Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67534 |
7.1 (3.1)
|
WordPress Rencontre plugin <= 3.13.7 - Cross Site Requ… |
Jacques Malgrange |
Rencontre |
2025-12-09T14:14:03.622Z | 2026-01-20T14:28:25.186Z |
| CVE-2025-66534 |
8.8 (3.1)
|
WordPress The Aisle theme <= 2.9 - Broken Access Contr… |
Elated-Themes |
The Aisle |
2025-12-09T14:13:54.991Z | 2026-01-20T14:28:25.176Z |
| CVE-2025-67519 |
9.8 (3.1)
|
WordPress Ninja Tables plugin <= 5.2.3 - SQL Injection… |
Shahjahan Jewel |
Ninja Tables |
2025-12-09T14:13:58.092Z | 2026-01-20T14:28:25.166Z |
| CVE-2025-67536 |
6.5 (3.1)
|
WordPress LearnPress plugin <= 4.2.9.4 - Cross Site Sc… |
ThimPress |
LearnPress |
2025-12-09T14:14:04.062Z | 2026-01-20T14:28:25.165Z |
| CVE-2025-67523 |
9.8 (3.1)
|
WordPress Exhibz theme <= 3.0.9 - Local File Inclusion… |
trippleS |
Exhibz |
2025-12-09T14:13:59.287Z | 2026-01-20T14:28:25.162Z |
| CVE-2025-67532 |
9.8 (3.1)
|
WordPress Hara theme <= 1.2.17 - Local File Inclusion … |
thembay |
Hara |
2025-12-09T14:14:03.164Z | 2026-01-20T14:28:25.158Z |
| CVE-2025-67527 |
9.8 (3.1)
|
WordPress Digiqole theme < 2.2.7 - Local File Inclusio… |
trippleS |
Digiqole |
2025-12-09T14:14:00.496Z | 2026-01-20T14:28:25.133Z |
| CVE-2025-67537 |
6.5 (3.1)
|
WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross S… |
Blair Williams |
ThirstyAffiliates |
2025-12-09T14:14:04.310Z | 2026-01-20T14:28:25.132Z |
| CVE-2025-67470 |
4.3 (3.1)
|
WordPress Portfolio and Projects plugin <= 1.5.5 - Sen… |
Essential Plugin |
Portfolio and Projects |
2025-12-09T14:13:56.054Z | 2026-01-20T14:28:25.130Z |
| CVE-2025-67522 |
9.8 (3.1)
|
WordPress Jobmonster theme <= 4.8.2 - Local File Inclu… |
NooTheme |
Jobmonster |
2025-12-09T14:13:59.066Z | 2026-01-20T14:28:25.110Z |
| CVE-2025-67531 |
9.8 (3.1)
|
WordPress Turitor theme < 1.5.3 - Local File Inclusion… |
trippleS |
Turitor |
2025-12-09T14:14:01.550Z | 2026-01-20T14:28:25.095Z |
| CVE-2025-67474 |
4.3 (3.1)
|
WordPress ForumWP plugin <= 2.1.4 - Broken Access Cont… |
Ultimate Member |
ForumWP |
2025-12-09T14:13:57.009Z | 2026-01-20T14:28:25.033Z |
| CVE-2025-67521 |
9.8 (3.1)
|
WordPress Select Core plugin < 2.6 - Local File Inclus… |
Select-Themes |
Select Core |
2025-12-09T14:13:58.865Z | 2026-01-20T14:28:24.976Z |
| CVE-2025-67520 |
9.8 (3.1)
|
WordPress Media Library Tools plugin <= 1.6.15 - SQL I… |
Tiny Solutions |
Media Library Tools |
2025-12-09T14:13:58.651Z | 2026-01-20T14:28:24.948Z |
| CVE-2025-67525 |
9.8 (3.1)
|
WordPress ekommart theme < 4.3.1 - Local File Inclusio… |
Opal_WP |
ekommart |
2025-12-09T14:13:59.771Z | 2026-01-20T14:28:24.930Z |
| CVE-2025-67465 |
8.8 (3.1)
|
WordPress Simple Link Directory plugin <= 8.8.3 - Cros… |
QuantumCloud |
Simple Link Directory |
2025-12-09T14:13:55.262Z | 2026-01-20T14:28:24.889Z |
| CVE-2025-66532 |
8.8 (3.1)
|
WordPress Powerlift theme < 3.2.1 - Broken Access Cont… |
Mikado-Themes |
Powerlift |
2025-12-09T14:13:54.794Z | 2026-01-20T14:28:24.714Z |
| CVE-2025-66132 |
6.5 (3.1)
|
WordPress FAPI Member plugin <= 2.2.26 - Insecure Dire… |
FAPI Business s.r.o. |
FAPI Member |
2025-12-16T08:12:54.562Z | 2026-01-20T14:28:24.662Z |
| CVE-2025-66531 |
8.8 (3.1)
|
WordPress Salon booking system plugin <= 10.30.3 - Cro… |
Dimitri Grassi |
Salon booking system |
2025-12-09T14:13:54.558Z | 2026-01-20T14:28:24.641Z |
| CVE-2025-66129 |
5.3 (3.1)
|
WordPress Pochipp plugin <= 1.18.0 - Broken Access Con… |
wppochipp |
Pochipp |
2025-12-16T08:12:53.976Z | 2026-01-20T14:28:24.628Z |
| CVE-2025-66528 |
8.1 (3.1)
|
WordPress Thank You Page Customizer for WooCommerce pl… |
VillaTheme |
Thank You Page Customizer for WooCommerce |
2025-12-09T14:13:53.449Z | 2026-01-20T14:28:24.582Z |
| CVE-2025-66155 |
5.4 (3.1)
|
WordPress Questionar for Elementor plugin <= 1.1.7 - B… |
merkulove |
Questionar for Elementor |
2025-12-31T17:00:37.052Z | 2026-01-20T14:28:24.566Z |
| CVE-2025-66157 |
5.4 (3.1)
|
WordPress Slider for Elementor plugin <= 1.0.10 - Brok… |
merkulove |
Slider for Elementor |
2025-12-31T16:58:24.314Z | 2026-01-20T14:28:24.553Z |
| CVE-2025-66128 |
5.3 (3.1)
|
WordPress Sendinblue for WooCommerce plugin <= 4.0.49 … |
Brevo |
Sendinblue for WooCommerce |
2025-12-16T08:12:53.783Z | 2026-01-20T14:28:24.551Z |
| CVE-2025-66151 |
5.4 (3.1)
|
WordPress Countdowner for Elementor plugin <= 1.0.4 - … |
merkulove |
Countdowner for Elementor |
2025-12-31T18:32:49.483Z | 2026-01-20T14:28:24.546Z |
| CVE-2025-66150 |
5.4 (3.1)
|
WordPress Appender plugin <= 1.1.1 - Broken Access Con… |
merkulove |
Appender |
2025-12-31T18:35:57.735Z | 2026-01-20T14:28:24.539Z |
| CVE-2025-66160 |
5.4 (3.1)
|
WordPress Select Graphist for Elementor Graphist for … |
merkulove |
Select Graphist for Elementor Graphist for Elementor |
2025-12-31T16:50:19.182Z | 2026-01-20T14:28:24.538Z |
| CVE-2025-66530 |
8.8 (3.1)
|
WordPress Webba Booking plugin <= 6.2.1 - Broken Acces… |
Webba Appointment Booking |
Webba Booking |
2025-12-09T14:13:53.897Z | 2026-01-20T14:28:24.537Z |
| CVE-2025-66147 |
5.4 (3.1)
|
WordPress Coder for Elementor plugin <= 1.0.13 - Broke… |
merkulove |
Coder for Elementor |
2025-12-16T08:12:55.284Z | 2026-01-20T14:28:24.524Z |
| CVE-2025-66146 |
5.4 (3.1)
|
WordPress Logger for Elementor plugin <= 1.0.9 - Broke… |
merkulove |
Logger for Elementor |
2025-12-31T19:50:21.260Z | 2026-01-20T14:28:24.515Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-68066 |
7.5 (3.1)
|
WordPress Soledad theme <= 8.7.0 - Local File Inclusio… |
PenciDesign |
Soledad |
2025-12-16T08:13:01.813Z | 2026-01-20T14:28:27.278Z |
| CVE-2025-68065 |
7.5 (3.1)
|
WordPress Hub Core plugin <= 5.0.8 - Local File Inclus… |
LiquidThemes |
Hub Core |
2025-12-16T08:13:01.354Z | 2026-02-04T16:30:43.034Z |
| CVE-2025-68056 |
8.5 (3.1)
|
WordPress LBG Zoominoutslider plugin <= 5.4.5 - SQL In… |
LambertGroup |
LBG Zoominoutslider |
2025-12-16T08:13:00.522Z | 2026-01-20T14:28:27.264Z |
| CVE-2025-68055 |
8.5 (3.1)
|
WordPress Hydra Booking plugin <= 1.1.32 - SQL Injecti… |
Themefic |
Hydra Booking |
2025-12-16T08:12:59.985Z | 2026-01-20T14:28:27.212Z |
| CVE-2025-68054 |
8.5 (3.1)
|
WordPress CountDown With Image or Video Background plu… |
LambertGroup |
CountDown With Image or Video Background |
2025-12-16T08:12:59.794Z | 2026-01-20T14:28:27.382Z |
| CVE-2025-68053 |
8.5 (3.1)
|
WordPress xPromoter plugin <= 1.3.4 - SQL Injection vu… |
LambertGroup |
xPromoter |
2025-12-16T08:12:59.596Z | 2026-01-20T14:28:27.273Z |
| CVE-2025-68044 |
8.6 (3.1)
|
WordPress Five Star Restaurant Reservations plugin <= … |
Rustaurius |
Five Star Restaurant Reservations |
2026-01-05T10:40:55.539Z | 2026-01-20T14:28:27.250Z |
| CVE-2025-68040 |
6.5 (3.1)
|
WordPress WP Project Manager plugin <= 3.0.1 - Sensiti… |
weDevs |
WP Project Manager |
2025-12-29T23:25:11.382Z | 2026-01-20T14:28:27.453Z |
| CVE-2025-68038 |
9.8 (3.1)
|
WordPress Icegram Express Pro plugin <= 5.9.11 - PHP O… |
Icegram |
Icegram Express Pro |
2025-12-24T13:10:25.043Z | 2026-01-20T14:28:27.423Z |
| CVE-2025-68036 |
7.5 (3.1)
|
WordPress CubeWP plugin <= 1.1.27 - Broken Access Cont… |
Emraan Cheema |
CubeWP |
2025-12-29T23:26:17.386Z | 2026-01-20T14:28:27.210Z |
| CVE-2025-68033 |
7.5 (3.1)
|
WordPress Custom Related Posts plugin <= 1.8.0 - Sensi… |
Brecht |
Custom Related Posts |
2026-01-05T10:39:01.024Z | 2026-01-20T14:28:27.271Z |
| CVE-2025-68029 |
6.3 (3.1)
|
WordPress Wallet System for WooCommerce plugin <= 2.7.… |
WP Swings |
Wallet System for WooCommerce |
2026-01-05T10:37:18.929Z | 2026-01-20T14:28:27.295Z |
| CVE-2025-68014 |
6.5 (3.1)
|
WordPress AweBooking plugin <= 3.2.26 - Sensitive Data… |
