Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-66064 |
5.3 (3.1)
|
WordPress Giveaways and Contests by RafflePress plugin… |
Syed Balkhi |
Giveaways and Contests by RafflePress |
2025-11-21T12:29:55.338Z | 2026-01-20T14:28:23.234Z |
| CVE-2025-66067 |
5.4 (3.1)
|
WordPress Funnel Builder by FunnelKit plugin <= 3.13.1… |
FunnelKit |
Funnel Builder by FunnelKit |
2025-11-21T12:29:55.849Z | 2026-01-20T14:28:23.233Z |
| CVE-2025-66075 |
4.2 (3.1)
|
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-11-21T12:29:56.896Z | 2026-01-20T14:28:23.221Z |
| CVE-2025-66080 |
5.3 (3.1)
|
WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy C… |
WP Legal Pages |
WP Cookie Notice for GDPR, CCPA & ePrivacy Consent |
2025-12-30T16:10:40.664Z | 2026-01-20T14:28:23.215Z |
| CVE-2025-66069 |
4.3 (3.1)
|
WordPress PPOM for WooCommerce plugin <= 33.0.16 - Bro… |
Themeisle |
PPOM for WooCommerce |
2025-11-21T12:29:56.025Z | 2026-01-20T14:28:23.215Z |
| CVE-2025-64384 |
6.3 (3.1)
|
WordPress JetFormBuilder plugin <= 3.5.3 - Broken Acce… |
jetmonsters |
JetFormBuilder |
2025-11-13T09:24:36.292Z | 2026-01-20T14:28:23.177Z |
| CVE-2025-66074 |
9 (3.1)
|
WordPress WP Webhooks plugin <= 3.3.8 - Arbitrary File… |
Cozmoslabs |
WP Webhooks |
2025-12-18T07:22:17.689Z | 2026-01-20T14:28:23.166Z |
| CVE-2025-66061 |
4.3 (3.1)
|
WordPress Seriously Simple Podcasting plugin <= 3.13.0… |
Craig Hewitt |
Seriously Simple Podcasting |
2025-11-21T12:29:54.807Z | 2026-01-20T14:28:23.136Z |
| CVE-2025-66066 |
6.1 (3.1)
|
WordPress Envo Extra plugin <= 1.9.11 - Cross Site Scr… |
EnvoThemes |
Envo Extra |
2025-11-21T12:29:55.680Z | 2026-01-20T14:28:23.127Z |
| CVE-2025-66070 |
7.5 (3.1)
|
WordPress wpForo Forum plugin <= 2.4.10 - Broken Acces… |
Tomdever |
wpForo Forum |
2025-12-18T07:22:17.491Z | 2026-01-20T14:28:23.120Z |
| CVE-2025-64634 |
8.8 (3.1)
|
WordPress Avada theme <= 7.13.1 - Broken Access Contro… |
ThemeFusion |
Avada |
2025-12-16T08:12:51.156Z | 2026-01-20T14:28:23.104Z |
| CVE-2025-66058 |
6.5 (3.1)
|
WordPress Post Grid and Gutenberg Blocks plugin <= 2.3… |
PickPlugins |
Post Grid and Gutenberg Blocks |
2025-12-18T16:15:15.498Z | 2026-01-20T14:28:23.035Z |
| CVE-2025-64633 |
5.3 (3.1)
|
WordPress Norebro Extra plugin <= 1.6.8 - Content Inje… |
colabrio |
Norebro Extra |
2025-12-16T08:12:50.943Z | 2026-01-20T14:28:23.014Z |
| CVE-2025-66053 |
6.5 (3.1)
|
WordPress Enfold theme <= 7.1.2 - Cross Site Scripting… |
Kriesi |
Enfold |
2025-11-21T12:29:53.446Z | 2026-01-20T14:28:22.999Z |
| CVE-2025-66063 |
5.4 (3.1)
|
WordPress WP Google Review Slider plugin <= 17.4 - Bro… |
jgwhite33 |
WP Google Review Slider |
2025-11-21T12:29:55.169Z | 2026-01-20T14:28:22.981Z |
| CVE-2025-64632 |
5.3 (3.1)
|
WordPress Google XML Sitemaps plugin <= 4.1.21 - Broke… |
Auctollo |
Google XML Sitemaps |
2025-12-16T08:12:50.749Z | 2026-01-20T14:28:22.956Z |
| CVE-2025-64639 |
5.3 (3.1)
|
WordPress WP Compress for MainWP plugin <= 6.50.07 - B… |
WP Compress |
WP Compress for MainWP |
2025-12-16T08:12:52.102Z | 2026-01-20T14:28:22.952Z |
| CVE-2025-64630 |
4.7 (3.1)
|
WordPress Business Directory plugin <= 6.4.19 - Broken… |
Strategy11 Team |
Business Directory |
2025-12-16T08:12:50.318Z | 2026-01-20T14:28:22.925Z |
| CVE-2025-64382 |
4.3 (3.1)
|
WordPress Order Export & Order Import for WooCommerce … |
WebToffee |
Order Export & Order Import for WooCommerce |
2025-11-13T09:24:35.435Z | 2026-01-20T14:28:22.800Z |
| CVE-2025-64378 |
7.5 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Broken Access Co… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.946Z | 2026-01-20T14:28:22.742Z |
| CVE-2025-64379 |
4.3 (3.1)
|
WordPress Booster for WooCommerce plugin <= 7.4.0 - Br… |
Pluggabl |
Booster for WooCommerce |
2025-11-13T09:24:34.101Z | 2026-01-20T14:28:22.712Z |
| CVE-2025-64377 |
8.1 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Local File Inclu… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.752Z | 2026-01-20T14:28:22.647Z |
| CVE-2025-64376 |
7.1 (3.1)
|
WordPress ListingPro theme < 2.9.10 - Cross Site Scrip… |
CridioStudio |
ListingPro |
2025-12-18T07:22:16.555Z | 2026-01-20T14:28:22.643Z |
| CVE-2025-64366 |
7.6 (3.1)
|
WordPress MasterStudy LMS plugin <= 3.6.27 - SQL Injec… |
Stylemix |
MasterStudy LMS |
2025-10-31T11:42:39.301Z | 2026-01-20T14:28:22.594Z |
| CVE-2025-64375 |
6.5 (3.1)
|
WordPress WP Social Ninja plugin <= 3.20.1 - Broken Ac… |
Mahmudul Hasan Arif |
WP Social Ninja |
2025-12-18T07:22:16.373Z | 2026-01-20T14:28:22.576Z |
| CVE-2025-64374 |
9.9 (3.1)
|
WordPress Motors theme <= 5.6.81 - Arbitrary File Uplo… |
StylemixThemes |
Motors |
2025-12-18T07:22:16.202Z | 2026-01-20T14:28:22.572Z |
| CVE-2025-64360 |
7.5 (3.1)
|
WordPress Consulting Elementor Widgets plugin <= 1.4.2… |
StylemixThemes |
Consulting Elementor Widgets |
2025-10-31T11:42:32.330Z | 2026-01-20T14:28:22.556Z |
| CVE-2025-64373 |
8.1 (3.1)
|
WordPress Traveler theme < 3.2.6 - Local File Inclusio… |
shinetheme |
Traveler |
2025-12-18T07:22:16.006Z | 2026-01-20T14:28:22.551Z |
| CVE-2025-64363 |
7.5 (3.1)
|
WordPress Kleo theme < 5.5.0 - Local File Inclusion vu… |
SeventhQueen |
Kleo |
2025-10-31T11:42:37.131Z | 2026-01-20T14:28:22.551Z |
| CVE-2025-64367 |
6.5 (3.1)
|
WordPress Groundhogg plugin <= 4.2.6 - Cross Site Scri… |
Adrian Tobey |
Groundhogg |
2025-10-31T11:42:40.076Z | 2026-01-20T14:28:22.541Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-67552 |
6.5 (3.1)
|
WordPress Walker Core plugin <= 1.3.17 - Cross Site Sc… |
WalkerWP |
Walker Core |
2025-12-09T14:14:07.454Z | 2026-01-20T14:28:25.899Z |
| CVE-2025-67551 |
6.5 (3.1)
|
WordPress Wappointment plugin <= 2.6.9 - Cross Site Sc… |
Wappointment team |
Wappointment |
2025-12-09T14:14:07.205Z | 2026-01-20T14:28:25.925Z |
| CVE-2025-67550 |
6.5 (3.1)
|
WordPress Donation Thermometer plugin <= 2.2.6 - Cross… |
rhewlif |
Donation Thermometer |
2025-12-09T14:14:06.957Z | 2026-01-20T14:28:25.624Z |
| CVE-2025-67549 |
6.5 (3.1)
|
WordPress oik plugin <= 4.15.3 - Cross Site Scripting … |
bobbingwide |
oik |
2025-12-09T14:14:06.739Z | 2026-01-20T14:28:25.728Z |
| CVE-2025-67548 |
6.5 (3.1)
|
WordPress WP Delicious plugin <= 1.9.1 - Broken Access… |
WP Delicious |
WP Delicious |
2025-12-09T14:14:06.510Z | 2026-01-20T14:28:25.675Z |
| CVE-2025-67546 |
6.5 (3.1)
|
WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exp… |
weDevs |
WP ERP |
2025-12-18T07:22:19.542Z | 2026-01-20T14:28:25.565Z |
| CVE-2025-67545 |
6.5 (3.1)
|
WordPress FireBox plugin <= 3.1.0-free - Cross Site Sc… |
FirePlugins |
FireBox |
2025-12-09T14:14:06.130Z | 2026-01-20T14:28:25.532Z |
| CVE-2025-67544 |
6.5 (3.1)
|
WordPress Shopkeeper Extender plugin < 7.0 - Cross Sit… |
Get Bowtied |
Shopkeeper Extender |
2025-12-09T14:14:05.870Z | 2026-01-20T14:28:25.495Z |
| CVE-2025-67543 |
6.5 (3.1)
|
WordPress Essential Widgets plugin <= 2.2.2 - Cross Si… |
Catch Themes |
Essential Widgets |
2025-12-09T14:14:05.667Z | 2026-01-20T14:28:25.440Z |
| CVE-2025-67542 |
6.5 (3.1)
|
WordPress Multi-Step Checkout for WooCommerce plugin <… |
SilkyPress |
Multi-Step Checkout for WooCommerce |
2025-12-09T14:14:05.482Z | 2026-01-20T14:28:25.370Z |
| CVE-2025-67541 |
7.1 (3.1)
