Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-27636 |
N/A
|
Apache Camel: Camel Message Header Injection via Impro… |
Apache Software Foundation |
Apache Camel |
2025-03-09T12:09:58.619Z | 2026-02-26T19:09:44.229Z |
| CVE-2022-43454 |
7.8 (3.1)
|
A double free issue was addressed with improved m… |
Apple |
macOS |
2025-03-10T19:37:48.138Z | 2026-02-26T19:09:44.049Z |
| CVE-2025-1920 |
8.8 (3.1)
|
Type Confusion in V8 in Google Chrome prior to 13… |
Google |
Chrome |
2025-03-10T20:39:16.505Z | 2026-02-26T19:09:43.886Z |
| CVE-2025-2135 |
8.8 (3.1)
|
Type Confusion in V8 in Google Chrome prior to 13… |
Google |
Chrome |
2025-03-10T20:39:17.029Z | 2026-02-26T19:09:43.715Z |
| CVE-2025-2136 |
8.8 (3.1)
|
Use after free in Inspector in Google Chrome prio… |
Google |
Chrome |
2025-03-10T20:39:17.258Z | 2026-02-26T19:09:43.572Z |
| CVE-2025-2137 |
8.8 (3.1)
|
Out of bounds read in V8 in Google Chrome prior t… |
Google |
Chrome |
2025-03-10T20:39:17.660Z | 2026-02-26T19:09:43.441Z |
| CVE-2025-26658 |
6.8 (3.1)
|
Broken Authentication in SAP Business One (Service Layer) |
SAP_SE |
SAP Business One (Service Layer) |
2025-03-11T00:35:34.989Z | 2026-02-26T19:09:43.294Z |
| CVE-2025-26661 |
8.8 (3.1)
|
Missing Authorization check in SAP NetWeaver (ABAP Cla… |
SAP_SE |
SAP NetWeaver (ABAP Class Builder) |
2025-03-11T00:37:11.712Z | 2026-02-26T19:09:43.121Z |
| CVE-2025-27434 |
8.8 (3.1)
|
Cross-Site Scripting (XSS) vulnerability in SAP Commer… |
SAP_SE |
SAP Commerce (Swagger UI) |
2025-03-11T00:39:01.831Z | 2026-02-26T19:09:42.955Z |
| CVE-2024-11253 |
7.2 (3.1)
|
A post-authentication command injection vulnerabi… |
Zyxel |
VMG8825-T50K firmware |
2025-03-11T01:29:00.993Z | 2026-02-26T19:09:42.793Z |
| CVE-2024-12009 |
7.2 (3.1)
|
A post-authentication command injection vulnerabi… |
Zyxel |
EX5601-T1 firmware |
2025-03-11T01:37:54.500Z | 2026-02-26T19:09:42.614Z |
| CVE-2024-12010 |
7.2 (3.1)
|
A post-authentication command injection vulnerabi… |
Zyxel |
AX7501-B1 firmware |
2025-03-11T01:44:15.430Z | 2026-02-26T19:09:42.424Z |
| CVE-2025-27363 |
8.1 (3.1)
|
An out of bounds write exists in FreeType version… |
FreeType |
FreeType |
2025-03-11T13:28:31.705Z | 2026-02-26T19:09:42.172Z |
| CVE-2024-54085 |
10 (4.0)
|
Redfish Authentication Bypass |
AMI |
MegaRAC-SPx |
2025-03-11T14:00:58.643Z | 2026-02-26T19:09:41.995Z |
| CVE-2025-22454 |
7.8 (3.1)
|
Insufficiently restrictive permissions in Ivanti … |
Ivanti |
Secure Access Client |
2025-03-11T14:11:30.497Z | 2026-02-26T19:09:41.856Z |
| CVE-2023-40723 |
7.7 (3.1)
|
An exposure of sensitive information to an unauth… |
Fortinet |
FortiSIEM |
2025-03-11T14:54:28.770Z | 2026-02-26T19:09:41.705Z |
| CVE-2024-45328 |
7.1 (3.1)
|
An incorrect authorization vulnerability [CWE-863… |
Fortinet |
FortiSandbox |
2025-03-11T14:54:28.909Z | 2026-02-26T19:09:41.549Z |
| CVE-2024-52961 |
8.6 (3.1)
|
An improper neutralization of special elements us… |
Fortinet |
FortiSandbox |
2025-03-11T14:54:30.498Z | 2026-02-26T19:09:41.402Z |
| CVE-2024-46663 |
6.5 (3.1)
|
A stack-buffer overflow vulnerability [CWE-121] i… |
Fortinet |
FortiMail |
2025-03-11T14:54:31.928Z | 2026-02-26T19:09:41.215Z |
| CVE-2024-45324 |
7 (3.1)
|
A use of externally-controlled format string vuln… |
Fortinet |
FortiPAM |
2025-03-11T14:54:33.810Z | 2026-02-26T19:09:40.968Z |
| CVE-2023-37933 |
8.6 (3.1)
|
An improper neutralization of input during web pa… |
Fortinet |
FortiADC |
2025-03-11T14:54:35.895Z | 2026-02-26T19:09:40.814Z |
| CVE-2024-54018 |
6.5 (3.1)
|
Multiple improper neutralization of special eleme… |
Fortinet |
FortiSandbox |
2025-03-11T14:54:37.970Z | 2026-02-26T19:09:40.654Z |
| CVE-2024-32123 |
6.5 (3.1)
|
Multiple improper neutralization of special eleme… |
Fortinet |
FortiManager |
2025-03-11T14:54:38.345Z | 2026-02-26T19:09:40.479Z |
| CVE-2025-27172 |
7.8 (3.1)
|
Substance3D - Designer | Out-of-bounds Write (CWE-787) |
Adobe |
Substance3D - Designer |
2025-03-11T16:26:04.564Z | 2026-02-26T19:09:40.306Z |
| CVE-2025-21169 |
7.8 (3.1)
|
Substance3D - Designer | Heap-based Buffer Overflow (C… |
Adobe |
Substance3D - Designer |
2025-03-11T16:26:05.409Z | 2026-02-26T19:09:40.127Z |
| CVE-2025-26634 |
7.5 (3.1)
|
Windows Core Messaging Elevation of Privileges Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-03-11T16:50:49.895Z | 2026-02-26T19:09:39.933Z |
| CVE-2025-24983 |
7 (3.1)
|
Windows Win32 Kernel Subsystem Elevation of Privilege … |
Microsoft |
Windows 10 Version 1507 |
2025-03-11T16:59:17.608Z | 2026-02-26T19:09:39.770Z |
| CVE-2025-24984 |
4.6 (3.1)
|
Windows NTFS Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-03-11T16:59:18.193Z | 2026-02-26T19:09:39.622Z |
| CVE-2025-24985 |
7.8 (3.1)
|
Windows Fast FAT File System Driver Remote Code Execut… |
Microsoft |
Windows 10 Version 1507 |
2025-03-11T16:59:18.750Z | 2026-02-26T19:09:39.435Z |
| CVE-2025-24991 |
5.5 (3.1)
|
Windows NTFS Information Disclosure Vulnerability |
Microsoft |
Windows 10 Version 1507 |
2025-03-11T16:59:19.319Z | 2026-02-26T19:09:39.249Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-56605 |
5.4 (3.1)
|
A reflected Cross-Site Scripting (XSS) vulnerabil… |
n/a |
n/a |
2026-02-26T00:00:00.000Z | 2026-02-26T17:06:15.835Z |
| CVE-2025-50857 |
9.8 (3.1)
|
ZenTaoPMS v18.11 through v21.6.beta is vulnerable… |
n/a |
n/a |
2026-02-26T00:00:00.000Z | 2026-02-26T18:48:30.603Z |
| CVE-2025-15567 |
5.1 (4.0)
|
Insufficient protection mechanisms in the Health … |
vivo |
Health |
2026-02-27T06:54:29.817Z | 2026-02-27T18:41:41.980Z |
| CVE-2025-15509 |
7.1 (4.0)
|
The SmartRemote module has insufficient restricti… |
vivo |
SmartRemote |
2026-02-27T06:52:34.399Z | 2026-02-27T18:47:32.496Z |
| CVE-2025-14343 |
7.6 (3.1)
|
Reflected XSS in Dokuzsoft Technology's E-Commerce Product |
Dokuzsoft Technology Ltd. |
E-Commerce Product |
2026-02-26T12:06:21.407Z | 2026-02-26T14:18:33.982Z |
| CVE-2025-14149 |
6.4 (3.1)
|
Xpro Addons — 140+ Widgets for Elementor <= 1.4.24 - A… |
xpro |
Xpro Addons — 140+ Widgets for Elementor |
2026-02-27T06:43:49.345Z | 2026-02-27T18:46:17.461Z |
| CVE-2025-14142 |
6.4 (3.1)
|
Electric Enquiries <= 1.1 - Authenticated (Contributor… |
electriccode |
Electric Enquiries |
2026-02-27T09:23:42.947Z | 2026-02-27T15:56:02.212Z |
| CVE-2025-14040 |
6.4 (3.1)
|
Automotive Car Dealership Business WordPress Theme <= … |
themesuite |
Automotive Car Dealership Business WordPress Theme |
2026-02-27T06:43:48.758Z | 2026-02-27T18:45:51.725Z |
| CVE-2025-13327 |
6.3 (3.1)
|
Uv: uv: specially crafted zip archives lead to arbitra… |
astral-sh |
uv |
2026-02-27T07:30:20.131Z | 2026-02-27T07:30:20.131Z |
| CVE-2025-12981 |
9.8 (3.1)
|
Listee <= 1.1.6 - Unauthenticated Privilege Escalation |
dreamstechnologies |
Listee |
2026-02-27T06:43:49.771Z | 2026-02-27T18:47:00.498Z |
| CVE-2025-12150 |
3.1 (3.1)
|
Org.keycloak/keycloak-services: webauthn attestation s… |
Keycloak |
keycloak |
2026-02-27T08:10:15.448Z | 2026-02-27T08:10:15.448Z |
| CVE-2024-10938 |
6.5 (3.1)
|
OVRI Payment 1.7.0 - Malicious .htaccess directive |
moneytigo |
OVRI Payment |
2026-02-27T09:23:42.427Z | 2026-02-27T16:15:28.956Z |
| CVE-2023-31364 |
8.3 (4.0)
|
Improper handling of direct memory writes in the … |
AMD |
AMD EPYC™ 7001 Series Processors |
2026-02-26T20:33:28.086Z | 2026-02-27T19:06:16.269Z |
| CVE-2026-24130 |
2.7 (4.0)
|
Moonraker with LDAP Enabled Allows Malicious Search Fi… |
Arksine |
moonraker |
2026-01-22T22:53:34.769Z | 2026-01-23T20:03:49.510Z |
| CVE-2026-1610 |
9.2 (4.0)
8.1 (3.1)
8.1 (3.0)
|
Tenda AX12 Pro V2 Telnet Service hard-coded credentials |
Tenda |
AX12 Pro V2 |
2026-01-29T19:02:08.122Z | 2026-02-23T09:06:50.985Z |
| CVE-2026-23515 |
10 (3.1)
|
RCE - Command Injection in Signal K set-system-time plugin |
SignalK |
signalk-server |
2026-02-02T20:43:32.219Z | 2026-02-03T15:32:04.099Z |
| CVE-2026-2108 |
6.9 (4.0)
5.3 (3.1)
5.3 (3.0)
|
jsbroks COCO Annotator Endpoint long_task denial of service |
jsbroks |
COCO Annotator |
2026-02-07T19:02:06.919Z | 2026-02-23T09:33:58.212Z |
| CVE-2026-24306 |
9.8 (3.1)
|
Azure Front Door Elevation of Privilege Vulnerability |
Microsoft |
Azure Front Door |
2026-01-22T22:47:34.942Z | 2026-02-26T14:44:30.329Z |
| CVE-2026-2109 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
jsbroks COCO Annotator Delete Category undo improper a… |
jsbroks |
COCO Annotator |
2026-02-07T19:32:06.262Z | 2026-02-23T09:34:09.648Z |
| CVE-2025-55210 |
2 (4.0)
|
FreePBX API has a Privilege Escalation Error in GraphQ… |
FreePBX |
api |
2026-02-12T16:22:42.967Z | 2026-02-26T14:44:21.186Z |
| CVE-2025-47205 |
5.1 (4.0)
|
QTS, QuTS hero |
QNAP Systems Inc. |
QTS |
2026-02-11T12:19:44.097Z | 2026-02-11T14:33:22.912Z |
| CVE-2025-14443 |
6.4 (3.1)
|
Ose-openshift-apiserver: openshift api server: server-… |
Red Hat |
Red Hat OpenShift Container Platform 4 |
2025-12-16T12:14:47.964Z | 2026-02-27T03:24:12.959Z |
| CVE-2021-47779 |
8.4 (4.0)
7.2 (3.1)
|
Dolibarr ERP-CRM 14.0.2 - Stored Cross-Site Scripting … |
Dolibarr |
CRM |
2026-01-15T23:25:36.684Z | 2026-01-16T16:13:28.653Z |
| CVE-2026-1048 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
LigeroSmart index.pl cross site scripting |
n/a |
LigeroSmart |
2026-01-17T17:02:06.534Z | 2026-02-26T15:57:18.484Z |
| CVE-2026-1049 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
LigeroSmart index.pl cross site scripting |
n/a |
LigeroSmart |
2026-01-17T17:32:05.916Z | 2026-02-26T15:56:50.721Z |
| CVE-2026-1066 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
kalcaddle kodbox Compression zip command injection |
kalcaddle |
kodbox |
2026-01-17T21:02:06.222Z | 2026-02-23T08:34:40.545Z |
| CVE-2026-1106 |
5.3 (4.0)
5.4 (3.1)
5.4 (3.0)
|
Chamilo LMS Legal Consent SocialController.php deleteL… |
Chamilo |
LMS |
2026-01-18T00:02:09.172Z | 2026-02-23T08:35:10.532Z |
| CVE-2026-1107 |
5.3 (4.0)
6.3 (3.1)
6.3 (3.0)
|
EyouCMS Member Avatar Diyajax.php check_userinfo unres… |
n/a |
EyouCMS |
