Recent vulnerabilities
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0712 |
N/A
|
A vulnerability in Caldera Open Administration Sy… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.560Z |
| CVE-1999-0736 |
N/A
|
The showcode.asp sample file in IIS and Site Serv… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.805Z |
| CVE-1999-0737 |
N/A
|
The viewcode.asp sample file in IIS and Site Serv… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.942Z |
| CVE-1999-0738 |
N/A
|
The code.asp sample file in IIS and Site Server a… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.945Z |
| CVE-1999-0739 |
N/A
|
The codebrws.asp sample file in IIS and Site Serv… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.968Z |
| CVE-1999-0741 |
N/A
|
QMS CrownNet Unix Utilities for 2060 allows root … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.812Z |
| CVE-1999-0748 |
N/A
|
Buffer overflows in Red Hat net-tools package. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.981Z |
| CVE-1999-0750 |
N/A
|
Hotmail allows Javascript to be executed via the … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.595Z |
| CVE-1999-0767 |
N/A
|
Buffer overflow in Solaris libc, ufsrestore, and … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.850Z |
| CVE-1999-0776 |
N/A
|
Alibaba HTTP server allows remote attackers to re… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.983Z |
| CVE-1999-0792 |
N/A
|
ROUTERmate has a default SNMP community name whic… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.087Z |
| CVE-1999-0795 |
N/A
|
The NIS+ rpc.nisd server allows remote attackers … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.983Z |
| CVE-1999-0798 |
N/A
|
Buffer overflow in bootpd on OpenBSD, FreeBSD, an… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.129Z |
| CVE-1999-0816 |
N/A
|
The Motorola CableRouter allows any remote user t… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.130Z |
| CVE-1999-0818 |
N/A
|
Buffer overflow in Solaris kcms_configure via a l… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.206Z |
| CVE-1999-0821 |
N/A
|
FreeBSD seyon allows local users to gain privileg… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.326Z |
| CVE-1999-0822 |
N/A
|
Buffer overflow in Qpopper (qpop) 3.0 allows remo… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.127Z |
| CVE-1999-0825 |
N/A
|
The default permissions for UnixWare /var/mail al… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.105Z |
| CVE-1999-0827 |
N/A
|
By default, Internet Explorer 5.0 and other versi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.083Z |
| CVE-1999-0828 |
N/A
|
UnixWare pkg commands such as pkginfo, pkgcat, an… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.080Z |
| CVE-1999-0829 |
N/A
|
HP Secure Web Console uses weak encryption. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.109Z |
| CVE-1999-0830 |
N/A
|
Buffer overflow in SCO UnixWare Xsco command via … |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.239Z |
| CVE-1999-0840 |
N/A
|
Buffer overflow in CDE dtmail and dtmailpr progra… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.121Z |
| CVE-1999-0841 |
N/A
|
Buffer overflow in CDE mailtool allows local user… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.125Z |
| CVE-1999-0843 |
N/A
|
Denial of service in Cisco routers running NAT vi… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.146Z |
| CVE-1999-0844 |
N/A
|
Denial of service in MDaemon WorldClient and WebC… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.124Z |
| CVE-1999-0845 |
N/A
|
Buffer overflow in SCO su program allows local us… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.063Z |
| CVE-1999-0846 |
N/A
|
Denial of service in MDaemon 2.7 via a large numb… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.021Z |
| CVE-1999-0850 |
N/A
|
The default permissions for Endymion MailMan allo… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.086Z |
| CVE-1999-0852 |
N/A
|
IBM WebSphere sets permissions that allow a local… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:38.295Z |
| ID | CVSS | Description | Vendor | Product | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-1999-0622 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A component service related to DNS service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0623 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The X Windows service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0624 |
N/A
|
The rstat/rstatd service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.709Z |
| CVE-1999-0625 |
N/A
|
The rpc.rquotad service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.710Z |
| CVE-1999-0629 |
N/A
|
The ident/identd service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.674Z |
| CVE-1999-0630 |
N/A
|
The NT Alerter and Messenger services are running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.690Z |
| CVE-1999-0631 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The NFS service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0632 |
N/A
|
The RPC portmapper service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.686Z |
| CVE-1999-0633 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The HTTP/WWW service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0634 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The SSH service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0635 |
N/A
|
The echo service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.728Z |
| CVE-1999-0636 |
N/A
|
The discard service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.728Z |
| CVE-1999-0637 |
N/A
|
The systat service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.734Z |
| CVE-1999-0638 |
N/A
|
The daytime service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:41:45.690Z |
| CVE-1999-0639 |
N/A
|
The chargen service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:36.981Z |
| CVE-1999-0640 |
N/A
|
The Gopher service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.588Z |
| CVE-1999-0641 |
N/A
|
The UUCP service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.607Z |
| CVE-1999-0642 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A POP service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0643 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The IMAP service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0644 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The NNTP news service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0645 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The IRC service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0646 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The LDAP service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0647 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The bootparam (bootparamd) service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-05-08T09:00:00 |
| CVE-1999-0648 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The X25 service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2003-03-21T10:00:00 |
| CVE-1999-0649 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "The FSP service is running. | N/A | N/A | 2000-02-04T05:00:00 | 2005-11-02T10:00:00 |
| CVE-1999-0650 |
N/A
|
The netstat service is running, which provides se… |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.577Z |
| CVE-1999-0651 |
N/A
|
The rsh/rlogin service is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.528Z |
| CVE-1999-0652 |
N/A
|
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: None. Reason: this candidate is solely about a configuration that does not directly introduce security vulnerabilities, so it is more appropriate to cover under the Common Configuration Enumeration (CCE). Notes: the former description is: "A database service is running, e.g. a SQL server, Oracle, or mySQL. | N/A | N/A | 2000-02-04T05:00:00 | 2005-11-02T10:00:00 |
| CVE-1999-0653 |
N/A
|
A component service related to NIS+ is running. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.499Z |
| CVE-1999-0654 |
N/A
|
The OS/2 or POSIX subsystem in NT is enabled. |
n/a |
n/a |
2000-02-04T05:00:00 | 2024-08-01T16:48:37.952Z |
| ID | Severity | Description | Published | Updated |
|---|---|---|---|---|
| ghsa-p8jx-x2vw-wm33 |
8.8 (3.1)
|
Code execution in org.apache.storm:storm-core | 2018-10-17T19:48:06Z | 2024-04-19T19:46:39Z |
| ghsa-q35p-chc6-7x57 |
6.5 (3.1)
|
Moderate severity vulnerability that affects org.apache.storm:storm-core | 2018-10-17T19:48:18Z | 2021-09-16T19:20:04Z |
