Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-71134 |
N/A
|
mm/page_alloc: change all pageblocks migrate type on c… |
Linux |
Linux |
2026-01-14T15:07:49.200Z | 2026-01-14T15:07:49.200Z |
| CVE-2025-71133 |
N/A
|
RDMA/irdma: avoid invalid read in irdma_net_event |
Linux |
Linux |
2026-01-14T15:07:48.524Z | 2026-01-14T15:07:48.524Z |
| CVE-2025-71132 |
N/A
|
smc91x: fix broken irq-context in PREEMPT_RT |
Linux |
Linux |
2026-01-14T15:07:47.860Z | 2026-01-14T15:07:47.860Z |
| CVE-2025-71131 |
N/A
|
crypto: seqiv - Do not use req->iv after crypto_aead_encrypt |
Linux |
Linux |
2026-01-14T15:07:47.194Z | 2026-01-14T15:07:47.194Z |
| CVE-2025-71130 |
N/A
|
drm/i915/gem: Zero-initialize the eb.vma array in i915… |
Linux |
Linux |
2026-01-14T15:07:46.508Z | 2026-01-14T15:07:46.508Z |
| CVE-2025-71129 |
N/A
|
LoongArch: BPF: Sign extend kfunc call arguments |
Linux |
Linux |
2026-01-14T15:07:45.786Z | 2026-01-14T15:07:45.786Z |
| CVE-2025-71128 |
N/A
|
erspan: Initialize options_len before referencing options. |
Linux |
Linux |
2026-01-14T15:07:44.941Z | 2026-01-14T15:07:44.941Z |
| CVE-2025-71127 |
N/A
|
wifi: mac80211: Discard Beacon frames to non-broadcast… |
Linux |
Linux |
2026-01-14T15:07:44.218Z | 2026-01-14T15:07:44.218Z |
| CVE-2022-50894 |
7.1 (4.0)
9.8 (3.1)
|
VIAVIWEB Wallpaper Admin 1.0 SQL Injection via edit_ga… |
VIAVIWEB |
VIAVIWEB Wallpaper Admin |
2026-01-13T22:56:20.742Z | 2026-01-14T15:07:27.174Z |
| CVE-2025-71126 |
N/A
|
mptcp: avoid deadlock on fallback while reinjecting |
Linux |
Linux |
2026-01-14T15:06:11.417Z | 2026-01-14T15:06:11.417Z |
| CVE-2025-71125 |
N/A
|
tracing: Do not register unsupported perf events |
Linux |
Linux |
2026-01-14T15:06:10.662Z | 2026-01-14T15:06:10.662Z |
| CVE-2025-71124 |
N/A
|
drm/msm/a6xx: move preempt_prepare_postamble after err… |
Linux |
Linux |
2026-01-14T15:06:09.927Z | 2026-01-14T15:06:09.927Z |
| CVE-2025-71123 |
N/A
|
ext4: fix string copying in parse_apply_sb_mount_options() |
Linux |
Linux |
2026-01-14T15:06:09.246Z | 2026-01-14T15:06:09.246Z |
| CVE-2025-71122 |
N/A
|
iommufd/selftest: Check for overflow in IOMMU_TEST_OP_… |
Linux |
Linux |
2026-01-14T15:06:08.556Z | 2026-01-14T15:06:08.556Z |
| CVE-2025-71121 |
N/A
|
parisc: Do not reprogram affinitiy on ASP chip |
Linux |
Linux |
2026-01-14T15:06:07.871Z | 2026-01-14T15:06:07.871Z |
| CVE-2025-71120 |
N/A
|
SUNRPC: svcauth_gss: avoid NULL deref on zero length g… |
Linux |
Linux |
2026-01-14T15:06:07.194Z | 2026-01-14T15:06:07.194Z |
| CVE-2025-71119 |
N/A
|
powerpc/kexec: Enable SMT before waking offline CPUs |
Linux |
Linux |
2026-01-14T15:06:06.536Z | 2026-01-14T15:06:06.536Z |
| CVE-2025-71118 |
N/A
|
ACPICA: Avoid walking the Namespace if start_node is NULL |
Linux |
Linux |
2026-01-14T15:06:05.861Z | 2026-01-14T15:06:05.861Z |
| CVE-2025-71117 |
N/A
|
block: Remove queue freezing from several sysfs store … |
Linux |
Linux |
2026-01-14T15:06:05.161Z | 2026-01-14T15:06:05.161Z |
| CVE-2025-71116 |
N/A
|
libceph: make decode_pool() more resilient against cor… |
Linux |
Linux |
2026-01-14T15:06:04.476Z | 2026-01-14T15:06:04.476Z |
| CVE-2025-71115 |
N/A
|
um: init cpu_tasks[] earlier |
Linux |
Linux |
2026-01-14T15:06:02.428Z | 2026-01-14T15:06:02.428Z |
| CVE-2025-71114 |
N/A
|
via_wdt: fix critical boot hang due to unnamed resourc… |
Linux |
Linux |
2026-01-14T15:06:00.848Z | 2026-01-14T15:06:00.848Z |
| CVE-2025-71113 |
N/A
|
crypto: af_alg - zero initialize memory allocated via … |
Linux |
Linux |
2026-01-14T15:05:59.992Z | 2026-01-14T15:05:59.992Z |
| CVE-2025-71112 |
N/A
|
net: hns3: add VLAN id validation before using |
Linux |
Linux |
2026-01-14T15:05:59.308Z | 2026-01-14T15:05:59.308Z |
| CVE-2025-71111 |
N/A
|
hwmon: (w83791d) Convert macros to functions to avoid TOCTOU |
Linux |
Linux |
2026-01-14T15:05:58.649Z | 2026-01-14T15:05:58.649Z |
| CVE-2025-71110 |
N/A
|
mm/slub: reset KASAN tag in defer_free() before access… |
Linux |
Linux |
2026-01-14T15:05:57.952Z | 2026-01-14T15:05:57.952Z |
| CVE-2025-71109 |
N/A
|
MIPS: ftrace: Fix memory corruption when kernel is loc… |
Linux |
Linux |
2026-01-14T15:05:57.236Z | 2026-01-14T15:05:57.236Z |
| CVE-2025-71108 |
N/A
|
usb: typec: ucsi: Handle incorrect num_connectors capability |
Linux |
Linux |
2026-01-14T15:05:56.553Z | 2026-01-14T15:05:56.553Z |
| CVE-2025-71107 |
N/A
|
f2fs: ensure node page reads complete before f2fs_put_… |
Linux |
Linux |
2026-01-14T15:05:55.878Z | 2026-01-14T15:05:55.878Z |
| CVE-2025-71106 |
N/A
|
fs: PM: Fix reverse check in filesystems_freeze_callback() |
Linux |
Linux |
2026-01-14T15:05:55.192Z | 2026-01-14T15:05:55.192Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66049 |
8.7 (4.0)
|
Unprotected RTSP stream in Vivotek IP7137 cameras |
Vivotek |
IP7137 |
2026-01-09T11:53:41.060Z | 2026-01-09T16:22:19.535Z |
| CVE-2025-46286 |
4.3 (3.1)
|
A logic issue was addressed with improved validat… |
Apple |
iOS and iPadOS |
2026-01-09T21:14:39.092Z | 2026-01-09T21:34:49.689Z |
| CVE-2025-46297 |
5.5 (3.1)
|
A permissions issue was addressed with additional… |
Apple |
macOS |
2026-01-09T21:18:39.834Z | 2026-01-12T16:24:06.174Z |
| CVE-2025-62235 |
N/A
|
Apache Mynewt NimBLE: Incorrect handling of SMP Securi… |
Apache Software Foundation |
Apache Mynewt NimBLE |
2026-01-10T09:42:30.446Z | 2026-01-12T16:45:27.886Z |
| CVE-2025-0926 |
5.9 (3.1)
|
Gee-netics, member of AXIS Camera Station Pro Bug… |
Axis Communications AB |
AXIS Camera Station Pro |
2025-04-23T05:22:03.489Z | 2025-04-23T13:08:49.871Z |
| CVE-2025-46298 |
6.5 (3.1)
|
The issue was addressed with improved memory hand… |
Apple |
tvOS |
2026-01-09T21:16:30.193Z | 2026-01-12T16:24:12.312Z |
| CVE-2025-46299 |
4.3 (3.1)
|
A memory initialization issue was addressed with … |
Apple |
tvOS |
2026-01-09T21:15:50.158Z | 2026-01-09T22:03:08.142Z |
| CVE-2025-9614 |
6.5 (3.1)
|
CVE-2025-9614 |
PCI-SIG |
PCI Express Integrity and Data Encryption (PCIe IDE) Specification |
2025-12-09T18:48:36.950Z | 2025-12-10T20:09:20.429Z |
| CVE-2025-9613 |
6.5 (3.1)
|
CVE-2025-9613 |
PCI-SIG |
PCI Express Integrity and Data Encryption (PCIe IDE) Specification |
2025-12-09T18:52:02.956Z | 2025-12-10T17:04:11.448Z |
| CVE-2025-9612 |
5.1 (3.1)
|
CVE-2025-9612 |
PCI-SIG |
PCI Express Integrity and Data Encryption (PCIe IDE) Specification |
2025-12-09T18:44:59.620Z | 2025-12-11T14:57:09.949Z |
| CVE-2025-1056 |
6.1 (3.1)
|
Gee-netics, member of AXIS Camera Station Pro Bug… |
Axis Communications AB |
AXIS Camera Station Pro |
2025-04-23T05:18:10.120Z | 2025-04-23T13:09:33.255Z |
| CVE-2025-53477 |
N/A
|
Apache Mynewt NimBLE: NULL Pointer Dereference in NimB… |
Apache Software Foundation |
Apache Mynewt NimBLE |
2026-01-10T09:45:27.630Z | 2026-01-12T16:54:48.496Z |
| CVE-2025-53470 |
N/A
|
Apache Mynewt NimBLE: Out-of-Bounds Write Vulnerabilit… |
Apache Software Foundation |
Apache Mynewt NimBLE |
2026-01-10T09:46:35.789Z | 2026-01-12T19:12:52.715Z |
| CVE-2025-46687 |
5.6 (3.1)
|
quickjs-ng through 0.9.0 has a missing length che… |
QuickJS Project |
QuickJS |
2025-04-27T00:00:00.000Z | 2025-04-28T16:19:35.018Z |
| CVE-2023-3604 |
7.5 (3.1)
|
Change WP Admin < 1.1.4 - Secret Login Page Disclosure |
Unknown |
Change WP Admin Login |
2023-08-21T12:29:51.285Z | 2024-10-02T17:41:31.835Z |
| CVE-2023-0274 |
N/A
|
URL Params < 2.5 - Contributor+ Stored XSS |
Unknown |
URL Params |
2023-08-16T11:03:26.919Z | 2024-10-08T19:08:53.579Z |
| CVE-2026-22787 |
8.7 (4.0)
|
html2pdf.js has a cross-site scripting vulnerability |
eKoopmans |
html2pdf.js |
2026-01-14T16:52:38.372Z | 2026-01-14T21:02:52.822Z |
| CVE-2026-22779 |
6.3 (4.0)
|
BlackSheep ClientSession is vulnerable to CRLF injection |
Neoteroi |
BlackSheep |
2026-01-14T16:49:34.202Z | 2026-01-14T21:01:52.743Z |
| CVE-2026-22708 |
7.2 (4.0)
|
Cursor has a Terminal Tool Allowlist Bypass via Enviro… |
cursor |
cursor |
2026-01-14T16:43:54.000Z | 2026-01-14T16:59:53.022Z |
| CVE-2026-22694 |
6.1 (3.1)
|
AliasVault is Missing Origin Validation in Android Pas… |
aliasvault |
aliasvault |
2026-01-14T16:32:36.007Z | 2026-01-14T16:59:24.012Z |
| CVE-2026-21889 |
2.3 (4.0)
|
Weblate leaks information via screenshots |
WeblateOrg |
weblate |
2026-01-14T16:28:30.208Z | 2026-01-14T16:58:35.235Z |
| CVE-2025-70968 |
9.8 (3.1)
|
FreeImage 3.18.0 contains a Use After Free in Plu… |
n/a |
n/a |
2026-01-14T00:00:00.000Z | 2026-01-14T16:31:37.711Z |
| CVE-2025-67399 |
4.6 (3.1)
|
An issue in AIRTH SMART HOME AQI MONITOR Bootload… |
n/a |
n/a |
2026-01-14T00:00:00.000Z | 2026-01-14T16:09:43.888Z |
| CVE-2025-64723 |
4.8 (4.0)
|
Arduino IDE for macOS has TCC Bypass via Dynamic Libra… |
arduino |
arduino-ide |
2025-12-18T15:15:15.883Z | 2026-01-14T16:41:03.867Z |
| CVE-2025-64710 |
5.3 (4.0)
|
Bitplatform Boilerplate has cross-site scripting vulne… |
bitfoundation |
bitplatform |
2025-11-13T01:40:55.653Z | 2026-01-14T16:36:25.003Z |
| CVE-2025-37185 |
5.5 (3.1)
|