2026-01-18T00:32:06.306Z | 2026-02-23T08:35:22.852Z |
| CVE-2025-15438 |
5.1 (4.0)
4.7 (3.1)
4.7 (3.0)
|
PluXml Media Management medias.php __destruct deserial… |
n/a |
PluXml |
2026-01-02T14:32:11.287Z | 2026-02-23T08:10:50.486Z |
| CVE-2025-15437 |
5.1 (4.0)
3.5 (3.1)
3.5 (3.0)
|
LigeroSmart Environment Variable cross site scripting |
n/a |
LigeroSmart |
2026-01-02T08:32:06.186Z | 2026-02-23T08:09:16.451Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| fkie_cve-2025-13327 | A flaw was found in uv. This vulnerability allows an attacker to execute malicious code during pack… | 2026-02-27T08:17:04.043 | 2026-02-27T14:06:37.987 |
| fkie_cve-2025-12981 | The Listee theme for WordPress is vulnerable to privilege escalation in all versions up to, and inc… | 2026-02-27T07:17:09.300 | 2026-02-27T14:06:37.987 |
| fkie_cve-2025-12150 | A flaw was found in Keycloak’s WebAuthn registration component. This vulnerability allows an attack… | 2026-02-27T09:16:15.227 | 2026-02-27T14:06:37.987 |
| fkie_cve-2024-10938 | The OVRI Payment plugin for WordPress contains malicious .htaccess files in version 1.7.0. The file… | 2026-02-27T10:16:18.957 | 2026-02-27T14:06:37.987 |
| fkie_cve-2023-31364 | Improper handling of direct memory writes in the input-output memory management unit could allow a … | 2026-02-26T21:28:47.037 | 2026-02-27T14:06:37.987 |
| fkie_cve-2026-24130 | Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions … | 2026-01-22T23:15:58.477 | 2026-02-27T13:57:16.400 |
| fkie_cve-2026-1610 | A vulnerability was found in Tenda AX12 Pro V2 16.03.49.24_cn. Affected by this issue is some unkno… | 2026-01-29T19:16:19.483 | 2026-02-27T13:56:43.110 |
| fkie_cve-2026-23515 | Signal K Server is a server application that runs on a central hub in a boat. Prior to 1.5.0, a com… | 2026-02-02T23:16:07.190 | 2026-02-27T13:46:54.247 |
| fkie_cve-2026-2108 | A vulnerability was determined in jsbroks COCO Annotator up to 0.11.1. This impacts an unknown func… | 2026-02-07T19:15:46.613 | 2026-02-27T13:45:11.587 |
| fkie_cve-2026-24306 | Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privil… | 2026-01-22T23:15:58.837 | 2026-02-27T13:44:45.297 |
| fkie_cve-2026-2109 | A vulnerability was identified in jsbroks COCO Annotator up to 0.11.1. Affected is an unknown funct… | 2026-02-07T20:15:55.500 | 2026-02-27T13:43:48.190 |
| fkie_cve-2025-55210 | FreePBX is an open-source web-based graphical user interface (GUI) that manages Asterisk. Prior to … | 2026-02-12T17:16:04.963 | 2026-02-27T13:05:46.890 |
| fkie_cve-2025-47205 | A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system … | 2026-02-11T13:15:52.287 | 2026-02-27T12:59:14.410 |
| fkie_cve-2025-14443 | A flaw was found in ose-openshift-apiserver. This vulnerability allows internal network enumeration… | 2025-12-16T13:15:56.720 | 2026-02-27T04:16:00.760 |
| fkie_cve-2021-47779 | Dolibarr ERP-CRM 14.0.2 contains a stored cross-site scripting vulnerability in the ticket creation… | 2026-01-16T00:16:20.940 | 2026-02-27T03:52:46.580 |
| fkie_cve-2026-1048 | A weakness has been identified in LigeroSmart up to 6.1.26. Impacted is an unknown function of the … | 2026-01-17T17:15:48.863 | 2026-02-27T03:52:11.113 |
| fkie_cve-2026-1049 | A security vulnerability has been detected in LigeroSmart up to 6.1.26. The affected element is an … | 2026-01-17T18:15:48.717 | 2026-02-27T03:51:36.257 |
| fkie_cve-2026-1066 | A vulnerability was detected in kalcaddle kodbox up to 1.61.10. This issue affects some unknown pro… | 2026-01-17T21:15:49.960 | 2026-02-27T03:50:55.130 |
| fkie_cve-2026-1106 | A security flaw has been discovered in Chamilo LMS up to 2.0.0 Beta 1. This issue affects the funct… | 2026-01-18T01:15:51.023 | 2026-02-27T03:50:02.083 |
| fkie_cve-2026-1107 | A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function check_userinfo … | 2026-01-18T01:15:51.247 | 2026-02-27T03:47:44.820 |
| fkie_cve-2025-15438 | A vulnerability was determined in PluXml up to 5.8.22. Affected is the function FileCookieJar::__de… | 2026-01-02T15:15:59.400 | 2026-02-27T03:45:54.890 |
| fkie_cve-2025-15437 | A vulnerability was found in LigeroSmart up to 6.1.24. This affects an unknown part of the componen… | 2026-01-02T09:15:42.453 | 2026-02-27T03:39:52.033 |
| fkie_cve-2025-14262 | A wrong permission check in KNIME Business Hub before version 1.17.0 allowed an authenticated user … | 2025-12-08T10:16:01.047 | 2026-02-27T03:38:57.107 |
| fkie_cve-2025-53786 | On April 18th 2025, Microsoft announced Exchange Server Security Changes for Hybrid Deployments and… | 2025-08-06T16:15:30.700 | 2026-02-27T03:38:01.227 |
| fkie_cve-2024-34193 | smanga 3.2.7 does not filter the file parameter at the PHP/get file flow.php interface, resulting i… | 2024-05-20T18:15:10.400 | 2026-02-27T03:37:07.987 |
| fkie_cve-2026-21725 | A time-of-create-to-time-of-use (TOCTOU) vulnerability lets recently deleted-then-recreated data so… | 2026-02-25T13:16:05.240 | 2026-02-27T03:34:26.473 |
| fkie_cve-2026-26104 | A flaw was found in the udisks storage management daemon that allows unprivileged users to back up … | 2026-02-25T11:16:03.193 | 2026-02-27T03:27:05.453 |
| fkie_cve-2026-26103 | A flaw was found in the udisks storage management daemon that exposes a privileged D-Bus API for re… | 2026-02-25T11:16:02.983 | 2026-02-27T03:26:30.660 |
| fkie_cve-2025-5781 | Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configu… | 2026-02-25T03:16:04.030 | 2026-02-27T03:23:15.157 |
| fkie_cve-2026-25891 | Fiber is an Express inspired web framework written in Go. A Path Traversal (CWE-22) vulnerability i… | 2026-02-24T22:16:31.440 | 2026-02-27T03:18:58.503 |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-jvrv-rj6m-mfm6 |
7.1 (3.1)
|
Missing Authorization vulnerability in vanquish WooCommerce Bulk Product Editor woocommerce-quick-p… | 2026-02-20T18:31:37Z | 2026-02-25T18:31:29Z |
| ghsa-wg3c-3523-f9fc |
5.9 (3.1)
|
Insertion of Sensitive Information Into Sent Data vulnerability in themeglow JobBoard Job listing j… | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-rm7g-73m3-759p |
6.5 (3.1)
|
Missing Authorization vulnerability in sendy Sendy sendy allows Exploiting Incorrectly Configured A… | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-qq6w-x794-mfrc |
7.7 (3.1)
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in van… | 2026-02-20T18:31:36Z | 2026-02-25T18:31:28Z |
| ghsa-prpx-gw6q-vpv2 |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-20T18:31:33Z | 2026-02-25T18:31:28Z |
| ghsa-gpx9-88hq-9x47 |
8.6 (3.1)
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in van… | 2026-02-20T18:31:36Z | 2026-02-25T18:31:28Z |
| ghsa-fg97-672q-6chv |
7.5 (3.1)
|
Missing Authorization vulnerability in GhostPool Gauge gauge allows Exploiting Incorrectly Configur… | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-f8c9-f59w-g5cx |
7.7 (3.1)
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Mur… | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-cvjq-fp7r-7jf7 |
6.5 (3.1)
|
Missing Authorization vulnerability in ELEXtensions ELEX WordPress HelpDesk & Customer Ticketing Sy… | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-c88w-mqr9-prrr |
4.3 (3.1)
|
Missing Authorization vulnerability in Seraphinite Solutions Seraphinite Accelerator seraphinite-ac… | 2026-02-20T18:31:33Z | 2026-02-25T18:31:28Z |
| ghsa-6rr6-99p5-684x |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-20T18:31:33Z | 2026-02-25T18:31:28Z |
| ghsa-6qvx-865f-qrhf |
5.3 (3.1)
|
Missing Authorization vulnerability in Anssi Laitila Shared Files shared-files.This issue affects S… | 2026-02-20T18:31:32Z | 2026-02-25T18:31:28Z |
| ghsa-62mp-mc96-vv2w |
7.5 (3.1)
|
Missing Authorization vulnerability in modeltheme ModelTheme Framework modeltheme-framework allows … | 2026-02-20T18:31:36Z | 2026-02-25T18:31:28Z |
| ghsa-56wx-rr26-54fr |
6.5 (3.1)
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability … | 2026-02-20T18:31:35Z | 2026-02-25T18:31:28Z |
| ghsa-w5q5-7f2p-x4hm |
5.5 (3.1)
6.8 (4.0)
|
A Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in the method to collect FPC Ethe… | 2026-01-15T21:31:48Z | 2026-02-25T18:31:27Z |
| ghsa-jqrg-rvpw-5fw5 |
8.8 (3.1)
|
Use after free in FedCM in Google Chrome prior to 120.0.6099.109 allowed a remote attacker who conv… | 2023-12-15T00:31:03Z | 2026-02-25T18:31:27Z |
| ghsa-8jgg-mv8q-h7xh |
8.8 (3.1)
|
Use after free in CSS in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to potenti… | 2023-12-15T00:31:03Z | 2026-02-25T18:31:27Z |
| ghsa-82xm-jwxq-4436 |
8.1 (3.1)
|
An issue in Gardyn 4 allows a remote attacker to obtain sensitive information and execute arbitrary… | 2025-07-25T18:30:40Z | 2026-02-25T18:31:27Z |
| ghsa-7422-rhq7-3wfj |
8.8 (3.1)
|
An issue in Gardyn 4 allows a remote attacker to obtain sensitive information and execute arbitrary… | 2025-07-25T18:30:40Z | 2026-02-25T18:31:27Z |
| ghsa-4993-4c8h-h8w5 |
9.8 (3.1)
|
An issue in Gardyn 4 allows a remote attacker execute arbitrary code | 2025-07-25T18:30:40Z | 2026-02-25T18:31:27Z |
| ghsa-h27f-fw5q-c2gh |
8.8 (3.1)
|
Use after free in WebRTC in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to pote… | 2023-12-15T00:31:03Z | 2026-02-25T18:31:26Z |
| ghsa-9v72-359m-2vx4 |
8.8 (3.1)
|
Use after free in Blink in Google Chrome prior to 120.0.6099.109 allowed a remote attacker to poten… | 2023-12-15T00:31:03Z | 2026-02-25T18:31:26Z |
| ghsa-rrhw-mwxf-m9mp |
5.3 (3.1)
|
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Se… | 2023-08-17T21:30:53Z | 2026-02-25T18:31:23Z |
| ghsa-792v-3cgw-26xq |
5.3 (3.1)
|
A Missing Authentication for Critical Function vulnerability in Juniper Networks Junos OS on SRX Se… | 2023-09-27T15:30:35Z | 2026-02-25T18:31:23Z |
| ghsa-4hgh-2v7g-hc3q |
7.5 (3.1)
|
SolarWinds Serv-U is submitting an HTTP request when changing or updating the attributes for File S… | 2023-06-16T00:30:15Z | 2026-02-25T18:31:23Z |
| ghsa-4grv-wgvh-8x82 |
