of Service | 2020-06-21T22:00:00.000+00:00 | 2023-06-06T22:00:00.000+00:00 |
| wid-sec-w-2023-1636 | cURL: Mehrere Schwachstellen | 2020-06-23T22:00:00.000+00:00 | 2025-11-06T23:00:00.000+00:00 |
| wid-sec-w-2023-2471 | Apache Traffic Server: Schwachstelle ermöglicht Denial of Service | 2020-06-24T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2025-1860 | Nvidia Treiber: Mehrere Schwachstellen | 2020-06-24T22:00:00.000+00:00 | 2025-08-18T22:00:00.000+00:00 |
| wid-sec-w-2025-1693 | Net-SNMP: Schwachstelle ermöglicht Denial of Service | 2020-06-25T22:00:00.000+00:00 | 2025-07-31T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2005:517 | Red Hat Security Advisory: HelixPlayer security update | 2005-06-23T19:31:00+00:00 | 2025-11-21T17:29:14+00:00 |
| rhsa-2005:535 | Red Hat Security Advisory: sudo security update | 2005-06-29T15:54:00+00:00 | 2026-01-08T09:18:38+00:00 |
| rhsa-2005:569 | Red Hat Security Advisory: zlib security update | 2005-07-06T14:30:00+00:00 | 2025-11-21T17:29:18+00:00 |
| rhsa-2005:564 | Red Hat Security Advisory: php security update | 2005-07-07T19:56:00+00:00 | 2026-01-08T09:18:43+00:00 |
| rhsa-2005:575 | Red Hat Security Advisory: Adobe Acrobat Reader security update | 2005-07-08T19:40:00+00:00 | 2026-01-08T09:18:43+00:00 |
| rhsa-2005:562 | Red Hat Security Advisory: krb5 security update | 2005-07-12T18:12:00+00:00 | 2026-01-08T09:18:40+00:00 |
| rhsa-2005:567 | Red Hat Security Advisory: krb5 security update | 2005-07-12T18:15:00+00:00 | 2026-01-08T09:18:40+00:00 |
| rhsa-2005:571 | Red Hat Security Advisory: cups security update | 2005-07-14T17:48:00+00:00 | 2025-11-21T17:29:18+00:00 |
| rhsa-2005:586 | Red Hat Security Advisory: firefox security update | 2005-07-21T10:14:00+00:00 | 2025-11-21T17:29:21+00:00 |
| rhsa-2005:601 | Red Hat Security Advisory: thunderbird security update | 2005-07-21T17:42:00+00:00 | 2026-01-08T09:18:48+00:00 |
| rhsa-2005:584 | Red Hat Security Advisory: zlib security update | 2005-07-21T17:50:00+00:00 | 2026-01-08T09:18:43+00:00 |
| rhsa-2005:378 | Red Hat Security Advisory: cpio security update | 2005-07-21T18:12:00+00:00 | 2025-11-21T17:28:58+00:00 |
| rhsa-2005:639 | Red Hat Security Advisory: kdenetwork security update | 2005-07-22T01:26:00+00:00 | 2025-11-21T17:29:24+00:00 |
| rhsa-2005:587 | Red Hat Security Advisory: mozilla security update | 2005-07-22T10:41:00+00:00 | 2025-11-21T17:29:21+00:00 |
| rhsa-2005:582 | Red Hat Security Advisory: httpd security update | 2005-07-25T07:46:00+00:00 | 2025-11-21T17:29:19+00:00 |
| rhsa-2005:640 | Red Hat Security Advisory: fetchmail security update | 2005-07-25T07:50:00+00:00 | 2025-11-21T17:29:29+00:00 |
| rhsa-2005:603 | Red Hat Security Advisory: dhcpcd security update | 2005-07-27T15:11:00+00:00 | 2026-01-08T09:18:50+00:00 |
| rhsa-2005:612 | Red Hat Security Advisory: kdelibs security update | 2005-07-27T15:22:00+00:00 | 2026-01-08T09:18:52+00:00 |
| rhsa-2005:583 | Red Hat Security Advisory: dump security update | 2005-08-03T14:12:00+00:00 | 2025-11-21T17:29:21+00:00 |
| rhsa-2005:595 | Red Hat Security Advisory: squirrelmail security update | 2005-08-03T14:16:00+00:00 | 2026-01-08T09:18:46+00:00 |
| rhsa-2005:543 | Red Hat Security Advisory: ruby security update | 2005-08-05T13:31:00+00:00 | 2026-01-08T09:18:38+00:00 |
| rhsa-2005:706 | Red Hat Security Advisory: cups security update | 2005-08-09T15:54:00+00:00 | 2025-11-21T17:29:28+00:00 |
| rhsa-2005:598 | Red Hat Security Advisory: sysreport security update | 2005-08-09T16:02:00+00:00 | 2025-11-21T17:29:23+00:00 |
| rhsa-2005:720 | Red Hat Security Advisory: ucd-snmp security update | 2005-08-09T16:10:00+00:00 | 2025-11-21T17:29:29+00:00 |
| rhsa-2005:670 | Red Hat Security Advisory: xpdf security update | 2005-08-09T16:13:00+00:00 | 2025-11-21T17:29:26+00:00 |
| rhsa-2005:671 | Red Hat Security Advisory: kdegraphics security update | 2005-08-09T16:45:00+00:00 | 2025-11-21T17:29:26+00:00 |
| rhsa-2005:589 | Red Hat Security Advisory: gaim security update | 2005-08-10T03:48:00+00:00 | 2025-11-21T17:29:25+00:00 |
| rhsa-2005:687 | Red Hat Security Advisory: ethereal security update | 2005-08-10T17:28:00+00:00 | 2025-11-21T17:29:28+00:00 |
| rhsa-2005:708 | Red Hat Security Advisory: gpdf security update | 2005-08-10T17:38:00+00:00 | 2025-11-21T17:29:31+00:00 |
| rhsa-2005:750 | Red Hat Security Advisory: Adobe Acrobat Reader security update | 2005-08-16T20:01:00+00:00 | 2025-11-21T17:29:31+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsma-17-229-01 | ICSMA-17-229-01_Philips' DoseWise Portal Vulnerabilities | 2017-08-17T00:00:00.000000Z | 2017-08-17T00:00:00.000000Z |
| icsa-17-234-01 | Automated Logic Corporation WebCTRL, i-VU, SiteScan | 2017-08-22T00:00:00.000000Z | 2017-08-22T00:00:00.000000Z |
| icsa-17-234-02 | SpiderControl SCADA MicroBrowser | 2017-08-22T00:00:00.000000Z | 2017-08-22T00:00:00.000000Z |
| icsa-17-234-03 | SpiderControl SCADA Web Server | 2017-08-22T00:00:00.000000Z | 2017-08-22T00:00:00.000000Z |
| icsa-17-234-04 | General Motors and Shanghai OnStar (SOS) iOS Client | 2017-08-22T00:00:00.000000Z | 2018-01-09T00:00:00.000000Z |
| icsa-17-236-01 | ICSA-17-236-01_Westermo MRD-305-DIN, MRD-315, MRD-355, and MRD-455 | 2017-08-24T00:00:00.000000Z | 2017-08-24T00:00:00.000000Z |