| ghsa-4r64-wf76-c53p |
7.5 (3.1)
|
In blynk-server a Directory Traversal exists | 2018-10-17T19:52:52Z | 2022-04-27T14:26:22Z |
| ghsa-c8cc-p3j7-4c7f |
5.9 (3.1)
|
Moderate severity vulnerability that affects org.apache.mesos:mesos | 2018-10-17T19:54:14Z | 2021-09-08T21:43:33Z |
| ghsa-rhq2-2574-78mc |
7.5 (3.1)
|
Unzip function in ZipUtil.java in Hutool allows remote attackers to overwrite arbitrary files via d… | 2018-10-17T19:54:53Z | 2022-04-27T14:42:53Z |
| ghsa-7px3-6f6g-hxcj |
5.5 (3.1)
|
XML external entity expansion in org.apache.solr:solr-core | 2018-10-17T19:55:34Z | 2024-03-04T23:38:56Z |
| ghsa-3pph-2595-cgfh |
7.5 (3.1)
|
There is a XML external entity expansion (XXE) vulnerability in Apache Solr | 2018-10-17T19:55:46Z | 2024-03-04T20:32:45Z |
| ghsa-rc9v-h28f-jcmf |
5.5 (3.1)
|
There is a XML external entity expansion (XXE) vulnerability in Apache Solr config files | 2018-10-17T19:56:04Z | 2024-03-04T22:58:14Z |
| ghsa-mh7g-99w9-xpjm |
9.8 (3.1)
|
Remote code execution occurs in Apache Solr | 2018-10-17T19:56:17Z | 2024-04-12T21:09:29Z |
| ghsa-v596-fwhq-8x48 |
5.3 (3.1)
|
Improper Input Validation in org.springframework.security:spring-security-core, org.springframework… | 2018-10-17T20:01:54Z | 2024-03-15T15:51:03Z |
| ghsa-rcpf-vj53-7h2m |
6.5 (3.1)
|
Denial of Service in org.springframework:spring-core | 2018-10-17T20:02:20Z | 2024-03-06T20:59:14Z |
| ghsa-cxrj-66c5-9fmh |
8.8 (3.1)
|
Spring Framework when used in combination with any versions of Spring Security contains an authoriz… | 2018-10-17T20:05:49Z | 2024-03-14T21:08:21Z |
| ghsa-p5hg-3xm3-gcjg |
9.8 (3.1)
|
Spring Framework allows applications to expose STOMP over WebSocket endpoints | 2018-10-17T20:05:59Z | 2025-01-31T18:51:12Z |
| ghsa-g8hw-794c-4j9g |
5.9 (3.1)
|
Path Traversal in org.springframework:spring-core | 2018-10-17T20:07:03Z | 2024-03-07T21:32:20Z |
| ghsa-4487-x383-qpph |
7.5 (3.1)
|
Possible privilege escalation in org.springframework:spring-core | 2018-10-17T20:27:47Z | 2024-03-08T20:42:23Z |
| ghsa-3rmv-2pg5-xvqj |
9.8 (3.1)
|
Spring Framework has Improperly Implemented Security Check for Standard | 2018-10-17T20:28:00Z | 2025-01-31T19:35:35Z |
| ghsa-45vg-2v73-vm62 |
|
Moderate severity vulnerability that affects org.springframework:spring-core | 2018-10-17T20:28:20Z | 2024-03-05T18:20:18Z |
| ghsa-6v7w-535j-rq5m |
5.5 (3.1)
|
Pivotal Spring Framework DoS Attack with XML Input | 2018-10-17T20:29:12Z | 2024-03-05T18:17:31Z |
| ghsa-pgf9-h69p-pcgf |
8.6 (3.1)
|
Files or Directories Accessible to External Parties in org.springframework:spring-core | 2018-10-17T20:29:33Z | 2024-03-05T18:07:02Z |
| ghsa-8crv-49fr-2h6j |
7.5 (3.1)
|
Spring Security and Spring Framework may not recognize certain paths that should be protected | 2018-10-17T20:30:12Z | 2024-03-05T17:55:31Z |
| ghsa-387v-84cv-9qmc |
7.5 (3.1)
|
Improper Limitation of a Pathname ('Path Traversal') in org.apache.solr:solr-core | 2018-10-18T16:40:43Z | 2022-09-17T00:06:46Z |
| ghsa-w6gv-3r3v-gwgj |
5.9 (3.1)
|
keycloak-core vulnerable to timing attacks against JWS token verification | 2018-10-18T16:47:41Z | 2023-09-07T20:31:12Z |
| ghsa-778x-2mqv-w6xw |
|
Moderate severity vulnerability that affects org.keycloak:keycloak-core | 2018-10-18T16:48:01Z | 2020-06-16T21:21:49Z |
| ghsa-qgm9-232x-hwpx |
|
Moderate severity vulnerability that affects org.keycloak:keycloak-core | 2018-10-18T16:48:15Z | 2021-01-29T17:10:10Z |
| ghsa-95m6-mjh3-58gm |
8.1 (3.1)
|
Improper Authentication in org.keycloak:keycloak-core | 2018-10-18T16:48:41Z | 2022-09-17T00:55:51Z |
| ghsa-jc6q-27mw-p55w |
7.5 (3.1)
|
Keycloak vulnerable to infinite loop based Denial of Service | 2018-10-18T16:49:29Z | 2022-09-13T23:31:40Z |
| ghsa-c77r-6f64-478q |
6.5 (3.1)
|
keycloak-core discloses system properties | 2018-10-18T16:49:40Z | 2023-09-07T20:32:14Z |
| ghsa-h7j7-pw3v-3v3x |
4.9 (3.1)
|
Moderate severity vulnerability that affects org.keycloak:keycloak-core | 2018-10-18T16:49:54Z | 2021-09-14T15:43:06Z |
| ghsa-959q-32g8-vvp7 |
|
Moderate severity vulnerability that affects org.keycloak:keycloak-core | 2018-10-18T16:50:05Z | 2020-06-16T21:27:40Z |
| ghsa-r32r-3977-cgc3 |
7.5 (3.1)
|
Keycloak vulnerable to uncontrolled resource consumption | 2018-10-18T16:50:20Z | 2022-09-13T23:34:44Z |
| ID | Severity | Description | Package | Published | Updated |
|---|---|---|---|---|---|
| pysec-2019-246 |
6.5 (3.1)
|
In Exiv2 0.27.99.0, there is an out-of-bounds read in Exiv2::MrwImage::readMetadata() in … | exiv2 | 2019-07-28T19:15:00Z | 2024-11-21T14:22:49.597801Z |
| pysec-2019-26 |
|
invenio-previewer before 1.0.0a12 allows XSS. | invenio-previewer | 2019-07-29T14:15:00Z | 2019-07-31T19:44:00Z |
| pysec-2019-24 |
|
invenio-app before 1.1.1 allows host header injection. | invenio-app | 2019-07-29T15:15:00Z | 2019-08-01T16:12:00Z |
| pysec-2019-25 |
|
invenio-communities before 1.0.0a20 allows XSS. | invenio-communities | 2019-07-29T15:15:00Z | 2019-08-01T16:59:00Z |
| pysec-2019-27 |
|
invenio-records before 1.2.2 allows XSS. | invenio-records | 2019-07-29T15:15:00Z | 2019-08-01T16:29:00Z |
| pysec-2019-152 |
|
A vulnerability was found in openstack-ironic-inspector all versions excluding 5.0.2, 6.0… | ironic-inspector | 2019-07-30T17:15:00Z | 2021-07-05T00:01:21.998814Z |
| pysec-2019-192 |
|
A flaw was discovered in the python-novajoin plugin, all versions up to, excluding 1.1.1,… | novajoin | 2019-07-30T17:15:00Z | 2021-08-27T03:22:09.442632Z |
| pysec-2019-2 |
|
A flaw was discovered in the way Ansible templating was implemented in versions before 2.… | ansible | 2019-07-30T23:15:00Z | 2021-01-28T16:39:00Z |
| pysec-2019-11 |
|
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… | django | 2019-08-02T15:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-12 |
|
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… | django | 2019-08-02T15:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-14 |
|
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… | django | 2019-08-02T15:15:00Z | 2020-08-24T17:37:00Z |
| pysec-2019-114 |
|
Prior to Spark 2.3.3, in certain situations Spark would write user data to local disk une… | pyspark | 2019-08-07T17:15:00Z | 2020-06-23T00:15:00Z |
| pysec-2019-13 |
|
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x b… | django | 2019-08-09T13:15:00Z | 2019-08-28T13:15:00Z |
| pysec-2019-140 |
|
Pallets Werkzeug before 0.15.3, when used with Docker, has insufficient debugger PIN rand… | werkzeug | 2019-08-09T15:15:00Z | 2019-09-11T00:15:00Z |
| pysec-2019-219 |
|
Recommender before 2018-07-18 allows XSS. | recommender-xblock | 2019-08-09T16:15:00Z | 2019-08-15T16:48:00Z |
| pysec-2019-191 |
|
An issue was discovered in OpenStack Nova before 17.0.12, 18.x before 18.2.2, and 19.x be… | nova | 2019-08-09T19:15:00Z | 2021-08-27T03:22:09.327110Z |
| pysec-2019-104 |
|
** DISPUTED ** core.py in Mitogen before 0.2.8 has a typo that drops the unidirectional-r… | mitogen | 2019-08-18T20:15:00Z | 2019-08-30T11:38:00Z |
| pysec-2019-106 |
|
NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers t… | nltk | 2019-08-22T16:15:00Z | 2020-03-27T10:15:00Z |
| pysec-2019-178 |
|
When the Elastic APM agent for Python versions before 5.1.0 is run as a CGI script, there… | elastic-apm | 2019-08-22T17:15:00Z | 2021-08-27T03:22:03.550445Z |
| pysec-2019-19 |
|
django-js-reverse (aka Django JS Reverse) before 0.9.1 has XSS via js_reverse_inline. | django-js-reverse | 2019-08-23T13:15:00Z | 2019-08-26T17:39:00Z |
| pysec-2019-23 |
|
All versions of the HTTPie package prior to version 1.0.3 are vulnerable to Open Redirect… | httpie | 2019-08-23T17:15:00Z | 2019-09-02T18:15:00Z |
| pysec-2019-144 |
|
An issue was discovered in the arrayfire crate before 3.6.0 for Rust. Addition of the rep… | arrayfire | 2019-08-26T18:15:00Z | 2021-06-10T06:51:33.535067Z |
| pysec-2019-174 |
|
Multiple CSRF issues exist in MicroPyramid Django CRM 0.2.1 via /change-password-by-admin… | django-crm | 2019-08-27T15:15:00Z | 2021-08-27T03:21:57.382280Z |
| pysec-2019-126 |
|
** DISPUTED ** In Supervisor through 4.0.2, an unauthenticated user can read log files or… | supervisor | 2019-09-10T17:15:00Z | 2019-09-17T22:15:00Z |
| pysec-2019-236 |
|
An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add doe… | lmdb | 2019-09-11T15:15:00Z | 2021-12-14T08:17:08.199974Z |
| pysec-2019-237 |
|
An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch d… | lmdb | 2019-09-11T15:15:00Z | 2021-12-14T08:17:08.271573Z |
| pysec-2019-238 |
|