|
WordPress WP-ShowHide plugin <= 1.05 - Cross Site Scri… |
Lester Chan |
WP-ShowHide |
2025-12-09T14:14:05.260Z | 2026-01-20T14:28:25.235Z |
| CVE-2025-67539 |
6.5 (3.1)
|
WordPress Select Core plugin < 2.6 - Cross Site Script… |
Select-Themes |
Select Core |
2025-12-09T14:14:04.804Z | 2026-01-20T14:28:25.256Z |
| CVE-2025-67538 |
6.5 (3.1)
|
WordPress JNews Gallery plugin < 12.0.1 - Cross Site S… |
jegtheme |
JNews Gallery |
2025-12-09T14:14:04.582Z | 2026-01-20T14:28:25.508Z |
| CVE-2025-67537 |
6.5 (3.1)
|
WordPress ThirstyAffiliates plugin <= 3.11.8 - Cross S… |
Blair Williams |
ThirstyAffiliates |
2025-12-09T14:14:04.310Z | 2026-01-20T14:28:25.132Z |
| CVE-2025-67536 |
6.5 (3.1)
|
WordPress LearnPress plugin <= 4.2.9.4 - Cross Site Sc… |
ThimPress |
LearnPress |
2025-12-09T14:14:04.062Z | 2026-01-20T14:28:25.165Z |
| CVE-2025-67535 |
6.5 (3.1)
|
WordPress WP Maps plugin <= 4.8.6 - PHP Object Injecti… |
WePlugins - WordPress Development Company |
WP Maps |
2025-12-09T14:14:03.841Z | 2026-01-20T14:28:25.201Z |
| CVE-2025-67534 |
7.1 (3.1)
|
WordPress Rencontre plugin <= 3.13.7 - Cross Site Requ… |
Jacques Malgrange |
Rencontre |
2025-12-09T14:14:03.622Z | 2026-01-20T14:28:25.186Z |
| CVE-2025-67533 |
6.5 (3.1)
|
WordPress Themify Portfolio Post plugin <= 1.3.0 - Cro… |
themifyme |
Themify Portfolio Post |
2025-12-09T14:14:03.414Z | 2026-01-20T14:28:25.206Z |
| CVE-2025-67532 |
9.8 (3.1)
|
WordPress Hara theme <= 1.2.17 - Local File Inclusion … |
thembay |
Hara |
2025-12-09T14:14:03.164Z | 2026-01-20T14:28:25.158Z |
| CVE-2025-67531 |
9.8 (3.1)
|
WordPress Turitor theme < 1.5.3 - Local File Inclusion… |
trippleS |
Turitor |
2025-12-09T14:14:01.550Z | 2026-01-20T14:28:25.095Z |
| CVE-2025-67530 |
9.8 (3.1)
|
WordPress Besa theme <= 2.3.15 - Local File Inclusion … |
thembay |
Besa |
2025-12-09T14:14:01.260Z | 2026-01-20T14:28:25.221Z |
| CVE-2025-67529 |
9.8 (3.1)
|
WordPress Fashion theme < 5.3.0 - Local File Inclusion… |
Opal_WP |
Fashion |
2025-12-09T14:14:01.047Z | 2026-01-20T14:28:25.463Z |
| CVE-2025-67528 |
5.1 (3.1)
|
WordPress Urna theme <= 2.5.12 - Local File Inclusion … |
thembay |
Urna |
2025-12-09T14:14:00.840Z | 2026-01-20T14:28:25.332Z |
| CVE-2025-67527 |
9.8 (3.1)
|
WordPress Digiqole theme < 2.2.7 - Local File Inclusio… |
trippleS |
Digiqole |
2025-12-09T14:14:00.496Z | 2026-01-20T14:28:25.133Z |
| CVE-2025-67526 |
9.8 (3.1)
|
WordPress Sailing theme < 4.4.6 - Local File Inclusion… |
ThimPress |
Sailing |
2025-12-09T14:14:00.209Z | 2026-01-20T14:28:25.493Z |
| CVE-2025-67525 |
9.8 (3.1)
|
WordPress ekommart theme < 4.3.1 - Local File Inclusio… |
Opal_WP |
ekommart |
2025-12-09T14:13:59.771Z | 2026-01-20T14:28:24.930Z |
| CVE-2025-67524 |
9.8 (3.1)
|
WordPress Jobmonster Elementor Addon plugin <= 1.1.4 -… |
NooTheme |
Jobmonster Elementor Addon |
2025-12-09T14:13:59.520Z | 2026-01-20T14:28:25.256Z |
| CVE-2025-67523 |
9.8 (3.1)
|
WordPress Exhibz theme <= 3.0.9 - Local File Inclusion… |
trippleS |
Exhibz |
2025-12-09T14:13:59.287Z | 2026-01-20T14:28:25.162Z |
| CVE-2025-67522 |
9.8 (3.1)
|
WordPress Jobmonster theme <= 4.8.2 - Local File Inclu… |
NooTheme |
Jobmonster |
2025-12-09T14:13:59.066Z | 2026-01-20T14:28:25.110Z |
| CVE-2025-67521 |
9.8 (3.1)
|
WordPress Select Core plugin < 2.6 - Local File Inclus… |
Select-Themes |
Select Core |
2025-12-09T14:13:58.865Z | 2026-01-20T14:28:24.976Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-67552 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:31.270 | 2026-01-20T15:19:20.440 |
| fkie_cve-2025-67551 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:31.117 | 2026-01-20T15:19:20.273 |
| fkie_cve-2025-67550 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:30.963 | 2026-01-20T15:19:20.143 |
| fkie_cve-2025-67549 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:30.480 | 2026-01-20T15:19:20.020 |
| fkie_cve-2025-67548 | Missing Authorization vulnerability in WP Delicious WP Delicious delicious-recipes allows Exploitin… | 2025-12-09T16:18:30.350 | 2026-01-20T15:19:19.890 |
| fkie_cve-2025-67546 | Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in weDevs … | 2025-12-18T08:16:16.693 | 2026-01-20T15:19:19.763 |
| fkie_cve-2025-67545 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:30.210 | 2026-01-20T15:19:19.640 |
| fkie_cve-2025-67544 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:30.047 | 2026-01-20T15:19:19.513 |
| fkie_cve-2025-67543 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:29.913 | 2026-01-20T15:19:19.380 |
| fkie_cve-2025-67542 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:29.480 | 2026-01-20T15:19:19.250 |
| fkie_cve-2025-67541 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:29.327 | 2026-01-20T15:19:19.127 |
| fkie_cve-2025-67539 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:29.047 | 2026-01-20T15:19:18.870 |
| fkie_cve-2025-67538 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:28.903 | 2026-01-20T15:19:18.720 |
| fkie_cve-2025-67537 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:28.770 | 2026-01-20T15:19:18.597 |
| fkie_cve-2025-67536 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:28.640 | 2026-01-20T15:19:18.473 |
| fkie_cve-2025-67535 | Deserialization of Untrusted Data vulnerability in WePlugins - WordPress Development Company WP Map… | 2025-12-09T16:18:28.453 | 2026-01-20T15:19:18.347 |
| fkie_cve-2025-67534 | Cross-Site Request Forgery (CSRF) vulnerability in Jacques Malgrange Rencontre rencontre allows Sto… | 2025-12-09T16:18:28.237 | 2026-01-20T15:19:18.210 |
| fkie_cve-2025-67533 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2025-12-09T16:18:28.100 | 2026-01-20T15:19:18.090 |
| fkie_cve-2025-67532 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.963 | 2026-01-20T15:19:17.967 |
| fkie_cve-2025-67531 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.830 | 2026-01-20T15:19:17.847 |
| fkie_cve-2025-67530 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.693 | 2026-01-20T15:19:17.717 |
| fkie_cve-2025-67529 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.553 | 2026-01-20T15:19:17.590 |
| fkie_cve-2025-67528 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.417 | 2026-01-20T15:19:17.467 |
| fkie_cve-2025-67527 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.280 | 2026-01-20T15:19:17.343 |
| fkie_cve-2025-67526 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:27.130 | 2026-01-20T15:19:17.217 |
| fkie_cve-2025-67525 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:26.973 | 2026-01-20T15:19:17.077 |
| fkie_cve-2025-67524 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:26.013 | 2026-01-20T15:19:16.950 |
| fkie_cve-2025-67523 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:25.863 | 2026-01-20T15:19:16.807 |
| fkie_cve-2025-67522 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:25.680 | 2026-01-20T15:19:16.670 |
| fkie_cve-2025-67521 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusi… | 2025-12-09T16:18:25.540 | 2026-01-20T15:19:16.540 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-gm4j-hg89-42fw |
5.3 (3.1)
|
The Kalium 3 | Creative WordPress & WooCommerce Theme theme for WordPress is vulnerable to unauthor… | 2026-01-15T15:31:18Z | 2026-01-15T15:31:18Z |