Awethemes |
AweBooking |
2026-01-05T10:36:24.385Z | 2026-01-20T14:28:27.299Z |
| CVE-2025-67999 |
7.6 (3.1)
|
WordPress Newsletter plugin <= 9.0.9 - SQL Injection v… |
Stefano Lissa |
Newsletter |
2025-12-16T08:12:59.398Z | 2026-01-20T14:28:27.287Z |
| CVE-2025-67989 |
5.4 (3.1)
|
WordPress Kerge theme <= 4.1.3 - Server Side Request F… |
LMPixels |
Kerge |
2025-12-16T08:12:59.145Z | 2026-01-20T14:28:27.164Z |
| CVE-2025-67986 |
6.1 (3.1)
|
WordPress Document Library Lite plugin <= 1.1.7 - Cros… |
Barn2 Plugins |
Document Library Lite |
2025-12-16T08:12:58.951Z | 2026-02-04T16:31:05.922Z |
| CVE-2025-67985 |
5.3 (3.1)
|
WordPress Document Library Lite plugin <= 1.1.7 - Inse… |
Barn2 Plugins |
Document Library Lite |
2025-12-16T08:12:58.770Z | 2026-01-20T14:28:27.390Z |
| CVE-2025-67976 |
6.5 (3.1)
|
WordPress Watu Quiz plugin <= 3.4.5 - Broken Access Co… |
Bob |
Watu Quiz |
2025-12-16T08:12:58.348Z | 2026-01-20T14:28:27.243Z |
| CVE-2025-67965 |
5.3 (3.1)
|
WordPress Homey Core plugin <= 2.4.3 - Broken Access C… |
favethemes |
Homey Core |
2025-12-16T08:12:58.164Z | 2026-01-20T14:28:27.313Z |
| CVE-2025-67962 |
7.6 (3.1)
|
WordPress Broken Link Checker plugin <= 1.2.6 - SQL In… |
AIOSEO Plugin Team |
Broken Link Checker |
2025-12-16T08:12:57.962Z | 2026-01-20T14:28:27.286Z |
| CVE-2025-67950 |
8.5 (3.1)
|
WordPress All In One SEO Pack plugin <= 4.9.1 - SQL In… |
Syed Balkhi |
All In One SEO Pack |
2025-12-16T08:12:57.565Z | 2026-01-20T14:28:27.273Z |
| CVE-2025-67948 |
4.3 (3.1)
|
WordPress SendPulse Email Marketing Newsletter plugin … |
SendPulse |
SendPulse Email Marketing Newsletter |
2025-12-16T08:12:57.382Z | 2026-01-20T14:28:27.268Z |
| CVE-2025-67933 |
6.1 (3.1)
|
WordPress Taskbuilder plugin <= 4.0.9 - Cross Site Scr… |
taskbuilder |
Taskbuilder |
2026-01-08T09:17:49.199Z | 2026-01-20T14:28:27.168Z |
| CVE-2025-67932 |
6.1 (3.1)
|
WordPress Listeo Core plugin < 2.0.19 - Cross Site Scr… |
purethemes |
Listeo Core |
2026-01-08T09:17:49.010Z | 2026-01-20T14:28:26.774Z |
| CVE-2025-67931 |
7.5 (3.1)
|
WordPress BulletProof Security plugin <= 6.9 - Sensiti… |
AITpro |
BulletProof Security |
2026-01-08T09:17:48.784Z | 2026-01-20T14:28:26.780Z |
| CVE-2025-67930 |
6.1 (3.1)
|
WordPress eHive Search plugin <= 2.5.0 - Cross Site Sc… |
Vernon Systems Limited |
eHive Search |
2026-01-08T09:17:48.582Z | 2026-01-20T14:28:26.825Z |
| CVE-2025-67929 |
5.3 (3.1)
|
WordPress TI WooCommerce Wishlist plugin <= 2.10.0 - B… |
templateinvaders |
TI WooCommerce Wishlist |
2025-12-16T08:12:57.185Z | 2026-02-04T16:31:23.090Z |
| CVE-2025-67928 |
9.8 (3.1)
|
WordPress Automotive Listings plugin <= 18.6 - SQL Inj… |
themesuite |
Automotive Listings |
2026-01-08T09:17:48.385Z | 2026-01-20T14:28:26.832Z |
| CVE-2025-67927 |
6.1 (3.1)
|
WordPress Link Whisper Free plugin <= 0.8.8 - Cross Si… |
Spencer Haws |
Link Whisper Free |
2026-01-08T09:17:48.182Z | 2026-01-20T14:28:26.716Z |
| CVE-2025-67926 |
8.8 (3.1)
|
WordPress Fluent Support plugin <= 1.10.4 - Broken Acc… |
Shahjahan Jewel |
Fluent Support |
2026-01-08T09:17:47.946Z | 2026-01-20T14:28:26.482Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-68036 | Missing Authorization vulnerability in Emraan Cheema CubeWP allows Accessing Functionality Not Prop… | 2025-12-30T00:15:52.047 | 2026-01-20T15:19:34.923 |
| fkie_cve-2025-68033 | Insertion of Sensitive Information Into Sent Data vulnerability in Brecht Custom Related Posts allo… | 2026-01-05T11:17:41.680 | 2026-01-20T15:19:34.823 |
| fkie_cve-2025-68029 | Insertion of Sensitive Information Into Sent Data vulnerability in WP Swings Wallet System for WooC… | 2026-01-05T11:17:41.537 | 2026-01-20T15:19:34.730 |
| fkie_cve-2025-68014 | Insertion of Sensitive Information Into Sent Data vulnerability in Awethemes AweBooking allows Retr… | 2026-01-05T11:17:41.387 | 2026-01-20T15:19:34.637 |
| fkie_cve-2025-67999 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:16:00.800 | 2026-01-20T15:19:34.513 |
| fkie_cve-2025-67989 | Server-Side Request Forgery (SSRF) vulnerability in LMPixels Kerge kerge allows Server Side Request… | 2025-12-16T09:16:00.663 | 2026-01-20T15:19:34.390 |
| fkie_cve-2025-67986 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-16T09:16:00.507 | 2026-01-20T15:19:34.270 |
| fkie_cve-2025-67985 | Authorization Bypass Through User-Controlled Key vulnerability in Barn2 Plugins Document Library Li… | 2025-12-16T09:16:00.373 | 2026-01-20T15:19:34.143 |
| fkie_cve-2025-67976 | Missing Authorization vulnerability in Bob Watu Quiz watu allows Exploiting Incorrectly Configured … | 2025-12-16T09:16:00.103 | 2026-01-20T15:19:33.890 |
| fkie_cve-2025-67965 | Missing Authorization vulnerability in favethemes Homey Core homey-core allows Exploiting Incorrect… | 2025-12-16T09:15:59.970 | 2026-01-20T15:19:33.760 |
| fkie_cve-2025-67962 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:15:59.850 | 2026-01-20T15:19:33.630 |
| fkie_cve-2025-67950 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2025-12-16T09:15:59.580 | 2026-01-20T15:19:33.373 |
| fkie_cve-2025-67948 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in SendPul… | 2025-12-16T09:15:59.447 | 2026-01-20T15:19:33.250 |
| fkie_cve-2025-67933 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:52.393 | 2026-01-20T15:19:32.620 |
| fkie_cve-2025-67932 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:52.263 | 2026-01-20T15:19:32.497 |
| fkie_cve-2025-67931 | Insertion of Sensitive Information Into Sent Data vulnerability in AITpro BulletProof Security bull… | 2026-01-08T10:15:52.127 | 2026-01-20T15:19:32.373 |
| fkie_cve-2025-67930 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:51.990 | 2026-01-20T15:19:32.247 |
| fkie_cve-2025-67929 | Missing Authorization vulnerability in templateinvaders TI WooCommerce Wishlist ti-woocommerce-wish… | 2025-12-16T09:15:59.320 | 2026-01-20T15:19:32.117 |
| fkie_cve-2025-67928 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-01-08T10:15:51.863 | 2026-01-20T15:19:31.980 |
| fkie_cve-2025-67927 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:51.740 | 2026-01-20T15:19:31.847 |
| fkie_cve-2025-67926 | Missing Authorization vulnerability in Shahjahan Jewel Fluent Support fluent-support allows Exploit… | 2026-01-08T10:15:51.620 | 2026-01-20T15:19:31.723 |
| fkie_cve-2025-67924 | Unrestricted Upload of File with Dangerous Type vulnerability in zozothemes Corpkit corpkit allows … | 2026-01-08T10:15:51.347 | 2026-01-20T15:19:31.467 |
| fkie_cve-2025-67921 | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability … | 2026-01-08T10:15:51.100 | 2026-01-20T15:19:31.210 |
| fkie_cve-2025-67920 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2026-01-08T10:15:50.977 | 2026-01-20T15:19:31.080 |
| fkie_cve-2025-67919 | Authorization Bypass Through User-Controlled Key vulnerability in WofficeIO Woffice Core woffice-co… | 2026-01-08T10:15:50.840 | 2026-01-20T15:19:30.950 |
| fkie_cve-2025-67918 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:50.720 | 2026-01-20T15:19:30.827 |
| fkie_cve-2025-67917 | Missing Authorization vulnerability in shinetheme Traveler traveler allows Exploiting Incorrectly C… | 2026-01-08T10:15:50.593 | 2026-01-20T15:19:30.703 |
| fkie_cve-2025-67916 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-01-08T10:15:50.470 | 2026-01-20T15:19:30.580 |
| fkie_cve-2025-67915 | Authentication Bypass Using an Alternate Path or Channel vulnerability in Arraytics Timetics timeti… | 2026-01-08T10:15:50.343 | 2026-01-20T15:19:30.457 |