An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the … | lmdb | 2019-09-11T15:15:00Z | 2021-12-14T08:17:08.339672Z |
| pysec-2019-239 |
|
An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set t… | lmdb | 2019-09-11T15:15:00Z | 2021-12-14T08:17:08.407956Z |
| pysec-2019-240 |
|
An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function … | lmdb | 2019-09-11T15:15:00Z | 2021-12-14T08:17:08.476513Z |
| pysec-2019-221 |
|
Home Assistant before 0.67.0 was vulnerable to an information disclosure that allowed an … | homeassistant | 2019-09-23T16:15:00Z | 2021-11-24T22:47:02.221265Z |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| mal-2022-2280 | Malicious code in custdev-sapui5-infra-util (npm) | 2022-06-20T18:20:46Z | 2022-06-20T18:20:47Z |
| mal-2022-3485 | Malicious code in grunt-with-node-sass (npm) | 2022-06-20T18:20:46Z | 2022-06-20T18:20:47Z |
| mal-2022-4559 | Malicious code in merakigo (npm) | 2022-06-20T18:20:46Z | 2022-06-20T18:20:47Z |
| mal-2022-4936 | Malicious code in npm-maven-adapter (npm) | 2022-06-20T18:20:47Z | 2022-06-20T18:20:47Z |
| mal-2022-5600 | Malicious code in rbflugplan (npm) | 2022-06-20T18:20:47Z | 2022-06-20T18:20:48Z |
| mal-2022-5719 | Malicious code in red-bull-global-onboarding (npm) | 2022-06-20T18:20:47Z | 2022-06-20T18:20:48Z |
| mal-2022-6154 | Malicious code in skypecast-attendee (npm) | 2022-06-20T18:20:47Z | 2022-06-20T18:20:48Z |
| mal-2022-1846 | Malicious code in cbs-toolkit (npm) | 2022-06-20T18:20:48Z | 2022-06-20T18:20:49Z |
| mal-2022-189 | Malicious code in @cutoffurmind/ui-kit (npm) | 2022-06-20T18:20:48Z | 2022-06-20T18:20:49Z |
| mal-2022-2163 | Malicious code in console-shim (npm) | 2022-06-20T18:20:48Z | 2022-06-20T18:20:48Z |
| mal-2022-6233 | Malicious code in speed-tracer (npm) | 2022-06-20T18:20:48Z | 2022-06-20T18:20:48Z |
| mal-2022-1951 | Malicious code in cmpld (npm) | 2022-06-20T18:20:49Z | 2022-06-20T18:20:49Z |
| mal-2022-2269 | Malicious code in ct-notify (npm) | 2022-06-20T18:20:49Z | 2022-06-20T18:20:49Z |
| mal-2022-4270 | Malicious code in lead_front_components (npm) | 2022-06-20T18:20:49Z | 2022-06-20T18:20:57Z |
| mal-2022-4709 | Malicious code in mrg-icons (npm) | 2022-06-20T18:20:49Z | 2022-06-20T18:20:50Z |
| mal-2022-3699 | Malicious code in http-proxy-middelware (npm) | 2022-06-20T18:20:50Z | 2022-06-20T18:20:51Z |
| mal-2022-7226 | Malicious code in worki-js-library (npm) | 2022-06-20T18:20:50Z | 2022-06-20T18:20:50Z |
| mal-2022-7359 | Malicious code in youla-js (npm) | 2022-06-20T18:20:50Z | 2022-06-20T18:20:51Z |
| mal-2022-249 | Malicious code in @epc-tools/typescript (npm) | 2022-06-20T20:08:23Z | 2022-06-20T20:08:24Z |
| mal-2022-235 | Malicious code in @epc-apps/edge-lambdas (npm) | 2022-06-20T20:08:25Z | 2022-06-20T20:08:25Z |
| mal-2022-2673 | Malicious code in edx_cli (npm) | 2022-06-20T20:08:32Z | 2022-06-20T20:08:32Z |
| mal-2022-6612 | Malicious code in topicmodeling (npm) | 2022-06-20T20:08:32Z | 2022-06-20T20:08:33Z |
| mal-2022-1663 | Malicious code in bpk-component-graphic-promo (npm) | 2022-06-20T20:08:33Z | 2022-06-20T20:08:33Z |
| mal-2022-1855 | Malicious code in cdk-cli-wrapper (npm) | 2022-06-20T20:08:33Z | 2022-06-20T20:08:34Z |
| mal-2022-3563 | Malicious code in harp-atlas-tools (npm) | 2022-06-20T20:08:33Z | 2022-06-20T20:08:33Z |
| mal-2022-3564 | Malicious code in harp-theme-tools (npm) | 2022-06-20T20:08:33Z | 2022-06-20T20:08:34Z |
| mal-2022-1704 | Malicious code in bsc-library (npm) | 2022-06-20T20:08:34Z | 2022-06-20T20:08:35Z |
| mal-2022-5201 | Malicious code in pancake-cake-vault (npm) | 2022-06-20T20:08:34Z | 2022-06-20T20:08:35Z |
| mal-2022-5474 | Malicious code in profile-nft-gamification (npm) | 2022-06-20T20:08:34Z | 2022-06-20T20:08:35Z |
| mal-2022-6332 | Malicious code in stripe-identity-react-native (npm) | 2022-06-20T20:08:34Z | 2022-06-20T20:08:34Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| wid-sec-w-2023-0694 | tigervnc: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-10-06T22:00:00.000+00:00 | 2024-07-04T22:00:00.000+00:00 |
| wid-sec-w-2022-0044 | Apache HttpComponents: Schwachstelle ermöglicht Täuschung des Nutzers | 2020-10-07T22:00:00.000+00:00 | 2025-07-07T22:00:00.000+00:00 |
| wid-sec-w-2023-2467 | Apache Tomcat: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-10-11T22:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1478 | PowerDNS: Schwachstelle ermöglicht Denial of Service | 2020-10-12T22:00:00.000+00:00 | 2024-06-30T22:00:00.000+00:00 |
| wid-sec-w-2022-1762 | Linux Kernel: Mehrere Schwachstellen | 2020-10-13T22:00:00.000+00:00 | 2024-06-24T22:00:00.000+00:00 |
| wid-sec-w-2025-0019 | Red Hat JBoss Enterprise Application Platform: Mehrere Schwachstellen | 2020-10-13T22:00:00.000+00:00 | 2025-01-07T23:00:00.000+00:00 |
| wid-sec-w-2024-3745 | Linux Kernel - BlueZ: Mehrere Schwachstellen | 2020-10-14T22:00:00.000+00:00 | 2025-01-27T23:00:00.000+00:00 |
| wid-sec-w-2025-1396 | Red Hat JBoss Enterprise Application Platform: Schwachstelle ermöglicht Denial of Service | 2020-10-14T22:00:00.000+00:00 | 2025-06-24T22:00:00.000+00:00 |
| wid-sec-w-2022-2090 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-10-15T22:00:00.000+00:00 | 2024-06-09T22:00:00.000+00:00 |
| wid-sec-w-2024-0091 | FreeType: Schwachstelle ermöglicht Codeausführung | 2020-10-19T22:00:00.000+00:00 | 2024-01-15T23:00:00.000+00:00 |
| wid-sec-w-2022-2242 | Oracle Java SE: Mehrere Schwachstellen | 2020-10-20T22:00:00.000+00:00 | 2025-04-29T22:00:00.000+00:00 |
| wid-sec-w-2023-1048 | Oracle Construction and Engineering: Mehrere Schwachstellen | 2020-10-20T22:00:00.000+00:00 | 2024-02-04T23:00:00.000+00:00 |
| wid-sec-w-2023-0340 | Verschiedene Cisco Produkte: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-10-21T22:00:00.000+00:00 | 2023-02-12T23:00:00.000+00:00 |
| wid-sec-w-2023-0624 | ImageMagick: Schwachstelle ermöglicht Denial of Service | 2020-10-22T22:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2024-0090 | Red Hat Software Collections: Schwachstelle ermöglicht XXE | 2020-10-22T22:00:00.000+00:00 | 2024-01-15T23:00:00.000+00:00 |
| wid-sec-w-2023-1547 | Eclipse Jetty: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-10-25T23:00:00.000+00:00 | 2024-06-03T22:00:00.000+00:00 |
| wid-sec-w-2023-0174 | Samba: Mehrere Schwachstellen | 2020-10-28T23:00:00.000+00:00 | 2024-04-22T22:00:00.000+00:00 |
| wid-sec-w-2022-1270 | QEMU: Schwachstellen ermöglichen Denial of Service | 2020-11-02T23:00:00.000+00:00 | 2024-09-02T22:00:00.000+00:00 |
| wid-sec-w-2022-0193 | Red Hat Enterprise Linux: Mehrere Schwachstellen | 2020-11-03T23:00:00.000+00:00 | 2023-09-27T22:00:00.000+00:00 |
| wid-sec-w-2024-1801 | SaltStack Salt: Mehrere Schwachstellen | 2020-11-03T23:00:00.000+00:00 | 2025-01-06T23:00:00.000+00:00 |
| wid-sec-w-2024-3161 | OpenLDAP: Schwachstelle ermöglicht Denial of Service | 2020-11-03T23:00:00.000+00:00 | 2024-10-14T22:00:00.000+00:00 |
| wid-sec-w-2023-0557 | python-cryptography: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-11-04T23:00:00.000+00:00 | 2025-07-10T22:00:00.000+00:00 |
| wid-sec-w-2022-1481 | MIT Kerberos: Schwachstelle ermöglicht Denial of Service | 2020-11-05T23:00:00.000+00:00 | 2023-01-11T23:00:00.000+00:00 |
| wid-sec-w-2022-0999 | Intel Prozessoren: Mehrere Schwachstellen ermöglichen Offenlegung von Informationen | 2020-11-10T23:00:00.000+00:00 | 2025-10-12T22:00:00.000+00:00 |
| wid-sec-w-2023-1966 | X.Org X11: Schwachstelle ermöglicht Privilegieneskalation | 2020-11-10T23:00:00.000+00:00 | 2023-08-03T22:00:00.000+00:00 |
| wid-sec-w-2024-0479 | Intel Ethernet Controller: Mehrere Schwachstellen | 2020-11-10T23:00:00.000+00:00 | 2024-02-26T23:00:00.000+00:00 |
| wid-sec-w-2022-1383 | PostgreSQL: Mehrere Schwachstellen | 2020-11-12T23:00:00.000+00:00 | 2025-09-28T22:00:00.000+00:00 |
| wid-sec-w-2022-2392 | Linux Kernel: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen | 2020-11-16T23:00:00.000+00:00 | 2022-12-22T23:00:00.000+00:00 |
| wid-sec-w-2022-0493 | Linux Kernel: Schwachstelle ermöglicht Offenlegung von Informationen | 2020-11-17T23:00:00.000+00:00 | 2022-12-20T23:00:00.000+00:00 |
| wid-sec-w-2024-1938 | Drupal: Schwachstelle ermöglicht Ausführen von beliebigem Programmcode mit den Rechten des Dienstes | 2020-11-18T23:00:00.000+00:00 | 2024-09-03T22:00:00.000+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| rhsa-2005:838 | Red Hat Security Advisory: php security update | 2005-11-10T19:19:00+00:00 | 2025-11-21T17:29:43+00:00 |
| rhsa-2005:825 | Red Hat Security Advisory: lm_sensors security update | 2005-11-10T19:22:00+00:00 | 2025-11-21T17:29:42+00:00 |