| ghsa-f4v9-v847-jcvh |
4.3 (3.1)
|
An attacker with low privileges may be able to trigger critical system functions such as reboot or … | 2026-01-15T15:31:18Z | 2026-01-15T15:31:18Z |
| ghsa-57w5-88pw-9866 |
4.3 (3.1)
|
An attacker may exploit missing protection against clickjacking by tricking users into performing u… | 2026-01-15T15:31:18Z | 2026-01-15T15:31:18Z |
| ghsa-5769-wgj3-q779 |
4.3 (3.1)
|
An attacker with limited permissions may still be able to write files to specific locations on the … | 2026-01-15T15:31:18Z | 2026-01-15T15:31:18Z |
| ghsa-3cjp-47jv-9rh2 |
7.5 (3.1)
|
Certain system functions may be accessed without proper authorization, allowing attackers to start,… | 2026-01-15T15:31:18Z | 2026-01-15T15:31:18Z |
| ghsa-vcvq-xvxv-h8f5 |
9.9 (3.1)
|
An attacker may gain unauthorized access to the host filesystem, potentially allowing them to read … | 2026-01-15T15:31:17Z | 2026-01-15T15:31:17Z |
| ghsa-g272-8976-vqhw |
9.1 (3.1)
|
Uploading unvalidated container images may allow remote attackers to gain full access to the system… | 2026-01-15T15:31:17Z | 2026-01-15T15:31:17Z |
| ghsa-77c8-xpc7-q24c |
6.8 (3.1)
|
The built-in XY Chart plugin is vulnerable to a DOM XSS vulnerability. A user with Editor permissio… | 2026-01-15T15:31:17Z | 2026-01-15T15:31:17Z |
| ghsa-w5j6-7wpf-g6rw |
8.3 (3.1)
|
A security vulnerability in the /apis/dashboard.grafana.app/* endpoints allows authenticated users … | 2026-01-15T15:31:16Z | 2026-01-15T15:31:16Z |
| ghsa-98pr-9hw5-crg3 |
7.6 (3.1)
|
An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve … | 2026-01-15T15:31:16Z | 2026-01-15T15:31:16Z |
| ghsa-xf9v-776m-hm72 |
9.8 (3.1)
6.3 (4.0)
|
Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially b… | 2025-02-14T18:30:53Z | 2026-01-15T15:31:14Z |
| ghsa-cgcr-998g-rrqq |
9.8 (3.1)
8.3 (4.0)
|
Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially b… | 2025-02-14T18:30:53Z | 2026-01-15T15:31:14Z |
| ghsa-qv5v-g96w-753m |
9.8 (3.1)
9.2 (4.0)
|
Certain HP LaserJet Pro, HP LaserJet Enterprise, and HP LaserJet Managed Printers may potentially b… | 2025-02-14T18:30:53Z | 2026-01-15T15:31:13Z |
| ghsa-w588-qjhp-fm98 |
8.1 (3.1)
|
Memory safety bugs present in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-jmj2-8j2p-hmq6 |
9.8 (3.1)
|
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox < 147 and Fir… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-fw2q-3cf8-mv4x |
6.5 (3.1)
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 147 and Firefo… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-fqpc-v68g-xp98 |
5.3 (3.1)
|
Information disclosure in the Networking component. This vulnerability affects Firefox < 147 and Fi… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-96f5-9x27-7hhh |
5.3 (3.1)
|
Clickjacking issue, information disclosure in the PDF Viewer component. This vulnerability affects … | 2026-01-13T15:37:05Z | 2026-01-15T12:30:26Z |
| ghsa-94r2-4g95-pg9m |
5.3 (3.1)
|
Information disclosure in the XML component. This vulnerability affects Firefox < 147. | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-7328-g372-24vf |
5.3 (3.1)
|
Incorrect boundary conditions in the Graphics component. This vulnerability affects Firefox < 147, … | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-4m35-v3c2-29x8 |
7.5 (3.1)
|
Denial-of-service in the DOM: Service Workers component. This vulnerability affects Firefox < 147. | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-484x-228c-ffm5 |
6.5 (3.1)
|
Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability affects Firef… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-3m78-88vj-q2rf |
9.8 (3.1)
|
Memory safety bugs present in Firefox 146 and Thunderbird 146. Some of these bugs showed evidence o… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:26Z |
| ghsa-x4m4-qvvc-5xcm |
8.8 (3.1)
|
Use-after-free in the IPC component. This vulnerability affects Firefox < 147, Firefox ESR < 115.32… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ghsa-wqgj-c38v-hpmm |
7.5 (3.1)
|
Spoofing issue in the Downloads Panel component. This vulnerability affects Firefox < 146. | 2025-12-09T18:30:35Z | 2026-01-15T12:30:25Z |
| ghsa-rfgw-g9g4-685p |
8.1 (3.1)
|
Mitigation bypass in the DOM: Security component. This vulnerability affects Firefox < 147, Firefox… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ghsa-r38v-527h-36cj |
9.8 (3.1)
|
Sandbox escape due to incorrect boundary conditions in the Graphics component. This vulnerability a… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ghsa-qc2q-rhvg-9278 |
8.0 (3.1)
|
Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vu… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ghsa-m68q-4hqr-mc6f |
7.4 (3.1)
|
Podman Creates Temporary File with Insecure Permissions | 2025-09-16T15:32:37Z | 2026-01-15T12:30:25Z |
| ghsa-jvj8-3g49-f23w |
8.8 (3.1)
|
Sandbox escape due to integer overflow in the Graphics component. This vulnerability affects Firefo… | 2026-01-13T15:37:04Z | 2026-01-15T12:30:25Z |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-28310 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.448877Z |
| gsd-2024-28292 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.448580Z |
| gsd-2024-28220 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.448327Z |
| gsd-2024-28455 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.445782Z |
| gsd-2024-28566 | Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at… | 2024-03-08T06:02:46.445499Z |
| gsd-2024-28370 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.445276Z |
| gsd-2024-28304 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.445025Z |
| gsd-2024-28627 | An issue in Flipsnack v.18/03/2024 allows a local attacker to obtain sensitive informatio… | 2024-03-08T06:02:46.444826Z |
| gsd-2024-28650 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.443518Z |
| gsd-2024-28609 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.442682Z |
| gsd-2024-28501 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.442423Z |
| gsd-2024-28712 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.442189Z |
| gsd-2024-28527 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.441939Z |
| gsd-2024-28433 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.441678Z |
| gsd-2024-28351 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.440145Z |
| gsd-2024-28389 | SQL injection vulnerability in KnowBand spinwheel v.3.0.3 and before allows a remote atta… | 2024-03-08T06:02:46.439902Z |
| gsd-2024-28569 | Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at… | 2024-03-08T06:02:46.439658Z |
| gsd-2024-28721 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.439404Z |
| gsd-2024-28539 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.439146Z |
| gsd-2024-28514 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.438314Z |
| gsd-2024-28439 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.437465Z |
| gsd-2024-28554 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.436908Z |
| gsd-2024-28579 | Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at… | 2024-03-08T06:02:46.436665Z |