Authenticated Stored Cross-Site Scripting Vulnerabilit… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:20:30.732Z | 2026-01-14T16:47:13.535Z |
| CVE-2025-37184 |
6.5 (3.1)
|
Unauthenticated Bypass Allows Multi-Factor Authenticat… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:19:45.879Z | 2026-01-14T16:46:09.552Z |
| CVE-2025-37183 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:18:14.058Z | 2026-01-14T16:44:25.188Z |
| CVE-2025-37182 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:17:12.170Z | 2026-01-14T16:40:21.747Z |
| CVE-2025-37181 |
7.2 (3.1)
|
Authenticated SQL Injection in EdgeConnect SD-WAN Orch… |
Hewlett Packard Enterprise (HPE) |
EdgeConnect SD-WAN Orchestrator |
2026-01-14T16:26:00.858Z | 2026-01-14T16:44:42.431Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-46299 | A memory initialization issue was addressed with improved memory handling. This issue is fixed in t… | 2026-01-09T22:15:59.797 | 2026-01-14T17:45:42.583 |
| fkie_cve-2025-9614 | An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification… | 2025-12-09T19:15:50.943 | 2026-01-14T17:44:00.217 |
| fkie_cve-2025-9613 | A vulnerability was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specif… | 2025-12-09T19:15:50.837 | 2026-01-14T17:43:52.943 |
| fkie_cve-2025-9612 | An issue was discovered in the PCI Express (PCIe) Integrity and Data Encryption (IDE) specification… | 2025-12-09T19:15:50.730 | 2026-01-14T17:43:47.990 |
| fkie_cve-2025-1056 | Gee-netics, member of AXIS Camera Station Pro Bug Bounty Program, has identified an issue with a sp… | 2025-04-23T06:15:46.573 | 2026-01-14T17:41:50.350 |
| fkie_cve-2025-53477 | NULL Pointer Dereference vulnerability in Apache Nimble. Missing validation of HCI connection comp… | 2026-01-10T10:15:50.660 | 2026-01-14T17:38:58.047 |
| fkie_cve-2025-53470 | Out-of-bounds Read vulnerability in Apache NimBLE HCI H4 driver. Specially crafted HCI event could… | 2026-01-10T10:15:50.493 | 2026-01-14T17:38:48.897 |
| fkie_cve-2025-46687 | quickjs-ng through 0.9.0 has a missing length check in JS_ReadString for a string, leading to a hea… | 2025-04-27T20:15:15.720 | 2026-01-14T17:30:17.067 |
| fkie_cve-2023-3604 | The Change WP Admin Login WordPress plugin before 1.1.4 discloses the URL of the hidden login page … | 2023-08-21T17:15:49.260 | 2026-01-14T17:20:02.453 |
| fkie_cve-2023-0274 | The URL Params WordPress plugin before 2.5 does not validate and escape some of its shortcode attri… | 2023-08-16T12:15:12.067 | 2026-01-14T17:19:44.310 |
| fkie_cve-2026-22787 | html2pdf.js converts any webpage or element into a printable PDF entirely client-side. Prior to 0.1… | 2026-01-14T17:16:09.290 | 2026-01-14T17:16:09.290 |
| fkie_cve-2026-22779 | BlackSheep is an asynchronous web framework to build event based web applications with Python. Prio… | 2026-01-14T17:16:09.150 | 2026-01-14T17:16:09.150 |
| fkie_cve-2026-22708 | Cursor is a code editor built for programming with AI. Prior to 2.3, hen the Cursor Agent is runnin… | 2026-01-14T17:16:08.980 | 2026-01-14T17:16:08.980 |
| fkie_cve-2026-22694 | AliasVault is a privacy-first password manager with built-in email aliasing. AliasVault Android ver… | 2026-01-14T17:16:08.810 | 2026-01-14T17:16:08.810 |
| fkie_cve-2026-21889 | Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served direct… | 2026-01-14T17:16:07.940 | 2026-01-14T17:16:07.940 |
| fkie_cve-2025-70968 | FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE(). | 2026-01-14T17:16:07.443 | 2026-01-14T17:16:07.443 |
| fkie_cve-2025-67399 | An issue in AIRTH SMART HOME AQI MONITOR Bootloader v.1.005 allows a physically proximate attacker … | 2026-01-14T16:15:56.610 | 2026-01-14T17:16:06.930 |
| fkie_cve-2025-64723 | Arduino IDE is an integrated development environment. Prior to version 2.3.7, Arduino IDE for macOS… | 2025-12-18T16:15:55.470 | 2026-01-14T17:16:06.700 |
| fkie_cve-2025-64710 | Bitplatform Boilerplate is a Visual studio and .NET project template. Versions prior to 9.11.3 are … | 2025-11-13T03:16:28.930 | 2026-01-14T17:16:06.577 |
| fkie_cve-2025-37185 | Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allo… | 2026-01-14T17:16:06.437 | 2026-01-14T17:16:06.437 |
| fkie_cve-2025-37184 | A vulnerability exists in an Orchestrator service that could allow an unauthenticated remote attack… | 2026-01-14T17:16:06.300 | 2026-01-14T17:16:06.300 |
| fkie_cve-2025-37183 | Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allo… | 2026-01-14T17:16:06.163 | 2026-01-14T17:16:06.163 |
| fkie_cve-2025-37182 | Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allo… | 2026-01-14T17:16:06.030 | 2026-01-14T17:16:06.030 |
| fkie_cve-2025-37181 | Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allo… | 2026-01-14T17:16:05.497 | 2026-01-14T17:16:05.497 |
| fkie_cve-2025-55213 | OpenFGA is a high-performance and flexible authorization/permission engine built for developers and… | 2025-08-18T20:15:29.897 | 2026-01-14T17:10:47.670 |
| fkie_cve-2023-25039 | Missing Authorization vulnerability in CodePeople Google Maps CP.This issue affects Google Maps CP:… | 2024-03-25T12:15:10.027 | 2026-01-14T17:09:33.947 |
| fkie_cve-2023-27608 | Missing Authorization vulnerability in WP Swings Points and Rewards for WooCommerce.This issue affe… | 2024-03-25T12:15:10.287 | 2026-01-14T17:08:37.260 |
| fkie_cve-2023-27459 | Deserialization of Untrusted Data vulnerability in WPEverest User Registration.This issue affects U… | 2024-03-26T20:15:08.737 | 2026-01-14T17:00:55.330 |
| fkie_cve-2024-28893 | Certain HP software packages (SoftPaqs) are potentially vulnerable to arbitrary code execution when… | 2024-05-01T16:15:07.553 | 2026-01-14T16:54:44.270 |
| fkie_cve-2025-69274 | Authorization Bypass Through User-Controlled Key vulnerability in Broadcom DX NetOps Spectrum on Wi… | 2026-01-12T05:16:11.497 | 2026-01-14T16:48:55.327 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-76rv-5h8w-hj9w |
4.3 (3.1)
|
Missing Authorization vulnerability in PublishPress Post Expirator post-expirator allows Exploiting… | 2026-01-06T18:31:36Z | 2026-01-13T15:36:48Z |
| ghsa-2934-gw32-fqg4 |
7.5 (3.1)
|
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-06T18:31:36Z | 2026-01-13T15:36:48Z |
| ghsa-283f-7499-gpcp |
4.3 (3.1)
|
Missing Authorization vulnerability in Tickera Tickera tickera-event-ticketing-system allows Exploi… | 2026-01-06T18:31:36Z | 2026-01-13T15:36:48Z |
| ghsa-27xq-wwxh-hrf6 |
5.3 (3.1)
|
Missing Authorization vulnerability in WPFunnels Creator LMS creatorlms allows Exploiting Incorrect… | 2026-01-06T18:31:36Z | 2026-01-13T15:36:48Z |
| ghsa-wqgj-c38v-hpmm |
7.5 (3.1)
|
Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146. | 2025-12-09T18:30:35Z | 2026-01-13T15:36:47Z |
| ghsa-rqhc-7mvg-jchq |
5.4 (3.1)
|
Missing Authorization vulnerability in InspiryThemes RealHomes.This issue affects RealHomes: from n… | 2024-03-25T06:30:24Z | 2026-01-13T15:36:47Z |
| ghsa-3wjc-g785-xjp8 |
4.3 (3.1)
|
Missing Authorization vulnerability in InspiryThemes RealHomes.This issue affects RealHomes: from n… | 2024-03-25T06:30:24Z | 2026-01-13T15:36:47Z |
| ghsa-h3h4-5vcv-376h |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2024-03-15T15:30:43Z | 2026-01-13T15:36:46Z |
| ghsa-524m-q5m7-79mm |
6.5 (3.1)
|
Mailpit is vulnerable to Cross-Site WebSocket Hijacking (CSWSH) allowing unauthenticated access to emails | 2026-01-13T15:11:42Z | 2026-01-13T15:11:42Z |
| ghsa-hcp2-x6j4-29j7 |
6.4 (3.1)
|
RustCrypto: Signatures has timing side-channel in ML-DSA decomposition | 2026-01-13T15:10:03Z | 2026-01-13T15:10:03Z |
| ghsa-3fm2-xfq7-7778 |
8.0 (3.1)
|
HAXcms Has Stored XSS Vulnerability that May Lead to Account Takeover | 2026-01-13T15:07:57Z | 2026-01-13T15:09:35Z |
| ghsa-v4pr-fm98-w9pg |
10.0 (3.1)
|
n8n Vulnerable to Unauthenticated File Access via Improper Webhook Request Handling | 2026-01-07T19:20:19Z | 2026-01-13T15:04:59Z |
| ghsa-mq8m-42gh-wq7r |
8.7 (4.0)
|
Gogs vulnerable to a bypass of CVE-2024-55947 | 2025-12-10T15:31:24Z | 2026-01-13T15:04:41Z |
| ghsa-j9xq-69pf-pcm8 |
7.5 (3.1)
|
RustCrypto Has Insufficient Length Validation in decrypt() in SM2-PKE | 2026-01-13T15:02:23Z | 2026-01-13T15:02:23Z |
| ghsa-whqx-f9j3-ch6m |
5.5 (3.1)
|
Cosign verification accepts any valid Rekor entry under certain conditions | 2026-01-13T14:58:50Z | 2026-01-13T14:58:50Z |
| ghsa-mw8h-g64c-rxv4 |
6.5 (3.1)
|
Shiori is vulnerable to authentication bypass via a brute force attack | 2026-01-09T21:31:35Z | 2026-01-13T14:58:03Z |
| ghsa-vqmm-3555-wq2q |
7.5 (3.1)
8.7 (4.0)
|
A vulnerability has been identified in SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) (All versi… | 2026-01-13T12:31:13Z | 2026-01-13T12:31:13Z |
| ghsa-crjh-4642-9w67 |
5.4 (3.1)
|
The WP Duplicate Page plugin for WordPress is vulnerable to unauthorized modification of data due t… | 2026-01-13T12:31:13Z | 2026-01-13T12:31:13Z |
| ghsa-c835-vvh2-8x99 |
8.8 (3.1)