| fkie_cve-2025-67914 | Path Traversal: '.../...//' vulnerability in beeteam368 VidMov vidmov allows Path Traversal.This is… | 2026-01-08T10:15:50.217 | 2026-01-20T15:19:30.330 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-pxqv-3v4v-fcv9 |
7.8 (3.1)
5.1 (4.0)
|
Improper input validation in Galaxy Store prior to version 4.6.02 allows local attacker to execute … | 2026-01-09T09:31:19Z | 2026-01-15T21:31:45Z |
| ghsa-q9rf-32g7-6fx5 |
7.8 (3.1)
7.3 (4.0)
|
Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentiall… | 2026-01-09T09:31:19Z | 2026-01-15T21:31:44Z |
| ghsa-q7wm-chc7-f7rj |
3.3 (3.1)
4.8 (4.0)
|
Improper Export of Android Application Components in UwbTest prior to SMR Jan-2026 Release 1 allows… | 2026-01-09T09:31:19Z | 2026-01-15T21:31:44Z |
| ghsa-fr9w-f26g-fh68 |
7.8 (3.1)
6.8 (4.0)
|
Improper access control in SLocation prior to SMR Jan-2026 Release 1 allows local attackers to exec… | 2026-01-09T09:31:19Z | 2026-01-15T21:31:44Z |
| ghsa-f43f-xc66-f5hm |
5.5 (3.1)
2.3 (4.0)
|
Improper input validation in SecSettings prior to SMR Jan-2026 Release 1 allows local attacker to a… | 2026-01-09T09:31:19Z | 2026-01-15T21:31:44Z |
| ghsa-6pjr-p3mh-rr6x |
5.5 (3.1)
2.1 (4.0)
|
Improper handling of insufficient permission in Samsung Cloud prior to version 5.6.11 allows local … | 2026-01-09T09:31:19Z | 2026-01-15T21:31:44Z |
| ghsa-797x-vjpf-whgj |
6.7 (3.1)
6.7 (4.0)
|
Use after free in DualDAR prior to SMR Jan-2026 Release 1 allows local privileged attackers to exec… | 2026-01-09T09:31:19Z | 2026-01-15T21:31:43Z |
| ghsa-qhx6-hpfj-8m4g |
5.5 (3.1)
2.1 (4.0)
|
When loading a plist file, the plistlib module reads data in size specified by the file itself, mea… | 2025-12-01T18:30:38Z | 2026-01-15T21:31:42Z |
| ghsa-q863-2f3f-cf77 |
4.3 (3.1)
5.3 (4.0)
|
BullWall Ransomware Containment relies on the number of file modifications to trigger detection. An… | 2025-12-18T21:31:44Z | 2026-01-15T21:31:42Z |
| ghsa-px28-qwg7-83x2 |
5.5 (3.1)
6.9 (4.0)
|
An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local use… | 2025-11-20T18:31:01Z | 2026-01-15T21:31:42Z |
| ghsa-mx9q-6x2g-xj7c |
8.8 (3.1)
8.7 (4.0)
|
BullWall Ransomware Containment contains excluded file paths, such as '$recycle.bin' that are not m… | 2025-12-18T21:31:44Z | 2026-01-15T21:31:42Z |
| ghsa-mw8w-4648-89vr |
9.3 (4.0)
|
Entrust Instant Financial Issuance (IFI) On Premise software (formerly referred to as CardWizard) v… | 2025-12-09T18:30:45Z | 2026-01-15T21:31:42Z |
| ghsa-g9jw-93wv-fj7v |
7.8 (3.1)
8.4 (4.0)
|
BuhoNTFS contains an insecure XPC service that allows local, unprivileged users to escalate their p… | 2025-12-12T18:30:35Z | 2026-01-15T21:31:42Z |
| ghsa-g7hf-xr86-7qmf |
9.8 (3.1)
9.2 (4.0)
|
Stack-based Buffer Overflow vulnerability in Sharp Display Solutions projectors allows a attacker m… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-chcm-jqp3-j5w3 |
6.2 (3.1)
7.5 (4.0)
|
BullWall Server Intrusion Protection services are initialized after login services. An authenticate… | 2025-12-18T21:31:44Z | 2026-01-15T21:31:42Z |
| ghsa-c3mr-fcrj-6g2w |
9.8 (3.1)
9.2 (4.0)
|
Missing Authentication for Critical Function vulnerability in Sharp Display Solutions Media Player … | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-974m-5v9f-vwxw |
6.2 (3.1)
7.5 (4.0)
|
BullWall Server Intrusion Protection has a noticeable delay before the MFA check when connecting vi… | 2025-12-18T21:31:44Z | 2026-01-15T21:31:42Z |
| ghsa-7xr9-h4qx-73w3 |
9.8 (3.1)
8.4 (4.0)
|
Stack-based Buffer Overflow vulnerability in Sharp Display Solutions projectors allows a attacker m… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-7cf5-cv98-v7j6 |
9.8 (3.1)
9.5 (4.0)
|
Improper Validation of Integrity Check Value vulnerability in Sharp Display Solutions projectors al… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-32fm-h45j-grpv |
7.5 (3.1)
9.1 (4.0)
|
Path Traversal vulnerability in Sharp Display Solutions projectors allows a attacker may access and… | 2025-12-22T06:30:27Z | 2026-01-15T21:31:42Z |
| ghsa-rj4r-gj6w-jfgc |
6.5 (3.1)
|
An issue was discovered in Dolby UDC 4.5 through 4.13. A crash of the DD+ decoder process can occur… | 2025-10-20T15:30:25Z | 2026-01-15T21:31:41Z |
| ghsa-4wg4-p27p-5q2r |
5.4 (3.1)
|
Pimcore Web2Print Tools Bundle "Favourite Output Channel Configuration" Missing Function Level Auth… | 2026-01-15T18:14:17Z | 2026-01-15T20:18:09Z |
| ghsa-hqrp-m84v-2m2f |
4.3 (3.1)
|
Pimcore's Admin Classic Bundle is Missing Function Level Authorization on "Predefined Properties" Listing | 2026-01-15T18:13:26Z | 2026-01-15T20:17:53Z |
| ghsa-m3r2-724c-pwgf |
4.3 (3.1)
|
Pimcore is Vulnerable to Broken Access Control: Missing Function Level Authorization on "Static Rou… | 2026-01-15T18:12:49Z | 2026-01-15T20:17:47Z |
| ghsa-q433-j342-rp9h |
8.6 (3.1)
|
Pimcore ENV Variables and Cookie Informations are exposed in http_error_log | 2026-01-15T18:11:46Z | 2026-01-15T20:17:42Z |
| ghsa-vh2x-fw87-4fxq |
8.1 (3.1)
|
DPanel has an arbitrary file deletion vulnerability in /api/common/attach/delete interface | 2026-01-15T17:58:42Z | 2026-01-15T20:17:37Z |
| ghsa-xfhx-r7ww-5995 |
7.1 (4.0)
|
Google Keras Allocates Resources Without Limits or Throttling in the HDF5 weight loading component | 2026-01-15T15:31:19Z | 2026-01-15T20:11:41Z |
| ghsa-xcr7-93gf-w336 |
5.5 (3.1)
|
A stack overflow in the pcmreframe_flush_packet function of GPAC v2.4.0 allows attackers to cause a… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-w268-23r7-r9xw |
8.2 (3.1)
|
GPAC v2.4.0 was discovered to contain an out-of-bounds read in the oggdmx_parse_tags function. | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ghsa-vgf7-qrg3-cm45 |
4.8 (3.1)
|
A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) and C… | 2026-01-15T18:31:33Z | 2026-01-15T18:31:33Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28250 | Cilium is a networking, observability, and security solution with an eBPF-based dataplane… | 2024-03-08T06:02:46.494848Z |
| gsd-2024-28546 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.494592Z |
| gsd-2024-28397 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.494383Z |
| gsd-2024-28181 | turbo_boost-commands is a set of commands to help you build robust reactive applications… | 2024-03-08T06:02:46.494175Z |
| gsd-2024-28430 | DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability … | 2024-03-08T06:02:46.493911Z |
| gsd-2024-28456 | Cross Site Scripting vulnerability in Campcodes Online Marriage Registration System v.1.0… | 2024-03-08T06:02:46.493700Z |
| gsd-2024-28414 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.493291Z |
| gsd-2024-28556 | SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows rem… | 2024-03-08T06:02:46.493086Z |
| gsd-2024-28398 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.492876Z |
| gsd-2024-28255 | OpenMetadata is a unified platform for discovery, observability, and governance powered b… | 2024-03-08T06:02:46.492234Z |
| gsd-2024-28205 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.492025Z |
| gsd-2024-28457 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.491805Z |
| gsd-2024-28388 | SQL injection vulnerability in SunnyToo stproductcomments module for PrestaShop v.1.0.5 a… | 2024-03-08T06:02:46.491141Z |
| gsd-2024-28643 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.490632Z |
| gsd-2024-28343 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.490065Z |
| gsd-2024-28485 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.489839Z |
| gsd-2024-28521 | SQL Injection vulnerability in Netcome NS-ASG Application Security Gateway v.6.3.1 allows… | 2024-03-08T06:02:46.489355Z |