| gsd-2024-28263 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.436428Z |
| gsd-2024-28335 | Lektor before 3.3.11 does not sanitize DB path traversal. Thus, shell commands might be e… | 2024-03-08T06:02:46.436186Z |
| gsd-2024-28329 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.435924Z |
| gsd-2024-28520 | File Upload vulnerability in Byzoro Networks Smart multi-service security gateway intelli… | 2024-03-08T06:02:46.435675Z |
| gsd-2024-28571 | Buffer Overflow vulnerability in open source FreeImage v.3.19.0 [r1909] allows a local at… | 2024-03-08T06:02:46.434681Z |
| gsd-2024-28611 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.434103Z |
| gsd-2024-28399 | The format of the source doesn't require a description, click on the link for more details. | 2024-03-08T06:02:46.433863Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2025-188076 | Malicious code in miranda-leda-polaris-umbriel (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188075 | Malicious code in miranda-koa-fetch-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188074 | Malicious code in miranda-janus-fornax-eris (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188073 | Malicious code in miranda-genomics-uninstall-virgo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188072 | Malicious code in miranda-gacrux-stratigraphy-node-sass (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188071 | Malicious code in miranda-fomalhaut-apollo-cz-conventional-changelog (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188070 | Malicious code in miranda-exec-meissa-terser (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188069 | Malicious code in miranda-elektra-quark-ophiuchus (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188068 | Malicious code in miranda-eigenstate-markdownlint-cosmogenic (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188067 | Malicious code in miranda-despina-sqlite-ultra (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188066 | Malicious code in miranda-cosmos-resonance-loopback (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188065 | Malicious code in miranda-borealis-nova-dotenv-safe (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188064 | Malicious code in miranda-biotechnology-xanadu-halley (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188063 | Malicious code in mira-wolf-prompts-got (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188062 | Malicious code in mira-pipe-stratigraphy-semantic-release (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188061 | Malicious code in mira-pino-impulse-adonis (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188060 | Malicious code in mira-pegasus-helios-command (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188059 | Malicious code in mira-halley-halley-publish (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188058 | Malicious code in mira-fusion-yildun-css-loader (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188057 | Malicious code in mira-flare-xanadu-pavo (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188056 | Malicious code in mira-apex-lint-bellatrix (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188055 | Malicious code in minify-report-compress-compress-process (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188054 | Malicious code in minify-permission-xi-route-export (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188053 | Malicious code in minify-mu-catch-authenticate-user (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188052 | Malicious code in minify-kappa-proxy-kappa-tau (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188051 | Malicious code in mini-css-extract-plugin-sass-loader-rigel-koa (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188050 | Malicious code in mini-css-extract-plugin-radiant-axios-sirius (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188049 | Malicious code in mini-css-extract-plugin-paleoecology-redis-release-it (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188048 | Malicious code in mini-css-extract-plugin-nova-titan-duplex (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| mal-2025-188047 | Malicious code in mini-css-extract-plugin-meissa-chai-ganymede (npm) | 2025-11-13T03:23:14Z | 2025-11-13T03:23:14Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2024-0062 | Cisco Wireless Access Point: Schwachstelle ermöglicht Codeausführung | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0061 | Trellix Endpoint Security: Schwachstelle ermöglicht Cross-Site Scripting | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0059 | Ivanti Connect Secure: Mehrere Schwachstellen | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0058 | Jenkins Plugin "Qualys Policy Compliance": Mehrere Schwachstellen | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0057 | Cisco TelePresence: Mehrere Schwachstellen ermöglichen Cross-Site Scripting | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0056 | Unify OpenScape Voice: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0055 | Cisco Identity Services Engine (ISE): Schwachstelle ermöglicht Cross-Site Scripting | 2024-01-10T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0016 | NCP Secure Enterprise Client: Schwachstelle ermöglicht Privilegieneskalation und Codeausführung | 2024-01-04T23:00:00.000+00:00 | 2024-01-10T23:00:00.000+00:00 |
| wid-sec-w-2024-0054 | IBM Security Verify Access: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0053 | Dell BIOS: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0052 | Kyocera Printer: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0051 | AMD Prozessor: Schwachstelle ermöglicht Denial of Service | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0048 | Fortinet FortiOS und Fortinet FortiProxy: Schwachstelle ermöglicht Codeausführung | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0046 | Lenovo Computer: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0044 | Lenovo XClarity: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0041 | Intel NUC: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0040 | Microsoft Azure: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0038 | Microsoft Office: Mehrere Schwachstellen ermöglichen Codeausführung | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0037 | Microsoft SQL Server 2022: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0033 | Trellix Agent: Schwachstelle ermöglicht Privilegieneskalation | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0030 | Siemens SICAM A8000: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit Administratorrechten | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0029 | Siemens JT2Go: Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0028 | Adobe Creative Cloud "Substance 3D Stager": Mehrere Schwachstellen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0027 | Fortinet FortiVoice: Schwachstelle ermöglicht Offenlegung von Informationen | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0026 | Zoom Video Communications Dekstop Client: Schwachstelle ermöglicht Privilegieneskalation | 2024-01-09T23:00:00.000+00:00 | 2024-01-09T23:00:00.000+00:00 |