8.8 (3.1)
|
kdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is reachabl… | 2023-08-16T15:30:17Z | 2026-02-25T18:31:23Z |
| ghsa-qj8x-rvw2-jm6w |
5.5 (3.1)
|
xpdf pdfimages v4.04 was discovered to contain a stack overflow in the component Catalog::readPageL… | 2023-05-10T18:30:17Z | 2026-02-25T18:31:22Z |
| ghsa-pm8x-qgfh-8h6p |
5.3 (3.1)
|
In affected versions of Octopus Deploy it is possible to unmask variable secrets using the variable… | 2023-05-02T06:30:27Z | 2026-02-25T18:31:22Z |
| ghsa-jw72-cmc9-886w |
5.5 (3.1)
|
Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to cause a Denial of Service … | 2023-04-26T21:30:37Z | 2026-02-25T18:31:22Z |
| ghsa-j96r-2c7w-r3f2 |
5.5 (3.1)
|
An issue found in XPDF v.4.04 allows an attacker to cause a denial of service via a crafted pdf fil… | 2023-04-26T21:30:37Z | 2026-02-25T18:31:22Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2023-215 |
5.4 (3.1)
|
Cross-site Scripting (XSS) - DOM in GitHub repository modoboa/modoboa prior to 2.2.2. | modoboa | 2023-10-20T17:15:00+00:00 | 2023-10-27T20:23:07.768462+00:00 |
| pysec-2023-214 |
5.4 (3.1)
|
Home assistant is an open source home automation. The audit team’s analyses confirmed tha… | homeassistant | 2023-10-20T00:15:00+00:00 | 2023-10-26T20:24:24.928732+00:00 |
| pysec-2023-213 |
7.5 (3.1)
|
Inadequate encryption strength in mycli 1.27.0 allows attackers to view sensitive informa… | mycli | 2023-10-19T22:15:00+00:00 | 2023-10-25T22:26:24.480718+00:00 |
| pysec-2023-212 |
4.2 (3.1)
|
urllib3 is a user-friendly HTTP client library for Python. urllib3 previously wouldn't re… | urllib3 | 2023-10-17T20:15:00+00:00 | 2023-10-25T18:28:34.811764+00:00 |
| pysec-2023-211 |
|
views/switch.py in django-grappelli (aka Django Grappelli) before 2.15.2 attempts to prev… | django-grappelli | 2023-10-22T19:15:00+00:00 | 2023-10-22T20:22:30.994719+00:00 |
| pysec-2023-210 |
|
views.py in Wagtail CRX CodeRed Extensions (formerly CodeRed CMS or coderedcms) before 0.… | coderedcms | 2023-10-22T19:15:00+00:00 | 2023-10-22T20:22:30.887585+00:00 |
| pysec-2023-209 |
9.8 (3.1)
|
A vulnerability, which was classified as critical, has been found in json-logic-js 2.0.0.… | json-logic | 2023-03-05T19:15:00+00:00 | 2023-10-20T16:31:18.877419+00:00 |
| pysec-2023-208 |
4.3 (3.1)
|
A vulnerability was found in paxswill EVE Ship Replacement Program 0.12.11. It has been r… | eve-srp | 2023-02-06T17:15:00+00:00 | 2023-10-20T16:31:18.806057+00:00 |
| pysec-2023-207 |
6.1 (3.1)
|
urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cros… | urllib3 | 2023-10-15T19:15:00+00:00 | 2023-10-19T16:33:01.297810+00:00 |
| pysec-2023-206 |
7.5 (3.1)
|
NULL Pointer Dereference in GitHub repository seleniumhq/selenium prior to 4.14.0. | selenium | 2023-10-15T23:15:00+00:00 | 2023-10-19T12:51:06.907613+00:00 |
| pysec-2023-205 |
|
LangChain before 0.0.317 allows SSRF via document_loaders/recursive_url_loader.py because… | langchain | 2023-10-19T05:15:00+00:00 | 2023-10-19T10:33:05.150766+00:00 |
| pysec-2023-204 |
4.3 (3.1)
|
Apache Airflow, versions 2.7.0 and 2.7.1, is affected by a vulnerability that allows an … | apache-airflow | 2023-10-14T10:15:00+00:00 | 2023-10-18T20:24:08.594791+00:00 |
| pysec-2023-203 |
6.5 (3.1)
|
Apache Airflow, in versions prior to 2.7.2, contains a security vulnerability that allows… | apache-airflow | 2023-10-14T10:15:00+00:00 | 2023-10-18T20:24:08.541134+00:00 |
| pysec-2023-202 |
6.5 (3.1)
|
Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows au… | apache-airflow | 2023-10-14T10:15:00+00:00 | 2023-10-18T20:24:08.482939+00:00 |
| pysec-2023-201 |
4.3 (3.1)
|
vantage6 is privacy preserving federated learning infrastructure. The endpoint /api/colla… | vantage6 | 2023-10-11T20:15:00+00:00 | 2023-10-18T05:26:18.202930+00:00 |
| pysec-2023-200 |
4.3 (3.1)
|
vantage6 is privacy preserving federated learning infrastructure. When a collaboration is… | vantage6 | 2023-10-11T20:15:00+00:00 | 2023-10-18T05:26:18.112311+00:00 |
| pysec-2023-199 |
4.9 (3.1)
|
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foun… | matrix-synapse | 2023-10-10T18:15:00+00:00 | 2023-10-17T22:26:17.611846+00:00 |
| pysec-2023-198 |
5.4 (3.1)
|
vantage6 is privacy preserving federated learning infrastructure. Prior to version 4.0.0,… | vantage6-node | 2023-10-11T20:15:00+00:00 | 2023-10-17T18:31:16.643410+00:00 |
| pysec-2023-197 |
|
Apache Airflow, versions before 2.7.2, has a vulnerability that allows an authorized user… | apache-airflow | 2023-10-14T10:15:00+00:00 | 2023-10-14T12:46:00.410542+00:00 |
| pysec-2023-196 |
7.2 (3.1)
|
vantage6 is privacy preserving federated learning infrastructure. Versions prior to 4.0.0… | vantage6 | 2023-10-11T18:15:00+00:00 | 2023-10-13T22:28:56.802294+00:00 |
| pysec-2023-195 |
6.5 (3.1)
|
OctoPrint is a web interface for 3D printers. OctoPrint versions up until and including 1… | octoprint | 2023-10-09T16:15:00+00:00 | 2023-10-13T20:25:14.968230+00:00 |
| pysec-2023-193 |
4.8 (3.1)
|
Zope is an open-source web application server. The title property, available on most Zope… | zope | 2023-10-04T21:15:00+00:00 | 2023-10-10T20:21:16.174482+00:00 |
| pysec-2023-192 |
8.1 (3.1)
|
urllib3 is a user-friendly HTTP client library for Python. urllib3 doesn't treat the `Coo… | urllib3 | 2023-10-04T17:15:00+00:00 | 2023-10-10T14:28:19.389317+00:00 |
| pysec-2023-154 |
5.3 (3.1)
|
Datasette is an open source multi-tool for exploring and publishing data. This bug affect… | datasette | 2023-08-25T01:15:00Z | 2023-10-08T16:12:24.555320Z |
| pysec-2023-191 |
7.5 (3.1)
|
Vyper is a Pythonic Smart Contract Language for the EVM. The `_abi_decode()` function doe… | vyper | 2023-09-27T15:19:00+00:00 | 2023-10-04T20:26:42.494872+00:00 |
| pysec-2023-190 |
7.5 (3.1)
|
Versions of the package asyncua before 0.9.96 are vulnerable to Denial of Service (DoS) s… | asyncua | 2023-10-03T05:15:00+00:00 | 2023-10-04T18:37:48.407821+00:00 |
| pysec-2023-189 |
7.5 (3.1)
|
Versions of the package asyncua before 0.9.96 are vulnerable to Improper Authentication s… | asyncua | 2023-10-03T05:15:00+00:00 | 2023-10-04T18:37:48.328804+00:00 |
| pysec-2023-162 |
9.8 (3.1)
|
An issue in LanChain-ai Langchain v.0.0.245 allows a remote attacker to execute arbitrary… | langchain | 2023-09-01T16:15:00Z | 2023-10-04T16:56:57.465474Z |
| pysec-2023-188 |
7.5 (3.1)
|
When deserializing untrusted or corrupted data, it is possible for a reader to consume me… | avro | 2023-09-29T17:15:00+00:00 | 2023-10-03T22:26:25.361706+00:00 |
| pysec-2023-187 |
|
An issue was discovered in pretix before 2023.7.1. Incorrect parsing of configuration fil… | pretix | 2023-10-02T20:15:00+00:00 | 2023-10-02T22:26:51.461030+00:00 |
| ID | Description | Updated |
|---|---|---|
| gsd-2024-33491 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.718371Z |
| gsd-2024-33405 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.718151Z |
| gsd-2024-33216 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.717949Z |
| gsd-2024-33456 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.717737Z |
| gsd-2024-33379 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.717530Z |
| gsd-2024-33292 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.717307Z |
| gsd-2024-33180 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.717105Z |
| gsd-2024-33284 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716892Z |
| gsd-2024-33482 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716648Z |
| gsd-2024-33105 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716445Z |
| gsd-2024-33167 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716224Z |
| gsd-2024-33506 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.716022Z |
| gsd-2024-33000 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.715822Z |
| gsd-2024-33040 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.715619Z |
| gsd-2024-33310 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.715276Z |
| gsd-2024-33221 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.715064Z |
| gsd-2024-33359 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.714714Z |
| gsd-2024-33121 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.714356Z |
| gsd-2024-33057 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.714140Z |
| gsd-2024-33430 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.713914Z |
| gsd-2024-33200 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.713644Z |
| gsd-2024-33333 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.713446Z |
| gsd-2024-33382 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.713242Z |
| gsd-2024-33509 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.713025Z |
| gsd-2024-33138 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712826Z |
| gsd-2024-33285 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712627Z |
| gsd-2024-33011 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712423Z |
| gsd-2024-33104 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712218Z |
| gsd-2024-33394 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.712015Z |
| gsd-2024-33218 | The format of the source doesn't require a description, click on the link for more details. | 2024-04-24T05:02:09.711814Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2026-367 | Malicious code in uq-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:04Z |
| mal-2026-366 | Malicious code in testing-package-bose (npm) | 2026-01-20T04:05:57Z | 2026-01-23T01:39:04Z |
| mal-2026-365 | Malicious code in telia-eventapi-client (npm) | 2026-01-20T04:16:08Z | 2026-01-23T01:39:04Z |
| mal-2026-349 | Malicious code in tutor_table (npm) | 2026-01-19T06:07:51Z | 2026-01-23T01:39:04Z |
| mal-2026-334 | Malicious code in viem-js (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| mal-2026-333 | Malicious code in tronweb-tool (npm) | 2026-01-19T00:34:59Z | 2026-01-23T01:39:04Z |