| gsd-2024-28679 | DedeCMS v5.7 was discovered to contain a cross-site scripting (XSS) vulnerability via Pho… | 2024-03-08T06:02:46.487890Z |
| gsd-2024-28325 | Asus RT-N12+ B1 router stores credentials in cleartext, which could allow local attackers… | 2024-03-08T06:02:46.487685Z |
| gsd-2024-28269 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.487485Z |
| gsd-2024-28200 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.486762Z |
| gsd-2024-28317 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.486525Z |
| gsd-2024-28333 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.485906Z |
| gsd-2024-28695 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.484412Z |
| gsd-2024-28519 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.483804Z |
| gsd-2024-28599 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.483582Z |
| gsd-2024-28468 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.482608Z |
| gsd-2024-28303 | Open Source Medicine Ordering System v1.0 was discovered to contain a SQL injection vulne… | 2024-03-08T06:02:46.482185Z |
| gsd-2024-28217 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.481926Z |
| gsd-2024-28182 | nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghtt… | 2024-03-08T06:02:46.481646Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188193 | Malicious code in nconf-superagent-public-writable (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188192 | Malicious code in nconf-middleware-extremophile-cosmicweb (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188191 | Malicious code in nconf-markdownlint-archaeometry-superagent (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188190 | Malicious code in nconf-gemini-webdriver-mocha-forever (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188189 | Malicious code in nconf-cryptography-paleoanthropology-janus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188188 | Malicious code in nconf-aurora-ionosphere-callisto (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188187 | Malicious code in native-transform-nightmare-polaris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188186 | Malicious code in native-thermosphere-hermes-server (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188185 | Malicious code in native-rollup-plugin-sagitta-tectonophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188184 | Malicious code in native-rate-limiter-uninstall-regulus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188183 | Malicious code in native-quasar-middleware-cz-conventional-changelog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188182 | Malicious code in native-nashira-seismology-heliophysics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188181 | Malicious code in native-izar-hugo-start (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188180 | Malicious code in native-galaxy-antares-global (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188179 | Malicious code in native-gacrux-antares-phoenix (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188178 | Malicious code in native-electron-builder-nashira-tachyon (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188177 | Malicious code in native-docusaurus-xerxes-unuk (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188176 | Malicious code in native-coronalmassejection-writable-bionics (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188175 | Malicious code in native-callback-prettier-magellan (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188174 | Malicious code in native-blackhole-parcel-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188173 | Malicious code in nashira-winston-aurora-gatsby (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188172 | Malicious code in nashira-materialize-publish-galaxy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188171 | Malicious code in nashira-dotenv-parse-variables-gulp-lynx (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188170 | Malicious code in nashira-betelgeuse-astrometry-callback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188169 | Malicious code in nanotechnology-seismology-dotenv-parse-variables-darkenergy (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188168 | Malicious code in nanotechnology-nightwatch-elara-mira (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188167 | Malicious code in nanotechnology-eventhoriz-iota-commitizen (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188166 | Malicious code in nanotechnology-ariel-atlas-loopback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188165 | Malicious code in mysql-spectron-webdriver-primatology-eslint-plugin (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188164 | Malicious code in mysql-quasar-nodejs-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-3035 | Apple iOS und Apple iPadOS: Mehrere Schwachstellen | 2023-11-30T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2023-1384 | Grafana: Mehrere Schwachstellen | 2023-06-06T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2023-1109 | Ruby: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-09-28T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0726 | Grafana: Schwachstelle ermöglicht Cross-Site Scripting | 2023-03-22T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0334 | Grafana: Mehrere Schwachstellen | 2022-11-08T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2023-0202 | Grafana: Mehrere Schwachstellen | 2023-01-25T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-1907 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-05-19T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-1702 | Grafana: Mehrere Schwachstellen | 2022-10-12T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-1486 | Grafana: Mehrere Schwachstellen ermöglichen Privilegieneskalation | 2022-09-20T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-1356 | Ansible: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-06-24T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-1353 | Ansible Tower: Schwachstelle ermöglicht Offenlegung von Informationen | 2021-04-07T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0696 | Grafana: Mehrere Schwachstellen | 2022-07-14T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0407 | Grafana: Mehrere Schwachstellen | 2022-02-08T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0406 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2022-01-18T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0403 | Grafana: Schwachstelle ermöglicht Privilegieneskalation | 2021-11-15T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0402 | Grafana: Schwachstelle ermöglicht Cross-Site Scripting | 2021-11-03T23:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2022-0401 | Grafana: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2021-10-05T22:00:00.000+00:00 | 2024-01-23T23:00:00.000+00:00 |
| wid-sec-w-2024-0174 | Splunk Splunk Enterprise: Mehrere Schwachstellen | 2024-01-22T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2023-2311 | Wibu-Systems CodeMeter: Schwachstelle ermöglicht Codeausführung und Privilegienerweiterung | 2023-09-12T22:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2023-1927 | Linux-Kernel: Schwachstelle ermöglicht Privilegienerweiterung oder einen Denial-of-Service-Zustand | 2023-07-31T22:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0151 | sudo: Schwachstelle ermöglicht Privilegieneskalation | 2023-01-18T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2023-0105 | GitLab und Git: Mehrere Schwachstellen ermöglichen Codeausführung | 2023-01-17T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2022-2238 | vim: Schwachstelle ermöglicht Manipulation von Speicher | 2022-12-05T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2022-1956 | sudo: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-11-03T23:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2022-1581 | GraphicsMagick: Schwachstelle ermöglicht nicht spezifizierten Angriff | 2022-04-07T22:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2022-1489 | dbus: Mehrere Schwachstellen | 2022-09-20T22:00:00.000+00:00 | 2024-01-22T23:00:00.000+00:00 |