| wid-sec-w-2024-0025 | SAP Patchday Januar 2024 | 2024-01-08T23:00:00.000+00:00 | 2024-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-0024 | Synology DiskStation Manager: Schwachstelle ermöglicht Codeausführung | 2024-01-08T23:00:00.000+00:00 | 2024-01-08T23:00:00.000+00:00 |
| wid-sec-w-2024-0023 | OpenVPN (MacOS): Schwachstelle ermöglicht Codeausführung | 2024-01-08T23:00:00.000+00:00 | 2024-01-08T23:00:00.000+00:00 |
| wid-sec-w-2022-2224 | Canonical Snap: Schwachstelle ermöglicht Privilegieneskalation | 2022-12-04T23:00:00.000+00:00 | 2024-01-08T23:00:00.000+00:00 |
| wid-sec-w-2022-1483 | PolicyKit: Schwachstelle ermöglicht Privilegieneskalation | 2022-01-25T23:00:00.000+00:00 | 2024-01-08T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2019:4096 | Red Hat Security Advisory: OpenShift Container Platform 4.2 openshift-external-storage security update | 2019-12-11T08:40:29+00:00 | 2026-01-13T21:27:06+00:00 |
| rhsa-2019:4052 | Red Hat Security Advisory: OpenShift Container Platform 3.11 atomic-openshift security update | 2019-12-16T13:53:11+00:00 | 2026-01-13T21:27:05+00:00 |
| rhsa-2019:3811 | Red Hat Security Advisory: OpenShift Container Platform 3.9 atomic-openshift security update | 2019-11-07T16:55:40+00:00 | 2026-01-13T21:27:04+00:00 |
| rhsa-2019:3590 | Red Hat Security Advisory: python-urllib3 security update | 2019-11-05T21:14:59+00:00 | 2026-01-13T21:27:04+00:00 |
| rhsa-2019:3553 | Red Hat Security Advisory: GNOME security, bug fix, and enhancement update | 2019-11-05T21:08:34+00:00 | 2026-01-13T21:27:04+00:00 |
| rhsa-2019:3335 | Red Hat Security Advisory: python27:2.7 security and bug fix update | 2019-11-05T21:02:33+00:00 | 2026-01-13T21:27:04+00:00 |
| rhsa-2019:3299 | Red Hat Security Advisory: rh-php72-php security update | 2019-11-01T13:03:19+00:00 | 2026-01-13T21:27:03+00:00 |
| rhsa-2019:3267 | Red Hat Security Advisory: OpenShift Container Platform 4.1 openshift-enterprise-cli-container security update | 2019-10-30T18:38:13+00:00 | 2026-01-13T21:27:03+00:00 |
| rhsa-2019:3266 | Red Hat Security Advisory: OpenShift Container Platform 4.1 openshift security update | 2019-10-30T18:30:58+00:00 | 2026-01-13T21:27:03+00:00 |
| rhsa-2019:2807 | Red Hat Security Advisory: thunderbird security update | 2019-09-19T06:33:06+00:00 | 2026-01-13T21:27:02+00:00 |
| rhsa-2019:2774 | Red Hat Security Advisory: thunderbird security update | 2019-09-16T14:39:10+00:00 | 2026-01-13T21:27:02+00:00 |
| rhsa-2019:1799 | Red Hat Security Advisory: thunderbird security and bug fix update | 2019-07-16T20:27:51+00:00 | 2026-01-13T21:27:02+00:00 |
| rhsa-2019:2773 | Red Hat Security Advisory: thunderbird security update | 2019-09-19T03:45:03+00:00 | 2026-01-13T21:27:01+00:00 |
| rhsa-2019:2729 | Red Hat Security Advisory: firefox security update | 2019-09-12T10:16:03+00:00 | 2026-01-13T21:27:01+00:00 |
| rhsa-2019:2694 | Red Hat Security Advisory: firefox security update | 2019-09-12T10:55:26+00:00 | 2026-01-13T21:27:00+00:00 |
| rhsa-2019:2663 | Red Hat Security Advisory: firefox security update | 2019-09-04T20:14:21+00:00 | 2026-01-13T21:27:00+00:00 |
| rhsa-2019:1775 | Red Hat Security Advisory: thunderbird security update | 2019-07-15T12:45:20+00:00 | 2026-01-13T21:27:00+00:00 |
| rhsa-2019:1777 | Red Hat Security Advisory: thunderbird security update | 2019-07-15T13:40:00+00:00 | 2026-01-13T21:26:58+00:00 |
| rhsa-2019:1763 | Red Hat Security Advisory: firefox security update | 2019-07-11T18:17:48+00:00 | 2026-01-13T21:26:57+00:00 |
| rhsa-2019:1633 | Red Hat Security Advisory: Red Hat OpenShift Container Platform 3.11 atomic-openshift security update | 2019-06-27T18:17:36+00:00 | 2026-01-13T21:26:57+00:00 |
| rhsa-2019:1632 | Red Hat Security Advisory: Red Hat OpenShift Container Platform 3.10 atomic-openshift security update | 2019-06-27T16:59:19+00:00 | 2026-01-13T21:26:57+00:00 |
| rhsa-2019:1626 | Red Hat Security Advisory: thunderbird security update | 2019-06-27T10:18:39+00:00 | 2026-01-13T21:26:57+00:00 |
| rhsa-2019:1624 | Red Hat Security Advisory: thunderbird security update | 2019-06-27T10:16:33+00:00 | 2026-01-13T21:26:56+00:00 |
| rhsa-2019:1310 | Red Hat Security Advisory: thunderbird security update | 2019-06-03T20:55:59+00:00 | 2026-01-13T21:26:55+00:00 |
| rhsa-2019:1309 | Red Hat Security Advisory: thunderbird security update | 2019-06-03T20:55:50+00:00 | 2026-01-13T21:26:55+00:00 |
| rhsa-2019:1308 | Red Hat Security Advisory: thunderbird security update | 2019-06-03T20:52:39+00:00 | 2026-01-13T21:26:55+00:00 |
| rhsa-2019:1267 | Red Hat Security Advisory: firefox security update | 2019-05-23T15:53:40+00:00 | 2026-01-13T21:26:54+00:00 |
| rhsa-2019:1265 | Red Hat Security Advisory: firefox security update | 2019-05-23T15:42:35+00:00 | 2026-01-13T21:26:53+00:00 |
| rhsa-2018:3113 | Red Hat Security Advisory: libvirt security, bug fix, and enhancement update | 2018-10-30T10:21:36+00:00 | 2026-01-13T21:26:53+00:00 |
| rhsa-2018:3092 | Red Hat Security Advisory: glibc security, bug fix, and enhancement update | 2018-10-30T10:57:09+00:00 | 2026-01-13T21:26:53+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2017-3615 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3614 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3613 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3612 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3611 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3610 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3609 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3608 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3607 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3606 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3605 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-3604 | Vulnerability in the Data Store component of Oracle Berkeley DB. The supported version that is affected is Prior to 6.2.32. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in takeover of Data Store. CVSS 3.0 Base Score 7.0 (Confidentiality Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H). | 2017-04-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-17969 | Heap-based buffer overflow in the NCompress::NShrink::CDecoder::CodeReal method in 7-Zip before 18.00 and p7zip allows remote attackers to cause a denial of service (out-of-bounds write) or potentially execute arbitrary code via a crafted ZIP archive. | 2018-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2017-16844 | Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size a different vulnerability than CVE-2014-3618. | 2017-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2016-9844 | Buffer overflow in the zi_short function in zipinfo.