| icsa-17-241-01 | AzeoTech DAQFactory | 2017-08-29T00:00:00.000000Z | 2017-08-29T00:00:00.000000Z |
| icsa-17-241-02 | Advantech WebAccess | 2017-08-29T00:00:00.000000Z | 2017-08-29T00:00:00.000000Z |
| icsma-17-241-01 | ICSMA-17-241-01_Abbott Laboratories ' Accent/Anthem, Accent MRI, Assurity/Allure, and Assurity MRI Pacemaker Vulnerabilities | 2017-08-29T00:00:00.000000Z | 2017-08-29T00:00:00.000000Z |
| icsa-17-243-01 | Siemens OPC UA Protocol Stack Discovery Service (Update E) | 2017-08-30T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-17-243-02 | Siemens LOGO! (Update A) | 2017-08-30T00:00:00.000000Z | 2020-12-08T00:00:00.000000Z |
| icsa-17-243-03 | Siemens 7KM PAC Switched Ethernet | 2017-08-31T00:00:00.000000Z | 2017-08-31T00:00:00.000000Z |
| icsa-17-243-04 | OPW Fuel Management Systems SiteSentinel Integra and SiteSentinel iSite | 2017-08-31T00:00:00.000000Z | 2017-08-31T00:00:00.000000Z |
| icsa-17-243-05 | Moxa SoftCMS Live Viewer | 2017-08-31T00:00:00.000000Z | 2017-08-31T00:00:00.000000Z |
| icsa-17-250-01 | SpiderControl SCADA Web Server | 2017-09-07T00:00:00.000000Z | 2017-09-07T00:00:00.000000Z |
| icsa-17-250-02 | PHOENIX CONTACT, Innominate Security Technologies mGuard Firmware | 2017-09-07T00:00:00.000000Z | 2017-09-07T00:00:00.000000Z |
| icsma-17-250-01 | i-SENS, Inc. SmartLog Diabetes Management Software | 2017-09-07T00:00:00.000000Z | 2017-09-07T00:00:00.000000Z |
| icsma-17-250-02a | Smiths Medical Medfusion 4000 Wireless Syringe Infusion Pump Vulnerabilities (Update A) | 2017-09-07T00:00:00.000000Z | 2017-12-12T00:00:00.000000Z |
| icsa-17-255-01 | mySCADA myPRO | 2017-09-12T00:00:00.000000Z | 2017-09-12T00:00:00.000000Z |
| icsma-17-255-01 | ICSMA-17-255-01_Philips' IntelliView MX40 Patient Worn Monitor (WLAN) Vulnerabilities | 2017-09-12T00:00:00.000000Z | 2017-09-12T00:00:00.000000Z |
| icsa-17-257-01 | LOYTEC LVIS-3ME | 2017-09-14T00:00:00.000000Z | 2017-09-14T00:00:00.000000Z |
| icsa-17-262-01 | PHOENIX CONTACT mGuard Device Manager | 2017-09-19T00:00:00.000000Z | 2017-09-19T00:00:00.000000Z |
| icsa-17-234-05 | Saia Burgess Controls PCD Controllers | 2017-09-21T00:00:00.000000Z | 2017-09-21T00:00:00.000000Z |
| icsa-17-264-01 | Schneider Electric InduSoft Web Studio, InTouch Machine Edition | 2017-09-21T00:00:00.000000Z | 2017-09-21T00:00:00.000000Z |
| icsa-17-264-02 | Ctek, Inc. SkyRouter | 2017-09-21T00:00:00.000000Z | 2017-09-21T00:00:00.000000Z |
| icsa-17-264-03 | Digium Asterisk GUI | 2017-09-21T00:00:00.000000Z | 2017-09-21T00:00:00.000000Z |
| icsa-17-264-04 | iniNet Solutions GmbH SCADA Webserver | 2017-09-21T00:00:00.000000Z | 2017-09-21T00:00:00.000000Z |
| icsa-17-271-01b | Siemens Ruggedcom ROS, SCALANCE | 2017-09-28T00:00:00.000000Z | 2025-08-12T00:00:00.000000Z |
| icsa-17-278-01a | GE CIMPLICITY (Update A) | 2017-10-05T00:00:00.000000Z | 2017-10-10T00:00:00.000000Z |
| icsa-17-278-02 | Siemens 7KT PAC1200 Data Manager | 2017-10-05T00:00:00.000000Z | 2017-10-05T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20190515-nxos-cmdinj-1770 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1770) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1774-1775 | Cisco NX-OS Software Command Injection Vulnerabilities (CVE-2019-1774, CVE-2019-1775) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1776 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1776) | 2019-05-15T16:00:00+00:00 | 2019-07-18T00:00:28+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1778 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1778) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1783 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1783) | 2019-05-15T16:00:00+00:00 | 2019-07-18T00:00:27+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1790 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1790) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1791 | Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1791) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-cmdinj-1795 | Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1795) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-conf-bypass | Cisco FXOS and NX-OS Software Secure Configuration Bypass Vulnerability | 2019-05-15T16:00:00+00:00 | 2021-07-12T14:24:25+00:00 |
| cisco-sa-20190515-nxos-file-write | Cisco NX-OS Software Arbitrary File Overwrite Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-fxos-cmdinj-1779 | Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1779) | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-fxos-cmdinj-1780 | Cisco FXOS and NX-OS Software Command Injection Vulnerability (CVE-2019-1780) | 2019-05-15T16:00:00+00:00 | 2019-05-21T13:55:18+00:00 |
| cisco-sa-20190515-nxos-fxos-info | Cisco FXOS and NX-OS Software Sensitive File Read Information Disclosure Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-linecardinj-1769 | Cisco NX-OS Software Line Card Command Injection Vulnerability (CVE-2019-1769) | 2019-05-15T16:00:00+00:00 | 2019-05-28T15:20:22+00:00 |