| wid-sec-w-2024-0170 | VMware Tanzu Spring Framework: Schwachstelle ermöglicht Denial of Service | 2024-01-21T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0167 | Lenovo Tablets: Mehrere Schwachstellen | 2024-01-21T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0166 | WithSecure Endpoint Protection: Schwachstelle ermöglicht Denial of Service | 2024-01-21T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| wid-sec-w-2024-0165 | NetApp ActiveIQ Unified Manager: Schwachstelle ermöglicht Denial of Service | 2024-01-21T23:00:00.000+00:00 | 2024-01-21T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2018:3592 | Red Hat Security Advisory: Red Hat Single Sign-On 7.2.5 on RHEL 6 security and bug fix update | 2018-11-13T18:15:39+00:00 | 2026-01-13T21:41:52+00:00 |
| rhsa-2018:3403 | Red Hat Security Advisory: thunderbird security update | 2018-10-30T17:02:27+00:00 | 2026-01-13T21:41:52+00:00 |
| rhsa-2018:3107 | Red Hat Security Advisory: wpa_supplicant security and bug fix update | 2018-10-30T10:59:15+00:00 | 2026-01-13T21:41:52+00:00 |
| rhsa-2018:3006 | Red Hat Security Advisory: firefox security update | 2018-10-24T22:18:47+00:00 | 2026-01-13T21:41:51+00:00 |
| rhsa-2018:2946 | Red Hat Security Advisory: Red Hat OpenShift Application Runtimes security and bug fix update | 2018-10-18T08:14:41+00:00 | 2026-01-13T21:41:50+00:00 |
| rhsa-2018:2939 | Red Hat Security Advisory: Red Hat FIS 2.0 on Fuse 6.3.0 R8 security and bug fix update | 2018-10-17T19:28:22+00:00 | 2026-01-13T21:41:50+00:00 |
| rhsa-2018:2757 | Red Hat Security Advisory: 389-ds-base security and bug fix update | 2018-09-25T19:18:02+00:00 | 2026-01-13T21:41:49+00:00 |
| rhsa-2018:2692 | Red Hat Security Advisory: firefox security update | 2018-09-12T11:01:49+00:00 | 2026-01-13T21:41:48+00:00 |
| rhsa-2018:2113 | Red Hat Security Advisory: firefox security update | 2018-06-28T16:23:03+00:00 | 2026-01-13T21:41:47+00:00 |
| rhsa-2018:2112 | Red Hat Security Advisory: firefox security update | 2018-06-28T16:23:08+00:00 | 2026-01-13T21:41:47+00:00 |
| rhsa-2018:1809 | Red Hat Security Advisory: Red Hat OpenShift Application Runtimes Spring Boot security and bug fix update | 2018-06-07T08:25:56+00:00 | 2026-01-13T21:41:46+00:00 |
| rhsa-2018:1450 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.20 security update | 2018-05-14T20:36:21+00:00 | 2026-01-13T21:41:46+00:00 |
| rhsa-2018:1449 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.20 security update | 2018-05-14T20:36:31+00:00 | 2026-01-13T21:41:45+00:00 |
| rhsa-2018:1448 | Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 6.4.20 security update | 2018-05-14T20:36:07+00:00 | 2026-01-13T21:41:45+00:00 |
| rhea-2019:1119 | Red Hat Enhancement Advisory: rhvm-appliance security, bug fix, and enhancement update | 2019-05-08T20:05:40+00:00 | 2026-01-13T21:41:43+00:00 |
| rhba-2018:3743 | Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update | 2018-12-12T14:16:43+00:00 | 2026-01-13T21:41:40+00:00 |
| rhsa-2020:1665 | Red Hat Security Advisory: qt5 security, bug fix, and enhancement update | 2020-04-29T16:01:57+00:00 | 2026-01-13T21:37:48+00:00 |
| rhsa-2020:1172 | Red Hat Security Advisory: qt security update | 2020-03-31T20:18:53+00:00 | 2026-01-13T21:37:48+00:00 |
| rhsa-2019:3232 | Red Hat Security Advisory: polkit security update | 2019-10-29T14:20:12+00:00 | 2026-01-13T21:37:47+00:00 |
| rhsa-2019:2053 | Red Hat Security Advisory: libtiff security update | 2019-08-06T14:00:02+00:00 | 2026-01-13T21:37:46+00:00 |
| rhsa-2019:2046 | Red Hat Security Advisory: polkit security and bug fix update | 2019-08-06T13:57:05+00:00 | 2026-01-13T21:37:46+00:00 |
| rhsa-2019:1951 | Red Hat Security Advisory: nss and nspr security, bug fix, and enhancement update | 2019-07-30T19:50:55+00:00 | 2026-01-13T21:37:45+00:00 |
| rhsa-2019:0681 | Red Hat Security Advisory: thunderbird security update | 2019-03-28T14:52:57+00:00 | 2026-01-13T21:37:43+00:00 |
| rhsa-2019:0010 | Red Hat Security Advisory: rh-perl524-perl security update | 2019-01-02T16:14:38+00:00 | 2026-01-13T21:37:43+00:00 |
| rhsa-2018:3007 | Red Hat Security Advisory: java-1.6.0-sun security update | 2018-10-24T21:39:41+00:00 | 2026-01-13T21:37:41+00:00 |
| rhsa-2018:3096 | Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update | 2018-10-30T12:31:39+00:00 | 2026-01-13T21:37:39+00:00 |
| rhsa-2018:3008 | Red Hat Security Advisory: java-1.6.0-sun security update | 2018-10-24T21:39:49+00:00 | 2026-01-13T21:37:37+00:00 |
| rhsa-2018:2713 | Red Hat Security Advisory: java-1.8.0-ibm security update | 2018-09-17T14:54:13+00:00 | 2026-01-13T21:37:36+00:00 |
| rhsa-2018:2712 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-09-17T14:51:15+00:00 | 2026-01-13T21:37:36+00:00 |
| rhsa-2018:2576 | Red Hat Security Advisory: java-1.7.1-ibm security update | 2018-08-28T19:21:22+00:00 | 2026-01-13T21:37:35+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2023-25668 | TensorFlow vulnerable to heap out-of-buffer read in the QuantizeAndDequantize operation | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25667 | TensorFlow vulnerable to segfault when opening multiframe gif | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25666 | TensorFlow has Floating Point Exception in AudioSpectrogram | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25665 | TensorFlow has Null Pointer Error in SparseSparseMaximum | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25664 | TensorFlow vulnerable to Heap Buffer Overflow in AvgPoolGrad | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25663 | TensorFlow has Null Pointer Error in TensorArrayConcatV2 | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25662 | TensorFlow vulnerable to integer overflow in EditDistance | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25660 | TensorFlow vulnerable to seg fault in `tf.raw_ops.Print` | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25659 | TensorFlow vulnerable to Out-of-Bounds Read in DynamicStitch | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25658 | TensorFlow vulnerable to Out-of-Bounds Read in GRUBlockCellGrad | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25153 | containerd OCI image importer memory exhaustion | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-25012 | The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long. | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-23931 | Cipher.update_into can corrupt memory in pyca cryptography | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-23915 | A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using its HSTS support curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. This HSTS mechanism would however surprisingly fail when multiple transfers are done in parallel as the HSTS cache file gets overwritten by the most recentlycompleted transfer. A later HTTP-only transfer to the earlier host name would then *not* get upgraded properly