7.3 (4.0)
|
A vulnerability has been identified in TeleControl Server Basic (All versions < V3.1.2.4). Affected… | 2026-01-13T12:31:13Z | 2026-01-13T12:31:13Z |
| ghsa-8gqp-3rhh-936h |
10.0 (3.1)
10.0 (4.0)
|
Affected devices do not properly enforce user authentication on specific API endpoints. This could … | 2026-01-13T12:31:13Z | 2026-01-13T12:31:13Z |
| ghsa-2448-826c-4v5m |
8.8 (3.1)
|
An unauthenticated remote attacker can trick a high privileged user into uploading a malicious payl… | 2026-01-13T09:31:30Z | 2026-01-13T09:31:30Z |
| ghsa-w8gc-rcgw-q936 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-vhvh-c33p-2mp6 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-v5w9-33w2-wjhw |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-mmw4-q64g-3rmp |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-mjh7-pwhq-4xmq |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-jvgj-f52w-5954 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-63c2-8vw7-vgc9 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-4pr8-x7pm-8gw8 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ghsa-3p9g-66p4-wgx6 |
|
Rejected reason: Not used | 2026-01-13T06:30:19Z | 2026-01-13T06:30:19Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2009-10 |
|
Unspecified vulnerability in the Zope Enterprise Objects (ZEO) storage-server functionali… | zodb3 | 2009-09-08T18:30:00Z | 2024-01-17T10:48:40.464440Z |
| pysec-2024-1 |
|
gratient is a user-facing library for generating color gradients of text. Version 0.5 con… | gratient | 2024-01-03T22:31:36+00:00 | |
| pysec-2023-235 |
7.5 (3.1)
|
An issue was discovered in Couchbase Server 7.2.0. There is a private key leak in debug.l… | couchbase | 2023-11-08T21:15:00Z | 2024-01-03T21:03:33.010228Z |
| pysec-2023-233 |
8.8 (3.1)
|
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif,… | exiv2 | 2023-11-06T18:15:00Z | 2024-01-02T15:20:59.435740Z |
| pysec-2021-877 |
7.5 (3.1)
|
An integer overflow in CrwMap::encode0x1810 of Exiv2 0.27.3 allows attackers to trigger a… | exiv2 | 2021-07-26T17:15:00Z | 2024-01-02T15:20:59.375619Z |
| pysec-2018-120 |
6.5 (3.1)
|
There is an infinite loop in Exiv2::Jp2Image::encodeJp2Header of jp2image.cpp in Exiv2 0.… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.318592Z |
| pysec-2018-119 |
6.5 (3.1)
|
There is a heap-based buffer over-read in Exiv2::Jp2Image::encodeJp2Header of jp2image.cp… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.259575Z |
| pysec-2018-118 |
6.5 (3.1)
|
There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimage_int.… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.201635Z |
| pysec-2018-117 |
6.5 (3.1)
|
There is a heap-based buffer over-read in the Exiv2::tEXtToDataBuf function of pngimage.c… | exiv2 | 2018-12-12T10:29:00Z | 2024-01-02T15:20:59.143416Z |
| pysec-2017-112 |
6.5 (3.1)
|
An issue was discovered in Exiv2 0.26. When the data structure of the structure ifd is in… | exiv2 | 2017-05-26T10:29:00Z | 2024-01-02T15:20:59.086141Z |
| pysec-2023-234 |
7.5 (3.1)
|
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via w… | esptool | 2023-11-09T16:15:00Z | 2024-01-02T13:04:16.284694Z |
| pysec-2017-111 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to cros… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.638216Z |
| pysec-2017-110 |
7.5 (3.1)
|
Error responses from Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating included… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.587649Z |
| pysec-2017-109 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Refl… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.536257Z |
| pysec-2017-108 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to DOM … | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.465498Z |
| pysec-2017-107 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating were found vulnerable to Stor… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.413874Z |
| pysec-2017-106 |
6.1 (3.1)
|
Apache Atlas versions 0.6.0-incubating and 0.7.0-incubating use cookies that could be acc… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.361409Z |
| pysec-2017-105 |
7.5 (3.1)
|
Apache Atlas versions 0.6.0 (incubating), 0.7.0 (incubating), and 0.7.1 (incubating) allo… | apache-atlas | 2017-08-29T20:29:00Z | 2023-12-01T23:23:55.302348Z |
| pysec-2023-247 |
6.5 (3.1)
|
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Affected … | aiohttp | 2023-11-14T21:15:00+00:00 | 2023-11-22T23:23:57.631856+00:00 |
| pysec-2023-246 |
7.5 (3.1)
|
aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. The HTTP … | aiohttp | 2023-11-14T21:15:00+00:00 | 2023-11-22T23:23:57.547793+00:00 |
| pysec-2023-245 |
7.5 (3.1)
|
PyPinkSign v0.5.1 uses a non-random or static IV for Cipher Block Chaining (CBC) mode in … | pypinksign | 2023-11-16T18:15:00+00:00 | 2023-11-22T19:19:42.405614+00:00 |
| pysec-2023-244 |
|
Apache Software Foundation Apache Submarine has an SQL injection vulnerability when a use… | apache-submarine | 2023-11-22T10:15:00+00:00 | 2023-11-22T11:21:52.095543+00:00 |
| pysec-2023-242 |
7.4 (3.1)
|
Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on comm… | httpie | 2023-11-16T18:15:00+00:00 | 2023-11-22T02:43:48.390438+00:00 |
| pysec-2023-240 |
|
Apache Software Foundation Apache Submarine has a bug when serializing against yaml. The … | apache-submarine | 2023-11-20T09:15:00+00:00 | 2023-11-20T11:21:41.073991+00:00 |
| pysec-2023-239 |
6.8 (3.1)
|
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the remote end of an… | asyncssh | 2023-11-14T03:15:00+00:00 | 2023-11-20T09:25:38.326328+00:00 |
| pysec-2023-238 |
|
Deserialization of untrusted data in IPC and Parquet readers in PyArrow versions 0.14.0 t… | pyarrow | 2023-11-20T08:59:06.851388+00:00 | |
| pysec-2023-237 |
5.9 (3.1)
|
An issue in AsyncSSH v2.14.0 and earlier allows attackers to control the extension info m… | asyncssh | 2023-11-14T03:15:00+00:00 | 2023-11-17T17:27:01.919743+00:00 |
| pysec-2023-236 |
7.5 (3.1)
|
Remarshal prior to v0.17.1 expands YAML alias nodes unlimitedly, hence Remarshal is vulne… | remarshal | 2023-11-13T03:15:00+00:00 | 2023-11-16T20:25:23.801345+00:00 |
| pysec-2022-43065 |
5.5 (3.1)
|
GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFro… | gdal | 2022-01-01T01:15:00+00:00 | 2023-11-13T19:19:43.960137+00:00 |
| pysec-2019-241 |
9.8 (3.1)
|
GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp … | gdal | 2019-10-14T02:15:00+00:00 | 2023-11-13T19:19:43.892449+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33213 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu… | 2024-04-24T05:02:09.735466Z |
| gsd-2024-33407 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.735210Z |
| gsd-2024-33309 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.735013Z |
| gsd-2024-33178 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.734806Z |
| gsd-2024-33135 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.734589Z |
| gsd-2024-33496 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.734379Z |
| gsd-2024-33362 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.734172Z |
| gsd-2024-33278 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733959Z |
| gsd-2024-33119 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733754Z |
| gsd-2024-33225 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733514Z |
| gsd-2024-33378 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733311Z |
| gsd-2024-33441 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.733108Z |
| gsd-2024-33137 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.732911Z |
| gsd-2024-33415 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.732712Z |
| gsd-2024-33159 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.732504Z |
| gsd-2024-33269 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.732290Z |
| gsd-2024-33418 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.732074Z |
| gsd-2024-33409 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.731838Z |
| gsd-2024-33372 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.731595Z |
| gsd-2024-33492 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.731337Z |
| gsd-2024-33520 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.731072Z |
| gsd-2024-33468 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.730709Z |
| gsd-2024-33133 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.727626Z |
| gsd-2024-33212 | Tenda FH1206 V1.2.0.8(8155)_EN was discovered to contain a stack-based buffer overflow vu… | 2024-04-24T05:02:09.727129Z |
| gsd-2024-33451 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.726764Z |
| gsd-2024-33516 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.726125Z |
| gsd-2024-33387 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.725919Z |
| gsd-2024-33028 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.725685Z |