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via a large compression method value in the central directory file header. | 2017-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2016-9296 | A null pointer dereference bug affects the 16.02 and many old versions of p7zip. A lack of null pointer check for the variable folders.PackPositions in function CInArchive::ReadAndDecodePackedStreams in CPP/7zip/Archive/7z/7zIn.cpp as used in the 7z.so library and in 7z applications will cause a crash and a denial of service when decoding malformed 7z files. | 2016-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2016-7567 | Buffer overflow in the SLPFoldWhiteSpace function in common/slp_compare.c in OpenSLP 2.0 allows remote attackers to have unspecified impact via a crafted string. | 2017-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2015-7697 | Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (infinite loop) via empty bzip2 data in a ZIP archive. | 2015-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2015-7696 | Info-ZIP UnZip 6.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) or possibly execute arbitrary code via a crafted password-protected ZIP archive possibly related to an Extra-Field size value. | 2015-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2015-5157 | arch/x86/entry/entry_64.S in the Linux kernel before 4.1.6 on the x86_64 platform mishandles IRET faults in processing NMIs that occurred during userspace execution which might allow local users to gain privileges by triggering an NMI. | 2015-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2015-2987 | Type74 ED before 4.0 misuses 128-bit ECB encryption for small files which makes it easier for attackers to obtain plaintext data via differential cryptanalysis of a file with an original length smaller than 128 bits. | 2015-08-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-9913 | Buffer overflow in the list_files function in list.c in Info-Zip UnZip 6.0 allows remote attackers to cause a denial of service (crash) via vectors related to the compression method. | 2017-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-9636 | unzip 6.0 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via an extra field with an uncompressed size smaller than the compressed field size in a zip archive that advertises STORED method compression. | 2015-02-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-8141 | Heap-based buffer overflow in the getZip64Data function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command. | 2020-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-8140 | Heap-based buffer overflow in the test_compr_eb function in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command. | 2020-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-8139 | Heap-based buffer overflow in the CRC32 verification in Info-ZIP UnZip 6.0 and earlier allows remote attackers to execute arbitrary code via a crafted zip file in the -t command argument to the unzip command. | 2020-01-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-3618 | Heap-based buffer overflow in formisc.c in formail in procmail 3.22 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted email header related to "unbalanced quotes." | 2014-09-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-3185 | Multiple buffer overflows in the command_port_read_callback function in drivers/usb/serial/whiteheat.c in the Whiteheat USB Serial Driver in the Linux kernel before 3.16.2 allow physically proximate attackers to execute arbitrary code or cause a denial of service (memory corruption and system crash) via a crafted device that provides a large amount of (1) EHCI or (2) XHCI data associated with a bulk response. | 2014-09-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2014-0069 | The cifs_iovec_write function in fs/cifs/file.c in the Linux kernel through 3.13.5 does not properly handle uncached write operations that copy fewer than the requested number of bytes which allows local users to obtain sensitive information from kernel memory cause a denial of service (memory corruption and system crash) or possibly gain privileges via a writev system call with a crafted pointer. | 2014-02-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2013-6381 | Buffer overflow in the qeth_snmp_command function in drivers/s390/net/qeth_core_main.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service or possibly have unspecified other impact via an SNMP ioctl call with a length value that is incompatible with the command-buffer size. | 2013-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201704-0901 | WNC01WH firmware 1.0.0.9 and earlier allows authenticated attackers to execute arbitrary … | 2025-04-20T23:26:07.406000Z |
| var-201704-0964 | An exploitable nonce reuse vulnerability exists in the Web Application functionality of M… | 2025-04-20T23:26:07.332000Z |
| var-201704-1342 | A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Soft… | 2025-04-20T23:26:07.072000Z |
| var-201704-1363 | Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accou… | 2025-04-20T23:26:07.038000Z |
| var-201704-1573 | A code injection vulnerability exists in SAP TREX / Business Warehouse Accelerator (BWA).… | 2025-04-20T23:26:06.835000Z |
| var-201705-3166 | An escalation of privilege vulnerability in Fortinet FortiWLC-SD versions 8.2.4 and below… | 2025-04-20T23:26:06.152000Z |
| var-201705-3544 | In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller,… | 2025-04-20T23:26:05.937000Z |
| var-201705-3670 | A vulnerability in Cisco WebEx Meetings Server could allow unauthenticated, remote attack… | 2025-04-20T23:26:05.878000Z |
| var-201705-3796 | XXE vulnerability in Hitachi Device Manager before 8.5.2-01 and Hitachi Replication Manag… | 2025-04-20T23:26:05.783000Z |
| var-201706-0194 | Huawei AR1220 routers with software before V200R005SPH006 allow remote attackers to cause… | 2025-04-20T23:26:04.997000Z |
| var-201706-0320 | In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for Fil… | 2025-04-20T23:26:04.866000Z |
| var-201706-0322 | In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for Fil… | 2025-04-20T23:26:04.833000Z |
| var-201706-0319 | In EMC VNX2 versions prior to OE for File 8.1.9.211 and VNX1 versions prior to OE for Fil… | 2025-04-20T23:26:04.797000Z |
| var-201706-0446 | The Milwaukee ONE-KEY Android mobile application stores the master token in plaintext in … | 2025-04-20T23:26:04.711000Z |
| var-201706-0551 | The Symantec Messaging Gateway can encounter a file inclusion vulnerability, which is a t… | 2025-04-20T23:26:04.650000Z |
| var-201706-0552 | The Symantec Messaging Gateway can encounter an issue of remote code execution, which des… | 2025-04-20T23:26:04.607000Z |
| var-201706-0550 | The Symantec Messaging Gateway, when processing a specific email attachment, can allow a … | 2025-04-20T23:26:04.572000Z |
| var-201706-0572 | A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could… | 2025-04-20T23:26:04.539000Z |
| var-201706-0657 | A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation A… | 2025-04-20T23:26:04.466000Z |
| var-201706-0654 | An Improper Restriction of Excessive Authentication Attempts issue was discovered in Rock… | 2025-04-20T23:26:04.423000Z |
| var-201706-0656 | A Predictable Value Range from Previous Values issue was discovered in Rockwell Automatio… | 2025-04-20T23:26:04.381000Z |
| var-201706-0655 | An Information Exposure issue was discovered in Rockwell Automation Allen-Bradley MicroLo… | 2025-04-20T23:26:04.337000Z |