| mal-2026-332 | Malicious code in tailwin (npm) | 2026-01-19T00:43:31Z | 2026-01-23T01:39:04Z |
| mal-2026-324 | Malicious code in typedoc-plugin-fuel-variants (npm) | 2026-01-17T22:15:00Z | 2026-01-23T01:39:04Z |
| mal-2026-448 | Malicious code in rank253222 (npm) | 2026-01-22T07:50:51Z | 2026-01-23T01:39:03Z |
| mal-2026-429 | Malicious code in sign-client (npm) | 2026-01-21T04:34:17Z | 2026-01-23T01:39:03Z |
| mal-2026-428 | Malicious code in shroom-kit (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:03Z |
| mal-2026-427 | Malicious code in replicate-js (npm) | 2026-01-21T04:49:30Z | 2026-01-23T01:39:03Z |
| mal-2026-426 | Malicious code in qdrant-js (npm) | 2026-01-21T04:49:30Z | 2026-01-23T01:39:03Z |
| mal-2026-425 | Malicious code in plugin-vue (npm) | 2026-01-21T04:48:23Z | 2026-01-23T01:39:03Z |
| mal-2026-424 | Malicious code in plugin-react-swc (npm) | 2026-01-21T04:48:23Z | 2026-01-23T01:39:03Z |
| mal-2026-397 | Malicious code in recaptcha-cors (npm) | 2026-01-21T03:59:51Z | 2026-01-23T01:39:03Z |
| mal-2026-396 | Malicious code in private-internal-sdk (npm) | 2026-01-21T04:21:35Z | 2026-01-23T01:39:03Z |
| mal-2026-377 | Malicious code in potdf (npm) | 2026-01-21T02:31:57Z | 2026-01-23T01:39:03Z |
| mal-2026-370 | Malicious code in sezzle (npm) | 2026-01-20T06:18:17Z | 2026-01-23T01:39:03Z |
| mal-2026-364 | Malicious code in shared-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:03Z |
| mal-2026-363 | Malicious code in pl-global-ec-uikit (npm) | 2026-01-20T04:16:09Z | 2026-01-23T01:39:03Z |
| mal-2026-356 | Malicious code in react-server-dom-unbundled (npm) | 2026-01-20T03:42:30Z | 2026-01-23T01:39:03Z |
| mal-2026-348 | Malicious code in react-native-webview-forked (npm) | 2026-01-19T05:24:56Z | 2026-01-23T01:39:03Z |
| mal-2026-345 | Malicious code in private-payment-lib (npm) | 2026-01-19T00:59:52Z | 2026-01-23T01:39:03Z |
| mal-2026-437 | Malicious code in lumo-api-client (npm) | 2026-01-21T07:13:50Z | 2026-01-23T01:39:02Z |
| mal-2026-423 | Malicious code in oce-validate (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:02Z |
| mal-2026-422 | Malicious code in oce-icons (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:02Z |
| mal-2026-421 | Malicious code in oce-freecoin (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:02Z |
| mal-2026-420 | Malicious code in oce-components (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:02Z |
| mal-2026-419 | Malicious code in oce-collaborate (npm) | 2026-01-21T04:39:39Z | 2026-01-23T01:39:02Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2025-2827 | Microsoft Windows Admin Center: Schwachstelle ermöglicht Privilegieneskalation | 2025-12-11T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2826 | Microsoft GitHub Enterprise: Schwachstelle ermöglicht Cross-Site Scripting | 2025-12-11T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2822 | GitLab: Mehrere Schwachstellen | 2025-12-10T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2813 | Webmin: Schwachstelle ermöglicht Codeausführung | 2025-12-10T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2808 | Insyde UEFI Firmware: Schwachstelle ermöglicht Codeausführung | 2025-12-09T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2726 | Google Android Pixel: Mehrere Schwachstellen | 2025-12-02T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2710 | cPanel cPanel/WHM: Schwachstelle ermöglicht Privilegieneskalation | 2025-12-01T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2676 | GeoServer: Mehrere Schwachstellen | 2025-11-25T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2635 | Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Denial of Service | 2025-11-18T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2432 | Red Hat Ansible Automation Platform: Mehrere Schwachstellen | 2025-10-28T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2204 | NetApp ActiveIQ Unified Manager (Undertow): Schwachstelle ermöglicht Denial of Service | 2025-10-05T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2147 | Foxit PDF Reader und PDF Editor: Mehrere Schwachstellen ermöglichen Umgehen von Sicherheitsvorkehrungen | 2025-09-28T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-1824 | TianoCore EDK2: Schwachstelle ermöglicht Denial of Service | 2025-08-13T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-1815 | Foxit PDF Editor und Reader: Mehrere Schwachstellen | 2025-08-12T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-1741 | TianoCore EDK2: Schwachstelle ermöglicht Privilegieneskalation | 2025-08-06T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-1132 | OpenSSL: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-05-22T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0731 | TianoCore EDK2: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-04-07T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0400 | Atlassian Bamboo/Jira : Mehrere Schwachstellen ermöglichen Denial of Service | 2025-02-18T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-0316 | OpenSSL: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2025-02-11T23:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2024-3230 | OpenSSL: Schwachstelle ermöglicht Denial of Service und Remote-Code-Ausführung | 2024-10-16T22:00:00.000+00:00 | 2025-12-11T23:00:00.000+00:00 |
| wid-sec-w-2025-2823 | Drupal (Acquia Content Hub): Schwachstelle ermöglicht Darstellen falscher Informationen | 2025-12-10T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2819 | Jenkins: Mehrere Schwachstellen | 2025-12-10T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2818 | Pega Platform: Schwachstelle ermöglicht Offenlegung von Informationen | 2025-12-10T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2817 | Exim: Schwachstelle ermöglicht Codeausführung | 2025-12-10T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2815 | xwiki: Schwachstelle ermöglicht Codeausführung | 2025-12-10T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2811 | xwiki: Mehrere Schwachstellen | 2025-12-09T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2810 | Bitdefender Antivirus, Total Security und Internet Security: Schwachstelle ermöglicht Privilegieneskalation | 2025-12-09T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2804 | Moxa MXsecurity: Schwachstelle ermöglicht Manipulation von Dateien | 2025-12-09T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2797 | Zoom Video Communications Rooms: Mehrere Schwachstellen | 2025-12-09T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| wid-sec-w-2025-2789 | Adobe Experience Manager: Mehrere Schwachstellen | 2025-12-09T23:00:00.000+00:00 | 2025-12-10T23:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2024:9884 | Red Hat Security Advisory: Red Hat Trusted Profile Analyzer 1.2.0 | 2024-11-18T14:52:00+00:00 | 2026-02-17T07:52:00+00:00 |
| rhsa-2024:9583 | Red Hat Security Advisory: ACS 4.4 enhancement update | 2024-11-13T18:00:45+00:00 | 2026-02-17T07:51:58+00:00 |
| rhsa-2024:9458 | Red Hat Security Advisory: python3.11-urllib3 security update | 2024-11-12T10:24:37+00:00 | 2026-02-17T07:51:56+00:00 |
| rhsa-2024:9457 | Red Hat Security Advisory: python3.12-urllib3 security update | 2024-11-12T10:24:24+00:00 | 2026-02-17T07:51:54+00:00 |
| rhsa-2024:8981 | Red Hat Security Advisory: OpenShift Container Platform 4.17.4 bug fix and security update | 2024-11-13T04:13:47+00:00 | 2026-02-17T07:51:46+00:00 |
| rhsa-2024:8906 | Red Hat Security Advisory: Satellite 6.16.0 release | 2024-11-05T17:49:17+00:00 | 2026-02-17T07:51:44+00:00 |
| rhsa-2024:8843 | Red Hat Security Advisory: python3.11-urllib3 security update | 2024-11-05T02:35:40+00:00 | 2026-02-17T07:51:44+00:00 |
| rhsa-2024:8842 | Red Hat Security Advisory: python3.12-urllib3 security update | 2024-11-05T02:46:15+00:00 | 2026-02-17T07:51:42+00:00 |
| rhsa-2024:8676 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.17.0 Security, Enhancement, & Bug Fix Update | 2024-10-30T14:25:22+00:00 | 2026-02-17T07:51:40+00:00 |
| rhsa-2024:8113 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.3 security and bug fix update | 2024-10-15T08:52:38+00:00 | 2026-02-17T07:51:40+00:00 |
| rhsa-2024:8035 | Red Hat Security Advisory: python3.11-urllib3 security update | 2024-10-14T02:05:56+00:00 | 2026-02-17T07:51:36+00:00 |
| rhsa-2024:8023 | Red Hat Security Advisory: Release of OpenShift Serverless Logic 1.34.0 security update & enhancements | 2024-10-14T00:59:58+00:00 | 2026-02-17T07:51:33+00:00 |
| rhsa-2024:8014 | Red Hat Security Advisory: Network Observability 1.7.0 for OpenShift | 2024-10-22T01:05:39+00:00 | 2026-02-17T07:51:33+00:00 |
| rhsa-2024:7922 | Red Hat Security Advisory: OpenShift Container Platform 4.17.1 bug fix and security update | 2024-10-16T02:39:40+00:00 | 2026-02-17T07:51:31+00:00 |
| rhsa-2024:7726 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.6.2 | 2024-10-07T09:24:48+00:00 | 2026-02-17T07:51:30+00:00 |
| rhsa-2024:7725 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.5.5 | 2024-10-07T09:24:53+00:00 | 2026-02-17T07:51:29+00:00 |
| rhsa-2024:7724 | Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.11 | 2024-10-07T09:22:37+00:00 | 2026-02-17T07:51:28+00:00 |
| rhsa-2024:7599 | Red Hat Security Advisory: OpenShift Container Platform 4.16.16 bug fix and security update | 2024-10-09T05:32:16+00:00 | 2026-02-17T07:51:27+00:00 |
| rhsa-2024:7324 | Red Hat Security Advisory: Logging for Red Hat OpenShift - 5.9.7 | 2024-10-02T12:03:29+00:00 | 2026-02-17T07:51:27+00:00 |
| rhsa-2024:7312 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2024-09-27T04:34:17+00:00 | 2026-02-17T07:51:25+00:00 |
| rhsa-2024:7164 | Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update | 2024-09-26T03:46:53+00:00 | 2026-02-17T07:51:24+00:00 |
| rhsa-2024:6765 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2024-09-18T16:07:25+00:00 | 2026-02-17T07:51:24+00:00 |