| rhsa-2005:839 | Red Hat Security Advisory: lynx security update | 2005-11-12T00:10:00+00:00 | 2025-11-21T17:29:44+00:00 |
| rhsa-2005:810 | Red Hat Security Advisory: gdk-pixbuf security update | 2005-11-15T14:30:00+00:00 | 2025-11-21T17:29:41+00:00 |
| rhsa-2005:811 | Red Hat Security Advisory: gtk2 security update | 2005-11-15T14:40:00+00:00 | 2025-11-21T17:29:41+00:00 |
| rhsa-2005:850 | Red Hat Security Advisory: imap security update | 2005-12-06T14:33:00+00:00 | 2025-11-21T17:29:48+00:00 |
| rhsa-2005:840 | Red Hat Security Advisory: xpdf security update | 2005-12-06T14:40:00+00:00 | 2025-11-21T17:29:44+00:00 |
| rhsa-2005:848 | Red Hat Security Advisory: libc-client security update | 2005-12-06T14:46:00+00:00 | 2025-11-21T17:29:47+00:00 |
| rhsa-2005:882 | Red Hat Security Advisory: openssl, php, mod_ssl, mod_imap security update for Stronghold | 2005-12-19T17:29:00+00:00 | 2025-11-21T17:29:49+00:00 |
| rhsa-2005:878 | Red Hat Security Advisory: cups security update | 2005-12-20T14:20:00+00:00 | 2025-11-21T17:29:48+00:00 |
| rhsa-2005:867 | Red Hat Security Advisory: gpdf security update | 2005-12-20T14:24:00+00:00 | 2025-11-21T17:29:47+00:00 |
| rhsa-2005:864 | Red Hat Security Advisory: udev security update | 2005-12-20T14:26:00+00:00 | 2025-11-21T17:29:47+00:00 |
| rhsa-2005:880 | Red Hat Security Advisory: perl security update | 2005-12-20T14:33:00+00:00 | 2025-11-21T17:29:48+00:00 |
| rhsa-2005:843 | Red Hat Security Advisory: netpbm security update | 2005-12-20T14:42:00+00:00 | 2025-11-21T17:29:44+00:00 |
| rhsa-2005:875 | Red Hat Security Advisory: curl security update | 2005-12-20T14:46:00+00:00 | 2025-11-21T17:29:47+00:00 |
| rhsa-2005:868 | Red Hat Security Advisory: kdegraphics security update | 2005-12-20T14:52:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2005:881 | Red Hat Security Advisory: perl security update | 2005-12-20T15:00:00+00:00 | 2025-11-21T17:29:49+00:00 |
| rhsa-2006:0159 | Red Hat Security Advisory: httpd security update | 2006-01-05T15:59:00+00:00 | 2025-11-21T17:29:55+00:00 |
| rhsa-2006:0164 | Red Hat Security Advisory: mod_auth_pgsql security update | 2006-01-06T02:50:00+00:00 | 2025-11-21T17:29:57+00:00 |
| rhsa-2006:0179 | Red Hat Security Advisory: auth_ldap security update | 2006-01-10T19:32:00+00:00 | 2025-11-21T17:29:58+00:00 |
| rhsa-2006:0157 | Red Hat Security Advisory: struts security update for Red Hat Application Server | 2006-01-11T18:38:00+00:00 | 2025-11-21T17:29:54+00:00 |
| rhsa-2006:0163 | Red Hat Security Advisory: cups security update | 2006-01-11T18:46:00+00:00 | 2025-11-21T17:29:57+00:00 |
| rhsa-2006:0156 | Red Hat Security Advisory: ethereal security update | 2006-01-11T18:58:00+00:00 | 2025-11-21T17:29:54+00:00 |
| rhsa-2006:0177 | Red Hat Security Advisory: gpdf security update | 2006-01-11T19:04:00+00:00 | 2025-11-21T17:29:58+00:00 |
| rhsa-2006:0158 | Red Hat Security Advisory: apache security update | 2006-01-17T08:23:00+00:00 | 2025-11-21T17:29:55+00:00 |
| rhsa-2006:0101 | Red Hat Security Advisory: kernel security update | 2006-01-17T08:36:00+00:00 | 2025-11-21T17:29:51+00:00 |
| rhsa-2006:0140 | Red Hat Security Advisory: kernel security update | 2006-01-19T16:03:00+00:00 | 2025-11-21T17:29:53+00:00 |
| rhsa-2006:0160 | Red Hat Security Advisory: tetex security update | 2006-01-19T17:38:00+00:00 | 2025-11-21T17:30:01+00:00 |
| rhsa-2006:0184 | Red Hat Security Advisory: kdelibs security update | 2006-01-19T17:50:00+00:00 | 2025-11-21T17:29:58+00:00 |
| rhsa-2006:0190 | Red Hat Security Advisory: kernel security update | 2006-02-01T17:48:00+00:00 | 2025-11-21T17:29:59+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| icsa-18-046-01 | Nortek Linear eMerge E3 Series | 2018-02-15T00:00:00.000000Z | 2018-02-15T00:00:00.000000Z |
| icsa-18-046-02 | GE D60 Line Distance Relay | 2018-02-15T00:00:00.000000Z | 2018-02-15T00:00:00.000000Z |
| icsa-18-046-03 | Schneider Electric IGSS Mobile | 2018-02-15T00:00:00.000000Z | 2018-02-15T00:00:00.000000Z |
| icsa-18-046-04 | Schneider Electric StruxureOn Gateway | 2018-02-15T00:00:00.000000Z | 2018-02-15T00:00:00.000000Z |
| icsa-18-051-01 | ABB netCADOPS Web Application | 2018-02-20T00:00:00.000000Z | 2018-02-20T00:00:00.000000Z |
| icsa-18-058-01a | Siemens SIMATIC Industrial PCs (Update A) | 2018-02-22T00:00:00.000000Z | 2020-02-10T00:00:00.000000Z |
| icsa-18-058-02 | Delta Electronics WPLSoft | 2018-02-27T00:00:00.000000Z | 2018-02-27T00:00:00.000000Z |
| icsa-18-058-03 | Emerson ControlWave Micro Process Automation Controller | 2018-02-27T00:00:00.000000Z | 2018-02-27T00:00:00.000000Z |
| icsma-18-058-01 | Medtronic 2090 Carelink Programmer Vulnerabilities (Update C) | 2018-02-27T00:00:00.000000Z | 2020-01-30T00:00:00.000000Z |
| icsma-18-058-02 | Philips Intellispace Portal ISP Vulnerabilities | 2018-02-27T00:00:00.000000Z | 2018-02-27T00:00:00.000000Z |
| icsa-18-060-01 | ICSA-18-060-01_Siemens SIMATIC, SIMOTION, and SINUMERIK (Update A) | 2018-03-01T00:00:00.000000Z | 2018-04-19T00:00:00.000000Z |
| icsa-18-060-02 | Moxa OnCell G3100-HSPA Series | 2018-03-01T00:00:00.000000Z | 2018-03-01T00:00:00.000000Z |
| icsa-18-060-03 | Delta Electronics Delta Industrial Automation DOPSoft | 2018-03-01T00:00:00.000000Z | 2018-03-01T00:00:00.000000Z |
| icsa-18-065-01 | Hirschmann Automation and Control GmbH Classic Platform Switches | 2018-03-06T00:00:00.000000Z | 2018-03-06T00:00:00.000000Z |
| icsa-18-065-02 | Schneider Electric SoMove Software and DTM Software Components | 2018-03-06T00:00:00.000000Z | 2018-03-06T00:00:00.000000Z |
| icsa-18-065-03 | Eaton ELCSoft | 2018-03-06T00:00:00.000000Z | 2018-03-06T00:00:00.000000Z |
| icsa-18-067-01 | Siemens SIPROTEC 4, SIPROTEC Compact, DIGSI 4, and EN100 Ethernet Module (Update D) | 2018-03-08T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsa-18-067-02 | ICSA-18-067-02_Siemens SIPROTEC 4, SIPROTEC Compact, and Reyrolle Devices using the EN100 Ethernet Communication Module Extension (Update B) | 2018-03-08T00:00:00.000000Z | 2019-02-12T00:00:00.000000Z |
| icsa-18-072-01 | Omron CX-Supervisor (Update A) | 2018-03-13T00:00:00.000000Z | 2018-12-20T00:00:00.000000Z |
| icsa-18-072-02 | OSIsoft PI Data Archive | 2018-03-13T00:00:00.000000Z | 2018-03-13T00:00:00.000000Z |
| icsa-18-072-03 | OSIsoft PI Vision | 2018-03-13T00:00:00.000000Z | 2018-03-13T00:00:00.000000Z |
| icsa-18-072-04 | OSIsoft PI Web API | 2018-03-13T00:00:00.000000Z | 2018-03-13T00:00:00.000000Z |
| icsa-18-079-01 | Geutebruck IP Cameras | 2018-03-20T00:00:00.000000Z | 2018-03-20T00:00:00.000000Z |
| icsa-18-079-02 | Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D) | 2018-03-20T00:00:00.000000Z | 2023-05-09T00:00:00.000000Z |
| icsa-18-081-01 | ICSA-18-081-01 Siemens SIMATIC WinCC OA UI Mobile App | 2018-03-20T00:00:00.000000Z | 2018-03-20T00:00:00.000000Z |
| icsa-18-081-02 | Beckhoff TwinCAT | 2018-03-22T00:00:00.000000Z | 2018-03-22T00:00:00.000000Z |
| icsa-18-086-01 | Schneider Electric Modicon Premium, Modicon Quantum, Modicon M340, and Modicon BMXNOR0200 | 2018-03-27T00:00:00.000000Z | 2018-03-27T00:00:00.000000Z |
| icsa-18-088-02 | Siemens TIM 1531 IRC | 2018-03-27T00:00:00.000000Z | 2020-02-10T00:00:00.000000Z |
| icsa-18-088-03 | Siemens SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional, and SIMATIC NET PC Software (Update G) | 2018-03-27T00:00:00.000000Z | 2025-05-06T06:00:00.000000Z |
| icsma-18-086-01 | Philips Alice 6 Vulnerabilities (Update B) | 2018-03-27T00:00:00.000000Z | 2018-12-13T00:00:00.000000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cisco-sa-20190717-cfnm-statcred | Cisco FindIT Network Management Software Static Credentials Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190717-cvdsd-wmauth | Cisco Vision Dynamic Signage Director REST API Authentication Bypass Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190717-ise-sql-inject | Cisco Identity Services Engine Blind SQL Injection Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190717-ise-xss | Cisco Identity Services Engine Cross-Site Scripting Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-08-06T17:39:12+00:00 |
| cisco-sa-20190717-sbss-redirect | Cisco Small Business Series Switches Open Redirect Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190717-spa500-command | Cisco Small Business SPA500 Series IP Phones Local Command Execution Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190717-wsma-info | Cisco Industrial Network Director Web Services Management Agent Unauthorized Information Disclosure Vulnerability | 2019-07-17T16:00:00+00:00 | 2019-07-17T16:00:00+00:00 |