| gsd-2024-33262 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.725480Z |
| gsd-2024-33067 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.725270Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2024-12320 | Malicious code in osint-tool (PyPI) | 2024-10-02T07:55:07Z | 2025-12-31T02:45:15Z |
| mal-2024-12317 | Malicious code in oe-extract-idss (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-12316 | Malicious code in oe-extract-ids (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-12309 | Malicious code in my-service-manager (PyPI) | 2024-12-01T16:55:36Z | 2025-12-31T02:45:15Z |
| mal-2024-12308 | Malicious code in my-main-manager (PyPI) | 2024-12-01T16:55:36Z | 2025-12-31T02:45:15Z |
| mal-2024-12303 | Malicious code in maliciouspackage (PyPI) | 2024-10-15T16:27:48Z | 2025-12-31T02:45:15Z |
| mal-2024-12297 | Malicious code in jupsolhelp (PyPI) | 2024-08-10T16:25:59Z | 2025-12-31T02:45:15Z |
| mal-2024-12292 | Malicious code in instaread (PyPI) | 2024-10-06T11:51:02Z | 2025-12-31T02:45:15Z |
| mal-2024-12290 | Malicious code in ibmodules (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-12287 | Malicious code in hmac2 (PyPI) | 2024-10-30T18:55:55Z | 2025-12-31T02:45:15Z |
| mal-2024-12284 | Malicious code in hello-world-installer-test (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-12281 | Malicious code in hack-test (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-12275 | Malicious code in genz-translator (PyPI) | 2024-12-03T18:03:25Z | 2025-12-31T02:45:15Z |
| mal-2024-12266 | Malicious code in evil-select-pkg (PyPI) | 2024-09-24T06:57:51Z | 2025-12-31T02:45:15Z |
| mal-2024-12260 | Malicious code in easyioctl (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-12256 | Malicious code in discord-embedbuilder (PyPI) | 2024-07-06T17:16:40Z | 2025-12-31T02:45:15Z |
| mal-2024-12251 | Malicious code in deepseek-api (PyPI) | 2024-07-09T18:52:06Z | 2025-12-31T02:45:15Z |
| mal-2024-12249 | Malicious code in companyx-metaflow (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-12233 | Malicious code in chatgpt-aitools (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-12232 | Malicious code in ceiec (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-12224 | Malicious code in c2 (PyPI) | 2024-08-27T21:24:04Z | 2025-12-31T02:45:15Z |
| mal-2024-12201 | Malicious code in artifact-lab-3-package-77d0c154 (PyPI) | 2024-08-10T23:05:21Z | 2025-12-31T02:45:15Z |
| mal-2024-12194 | Malicious code in artifact-lab-3-package-1b4d0db5 (PyPI) | 2024-08-10T23:05:21Z | 2025-12-31T02:45:15Z |
| mal-2024-11702 | Malicious code in search-python-common (PyPI) | 2024-07-26T16:53:30Z | 2025-12-31T02:45:15Z |
| mal-2024-11660 | Malicious code in pojang-resorter (PyPI) | 2024-09-02T20:50:31Z | 2025-12-31T02:45:15Z |
| mal-2024-11627 | Malicious code in luna-paysure (PyPI) | 2024-10-14T09:08:35Z | 2025-12-31T02:45:15Z |
| mal-2024-11608 | Malicious code in http-query (PyPI) | 2024-09-06T11:29:16Z | 2025-12-31T02:45:15Z |
| mal-2024-11607 | Malicious code in hellopythopyy (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-11606 | Malicious code in hellopythopy (PyPI) | 2024-08-23T22:55:41Z | 2025-12-31T02:45:15Z |
| mal-2024-11577 | Malicious code in discordmessager (PyPI) | 2024-10-13T09:30:47Z | 2025-12-31T02:45:15Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2490 | Red Hat OpenShift Container Platform: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2019-11-20T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2060 | VMware Tanzu Spring Framework und Spring Security: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-09-15T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-1679 | Linux Kernel: Schwachstelle ermöglicht Manipulation und Dos | 2025-07-29T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-1333 | Erlang/OTP: Schwachstelle ermöglicht Manipulation von Dateien | 2025-06-16T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-1321 | SaltStack Salt: Mehrere Schwachstellen | 2025-06-12T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0987 | Eclipse Jetty: Mehrere Schwachstellen | 2025-05-08T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-0635 | RabbitMQ: Schwachstelle ermöglicht Cross-Site Scripting | 2025-03-25T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3342 | cURL: Schwachstelle ermöglicht Denial of Service | 2024-11-05T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2024-0181 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2024-01-23T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-2838 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-11-06T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-2298 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-09-10T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1926 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-07-31T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1323 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-05-30T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-1015 | Oracle Health Sciences Applications: Mehrere Schwachstellen | 2023-04-18T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-0782 | OpenSSL: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2023-03-28T22:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2023-0732 | OpenSSL: Schwachstelle ermöglicht Denial of Service | 2023-03-22T23:00:00.000+00:00 | 2025-12-07T23:00:00.000+00:00 |
| wid-sec-w-2025-2749 | WatchGuard Firebox: Mehrere Schwachstellen | 2025-12-04T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2745 | Dell PowerEdge: Schwachstelle ermöglicht Denial of Service | 2025-12-04T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2744 | Microsoft Edge: Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-12-04T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2742 | IBM QRadar SIEM: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-04T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2739 | Nextcloud: Schwachstelle ermöglicht Cross-Site Scripting | 2025-12-03T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2738 | Vercel Next.js und React Server Components (React2Shell): Schwachstelle ermöglicht Codeausführung | 2025-12-03T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2686 | Red Hat JBoss Enterprise Application Platform (Eclipse JGit): Schwachstelle ermöglicht Denial of Service | 2025-11-26T23:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-2036 | IBM WebSphere Application Server: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-09-10T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-1921 | Linux Kernel: Schwachstelle ermöglicht Denial of Service | 2025-08-27T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-1842 | PostgreSQL: Mehrere Schwachstellen | 2025-08-14T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-1797 | Intel Chipset: Mehrere Schwachstellen | 2025-08-12T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-1785 | Intel Prozessoren: Mehrere Schwachstellen | 2025-08-12T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-1528 | WatchGuard Firebox: Mehrere Schwachstellen | 2025-07-10T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| wid-sec-w-2025-0991 | Linux Kernel: Mehrere Schwachstellen | 2025-05-08T22:00:00.000+00:00 | 2025-12-04T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2018:2435 | Red Hat Security Advisory: flash-plugin security update | 2018-08-15T20:28:53+00:00 | 2026-01-08T11:19:49+00:00 |
| rhsa-2018:2371 | Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update | 2018-08-09T14:39:35+00:00 | 2026-01-08T11:19:48+00:00 |
| rhsa-2018:2113 | Red Hat Security Advisory: firefox security update | 2018-06-28T16:23:03+00:00 | 2026-01-08T11:19:47+00:00 |
| rhsa-2018:2252 | Red Hat Security Advisory: thunderbird security update | 2018-07-24T21:37:31+00:00 | 2026-01-08T11:19:46+00:00 |
| rhsa-2018:2251 | Red Hat Security Advisory: thunderbird security update | 2018-07-24T21:40:05+00:00 | 2026-01-08T11:19:46+00:00 |
| rhsa-2018:2112 | Red Hat Security Advisory: firefox security update | 2018-06-28T16:23:08+00:00 | 2026-01-08T11:19:40+00:00 |
| rhsa-2018:1833 | Red Hat Security Advisory: Red Hat JBoss Data Grid 7.2.1 security update | 2018-06-12T10:48:28+00:00 | 2026-01-08T11:19:39+00:00 |
| rhsa-2018:1809 | Red Hat Security Advisory: Red Hat OpenShift Application Runtimes Spring Boot security and bug fix update | 2018-06-07T08:25:56+00:00 | 2026-01-08T11:19:37+00:00 |
| rhsa-2018:1320 | Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update | 2018-05-03T17:06:08+00:00 | 2026-01-08T11:19:36+00:00 |
| rhsa-2020:5568 | Red Hat Security Advisory: Red Hat Fuse 7.8.0 release and security update | 2020-12-16T12:11:19+00:00 | 2026-01-08T10:21:36+00:00 |
| rhsa-2021:3225 | Red Hat Security Advisory: Red Hat AMQ Streams 1.8.0 release and security update | 2021-08-19T07:17:54+00:00 | 2026-01-08T10:21:34+00:00 |