| rhsa-2024:6667 | Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.16.0 release | 2024-09-12T21:30:49+00:00 | 2026-02-17T07:51:22+00:00 |
| rhsa-2024:6755 | Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update | 2024-09-18T11:56:25+00:00 | 2026-02-17T07:51:21+00:00 |
| rhsa-2024:6428 | Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update | 2024-09-05T14:13:20+00:00 | 2026-02-17T07:51:19+00:00 |
| rhsa-2024:6358 | Red Hat Security Advisory: python-urllib3 security update | 2024-09-04T18:31:43+00:00 | 2026-02-17T07:51:19+00:00 |
| rhsa-2024:6311 | Red Hat Security Advisory: resource-agents security update | 2024-09-04T11:16:02+00:00 | 2026-02-17T07:51:19+00:00 |
| rhsa-2024:6310 | Red Hat Security Advisory: resource-agents security update | 2024-09-04T11:11:42+00:00 | 2026-02-17T07:51:17+00:00 |
| rhsa-2024:6309 | Red Hat Security Advisory: fence-agents security update | 2024-09-04T11:30:52+00:00 | 2026-02-17T07:51:16+00:00 |
| rhsa-2024:6240 | Red Hat Security Advisory: python-urllib3 security update | 2024-09-03T18:59:14+00:00 | 2026-02-17T07:51:16+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-12-137-02 | Advantech Studio ISSymbol ActiveX Buffer Overflow | 2012-02-17T07:00:00.000000Z | 2025-06-06T22:37:31.006003Z |
| icsa-12-131-01 | Progea Movicon Memory Corruption Vulnerability | 2012-02-11T07:00:00.000000Z | 2025-06-06T22:37:24.554697Z |
| icsa-15-069-04a | Elipse E3 Process Control Vulnerability (Update A) | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:37:18.082701Z |
| icsa-15-069-04 | Elipse E3 Process Control Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:37:11.175255Z |
| icsa-15-069-03 | SCADA Engine BACnet OPC Server Vulnerabilities | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:51.449296Z |
| icsa-15-069-02 | ABB HART Device DTM Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:45.007018Z |
| icsa-15-069-01 | Cimon CmnView DLL Hijacking Vulnerability | 2015-12-11T07:00:00.000000Z | 2025-06-06T22:36:38.524138Z |
| icsa-15-064-04 | Siemens SIMATIC S7-300 CPU Denial-of-Service Vulnerability | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:32.046323Z |
| icsa-15-064-02a | Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths (Update A) | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:19.130527Z |
| icsa-15-064-02 | Siemens SIMATIC ProSave, SIMATIC CFC, SIMATIC STEP 7, SIMOTION Scout, and STARTER Insufficiently Qualified Paths | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:12.657259Z |
| icsa-15-064-01a | Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability (Update A) | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:36:06.004237Z |
| icsa-15-064-01 | Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability | 2015-12-06T07:00:00.000000Z | 2025-06-06T22:35:59.487016Z |
| icsa-15-062-01 | MICROSYS PROMOTIC Stack Buffer Overflow | 2015-12-04T07:00:00.000000Z | 2025-06-06T22:35:46.482417Z |
| icsa-15-057-01 | Network Vision IntraVue Code Injection Vulnerability | 2015-11-29T07:00:00.000000Z | 2025-06-06T22:35:40.053299Z |
| icsa-15-055-03 | Schneider Electric Invensys Positioner Buffer Overflow Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:33.492544Z |
| icsa-15-055-02 | Kepware Resource Exhaustion Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:27.000975Z |
| icsa-15-055-01 | Software Toolbox Top Server Resource Exhaustion Vulnerability | 2015-11-27T07:00:00.000000Z | 2025-06-06T22:35:20.530492Z |
| icsa-15-050-01a | Siemens SIMATIC STEP 7 TIA Portal Vulnerabilities (Update A) | 2015-11-22T07:00:00.000000Z | 2025-06-06T22:35:07.394617Z |
| icsa-15-048-03 | Yokogawa HART Device DTM Vulnerability | 2015-11-20T07:00:00.000000Z | 2025-06-06T22:35:00.882056Z |
| icsa-15-048-02 | Siemens SIMATIC WinCC TIA Portal Vulnerabilities | 2015-11-20T07:00:00.000000Z | 2025-06-06T22:34:47.839959Z |
| icsa-15-048-01 | Siemens SIMATIC STEP 7 TIA Portal Vulnerabilities | 2015-11-20T07:00:00.000000Z | 2025-06-06T22:34:34.894563Z |
| icsa-15-041-02 | GE Hydran M2 Predictable TCP Initial Sequence Vulnerability | 2015-11-13T07:00:00.000000Z | 2025-06-06T22:34:28.440832Z |
| icsa-15-036-02 | Pepperl+Fuchs Hart Device DTM Vulnerability | 2015-11-08T07:00:00.000000Z | 2025-06-06T22:34:21.972701Z |
| icsa-15-036-01a | GE and MACTek HART Device DTM Vulnerability (Update A) | 2015-11-08T07:00:00.000000Z | 2025-06-06T22:34:15.524601Z |
| icsa-15-034-02 | Siemens Ruggedcom WIN Vulnerability | 2015-11-06T07:00:00.000000Z | 2025-06-06T22:33:56.150269Z |
| icsa-15-029-01 | Honeywell HART DTM Vulnerability | 2015-11-01T06:00:00.000000Z | 2025-06-06T22:33:43.213614Z |
| icsa-15-027-01 | Magnetrol HART DTM Vulnerability | 2015-10-30T06:00:00.000000Z | 2025-06-06T22:33:36.757982Z |
| icsa-15-022-01 | Siemens SIMATIC S7-1200 CPU Web Vulnerability | 2015-10-25T06:00:00.000000Z | 2025-06-06T22:33:30.307653Z |
| icsa-15-020-02 | Schneider Electric ETG3000 FactoryCast HMI Gateway Vulnerabilities | 2015-10-23T06:00:00.000000Z | 2025-06-06T22:33:17.373978Z |
| icsa-15-020-01 | Siemens SCALANCE X-300/X408 Switch Family DOS Vulnerabilities | 2015-10-23T06:00:00.000000Z | 2025-06-06T22:33:04.402280Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-broadworks-xss-xbhfr4cd | Cisco BroadWorks Application Delivery Platform Software Cross-Site Scripting Vulnerability | 2022-08-03T16:00:00+00:00 | 2022-08-03T16:00:00+00:00 |
| cisco-sa-sma-esa-auth-bypass-66kecxqd | Cisco Email Security Appliance and Cisco Secure Email and Web Manager External Authentication Bypass Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-08-02T13:07:47+00:00 |
| cisco-sa-sb-rv-rce-overflow-yghbyak | Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-mprvesc-emhdgxe5 | Cisco Nexus Dashboard Privilege Escalation Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-mhcvuln-vpsbpj9y | Cisco Nexus Dashboard Unauthorized Access Vulnerabilities | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ndb-afw-2mt9tb99 | Cisco Nexus Dashboard Arbitrary File Write Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-nd-tlsvld-tbaqlp3n | Cisco Nexus Dashboard SSL Certificate Validation Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ise-lifetime-pwd-gpcs76mb | Cisco Identity Services Engine Administrator Password Lifetime Expiration Issue | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-iotcc-xss-wqrclrvd | Cisco IoT Control Center Cross-Site Scripting Vulnerability | 2022-07-20T16:00:00+00:00 | 2022-07-20T16:00:00+00:00 |
| cisco-sa-ise-saml-nuukmpf9 | Cisco Identity Services Engine Authentication Bypass Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-07-13T14:42:14+00:00 |
| cisco-sa-ucm-timing-jvbhecok | Cisco Unified Communications Products Timing Attack Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-ucm-file-read-qgjhec3a | Cisco Unified Communications Manager Arbitrary File Read Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-ucm-access-dmkvv2dy | Cisco Unified Communications Products Access Control Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-roomos-infodisc-yotz9ct7 | Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-onprem-privesc-tp6unzos | Cisco Smart Software Manager On-Prem Denial of Service Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-cucm-xss-rgh7mpka | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-cucm-xss-kskd5yfa | Cisco Unified Communications Products Cross-Site Scripting Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-cucm-imp-afr-ybflnyzd | Cisco Unified Communications Products Arbitrary File Read Vulnerability | 2022-07-06T16:00:00+00:00 | 2022-07-06T16:00:00+00:00 |
| cisco-sa-asdm-logging-jnloy422 | Cisco Adaptive Security Device Manager Information Disclosure Vulnerability | 2022-01-12T16:00:00+00:00 | 2022-06-29T21:50:47+00:00 |
| cisco-sa-cspc-multi-xss-tydfjhwb | Cisco Common Services Platform Collector Cross-Site Scripting Vulnerabilities | 2022-05-18T16:00:00+00:00 | 2022-06-28T14:43:56+00:00 |
| cisco-sa-asasfr-cmd-inject-pe4gfdg | Cisco FirePOWER Software for ASA FirePOWER Module Command Injection Vulnerability | 2022-06-22T16:00:00+00:00 | 2022-06-22T16:00:00+00:00 |
| cisco-sa-esasma-info-dsc-q9tluovm | Cisco Email Security Appliance and Cisco Secure Email and Web Manager Information Disclosure Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-06-21T20:29:34+00:00 |
| cisco-sa-ece-strd-xss-bqfxo9d2 | Cisco Enterprise Chat and Email Stored Cross-Site Scripting Vulnerability | 2022-05-18T16:00:00+00:00 | 2022-06-21T16:11:25+00:00 |
| cisco-sa-sb-rv-overflow-s2r82p9v | Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-06-15T16:00:00+00:00 |
| cisco-sa-ise-info-disclosure-os6fsd6n | Cisco Identity Services Engine Sensitive Information Disclosure Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-06-15T16:00:00+00:00 |
| cisco-sa-cp6901-dup-cert-82jdjge4 | Cisco IP Phone Duplicate Key Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-06-15T16:00:00+00:00 |
| cisco-sa-appd-contrl-athzn-bp-blypgsbu | Cisco AppDynamics Controller Authorization Bypass Vulnerability | 2022-06-15T16:00:00+00:00 | 2022-06-15T16:00:00+00:00 |
| cisco-sa-capic-chvul-ckfgybh8 | Cisco Application Policy Infrastructure Controller App Privilege Escalation Vulnerability | 2021-08-25T16:00:00+00:00 | 2022-06-07T17:29:33+00:00 |
| cisco-sa-asaftd-ipsec-mitm-cknlr4 | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IPsec IKEv2 VPN Information Disclosure Vulnerability | 2022-04-27T16:00:00+00:00 | 2022-06-01T17:03:06+00:00 |
| cisco-sa-asaftd-mgmt-privesc-bmfmuvye | Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Web Services Interface Privilege Escalation Vulnerability | 2022-04-27T16:00:00+00:00 | 2022-06-01T16:39:47+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2024-45012 | nouveau/firmware: use dma non-coherent allocator | 2024-09-01T07:00:00.000Z | 2026-02-21T01:08:25.000Z |
| msrc_cve-2024-46860 | wifi: mt76: mt7921: fix NULL pointer access in mt7921_ipv6_addr_change | 2024-09-01T07:00:00.000Z | 2026-02-21T01:07:59.000Z |