| cisco-sa-20190515-nxos-nxapi-xss | Cisco NX-OS Software NX-API Sandbox Cross-Site Scripting Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-overflow-inj | Cisco NX-OS Software Buffer Overflow and Command Injection Vulnerabilities | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-psvb | Cisco NX-OS Software Patch Signature Verification Bypass Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-pyth-escal | Cisco NX-OS Software Python Parser Privilege Escalation Vulnerability | 2019-05-15T16:00:00+00:00 | 2021-08-25T15:49:16+00:00 |
| cisco-sa-20190515-nxos-rpm-injec | Cisco NX-OS Software Remote Package Manager Command Injection Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-sisv | Cisco Nexus 3000 Series and 9000 Series Switches in NX-OS Mode CLI Command Software Image Signature Verification Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-sisv2 | Cisco NX-OS CLI Command Software Image Signature Verification Vulnerabilities | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-snmp-dos | Cisco FXOS and NX-OS Software Simple Network Management Protocol Denial of Service Vulnerability | 2019-05-15T16:00:00+00:00 | 2021-07-12T14:24:24+00:00 |
| cisco-sa-20190515-nxos-spsv | Cisco MDS 9700 Series Multilayer Directors and Nexus 7000/7700 Series Switches Software Patch Signature Verification Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-nxos-ssh-info | Cisco NX-OS Software SSH Key Information Disclosure Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-16T15:49:37+00:00 |
| cisco-sa-20190515-pi-pathtrav-1818 | Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-pi-pathtrav-1819 | Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-pi-pathtrav-1820 | Cisco Prime Infrastructure and Evolved Programmable Network Manager Path Traversal Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-pi-rce | Cisco Prime Infrastructure and Evolved Programmable Network Manager Remote Code Execution Vulnerabilities | 2019-05-15T16:00:00+00:00 | 2019-05-15T22:58:48+00:00 |
| cisco-sa-20190515-pi-sqlinject | Cisco Prime Infrastructure and Evolved Programmable Network Manager SQL Injection Vulnerabilities | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| cisco-sa-20190515-sb-snmpdos | Cisco Small Business Series Switches Simple Network Management Protocol Denial of Service Vulnerability | 2019-05-15T16:00:00+00:00 | 2019-05-15T16:00:00+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-10768 | A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being 'force disabled' when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-10781 | A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel module where a user with a local account and the ability to read the /sys/class/zram-control/hot_add file can create ZRAM device nodes in the /dev/ directory. This read allocates kernel memory and is not accounted for a user that triggers the creation of that ZRAM device. With this vulnerability continually reading the device may consume a large amount of system memory and cause the Out-of-Memory (OOM) killer to activate and terminate random userspace processes possibly making the system inoperable. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14314 | A memory out-of-bounds read flaw was found in the Linux kernel before 5.9-rc2 with the ext3/ext4 file system in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14331 | A flaw was found in the Linux kernel’s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console calling an ioctl VT_RESIZE which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14342 | It was found that cifs-utils' mount.cifs was invoking a shell when requesting the Samba password which could be used to inject arbitrary commands. An attacker able to invoke mount.cifs with special permission such as via sudo rules could use this flaw to escalate their privileges. | 2020-09-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-14376 | A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A lack of bounds checking when copying iv_data from the VM guest memory into host memory can lead to a large buffer overflow. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-09-02T00:00:00.000Z | 2025-09-03T22:40:46.000Z |
| msrc_cve-2020-14378 | An integer underflow in dpdk versions before 18.11.10 and before 19.11.5 in the `move_desc` function can lead to large amounts of CPU cycles being eaten up in a long running loop. An attacker could cause `move_desc` to get stuck in a 4,294,967,295-count iteration loop. Depending on how `vhost_crypto` is being used this could prevent other VMs or network tasks from being serviced by the busy DPDK lcore for an extended period. | 2020-09-02T00:00:00.000Z | 2025-09-03T20:28:35.000Z |
| msrc_cve-2020-14385 | A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown or otherwise rendered inaccessible until it is remounted leading to a denial of service. The highest threat from this vulnerability is to system availability. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14386 | A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-14390 | A flaw was found in the Linux kernel in versions before 5.9-rc6. When changing screen size an out-of-bounds memory write can occur leading to memory corruption or a denial of service. Due to the nature of the flaw privilege escalation cannot be fully ruled out. | 2020-09-02T00:00:00.000Z | 2020-09-30T00:00:00.000Z |