| cisco-sa-20190731-nxos-bo | Cisco Nexus 9000 Series ACI Mode Switch Software Link Layer Discovery Protocol Buffer Overflow Vulnerability | 2019-07-31T16:00:00+00:00 | 2019-09-26T17:35:34+00:00 |
| cisco-sa-20190806-sb220-auth_bypass | Cisco Small Business 220 Series Smart Switches Authentication Bypass Vulnerability | 2019-08-06T14:00:00+00:00 | 2019-08-21T14:24:09+00:00 |
| cisco-sa-20190806-sb220-inject | Cisco Small Business 220 Series Smart Switches Command Injection Vulnerability | 2019-08-06T14:00:00+00:00 | 2019-08-21T14:20:46+00:00 |
| cisco-sa-20190806-sb220-rce | Cisco Small Business 220 Series Smart Switches Remote Code Execution Vulnerabilities | 2019-08-06T14:00:00+00:00 | 2019-08-21T14:27:53+00:00 |
| cisco-sa-20190807-asa-multi | Cisco Adaptive Security Appliance Smart Tunnel Vulnerabilities | 2019-08-07T16:00:00+00:00 | 2019-08-29T13:00:21+00:00 |
| cisco-sa-20190807-asa-privescala | Cisco Adaptive Security Appliance Software Web-Based Management Interface Privilege Escalation Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-esm-inject | Cisco Email Security Appliance Header Injection Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-09-26T20:01:12+00:00 |
| cisco-sa-20190807-fmc-xss | Cisco Firepower Management Center Persistent Cross-Site Scripting Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-21T14:36:50+00:00 |
| cisco-sa-20190807-fnd-dos | Cisco IoT Field Network Director TLS Renegotiation Denial of Service Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-ftd-bypass | Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-20T13:28:20+00:00 |
| cisco-sa-20190807-hypflex-csrf | Cisco HyperFlex Software Cross-Site Request Forgery Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-iosxr-isis-dos-1910 | Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-20T15:38:21+00:00 |
| cisco-sa-20190807-iosxr-isis-dos-1918 | Cisco IOS XR Software Intermediate System-to-Intermediate System Denial of Service Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-20T15:38:21+00:00 |
| cisco-sa-20190807-nfv-cli-path | Cisco Enterprise NFV Infrastructure Software Path Traversal Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-commandinj | Cisco Enterprise NFV Infrastructure Software Command Injection Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-fileread | Cisco Enterprise NFV Infrastructure Software Web Portal Arbitrary File Read Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-privescal | Cisco Enterprise NFV Infrastructure Software Privilege Escalation Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-pwrecov | Cisco Enterprise NFV Infrastructure Software Password Recovery Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-read | Cisco Enterprise NFV Infrastructure Software Arbitrary File Read Vulnerabilities | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfv-xss | Cisco Enterprise NFV Infrastructure Software Cross-site Scripting Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfvis-authbypass | Cisco Enterprise NFV Infrastructure Software Web-Based Management Interface Authentication Bypass Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-nfvis-vnc-authbypass | Cisco Enterprise NFV Infrastructure Software VNC Authentication Bypass Vulnerability | 2019-08-07T16:00:00+00:00 | 2019-08-07T16:00:00+00:00 |
| cisco-sa-20190807-sd-wan-bypass | Cisco SD-WAN Solution Packet Filtering Bypass Vulnerability | 2019-08-07T16:00:00+00:00 | 2020-02-21T22:48:42+00:00 |
| ID | Description | Published | Updated |
|---|---|---|---|
| msrc_cve-2020-26570 | The Oberthur smart card software driver in OpenSC before 0.21.0-rc1 has a heap-based buffer overflow in sc_oberthur_read_file. | 2020-10-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-26571 | The gemsafe GPK smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in sc_pkcs15emu_gemsafeGPK_init. | 2020-10-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-26572 | The TCOS smart card software driver in OpenSC before 0.21.0-rc1 has a stack-based buffer overflow in tcos_decipher. | 2020-10-02T00:00:00.000Z | 2021-12-16T00:00:00.000Z |
| msrc_cve-2020-27194 | An issue was discovered in the Linux kernel before 5.8.15. scalar32_min_max_or in kernel/bpf/verifier.c mishandles bounds tracking during use of 64-bit values aka CID-5b9fbeb75b6a. | 2020-10-02T00:00:00.000Z | 2020-11-02T00:00:00.000Z |
| msrc_cve-2020-27619 | In Python 3 through 3.9.0 the Lib/test/multibytecodec_support.py CJK codec tests call eval() on content retrieved via HTTP. | 2020-10-02T00:00:00.000Z | 2020-11-10T00:00:00.000Z |
| msrc_cve-2020-27675 | An issue was discovered in the Linux kernel through 5.9.1 as used with Xen through 4.14.x. drivers/xen/events/events_base.c allows event-channel removal during the event-handling loop (a race condition). This can cause a use-after-free or NULL pointer dereference as demonstrated by a dom0 crash via events for an in-reconfiguration paravirtualized device aka CID-073d0552ead5. | 2020-10-02T00:00:00.000Z | 2020-11-04T00:00:00.000Z |
| msrc_cve-2020-7020 | Elasticsearch versions before 6.8.13 and 7.9.2 contain a document disclosure flaw when Document or Field Level Security is used. Search queries do not properly preserve security permissions when executing certain complex queries. This could result in the search disclosing the existence of documents the attacker should not be able to view. This could result in an attacker gaining additional insight into potentially sensitive indices. | 2020-10-02T00:00:00.000Z | 2021-12-01T00:00:00.000Z |
| msrc_cve-2020-0569 | Out of bounds write in Intel(R) PROSet/Wireless WiFi products on Windows 10 may allow an authenticated user to potentially enable denial of service via local access. | 2020-11-02T00:00:00.000Z | 2023-05-25T00:00:00.000Z |
| msrc_cve-2020-15436 | Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-15437 | The Linux kernel before version 5.8 is vulnerable to a NULL pointer dereference in drivers/tty/serial/8250/8250_core.c:serial8250_isa_init_ports() that allows local users to cause a denial of service by using the p->serial_in pointer which uninitialized. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-15999 | Heap buffer overflow in Freetype in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. | 2020-11-02T00:00:00.000Z | 2025-02-08T00:00:00.000Z |
| msrc_cve-2020-25013 | JetBrains ToolBox before version 1.18 is vulnerable to a Denial of Service attack via a browser protocol handler. | 2020-11-02T00:00:00.000Z | 2025-10-01T23:11:04.000Z |
| msrc_cve-2020-25207 | JetBrains ToolBox before version 1.18 is vulnerable to Remote Code Execution via a browser protocol handler. | 2020-11-02T00:00:00.000Z | 2025-10-01T23:11:05.000Z |
| msrc_cve-2020-25650 | A flaw was found in the way the spice-vdagentd daemon handled file transfers from the host system to the virtual machine. Any unprivileged local guest user with access to the UNIX domain socket path `/run/spice-vdagentd/spice-vdagent-sock` could use this flaw to perform a memory denial of service for spice-vdagentd or even other processes in the VM system. The highest threat from this vulnerability is to system availability. This flaw affects spice-vdagent versions 0.20 and previous versions. | 2020-11-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2020-25651 | A flaw was found in the SPICE file transfer protocol. File data from the host system can end up in full or in parts in the client connection of an illegitimate local user in the VM system. Active file transfers from other users could also be interrupted resulting in a denial of service. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior. | 2020-11-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2020-25652 | A flaw was found in the spice-vdagentd daemon where it did not properly handle client connections that can be established via the UNIX domain socket in `/run/spice-vdagentd/spice-vdagent-sock`. Any unprivileged local guest user could use this flaw to prevent legitimate agents from connecting to the spice-vdagentd daemon resulting in a denial of service. The highest threat from this vulnerability is to system availability. This flaw affects spice-vdagent versions 0.20 and prior. | 2020-11-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2020-25653 | A race condition vulnerability was found in the way the spice-vdagentd daemon handled new client connections. This flaw may allow an unprivileged local guest user to become the active agent for spice-vdagentd possibly resulting in a denial of service or information leakage from the host. The highest threat from this vulnerability is to data confidentiality as well as system availability. This flaw affects spice-vdagent versions 0.20 and prior. | 2020-11-02T00:00:00.000Z | 2022-01-19T00:00:00.000Z |