to HSTS. | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-23914 | A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality fail when multiple URLs are requested serially. Using its HSTS support curl can be instructed to use HTTPS instead of usingan insecure clear-text HTTP step even when HTTP is provided in the URL. ThisHSTS mechanism would however surprisingly be ignored by subsequent transferswhen done on the same command line because the state would not be properlycarried on. | 2023-02-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-22466 | Tokio's reject_remote_clients configuration may get dropped when creating a Windows named pipe | 2023-01-04T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-1668 | A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0 OVS will install the datapath flow without the action modifying the IP header. This issue results (for both kernel and userspace datapath) in installing a datapath flow matching all IP protocols (nw_proto is wildcarded) for this flow but with an incorrect action possibly causing incorrect handling of other IP packets with a != 0 IP protocol that matches this dp flow. | 2023-04-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2023-0465 | Invalid certificate policies in leaf certificates are silently ignored | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-4904 | A flaw was found in the c-ares package. The ares_set_sortlist is missing checks about the validity of the input string which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrity. | 2023-03-10T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-48579 | UnRAR before 6.2.3 allows extraction of files outside of the destination folder via symlink chains. | 2023-08-01T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-48285 | loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive. | 2023-01-04T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-47085 | An issue was discovered in ostree before 2022.7 allows attackers to cause a denial of service or other unspecified impacts via the print_panic function in repo_checkout_filter.rs. | 2023-07-01T07:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-45873 | systemd 250 and 251 allows local users to achieve a systemd-coredump deadlock by triggering a crash that has a long backtrace. This occurs in parse_elf_object in shared/elf-util.c. The exploitation methodology is to crash a binary calling the same function recursively and put it in a deeply nested directory to make its backtrace large enough to cause the deadlock. This must be done 16 times when MaxConnections=16 is set for the systemd/units/systemd-coredump.socket file. | 2022-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-4515 | A flaw was found in Exuberant Ctags in the way it handles the "-o" option. This option specifies the tag filename. A crafted tag filename specified in the command line or in the configuration file results in arbitrary command execution because the externalSortTags() in sort.c calls the system(3) function in an unsafe way. | 2022-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-4415 | A vulnerability was found in systemd. This security flaw can cause a local information leak due to systemd-coredump not respecting the fs.suid_dumpable kernel setting. | 2023-01-04T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-43551 | A vulnerability exists in curl <7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. However the HSTS mechanism could be bypassed if the host name in the given URL first uses IDN characters that get replaced to ASCII counterparts as part of the IDN conversion. Like using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop (U+002E) `.`. Then in a subsequent request it does not detect the HSTS state and makes a clear text transfer. Because it would store the info IDN encoded but look for it IDN decoded. | 2022-12-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-42916 | In curl before 7.86.0 the HSTS check could be bypassed to trick it into staying with HTTP. Using its HSTS support curl can be instructed to use HTTPS directly (instead of using an insecure cleartext HTTP step) even when HTTP is provided in the URL. This mechanism could be bypassed if the host name in the given URL uses IDN characters that get replaced with ASCII counterparts as part of the IDN conversion e.g. using the character UTF-8 U+3002 (IDEOGRAPHIC FULL STOP) instead of the common ASCII full stop of U+002E (.). The earliest affected version is 7.77.0 2021-05-26. | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-42915 | curl before 7.86.0 has a double free. If curl is told to use an HTTP proxy for a transfer with a non-HTTP(S) URL it sets up the connection to the remote server by issuing a CONNECT request to the proxy and then tunnels the rest of the protocol through. An HTTP proxy might refuse this request (HTTP proxies often only allow outgoing connections to specific port numbers like 443 for HTTPS) and instead return a non-200 status code to the client. Due to flaws in the error/cleanup handling this could trigger a double free in curl if one of the following schemes were used in the URL for the transfer: dict gopher gophers ldap ldaps rtmp rtmps or telnet. The earliest affected version is 7.77.0. | 2022-10-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-40320 | cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. | 2022-09-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2022-39353 | xmldom allows multiple root nodes in a DOM | 2022-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201701-0738 | An issue was discovered in ABOOT in OnePlus 3 and 3T OxygenOS before 4.0.2. The attacker … | 2025-04-20T23:27:29.113000Z |
| var-201701-0864 | An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open ena… | 2025-04-20T23:27:29.025000Z |
| var-201702-0080 | An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (… | 2025-04-20T23:27:28.551000Z |
| var-201702-0856 | An issue was discovered in Becton, Dickinson and Company (BD) Alaris 8015 Point of Care (… | 2025-04-20T23:27:28.516000Z |
| var-201702-0311 | Drivers for the Intel Ethernet Controller X710 and Intel Ethernet Controller XL710 famili… | 2025-04-20T23:27:28.454000Z |
| var-201702-0437 | IBM Security Access Manager for Web 7.0.0, 8.0.0, and 9.0.0 uses weaker than expected cry… | 2025-04-20T23:27:28.398000Z |
| var-201702-0605 | The W3C High Resolution Time API, as implemented in various web browsers, does not consid… | 2025-04-20T23:27:28.207000Z |
| var-201702-0667 | The Siemens web application RUGGEDCOM NMS < V1.2 on port 8080/TCP and 8081/TCP could allo… | 2025-04-20T23:27:28.169000Z |
| var-201702-0668 | A non-privileged user of the Siemens web application RUGGEDCOM NMS < V1.2 on port 8080/TC… | 2025-04-20T23:27:28.126000Z |
| var-201702-0793 | A vulnerability in the web-based management interface of Cisco Unified Communications Man… | 2025-04-20T23:27:28.059000Z |
| var-201702-0794 | A vulnerability in the web-based management interface of Cisco Unified Communications Man… | 2025-04-20T23:27:28.020000Z |
| var-201702-0788 | A vulnerability in the serviceability page of Cisco Unified Communications Manager could … | 2025-04-20T23:27:27.982000Z |
| var-201702-0815 | A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, … | 2025-04-20T23:27:27.948000Z |
| var-201702-0857 | An issue was discovered in Moxa DACenter Versions 1.4 and older. The application may suff… | 2025-04-20T23:27:27.912000Z |
| var-201702-0855 | An issue was discovered in Moxa DACenter Versions 1.4 and older. A specially crafted proj… | 2025-04-20T23:27:27.877000Z |