| msrc_cve-2020-24553 | Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header. | 2020-09-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-24659 | An issue was discovered in GnuTLS before 3.6.15. A server can trigger a NULL pointer dereference in a TLS 1.3 client if a no_renegotiation alert is sent with unexpected timing and then an invalid second handshake occurs. The crash happens in the application's error handling path where the gnutls_deinit function is called after detecting a handshake failure. | 2020-09-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-24977 | GNOME project libxml2 v2.9.10 has a global buffer over-read vulnerability in xmlEncodeEntitiesInternal at libxml2/entities.c. The issue has been fixed in commit 50f06b3e. | 2020-09-02T00:00:00.000Z | 2020-09-11T00:00:00.000Z |
| msrc_cve-2020-24978 | In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7. | 2020-09-02T00:00:00.000Z | 2025-09-03T23:25:22.000Z |
| msrc_cve-2020-25211 | In the Linux kernel through 5.8.7 local attackers able to inject conntrack netlink configuration could overflow a local buffer causing crashes or triggering use of incorrect protocol numbers in ctnetlink_parse_tuple_filter in net/netfilter/nf_conntrack_netlink.c aka CID-1cc5ef91d2ff. | 2020-09-02T00:00:00.000Z | 2020-09-17T00:00:00.000Z |
| msrc_cve-2020-25212 | A TOCTOU mismatch in the NFS client code in the Linux kernel before 5.8.3 could be used by local attackers to corrupt memory or possibly have unspecified other impact because a size check is in fs/nfs/nfs4proc.c instead of fs/nfs/nfs4xdr.c aka CID-b4487b935452. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25219 | url::recvline in url.cpp in libproxy 0.4.x through 0.4.15 allows a remote HTTP server to trigger uncontrolled recursion via a response composed of an infinite stream that lacks a newline character. This leads to stack exhaustion. | 2020-09-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-25284 | The rbd block device driver in drivers/block/rbd.c in the Linux kernel through 5.8.9 used incomplete permission checking for access to rbd devices which could be leveraged by local attackers to map or unmap rbd block devices aka CID-f44d04e696fe. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25285 | A race condition between hugetlb sysctl handlers in mm/hugetlb.c in the Linux kernel before 5.8.8 could be used by local attackers to corrupt memory cause a NULL pointer dereference or possibly have unspecified other impact aka CID-17743798d812. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25576 | An issue was discovered in the rand_core crate before 0.4.2 for Rust. Casting of byte slices to integer slices mishandles alignment constraints. | 2020-09-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-25791 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with unit(). | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25792 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with pair(). | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25793 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation the array size is not checked when constructed with From<InlineArray<A T>>. | 2020-09-02T00:00:00.000Z | 2020-09-26T00:00:00.000Z |
| msrc_cve-2020-25794 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation clone can have a memory-safety issue upon a panic. | 2020-09-02T00:00:00.000Z | 2020-09-25T00:00:00.000Z |
| msrc_cve-2020-25795 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the Chunk implementation insert_from can have a memory-safety issue upon a panic. | 2020-09-02T00:00:00.000Z | 2020-09-26T00:00:00.000Z |
| msrc_cve-2020-25796 | An issue was discovered in the sized-chunks crate through 0.6.2 for Rust. In the InlineArray implementation an unaligned reference may be generated for a type that has a large alignment requirement. | 2020-09-02T00:00:00.000Z | 2020-09-26T00:00:00.000Z |
| msrc_cve-2020-26088 | A missing CAP_NET_RAW check in NFC socket creation in net/nfc/rawsock.c in the Linux kernel before 5.8.2 could be used by local attackers to create raw sockets bypassing security mechanisms aka CID-26896f01467a. | 2020-09-02T00:00:00.000Z | 2020-10-07T00:00:00.000Z |
| msrc_cve-2020-26116 | http.client in Python 3.x before 3.5.10 3.6.x before 3.6.12 3.7.x before 3.7.9 and 3.8.x before 3.8.5 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of HTTPConnection.request. | 2020-09-02T00:00:00.000Z | 2020-11-10T00:00:00.000Z |
| msrc_cve-2020-26137 | urllib3 before 1.25.9 allows CRLF injection if the attacker controls the HTTP request method as demonstrated by inserting CR and LF control characters in the first argument of putrequest(). NOTE: this is similar to CVE-2020-26116. | 2020-09-02T00:00:00.000Z | 2020-12-21T00:00:00.000Z |
| msrc_cve-2020-26154 | url.cpp in libproxy through 0.4.15 is prone to a buffer overflow when PAC is enabled as demonstrated by a large PAC file that is delivered without a Content-length header. | 2020-09-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201304-0569 | RuggedCom Inc is the world's leading manufacturer of high-performance network and communi… | 2022-05-04T09:12:35.032000Z |