| msrc_cve-2024-46693 | soc: qcom: pmic_glink: Fix race during initialization | 2024-09-01T07:00:00.000Z | 2026-02-21T01:07:13.000Z |
| msrc_cve-2024-49963 | mailbox: bcm2835: Fix timeout during suspend mode | 2024-10-01T07:00:00.000Z | 2026-02-21T01:06:56.000Z |
| msrc_cve-2024-39291 | drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() | 2024-06-02T07:00:00.000Z | 2026-02-21T01:06:42.000Z |
| msrc_cve-2024-46672 | wifi: brcmfmac: cfg80211: Handle SSID based pmksa deletion | 2024-09-01T07:00:00.000Z | 2026-02-21T01:05:55.000Z |
| msrc_cve-2024-46805 | drm/amdgpu: fix the waring dereferencing hive | 2024-09-01T07:00:00.000Z | 2026-02-21T01:04:54.000Z |
| msrc_cve-2024-38667 | riscv: prevent pt_regs corruption for secondary idle threads | 2024-06-02T07:00:00.000Z | 2026-02-21T01:04:46.000Z |
| msrc_cve-2024-45030 | igb: cope with large MAX_SKB_FRAGS | 2024-09-01T07:00:00.000Z | 2026-02-21T01:04:34.000Z |
| msrc_cve-2024-45020 | bpf: Fix a kernel verifier crash in stacksafe() | 2024-09-01T07:00:00.000Z | 2026-02-21T01:03:16.000Z |
| msrc_cve-2024-46829 | rtmutex: Drop rt_mutex::wait_lock before scheduling | 2024-09-01T07:00:00.000Z | 2026-02-21T01:02:55.000Z |
| msrc_cve-2024-45022 | mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 | 2024-09-01T07:00:00.000Z | 2026-02-21T01:02:01.000Z |
| msrc_cve-2023-52920 | bpf: support non-r10 register spill/fill to/from stack in precision tracking | 2024-11-02T00:00:00.000Z | 2026-02-21T01:01:41.000Z |
| msrc_cve-2024-46852 | dma-buf: heaps: Fix off-by-one in CMA heap fault handler | 2024-09-01T07:00:00.000Z | 2026-02-21T01:01:10.000Z |
| msrc_cve-2024-45029 | i2c: tegra: Do not mark ACPI devices as irq safe | 2024-09-01T07:00:00.000Z | 2026-02-21T01:00:49.000Z |
| msrc_cve-2024-50131 | tracing: Consider the NULL character when validating the event length | 2024-11-02T00:00:00.000Z | 2026-02-21T00:59:58.000Z |
| msrc_cve-2024-45016 | netem: fix return value if duplicate enqueue fails | 2024-09-01T07:00:00.000Z | 2026-02-21T00:59:29.000Z |
| msrc_cve-2024-46806 | drm/amdgpu: Fix the warning division or modulo by zero | 2024-09-01T07:00:00.000Z | 2026-02-21T00:59:20.000Z |
| msrc_cve-2024-49955 | ACPI: battery: Fix possible crash when unregistering a battery hook | 2024-10-01T07:00:00.000Z | 2026-02-21T00:58:04.000Z |
| msrc_cve-2024-46822 | arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry | 2024-09-01T07:00:00.000Z | 2026-02-21T00:57:35.000Z |
| msrc_cve-2024-45018 | netfilter: flowtable: initialise extack before use | 2024-09-01T07:00:00.000Z | 2026-02-21T00:57:27.000Z |
| msrc_cve-2024-43882 | exec: Fix ToCToU between perm check and set-uid/gid usage | 2024-08-02T00:00:00.000Z | 2026-02-21T00:57:15.000Z |
| msrc_cve-2024-46855 | netfilter: nft_socket: fix sk refcount leaks | 2024-09-01T07:00:00.000Z | 2026-02-21T00:55:24.000Z |
| msrc_cve-2024-43817 | net: missing check virtio | 2024-08-02T00:00:00.000Z | 2026-02-21T00:55:24.000Z |
| msrc_cve-2024-45011 | char: xillybus: Check USB endpoints when probing device | 2024-09-01T07:00:00.000Z | 2026-02-21T00:55:22.000Z |
| msrc_cve-2024-49959 | jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error | 2024-10-01T07:00:00.000Z | 2026-02-21T00:55:09.000Z |
| msrc_cve-2024-42311 | hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode() | 2024-08-02T00:00:00.000Z | 2026-02-21T00:54:03.000Z |
| msrc_cve-2024-46844 | um: line: always fill *error_out in setup_one_line() | 2024-09-01T07:00:00.000Z | 2026-02-21T00:53:36.000Z |
| msrc_cve-2024-45028 | mmc: mmc_test: Fix NULL dereference on allocation failure | 2024-09-01T07:00:00.000Z | 2026-02-21T00:53:30.000Z |
| msrc_cve-2024-49968 | ext4: filesystems without casefold feature cannot be mounted with siphash | 2024-10-01T07:00:00.000Z | 2026-02-21T00:53:02.000Z |
| ID | Description | Updated |
|---|---|---|
| var-201503-0389 | The build_tablename function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP th… | 2025-12-22T21:36:54.383000Z |
| var-201506-0266 | Algorithmic complexity vulnerability in the multipart_buffer_headers function in main/rfc… | 2025-12-22T21:36:53.898000Z |
| var-200707-0675 | The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5… | 2025-12-22T21:36:52.138000Z |
| var-202103-1464 | An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello m… | 2025-12-22T21:36:21.482000Z |
| var-201110-0389 | Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK… | 2025-12-22T21:35:47.692000Z |
| var-201912-1849 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2025-12-22T21:35:44.496000Z |
| var-201912-0592 | An input validation issue was addressed with improved memory handling. This issue is fixe… | 2025-12-22T21:35:43.884000Z |
| var-201503-0206 | Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP … | 2025-12-22T21:35:43.806000Z |
| var-201103-0294 | Integer overflow in WebKit, as used on the Research In Motion (RIM) BlackBerry Torch 9800… | 2025-12-22T21:35:43.739000Z |
| var-201904-1475 | A memory consumption issue was addressed with improved memory handling. This issue affect… | 2025-12-22T21:35:39.915000Z |
| var-202109-1330 | A logic issue was addressed with improved restrictions. This issue is fixed in tvOS 14.6,… | 2025-12-22T21:35:39.458000Z |
| var-201111-0190 | Integer overflow in the ap_pregsub function in server/util.c in the Apache HTTP Server 2.… | 2025-12-22T21:35:37.848000Z |
| var-200609-0858 | Multiple buffer overflows in the Apple Type Services (ATS) server in Mac OS X 10.4 throug… | 2025-12-22T21:35:06.905000Z |
| var-201904-1343 | Multiple memory corruption issues were addressed with improved memory handling. This issu… | 2025-12-22T21:35:05.910000Z |
| var-200102-0030 | The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attack… | 2025-12-22T21:35:02.887000Z |
| var-201501-0340 | Memory leak in the dtls1_buffer_record function in d1_pkt.c in OpenSSL 1.0.0 before 1.0.0… | 2025-12-22T21:35:00.954000Z |
| var-201006-0051 | Cross-site request forgery (CSRF) vulnerability in the web interface in CUPS before 1.4.4… | 2025-12-22T21:35:00.408000Z |
| var-201805-0963 | Systems with microprocessors utilizing speculative execution and speculative execution of… | 2025-12-22T21:34:12.325000Z |
| var-201903-0420 | A logic issue was addressed with improved validation. This issue is fixed in iOS 12.1.3, … | 2025-12-22T21:34:12.009000Z |
| var-200804-0039 | Integer overflow in the PCRE regular expression compiler (JavaScriptCore/pcre/pcre_compil… | 2025-12-22T21:34:11.714000Z |
| var-202008-1238 | In BIND 9.0.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9.3-S1 -> 9.… | 2025-12-22T21:34:10.489000Z |
| var-202103-0287 | A flaw possibility of race condition and incorrect initialization of the process id was f… | 2025-12-22T21:34:03.213000Z |
| var-200505-0353 | Unknown vulnerability in Mac OS X 10.3.9 allows local users to gain privileges via (1) ch… | 2025-12-22T21:34:01.707000Z |
| var-201310-0593 | Unspecified vulnerability in Oracle Java SE 7u40 and earlier, Java SE 6u60 and earlier, J… | 2025-12-22T21:34:01.630000Z |
| var-200709-0497 | mm/mmap.c in the hugetlb kernel, when run on PowerPC systems, does not prevent stack expa… | 2025-12-22T21:34:01.554000Z |
| var-202108-2221 | curl supports the `-t` command line option, known as `CURLOPT_TELNETOPTIONS`in libcurl. T… | 2025-12-22T21:34:00.868000Z |
| var-201712-0280 | An issue was discovered in certain Apple products. iOS before 11.2 is affected. Safari be… | 2025-12-22T21:33:50.771000Z |
| var-201410-1418 | The SSL protocol 3.0, as used in OpenSSL through 1.0.1i and other products, uses nondeter… | 2025-12-22T21:33:49.944000Z |
| var-202207-0588 | The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does no… | 2025-12-22T21:33:49.783000Z |
| var-200704-0218 | The Login Window in Apple Mac OS X 10.4 through 10.4.9 does not display the screen saver … | 2025-12-22T21:33:49.359000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2021-000031 | Gurunavi Apps fail to restrict access permissions | 2021-04-14T17:22+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2020-000079 | desknet's NEO vulnerable to cross-site scripting | 2020-12-03T17:54+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2020-000070 | Studyplus App uses a hard-coded API key for an external service | 2020-11-05T18:43+09:00 | 2023-03-08T17:02+09:00 |
| jvndb-2023-000016 | The installers of ELECOM Camera Assistant and QuickFileDealer may insecurely load Dynamic Link Libraries | 2023-02-14T17:00+09:00 | 2023-02-14T17:00+09:00 |
| jvndb-2023-001110 | Improper restriction of XML external entity reference (XXE) vulnerability in OMRON CX-Motion Pro | 2023-01-25T14:28+09:00 | 2023-01-25T14:28+09:00 |
| jvndb-2023-000009 | EasyMail vulnerable to cross-site scripting | 2023-01-24T16:00+09:00 | 2023-01-24T16:00+09:00 |
| jvndb-2023-001108 | Contec CONPROSYS HMI System (CHS) vulnerable to multiple SQL injections | 2023-01-24T13:38+09:00 | 2023-01-24T13:38+09:00 |
| jvndb-2023-001008 | File and Directory Permissions Vulnerability in Hitachi Tuning Manager | 2023-01-18T13:51+09:00 | 2023-01-18T13:51+09:00 |
| jvndb-2023-000007 | WordPress plugin "Welcart e-Commerce" vulnerable to directory traversal | 2023-01-17T14:17+09:00 | 2023-01-17T14:17+09:00 |
| jvndb-2023-001005 | Active debug code vulnerability in OMRON CP1L-EL20DR-D | 2023-01-12T15:53+09:00 | 2023-01-12T15:53+09:00 |
| jvndb-2023-001003 | Access of uninitialized pointer vulnerability in OMRON CX-Motion-MCH | 2023-01-12T15:06+09:00 | 2023-01-12T15:06+09:00 |
| jvndb-2023-000006 | Multiple vulnerabilities in PIXELA PIX-RT100 | 2023-01-12T14:50+09:00 | 2023-01-12T14:50+09:00 |
| jvndb-2023-001002 | OpenAM Web Policy Agent (OpenAM Consortium Edition) vulnerable to path traversal | 2023-01-11T17:07+09:00 | 2023-01-11T17:07+09:00 |
| jvndb-2022-002779 | Multiple vulnerabilities in Contec CONPROSYS HMI System (CHS) | 2022-12-16T13:29+09:00 | 2023-01-11T16:55+09:00 |