| rhsa-2021:3140 | Red Hat Security Advisory: Red Hat Fuse 7.9.0 release and security update | 2021-08-11T18:21:58+00:00 | 2026-01-08T10:21:33+00:00 |
| rhsa-2021:2191 | Red Hat Security Advisory: tcpdump security update | 2021-06-01T16:32:41+00:00 | 2026-01-08T10:21:33+00:00 |
| rhsa-2021:1842 | Red Hat Security Advisory: raptor2 security and bug fix update | 2021-05-18T14:33:06+00:00 | 2026-01-08T10:21:33+00:00 |
| rhsa-2021:1313 | Red Hat Security Advisory: Satellite 6.9 Release | 2021-04-21T13:15:02+00:00 | 2026-01-08T10:21:33+00:00 |
| rhsa-2020:4807 | Red Hat Security Advisory: prometheus-jmx-exporter security update | 2020-11-04T01:56:21+00:00 | 2026-01-08T10:21:32+00:00 |
| rhsa-2020:4760 | Red Hat Security Advisory: tcpdump security, bug fix, and enhancement update | 2020-11-04T01:47:16+00:00 | 2026-01-08T10:21:32+00:00 |
| rhsa-2020:4490 | Red Hat Security Advisory: gnupg2 security, bug fix, and enhancement update | 2020-11-04T02:10:59+00:00 | 2026-01-08T10:21:32+00:00 |
| rhsa-2020:0544 | Red Hat Security Advisory: curl security update | 2020-02-19T07:36:27+00:00 | 2026-01-08T10:21:32+00:00 |
| rhsa-2020:2838 | Red Hat Security Advisory: file security update | 2020-07-07T10:30:37+00:00 | 2026-01-08T10:21:31+00:00 |
| rhsa-2020:2768 | Red Hat Security Advisory: file security update | 2020-06-30T12:12:45+00:00 | 2026-01-08T10:21:31+00:00 |
| rhsa-2020:2603 | Red Hat Security Advisory: Red Hat build of Quarkus 1.3.4 security update | 2020-06-17T16:34:28+00:00 | 2026-01-08T10:21:31+00:00 |
| rhsa-2020:2521 | Red Hat Security Advisory: file security update | 2020-06-12T06:54:09+00:00 | 2026-01-08T10:21:31+00:00 |
| rhsa-2020:2479 | Red Hat Security Advisory: OpenShift Container Platform 3.11 atomic-openshift security update | 2020-06-18T21:12:56+00:00 | 2026-01-08T10:21:30+00:00 |
| rhsa-2020:1112 | Red Hat Security Advisory: php security update | 2020-03-31T19:36:56+00:00 | 2026-01-08T10:21:29+00:00 |
| rhsa-2020:1068 | Red Hat Security Advisory: squid security and bug fix update | 2020-03-31T21:08:12+00:00 | 2026-01-08T10:21:29+00:00 |
| rhsa-2020:1022 | Red Hat Security Advisory: file security update | 2020-03-31T20:41:07+00:00 | 2026-01-08T10:21:29+00:00 |
| rhsa-2019:3698 | Red Hat Security Advisory: libarchive security and bug fix update | 2019-11-05T22:28:14+00:00 | 2026-01-08T10:21:29+00:00 |
| rhsa-2020:0663 | Red Hat Security Advisory: ruby security update | 2020-03-03T15:35:39+00:00 | 2026-01-08T10:21:28+00:00 |
| rhsa-2020:0594 | Red Hat Security Advisory: curl security update | 2020-02-25T12:14:24+00:00 | 2026-01-08T10:21:27+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-15-036-02 | Pepperl+Fuchs Hart Device DTM Vulnerability | 2015-11-08T07:00:00.000000Z | 2025-06-06T22:34:21.972701Z |
| icsa-15-036-01a | GE and MACTek HART Device DTM Vulnerability (Update A) | 2015-11-08T07:00:00.000000Z | 2025-06-06T22:34:15.524601Z |
| icsa-15-034-02 | Siemens Ruggedcom WIN Vulnerability | 2015-11-06T07:00:00.000000Z | 2025-06-06T22:33:56.150269Z |
| icsa-15-029-01 | Honeywell HART DTM Vulnerability | 2015-11-01T06:00:00.000000Z | 2025-06-06T22:33:43.213614Z |
| icsa-15-027-01 | Magnetrol HART DTM Vulnerability | 2015-10-30T06:00:00.000000Z | 2025-06-06T22:33:36.757982Z |
| icsa-15-022-01 | Siemens SIMATIC S7-1200 CPU Web Vulnerability | 2015-10-25T06:00:00.000000Z | 2025-06-06T22:33:30.307653Z |
| icsa-15-020-02 | Schneider Electric ETG3000 FactoryCast HMI Gateway Vulnerabilities | 2015-10-23T06:00:00.000000Z | 2025-06-06T22:33:17.373978Z |
| icsa-15-020-01 | Siemens SCALANCE X-300/X408 Switch Family DOS Vulnerabilities | 2015-10-23T06:00:00.000000Z | 2025-06-06T22:33:04.402280Z |
| icsa-15-013-04a | GE Multilink Switch Vulnerabilities (Update A) | 2015-10-16T06:00:00.000000Z | 2025-06-06T22:32:44.963520Z |
| icsa-15-013-03 | Phoenix Contact Software ProConOs and MultiProg Authentication Vulnerability | 2015-10-16T06:00:00.000000Z | 2025-06-06T22:32:38.508014Z |
| icsa-15-013-02 | Clorius Controls A/S ISC SCADA Insecure Java Client Web Authentication | 2015-10-16T06:00:00.000000Z | 2025-06-06T22:32:32.033557Z |
| icsa-15-013-01 | Siemens SIMATIC WinCC Sm@rtClient iOS Application Authentication Vulnerabilities | 2015-10-16T06:00:00.000000Z | 2025-06-06T22:32:12.568337Z |
| icsa-15-012-01c | CodeWrights GmbH HART Device DTM Vulnerability (Update C) | 2015-10-15T06:00:00.000000Z | 2025-06-06T22:32:06.053252Z |
| icsa-15-012-01b | CodeWrights GmbH HART DTM Vulnerability (Update B) | 2015-10-15T06:00:00.000000Z | 2025-06-06T22:31:59.580273Z |
| icsa-15-012-01a | CodeWrights GmbH HART DTM Vulnerability (Update A) | 2015-10-15T06:00:00.000000Z | 2025-06-06T22:31:53.116696Z |
| icsa-15-012-01 | CodeWrights GmbH HART DTM Vulnerability | 2015-10-15T06:00:00.000000Z | 2025-06-06T22:31:46.333944Z |
| icsa-12-129-01 | WellinTech KingSCADA Insecure Password Encryption | 2012-02-09T07:00:00.000000Z | 2025-06-06T21:45:26.636405Z |
| icsa-12-122-01 | WellinTech KingView DLL Hijack Vulnerability | 2012-02-02T07:00:00.000000Z | 2025-06-06T21:45:20.208792Z |
| icsa-12-102-05 | Siemens Scalance S Multiple Security Vulnerabilities | 2012-01-13T07:00:00.000000Z | 2025-06-06T21:45:13.758298Z |
| icsa-12-102-04 | Siemens Scalance X Buffer Overflow Vulnerability | 2012-01-13T07:00:00.000000Z | 2025-06-06T21:45:07.306451Z |
| icsa-12-102-03 | MICROSYS PROMOTIC Use After Free Vulnerability | 2012-01-13T07:00:00.000000Z | 2025-06-06T21:45:00.844061Z |
| icsa-12-102-02 | Koyo Ecom Modules Vulnerabilities | 2012-01-13T07:00:00.000000Z | 2025-06-06T21:44:54.405200Z |
| icsa-12-102-01 | Certec atvise webMI2ADS Vulnerabilities | 2012-01-13T07:00:00.000000Z | 2025-06-06T21:44:47.952815Z |
| icsa-12-095-01a | ABB Multiple Components Buffer Overflow | 2012-01-06T07:00:00.000000Z | 2025-06-06T21:44:41.492952Z |
| icsa-12-088-01a | Rockwell Automation FactoryTalk RNADiagReceiver | 2012-12-30T07:00:00.000000Z | 2025-06-06T21:44:35.026913Z |
| icsa-12-083-01 | Ecava IntegraXor ActiveX Directory Traversal | 2012-12-25T07:00:00.000000Z | 2025-06-06T21:44:28.588784Z |
| icsa-12-032-02 | GE Intelligent Platforms Proficy Plant Applications Memory Corruption Vulnerabilities | 2012-11-04T06:00:00.000000Z | 2025-06-06T21:44:08.900302Z |
| icsa-12-032-01 | GE Proficy Historian ihDataArchiver | 2012-11-04T06:00:00.000000Z | 2025-06-06T21:44:02.422128Z |
| icsa-15-223-01 | Schneider Electric IMT25 DTM Vulnerability | 2015-05-14T06:00:00.000000Z | 2025-06-06T21:43:55.748554Z |
| icsa-15-211-01 | Schneider Electric InduSoft Web Studio and InTouch Machine Edition 2014 Password Storage Vulnerability | 2015-05-02T06:00:00.000000Z | 2025-06-06T21:43:48.989760Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-wlc-dhcp-dos-76pcjpxk | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family DHCP Processing Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-webui-cmdinj-gje47emn | Cisco IOS XE Software Web UI Command Injection Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ssh-excpt-dos-fzobqtnk | Cisco IOS and IOS XE Software SSH Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdwan-avc-nddsgb8 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Authentication Bypass Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-sdavc-za5fpxx2 | Cisco Software-Defined Application Visibility and Control on Cisco vManage Static Username and Password Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-mpls-dos-ab4oul3 | Cisco IOS XE Software for Catalyst Switches MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-cip-dos-9rtbklt9 | Cisco IOS and IOS XE Software Common Industrial Protocol Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-iosxe-6vpe-dos-tjbtf5zv | Cisco IOS XE Software IPv6 VPN over MPLS Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ios-xe-cat-verify-d4neqa6q | Cisco IOS XE Software for Catalyst 9200 Series Switches Arbitrary Code Execution Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ewc-priv-esc-nderyltk | Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points Privilege Escalation Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-cwlc-snmpidv-rnyyqzuz | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Information Disclosure Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-c9800-mob-dos-342yac6j | Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Mobility Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-arb-file-delete-vb2rvcqv | Cisco SD-WAN Arbitrary File Deletion Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-ap-assoc-dos-egvqton8 | Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-alg-dos-ku9z8kfx | Cisco IOS XE Software DNS NAT Protocol Application Layer Gateway Denial of Service Vulnerability | 2022-09-28T16:00:00+00:00 | 2022-09-28T16:00:00+00:00 |
| cisco-sa-vmanage-msg-serv-aqtup7vs | Cisco SD-WAN vManage Software Unauthenticated Access to Messaging Services Vulnerability | 2022-09-07T16:00:00+00:00 | 2022-09-27T21:40:31+00:00 |