| var-201211-0604 | NETGEAR NTV300 (NeoTV) is a set-top box device. By default, NETGEAR NTV300 (NeoTV) has a … | 2022-05-04T09:12:40.205000Z |
| var-201106-0304 | Siemens SIMATIC S7 series PLC Used in various industrial fields, including energy, water … | 2022-05-04T09:12:55.323000Z |
| var-201009-0323 | A Built-in database used by JP1/Automatic Job Management System 3 (JP1/AJS3) - Manager an… | 2022-05-04T09:13:06.548000Z |
| var-200310-0017 | Buffer overflow in the portmapper service (PMAP.NLM) in Novell NetWare 6 SP3 and ZenWorks… | 2022-05-04T09:14:51.445000Z |
| var-202112-1084 | H3C GR1108-P is a new generation of high-performance enterprise-class router launched by … | 2022-05-04T09:15:11.001000Z |
| var-202109-1973 | Huawei SVN2230 is a VPN gateway. Huawei SVN2230 has a weak password vulnerability, wh… | 2022-05-04T09:15:17.701000Z |
| var-202108-2571 | Established in 1995, TOPSEC Technology Group is the first domestic network security compa… | 2022-05-04T09:15:18.823000Z |
| var-202108-2550 | AXIS 241SA is a network video server of Axis Communications AB. Axis Communications A… | 2022-05-04T09:15:18.833000Z |
| var-202108-2529 | GS724Tv4 is a 24-port Gigabit intelligent management professional switch with 2 SFP ports… | 2022-05-04T09:15:18.844000Z |
| var-202108-2508 | Ricoh (China) Investment Co., Ltd. provides office image processing equipment (such as MF… | 2022-05-04T09:15:18.860000Z |
| var-202108-2487 | Axis is an IT company that specializes in providing network video solutions. AXIS P12… | 2022-05-04T09:15:18.871000Z |
| var-202108-2466 | CLX-9201 is a color copier from Samsung (China) Investment Co., Ltd. Samsung (China) … | 2022-05-04T09:15:18.882000Z |
| var-202108-2445 | M4080FX is an all-in-one printer of Samsung (China) Investment Co., Ltd. Samsung (Chi… | 2022-05-04T09:15:18.894000Z |
| var-202108-2405 | Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… | 2022-05-04T09:15:18.903000Z |
| var-202108-2384 | Fuji Xerox (China) Co., Ltd. was established on January 3, 1995. It is a wholly-owned hol… | 2022-05-04T09:15:18.913000Z |
| var-202108-2363 | Hewlett-Packard Trading (Shanghai) Co., Ltd. is a company whose business scope includes c… | 2022-05-04T09:15:18.924000Z |
| var-202108-2342 | Hewlett-Packard (Hewlett-Packard, referred to as HP) is one of the information technology… | 2022-05-04T09:15:18.940000Z |
| var-202108-2321 | Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating indepe… | 2022-05-04T09:15:18.952000Z |
| var-202108-2300 | The CDAsp component of the PKS system software provides network services based on the con… | 2022-05-04T09:15:18.963000Z |
| var-202107-1912 | Omron Automation (China) Co., Ltd. is a multinational company that leads industrial autom… | 2022-05-04T09:15:23.264000Z |
| var-202107-1891 | Axis is an IT company that specializes in providing network video solutions. AXIS M10… | 2022-05-04T09:15:23.275000Z |
| var-202107-1870 | Axis is an IT company that specializes in providing network video solutions. Axis 212… | 2022-05-04T09:15:23.287000Z |
| var-202107-1849 | Axis is an IT company that specializes in providing network video solutions. Axis 205… | 2022-05-04T09:15:23.302000Z |
| var-202107-1828 | General Mobile is a Turkish smartphone manufacturer. General Mobile GM9 Pro has an in… | 2022-05-04T09:15:23.313000Z |
| var-202107-1807 | Shenzhen Jixiang Tengda Technology Co., Ltd. is a high-tech enterprise integrating indepe… | 2022-05-04T09:15:23.326000Z |
| var-202107-1786 | Founded in 1987, Huawei Technologies Co., Ltd. is the world's leading provider of ICT (in… | 2022-05-04T09:15:23.336000Z |
| var-202107-1765 | SP 320DN, SP 325DNw, SP 320SN, etc. are all-in-one printers, using RTOS operating system.… | 2022-05-04T09:15:23.347000Z |
| var-202107-1744 | Axis 210A is a network camera of Axis Communications AB. Axis Communications AB 210A … | 2022-05-04T09:15:23.358000Z |
| var-202107-1723 | TOTOLINK is a brand owned by Zeon Electronics (Shenzhen) Co., Ltd. Founded in 1999, it is… | 2022-05-04T09:15:23.372000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2011-000082 | WEB FORUM vulnerable to cross-site scripting | 2011-10-11T19:28+09:00 | 2011-10-25T13:46+09:00 |
| jvndb-2011-000083 | Plume vulnerable to cross-site scripting | 2011-10-13T18:38+09:00 | 2011-10-13T18:38+09:00 |
| jvndb-2011-000084 | Pligg vulnerable to cross-site scripting | 2011-10-13T18:56+09:00 | 2011-10-13T18:56+09:00 |
| jvndb-2011-000085 | DAEMON Tools vulnerable to denial-of-service | 2011-10-13T18:58+09:00 | 2011-10-13T18:58+09:00 |
| jvndb-2011-000086 | DBD::mysqlPP vulnerable to SQL injection | 2011-10-14T17:50+09:00 | 2011-10-14T17:50+09:00 |
| jvndb-2011-000087 | EC-CUBE vulnerable to SQL injection | 2011-10-14T17:53+09:00 | 2011-10-14T17:53+09:00 |
| jvndb-2011-000088 | Safari for iOS vulnerable to cross-site scripting | 2011-10-17T18:56+09:00 | 2012-08-07T12:11+09:00 |
| jvndb-2011-000091 | FFFTP may insecurely load executable files | 2011-10-28T17:39+09:00 | 2011-10-28T17:39+09:00 |
| jvndb-2011-000092 | Multiple D-Link products vulnerable to buffer overflow | 2011-10-28T17:42+09:00 | 2011-10-28T17:42+09:00 |