| msrc_cve-2020-25694 | A flaw was found in PostgreSQL versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. If a client application that creates additional database connections only reuses the basic connection parameters while dropping security-relevant parameters an opportunity for a man-in-the-middle attack or the ability to observe clear-text transmissions could exist. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-11-02T00:00:00.000Z | 2020-11-20T00:00:00.000Z |
| msrc_cve-2020-25695 | A flaw was found in PostgreSQL versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. An attacker having permission to create non-temporary objects in at least one schema can execute arbitrary SQL functions under the identity of a superuser. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-11-02T00:00:00.000Z | 2020-11-20T00:00:00.000Z |
| msrc_cve-2020-25696 | A flaw was found in the psql interactive terminal of PostgreSQL in versions before 13.1 before 12.5 before 11.10 before 10.15 before 9.6.20 and before 9.5.24. If an interactive psql session uses \gset when querying a compromised server the attacker can execute arbitrary code as the operating system account running psql. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. | 2020-11-02T00:00:00.000Z | 2020-12-08T00:00:00.000Z |
| msrc_cve-2020-25705 | A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4 SCALANCE M-800: All versions between v5.0 and v6.4 SCALANCE S615: All versions between v5.0 and v6.4 SCALANCE SC-600: All versions prior to v2.1.3 SCALANCE W1750D: v8.3.0.1 v8.6.0 and v8.7.0 SIMATIC Cloud Connect 7: All versions SIMATIC MV500 Family: All versions SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later SIMATIC NET CP 1243-7 LTE EU: Version | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-27152 | An issue was discovered in ioapic_lazy_update_eoi in arch/x86/kvm/ioapic.c in the Linux kernel before 5.9.2. It has an infinite loop related to improper interaction between a resampler and edge triggering aka CID-77377064c3a9. | 2020-11-02T00:00:00.000Z | 2020-11-17T00:00:00.000Z |
| msrc_cve-2020-28196 | MIT Kerberos 5 (aka krb5) before 1.17.2 and 1.18.x before 1.18.3 allows unbounded recursion via an ASN.1-encoded Kerberos message because the lib/krb5/asn.1/asn1_encode.c support for BER indefinite lengths lacks a recursion limit. | 2020-11-02T00:00:00.000Z | 2021-10-15T00:00:00.000Z |
| msrc_cve-2020-28362 | Go before 1.14.12 and 1.15.x before 1.15.4 allows Denial of Service. | 2020-11-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-28366 | Arbitrary code execution in go command with cgo in cmd/go and cmd/cgo | 2020-11-02T00:00:00.000Z | 2024-06-30T07:00:00.000Z |
| msrc_cve-2020-28367 | Arbitrary code execution via the go command with cgo in cmd/go | 2020-11-02T00:00:00.000Z | 2024-09-11T00:00:00.000Z |
| msrc_cve-2020-28915 | A buffer over-read (at the framebuffer layer) in the fbcon code in the Linux kernel before 5.8.15 could be used by local attackers to read kernel memory aka CID-6735b4632def. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-28941 | An issue was discovered in drivers/accessibility/speakup/spk_ttyio.c in the Linux kernel through 5.9.9. Local attackers on systems with the speakup driver could cause a local denial of service attack aka CID-d41227544427. This occurs because of an invalid free when the line discipline is used more than once. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| msrc_cve-2020-28974 | A slab-out-of-bounds read in fbcon in the Linux kernel before 5.9.7 could be used by local attackers to read privileged information or potentially crash the kernel aka CID-3c4e0dff2095. This occurs because KD_FONT_OP_COPY in drivers/tty/vt/vt.c can be used for manipulations such as font height. | 2020-11-02T00:00:00.000Z | 2020-12-02T00:00:00.000Z |
| msrc_cve-2020-29368 | An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check aka CID-c444eb564fb1. | 2020-11-02T00:00:00.000Z | 2020-12-03T00:00:00.000Z |
| ID | Description | Updated |
|---|---|---|
| var-202011-1547 | Advantech WebAccess/HMI Designer is a man-machine interface integrated development tool. … | 2022-05-04T09:15:37.403000Z |
| var-202011-1526 | Rockchip Microelectronics Co., Ltd. has a R&D team specializing in system-level chip desi… | 2022-05-04T09:15:37.415000Z |
| var-202011-1295 | A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… | 2022-05-04T09:15:37.678000Z |
| var-202011-1273 | A CWE-125: Out-of-Bounds Read vulnerability exists in the Web Server on Modicon M340, Mod… | 2022-05-04T09:15:37.753000Z |
| var-202011-1275 | A CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnera… | 2022-05-04T09:15:37.776000Z |
| var-202011-1274 | A CWE-787: Out-of-bounds Write vulnerability exists in the Web Server on Modicon M340, Mo… | 2022-05-04T09:15:37.799000Z |
| var-202011-1252 | Improper access control vulnerability in TCP/IP function included in the firmware of MELS… | 2022-05-04T09:15:37.828000Z |
| var-202011-1250 | Session fixation vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R… | 2022-05-04T09:15:37.854000Z |
| var-202011-1249 | Buffer overflow vulnerability in TCP/IP function included in the firmware of MELSEC iQ-R … | 2022-05-04T09:15:40.640000Z |
| var-202011-1251 | NULL pointer dereferences vulnerability in TCP/IP function included in the firmware of ME… | 2022-05-04T09:15:40.665000Z |
| var-202011-1254 | Resource Management Errors vulnerability in TCP/IP function included in the firmware of M… | 2022-05-04T09:15:40.693000Z |
| var-202011-1253 | Improper neutralization of argument delimiters in a command ('Argument Injection') vulner… | 2022-05-04T09:15:40.720000Z |
| var-202011-0413 | SAP NetWeaver AS ABAP (Web Dynpro), versions - 731, 740, 750, 751, 752, 753, 754, 755, 78… | 2022-05-04T09:15:41.487000Z |
| var-202010-1640 | Shanghai ZLAN Information Technology Co., Ltd. is a high-tech enterprise that provides in… | 2022-05-04T09:15:41.760000Z |
| var-202010-1619 | P-660HW-T1 is a wireless router product of Zhongqin Communication Equipment Trading (Shan… | 2022-05-04T09:15:41.769000Z |
| var-202010-1598 | D-Link DIR-852 is a wireless router. D-Link DIR-852 has a command execution vulnerabi… | 2022-05-04T09:15:41.779000Z |
| var-202010-1367 | IBM Resilient SOAR V38.0 could allow an attacker on the internal net work to provide the … | 2022-05-04T09:15:42.045000Z |
| var-202010-1092 | User enumeration vulnerability can be exploited to get a list of user accounts and person… | 2022-05-04T09:15:42.517000Z |
| var-202009-1720 | Redmi Note 7 generally refers to Redmi Note 7. Redmi Note 7 is the first product of Xiaom… | 2022-05-04T09:15:43.375000Z |
| var-202009-1678 | Siemens is a global technology company that provides customers with solutions in the fiel… | 2022-05-04T09:15:43.397000Z |
| var-202008-1327 | KingView is an industrial automation configuration software produced by Beijing Yakong Te… | 2022-05-04T09:15:45Z |
| var-202008-1285 | China Pulian Technology Co., Ltd. is the world's leading supplier of network communicatio… | 2022-05-04T09:15:45.023000Z |
| var-202007-1477 | Xiaomi Mi 6 is a flagship device officially released by Xiaomi on April 19, 2017. The… | 2022-05-04T09:15:46.167000Z |
| var-202006-1928 | DrayTek Vigor series routers are dual-WAN security firewall routers designed for medium-s… | 2022-05-04T09:15:50.430000Z |
| var-202006-1907 | Advantech WebAccessNode is a HMI/SCADA monitoring software based entirely on IE browser … | 2022-05-04T09:15:50.440000Z |
| var-202006-1886 | Shenzhen Jixiang Tengda Technology Co., Ltd. is a leading global network equipment provid… | 2022-05-04T09:15:50.452000Z |
| var-202005-1117 | Zhejiang Dahua Technology Co., Ltd. is a video-centric intelligent IoT solution provider … | 2022-05-04T09:15:52.127000Z |
| var-202005-1075 | Zhejiang Dahua Technology Co., Ltd. is a video-centric intelligent IoT solution provider … | 2022-05-04T09:15:52.153000Z |
| var-202004-2261 | Xinhua III Group is committed to characterization solutions. Provide one-stop digital sol… | 2022-05-04T09:15:53.910000Z |