| jvndb-2023-000005 | Multiple vulnerabilities in MAHO-PBX NetDevancer series | 2023-01-11T16:11+09:00 | 2023-01-11T16:11+09:00 |
| jvndb-2023-000003 | TP-Link SG105PE vulnerable to authentication bypass | 2023-01-11T15:04+09:00 | 2023-01-11T15:04+09:00 |
| jvndb-2023-000004 | pgAdmin 4 vulnerable to open redirect | 2023-01-11T14:23+09:00 | 2023-01-11T14:23+09:00 |
| jvndb-2023-000002 | Digital Arts m-FILTER vulnerable to improper authentication | 2023-01-06T14:57+09:00 | 2023-01-06T14:57+09:00 |
| jvndb-2023-000001 | Multiple code injection vulnerabilities in ruby-git | 2023-01-05T15:51+09:00 | 2023-01-05T15:51+09:00 |
| jvndb-2022-002838 | Multiple vulnerabilities in Fuji Electric V-Server | 2023-01-04T14:21+09:00 | 2023-01-04T14:21+09:00 |
| jvndb-2022-002837 | Multiple vulnerabilities in Fuji Electric V-SFT and TELLUS | 2023-01-04T14:16+09:00 | 2023-01-04T14:16+09:00 |
| jvndb-2022-000102 | Installers generated by Squirrel.Windows may insecurely load Dynamic Link Libraries | 2022-12-21T14:23+09:00 | 2022-12-21T14:23+09:00 |
| jvndb-2022-000101 | +Message App improper handling of Unicode control characters | 2022-12-21T14:13+09:00 | 2022-12-21T14:13+09:00 |
| jvndb-2022-002783 | Use-after-free vulnerability in Omron CX-Drive | 2022-12-20T15:32+09:00 | 2022-12-20T15:32+09:00 |
| jvndb-2022-002780 | Command injection vulnerability in SHARP Multifunctional Products (MFP) | 2022-12-20T12:12+09:00 | 2022-12-20T12:12+09:00 |
| jvndb-2022-000099 | Corel Roxio Creator LJB starts a program with an unquoted file path | 2022-12-19T13:47+09:00 | 2022-12-19T13:47+09:00 |
| jvndb-2022-000098 | Zenphoto vulnerable to cross-site scripting | 2022-12-19T13:39+09:00 | 2022-12-19T13:39+09:00 |
| jvndb-2022-002771 | Information Exposure Vulnerability in JP1/Automatic Operation | 2022-12-07T17:30+09:00 | 2022-12-07T17:30+09:00 |
| jvndb-2022-000091 | WordPress Plugin "WordPress Popular Posts" accepts untrusted external inputs to update certain internal variables | 2022-11-18T15:14+09:00 | 2022-11-18T15:14+09:00 |
| jvndb-2022-000089 | RICOH Aficio SP 4210N vulnerable to cross-site scripting | 2022-11-17T11:15+09:00 | 2022-11-17T11:15+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2025:4236-1 | Security update for curl | 2025-11-25T16:02:20Z | 2025-11-25T16:02:20Z |
| suse-su-2025:4233-1 | Security update for the Linux Kernel (Live Patch 41 for SUSE Linux Enterprise 15 SP4) | 2025-11-25T14:33:49Z | 2025-11-25T14:33:49Z |
| suse-su-2025:4232-1 | Security update for sssd | 2025-11-25T14:12:20Z | 2025-11-25T14:12:20Z |
| suse-su-2025:4231-1 | Security update for sssd | 2025-11-25T14:12:12Z | 2025-11-25T14:12:12Z |
| suse-su-2025:4230-1 | Security update for the Linux Kernel (Live Patch 37 for SUSE Linux Enterprise 15 SP4) | 2025-11-25T13:34:27Z | 2025-11-25T13:34:27Z |
| suse-su-2025:21140-1 | Security update for lasso | 2025-11-25T13:27:30Z | 2025-11-25T13:27:30Z |
| suse-su-2025:4229-1 | Security update for buildah | 2025-11-25T12:46:16Z | 2025-11-25T12:46:16Z |
| suse-su-2025:4227-1 | Security update for the Linux Kernel (Live Patch 36 for SUSE Linux Enterprise 15 SP4) | 2025-11-25T11:33:58Z | 2025-11-25T11:33:58Z |
| suse-su-2025:4224-1 | Security update for grub2 | 2025-11-25T09:53:55Z | 2025-11-25T09:53:55Z |
| suse-su-2025:4222-1 | Security update for bind | 2025-11-25T08:53:57Z | 2025-11-25T08:53:57Z |
| suse-su-2025:4221-1 | Security update for python39 | 2025-11-25T08:02:49Z | 2025-11-25T08:02:49Z |
| suse-su-2025:21139-1 | Security update for the Linux Kernel | 2025-11-25T07:34:57Z | 2025-11-25T07:34:57Z |
| suse-su-2025:21074-1 | Security update for the Linux Kernel | 2025-11-25T07:34:57Z | 2025-11-25T07:34:57Z |
| suse-su-2025:21179-1 | Security update for the Linux Kernel | 2025-11-25T07:34:55Z | 2025-11-25T07:34:55Z |
| suse-su-2025:4215-1 | Security update for the Linux Kernel (Live Patch 34 for SUSE Linux Enterprise 15 SP4) | 2025-11-24T17:43:06Z | 2025-11-24T17:43:06Z |
| suse-su-2025:4213-1 | Security update for the Linux Kernel (Live Patch 59 for SUSE Linux Enterprise 15 SP3) | 2025-11-24T17:42:25Z | 2025-11-24T17:42:25Z |
| suse-su-2025:4208-1 | Security update for the Linux Kernel RT (Live Patch 2 for SUSE Linux Enterprise 15 SP7) | 2025-11-24T17:42:02Z | 2025-11-24T17:42:02Z |
| suse-su-2025:4203-1 | Security update for the Linux Kernel (Live Patch 50 for SUSE Linux Enterprise 15 SP3) | 2025-11-24T17:39:50Z | 2025-11-24T17:39:50Z |
| suse-su-2025:4201-1 | Security update for the Linux Kernel RT (Live Patch 13 for SUSE Linux Enterprise 15 SP6) | 2025-11-24T14:04:15Z | 2025-11-24T14:04:15Z |
| suse-su-2025:4200-1 | Security update for the Linux Kernel RT (Live Patch 10 for SUSE Linux Enterprise 15 SP6) | 2025-11-24T14:04:08Z | 2025-11-24T14:04:08Z |
| suse-su-2025:4199-1 | Security update for the Linux Kernel (Live Patch 33 for SUSE Linux Enterprise 15 SP4) | 2025-11-24T12:33:54Z | 2025-11-24T12:33:54Z |
| suse-su-2025:4198-1 | Security update for cups-filters | 2025-11-24T11:59:54Z | 2025-11-24T11:59:54Z |
| suse-su-2025:4197-1 | Security update for grub2 | 2025-11-24T11:04:06Z | 2025-11-24T11:04:06Z |
| suse-su-2025:4196-1 | Security update for grub2 | 2025-11-24T10:54:24Z | 2025-11-24T10:54:24Z |
| suse-su-2025:4195-1 | Security update for MozillaThunderbird | 2025-11-24T10:53:51Z | 2025-11-24T10:53:51Z |
| suse-su-2025:4194-1 | Security update for the Linux Kernel (Live Patch 62 for SUSE Linux Enterprise 12 SP5) | 2025-11-24T10:04:23Z | 2025-11-24T10:04:23Z |
| suse-su-2025:4191-1 | Security update for amazon-ssm-agent | 2025-11-24T09:22:22Z | 2025-11-24T09:22:22Z |
| suse-su-2025:4190-1 | Security update for helm | 2025-11-24T09:19:46Z | 2025-11-24T09:19:46Z |
| suse-su-2025:4189-1 | Security update for the Linux Kernel | 2025-11-24T09:18:05Z | 2025-11-24T09:18:05Z |
| suse-su-2025:4188-1 | Security update for the Linux Kernel | 2025-11-24T09:17:05Z | 2025-11-24T09:17:05Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2025:15598-1 | python311-Django-5.2.7-1.1 on GA media | 2025-10-03T00:00:00Z | 2025-10-03T00:00:00Z |
| opensuse-su-2025:15597-1 | logback-1.2.13-1.1 on GA media | 2025-10-03T00:00:00Z | 2025-10-03T00:00:00Z |
| opensuse-su-2025:15596-1 | python311-Django4-4.2.25-1.1 on GA media | 2025-10-02T00:00:00Z | 2025-10-02T00:00:00Z |
| opensuse-su-2025:15595-1 | libvmtools-devel-13.0.5-1.1 on GA media | 2025-10-02T00:00:00Z | 2025-10-02T00:00:00Z |
| opensuse-su-2025:15594-1 | azure-storage-azcopy-10.30.1-1.1 on GA media | 2025-10-02T00:00:00Z | 2025-10-02T00:00:00Z |
| opensuse-su-2025:15593-1 | MozillaFirefox-143.0.3-1.1 on GA media | 2025-10-02T00:00:00Z | 2025-10-02T00:00:00Z |
| opensuse-su-2025:15592-1 | libsuricata8_0_1-8.0.1-1.1 on GA media | 2025-10-01T00:00:00Z | 2025-10-01T00:00:00Z |
| opensuse-su-2025:15591-1 | jupyter-jupyterlab-4.4.9-1.1 on GA media | 2025-10-01T00:00:00Z | 2025-10-01T00:00:00Z |
| opensuse-su-2025:15590-1 | curl-8.16.0-1.1 on GA media | 2025-10-01T00:00:00Z | 2025-10-01T00:00:00Z |
| opensuse-su-2025:15589-1 | docker-stable-24.0.9_ce-15.1 on GA media | 2025-09-30T00:00:00Z | 2025-09-30T00:00:00Z |
| opensuse-su-2025:15588-1 | afterburn-5.9.0.git21.a73f509-2.1 on GA media | 2025-09-30T00:00:00Z | 2025-09-30T00:00:00Z |
| opensuse-su-2025:15587-1 | ruby3.4-rubygem-rack-2.2-2.2.18-1.1 on GA media | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| opensuse-su-2025:15586-1 | kubecolor-0.5.2-1.1 on GA media | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| opensuse-su-2025:15585-1 | kernel-devel-6.16.9-1.1 on GA media | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| opensuse-su-2025:15584-1 | gimp-3.0.4-3.1 on GA media | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| opensuse-su-2025:15583-1 | cJSON-devel-1.7.19-1.1 on GA media | 2025-09-29T00:00:00Z | 2025-09-29T00:00:00Z |
| opensuse-su-2025:15582-1 | tree-sitter-ruby-0.23.1-2.1 on GA media | 2025-09-26T00:00:00Z | 2025-09-26T00:00:00Z |
| opensuse-su-2025:15581-1 | traefik2-2.11.29-2.1 on GA media | 2025-09-26T00:00:00Z | 2025-09-26T00:00:00Z |
| opensuse-su-2025:15580-1 | postgresql17-17.6-2.1 on GA media | 2025-09-26T00:00:00Z | 2025-09-26T00:00:00Z |
| opensuse-su-2025:15579-1 | openbao-2.4.1-1.1 on GA media | 2025-09-26T00:00:00Z | 2025-09-26T00:00:00Z |
| opensuse-su-2025:15578-1 | chromedriver-140.0.7339.207-1.1 on GA media | 2025-09-26T00:00:00Z | 2025-09-26T00:00:00Z |
| opensuse-su-2025:15577-1 | krita-5.2.13-1.1 on GA media | 2025-09-25T00:00:00Z | 2025-09-25T00:00:00Z |
| opensuse-su-2025:15576-1 | govulncheck-vulndb-0.0.20250924T192141-1.1 on GA media | 2025-09-25T00:00:00Z | 2025-09-25T00:00:00Z |
| opensuse-su-2025:15575-1 | avahi-0.8-40.1 on GA media | 2025-09-24T00:00:00Z | 2025-09-24T00:00:00Z |
| opensuse-su-2025:15574-1 | govulncheck-vulndb-0.0.20250922T204835-1.1 on GA media | 2025-09-23T00:00:00Z | 2025-09-23T00:00:00Z |
| opensuse-su-2025:15573-1 | expat-2.7.2-1.1 on GA media | 2025-09-23T00:00:00Z | 2025-09-23T00:00:00Z |
| opensuse-su-2025:15572-1 | bird3-3.1.4-1.1 on GA media | 2025-09-23T00:00:00Z | 2025-09-23T00:00:00Z |
| opensuse-su-2025:15571-1 | tor-0.4.8.18-1.1 on GA media | 2025-09-22T00:00:00Z | 2025-09-22T00:00:00Z |
| opensuse-su-2025:15570-1 | tcpreplay-4.5.1-2.1 on GA media | 2025-09-22T00:00:00Z | 2025-09-22T00:00:00Z |
| opensuse-su-2025:15569-1 | rke2-1.33-1.33.5+rke2r1-1.1 on GA media | 2025-09-20T00:00:00Z | 2025-09-20T00:00:00Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| bit-django-2024-41989 | 2024-08-08T07:17:45.895Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2024-39614 | 2025-03-10T08:15:02.669Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2024-39330 | 2025-03-10T08:15:12.172Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2024-39329 | 2025-03-10T08:15:20.473Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2024-38875 | 2025-03-10T08:15:29.668Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2024-24680 | 2024-03-06T10:51:08.081Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2023-43665 | 2024-03-06T10:51:25.579Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2023-41164 | 2024-03-06T10:51:34.571Z | 2025-11-06T13:25:46.476Z | |