| var-201703-0710 | An API Privilege vulnerability in Cisco TelePresence Server Software could allow an unaut… | 2025-04-20T23:27:27.455000Z |
| var-201703-0899 | A vulnerability in the Layer 2 Tunneling Protocol (L2TP) parsing function of Cisco IOS (1… | 2025-04-20T23:27:27.327000Z |
| var-201703-0962 | An exploitable memory corruption vulnerability exists in the LvVariantUnflatten functiona… | 2025-04-20T23:27:27.234000Z |
| var-201704-0063 | JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 18, allows … | 2025-04-20T23:27:26.855000Z |
| var-201704-0126 | Symantec Web Gateway (SWG) before 5.2.5 allows remote authenticated users to execute arbi… | 2025-04-20T23:27:26.774000Z |
| var-201704-0168 | Dell Integrated Remote Access Controller (iDRAC) 6 before 2.85 and 7/8 before 2.30.30.30 … | 2025-04-20T23:27:26.719000Z |
| var-201704-0462 | Apps on Huawei Ascend P6 mobile phones with software EDGE-U00 V100R001C17B508SP01 and ear… | 2025-04-20T23:27:26.451000Z |
| var-201704-0483 | Summer Baby Zoom Wifi Monitor & Internet Viewing System allows remote attackers to gain p… | 2025-04-20T23:27:26.422000Z |
| var-201704-0504 | Touch Panel (TP) driver in Huawei NEM phones with software Versions before NEM-AL10C00B13… | 2025-04-20T23:27:26.388000Z |
| var-201704-0651 | In OxygenOS before 4.0.3 on OnePlus 3 and 3T devices, an unauthorized attacker can cause … | 2025-04-20T23:27:26.334000Z |
| var-201704-0735 | On Juniper Networks EX Series Ethernet Switches running affected Junos OS versions, a vul… | 2025-04-20T23:27:26.247000Z |
| var-201704-0948 | TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE fi… | 2025-04-20T23:27:26.155000Z |
| var-201704-0947 | HTTP header injection vulnerability in TS-WPTCAM firmware version 1.18 and earlier, TS-WP… | 2025-04-20T23:27:26.119000Z |
| var-201704-0949 | Buffer overflow in TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware versi… | 2025-04-20T23:27:26.084000Z |
| var-201704-0968 | An exploitable HTTP Header Injection vulnerability exists in the Web Application function… | 2025-04-20T23:27:26.057000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:2140-1 | Security update for the Linux Kernel | 2023-05-09T12:28:52Z | 2023-05-09T12:28:52Z |
| suse-su-2023:2139-1 | Security update for ignition | 2023-05-09T12:21:13Z | 2023-05-09T12:21:13Z |
| suse-su-2023:2138-1 | Security update for prometheus-ha_cluster_exporter | 2023-05-09T12:20:59Z | 2023-05-09T12:20:59Z |
| suse-su-2023:2137-1 | Security update for runc | 2023-05-09T12:20:47Z | 2023-05-09T12:20:47Z |
| suse-su-2023:2136-1 | Security update for prometheus-ha_cluster_exporter | 2023-05-09T12:20:40Z | 2023-05-09T12:20:40Z |
| suse-su-2023:2135-1 | Security update for libfastjson | 2023-05-09T11:38:16Z | 2023-05-09T11:38:16Z |
| suse-su-2023:2134-1 | Security update for python-ujson | 2023-05-09T11:38:03Z | 2023-05-09T11:38:03Z |
| suse-su-2023:0722-2 | Security update for python-cryptography | 2023-05-09T11:36:24Z | 2023-05-09T11:36:24Z |
| suse-su-2023:2127-1 | Security update for go1.19 | 2023-05-08T14:31:47Z | 2023-05-08T14:31:47Z |
| suse-su-2023:2105-2 | Security update for go1.20 | 2023-05-08T14:30:55Z | 2023-05-08T14:30:55Z |
| suse-su-2023:2126-1 | Security update for cfengine, cfengine-masterfiles | 2023-05-08T13:05:38Z | 2023-05-08T13:05:38Z |
| suse-su-2023:2125-1 | Security update for containerd | 2023-05-08T11:10:43Z | 2023-05-08T11:10:43Z |
| suse-su-2023:2123-1 | Security update for dnsmasq | 2023-05-08T10:29:58Z | 2023-05-08T10:29:58Z |
| suse-su-2023:2122-1 | Security update for redis | 2023-05-08T09:29:38Z | 2023-05-08T09:29:38Z |
| suse-fu-2023:2119-1 | Feature update for haproxy | 2023-05-05T20:29:04Z | 2023-05-05T20:29:04Z |
| suse-fu-2023:2117-1 | Feature update for haproxy | 2023-05-05T20:27:49Z | 2023-05-05T20:27:49Z |
| suse-su-2023:2115-1 | Security update for ffmpeg | 2023-05-05T12:49:24Z | 2023-05-05T12:49:24Z |
| suse-su-2023:2112-1 | Security update for ncurses | 2023-05-05T12:34:51Z | 2023-05-05T12:34:51Z |
| suse-su-2023:2111-1 | Security update for ncurses | 2023-05-05T12:34:17Z | 2023-05-05T12:34:17Z |
| suse-su-2023:2110-1 | Security update for java-17-openjdk | 2023-05-05T12:10:31Z | 2023-05-05T12:10:31Z |
| suse-su-2023:2109-1 | Security update for java-11-openjdk | 2023-05-05T11:18:43Z | 2023-05-05T11:18:43Z |
| suse-su-2023:2108-1 | Security update for ffmpeg | 2023-05-05T10:26:45Z | 2023-05-05T10:26:45Z |
| suse-su-2023:2105-1 | Security update for go1.20 | 2023-05-05T06:34:14Z | 2023-05-05T06:34:14Z |
| suse-su-2023:2103-1 | Security update for vim | 2023-05-04T18:06:01Z | 2023-05-04T18:06:01Z |
| suse-su-2023:2100-1 | Security update for terraform-provider-helm | 2023-05-04T14:36:43Z | 2023-05-04T14:36:43Z |
| suse-su-2023:2097-1 | Security update for maven and recommended update for antlr3, minlog, sbt, xmvn | 2023-05-04T07:11:17Z | 2023-05-04T07:11:17Z |
| suse-su-2023:2096-1 | Security update for netty, netty-tcnative | 2023-05-04T07:09:25Z | 2023-05-04T07:09:25Z |
| suse-su-2023:2091-1 | Security update for shim | 2023-05-03T08:34:53Z | 2023-05-03T08:34:53Z |
| suse-su-2023:2038-2 | Security update for git | 2023-05-02T18:18:44Z | 2023-05-02T18:18:44Z |
| suse-su-2023:2087-1 | This update has recommended fixes for ffmpeg-4 | 2023-05-02T13:48:24Z | 2023-05-02T13:48:24Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0901-1 | Security update for python-rsa | 2021-06-23T16:23:29Z | 2021-06-23T16:23:29Z |
| opensuse-su-2021:0900-1 | Security update for xterm | 2021-06-23T16:23:26Z | 2021-06-23T16:23:26Z |
| opensuse-su-2021:0899-1 | Security update for salt | 2021-06-23T12:34:14Z | 2021-06-23T12:34:14Z |
| opensuse-su-2021:0898-1 | Security update for chromium | 2021-06-21T13:58:27Z | 2021-06-21T13:58:27Z |
| opensuse-su-2021:0895-1 | Security update for htmldoc | 2021-06-18T16:06:41Z | 2021-06-18T16:06:41Z |
| opensuse-su-2021:0894-1 | Security update for postgresql10 | 2021-06-17T22:06:11Z | 2021-06-17T22:06:11Z |
| opensuse-su-2021:0893-1 | Security update for htmldoc | 2021-06-17T18:06:10Z | 2021-06-17T18:06:10Z |
| opensuse-su-2021:0892-1 | Security update for libjpeg-turbo | 2021-06-16T14:07:13Z | 2021-06-16T14:07:13Z |
| opensuse-su-2021:0886-1 | Security update for libxml2 | 2021-06-16T14:06:53Z | 2021-06-16T14:06:53Z |
| opensuse-su-2021:0885-1 | Security update for libopenmpt | 2021-06-16T14:06:48Z | 2021-06-16T14:06:48Z |
| opensuse-su-2021:0882-1 | Security update for htmldoc | 2021-06-16T13:54:44Z | 2021-06-16T13:54:44Z |
| opensuse-su-2021:0881-1 | Security update for chromium | 2021-06-16T13:54:40Z | 2021-06-16T13:54:40Z |
| opensuse-su-2021:0879-1 | Security update for squid | 2021-06-16T13:54:15Z | 2021-06-16T13:54:15Z |
| opensuse-su-2021:0878-1 | Security update for containerd, docker, runc | 2021-06-16T13:54:13Z | 2021-06-16T13:54:13Z |
| opensuse-su-2021:0877-1 | Security update for djvulibre | 2021-06-16T13:54:07Z | 2021-06-16T13:54:07Z |
| opensuse-su-2021:0876-1 | Security update for ucode-intel | 2021-06-16T13:54:04Z | 2021-06-16T13:54:04Z |
| opensuse-su-2021:0874-1 | Security update for spice | 2021-06-16T13:53:58Z | 2021-06-16T13:53:58Z |
| opensuse-su-2021:0873-1 | Security update for the Linux Kernel | 2021-06-16T13:53:55Z | 2021-06-16T13:53:55Z |
| opensuse-su-2021:0870-1 | Security update for pam_radius | 2021-06-11T22:07:04Z | 2021-06-11T22:07:04Z |
| opensuse-su-2021:0868-1 | Security update for 389-ds | 2021-06-11T14:06:53Z | 2021-06-11T14:06:53Z |