| cisco-sa-20180620-nxosbgp | Cisco NX-OS Software Border Gateway Protocol Denial of Service Vulnerability | 2018-06-20T16:00:00+00:00 | 2022-09-22T20:15:18+00:00 |
| cisco-sa-xr-cdp-wnalzvt2 | Cisco IOS XR Software Cisco Discovery Protocol Denial of Service Vulnerability | 2022-09-14T16:00:00+00:00 | 2022-09-14T16:00:00+00:00 |
| cisco-sa-ncs4k-tl1-gnnlwc6 | Cisco Network Convergence System 4000 Series TL1 Denial of Service Vulnerability | 2022-09-14T16:00:00+00:00 | 2022-09-14T16:00:00+00:00 |
| cisco-sa-iosxr-bng-gmg5gxt | Cisco IOS XR Software Broadband Network Gateway PPP over Ethernet Denial of Service Vulnerability | 2022-09-14T16:00:00+00:00 | 2022-09-14T16:00:00+00:00 |
| cisco-sa-sb-rv-vpnbypass-cpheup9o | Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers IPSec VPN Server Authentication Bypass Vulnerability | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-mlx5-jbpcrqd8 | Vulnerability in NVIDIA Data Plane Development Kit Affecting Cisco Products: August 2022 | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-meraki-config-ab3da | Cisco Meraki MR Series Splash Page Insecure Configuration Option | 2022-09-07T16:00:00+00:00 | 2022-09-07T16:00:00+00:00 |
| cisco-sa-nxos-mpls-oam-dos-sgo9x5gm | Cisco NX-OS Software MPLS OAM Denial of Service Vulnerability | 2021-08-25T16:00:00+00:00 | 2022-09-02T17:41:51+00:00 |
| cisco-sa-asdm-rce-gqjshxw | Cisco Adaptive Security Device Manager Remote Code Execution Vulnerability | 2021-07-07T16:00:00+00:00 | 2022-08-25T14:41:06+00:00 |
| cisco-sa-nxos-ospfv3-dos-48qutcu | Cisco NX-OS Software OSPFv3 Denial of Service Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-nxos-cdp-dos-ce-wwvpucc9 | Cisco FXOS and NX-OS Software Cisco Discovery Protocol Denial of Service and Arbitrary Code Execution Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-mso-prvesc-bpfp9czs | Cisco ACI Multi-Site Orchestrator Privilege Escalation Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-fxos-cmdinj-txclnznh | Cisco FXOS Software Command Injection Vulnerability | 2022-08-24T16:00:00+00:00 | 2022-08-24T16:00:00+00:00 |
| cisco-sa-asa-asdm-sig-npkvwdjm | Cisco Adaptive Security Device Manager and Adaptive Security Appliance Software Client-side Arbitrary Code Execution Vulnerability | 2022-06-22T16:00:00+00:00 | 2022-08-17T12:48:01+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2025-40329 | drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:41.000Z |
| msrc_cve-2025-40342 | nvme-fc: use lock accessing port_state and rport state | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:34.000Z |
| msrc_cve-2025-40328 | smb: client: fix potential UAF in smb2_close_cached_fid() | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:28.000Z |
| msrc_cve-2025-40331 | sctp: Prevent TOCTOU out-of-bounds write | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:22.000Z |
| msrc_cve-2025-40343 | nvmet-fc: avoid scheduling association deletion twice | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:15.000Z |
| msrc_cve-2025-40341 | futex: Don't leak robust_list pointer on exec race | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:09.000Z |
| msrc_cve-2025-40324 | NFSD: Fix crash in nfsd4_read_release() | 2025-12-02T00:00:00.000Z | 2025-12-16T14:40:02.000Z |
| msrc_cve-2025-40303 | btrfs: ensure no dirty metadata is written back for an fs with errors | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:56.000Z |
| msrc_cve-2025-40297 | net: bridge: fix use-after-free due to MST port state bypass | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:49.000Z |
| msrc_cve-2025-40322 | fbdev: bitblit: bound-check glyph index in bit_putcs* | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:43.000Z |
| msrc_cve-2025-40311 | accel/habanalabs: support mapping cb with vmalloc-backed coherent memory | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:36.000Z |
| msrc_cve-2025-40323 | fbcon: Set fb_display[i]->mode to NULL when the mode is released | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:30.000Z |
| msrc_cve-2025-40310 | amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:23.000Z |
| msrc_cve-2025-40294 | Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern() | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:17.000Z |
| msrc_cve-2025-40304 | fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:10.000Z |
| msrc_cve-2025-40301 | Bluetooth: hci_event: validate skb length for unknown CC opcode | 2025-12-02T00:00:00.000Z | 2025-12-16T14:39:04.000Z |
| msrc_cve-2025-40321 | wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:58.000Z |
| msrc_cve-2025-40319 | bpf: Sync pending IRQ work before freeing ring buffer | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:51.000Z |
| msrc_cve-2025-40292 | virtio-net: fix received length check in big packets | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:45.000Z |
| msrc_cve-2025-40308 | Bluetooth: bcsp: receive data only if registered | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:38.000Z |
| msrc_cve-2025-40269 | ALSA: usb-audio: Fix potential overflow of PCM transfer buffer | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:32.000Z |
| msrc_cve-2025-40281 | sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:25.000Z |
| msrc_cve-2025-40280 | tipc: Fix use-after-free in tipc_mon_reinit_self(). | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:19.000Z |
| msrc_cve-2025-40277 | drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:13.000Z |
| msrc_cve-2025-40273 | NFSD: free copynotify stateid in nfs4_free_ol_stateid() | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:06.000Z |
| msrc_cve-2025-40282 | Bluetooth: 6lowpan: reset link-local header on ipv6 recv path | 2025-12-02T00:00:00.000Z | 2025-12-16T14:38:00.000Z |
| msrc_cve-2025-40279 | net: sched: act_connmark: initialize struct tc_ife to fix kernel leak | 2025-12-02T00:00:00.000Z | 2025-12-16T14:37:53.000Z |
| msrc_cve-2025-40283 | Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF | 2025-12-02T00:00:00.000Z | 2025-12-16T14:37:47.000Z |
| msrc_cve-2025-40284 | Bluetooth: MGMT: cancel mesh send timer when hdev removed | 2025-12-02T00:00:00.000Z | 2025-12-16T14:37:40.000Z |
| msrc_cve-2025-40288 | drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices | 2025-12-02T00:00:00.000Z | 2025-12-16T14:37:34.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201609-0347 | The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider… | 2025-12-22T21:50:03.731000Z |
| var-200512-0749 | The khtml::RenderTableSection::ensureRows function in KHTMLParser in Apple Mac OS X 10.4.… | 2025-12-22T21:50:01.238000Z |
| var-201205-0058 | Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE 7 updat… | 2025-12-22T21:50:01.122000Z |
| var-201210-0458 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2025-12-22T21:49:30.184000Z |
| var-202003-1785 | FasterXML jackson-databind 2.x before 2.9.10.4 mishandles the interaction between seriali… | 2025-12-22T21:49:29.715000Z |
| var-200505-0351 | Bluetooth-enabled systems in Mac OS X 10.3.9 enables the Bluetooth file exchange service … | 2025-12-22T21:49:29.369000Z |
| var-201904-1401 | A cross-site scripting issue existed in Safari. This issue was addressed with improved UR… | 2025-12-22T21:48:53.491000Z |
| var-201302-0262 | Adobe Flash Player before 10.3.183.63 and 11.x before 11.6.602.168 on Windows, before 10.… | 2025-12-22T21:48:51.153000Z |
| var-202008-0248 | An elevation of privilege vulnerability exists when an attacker establishes a vulnerable … | 2025-12-22T21:48:50.458000Z |
| var-201006-1245 | WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, and before 4… | 2025-12-22T21:48:15.377000Z |
| var-201003-1075 | Use-after-free vulnerability in the abstract file-descriptor handling interface in the cu… | 2025-12-22T21:48:15.300000Z |
| var-202109-1389 | A logic issue was addressed with improved state management. This issue is fixed in tvOS 1… | 2025-12-22T21:48:14.269000Z |
| var-202202-0050 | xmltok_impl.c in Expat (aka libexpat) before 2.4.5 lacks certain validation of encoding, … | 2025-12-22T21:48:13.972000Z |
| var-201001-0654 | The Linux kernel before 2.6.32.4 allows local users to gain privileges or cause a denial … | 2025-12-22T21:48:12.844000Z |
| var-202109-1802 | A crafted request uri-path can cause mod_proxy to forward the request to an origin server… | 2025-12-22T21:48:11.391000Z |
| var-200604-0201 | Microsoft Internet Explorer 5.01 through 6 allows remote attackers to execute arbitrary c… | 2025-12-22T21:48:11.071000Z |
| var-200801-0204 | Multiple buffer overflows in yaSSL 1.7.5 and earlier, as used in MySQL and possibly other… | 2025-12-22T21:48:10.120000Z |
| var-201512-0484 | The ASN1_TFLG_COMBINE implementation in crypto/asn1/tasn_dec.c in OpenSSL before 0.9.8zh,… | 2025-12-22T21:48:09.926000Z |