| bit-django-2023-36053 | 2024-03-06T10:51:44.168Z | 2025-11-06T13:25:46.476Z | |
| bit-discourse-2025-61598 | Discourse is missing Cache-Control response header on error responses | 2025-11-06T12:59:31.285Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-45147 | Arbitrary keys can be added to a topic's custom fields by any user in Discourse | 2024-03-06T10:53:06.773Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-45131 | Unauthenticated access to new private chat messages in Discourse | 2024-03-06T10:53:19.376Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-44391 | Prevent unauthorized access to summary details in Discourse | 2024-03-06T10:53:30.809Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-44388 | Malicious requests can fill up the log files resulting in a deinal of service in Discourse | 2024-03-06T10:53:42.285Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-43814 | Exposure of poll options and votes to unauthorized users in Discourse | 2024-03-06T10:53:52.288Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-43659 | Cross-site Scripting via email preview when CSP disabled in Discourse | 2024-03-06T10:54:02.887Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2023-23615 | Malicious users in Discourse can create spam topics as any user due to improper access control | 2024-03-06T11:00:56.201Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-46159 | Any authenticated Discourse user can create an unlisted topic | 2024-03-06T11:02:38.003Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-46148 | Discourse allows self-XSS through malicious composer message | 2024-03-06T11:02:57.788Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-41944 | Discourse users can see notifications for topics they no longer have access to | 2024-03-06T11:03:09.082Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-31184 | Email activation route can be abused by spammers in Discourse | 2024-03-06T11:05:15.202Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-31096 | Invites restricted to an email or invite links restricted to an email domain may be bypassed by a under certain conditions in Discourse | 2024-03-06T11:05:41.566Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2022-21677 | Group advanced search option may leak group and group's members visibility | 2024-03-06T11:08:07.875Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2021-41271 | Cache poisoning via maliciously-formed request in discourse | 2024-03-06T11:09:07.503Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2021-41095 | XSS via blocked watched word in error message | 2024-03-06T11:09:23.967Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2021-32764 | YouTube Onebox susceptible to XSS | 2024-03-06T11:10:07.487Z | 2025-11-06T13:25:46.476Z |
| bit-discourse-2021-3138 | 2024-03-06T11:10:13.104Z | 2025-11-06T13:25:46.476Z | |
| bit-consul-2025-11375 | Consul's event endpoint is vulnerable to denial of service | 2025-11-06T12:49:11.554Z | 2025-11-06T13:25:46.476Z |
| bit-consul-2025-11374 | Consul's KV endpoint is vulnerable to denial of service | 2025-11-06T12:49:05.940Z | 2025-11-06T13:25:46.476Z |
| bit-consul-2023-3518 | JWT Auth in L7 Intentions Allow For Mismatched Service Identity and JWT Providers for Access | 2024-03-06T10:51:07.390Z | 2025-11-06T13:25:46.476Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2026-03527 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0352794) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-03526 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0352695) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-03525 | Adobe Experience Manager跨站脚本漏洞 | 2025-12-15 | 2026-01-15 |
| cnvd-2026-03524 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0352497) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-03523 | Adobe Experience Manager跨站脚本漏洞(CNVD-2026-0352398) | 2025-12-15 | 2026-01-15 |
| cnvd-2026-03506 | Google Android越界读取漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03505 | Google Android缺少权限检查漏洞(CNVD-2026-0350579) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03504 | Google Android逻辑错误漏洞(CNVD-2026-0350480) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03503 | Google Android逻辑错误漏洞(CNVD-2026-0350381) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03502 | Google Android混淆代理漏洞(CNVD-2026-0350282) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03501 | Google Android缺少权限检查漏洞(CNVD-2026-0350183) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03500 | Google Android拒绝服务漏洞(CNVD-2026-0350084) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03499 | Google Android输入验证不当漏洞(CNVD-2026-0349985) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03498 | Google Android拒绝服务漏洞(CNVD-2026-0349886) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03497 | Google Android点击劫持漏洞(CNVD-2026-0349787) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03496 | Google Android输入验证不当漏洞(CNVD-2026-0349688) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03495 | Google Android逻辑错误漏洞(CNVD-2026-0349589) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03494 | Google Android拒绝服务漏洞(CNVD-2026-0349490) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03493 | Google Android缺少权限检查漏洞(CNVD-2026-0349391) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03492 | Google Android逻辑错误漏洞(CNVD-2026-0349292) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03491 | Google Android权限绕过漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03490 | Google Android缺少权限检查漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03489 | Google Android输入验证不当漏洞(CNVD-2026-0348995) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03488 | Google Android逻辑错误漏洞(CNVD-2026-0348896) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03487 | Google Android点击劫持漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03486 | Google Android拒绝服务漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03485 | Google Android逻辑错误漏洞(CNVD-2026-0348599) | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03484 | Google Android混淆代理漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03483 | Google Android输入验证不当漏洞 | 2025-12-10 | 2026-01-15 |
| cnvd-2026-03482 | Google Android权限提升漏洞 | 2025-12-10 | 2026-01-15 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certfr-2025-avi-0630 | Vulnérabilité dans Palo Alto Networks GlobalProtect App | 2025-07-29T00:00:00.000000 | 2025-07-29T00:00:00.000000 |
| certfr-2025-avi-0629 | Multiples vulnérabilités dans Microsoft Edge | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0628 | Multiples vulnérabilités dans Synology BeeDrive | 2025-07-28T00:00:00.000000 | 2025-07-28T00:00:00.000000 |
| certfr-2025-avi-0627 | Multiples vulnérabilités dans les produits IBM | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0626 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0625 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0624 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0623 | Multiples vulnérabilités dans les produits ESET | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0622 | Multiples vulnérabilités dans les produits VMware | 2025-07-25T00:00:00.000000 | 2025-07-25T00:00:00.000000 |
| certfr-2025-avi-0621 | Multiples vulnérabilités dans les produits Tenable | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0620 | Vulnérabilité dans Apache HTTP Server | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0619 | Multiples vulnérabilités dans GitLab | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0617 | Vulnérabilité dans Sonicwall Secure Mobile Access | 2025-07-24T00:00:00.000000 | 2025-07-24T00:00:00.000000 |
| certfr-2025-avi-0616 | Multiples vulnérabilités dans Sonicwall Secure Mobile Access | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0615 | Multiples vulnérabilités dans les produits Mozilla | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0613 | Multiples vulnérabilités dans Google Chrome | 2025-07-23T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0609 | Multiples vulnérabilités dans Synacor Zimbra Collaboration | 2025-07-21T00:00:00.000000 | 2025-07-23T00:00:00.000000 |
| certfr-2025-avi-0612 | Multiples vulnérabilités dans Sophos Firewall | 2025-07-22T00:00:00.000000 | 2025-07-22T00:00:00.000000 |
| certfr-2025-avi-0611 | Multiples vulnérabilités dans les produits Microsoft | 2025-07-21T00:00:00.000000 | 2025-07-22T00:00:00.000000 |
| certfr-2025-avi-0598 | Multiples vulnérabilités dans Sophos Intercept X | 2025-07-18T00:00:00.000000 | 2025-07-22T00:00:00.000000 |
| certfr-2025-avi-0610 | Multiples vulnérabilités dans Microsoft Azure | 2025-07-21T00:00:00.000000 | 2025-07-21T00:00:00.000000 |
| certfr-2025-avi-0608 | Multiples vulnérabilités dans les produits IBM | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0607 | Multiples vulnérabilités dans le noyau Linux de SUSE | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0606 | Multiples vulnérabilités dans le noyau Linux de Red Hat | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0605 | Multiples vulnérabilités dans le noyau Linux d'Ubuntu | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0604 | Multiples vulnérabilités dans Oracle Weblogic | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0603 | Multiples vulnérabilités dans Oracle Virtualization | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0602 | Multiples vulnérabilités dans Oracle PeopleSoft | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0601 | Multiples vulnérabilités dans Oracle MySQL | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |
| certfr-2025-avi-0600 | Multiples vulnérabilités dans Oracle Java SE | 2025-07-18T00:00:00.000000 | 2025-07-18T00:00:00.000000 |