| opensuse-su-2021:0861-1 | Security update for python-HyperKitty | 2021-06-09T16:06:45Z | 2021-06-09T16:06:45Z |
| opensuse-su-2021:0858-1 | Security update for MozillaFirefox | 2021-06-09T07:39:03Z | 2021-06-09T07:39:03Z |
| opensuse-su-2021:0857-1 | Security update for libX11 | 2021-06-09T05:12:52Z | 2021-06-09T05:12:52Z |
| opensuse-su-2021:0855-1 | Security update for snakeyaml | 2021-06-08T05:03:04Z | 2021-06-08T05:03:04Z |
| opensuse-su-2021:0853-1 | Security update for csync2 | 2021-06-07T12:06:12Z | 2021-06-07T12:06:12Z |
| opensuse-su-2021:0851-1 | Security update for python-py | 2021-06-07T12:06:03Z | 2021-06-07T12:06:03Z |
| opensuse-su-2021:0846-1 | Security update for umoci | 2021-06-07T05:03:00Z | 2021-06-07T05:03:00Z |
| opensuse-su-2021:0845-1 | Security update for inn | 2021-06-06T22:06:06Z | 2021-06-06T22:06:06Z |
| opensuse-su-2021:0843-1 | Security update for the Linux Kernel | 2021-06-06T08:12:41Z | 2021-06-06T08:12:41Z |
| opensuse-su-2021:0841-1 | Security update for redis | 2021-06-05T14:06:14Z | 2021-06-05T14:06:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-13338 | D-Link DIR-619L formSetEmail栈溢出漏洞 | 2025-06-24 | 2025-06-24 |
| cnvd-2025-13337 | D-Link DIR-619L formdumpeasysetup栈溢出漏洞 | 2025-06-24 | 2025-06-24 |
| cnvd-2025-13336 | D-Link DIR-619L formWlanGuestSetup栈溢出漏洞 | 2025-06-24 | 2025-06-24 |
| cnvd-2025-13335 | D-Link DIR-619L formSetEnableWizard栈溢出漏洞 | 2025-06-24 | 2025-06-24 |
| cnvd-2025-13334 | D-Link DIR-619L formSetWizard1栈溢出漏洞 | 2025-06-24 | 2025-06-24 |
| cnvd-2025-13333 | ABB多款产品跨站脚本漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13332 | ABB多款产品信息泄露漏洞(CNVD-2025-13332) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13331 | ABB多款产品SQL注入漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13330 | ABB多款产品信息泄露漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13329 | ABB多款产品信任管理问题漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13328 | Adobe InDesign越界写入漏洞(CNVD-2025-13328) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13327 | Adobe InDesign堆缓冲区溢出漏洞(CNVD-2025-13327) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13326 | Adobe InDesign内存错误引用漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13325 | Adobe InCopy输入验证错误漏洞(CNVD-2025-13325) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13324 | Adobe InCopy堆缓冲区溢出漏洞(CNVD-2025-13324) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13323 | Adobe Substance3D Sampler越界写入漏洞(CNVD-2025-13323) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13322 | Adobe Substance3D Sampler越界写入漏洞(CNVD-2025-13322) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13321 | Adobe Acrobat Reader内存错误引用漏洞(CNVD-2025-13321) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13320 | Adobe Acrobat Reader内存错误引用漏洞(CNVD-2025-13320) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13319 | Adobe Acrobat Reader内存错误引用漏洞(CNVD-2025-13319) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13318 | Adobe Acrobat Reader内存错误引用漏洞(CNVD-2025-13318) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13317 | Adobe Acrobat Reader内存错误引用漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13316 | Adobe Acrobat Reader信息泄露漏洞(CNVD-2025-13316) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13315 | Adobe Acrobat Reader越界读取漏洞(CNVD-2025-13315) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13314 | Adobe Acrobat Reader越界写入漏洞(CNVD-2025-13314) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13313 | Adobe Acrobat Reader越界读取漏洞(CNVD-2025-13313) | 2025-06-17 | 2025-06-24 |
| cnvd-2025-13312 | Adobe Acrobat Reader空指针解引用漏洞 | 2025-06-17 | 2025-06-24 |
| cnvd-2023-24699 | 湖南强智科技发展有限公司教务管理系统存在未授权访问漏洞 | 2023-02-26 | 2025-06-24 |
| cnvd-2023-04974 | 湖南强智科技发展有限公司教务管理系统存在SQL注入漏洞 | 2022-12-27 | 2025-06-24 |
| cnvd-2022-83470 | 湖南强智科技发展有限公司教务一体化系统存在文件下载漏洞 | 2022-10-31 | 2025-06-24 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-204 | Vulnérabilité dans Drupal | 2018-04-26T00:00:00.000000 | 2018-04-26T00:00:00.000000 |
| certfr-2018-avi-203 | Multiples vulnérabilités dans Xen | 2018-04-25T00:00:00.000000 | 2018-04-25T00:00:00.000000 |
| certfr-2018-avi-202 | Multiples vulnérabilités dans SCADA Schneider Electric Pelco Sarix Professional | 2018-04-25T00:00:00.000000 | 2018-04-25T00:00:00.000000 |
| certfr-2018-avi-201 | Multiples vulnérabilités dans les produits Apple | 2018-04-25T00:00:00.000000 | 2018-04-25T00:00:00.000000 |
| certfr-2018-avi-200 | Vulnérabilité dans le noyau Linux de RedHat | 2018-04-25T00:00:00.000000 | 2018-04-25T00:00:00.000000 |
| certfr-2018-avi-199 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-04-24T00:00:00.000000 | 2018-04-24T00:00:00.000000 |
| certfr-2018-avi-198 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-04-24T00:00:00.000000 | 2018-04-24T00:00:00.000000 |
| certfr-2018-avi-197 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-04-23T00:00:00.000000 | 2018-04-23T00:00:00.000000 |
| certfr-2018-avi-192 | Vulnérabilité dans Squid | 2018-04-23T00:00:00.000000 | 2018-04-23T00:00:00.000000 |
| certfr-2018-avi-196 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-04-20T00:00:00.000000 | 2018-04-20T00:00:00.000000 |
| certfr-2018-avi-195 | Vulnérabilité dans VMware Horizon DaaS | 2018-04-20T00:00:00.000000 | 2018-04-20T00:00:00.000000 |
| certfr-2018-avi-194 | Multiples vulnérabilités dans les produits Cisco | 2018-04-19T00:00:00.000000 | 2018-04-19T00:00:00.000000 |
| certfr-2018-avi-193 | Vulnérabilité dans Drupal | 2018-04-19T00:00:00.000000 | 2018-04-19T00:00:00.000000 |
| certfr-2018-avi-191 | Multiples vulnérabilités dans Oracle MySQL | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-190 | Multiples vulnérabilités dans Oracle Virtualization | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-189 | Multiples vulnérabilités dans Oracle Sun Systems | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-188 | Multiples vulnérabilités dans Oracle Java SE | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-187 | Multiples vulnérabilités dans Oracle Database Server | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-186 | Multiples vulnérabilités dans Google Chrome | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-185 | Multiples vulnérabilités dans SCADA Moxa EDR-810 | 2018-04-18T00:00:00.000000 | 2018-04-18T00:00:00.000000 |
| certfr-2018-avi-184 | Multiples vulnérabilités dans les produits Juniper | 2018-04-16T00:00:00.000000 | 2018-04-16T00:00:00.000000 |
| certfr-2018-avi-183 | Multiples vulnérabilités dans VMware vRealize Automation | 2018-04-13T00:00:00.000000 | 2018-04-13T00:00:00.000000 |
| certfr-2018-avi-182 | Multiples vulnérabilités dans F5 BIG-IP | 2018-04-13T00:00:00.000000 | 2018-04-13T00:00:00.000000 |
| certfr-2018-avi-173 | Multiples vulnérabilités dans SCADA les produits Moxa | 2018-04-06T00:00:00.000000 | 2018-04-13T00:00:00.000000 |
| certfr-2018-avi-181 | Multiples vulnérabilités dans les produits Microsoft | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |
| certfr-2018-avi-180 | Multiples vulnérabilités dans Microsoft Windows | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |
| certfr-2018-avi-179 | Multiples vulnérabilités dans Microsoft Office | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |
| certfr-2018-avi-178 | Multiples vulnérabilités dans Microsoft Edge | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |
| certfr-2018-avi-177 | Multiples vulnérabilités dans Microsoft Internet Explorer | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |
| certfr-2018-avi-176 | Multiples vulnérabilités dans les produits Adobe | 2018-04-11T00:00:00.000000 | 2018-04-11T00:00:00.000000 |