| var-201507-0037 | named in ISC BIND 9.x before 9.9.7-P2 and 9.10.x before 9.10.2-P3 allows remote attackers… | 2025-12-22T21:47:38.777000Z |
| var-201306-0242 | Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java … | 2025-12-22T21:47:33.871000Z |
| var-201701-1135 | NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin t… | 2025-12-22T21:46:59.190000Z |
| var-200807-0283 | Integer signedness error in Safari on Apple iPhone before 2.0 and iPod touch before 2.0 a… | 2025-12-22T21:46:57.992000Z |
| var-200811-0015 | Apple Safari before 3.2 does not properly prevent caching of form data for form fields th… | 2025-12-22T21:46:56.580000Z |
| var-202201-0414 | addBinding in xmlparse.c in Expat (aka libexpat) before 2.4.3 has an integer overflow. Th… | 2025-12-22T21:46:54.811000Z |
| var-202210-1526 | The issue was addressed with improved UI handling. This issue is fixed in tvOS 16.1, macO… | 2025-12-22T21:46:46.800000Z |
| var-200102-0001 | Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source co… | 2025-12-22T21:46:45.394000Z |
| var-201007-0329 | Multiple use-after-free vulnerabilities in WebKit in Apple Safari before 5.0.1 on Mac OS … | 2025-12-22T21:46:45.066000Z |
| var-201904-0981 | SQLite before 3.25.3, when the FTS3 extension is enabled, encounters an integer overflow … | 2025-12-22T21:46:43.935000Z |
| var-202203-0099 | If LimitXMLRequestBody is set to allow request bodies larger than 350MB (defaults to 1M) … | 2025-12-22T21:46:41.947000Z |
| var-200809-0008 | Finder in Apple Mac OS X 10.5 through 10.5.4 does not properly update permission data in … | 2025-12-22T21:46:29.516000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2023-002787 | OMRON CJ series and CS/CJ Series EtherNet/IT unit vulnerable to Denial-of-Service (DoS) | 2023-08-03T13:45+09:00 | 2023-08-03T13:45+09:00 |
| jvndb-2023-002510 | Multiple Vulnerabilities in Hitachi Device Manager | 2023-07-19T14:48+09:00 | 2023-07-19T14:48+09:00 |
| jvndb-2023-000065 | Multiple vulnerabilities in WAVLINK WL-WN531AX2 | 2023-06-27T16:50+09:00 | 2023-06-27T16:50+09:00 |
| jvndb-2023-000063 | Multiple vulnerabilities in Panasonic AiSEG2 | 2023-06-16T14:05+09:00 | 2023-06-16T14:05+09:00 |
| jvndb-2023-000054 | Wacom Tablet Driver installer for macOS vulnerable to improper link resolution before file access | 2023-05-25T13:40+09:00 | 2023-05-25T13:40+09:00 |
| jvndb-2023-001894 | Android App "Brother iPrint&Scan" vulnerable to improper access control | 2023-05-19T15:40+09:00 | 2023-05-19T15:40+09:00 |
| jvndb-2023-001852 | OS command injection vulnerability in Inaba Denki Sangyo Wi-Fi AP UNIT | 2023-05-17T15:09+09:00 | 2023-05-17T15:09+09:00 |
| jvndb-2023-000036 | API server of TONE Family vulnerable to authentication bypass using an alternate path | 2023-04-17T14:04+09:00 | 2023-04-17T14:04+09:00 |
| jvndb-2023-001492 | Vulnerability in JP1/VERITAS | 2023-04-12T15:01+09:00 | 2023-04-12T15:01+09:00 |
| jvndb-2023-001400 | CONPROSYS HMI System(CHS) vulnerable to SQL injection | 2023-04-03T16:19+09:00 | 2023-04-03T16:19+09:00 |
| jvndb-2021-000070 | Multiple vulnerabilities in GroupSession | 2021-07-19T15:41+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2021-000068 | Multiple vulnerabilities in Retty App | 2021-07-13T14:34+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2021-000033 | Hot Pepper Gourmet App fails to restrict access permissions | 2021-04-27T17:10+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2021-000031 | Gurunavi Apps fail to restrict access permissions | 2021-04-14T17:22+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2020-000079 | desknet's NEO vulnerable to cross-site scripting | 2020-12-03T17:54+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2020-000070 | Studyplus App uses a hard-coded API key for an external service | 2020-11-05T18:43+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2023-000016 | The installers of ELECOM Camera Assistant and QuickFileDealer may insecurely load Dynamic Link Libraries | 2023-02-14T17:00+09:00 | 2023-02-14T17:00+09:00 |
| jvndb-2023-001110 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro | 2023-01-25T14:28+09:00 | 2023-01-25T14:28+09:00 |
| jvndb-2023-000009 | EasyMail vulnerable to cross-site scripting | 2023-01-24T16:00+09:00 | 2023-01-24T16:00+09:00 |
| jvndb-2023-001108 | Contec CONPROSYS HMI System (CHS) vulnerable to multiple SQL injections | 2023-01-24T13:38+09:00 | 2023-01-24T13:38+09:00 |
| jvndb-2023-001008 | File and Directory Permissions Vulnerability in Hitachi Tuning Manager | 2023-01-18T13:51+09:00 | 2023-01-18T13:51+09:00 |
| jvndb-2023-000007 | WordPress plugin "Welcart e-Commerce" vulnerable to directory traversal | 2023-01-17T14:17+09:00 | 2023-01-17T14:17+09:00 |
| jvndb-2023-001005 | Active debug code vulnerability in OMRON CP1L-EL20DR-D | 2023-01-12T15:53+09:00 | 2023-01-12T15:53+09:00 |
| jvndb-2023-001003 | Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH | 2023-01-12T15:06+09:00 | 2023-01-12T15:06+09:00 |
| jvndb-2023-000006 | Multiple vulnerabilities in PIXELA PIX-RT100 | 2023-01-12T14:50+09:00 | 2023-01-12T14:50+09:00 |
| jvndb-2023-001002 | OpenAM Web Policy Agent (OpenAM Consortium Edition) vulnerable to path traversal | 2023-01-11T17:07+09:00 | 2023-01-11T17:07+09:00 |
| jvndb-2022-002779 | Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS) | 2022-12-16T13:29+09:00 | 2023-01-11T16:55+09:00 |
| jvndb-2023-000005 | Multiple vulnerabilities in MAHO-PBX NetDevancer series | 2023-01-11T16:11+09:00 | 2023-01-11T16:11+09:00 |
| jvndb-2023-000003 | TP-Link SG105PE vulnerable to authentication bypass | 2023-01-11T15:04+09:00 | 2023-01-11T15:04+09:00 |
| jvndb-2023-000004 | pgAdmin 4 vulnerable to open redirect | 2023-01-11T14:23+09:00 | 2023-01-11T14:23+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:3725-1 | Security update for the Linux Kernel | 2025-10-22T11:48:19Z | 2025-10-22T11:48:19Z |
| suse-su-2025:3723-1 | Security update for libqt5-qtbase | 2025-10-22T11:22:11Z | 2025-10-22T11:22:11Z |
| suse-su-2025:3722-1 | Security update for protobuf | 2025-10-22T11:20:32Z | 2025-10-22T11:20:32Z |
| suse-su-2025:3721-1 | Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5) | 2025-10-22T11:06:14Z | 2025-10-22T11:06:14Z |
| suse-su-2025:3720-1 | Security update for the Linux Kernel (Live Patch 43 for SLE 15 SP4) | 2025-10-22T09:45:17Z | 2025-10-22T09:45:17Z |
| suse-su-2025:3717-1 | Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP4) | 2025-10-22T09:45:07Z | 2025-10-22T09:45:07Z |
| suse-su-2025:3716-1 | Security update for the Linux Kernel | 2025-10-22T07:11:59Z | 2025-10-22T07:11:59Z |
| suse-su-2025:3715-1 | Security update for ffmpeg-4 | 2025-10-22T07:11:25Z | 2025-10-22T07:11:25Z |
| suse-su-2025:3712-1 | Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP4) | 2025-10-21T23:36:04Z | 2025-10-21T23:36:04Z |
| suse-su-2025:3706-1 | Security update for python313 | 2025-10-21T15:07:41Z | 2025-10-21T15:07:41Z |
| suse-su-2025:3705-1 | Security update for the Linux Kernel (Live Patch 33 for SLE 15 SP4) | 2025-10-21T13:34:07Z | 2025-10-21T13:34:07Z |
| suse-su-2025:3704-1 | Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4) | 2025-10-21T12:04:31Z | 2025-10-21T12:04:31Z |
| suse-su-2025:3703-1 | Security update for the Linux Kernel (Live Patch 71 for SLE 12 SP5) | 2025-10-21T11:13:27Z | 2025-10-21T11:13:27Z |
| suse-su-2025:3701-1 | Security update for webkit2gtk3 | 2025-10-21T10:10:20Z | 2025-10-21T10:10:20Z |
| suse-su-2025:3700-1 | Security update for webkit2gtk3 | 2025-10-21T10:09:34Z | 2025-10-21T10:09:34Z |
| suse-su-2025:3699-1 | Security update for krb5 | 2025-10-21T10:07:48Z | 2025-10-21T10:07:48Z |
| suse-su-2025:3698-1 | Security update for krb5 | 2025-10-21T10:07:22Z | 2025-10-21T10:07:22Z |
| suse-su-2025:3684-1 | Security update for the Linux Kernel (Live Patch 72 for SLE 12 SP5) | 2025-10-20T18:03:48Z | 2025-10-20T18:03:48Z |
| suse-su-2025:3683-1 | Security update for the Linux Kernel (Live Patch 51 for SLE 15 SP3) | 2025-10-20T17:05:06Z | 2025-10-20T17:05:06Z |
| suse-su-2025:20894-1 | Security update for libssh | 2025-10-20T16:31:28Z | 2025-10-20T16:31:28Z |
| suse-su-2025:20867-1 | Security update for openssl-3 | 2025-10-20T16:12:21Z | 2025-10-20T16:12:21Z |
| suse-su-2025:3682-1 | Security update for go1.24 | 2025-10-20T13:12:10Z | 2025-10-20T13:12:10Z |
| suse-su-2025:3679-1 | Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4) | 2025-10-20T10:33:45Z | 2025-10-20T10:33:45Z |
| suse-su-2025:3677-1 | Security update for samba | 2025-10-20T08:34:16Z | 2025-10-20T08:34:16Z |
| suse-su-2025:3676-1 | Security update for samba | 2025-10-20T08:26:22Z | 2025-10-20T08:26:22Z |
| suse-su-2025:3675-1 | Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP4) | 2025-10-20T08:06:59Z | 2025-10-20T08:06:59Z |
| suse-su-2025:03671-1 | Security update for the Linux Kernel (Live Patch 49 for SLE 15 SP3) | 2025-10-20T05:33:35Z | 2025-10-20T05:33:35Z |