| var-202004-2240 | Ruijie RG-RSR20-14E is a multi-service router. Ruijie RG-RSR20-14E has a command exec… | 2022-05-04T09:15:53.922000Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| jvndb-2012-000056 | FeedDemon vulnerable to arbitrary script execution | 2012-06-07T15:39+09:00 | 2012-06-07T15:39+09:00 |
| jvndb-2012-000046 | Flash Player issue in implementations of the Same Origin Policy | 2012-06-11T15:05+09:00 | 2012-06-13T16:39+09:00 |
| jvndb-2012-000057 | Dolphin Browser vulnerable in the WebView class | 2012-06-14T14:20+09:00 | 2012-06-14T14:20+09:00 |
| jvndb-2012-000062 | WEB PATIO vulnerable to cross-site scripting | 2012-06-19T12:35+09:00 | 2012-06-19T12:35+09:00 |
| jvndb-2012-000060 | SmallPICT vulnerable to cross-site scripting | 2012-06-19T14:00+09:00 | 2012-06-19T14:00+09:00 |
| jvndb-2012-000061 | WEB PATIO vulnerable to cross-site scripting | 2012-06-19T14:31+09:00 | 2012-06-19T14:31+09:00 |
| jvndb-2012-000063 | Python SimpleHTTPServer vulnerable to cross-site scripting | 2012-06-19T14:38+09:00 | 2012-12-26T18:01+09:00 |
| jvndb-2012-000065 | Zenphoto vulnerable to cross-site scripting | 2012-07-03T14:49+09:00 | 2012-07-03T14:49+09:00 |
| jvndb-2012-000064 | Yome Collection for Android issue in management of IMEI | 2012-07-03T14:57+09:00 | 2012-07-03T14:57+09:00 |
| jvndb-2012-000066 | Ruby hash table implementation vulnerable to denial-of-service | 2012-07-06T17:11+09:00 | 2012-07-06T17:11+09:00 |
| jvndb-2012-000067 | Movable Type plugin MT4i vulnerable to cross-site scripting | 2012-07-06T17:14+09:00 | 2012-07-06T17:14+09:00 |
| jvndb-2012-000068 | YY-BOARD vulnerable to cross-site scripting | 2012-07-06T17:19+09:00 | 2012-07-06T17:19+09:00 |
| jvndb-2012-000069 | Movable Type plugin MT4i vulnerable to cross-site scripting | 2012-07-06T17:24+09:00 | 2012-07-06T17:24+09:00 |
| jvndb-2012-000070 | Yahoo! Browser vulnerable in the WebView class | 2012-07-13T15:00+09:00 | 2012-07-20T12:12+09:00 |
| jvndb-2012-003244 | Privilege escalation vulnerability in Hitachi JP1/NETM/DM | 2012-07-23T17:13+09:00 | 2012-07-23T17:13+09:00 |
| jvndb-2012-000071 | Sleipnir Mobile for Android vulnerable in the WebView class | 2012-07-24T14:05+09:00 | 2012-07-24T14:05+09:00 |
| jvndb-2012-000009 | Multiple web browsers vulnerable in processing Tranfer-Encoding header | 2012-07-30T14:53+09:00 | 2012-07-30T14:53+09:00 |
| jvndb-2012-000072 | Yahoo! Toolbar (for Chrome, Safari) vulnerable to toolbar alteration | 2012-07-30T14:56+09:00 | 2012-08-02T16:33+09:00 |
| jvndb-2012-000073 | GoodReader vulnerable to cross-site scripting | 2012-08-02T14:46+09:00 | 2012-08-02T14:46+09:00 |
| jvndb-2012-000074 | LINE for Android vulnerable in handling of implicit intents | 2012-08-07T13:33+09:00 | 2012-08-07T13:33+09:00 |
| jvndb-2012-000075 | Sleipnir Mobile for Android vulnerable to arbitrary Java method execution | 2012-08-08T14:39+09:00 | 2012-08-08T14:39+09:00 |
| jvndb-2012-000076 | Sleipnir Mobile for Android vulnerable to arbitrary script execution | 2012-08-08T14:43+09:00 | 2012-08-08T14:43+09:00 |
| jvndb-2012-003525 | Cross-site Scripting Vulnerability in JP1/Integrated Management - Service Support | 2012-08-10T15:05+09:00 | 2012-08-10T15:05+09:00 |
| jvndb-2012-000077 | Multiple GREE Android applications vulnerable in the WebView class | 2012-08-17T15:52+09:00 | 2012-08-17T15:52+09:00 |
| jvndb-2012-000078 | mixi for Android information management vulnerability | 2012-08-17T15:58+09:00 | 2012-08-17T15:58+09:00 |
| jvndb-2012-000079 | Adobe Reader fails to properly handle signatures | 2012-08-30T13:57+09:00 | 2014-05-23T18:34+09:00 |
| jvndb-2012-000080 | Opera address bar spoofing vulnerability | 2012-08-30T14:00+09:00 | 2013-06-26T13:48+09:00 |
| jvndb-2012-000081 | Cybozu Live for Android vulnerable to arbitrary Java method execution | 2012-09-03T10:34+09:00 | 2012-09-03T10:34+09:00 |
| jvndb-2012-000082 | Cybozu Live for Android vulnerable in the WebView class | 2012-09-03T10:41+09:00 | 2012-09-03T10:41+09:00 |
| jvndb-2012-000083 | Cybozu KUNAI for Android vulnerable to arbitrary Java method execution | 2012-09-07T16:39+09:00 | 2012-09-07T16:39+09:00 |
| ID | Description | Updated |
|---|
| ID | Description | Published | Updated |
|---|---|---|---|
| suse-su-2016:1019-1 | Security update for the Linux Kernel | 2016-04-12T15:48:36Z | 2016-04-12T15:48:36Z |
| suse-su-2016:1023-1 | Security update for samba | 2016-04-12T18:36:55Z | 2016-04-12T18:36:55Z |
| suse-su-2016:1024-1 | Security update for samba | 2016-04-12T18:42:33Z | 2016-04-12T18:42:33Z |
| suse-su-2016:1022-1 | Security update for samba | 2016-04-12T18:46:15Z | 2016-04-12T18:46:15Z |
| suse-su-2016:1026-1 | Security update for xerces-c | 2016-04-13T09:32:03Z | 2016-04-13T09:32:03Z |
| suse-su-2016:1028-1 | Security update for samba | 2016-04-13T14:32:30Z | 2016-04-13T14:32:30Z |
| suse-su-2016:1034-1 | Security update for Linux Kernel Live Patch 11 | 2016-04-14T11:41:11Z | 2016-04-14T11:41:11Z |
| suse-su-2016:1031-1 | Security update for Linux Kernel Live Patch 0 for SP 1 | 2016-04-14T11:41:48Z | 2016-04-14T11:41:48Z |
| suse-su-2016:1032-1 | Security update for Linux Kernel Live Patch 1 for SP 1 | 2016-04-14T11:42:53Z | 2016-04-14T11:42:53Z |
| suse-su-2016:1035-1 | Security update for Linux Kernel Live Patch 2 for SP 1 | 2016-04-14T11:44:46Z | 2016-04-14T11:44:46Z |
| suse-su-2016:1033-1 | Security update for Linux Kernel Live Patch 3 for SP 1 | 2016-04-14T11:44:55Z | 2016-04-14T11:44:55Z |
| suse-su-2016:1040-1 | Security update for Linux Kernel Live Patch 4 | 2016-04-14T14:30:35Z | 2016-04-14T14:30:35Z |
| suse-su-2016:1038-1 | Security update for Linux Kernel Live Patch 6 | 2016-04-14T14:30:47Z | 2016-04-14T14:30:47Z |
| suse-su-2016:1037-1 | Security update for Linux Kernel Live Patch 7 | 2016-04-14T14:31:00Z | 2016-04-14T14:31:00Z |
| suse-su-2016:1041-1 | Security update for Linux Kernel Live Patch 8 | 2016-04-14T14:31:11Z | 2016-04-14T14:31:11Z |
| suse-su-2016:1039-1 | Security update for Linux Kernel Live Patch 9 | 2016-04-14T14:31:21Z | 2016-04-14T14:31:21Z |
| suse-su-2016:1045-1 | Security update for Linux Kernel Live Patch 10 | 2016-04-15T09:23:59Z | 2016-04-15T09:23:59Z |
| suse-su-2016:1046-1 | Security update for Linux Kernel Live Patch 5 | 2016-04-15T09:24:19Z | 2016-04-15T09:24:19Z |
| suse-su-2016:1057-1 | Security update for openssl | 2016-04-15T15:21:50Z | 2016-04-15T15:21:50Z |
| suse-su-2016:1088-1 | Security update for krb5 | 2016-04-18T07:17:35Z | 2016-04-18T07:17:35Z |
| suse-su-2016:1089-1 | Security update for libgcrypt | 2016-04-18T07:18:36Z | 2016-04-18T07:18:36Z |
| suse-su-2016:1090-1 | Security update for icu | 2016-04-18T10:31:48Z | 2016-04-18T10:31:48Z |
| suse-su-2016:1091-1 | Security update for lhasa | 2016-04-18T11:33:42Z | 2016-04-18T11:33:42Z |
| suse-su-2016:1100-1 | Security update for cairo | 2016-04-19T09:32:28Z | 2016-04-19T09:32:28Z |
| suse-su-2016:1102-1 | Security update for the Linux Kernel | 2016-04-19T13:59:53Z | 2016-04-19T13:59:53Z |
| suse-su-2016:1140-1 | Security update for giflib | 2016-04-25T07:16:35Z | 2016-04-25T07:16:35Z |
| suse-su-2016:1139-1 | Security update for giflib | 2016-04-25T07:18:40Z | 2016-04-25T07:18:40Z |
| suse-su-2016:1138-1 | Security update for yast2-users | 2016-04-25T07:31:51Z | 2016-04-25T07:31:51Z |
| suse-su-2016:1145-1 | Security update for php53 | 2016-04-25T13:37:35Z | 2016-04-25T13:37:35Z |
| suse-su-2016:1146-1 | Security update for portus | 2016-04-25T14:28:51Z | 2016-04-25T14:28:51Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| opensuse-su-2019:2317-1 | Security update for GraphicsMagick | 2019-10-16T05:41:17Z | 2019-10-16T05:41:17Z |
| opensuse-su-2019:2318-1 | Security update for epiphany | 2019-10-16T05:41:27Z | 2019-10-16T05:41:27Z |
| opensuse-su-2019:2319-1 | Security update for libopenmpt | 2019-10-16T05:41:36Z | 2019-10-16T05:41:36Z |
| opensuse-su-2019:2321-1 | Security update for GraphicsMagick | 2019-10-16T13:25:29Z | 2019-10-16T13:25:29Z |
| opensuse-su-2019:2333-1 | Security update for sudo | 2019-10-17T08:21:26Z | 2019-10-17T08:21:26Z |
| opensuse-su-2019:2340-1 | Security update for dhcp | 2019-10-19T22:19:08Z | 2019-10-19T22:19:08Z |
| opensuse-su-2019:2341-1 | Security update for dhcp | 2019-10-19T22:19:29Z | 2019-10-19T22:19:29Z |
| opensuse-su-2019:2343-1 | Security update for libpcap | 2019-10-20T16:18:04Z | 2019-10-20T16:18:04Z |
| opensuse-su-2019:2344-1 | Security update for tcpdump | 2019-10-20T16:18:13Z | 2019-10-20T16:18:13Z |
| opensuse-su-2019:2345-1 | Security update for libpcap | 2019-10-20T16:18:19Z | 2019-10-20T16:18:19Z |
| opensuse-su-2019:2347-1 | Security update for lighttpd | 2019-10-20T17:22:17Z | 2019-10-20T17:22:17Z |