| var-201706-0658 | A Weak Password Requirements issue was discovered in Rockwell Automation Allen-Bradley Mi… | 2025-04-20T23:26:04.295000Z |
| var-201707-0275 | In Lenovo Connect2 versions earlier than 4.2.5.4885 for Windows and 4.2.5.3071 for Androi… | 2025-04-20T23:26:03.728000Z |
| var-201707-0296 | A routine within an internal Junos OS sockets library is vulnerable to a buffer overflow.… | 2025-04-20T23:26:03.692000Z |
| var-201707-0529 | Geneko GWR routers allow directory traversal sequences starting with a /../ substring, as… | 2025-04-20T23:26:03.338000Z |
| var-201707-0760 | MEDHOST Connex contains a hard-coded Mirth Connect admin credential that is used for cust… | 2025-04-20T23:26:03.151000Z |
| var-201707-0844 | NetComm Wireless 4GT101W routers with Hardware: 0.01 / Software: V1.1.8.8 / Bootloader: 1… | 2025-04-20T23:26:03.084000Z |
| var-201707-0907 | A vulnerability in the backup and restore functionality of Cisco FireSIGHT System Softwar… | 2025-04-20T23:26:03.002000Z |
| var-201707-0929 | A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local a… | 2025-04-20T23:26:02.966000Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2023:1922-1 | Security update for openssl-1_0_0 | 2023-04-19T17:54:57Z | 2023-04-19T17:54:57Z |
| suse-su-2023:1921-1 | Security update for ovmf | 2023-04-19T16:07:13Z | 2023-04-19T16:07:13Z |
| suse-su-2023:1914-1 | Security update for openssl-1_0_0 | 2023-04-19T12:24:32Z | 2023-04-19T12:24:32Z |
| suse-su-2023:1912-1 | Security update for compat-openssl098 | 2023-04-19T11:24:59Z | 2023-04-19T11:24:59Z |
| suse-su-2023:1911-1 | Security update for openssl-1_1 | 2023-04-19T11:02:42Z | 2023-04-19T11:02:42Z |
| suse-su-2023:1910-1 | Security update for glib2 | 2023-04-19T09:57:31Z | 2023-04-19T09:57:31Z |
| suse-su-2023:1909-1 | Security update for libgit2 | 2023-04-19T08:55:54Z | 2023-04-19T08:55:54Z |
| suse-su-2023:1908-1 | Security update for openssl-1_1 | 2023-04-19T06:39:00Z | 2023-04-19T06:39:00Z |
| suse-su-2023:1907-1 | Security update for openssl | 2023-04-19T06:38:03Z | 2023-04-19T06:38:03Z |
| suse-su-2023:1904-1 | Security update for grafana | 2023-04-19T03:09:30Z | 2023-04-19T03:09:30Z |
| suse-su-2023:1903-1 | Security update for SUSE Manager Client Tools | 2023-04-19T03:09:10Z | 2023-04-19T03:09:10Z |
| suse-su-2023:1902-1 | Security update for SUSE Manager Client Tools | 2023-04-19T03:08:57Z | 2023-04-19T03:08:57Z |
| suse-su-2023:1901-1 | Security update for helm | 2023-04-18T13:37:41Z | 2023-04-18T13:37:41Z |
| suse-su-2023:1898-1 | Security update for openssl-3 | 2023-04-18T11:11:27Z | 2023-04-18T11:11:27Z |
| suse-su-2023:1897-1 | Security update for the Linux Kernel | 2023-04-18T10:00:07Z | 2023-04-18T10:00:07Z |
| suse-su-2023:1895-1 | Security update for the Linux Kernel | 2023-04-18T09:39:06Z | 2023-04-18T09:39:06Z |
| suse-su-2023:1894-1 | Security update for the Linux Kernel | 2023-04-18T09:36:06Z | 2023-04-18T09:36:06Z |
| suse-su-2023:1877-1 | Security update for pgadmin4 | 2023-04-18T07:39:15Z | 2023-04-18T07:39:15Z |
| suse-su-2023:1876-1 | Security update for nodejs12 | 2023-04-18T07:37:30Z | 2023-04-18T07:37:30Z |
| suse-su-2023:1875-1 | Security update for nodejs14 | 2023-04-18T07:36:16Z | 2023-04-18T07:36:16Z |
| suse-su-2023:1874-1 | Security update for wayland | 2023-04-18T04:28:59Z | 2023-04-18T04:28:59Z |
| suse-su-2023:1873-1 | Security update for wayland | 2023-04-18T04:28:35Z | 2023-04-18T04:28:35Z |
| suse-su-2023:1872-1 | Security update for nodejs14 | 2023-04-17T16:09:59Z | 2023-04-17T16:09:59Z |
| suse-su-2023:1871-1 | Security update for nodejs10 | 2023-04-17T14:48:02Z | 2023-04-17T14:48:02Z |
| suse-su-2023:1869-1 | Security update for rubygem-rack | 2023-04-17T12:50:45Z | 2023-04-17T12:50:45Z |
| suse-su-2023:1867-1 | Security update for gradle | 2023-04-17T12:14:43Z | 2023-04-17T12:14:43Z |
| suse-su-2023:1864-1 | Security update for wayland | 2023-04-17T08:57:19Z | 2023-04-17T08:57:19Z |
| suse-su-2023:1863-1 | Security update for shim | 2023-04-17T07:34:56Z | 2023-04-17T07:34:56Z |
| suse-su-2023:1860-1 | Security update for wayland | 2023-04-14T15:36:16Z | 2023-04-14T15:36:16Z |
| suse-su-2023:1859-1 | Security update for golang-github-prometheus-prometheus | 2023-04-14T14:45:05Z | 2023-04-14T14:45:05Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2021:0621-1 | Security update for MozillaFirefox | 2021-04-26T14:17:06Z | 2021-04-26T14:17:06Z |
| opensuse-su-2021:0620-1 | Security update for jhead | 2021-04-26T04:05:12Z | 2021-04-26T04:05:12Z |
| opensuse-su-2021:0619-1 | Security update for libdwarf | 2021-04-25T22:05:33Z | 2021-04-25T22:05:33Z |
| opensuse-su-2021:0618-1 | Security update for nim | 2021-04-25T18:05:14Z | 2021-04-25T18:05:14Z |
| opensuse-su-2021:0607-1 | Security update for ruby2.5 | 2021-04-24T12:05:20Z | 2021-04-24T12:05:20Z |
| opensuse-su-2021:0606-1 | Security update for ImageMagick | 2021-04-23T16:05:55Z | 2021-04-23T16:05:55Z |
| opensuse-su-2021:0605-1 | Security update for apache-commons-io | 2021-04-23T16:05:51Z | 2021-04-23T16:05:51Z |
| opensuse-su-2021:0602-1 | Security update for sudo | 2021-04-23T10:46:47Z | 2021-04-23T10:46:47Z |
| opensuse-su-2021:0601-1 | Security update for nodejs-underscore | 2021-04-23T10:46:45Z | 2021-04-23T10:46:45Z |
| opensuse-su-2021:0600-1 | Security update for qemu | 2021-04-23T10:46:42Z | 2021-04-23T10:46:42Z |
| opensuse-su-2021:0598-1 | Security update for shim | 2021-04-23T10:44:47Z | 2021-04-23T10:44:47Z |
| opensuse-su-2021:0597-1 | Security update for python-django-registration | 2021-04-22T22:05:42Z | 2021-04-22T22:05:42Z |
| opensuse-su-2021:0594-1 | Security update for jhead | 2021-04-22T18:05:18Z | 2021-04-22T18:05:18Z |
| opensuse-su-2021:0592-1 | Security update for opera | 2021-04-22T08:05:34Z | 2021-04-22T08:05:34Z |
| opensuse-su-2021:0588-1 | Security update for python-django-registration | 2021-04-19T14:05:32Z | 2021-04-19T14:05:32Z |
| opensuse-su-2021:0580-1 | Security update for MozillaThunderbird | 2021-04-19T12:10:39Z | 2021-04-19T12:10:39Z |
| opensuse-su-2021:0579-1 | Security update for the Linux Kernel | 2021-04-19T12:09:04Z | 2021-04-19T12:09:04Z |
| opensuse-su-2021:0577-1 | Security update for nextcloud-desktop | 2021-04-19T12:08:02Z | 2021-04-19T12:08:02Z |
| opensuse-su-2021:0575-1 | Security update for chromium | 2021-04-19T08:05:18Z | 2021-04-19T08:05:18Z |
| opensuse-su-2021:0571-1 | Security update for python-bleach | 2021-04-17T22:05:12Z | 2021-04-17T22:05:12Z |
| opensuse-su-2021:0570-1 | Security update for fluidsynth | 2021-04-17T22:05:09Z | 2021-04-17T22:05:09Z |
| opensuse-su-2021:0567-1 | Security update for chromium | 2021-04-17T08:32:55Z | 2021-04-17T08:32:55Z |
| opensuse-su-2021:0565-1 | Security update for opensc | 2021-04-16T18:05:41Z | 2021-04-16T18:05:41Z |
| opensuse-su-2021:0563-1 | Security update for wpa_supplicant | 2021-04-16T18:05:36Z | 2021-04-16T18:05:36Z |
| opensuse-su-2021:0555-1 | Security update for clamav | 2021-04-15T06:11:23Z | 2021-04-15T06:11:23Z |
| opensuse-su-2021:0554-1 | Security update for xorg-x11-server | 2021-04-15T06:11:21Z | 2021-04-15T06:11:21Z |