| jvndb-2011-000089 | Touhou Hisouten vulnerable to denial-of-service | 2011-10-28T17:49+09:00 | 2011-10-28T17:49+09:00 |
| jvndb-2011-000093 | Multiple SKYARC System Co., Ltd. products fail to restrict access permissions | 2011-10-31T17:54+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000094 | Multiple SKYARC System Co., Ltd. products vulnerable to cross-site request forgery | 2011-10-31T18:03+09:00 | 2011-11-08T17:38+09:00 |
| jvndb-2011-000095 | CSWorks LiveData Service vulnerable to denial-of-service (DoS) | 2011-11-01T16:05+09:00 | 2011-11-02T14:42+09:00 |
| jvndb-2011-000096 | Opengear console servers vulnerable to authentication bypass | 2011-11-04T17:34+09:00 | 2011-11-04T17:34+09:00 |
| jvndb-2011-000097 | WebObjects vulnerable to cross-site scripting | 2011-11-04T17:36+09:00 | 2011-11-04T17:36+09:00 |
| jvndb-2011-000098 | Iwate Portal Bar vulnerable to arbitrary script execution | 2011-11-08T18:25+09:00 | 2011-11-08T18:25+09:00 |
| jvndb-2011-000099 | ChaSen vulnerable to buffer overflow | 2011-11-08T18:31+09:00 | 2011-12-20T18:13+09:00 |
| jvndb-2011-000075 | Nikki vulnerable to directory traversal | 2011-11-21T18:22+09:00 | 2011-11-21T18:22+09:00 |
| jvndb-2011-000076 | Nikki vulnerable to OS command injection | 2011-11-21T18:23+09:00 | 2011-11-21T18:23+09:00 |
| jvndb-2011-000100 | PowerChute Business Edition vulnerable to cross-site scripting | 2011-12-06T16:49+09:00 | 2011-12-06T16:49+09:00 |
| jvndb-2011-000101 | Etomite vulnerable to cross-site scripting | 2011-12-06T17:45+09:00 | 2011-12-06T17:45+09:00 |
| jvndb-2011-000103 | phpWebSite vulnerable to cross-site scripting | 2011-12-08T17:15+09:00 | 2011-12-08T17:15+09:00 |
| jvndb-2011-000104 | FFFTP may insecurely load executable files | 2011-12-09T17:08+09:00 | 2011-12-09T17:08+09:00 |
| jvndb-2011-000102 | Multiple vulnerabilities in products that use the Preboot Execution Environment (PXE) SDK | 2011-12-15T16:26+09:00 | 2011-12-20T18:14+09:00 |
| jvndb-2011-000105 | Safari for iOS vulnerable to denial-of-service | 2011-12-15T16:30+09:00 | 2011-12-15T16:30+09:00 |
| jvndb-2011-000106 | Apache Struts vulnerable to cross-site scripting | 2011-12-22T18:08+09:00 | 2011-12-22T18:08+09:00 |
| jvndb-2011-000107 | PukiWiki Plus! vulnerable to cross-site scripting | 2011-12-22T18:16+09:00 | 2011-12-22T18:16+09:00 |
| jvndb-2011-000110 | WordPress Japanese vulnerable to cross-site scripting | 2011-12-26T14:26+09:00 | 2011-12-26T14:26+09:00 |
| jvndb-2011-000109 | WordPress vulnerable to arbitrary PHP code execution | 2011-12-26T14:28+09:00 | 2011-12-26T14:28+09:00 |
| jvndb-2011-000108 | Movable Type Plugin MailForm vulnerable to cross-site scripting | 2011-12-26T14:49+09:00 | 2011-12-26T14:49+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2016:0600-1 | Security update for rubygem-activesupport-4_1 | 2016-02-26T15:08:46Z | 2016-02-26T15:08:46Z |
| suse-su-2016:0621-1 | Security update for openssl | 2016-03-01T13:29:20Z | 2016-03-01T13:29:20Z |
| suse-su-2016:0617-1 | Security update for openssl | 2016-03-01T13:29:49Z | 2016-03-01T13:29:49Z |
| suse-su-2016:0620-1 | Security update for openssl | 2016-03-01T13:48:37Z | 2016-03-01T13:48:37Z |
| suse-su-2016:0622-1 | Security update for libssh | 2016-03-01T13:49:50Z | 2016-03-01T13:49:50Z |
| suse-su-2016:0618-1 | Security update for rubygem-actionpack-3_2 | 2016-03-01T13:50:54Z | 2016-03-01T13:50:54Z |
| suse-su-2016:0623-1 | Security update for rubygem-activesupport-3_2 | 2016-03-01T13:52:03Z | 2016-03-01T13:52:03Z |
| suse-su-2016:0619-1 | Security update for rubygem-activerecord-3_2 | 2016-03-01T13:53:09Z | 2016-03-01T13:53:09Z |
| suse-su-2016:0624-1 | Security update for openssl | 2016-03-01T15:06:49Z | 2016-03-01T15:06:49Z |
| suse-su-2016:0625-1 | Security update for libssh | 2016-03-01T15:49:06Z | 2016-03-01T15:49:06Z |
| suse-su-2016:0631-1 | Security update for compat-openssl097g | 2016-03-02T13:24:49Z | 2016-03-02T13:24:49Z |
| suse-su-2016:0636-1 | Security update for java-1_7_0-ibm | 2016-03-02T18:02:18Z | 2016-03-02T18:02:18Z |
| suse-su-2016:0641-1 | Security update for openssl | 2016-03-03T11:02:43Z | 2016-03-03T11:02:43Z |
| suse-su-2016:0677-1 | Security update for postgresql94 | 2016-03-07T14:09:05Z | 2016-03-07T14:09:05Z |
| suse-su-2016:0700-1 | Security update for bsh2 | 2016-03-09T08:03:33Z | 2016-03-09T08:03:33Z |
| suse-su-2016:0699-1 | Security update for bsh2 | 2016-03-09T08:03:57Z | 2016-03-09T08:03:57Z |
| suse-su-2016:0707-1 | Security update for libotr | 2016-03-09T18:01:45Z | 2016-03-09T18:01:45Z |
| suse-su-2016:0706-1 | Security update for libotr | 2016-03-09T18:06:39Z | 2016-03-09T18:06:39Z |
| suse-su-2016:0716-1 | Security update for flash-player | 2016-03-11T09:04:23Z | 2016-03-11T09:04:23Z |
| suse-su-2016:0715-1 | Security update for flash-player | 2016-03-11T09:04:38Z | 2016-03-11T09:04:38Z |
| suse-su-2016:0718-1 | Security update for libssh2_org | 2016-03-11T09:18:12Z | 2016-03-11T09:18:12Z |
| suse-su-2016:0723-1 | Security update for libssh2_org | 2016-03-11T10:18:54Z | 2016-03-11T10:18:54Z |
| suse-su-2016:0727-1 | Security update for MozillaFirefox, mozilla-nspr, mozilla-nss | 2016-03-11T15:25:25Z | 2016-03-11T15:25:25Z |