| opensuse-su-2019:2348-1 | Security update for tcpdump | 2019-10-20T18:19:33Z | 2019-10-20T18:19:33Z |
| opensuse-su-2019:2361-1 | Security update for libreoffice | 2019-10-21T22:25:35Z | 2019-10-21T22:25:35Z |
| opensuse-su-2019:2364-1 | Security update for gcc7 | 2019-10-22T14:23:29Z | 2019-10-22T14:23:29Z |
| opensuse-su-2019:2365-1 | Security update for gcc7 | 2019-10-22T16:20:44Z | 2019-10-22T16:20:44Z |
| opensuse-su-2019:2376-1 | Security update for procps | 2019-10-26T14:24:29Z | 2019-10-26T14:24:29Z |
| opensuse-su-2019:2379-1 | Security update for procps | 2019-10-26T16:24:57Z | 2019-10-26T16:24:57Z |
| opensuse-su-2019:2385-1 | Security update for openconnect | 2019-10-27T11:24:22Z | 2019-10-27T11:24:22Z |
| opensuse-su-2019:2388-1 | Security update for openconnect | 2019-10-27T15:24:56Z | 2019-10-27T15:24:56Z |
| opensuse-su-2019:2389-1 | Security update for python | 2019-10-27T15:25:03Z | 2019-10-27T15:25:03Z |
| opensuse-su-2019:2392-1 | Security update for the Linux Kernel | 2019-10-27T18:35:05Z | 2019-10-27T18:35:05Z |
| opensuse-su-2019:2393-1 | Security update for python | 2019-10-27T19:22:28Z | 2019-10-27T19:22:28Z |
| opensuse-su-2019:2394-1 | Security update for zziplib | 2019-10-28T09:20:38Z | 2019-10-28T09:20:38Z |
| opensuse-su-2019:2395-1 | Security update for sysstat | 2019-10-28T09:20:48Z | 2019-10-28T09:20:48Z |
| opensuse-su-2019:2396-1 | Security update for zziplib | 2019-10-28T09:20:56Z | 2019-10-28T09:20:56Z |
| opensuse-su-2019:2397-1 | Security update for sysstat | 2019-10-28T11:22:25Z | 2019-10-28T11:22:25Z |
| opensuse-su-2019:2398-1 | Security update for lz4 | 2019-10-28T19:27:56Z | 2019-10-28T19:27:56Z |
| opensuse-su-2019:2399-1 | Security update for lz4 | 2019-10-28T19:28:07Z | 2019-10-28T19:28:07Z |
| opensuse-su-2019:2408-1 | Security update for nfs-utils | 2019-10-29T15:27:20Z | 2019-10-29T15:27:20Z |
| opensuse-su-2019:2415-1 | Security update for binutils | 2019-10-30T17:25:53Z | 2019-10-30T17:25:53Z |
| ID | Description | Published | Updated |
|---|---|---|---|
| cnvd-2015-00741 | BusyBox本地安全绕过漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00743 | LibTIFF存在多个拒绝服务漏洞(CNVD-2015-00743) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00744 | LibTIFF存在多个拒绝服务漏洞(CNVD-2015-00744) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00745 | FerretCMS存在多个HTML注入漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00746 | FerretCMS任意文件上传漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00747 | FerretCMS跨站脚本漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00748 | WebKit内存破坏漏洞(CNVD-2015-00748) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00749 | WebKit内存破坏漏洞(CNVD-2015-00749) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00750 | WebKit内存破坏漏洞(CNVD-2015-00750) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00751 | socat远程拒绝服务漏洞(CNVD-2015-00751) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00752 | Linux Kernel Crypto API本地安全绕过漏洞(CNVD-2015-00752) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00753 | Linux Kernel Crypto API本地安全绕过漏洞(CNVD-2015-00753) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00754 | Infinite Automation Systems Mango Automation跨站脚本漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00755 | MantisBT跨站脚本漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00756 | MantisBT不当访问控制漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00757 | MantisBT SQL注入漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00758 | Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00758) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00759 | Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00759) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00760 | Apple MAC OS X Yosemite安全绕过漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00761 | Apple MAC OS X Yosemite信息泄露漏洞(CNVD-2015-00761) | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00762 | PHP 'exif_process_unicode'函数远程代码执行漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00763 | HP SiteScope远程权限提升漏洞 | 2015-01-28 | 2015-01-29 |
| cnvd-2015-00838 | SupportCenter Plus存在多个跨站脚本漏洞 | 2015-01-28 | 2015-01-30 |
| cnvd-2015-00839 | FluxBB本地PHP文件包含漏洞 | 2015-01-28 | 2015-01-30 |
| cnvd-2015-00742 | Saurus CMS存在多个跨站脚本漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00775 | 多个Schneider Electric产品堆栈缓冲区溢出漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00810 | Google Chrome Blink拒绝服务漏洞(CNVD-2015-00810) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00811 | Google Chrome Skia拒绝服务漏洞(CNVD-2015-00811) | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00812 | Google Chrome PDFium拒绝服务漏洞 | 2015-01-29 | 2015-01-30 |
| cnvd-2015-00813 | Pivotal Software RabbitMQ management插件跨站脚本漏洞(CNVD-2015-00813) | 2015-01-29 | 2015-01-30 |
| ID | Description | Published | Updated |
|---|---|---|---|
| certa-2004-avi-019 | Vulnérabilité du filtre H.323 du garde-barrière Firewall-1 | 2004-01-29T00:00:00.000000 | 2004-01-29T00:00:00.000000 |
| certa-2004-avi-020 | Multiples vulnérabilités dans Internet Explorer | 2004-02-03T00:00:00.000000 | 2004-02-03T00:00:00.000000 |
| certa-2004-avi-021 | Déni de service des commutateurs Cisco 6000, 6500 et 7600 | 2004-02-05T00:00:00.000000 | 2004-02-05T00:00:00.000000 |
| certa-2004-avi-022 | Vulnérabilité du garde-barrière Firewall-1 | 2004-02-05T00:00:00.000000 | 2004-02-05T00:00:00.000000 |
| certa-2004-avi-023 | Vulnérabilité de shmat sur les noyaux BSD | 2004-02-06T00:00:00.000000 | 2004-02-19T00:00:00.000000 |
| certa-2004-avi-024 | Vulnérabilités de RealOne Player | 2004-02-09T00:00:00.000000 | 2004-02-09T00:00:00.000000 |
| certa-2004-avi-025 | Vulnérabilité de GNU Radius | 2004-02-09T00:00:00.000000 | 2004-02-09T00:00:00.000000 |
| certa-2004-avi-026 | Vulnérabilité dans mailman | 2004-02-09T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-027 | Vulnérabilité de Checkpoint VPN-1 | 2004-02-09T00:00:00.000000 | 2004-02-13T00:00:00.000000 |
| certa-2004-avi-028 | Vulnérabilité IPv6 dans les noyaux BSD | 2004-02-10T00:00:00.000000 | 2004-02-20T00:00:00.000000 |
| certa-2004-avi-029 | Vulnérabilité du serveur HTTP Apache-SSL | 2004-02-10T00:00:00.000000 | 2004-05-12T00:00:00.000000 |
| certa-2004-avi-030 | Vulnérabilités sur Oracle9i Database | 2004-02-10T00:00:00.000000 | 2004-02-10T00:00:00.000000 |
| certa-2004-avi-031 | Vulnérabilité de Windows Internet Naming Service (WINS) | 2004-02-11T00:00:00.000000 | 2004-02-11T00:00:00.000000 |
| certa-2004-avi-032 | Failles multiples dans la librairie ASN.1 de Microsoft | 2004-02-11T00:00:00.000000 | 2004-02-11T00:00:00.000000 |
| certa-2004-avi-033 | Vulnérabilité du client de messagerie Mutt | 2004-02-12T00:00:00.000000 | 2004-05-13T00:00:00.000000 |
| certa-2004-avi-034 | Multiples vulnérabilités de XFree86 et XSun | 2004-02-12T00:00:00.000000 | 2005-06-03T00:00:00.000000 |
| certa-2004-avi-035 | Vulnérabilité dans VirtualPC pour Mac | 2004-02-12T00:00:00.000000 | 2004-02-12T00:00:00.000000 |
| certa-2004-avi-036 | Vulnérabilité de cgiemail | 2004-02-12T00:00:00.000000 | 2004-02-12T00:00:00.000000 |
| certa-2004-avi-037 | Vulnérabilités de la bibliothèque PWLib | 2004-02-13T00:00:00.000000 | 2004-05-13T00:00:00.000000 |
| certa-2004-avi-038 | Vulnérabilité dans le serveur samba | 2004-02-13T00:00:00.000000 | 2004-06-09T00:00:00.000000 |
| certa-2004-avi-039 | Vulnérabilités dans Sophos Anti-Virus | 2004-02-16T00:00:00.000000 | 2004-02-16T00:00:00.000000 |
| certa-2004-avi-040 | Vulnérabilité de eTrust Antivirus | 2004-02-16T00:00:00.000000 | 2004-02-16T00:00:00.000000 |
| certa-2004-avi-357 | Vulnérabilités du lecteur PDF xpdf et de ses dérivés et du service d'impression CUPS | 2004-02-17T00:00:00.000000 | 2004-11-26T00:00:00.000000 |
| certa-2004-avi-041 | Vulnérabilité de Clamav | 2004-02-18T00:00:00.000000 | 2004-02-18T00:00:00.000000 |
| certa-2004-avi-042 | Vulnérabilité du noyau linux | 2004-02-18T00:00:00.000000 | 2004-04-06T00:00:00.000000 |
| certa-2004-avi-043 | Vulnérabilité de Metamail | 2004-02-19T00:00:00.000000 | 2004-05-24T00:00:00.000000 |
| certa-2004-avi-044 | Vulnérabilité de plusieurs logiciels de Zone Labs | 2004-02-19T00:00:00.000000 | 2004-02-19T00:00:00.000000 |
| certa-2004-avi-045 | Vulnérabilité dans Ipswitch Imail Server | 2004-02-20T00:00:00.000000 | 2004-02-20T00:00:00.000000 |
| certa-2004-avi-046 | Vulnérabilité dans Oracle9i Application et Dabase Server | 2004-02-23T00:00:00.000000 | 2004-02-23T00:00:00.000000 |
| certa-2004-avi-047 | Multiples vulnérabilités sous Mac OS X | 2004-02-25T00:00:00.000000 | 2004-02-25T00:00:00.000000 |