| opensuse-su-2021:0553-1 | Security update for fluidsynth | 2021-04-14T14:51:32Z | 2021-04-14T14:51:32Z |
| opensuse-su-2021:0552-1 | Security update for python-bleach | 2021-04-14T14:51:29Z | 2021-04-14T14:51:29Z |
| opensuse-su-2021:0551-1 | Security update for spamassassin | 2021-04-14T14:51:27Z | 2021-04-14T14:51:27Z |
| opensuse-su-2021:0548-1 | Security update for umoci | 2021-04-13T08:23:04Z | 2021-04-13T08:23:04Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2025-12951 | Fuji Electric V-SFT缓冲区溢出漏洞(CNVD-2025-12951) | 2025-05-26 | 2025-06-20 |
| cnvd-2025-12956 | Fuji Electric V-SFT CTxSubFile::get_ProgramFile_name函数缓冲区溢出漏洞 | 2025-05-22 | 2025-06-19 |
| cnvd-2025-12955 | Fuji Electric V-SFT Conv_Macro_Data函数缓冲区溢出漏洞 | 2025-05-22 | 2025-06-19 |
| cnvd-2025-12954 | Fuji Electric V-SFT CGamenDataRom::set_mr400_strc函数缓冲区溢出漏洞 | 2025-05-22 | 2025-06-19 |
| cnvd-2025-12953 | Fuji Electric V-SFT CDrawSLine::GetRectArea函数缓冲区溢出漏洞 | 2025-05-22 | 2025-06-19 |
| cnvd-2025-12952 | Fuji Electric V-SFT CDataRomErrorCheck::MacroCommandCheck函数缓冲区溢出漏洞 | 2025-05-22 | 2025-06-19 |
| cnvd-2025-12894 | TOTOLINK CA300-PoE缓冲区溢出漏洞 | 2024-08-02 | 2025-06-19 |
| cnvd-2025-12893 | TOTOLINK A7000R loginauth函数缓冲区溢出漏洞 | 2024-08-02 | 2025-06-19 |
| cnvd-2025-12892 | TOTOLINK EX1200L cstecgi.cgi文件setLanguageCfg函数堆栈缓冲区溢出漏洞 | 2024-08-19 | 2025-06-19 |
| cnvd-2025-12891 | TOTOLINK EX1200L缓冲区溢出漏洞 | 2024-08-20 | 2025-06-19 |
| cnvd-2025-12890 | TOTOLINK AC1200 T8/T10缓冲区溢出漏洞(CNVD-2025-12890) | 2024-09-11 | 2025-06-19 |
| cnvd-2025-12889 | Zoom Workplace Apps for Windows权限提升漏洞 | 2025-02-13 | 2025-06-19 |
| cnvd-2025-12888 | Zoom Workplace Apps越界写入漏洞 | 2025-02-13 | 2025-06-19 |
| cnvd-2025-12887 | Zoom Workplace App for macOS拒绝服务漏洞 | 2025-02-13 | 2025-06-19 |
| cnvd-2025-12886 | Zoom Workplace App for Linux权限提升漏洞 | 2025-02-13 | 2025-06-19 |
| cnvd-2025-12885 | Zoom Jenkins Marketplace plugin信息泄露漏洞 | 2025-02-18 | 2025-06-19 |
| cnvd-2025-12884 | WordPress Elementor Website Builder Pro plugin跨站脚本漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12883 | WordPress CryptoCloud - Crypto Payment Gateway plugin权限提升漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12882 | WordPress CraftXtore plugin文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12881 | WordPress Blogvy plugin文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12880 | WordPress Blogty plugin文件包含漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12879 | TOTOLINK AC1200缓冲区溢出漏洞 | 2024-09-11 | 2025-06-19 |
| cnvd-2025-12878 | TOTOLINK A3000RU访问控制错误漏洞 | 2025-03-28 | 2025-06-19 |
| cnvd-2025-12877 | TOTOLINK A720R信息泄露漏洞 | 2025-05-14 | 2025-06-19 |
| cnvd-2025-12876 | TOTOLINK N302R Plus url参数缓冲区溢出漏洞 | 2025-06-10 | 2025-06-19 |
| cnvd-2025-12875 | TOTOLINK N302R Plus service_type参数缓冲区溢出漏洞 | 2025-06-10 | 2025-06-19 |
| cnvd-2025-12874 | TOTOLINK T10缓冲区溢出漏洞 | 2025-06-13 | 2025-06-19 |
| cnvd-2025-12873 | TOTOLINK EX1200T formReflashClientTbl缓冲区溢出漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12872 | TOTOLINK EX1200T /boafrm/formWsc文件缓冲区溢出漏洞 | 2025-06-17 | 2025-06-19 |
| cnvd-2025-12871 | TOTOLINK EX1200T /boafrm/formIpQoS文件缓冲区溢出漏洞 | 2025-06-17 | 2025-06-19 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2018-avi-084 | Multiples vulnérabilités dans Microsoft IE | 2018-02-14T00:00:00.000000 | 2018-02-14T00:00:00.000000 |
| certfr-2018-avi-083 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-02-14T00:00:00.000000 | 2018-02-14T00:00:00.000000 |
| certfr-2018-avi-082 | Multiples vulnérabilités dans Adobe Acrobat et Reader | 2018-02-14T00:00:00.000000 | 2018-02-14T00:00:00.000000 |
| certfr-2018-avi-081 | Vulnérabilité dans Google Chrome | 2018-02-14T00:00:00.000000 | 2018-02-14T00:00:00.000000 |
| certfr-2018-avi-080 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-02-12T00:00:00.000000 | 2018-02-12T00:00:00.000000 |
| certfr-2018-avi-079 | Multiples vulnérabilités dans le noyau Linux de RedHat | 2018-02-12T00:00:00.000000 | 2018-02-12T00:00:00.000000 |
| certfr-2018-avi-078 | Multiples vulnérabilités dans SCADA les produits Schneider Electric | 2018-02-12T00:00:00.000000 | 2018-02-12T00:00:00.000000 |
| certfr-2018-avi-077 | Multiples vulnérabilités dans les produits VMware | 2018-02-12T00:00:00.000000 | 2018-02-12T00:00:00.000000 |
| certfr-2018-avi-076 | Multiples vulnérabilités dans les produits Cisco | 2018-02-08T00:00:00.000000 | 2018-02-08T00:00:00.000000 |
| certfr-2018-avi-075 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-02-08T00:00:00.000000 | 2018-02-08T00:00:00.000000 |
| certfr-2018-avi-074 | Vulnérabilité dans SCADA les logiciels Schneider Electric IGSS SCADA | 2018-02-07T00:00:00.000000 | 2018-02-07T00:00:00.000000 |
| certfr-2018-avi-073 | Vulnérabilité dans SCADA CODESYS Web Server | 2018-02-07T00:00:00.000000 | 2018-02-07T00:00:00.000000 |
| certfr-2018-avi-072 | Multiples vulnérabilités dans les produits Microsoft Windows utilisant le composant Adobe Flash Player | 2018-02-07T00:00:00.000000 | 2018-02-07T00:00:00.000000 |
| certfr-2018-avi-071 | Multiples vulnérabilité dans Adobe Flash Player | 2018-02-07T00:00:00.000000 | 2018-02-07T00:00:00.000000 |
| certfr-2018-avi-070 | Vulnérabilité dans F5 BIG-IP | 2018-02-06T00:00:00.000000 | 2018-02-06T00:00:00.000000 |
| certfr-2018-avi-069 | Multiples vulnérabilités dans Google Chrome OS | 2018-02-06T00:00:00.000000 | 2018-02-06T00:00:00.000000 |
| certfr-2018-avi-068 | Vulnérabilité dans Juniper Junos OS | 2018-02-06T00:00:00.000000 | 2018-02-06T00:00:00.000000 |
| certfr-2018-avi-067 | Multiples vulnérabilités dans Google Android | 2018-02-06T00:00:00.000000 | 2018-02-06T00:00:00.000000 |
| certfr-2018-avi-066 | Multiples vulnérabilités dans PHP | 2018-02-05T00:00:00.000000 | 2018-02-05T00:00:00.000000 |
| certfr-2018-avi-060 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-29T00:00:00.000000 | 2018-02-05T00:00:00.000000 |
| certfr-2018-avi-065 | Multiples vulnérabilités dans Google Chrome et Chrome OS | 2018-02-02T00:00:00.000000 | 2018-02-02T00:00:00.000000 |
| certfr-2018-avi-064 | Vulnérabilité dans Cisco Aggregation Services Router (ASR) 9000 Series | 2018-02-01T00:00:00.000000 | 2018-02-01T00:00:00.000000 |
| certfr-2018-avi-063 | Vulnérabilité dans Cisco Adaptive Security Appliance | 2018-01-30T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-062 | Vulnérabilité dans Mozilla Firefox | 2018-01-30T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-059 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2018-01-29T00:00:00.000000 | 2018-01-30T00:00:00.000000 |
| certfr-2018-avi-061 | Multiples vulnérabilités dans les produits VMware | 2018-01-29T00:00:00.000000 | 2018-01-29T00:00:00.000000 |
| certfr-2018-avi-058 | Multiples vulnérabilités dans Mozilla Thunderbird | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-057 | Multiples vulnérabilités dans SCADA Siemens TeleControl Server Basic | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-056 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2018-01-26T00:00:00.000000 | 2018-01-26T00:00:00.000000 |
| certfr-2018-avi-055 | Vulnérabilité dans SCADA Siemens Desigo PXC | 2018-01-25T00:00:00.000000 | 2018-01-25T00:00:00.000000 |