| suse-su-2025:03672-1 | Security update for the Linux Kernel (Live Patch 59 for SLE 15 SP3) | 2025-10-20T05:04:02Z | 2025-10-20T05:04:02Z |
| suse-su-2025:03666-1 | Security update for the Linux Kernel (Live Patch 60 for SLE 15 SP3) | 2025-10-19T17:04:03Z | 2025-10-19T17:04:03Z |
| suse-su-2025:03664-1 | Security update for the Linux Kernel (Live Patch 56 for SLE 15 SP3) | 2025-10-19T13:03:59Z | 2025-10-19T13:03:59Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15260-1 | perl-File-Find-Rule-0.350.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15259-1 | perl-CryptX-0.87.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15258-1 | perl-32bit-5.40.2-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15257-1 | pam_pkcs11-0.6.13-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15256-1 | pam-1.7.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15255-1 | ovmf-202505-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15254-1 | openbao-2.3.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15253-1 | opa-1.6.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15252-1 | oci-cli-3.61.0-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15251-1 | nova-3.11.4-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15250-1 | corepack22-22.15.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15249-1 | nodejs-electron-35.6.0-1.2 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15248-1 | nix-2.29.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15247-1 | moarvm-2025.05-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15246-1 | mirrorsorcerer-0.1.3~1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15245-1 | ggml-devel-5699-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15244-1 | libtpms-devel-0.10.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15243-1 | libssh-config-0.11.2-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15242-1 | libsoup-2_4-1-2.74.3-12.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15241-1 | libsoup-3_0-0-3.6.5-6.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15240-1 | libQt5Bootstrap-devel-static-32bit-5.15.17+kde122-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15239-1 | libgcrypt-devel-1.11.1-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15238-1 | libetebase-devel-0.5.8-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15237-1 | libbd_btrfs-devel-3.1.1-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15236-1 | kubernetes1.32-apiserver-1.32.6-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15235-1 | kubernetes1.31-apiserver-1.31.10-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15234-1 | kubernetes1.30-apiserver-1.30.14-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15233-1 | jq-1.8.1-1.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15232-1 | jgit-5.11.0-2.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| opensuse-su-2025:15231-1 | java-1_8_0-openj9-1.8.0.452-3.1 on GA media | 2025-07-03T00:00:00Z | 2025-07-03T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-29948 | School Fees Payment System ajx.php文件SQL注入漏洞 | 2025-06-17 | 2025-12-03 |
| cnvd-2025-29947 | ASUS Armoury Crate竞争条件漏洞 | 2025-06-23 | 2025-12-03 |
| cnvd-2025-29946 | School Fees Payment System跨站请求伪造漏洞 | 2025-06-27 | 2025-12-03 |
| cnvd-2025-29945 | School Fees Payment System student.php文件SQL注入漏洞 | 2025-06-27 | 2025-12-03 |
| cnvd-2025-29944 | School Fees Payment System fees.php文件跨站脚本漏洞 | 2025-06-27 | 2025-12-03 |
| cnvd-2025-29943 | School Fees Payment System branch.php文件跨站脚本漏洞 | 2025-06-27 | 2025-12-03 |
| cnvd-2025-29942 | ASUS Armoury Crate堆栈缓冲区溢出漏洞 | 2025-10-17 | 2025-12-03 |
| cnvd-2025-29941 | ASUS Armoury Crate链接跟随不当漏洞 | 2025-10-17 | 2025-12-03 |
| cnvd-2025-29940 | ASUS Armoury Crate空指针取消引用漏洞 | 2025-10-17 | 2025-12-03 |
| cnvd-2025-29939 | ASUS Armoury Crate内存缓冲区操作限制不当漏洞 | 2025-11-11 | 2025-12-03 |
| cnvd-2025-29938 | ASUS Router堆栈缓冲区溢出漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29937 | ASUS Router路径遍历漏洞(CNVD-2025-29937) | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29936 | ASUS Router身份验证绕过漏洞(CNVD-2025-29936) | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29935 | ASUS Router整数下溢漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29934 | WordPress houzez跨站脚本漏洞 | 2025-11-28 | 2025-12-03 |
| cnvd-2025-29871 | School Fees Payment System student.php文件跨站脚本漏洞 | 2025-06-27 | 2025-12-03 |
| cnvd-2025-29870 | Library System return.php文件SQL注入漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29869 | Library System index.php文件SQL注入漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29868 | Library System mail.php文件SQL注入漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29783 | ASUS Router路径遍历漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29782 | ASUS Router命令注入漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29781 | ASUS Router身份验证绕过漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29780 | ASUS Router SQL注入漏洞 | 2025-11-27 | 2025-12-03 |
| cnvd-2025-29751 | AMD CPU指令不当漏洞 | 2023-11-20 | 2025-12-03 |
| cnvd-2025-29750 | AMD CPU竞争条件漏洞 | 2024-03-19 | 2025-12-03 |
| cnvd-2025-29749 | AMD uProf连接点漏洞 | 2025-05-28 | 2025-12-03 |
| cnvd-2025-29748 | AMD StoreMI DLL劫持漏洞 | 2025-11-25 | 2025-12-03 |
| cnvd-2025-29747 | AMD StoreMI默认权限配置不当漏洞 | 2025-11-25 | 2025-12-03 |
| cnvd-2025-29746 | AMD CPU存在未明漏洞 | 2025-11-25 | 2025-12-03 |
| cnvd-2025-29745 | AMD CPU熵处理不当漏洞 | 2025-11-25 | 2025-12-03 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0504 | Vulnérabilité dans les produits Moxa | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0503 | Multiples vulnérabilités dans les produits Mitel | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0502 | Multiples vulnérabilités dans GitLab | 2025-06-12T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0396 | Multiples vulnérabilités dans les produits SAP | 2025-05-13T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0392 | Multiples vulnérabilités dans Mattermost Server | 2025-05-13T00:00:00.000000 | 2025-06-12T00:00:00.000000 |
| certfr-2025-avi-0501 | Multiples vulnérabilités dans les produits Microsoft | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0500 | Vulnérabilité dans Microsoft .Net | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0499 | Multiples vulnérabilités dans Microsoft Windows | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0498 | Multiples vulnérabilités dans Microsoft Office | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0497 | Vulnérabilité dans les processeurs Intel | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0496 | Multiples vulnérabilités dans les produits Fortinet | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0495 | Multiples vulnérabilités dans les produits Adobe | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0494 | Vulnérabilité dans Elastic Kibana | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0493 | Multiples vulnérabilités dans les produits Centreon | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0492 | Multiples vulnérabilités dans les produits Siemens | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0491 | Multiples vulnérabilités dans les produits Mozilla | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0490 | Multiples vulnérabilités dans Ivanti Workspace Control (IWC) | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0489 | Multiples vulnérabilités dans Google Chrome | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0488 | Vulnérabilité dans Stormshield Network Security | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0487 | Multiples vulnérabilités dans les produits SAP | 2025-06-11T00:00:00.000000 | 2025-06-11T00:00:00.000000 |
| certfr-2025-avi-0486 | Multiples vulnérabilités dans les produits Qnap | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0485 | Multiples vulnérabilités dans les produits Schneider Electric | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0484 | Vulnérabilité dans les produits HPE Aruba Networking | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0483 | Vulnérabilité dans Mozilla VPN | 2025-06-10T00:00:00.000000 | 2025-06-10T00:00:00.000000 |
| certfr-2025-avi-0482 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-06-06T00:00:00.000000 | 2025-06-06T00:00:00.000000 |
| certfr-2025-avi-0481 | Multiples vulnérabilités dans les produits IBM | 2025-06-06T00:00:00.000000 | 2025-06-06T00:00:00.000000 |
| certfr-2025-avi-0480 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-06-06T00:00:00.000000 | 2025-06-06T00:00:00.000000 |
| certfr-2025-avi-0479 | Multiples vulnérabilités dans les produits Cisco | 2025-06-05T00:00:00.000000 | 2025-06-05T00:00:00.000000 |
| certfr-2025-avi-0478 | Vulnérabilité dans Wireshark | 2025-06-05T00:00:00.000000 | 2025-06-05T00:00:00.000000 |
| certfr-2025-avi-0477 | Multiples vulnérabilités dans les produits VMware | 2025-06-05T00:00:00.000000 | 2025-06-05T00:00:00.000000 |