| suse-su-2016:0739-1 | Security update for openstack-trove | 2016-03-14T10:34:41Z | 2016-03-14T10:34:41Z |
| suse-su-2016:0745-1 | Security update for kernel live patch 3 | 2016-03-14T13:29:48Z | 2016-03-14T13:29:48Z |
| suse-su-2016:0746-1 | Security update for kernel live patch 4 | 2016-03-14T13:29:56Z | 2016-03-14T13:29:56Z |
| suse-su-2016:0750-1 | Security update for kernel live patch 5 | 2016-03-14T13:30:05Z | 2016-03-14T13:30:05Z |
| suse-su-2016:0753-1 | Security update for kernel live patch 6 | 2016-03-14T13:30:12Z | 2016-03-14T13:30:12Z |
| suse-su-2016:0756-1 | Security update for kernel live patch 7 | 2016-03-14T13:30:20Z | 2016-03-14T13:30:20Z |
| suse-su-2016:0757-1 | Security update for kernel live patch 8 | 2016-03-14T13:30:27Z | 2016-03-14T13:30:27Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:2145-1 | Security update for python-Werkzeug | 2019-09-17T12:19:59Z | 2019-09-17T12:19:59Z |
| opensuse-su-2019:2149-1 | Security update for curl | 2019-09-17T18:18:30Z | 2019-09-17T18:18:30Z |
| opensuse-su-2019:2152-1 | Security update for chromium | 2019-09-19T05:36:39Z | 2019-09-19T05:36:39Z |
| opensuse-su-2019:2153-1 | Security update for chromium | 2019-09-19T05:37:19Z | 2019-09-19T05:37:19Z |
| opensuse-su-2019:2154-1 | Security update for opera | 2019-09-19T12:36:22Z | 2019-09-19T12:36:22Z |
| opensuse-su-2019:2155-1 | Security update for chromium | 2019-09-20T08:46:30Z | 2019-09-20T08:46:30Z |
| opensuse-su-2019:2156-1 | Security update for chromium | 2019-09-20T08:46:46Z | 2019-09-20T08:46:46Z |
| opensuse-su-2019:2157-1 | Security update for openldap2 | 2019-09-23T18:19:38Z | 2019-09-23T18:19:38Z |
| opensuse-su-2019:2158-1 | Security update for openssl-1_1 | 2019-09-23T22:20:10Z | 2019-09-23T22:20:10Z |
| opensuse-su-2019:2159-1 | Security update for skopeo | 2019-09-24T08:16:02Z | 2019-09-24T08:16:02Z |
| opensuse-su-2019:2160-1 | Security update for ghostscript | 2019-09-24T08:16:12Z | 2019-09-24T08:16:12Z |
| opensuse-su-2019:2161-1 | Security update for libgcrypt | 2019-09-24T08:16:21Z | 2019-09-24T08:16:21Z |
| opensuse-su-2019:2169-1 | Security update for curl | 2019-09-24T08:18:09Z | 2019-09-24T08:18:09Z |
| opensuse-su-2019:2173-1 | Security update for the Linux Kernel | 2019-09-24T08:19:55Z | 2019-09-24T08:19:55Z |
| opensuse-su-2019:2174-1 | Security update for ibus | 2019-09-24T08:20:15Z | 2019-09-24T08:20:15Z |
| opensuse-su-2019:2175-1 | Security update for util-linux and shadow | 2019-09-24T08:20:26Z | 2019-09-24T08:20:26Z |
| opensuse-su-2019:2176-1 | Security update for openldap2 | 2019-09-24T08:20:38Z | 2019-09-24T08:20:38Z |
| opensuse-su-2019:2177-1 | Security update for fish3 | 2019-09-24T10:13:43Z | 2019-09-24T10:13:43Z |
| opensuse-su-2019:2178-1 | Security update for bird | 2019-09-24T10:13:50Z | 2019-09-24T10:13:50Z |
| opensuse-su-2019:2180-1 | Security update for bird | 2019-09-24T15:27:23Z | 2019-09-24T15:27:23Z |
| opensuse-su-2019:2181-1 | Security update for the Linux Kernel | 2019-09-24T16:41:18Z | 2019-09-24T16:41:18Z |
| opensuse-su-2019:2183-1 | Security update for libreoffice | 2019-09-25T04:18:05Z | 2019-09-25T04:18:05Z |
| opensuse-su-2019:2184-1 | Security update for varnish | 2019-09-25T08:18:43Z | 2019-09-25T08:18:43Z |
| opensuse-su-2019:2185-1 | Security update for links | 2019-09-25T08:19:05Z | 2019-09-25T08:19:05Z |
| opensuse-su-2019:2186-1 | Security update for chromium | 2019-09-25T08:19:49Z | 2019-09-25T08:19:49Z |
| opensuse-su-2019:2188-1 | Security update for fish3 | 2019-09-25T10:20:36Z | 2019-09-25T10:20:36Z |
| opensuse-su-2019:2189-1 | Security update for openssl-1_1 | 2019-09-25T10:20:42Z | 2019-09-25T10:20:42Z |
| opensuse-su-2019:2198-1 | Security update for nmap | 2019-09-26T04:19:00Z | 2019-09-26T04:19:00Z |
| opensuse-su-2019:2199-1 | Security update for ibus | 2019-09-26T04:19:10Z | 2019-09-26T04:19:10Z |
| opensuse-su-2019:2200-1 | Security update for nmap | 2019-09-26T04:19:17Z | 2019-09-26T04:19:17Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00614 | Libevent存在多个堆缓冲区溢出漏洞 | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00615 | Cpio符号链接目录遍历漏洞 | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00616 | Google Chrome拒绝服务漏洞(CNVD-2015-00616) | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00617 | Google Chrome SSL证书验证漏洞 | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00618 | Google Chrome存在未明漏洞(CNVD-2015-00618) | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00619 | Google Chrome存在未明漏洞(CNVD-2015-00619) | 2015-01-23 | 2015-01-26 |
| cnvd-2015-00650 | CAS Server LDAP身份验证绕过漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00654 | MediaWiki Hovercards扩展跨站脚本漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00657 | ADB P.DGA4001N路由器存在未明漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00658 | IBM BladeCenter SAS Connectivity Module和SAS RAID Module存在未明漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00659 | Pivotal Software RabbitMQ management插件跨站脚本漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00660 | F5 BIG-IP Application Security Manager跨站脚本漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00661 | Debian php5内存破坏漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00662 | b2evolution 'filemanager'跨站脚本漏洞 | 2015-01-23 | 2015-01-27 |
| cnvd-2015-00630 | KDE Plasma-Workspace安全绕过漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00631 | 多款KDE产品存在安全绕过漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00632 | Adobe Flash Player存在未明漏洞(CNVD-2015-00632) | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00633 | grep 'kwset.c'远程缓冲区溢出漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00634 | LabTech不安全文件权限漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00635 | JasPer 'jpc_qmfb.c'任意代码执行漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00636 | Apple Mac OS X IOBluetoothDevice本地权限提升漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00637 | Vorbis Tools整数溢出漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00638 | JasPer 'jpc_dec_process_sot()'远程堆缓冲区溢出漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00639 | Apple Mac OS X XPC类型混淆安全绕过漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00640 | NETIKUS.NET EventSentry跨站脚本漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00641 | SAP HANA Extended Application Services ABAP代码注入漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00651 | Vorbis Tools拒绝服务漏洞(CNVD-2015-00651) | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00652 | Vorbis Tools拒绝服务漏洞(CNVD-2015-00652) | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00653 | SmartCMS存在多个SQL注入漏洞 | 2015-01-26 | 2015-01-27 |
| cnvd-2015-00655 | ManageEngine ServiceDesk Plus 'CreateReportTable.jsp' SQL注入漏洞 | 2015-01-26 | 2015-01-27 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2003-avi-148 | Vulnérabilité dans Microsoft Access Snapshot Viewer | 2003-09-04T00:00:00.000000 | 2003-09-04T00:00:00.000000 |
| certa-2003-avi-149 | Vulnérabilités dans le service RPCSS sous Windows | 2003-09-11T00:00:00.000000 | 2003-09-17T00:00:00.000000 |
| certa-2003-avi-150 | Vulnérabilités du client de messagerie Pine | 2003-09-11T00:00:00.000000 | 2003-09-12T00:00:00.000000 |
| certa-2003-avi-151 | Vulnérabilité du serveur de base de données MySQL | 2003-09-16T00:00:00.000000 | 2003-10-10T00:00:00.000000 |
| certa-2003-avi-152 | Vulnérabilité du serveur OpenSSH | 2003-09-17T00:00:00.000000 | 2003-10-01T00:00:00.000000 |
| certa-2003-avi-153 | Vulnérabilités dans le serveur de messagerie Sendmail | 2003-09-19T00:00:00.000000 | 2004-01-21T00:00:00.000000 |
| certa-2003-avi-154 | Vulnérabilité dans lsh | 2003-09-22T00:00:00.000000 | 2003-10-02T00:00:00.000000 |
| certa-2003-avi-155 | Vulnérabilité de ProFTPD | 2003-09-26T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2003-avi-156 | Failles dans des implémentations de SSL/TLS | 2003-09-30T00:00:00.000000 | 2004-03-11T00:00:00.000000 |
| certa-2003-avi-157 | Vulnérabilité de DCE | 2003-10-03T00:00:00.000000 | 2003-10-03T00:00:00.000000 |
| certa-2003-avi-158 | Vulnérabilité dans les équipements NetScreen Firewall/VPN | 2003-10-07T00:00:00.000000 | 2003-10-07T00:00:00.000000 |
| certa-2003-avi-159 | Vulnérabilité de NFS sous SGI IRIX | 2003-10-07T00:00:00.000000 | 2003-10-07T00:00:00.000000 |
| certa-2003-avi-160 | Vulnérabilité des noyaux BSD dans la gestion du cache ARP | 2003-10-09T00:00:00.000000 | 2003-10-09T00:00:00.000000 |
| certa-2003-avi-161 | Vulnérabilité dans procfs et linprocfs sous FreeBSD | 2003-10-10T00:00:00.000000 | 2003-10-10T00:00:00.000000 |
| certa-2003-avi-162 | Vulnérabilités dans la fonction "readv" sous FreeBSD | 2003-10-10T00:00:00.000000 | 2003-10-17T00:00:00.000000 |
| certa-2003-avi-163 | Vulnérabilité de dtprintinfo sous HP-UX | 2003-10-13T00:00:00.000000 | 2003-10-13T00:00:00.000000 |
| certa-2003-avi-164 | Vulnérabilité dans Apache Tomcat 4.x | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-165 | Vulnérabilité de l'appel système sysinfo sous Solaris | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-166 | Vulnérabilité dans la vérification Authenticode | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-167 | Vulnérabilité dans l'aide à la résolution de problèmes sous windows 2000 | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-168 | Vulnérabilité dans Microsoft Messenger Service | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-169 | Vulnérabilité dans le protocole "Help and Support Center" de Microsoft | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-170 | Vulnérabilité dans les contrôles ListBox et ComboBox | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-171 | Vulnérabilité dans Exchange Server | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-172 | Vulnérabilité de Microsoft Exchange Server Outlook Web Access | 2003-10-16T00:00:00.000000 | 2003-10-16T00:00:00.000000 |
| certa-2003-avi-173 | Vulnérabilité du navigateur et du client de messagerie Opera | 2003-10-27T00:00:00.000000 | 2003-11-21T00:00:00.000000 |
| certa-2003-avi-174 | Déni de service dans GDM | 2003-10-27T00:00:00.000000 | 2003-10-27T00:00:00.000000 |
| certa-2003-avi-175 | Vulnérabilité de la Machine Virtuelle Java de Sun | 2003-10-29T00:00:00.000000 | 2003-11-07T00:00:00.000000 |
| certa-2003-avi-176 | Vulnérabilité du serveur NFS sous Solaris | 2003-10-30T00:00:00.000000 | 2003-10-30T00:00:00.000000 |
| certa-2003-avi-177 | Vulnérabilités du serveur HTTP Apache | 2003-10-30T00:00:00.000000 | 2004-02-23T00:00:00.000000 |